$ rpki-client -vvf rpki.apnic.net/member_repository/A911E660/01C52A30D24311EF88C5BC11C4F9AE02/TLC5W0vcIzFPKD73OalqfGWMCmw.mft File: TLC5W0vcIzFPKD73OalqfGWMCmw.mft (raw, json) Hash identifier: cMZlaG9cePKMDJ1Yo13vyfmOrJV89LmpcWQYrrOU2FA= Subject key identifier: EA:72:E1:9B:6B:AB:75:B8:16:61:C3:E4:0F:6E:71:39:A3:F3:EC:93 Authority key identifier: 4C:B0:B9:5B:4B:DC:23:31:4F:28:3E:F7:39:A9:6A:7C:65:8C:0A:6C Certificate issuer: /CN=A911E660/serialNumber=4CB0B95B4BDC23314F283EF739A96A7C658C0A6C Certificate serial: 48 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TLC5W0vcIzFPKD73OalqfGWMCmw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911E660/01C52A30D24311EF88C5BC11C4F9AE02/TLC5W0vcIzFPKD73OalqfGWMCmw.mft Manifest number: 47 Signing time: Sat 31 May 2025 06:57:42 +0000 Manifest this update: Sat 31 May 2025 06:57:42 +0000 Manifest next update: Sat 07 Jun 2025 06:57:42 +0000 Files and hashes: 1: TLC5W0vcIzFPKD73OalqfGWMCmw.crl (hash: 2fpuHznnaCVxiyX5KWqD7TE9ZuDeaxwVcNNQ/m5gdfs=) 2: 4F39607ED24311EF919B6D12C4F9AE02.roa (hash: JjJCce1zF9qiD7rlQJmvV1gpbHE3mN8ttiQOSid+Fl4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911E660/01C52A30D24311EF88C5BC11C4F9AE02/TLC5W0vcIzFPKD73OalqfGWMCmw.crl rsync://rpki.apnic.net/member_repository/A911E660/01C52A30D24311EF88C5BC11C4F9AE02/TLC5W0vcIzFPKD73OalqfGWMCmw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TLC5W0vcIzFPKD73OalqfGWMCmw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 06:57:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72 (0x48) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911E660, serialNumber=4CB0B95B4BDC23314F283EF739A96A7C658C0A6C Validity Not Before: May 31 06:57:42 2025 GMT Not After : Jun 7 06:57:42 2025 GMT Subject: CN=683aa866-86db Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:b8:01:83:d8:95:e7:0f:10:3d:b6:89:67:a4: 71:c5:d9:bb:f6:ae:31:9b:a5:47:45:5c:25:52:50: 40:1c:85:dd:c5:62:79:03:0f:d2:fb:98:d2:10:1b: ce:47:4f:af:8c:bc:db:71:12:4b:0a:e7:33:14:ec: 80:df:d6:b2:09:b1:fc:b5:87:b9:5e:c7:f5:b0:01: 08:b0:36:d2:d4:1e:a7:bf:1d:52:4e:81:6f:55:7e: d3:ac:42:de:67:36:25:e4:be:24:f9:70:98:ef:c0: 40:9b:58:06:b5:3f:9b:98:06:4b:ee:fe:f9:ba:ee: 0b:74:54:95:e3:34:fe:6c:93:ea:ce:70:0c:ac:cc: 13:43:a5:97:ca:8f:1b:72:cb:ff:95:c5:e2:13:da: d3:4e:2c:5b:25:5d:1e:c2:28:2d:93:40:0f:eb:10: 14:c3:bb:35:6f:35:8f:5c:8c:08:b0:b9:2a:b5:fe: 9b:63:0b:1d:c1:98:85:b9:f6:48:9c:5e:6f:36:ee: 24:cc:ab:bc:ee:01:ac:63:29:2b:33:70:b8:ee:81: 99:8f:b9:9c:1b:45:e0:fa:71:3a:5a:d6:91:57:39: 47:95:7c:8c:e5:51:4c:ed:a9:eb:66:67:1b:01:09: 04:19:46:c4:62:87:fc:8e:f3:b4:d6:2d:44:17:07: e5:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:72:E1:9B:6B:AB:75:B8:16:61:C3:E4:0F:6E:71:39:A3:F3:EC:93 X509v3 Authority Key Identifier: keyid:4C:B0:B9:5B:4B:DC:23:31:4F:28:3E:F7:39:A9:6A:7C:65:8C:0A:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911E660/01C52A30D24311EF88C5BC11C4F9AE02/TLC5W0vcIzFPKD73OalqfGWMCmw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TLC5W0vcIzFPKD73OalqfGWMCmw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911E660/01C52A30D24311EF88C5BC11C4F9AE02/TLC5W0vcIzFPKD73OalqfGWMCmw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:57:40:23:b9:6b:1d:4c:03:03:06:46:5f:19:9d:83:8b:45: a4:29:dd:b2:92:dd:b8:fd:77:a3:63:5a:da:81:79:79:29:fe: a5:aa:fa:e6:83:45:39:0c:ab:71:65:70:3f:46:7b:61:46:14: 68:15:96:d2:5a:4b:4b:3e:10:2d:48:11:46:4f:9e:0d:74:d8: ad:8f:d2:88:28:82:2f:c7:6d:40:9f:85:f1:44:3e:b0:f9:46: 0f:a2:a6:a5:a1:47:cc:69:94:9e:06:c6:cd:5c:bc:57:d9:0c: 53:6f:c0:ab:75:5a:91:28:04:6f:f8:95:4d:86:8e:a9:2f:d1: 7e:fd:ba:57:e2:aa:7f:ba:38:75:db:64:fa:30:d4:43:a1:cb: 47:75:19:22:0d:aa:1b:1c:a8:c7:b8:08:cd:81:dd:9c:fe:f1: 85:a2:da:67:fa:b0:87:62:f2:40:7d:7d:39:8d:a3:73:9f:c6: 0e:b6:55:a8:7e:e0:43:8e:6e:31:fc:7a:33:84:02:ea:f9:d3: f4:b6:c2:69:1a:75:50:e2:a7:f7:d5:c6:6e:17:08:97:bf:c0: 37:21:64:3b:a2:de:7e:20:1c:3b:67:ca:35:3f:fd:a6:e1:b1: 54:28:74:a6:95:c7:ef:6b:a1:f6:6f:5b:3e:35:ec:85:b6:95: d1:d6:83:3f -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBSDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx RTY2MDExMC8GA1UEBRMoNENCMEI5NUI0QkRDMjMzMTRGMjgzRUY3MzlBOTZBN0M2 NThDMEE2QzAeFw0yNTA1MzEwNjU3NDJaFw0yNTA2MDcwNjU3NDJaMBgxFjAUBgNV BAMTDTY4M2FhODY2LTg2ZGIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC4uAGD2JXnDxA9tolnpHHF2bv2rjGbpUdFXCVSUEAchd3FYnkDD9L7mNIQG85H T6+MvNtxEksK5zMU7IDf1rIJsfy1h7lex/WwAQiwNtLUHqe/HVJOgW9VftOsQt5n NiXkviT5cJjvwECbWAa1P5uYBkvu/vm67gt0VJXjNP5sk+rOcAyszBNDpZfKjxty y/+VxeIT2tNOLFslXR7CKC2TQA/rEBTDuzVvNY9cjAiwuSq1/ptjCx3BmIW59kic Xm827iTMq7zuAaxjKSszcLjugZmPuZwbReD6cTpa1pFXOUeVfIzlUUztqetmZxsB CQQZRsRih/yO87TWLUQXB+WJAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU6nLhm2ur dbgWYcPkD25xOaPz7JMwHwYDVR0jBBgwFoAUTLC5W0vcIzFPKD73OalqfGWMCmww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFFNjYwLzAxQzUyQTMwRDI0 MzExRUY4OEM1QkMxMUM0RjlBRTAyL1RMQzVXMHZjSXpGUEtENzNPYWxxZkdXTUNt dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvVExDNVcwdmNJekZQS0Q3M09hbHFmR1dNQ213LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFF NjYwLzAxQzUyQTMwRDI0MzExRUY4OEM1QkMxMUM0RjlBRTAyL1RMQzVXMHZjSXpG UEtENzNPYWxxZkdXTUNtdy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAEBXQCO5ax1MAwMGRl8ZnYOLRaQp3bKS3bj9d6NjWtqBeXkp/qWq+uaD RTkMq3FlcD9Ge2FGFGgVltJaS0s+EC1IEUZPng102K2P0ogogi/HbUCfhfFEPrD5 Rg+ipqWhR8xplJ4Gxs1cvFfZDFNvwKt1WpEoBG/4lU2Gjqkv0X79ulfiqn+6OHXb ZPow1EOhy0d1GSINqhscqMe4CM2B3Zz+8YWi2mf6sIdi8kB9fTmNo3Ofxg62Vah+ 4EOObjH8ejOEAur50/S2wmkadVDip/fVxm4XCJe/wDchZDui3n4gHDtnyjU//abh sVQodKaVx+9rofZvWz417IW2ldHWgz8= -----END CERTIFICATE-----Generated at Sat May 31 16:44:56 2025 by rpki-client