$ rpki-client -vvf rpki.apnic.net/member_repository/A91342C5/16637C2EA4E911ECAF3FB152C4F9AE02/TSeJUeK9itKFuUCo6p5X43lxHms.mft File: TSeJUeK9itKFuUCo6p5X43lxHms.mft (raw, json) Hash identifier: TgZcS7KOVdhNjNI2xRBYEKCRMwbrssYWD2udfQZTYig= Subject key identifier: 82:C6:28:49:3F:5A:AD:CE:D0:33:68:25:FA:89:FC:4E:3F:5C:AF:F8 Authority key identifier: 4D:27:89:51:E2:BD:8A:D2:85:B9:40:A8:EA:9E:57:E3:79:71:1E:6B Certificate issuer: /CN=A91342C5/serialNumber=4D278951E2BD8AD285B940A8EA9E57E379711E6B Certificate serial: 0375 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/TSeJUeK9itKFuUCo6p5X43lxHms.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91342C5/16637C2EA4E911ECAF3FB152C4F9AE02/TSeJUeK9itKFuUCo6p5X43lxHms.mft Manifest number: 0370 Signing time: Fri 11 Apr 2025 00:54:11 +0000 Manifest this update: Fri 11 Apr 2025 00:54:10 +0000 Manifest next update: Fri 18 Apr 2025 00:54:10 +0000 Files and hashes: 1: TSeJUeK9itKFuUCo6p5X43lxHms.crl (hash: I9Zr4BY/+G/TdfyCYYGLt4TN1JdL1Qg1K3BYaMWrTxI=) 2: E8E194B8A5CC11EC85A86A1FC4F9AE02.roa (hash: ypQGr8fcGrxnVWfQ2RrFsZZ4R7tmsDgEITmj6bx0ScA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91342C5/16637C2EA4E911ECAF3FB152C4F9AE02/TSeJUeK9itKFuUCo6p5X43lxHms.crl rsync://rpki.apnic.net/member_repository/A91342C5/16637C2EA4E911ECAF3FB152C4F9AE02/TSeJUeK9itKFuUCo6p5X43lxHms.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/TSeJUeK9itKFuUCo6p5X43lxHms.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 18 Apr 2025 00:54:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 885 (0x375) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91342C5, serialNumber=4D278951E2BD8AD285B940A8EA9E57E379711E6B Validity Not Before: Apr 11 00:54:10 2025 GMT Not After : Apr 18 00:54:10 2025 GMT Subject: CN=67f86833-4346 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:d2:a3:4b:9a:9a:e5:e3:ad:b2:f0:ee:69:86: 52:5b:12:70:04:ff:5d:03:61:88:a9:bc:83:e3:7d: 63:50:c5:29:47:65:4a:bb:21:10:9c:3b:bf:bb:e9: c7:c7:af:74:90:08:c6:0e:2f:a6:91:32:49:8a:a1: b0:00:8e:a5:97:1e:0f:69:df:91:25:a1:e6:af:f5: 9e:73:23:ae:fd:ac:a1:29:c3:94:d5:74:b2:95:79: 44:b7:65:f2:31:04:a8:3c:b2:70:b1:2b:43:b9:d0: d5:67:d8:00:35:60:4e:01:ae:dc:82:ba:5b:11:10: 90:3f:60:d5:60:0a:cb:c6:05:a3:7f:72:7f:71:ee: ac:52:59:69:6d:d9:43:60:c9:43:bb:19:4e:31:91: a5:69:0c:89:b2:6a:16:c1:a0:43:23:d0:c7:7a:71: 47:a4:45:0a:50:89:37:73:68:9e:c1:d6:10:46:90: 99:91:28:a7:b1:75:94:5d:65:48:a4:41:71:e7:9e: 90:e6:b5:42:70:f1:61:2d:49:52:c6:9e:82:00:29: 6e:ef:eb:a6:75:bf:29:35:07:a4:9b:87:aa:05:04: 44:55:e6:76:2d:1d:c5:db:e3:b5:83:56:cc:e9:7b: 95:a6:9f:aa:18:7e:30:6c:3b:14:e0:d4:4a:cb:35: b0:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:C6:28:49:3F:5A:AD:CE:D0:33:68:25:FA:89:FC:4E:3F:5C:AF:F8 X509v3 Authority Key Identifier: keyid:4D:27:89:51:E2:BD:8A:D2:85:B9:40:A8:EA:9E:57:E3:79:71:1E:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91342C5/16637C2EA4E911ECAF3FB152C4F9AE02/TSeJUeK9itKFuUCo6p5X43lxHms.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/TSeJUeK9itKFuUCo6p5X43lxHms.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91342C5/16637C2EA4E911ECAF3FB152C4F9AE02/TSeJUeK9itKFuUCo6p5X43lxHms.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1b:a1:2f:6d:6b:69:bd:69:5f:ce:56:5f:09:9b:2d:55:a2:af: ee:7f:3d:b8:d0:7e:ae:ae:98:f9:c7:43:bc:7a:94:d5:ff:9f: e2:2e:c2:47:a4:cc:60:ce:5c:1c:6d:59:c7:bf:fe:3c:0f:bf: 28:ca:55:7b:fc:c1:18:35:80:7e:2f:a3:88:5a:9e:34:2f:84: 23:47:d8:87:6a:47:71:e0:07:1e:6d:0f:ea:ee:43:06:6f:f9: 0a:82:e5:95:5b:40:db:21:b2:af:eb:37:ed:9b:20:2c:90:14: ca:a4:50:94:cf:45:f4:7a:2c:5c:50:e6:c0:b5:e6:d2:5b:c3: 7a:92:88:f1:0d:2f:30:e8:6f:82:81:43:83:4a:8e:2d:a3:ce: 5c:ac:5d:e0:ac:08:c6:69:74:69:aa:78:02:3d:38:8d:ee:d3: 45:69:ee:af:36:ac:11:cb:c0:c7:f2:44:d1:b8:65:16:c9:6b: 07:b7:6b:bb:8b:c9:55:84:12:38:e3:4a:c3:02:8a:74:3e:21: 7c:66:e6:f0:73:6c:fa:25:63:1b:a2:ef:4f:d6:44:25:32:5e: d8:42:0b:b9:41:74:57:c5:d7:8c:64:cb:fd:1c:f0:12:6d:30: 37:62:44:d0:b2:40:60:d1:e9:f6:59:92:9b:81:db:f5:1b:39: 6c:8d:ac:bd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA3UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzQyQzUxMTAvBgNVBAUTKDREMjc4OTUxRTJCRDhBRDI4NUI5NDBBOEVBOUU1N0Uz Nzk3MTFFNkIwHhcNMjUwNDExMDA1NDEwWhcNMjUwNDE4MDA1NDEwWjAYMRYwFAYD VQQDEw02N2Y4NjgzMy00MzQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5dKjS5qa5eOtsvDuaYZSWxJwBP9dA2GIqbyD431jUMUpR2VKuyEQnDu/u+nH x690kAjGDi+mkTJJiqGwAI6llx4Pad+RJaHmr/WecyOu/ayhKcOU1XSylXlEt2Xy MQSoPLJwsStDudDVZ9gANWBOAa7cgrpbERCQP2DVYArLxgWjf3J/ce6sUllpbdlD YMlDuxlOMZGlaQyJsmoWwaBDI9DHenFHpEUKUIk3c2iewdYQRpCZkSinsXWUXWVI pEFx556Q5rVCcPFhLUlSxp6CAClu7+umdb8pNQekm4eqBQREVeZ2LR3F2+O1g1bM 6XuVpp+qGH4wbDsU4NRKyzWwZQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFILGKEk/ Wq3O0DNoJfqJ/E4/XK/4MB8GA1UdIwQYMBaAFE0niVHivYrShblAqOqeV+N5cR5r MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNDJDNS8xNjYzN0MyRUE0 RTkxMUVDQUYzRkIxNTJDNEY5QUUwMi9UU2VKVWVLOWl0S0Z1VUNvNnA1WDQzbHhI bXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL1RTZUpVZUs5aXRLRnVVQ282cDVYNDNseEhtcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NDJDNS8xNjYzN0MyRUE0RTkxMUVDQUYzRkIxNTJDNEY5QUUwMi9UU2VKVWVLOWl0 S0Z1VUNvNnA1WDQzbHhIbXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAboS9ta2m9aV/OVl8Jmy1Voq/ufz240H6urpj5x0O8epTV/5/iLsJH pMxgzlwcbVnHv/48D78oylV7/MEYNYB+L6OIWp40L4QjR9iHakdx4AcebQ/q7kMG b/kKguWVW0DbIbKv6zftmyAskBTKpFCUz0X0eixcUObAtebSW8N6kojxDS8w6G+C gUODSo4to85crF3grAjGaXRpqngCPTiN7tNFae6vNqwRy8DH8kTRuGUWyWsHt2u7 i8lVhBI440rDAop0PiF8Zubwc2z6JWMbou9P1kQlMl7YQgu5QXRXxdeMZMv9HPAS bTA3YkTQskBg0en2WZKbgdv1Gzlsjay9 -----END CERTIFICATE-----Generated at Sat Apr 12 18:32:11 2025 by rpki-client