$ rpki-client -vvf rpki.apnic.net/member_repository/A91178F4/BF0A1E9AF0B611EDA882E628C4F9AE02/tIPaBfgQj61WuWetrdJRxslpwlI.mft File: tIPaBfgQj61WuWetrdJRxslpwlI.mft (raw, json) Hash identifier: QqTdC9183b8zdi169DQERHL/28DuSGHjpjDIuboQdqg= Subject key identifier: 74:B2:8F:49:B6:5A:66:38:A1:91:19:CB:47:B8:9B:7A:25:01:4B:01 Authority key identifier: B4:83:DA:05:F8:10:8F:AD:56:B9:67:AD:AD:D2:51:C6:C9:69:C2:52 Certificate issuer: /CN=A91178F4/serialNumber=B483DA05F8108FAD56B967ADADD251C6C969C252 Certificate serial: 0186 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tIPaBfgQj61WuWetrdJRxslpwlI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91178F4/BF0A1E9AF0B611EDA882E628C4F9AE02/tIPaBfgQj61WuWetrdJRxslpwlI.mft Manifest number: 0186 Signing time: Mon 02 Jun 2025 19:03:40 +0000 Manifest this update: Mon 02 Jun 2025 19:03:40 +0000 Manifest next update: Mon 09 Jun 2025 19:03:40 +0000 Files and hashes: 1: tIPaBfgQj61WuWetrdJRxslpwlI.crl (hash: w5HjSTKJqtCYlkyWtuCGshykq0KEw9b3LyLIC75v4Qg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91178F4/BF0A1E9AF0B611EDA882E628C4F9AE02/tIPaBfgQj61WuWetrdJRxslpwlI.crl rsync://rpki.apnic.net/member_repository/A91178F4/BF0A1E9AF0B611EDA882E628C4F9AE02/tIPaBfgQj61WuWetrdJRxslpwlI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tIPaBfgQj61WuWetrdJRxslpwlI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 19:03:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 390 (0x186) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91178F4, serialNumber=B483DA05F8108FAD56B967ADADD251C6C969C252 Validity Not Before: Jun 2 19:03:40 2025 GMT Not After : Jun 9 19:03:40 2025 GMT Subject: CN=683df58c-9fdc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:9e:f1:57:1b:3a:0b:d6:81:a0:1c:16:0a:9e: 32:2c:7f:7f:8b:c7:0d:a0:df:f4:dd:6d:1e:40:57: 70:1f:ae:3d:1f:24:07:52:3f:fd:f8:fb:92:0c:8c: 6f:71:34:50:49:c5:e3:c1:63:b5:9e:21:78:b1:91: f7:c1:7f:b8:a3:73:77:ea:60:45:53:e0:ce:ec:be: 84:21:ac:d3:47:72:f6:25:eb:a6:d8:53:6c:87:50: 77:58:57:3b:f5:55:56:34:4a:62:c3:f4:8c:ad:8f: a8:2e:c5:89:06:b5:d9:02:50:77:89:11:cd:f2:38: ed:0f:8e:33:5c:4f:e5:f7:09:d3:b3:60:42:2a:5a: 82:80:89:f6:34:86:7b:dd:eb:f7:fe:de:a1:f1:f2: c5:b4:01:03:30:ba:02:80:b8:be:18:40:43:2c:46: 7c:9c:0b:44:72:93:2f:c7:22:3f:93:e6:b2:c3:1d: 57:bd:d7:8b:1c:11:9f:31:8c:48:9d:79:97:ef:a6: 9a:bd:de:f3:1c:b9:4a:c7:f4:a6:66:95:9f:87:f5: aa:76:f2:22:b2:29:7e:f8:7d:18:30:1a:73:eb:7a: eb:61:b1:70:a9:88:ed:45:1c:80:27:93:99:7b:23: 60:de:02:03:81:0a:c5:06:77:38:13:a4:70:e4:ca: 52:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:B2:8F:49:B6:5A:66:38:A1:91:19:CB:47:B8:9B:7A:25:01:4B:01 X509v3 Authority Key Identifier: keyid:B4:83:DA:05:F8:10:8F:AD:56:B9:67:AD:AD:D2:51:C6:C9:69:C2:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91178F4/BF0A1E9AF0B611EDA882E628C4F9AE02/tIPaBfgQj61WuWetrdJRxslpwlI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tIPaBfgQj61WuWetrdJRxslpwlI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91178F4/BF0A1E9AF0B611EDA882E628C4F9AE02/tIPaBfgQj61WuWetrdJRxslpwlI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 71:9a:be:f1:d1:9c:41:06:2d:78:a5:88:25:bb:5e:e6:67:cc: 2d:98:6a:d5:f3:b2:fc:53:b8:0b:bb:2e:71:e4:19:49:a8:aa: f4:6d:59:f5:36:d7:47:b2:3b:95:b6:ac:b6:76:ed:95:52:5c: cf:5a:c7:dc:54:d7:1d:26:b1:65:7d:20:b8:ff:48:82:c6:65: fe:e1:9e:aa:1f:61:92:4a:41:77:78:04:f9:74:ad:2e:e7:df: cf:1d:15:9a:37:10:b3:a4:a7:5b:45:a4:fb:56:8c:73:52:e7: 93:c1:67:3c:11:6e:79:ce:41:f4:3b:5d:bd:84:be:1b:59:16: e2:f5:29:3b:5b:01:50:6e:4a:6f:bd:13:1f:3a:42:fe:b3:aa: 7f:27:48:b3:ec:f9:ea:65:32:db:49:68:4e:90:38:be:69:83: 50:88:ae:30:dc:5e:1f:01:31:73:cd:86:b6:34:07:7e:c1:46: 4e:bd:75:af:27:f0:a6:2b:74:ac:cb:14:52:68:c8:0c:89:81: 86:17:1e:3c:f9:18:47:06:e3:54:74:a7:7d:6f:eb:46:b0:fb: 16:4b:81:1f:38:e9:5d:7d:51:10:65:cf:74:a0:ce:a8:59:5a: 02:f9:ad:5b:8c:88:ca:69:44:40:16:93:10:b6:d6:7f:7c:75: 3a:e4:eb:2b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAYYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTc4RjQxMTAvBgNVBAUTKEI0ODNEQTA1RjgxMDhGQUQ1NkI5NjdBREFERDI1MUM2 Qzk2OUMyNTIwHhcNMjUwNjAyMTkwMzQwWhcNMjUwNjA5MTkwMzQwWjAYMRYwFAYD VQQDEw02ODNkZjU4Yy05ZmRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyZ7xVxs6C9aBoBwWCp4yLH9/i8cNoN/03W0eQFdwH649HyQHUj/9+PuSDIxv cTRQScXjwWO1niF4sZH3wX+4o3N36mBFU+DO7L6EIazTR3L2Jeum2FNsh1B3WFc7 9VVWNEpiw/SMrY+oLsWJBrXZAlB3iRHN8jjtD44zXE/l9wnTs2BCKlqCgIn2NIZ7 3ev3/t6h8fLFtAEDMLoCgLi+GEBDLEZ8nAtEcpMvxyI/k+aywx1XvdeLHBGfMYxI nXmX76aavd7zHLlKx/SmZpWfh/WqdvIisil++H0YMBpz63rrYbFwqYjtRRyAJ5OZ eyNg3gIDgQrFBnc4E6Rw5MpSyQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHSyj0m2 WmY4oZEZy0e4m3olAUsBMB8GA1UdIwQYMBaAFLSD2gX4EI+tVrlnra3SUcbJacJS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNzhGNC9CRjBBMUU5QUYw QjYxMUVEQTg4MkU2MjhDNEY5QUUwMi90SVBhQmZnUWo2MVd1V2V0cmRKUnhzbHB3 bEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3RJUGFCZmdRajYxV3VXZXRyZEpSeHNscHdsSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NzhGNC9CRjBBMUU5QUYwQjYxMUVEQTg4MkU2MjhDNEY5QUUwMi90SVBhQmZnUWo2 MVd1V2V0cmRKUnhzbHB3bEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBxmr7x0ZxBBi14pYglu17mZ8wtmGrV87L8U7gLuy5x5BlJqKr0bVn1 NtdHsjuVtqy2du2VUlzPWsfcVNcdJrFlfSC4/0iCxmX+4Z6qH2GSSkF3eAT5dK0u 59/PHRWaNxCzpKdbRaT7VoxzUueTwWc8EW55zkH0O129hL4bWRbi9Sk7WwFQbkpv vRMfOkL+s6p/J0iz7PnqZTLbSWhOkDi+aYNQiK4w3F4fATFzzYa2NAd+wUZOvXWv J/CmK3SsyxRSaMgMiYGGFx48+RhHBuNUdKd9b+tGsPsWS4EfOOldfVEQZc90oM6o WVoC+a1bjIjKaURAFpMQttZ/fHU65Osr -----END CERTIFICATE-----Generated at Tue Jun 3 23:53:48 2025 by rpki-client