$ rpki-client -vvf rpki.apnic.net/member_repository/A91466E8/D8388D34F3FC11EF926CE630C4F9AE02/TCISGt-uP1dSgBZRUcP9MOOq_QE.mft File: TCISGt-uP1dSgBZRUcP9MOOq_QE.mft (raw, json) Hash identifier: 9w6o/193DOvC8MARwmH5U5lFfpViSm3PLabhuayZZPY= Subject key identifier: 10:43:1A:4C:47:37:0C:B7:4C:58:AD:3C:28:39:DC:27:74:26:7D:34 Authority key identifier: 4C:22:12:1A:DF:AE:3F:57:52:80:16:51:51:C3:FD:30:E3:AA:FD:01 Certificate issuer: /CN=A91466E8/serialNumber=4C22121ADFAE3F575280165151C3FD30E3AAFD01 Certificate serial: 33 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TCISGt-uP1dSgBZRUcP9MOOq_QE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91466E8/D8388D34F3FC11EF926CE630C4F9AE02/TCISGt-uP1dSgBZRUcP9MOOq_QE.mft Manifest number: 32 Signing time: Sat 31 May 2025 07:12:34 +0000 Manifest this update: Sat 31 May 2025 07:12:34 +0000 Manifest next update: Sat 07 Jun 2025 07:12:34 +0000 Files and hashes: 1: TCISGt-uP1dSgBZRUcP9MOOq_QE.crl (hash: Z3PJzpcTJnYSWr98IVvDM+bkKmDBy6NZV4KHVkAUgSI=) 2: 02640B0CF97911EF99F9BE80C4F9AE02.roa (hash: cI8Rp+uDdJ361Bt2iDuipm5XRt6w/fm/O6/Pc4tHNDU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91466E8/D8388D34F3FC11EF926CE630C4F9AE02/TCISGt-uP1dSgBZRUcP9MOOq_QE.crl rsync://rpki.apnic.net/member_repository/A91466E8/D8388D34F3FC11EF926CE630C4F9AE02/TCISGt-uP1dSgBZRUcP9MOOq_QE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TCISGt-uP1dSgBZRUcP9MOOq_QE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 07:12:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51 (0x33) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91466E8, serialNumber=4C22121ADFAE3F575280165151C3FD30E3AAFD01 Validity Not Before: May 31 07:12:34 2025 GMT Not After : Jun 7 07:12:34 2025 GMT Subject: CN=683aabe2-0035 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:f3:b0:c6:7a:87:ff:52:53:21:53:3d:78:6a: f8:6e:be:35:79:05:b4:78:61:95:b7:3f:b1:f8:b9: eb:c7:18:e4:00:6b:45:93:2f:f9:e1:0e:2f:56:e7: 41:94:72:75:38:b1:4c:15:12:ce:ec:59:f1:27:21: ac:ac:3e:42:12:d3:8a:14:62:3a:3e:f1:1b:78:bc: 9a:c7:70:1e:30:cb:86:da:a4:55:b9:1f:c6:13:c1: fa:19:cf:43:55:28:69:43:0e:8e:97:70:f6:80:5f: 97:2c:bc:47:ef:9a:b2:da:ee:01:ce:b9:35:12:22: 32:cf:e1:ea:a9:6c:5b:af:7d:2d:01:ae:7c:1d:72: 2a:0c:92:2c:e4:26:8e:42:d4:ea:cb:2d:a3:0d:c5: a2:3e:1e:57:7e:a1:99:76:82:e9:75:07:11:68:f7: 62:8f:64:44:5f:9c:18:98:ba:a0:90:1d:f6:b4:50: 9a:39:e7:25:11:ce:19:de:62:15:de:13:11:3e:6b: 97:5e:3f:71:64:b8:7b:3b:0f:f4:0c:0a:1c:aa:40: ea:aa:2c:41:45:ff:ef:9c:fb:6f:26:f0:49:00:db: de:b3:fa:64:b4:76:f5:7e:84:dc:df:64:02:58:6a: 0e:4d:dd:18:ff:2d:e3:bf:d9:0b:66:8d:10:39:9c: 56:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:43:1A:4C:47:37:0C:B7:4C:58:AD:3C:28:39:DC:27:74:26:7D:34 X509v3 Authority Key Identifier: keyid:4C:22:12:1A:DF:AE:3F:57:52:80:16:51:51:C3:FD:30:E3:AA:FD:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91466E8/D8388D34F3FC11EF926CE630C4F9AE02/TCISGt-uP1dSgBZRUcP9MOOq_QE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TCISGt-uP1dSgBZRUcP9MOOq_QE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91466E8/D8388D34F3FC11EF926CE630C4F9AE02/TCISGt-uP1dSgBZRUcP9MOOq_QE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 14:6c:e0:6f:0f:97:3f:50:dd:c4:df:ac:a8:65:8f:90:56:d1: c5:e1:16:3e:b7:d9:1e:50:00:29:1f:d9:20:34:7c:d4:97:2a: 8f:66:86:91:fc:9d:6b:6a:df:f2:00:71:3b:70:11:47:27:8a: fe:b8:99:d4:50:d7:29:c1:75:ae:d0:62:a8:8b:86:5f:1c:fe: 73:a6:d3:25:6f:f6:e5:26:51:5f:ef:16:da:39:9d:41:8b:0f: 46:4c:1c:d2:ff:2a:db:59:d2:f2:0a:a9:04:41:45:72:cd:bc: 06:52:4e:11:dc:75:3b:3c:f9:3a:b0:6f:ec:4f:55:af:f3:2c: fa:58:1c:9a:e4:ee:cc:07:34:0e:37:d0:71:2b:bf:c2:6b:0c: ab:40:74:a6:88:dc:a4:24:c3:de:f2:c7:c0:f4:70:49:05:df: 17:86:10:cd:31:28:2b:9b:0d:03:ba:12:c2:9b:0a:35:52:b8: 15:f4:33:43:45:82:75:c4:ff:18:db:e6:23:49:08:cc:f5:2f: d0:8c:48:92:1d:4e:ba:d1:74:77:26:81:ae:5c:74:2a:3f:e9: 8a:2a:2c:26:56:a0:6e:08:33:31:f3:ae:13:13:27:a6:d6:a6: 37:0c:cb:b6:f1:41:40:06:d1:84:e3:64:b2:7b:0d:64:59:39: dc:4a:df:3a -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBMzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 NjZFODExMC8GA1UEBRMoNEMyMjEyMUFERkFFM0Y1NzUyODAxNjUxNTFDM0ZEMzBF M0FBRkQwMTAeFw0yNTA1MzEwNzEyMzRaFw0yNTA2MDcwNzEyMzRaMBgxFjAUBgNV BAMTDTY4M2FhYmUyLTAwMzUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDj87DGeof/UlMhUz14avhuvjV5BbR4YZW3P7H4uevHGOQAa0WTL/nhDi9W50GU cnU4sUwVEs7sWfEnIaysPkIS04oUYjo+8Rt4vJrHcB4wy4bapFW5H8YTwfoZz0NV KGlDDo6XcPaAX5csvEfvmrLa7gHOuTUSIjLP4eqpbFuvfS0BrnwdcioMkizkJo5C 1OrLLaMNxaI+Hld+oZl2gul1BxFo92KPZERfnBiYuqCQHfa0UJo55yURzhneYhXe ExE+a5deP3FkuHs7D/QMChyqQOqqLEFF/++c+28m8EkA296z+mS0dvV+hNzfZAJY ag5N3Rj/LeO/2QtmjRA5nFb/AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUEEMaTEc3 DLdMWK08KDncJ3QmfTQwHwYDVR0jBBgwFoAUTCISGt+uP1dSgBZRUcP9MOOq/QEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ2NkU4L0Q4Mzg4RDM0RjNG QzExRUY5MjZDRTYzMEM0RjlBRTAyL1RDSVNHdC11UDFkU2dCWlJVY1A5TU9PcV9R RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvVENJU0d0LXVQMWRTZ0JaUlVjUDlNT09xX1FFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ2 NkU4L0Q4Mzg4RDM0RjNGQzExRUY5MjZDRTYzMEM0RjlBRTAyL1RDSVNHdC11UDFk U2dCWlJVY1A5TU9PcV9RRS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABRs4G8Plz9Q3cTfrKhlj5BW0cXhFj632R5QACkf2SA0fNSXKo9mhpH8 nWtq3/IAcTtwEUcniv64mdRQ1ynBda7QYqiLhl8c/nOm0yVv9uUmUV/vFto5nUGL D0ZMHNL/KttZ0vIKqQRBRXLNvAZSThHcdTs8+Tqwb+xPVa/zLPpYHJrk7swHNA43 0HErv8JrDKtAdKaI3KQkw97yx8D0cEkF3xeGEM0xKCubDQO6EsKbCjVSuBX0M0NF gnXE/xjb5iNJCMz1L9CMSJIdTrrRdHcmga5cdCo/6YoqLCZWoG4IMzHzrhMTJ6bW pjcMy7bxQUAG0YTjZLJ7DWRZOdxK3zo= -----END CERTIFICATE-----Generated at Sat May 31 17:18:46 2025 by rpki-client