$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3B25/7E892CC2F61511E7B830096DC4F9AE02/tlTdX1sVILMlvAnEv0yt88r7NCk.mft File: tlTdX1sVILMlvAnEv0yt88r7NCk.mft (raw, json) Hash identifier: vsHoWN8G+JLGDXMUCRwXqHZDYQacyW3nwc5RIRmE5oA= Subject key identifier: 29:46:D4:1E:30:40:27:8E:94:49:DE:77:0C:50:9E:3C:47:FA:B5:54 Authority key identifier: B6:54:DD:5F:5B:15:20:B3:25:BC:09:C4:BF:4C:AD:F3:CA:FB:34:29 Certificate issuer: /CN=A91E3B25/serialNumber=B654DD5F5B1520B325BC09C4BF4CADF3CAFB3429 Certificate serial: 08EB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tlTdX1sVILMlvAnEv0yt88r7NCk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3B25/7E892CC2F61511E7B830096DC4F9AE02/tlTdX1sVILMlvAnEv0yt88r7NCk.mft Manifest number: 1F86 Signing time: Fri 04 Apr 2025 16:45:25 +0000 Manifest this update: Fri 04 Apr 2025 16:45:25 +0000 Manifest next update: Fri 11 Apr 2025 16:45:25 +0000 Files and hashes: 1: tlTdX1sVILMlvAnEv0yt88r7NCk.crl (hash: Bm1aI0tXqJOcVqH2x7tAtRQB8+2X2nHB1iX2CPx4sZA=) 2: 3D13A01EA9AB11EAA4DBEA5EC4F9AE02.roa (hash: /rJ72nX+kkgSo0V45R+mQxQnHh38w+ytfp+FOoflTT0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3B25/7E892CC2F61511E7B830096DC4F9AE02/tlTdX1sVILMlvAnEv0yt88r7NCk.crl rsync://rpki.apnic.net/member_repository/A91E3B25/7E892CC2F61511E7B830096DC4F9AE02/tlTdX1sVILMlvAnEv0yt88r7NCk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tlTdX1sVILMlvAnEv0yt88r7NCk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 16:45:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2283 (0x8eb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3B25 Validity Not Before: Apr 4 16:45:25 2025 GMT Not After : Apr 11 16:45:25 2025 GMT Subject: CN=67f00ca5-3747 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:5c:6d:71:6e:bf:39:f0:71:5d:03:e3:7b:d9: 41:6d:41:85:cc:bb:dc:71:0d:73:cb:de:2e:dc:3b: 07:11:23:9e:1b:fe:7b:cc:f8:3f:4b:22:94:56:df: c8:fb:32:c4:59:55:2d:a8:b7:c7:fd:b9:e3:56:b9: 2b:5c:4c:f7:27:1b:52:0c:2c:45:41:ea:54:53:50: f4:71:8f:69:19:bf:0b:96:2b:f3:32:a6:25:23:7f: 56:39:0a:f5:e6:a2:ed:d1:b4:04:9e:7d:8b:97:f4: 3a:23:dc:28:e4:81:03:4f:79:a9:cc:f5:6b:39:ab: d0:dd:ec:8c:01:84:f6:df:7a:bb:00:7b:e5:ed:22: f6:13:bd:b1:3f:1c:3f:2b:58:a3:05:64:bd:74:74: ad:67:0e:c5:51:a9:b8:8e:ef:a3:b4:f4:a9:f7:1d: e6:d5:ae:16:e0:ef:98:b2:00:21:4d:69:46:d1:d2: 43:2a:16:96:46:27:a0:ed:f0:17:e8:a0:ff:25:1a: 4d:3b:5e:5b:d8:d9:05:77:16:73:22:30:22:f2:77: 73:53:2d:06:cc:8e:e5:41:34:a1:37:c7:ad:ec:aa: 10:76:06:bc:c9:a4:13:74:08:ce:99:f7:cc:8a:4c: 30:1d:10:58:f9:e1:c2:58:bf:4c:68:ab:5e:73:46: 6a:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:46:D4:1E:30:40:27:8E:94:49:DE:77:0C:50:9E:3C:47:FA:B5:54 X509v3 Authority Key Identifier: keyid:B6:54:DD:5F:5B:15:20:B3:25:BC:09:C4:BF:4C:AD:F3:CA:FB:34:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3B25/7E892CC2F61511E7B830096DC4F9AE02/tlTdX1sVILMlvAnEv0yt88r7NCk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tlTdX1sVILMlvAnEv0yt88r7NCk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3B25/7E892CC2F61511E7B830096DC4F9AE02/tlTdX1sVILMlvAnEv0yt88r7NCk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:66:d7:79:62:47:1a:e0:36:a0:6d:9c:cd:70:7b:f1:00:aa: 26:c9:4a:4a:d8:5a:d5:84:18:f6:c8:41:a8:ad:10:22:62:ad: 70:0b:1e:14:32:aa:b4:d1:11:27:7b:82:79:2a:10:62:e8:ee: f6:93:6b:1a:ef:74:74:74:94:f9:63:f4:97:e2:74:8c:6d:57: 4b:7e:ed:ee:c1:59:27:04:6e:c6:d3:6f:fc:6a:17:61:18:92: ab:3a:a1:db:5b:d6:5e:47:86:da:4b:36:f5:46:49:97:39:b1: af:a1:df:6f:e9:bc:ce:51:66:9c:f6:c3:85:da:2b:55:31:5a: 1e:79:37:33:51:0f:5a:e2:9b:77:39:fb:fa:d6:f5:84:bb:68: c6:9f:22:21:95:28:7e:5a:b8:e4:7f:6d:b7:91:5e:21:56:48: cd:20:f5:a2:4d:d7:0b:fc:55:16:8b:76:28:71:47:21:7c:f3: a4:b2:72:5d:cc:59:b1:c9:26:56:c8:b0:27:41:b2:25:ed:ab: 3a:62:04:7c:de:ba:53:ec:4b:79:83:8b:6c:d0:f3:24:15:2a: 03:e8:3f:ad:0f:27:02:ce:51:0b:99:3a:d0:08:e2:d0:70:f1: f8:5e:1a:9d:2c:fb:b0:31:a2:98:85:6d:67:fc:84:70:7b:df: c6:46:9f:6d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCOswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTNCMjUxMTAvBgNVBAUTKEI2NTRERDVGNUIxNTIwQjMyNUJDMDlDNEJGNENBREYz Q0FGQjM0MjkwHhcNMjUwNDA0MTY0NTI1WhcNMjUwNDExMTY0NTI1WjAYMRYwFAYD VQQDEw02N2YwMGNhNS0zNzQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxVxtcW6/OfBxXQPje9lBbUGFzLvccQ1zy94u3DsHESOeG/57zPg/SyKUVt/I +zLEWVUtqLfH/bnjVrkrXEz3JxtSDCxFQepUU1D0cY9pGb8LlivzMqYlI39WOQr1 5qLt0bQEnn2Ll/Q6I9wo5IEDT3mpzPVrOavQ3eyMAYT233q7AHvl7SL2E72xPxw/ K1ijBWS9dHStZw7FUam4ju+jtPSp9x3m1a4W4O+YsgAhTWlG0dJDKhaWRieg7fAX 6KD/JRpNO15b2NkFdxZzIjAi8ndzUy0GzI7lQTShN8et7KoQdga8yaQTdAjOmffM ikwwHRBY+eHCWL9MaKtec0ZqCwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFClG1B4w QCeOlEnedwxQnjxH+rVUMB8GA1UdIwQYMBaAFLZU3V9bFSCzJbwJxL9MrfPK+zQp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFM0IyNS83RTg5MkNDMkY2 MTUxMUU3QjgzMDA5NkRDNEY5QUUwMi90bFRkWDFzVklMTWx2QW5FdjB5dDg4cjdO Q2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RsVGRYMXNWSUxNbHZBbkV2MHl0ODhyN05Day5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF M0IyNS83RTg5MkNDMkY2MTUxMUU3QjgzMDA5NkRDNEY5QUUwMi90bFRkWDFzVklM TWx2QW5FdjB5dDg4cjdOQ2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAjZtd5Ykca4DagbZzNcHvxAKomyUpK2FrVhBj2yEGorRAiYq1wCx4U Mqq00REne4J5KhBi6O72k2sa73R0dJT5Y/SX4nSMbVdLfu3uwVknBG7G02/8ahdh GJKrOqHbW9ZeR4baSzb1RkmXObGvod9v6bzOUWac9sOF2itVMVoeeTczUQ9a4pt3 Ofv61vWEu2jGnyIhlSh+Wrjkf223kV4hVkjNIPWiTdcL/FUWi3YocUchfPOksnJd zFmxySZWyLAnQbIl7as6YgR83rpT7Et5g4ts0PMkFSoD6D+tDycCzlELmTrQCOLQ cPH4XhqdLPuwMaKYhW1n/IRwe9/GRp9t -----END CERTIFICATE-----Generated at Fri Apr 4 21:52:02 2025 by rpki-client