$ rpki-client -vvf rpki.apnic.net/member_repository/A912D70A/41ABD29E1B8611EA9C9AF243C4F9AE02/7TMIIP-r0KsoQbqT6QLqaCmS2qk.mft File: 7TMIIP-r0KsoQbqT6QLqaCmS2qk.mft (raw, json) Hash identifier: CGREVzibWUio7SFB5iyPKUggdULVCtQktF0XdP2pmJQ= Subject key identifier: B5:C6:19:3B:30:23:B7:FB:9E:32:62:86:EB:92:F5:20:88:4E:52:D3 Authority key identifier: ED:33:08:20:FF:AB:D0:AB:28:41:BA:93:E9:02:EA:68:29:92:DA:A9 Certificate issuer: /CN=A912D70A/serialNumber=ED330820FFABD0AB2841BA93E902EA682992DAA9 Certificate serial: 0BE9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7TMIIP-r0KsoQbqT6QLqaCmS2qk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912D70A/41ABD29E1B8611EA9C9AF243C4F9AE02/7TMIIP-r0KsoQbqT6QLqaCmS2qk.mft Manifest number: 0BD2 Signing time: Fri 30 May 2025 19:02:45 +0000 Manifest this update: Fri 30 May 2025 19:02:44 +0000 Manifest next update: Fri 06 Jun 2025 19:02:44 +0000 Files and hashes: 1: 7TMIIP-r0KsoQbqT6QLqaCmS2qk.crl (hash: dLo2azZ9JNxeAgJ3PPIcS3tv8ERQqtzjJDAmbRKNeTU=) 2: 61EE7C6C281211EA881CC32DC4F9AE02.roa (hash: cpZDWElJkWHfyDoaFzzaYvQgJmBavPZ5GGxiNrY4lcE=) 3: 57A5ACF20FE911EBB5AE5524C4F9AE02.roa (hash: Ia7YlzfnZVrXXaoAHWfWApYxD2x/ixMau7CG/ipkyT8=) 4: 627B1438281211EA881CC32DC4F9AE02.roa (hash: uO9dKN19ATuVxFqwADIfuDOdZhJHHOsW2uFtJZD9uM4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912D70A/41ABD29E1B8611EA9C9AF243C4F9AE02/7TMIIP-r0KsoQbqT6QLqaCmS2qk.crl rsync://rpki.apnic.net/member_repository/A912D70A/41ABD29E1B8611EA9C9AF243C4F9AE02/7TMIIP-r0KsoQbqT6QLqaCmS2qk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7TMIIP-r0KsoQbqT6QLqaCmS2qk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 19:02:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3049 (0xbe9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912D70A, serialNumber=ED330820FFABD0AB2841BA93E902EA682992DAA9 Validity Not Before: May 30 19:02:44 2025 GMT Not After : Jun 6 19:02:44 2025 GMT Subject: CN=683a00d5-ca09 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:75:1d:04:15:13:cc:06:47:81:6b:bd:6f:81: 56:13:28:4b:69:6a:56:e0:1b:ee:4f:48:28:5c:69: 86:71:7a:e9:6f:9a:fe:8b:e1:b0:94:6b:7d:9b:48: c6:e9:4f:75:44:d4:4f:e3:98:4d:cd:91:42:58:2d: 32:d9:7d:4a:41:88:9f:75:de:60:e0:d8:41:76:8d: 3e:50:82:81:50:79:cd:a2:bd:ed:6a:b4:f2:73:56: 3e:15:f4:4a:76:f9:69:67:2a:23:3a:eb:de:ad:99: 3d:cb:7c:06:03:6a:a6:99:fb:2f:39:18:9e:1d:7b: 55:60:9a:e3:1b:e3:e3:be:b2:2e:24:ac:0d:31:ae: 58:7e:58:af:83:34:bb:90:cb:91:9a:45:69:81:25: b3:2d:c8:6d:83:95:20:2b:89:cf:8f:22:90:5f:81: 6c:5a:8e:29:03:44:1d:e6:c5:bb:55:52:da:a4:1d: cc:26:3a:e6:33:c5:cf:35:7a:ee:4f:cf:e6:a9:d5: b9:1b:94:86:95:71:9b:7c:b7:90:29:52:6e:70:4d: 03:34:f0:2c:27:c9:bc:06:ef:7a:e7:ef:9e:33:79: 38:63:03:31:b7:9d:77:60:67:51:5e:23:de:e2:70: 80:29:1a:e1:a5:62:06:57:51:b1:17:75:28:96:bb: 87:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:C6:19:3B:30:23:B7:FB:9E:32:62:86:EB:92:F5:20:88:4E:52:D3 X509v3 Authority Key Identifier: keyid:ED:33:08:20:FF:AB:D0:AB:28:41:BA:93:E9:02:EA:68:29:92:DA:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912D70A/41ABD29E1B8611EA9C9AF243C4F9AE02/7TMIIP-r0KsoQbqT6QLqaCmS2qk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7TMIIP-r0KsoQbqT6QLqaCmS2qk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912D70A/41ABD29E1B8611EA9C9AF243C4F9AE02/7TMIIP-r0KsoQbqT6QLqaCmS2qk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 41:d3:f7:56:84:82:7e:b3:82:cb:63:59:10:ff:5e:18:a5:91: 85:2b:4f:18:cb:e4:be:d3:52:ee:88:8b:11:8c:3b:97:32:6c: ea:b2:68:19:38:4d:18:63:e3:1f:98:f3:8a:c7:0a:9e:be:2b: 5a:2a:27:c1:6b:cd:b2:d0:b9:b1:a4:39:16:88:fe:37:3c:19: 17:30:cb:a1:0c:38:0d:9e:3d:f9:01:ac:4f:2a:64:ca:ac:4e: bc:96:7d:2d:32:72:8e:02:05:58:2c:72:ce:35:cb:44:1d:3c: 06:0f:27:3e:5f:e0:05:66:62:cd:dd:21:03:4a:4a:2e:e6:31: de:7e:d8:81:cd:72:77:24:ec:1c:aa:57:84:44:be:90:45:25: 7a:60:e0:14:e1:04:d8:6a:d8:f9:36:a7:29:e3:f8:7a:29:2d: b5:45:29:55:b2:75:d0:4c:68:d6:34:dc:98:03:1d:b4:8a:fc: ae:33:e2:13:00:b2:ad:d6:8f:e3:ac:9c:14:b0:ab:78:53:40: 40:ae:d4:db:58:f8:92:dd:2a:63:b5:15:67:35:f4:84:56:47: d9:e4:38:98:2d:51:84:49:f5:a9:ab:92:09:94:ba:bb:4a:e5: 2c:33:8f:db:b9:71:71:4d:05:1b:4f:8a:b3:2a:5e:7b:74:cc: c7:f7:39:84 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC+kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkQ3MEExMTAvBgNVBAUTKEVEMzMwODIwRkZBQkQwQUIyODQxQkE5M0U5MDJFQTY4 Mjk5MkRBQTkwHhcNMjUwNTMwMTkwMjQ0WhcNMjUwNjA2MTkwMjQ0WjAYMRYwFAYD VQQDEw02ODNhMDBkNS1jYTA5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAknUdBBUTzAZHgWu9b4FWEyhLaWpW4BvuT0goXGmGcXrpb5r+i+GwlGt9m0jG 6U91RNRP45hNzZFCWC0y2X1KQYifdd5g4NhBdo0+UIKBUHnNor3tarTyc1Y+FfRK dvlpZyojOuverZk9y3wGA2qmmfsvORieHXtVYJrjG+PjvrIuJKwNMa5YflivgzS7 kMuRmkVpgSWzLchtg5UgK4nPjyKQX4FsWo4pA0Qd5sW7VVLapB3MJjrmM8XPNXru T8/mqdW5G5SGlXGbfLeQKVJucE0DNPAsJ8m8Bu965++eM3k4YwMxt513YGdRXiPe 4nCAKRrhpWIGV1GxF3UolruH/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLXGGTsw I7f7njJihuuS9SCITlLTMB8GA1UdIwQYMBaAFO0zCCD/q9CrKEG6k+kC6mgpktqp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRDcwQS80MUFCRDI5RTFC ODYxMUVBOUM5QUYyNDNDNEY5QUUwMi83VE1JSVAtcjBLc29RYnFUNlFMcWFDbVMy cWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdUTUlJUC1yMEtzb1FicVQ2UUxxYUNtUzJxay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RDcwQS80MUFCRDI5RTFCODYxMUVBOUM5QUYyNDNDNEY5QUUwMi83VE1JSVAtcjBL c29RYnFUNlFMcWFDbVMycWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBB0/dWhIJ+s4LLY1kQ/14YpZGFK08Yy+S+01LuiIsRjDuXMmzqsmgZ OE0YY+MfmPOKxwqevitaKifBa82y0LmxpDkWiP43PBkXMMuhDDgNnj35AaxPKmTK rE68ln0tMnKOAgVYLHLONctEHTwGDyc+X+AFZmLN3SEDSkou5jHeftiBzXJ3JOwc qleERL6QRSV6YOAU4QTYatj5Nqcp4/h6KS21RSlVsnXQTGjWNNyYAx20ivyuM+IT ALKt1o/jrJwUsKt4U0BArtTbWPiS3SpjtRVnNfSEVkfZ5DiYLVGESfWpq5IJlLq7 SuUsM4/buXFxTQUbT4qzKl57dMzH9zmE -----END CERTIFICATE-----Generated at Sat May 31 17:16:22 2025 by rpki-client