$ rpki-client -vvf rpki.apnic.net/member_repository/A914D271/2814F0DE11B111EE9047BF18C4F9AE02/TO7ubTZjwT_YLpMdrGnxcEb8mbM.mft File: TO7ubTZjwT_YLpMdrGnxcEb8mbM.mft (raw, json) Hash identifier: 8b0t2fCWwzKdSHAHvxOPQnhGEoP/oLFtIpTBeN7zabM= Subject key identifier: DD:61:92:4C:72:B6:DD:A1:DF:1A:36:FD:E1:E9:6A:46:44:00:03:11 Authority key identifier: 4C:EE:EE:6D:36:63:C1:3F:D8:2E:93:1D:AC:69:F1:70:46:FC:99:B3 Certificate issuer: /CN=A914D271/serialNumber=4CEEEE6D3663C13FD82E931DAC69F17046FC99B3 Certificate serial: 0171 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TO7ubTZjwT_YLpMdrGnxcEb8mbM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914D271/2814F0DE11B111EE9047BF18C4F9AE02/TO7ubTZjwT_YLpMdrGnxcEb8mbM.mft Manifest number: 016D Signing time: Sat 31 May 2025 03:33:07 +0000 Manifest this update: Sat 31 May 2025 03:33:07 +0000 Manifest next update: Sat 07 Jun 2025 03:33:07 +0000 Files and hashes: 1: TO7ubTZjwT_YLpMdrGnxcEb8mbM.crl (hash: /LfMw81ilSKy2ToIoDbiBSjJ4QDW9GCJDiBul1Up3S0=) 2: 5EAB725014A211EEA889E832C4F9AE02.roa (hash: mX0oS42d4Afnuz1c6BL0lN1MWESAc87z/AqUedcAt4c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914D271/2814F0DE11B111EE9047BF18C4F9AE02/TO7ubTZjwT_YLpMdrGnxcEb8mbM.crl rsync://rpki.apnic.net/member_repository/A914D271/2814F0DE11B111EE9047BF18C4F9AE02/TO7ubTZjwT_YLpMdrGnxcEb8mbM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TO7ubTZjwT_YLpMdrGnxcEb8mbM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 03:33:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 369 (0x171) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914D271, serialNumber=4CEEEE6D3663C13FD82E931DAC69F17046FC99B3 Validity Not Before: May 31 03:33:07 2025 GMT Not After : Jun 7 03:33:07 2025 GMT Subject: CN=683a7873-924b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:c6:28:e0:8f:7f:7c:de:6c:29:8f:f5:ff:91: b5:01:30:e3:99:85:13:45:0b:e5:54:32:a9:05:2a: 24:13:35:b7:47:5e:40:5f:f1:f5:0c:01:b1:51:c2: 10:7f:db:df:91:e6:71:8a:32:c3:45:2c:90:ae:77: 74:c6:cd:8d:d5:10:4a:e3:4c:63:a7:7f:86:00:db: d9:df:ed:a8:7a:23:e0:b6:68:63:f6:e5:ac:01:54: 2e:57:e0:58:dc:1c:0a:76:7e:60:7e:69:a1:58:5c: 8d:01:8b:ef:16:97:06:5b:79:db:0f:b9:18:01:e8: 84:9d:53:ff:bf:9b:9f:bd:61:01:10:79:96:26:c6: 69:bf:fb:cf:22:64:70:84:f5:f4:cf:f2:cd:34:26: 40:9d:d2:05:1b:42:24:0c:99:06:d3:8d:e3:8c:41: 1c:f1:2b:00:55:96:40:9a:f3:6b:21:b1:d1:d9:89: 43:b0:0e:ef:36:0f:22:77:76:06:92:2f:c0:8a:7d: 70:a1:e1:d7:92:e3:30:8d:87:95:1c:c8:77:02:56: 7c:8b:e1:dd:7f:a4:72:31:a0:8f:6a:24:d4:24:f2: 71:bf:a3:a5:d0:a5:c8:39:3e:dc:d6:b3:29:ba:73: 29:dc:e9:7e:04:01:db:5e:35:b3:b9:f0:6d:7a:80: 3a:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:61:92:4C:72:B6:DD:A1:DF:1A:36:FD:E1:E9:6A:46:44:00:03:11 X509v3 Authority Key Identifier: keyid:4C:EE:EE:6D:36:63:C1:3F:D8:2E:93:1D:AC:69:F1:70:46:FC:99:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914D271/2814F0DE11B111EE9047BF18C4F9AE02/TO7ubTZjwT_YLpMdrGnxcEb8mbM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TO7ubTZjwT_YLpMdrGnxcEb8mbM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914D271/2814F0DE11B111EE9047BF18C4F9AE02/TO7ubTZjwT_YLpMdrGnxcEb8mbM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3d:d1:b7:dd:73:74:39:65:3e:35:02:57:9a:69:cd:d9:e9:d8: 4e:9e:1d:2c:28:fb:e2:a5:f3:c8:c0:53:9a:6b:2b:6a:5b:3a: be:5b:87:d2:73:a3:9a:02:b8:12:fd:6c:c8:1e:f7:15:6c:1b: 22:7e:27:8d:d8:db:03:61:49:6c:42:2d:0b:8e:c3:01:d3:63: 9f:98:b1:5a:d2:06:d5:c9:2e:7e:0e:31:6e:ae:47:96:c6:28: de:08:e4:ba:bc:fe:b2:1c:fc:e1:d9:64:3d:73:01:e3:e2:ae: eb:9c:c9:4a:50:48:50:28:06:a2:07:57:a9:5f:a9:2c:b7:fb: 15:09:2d:7c:c0:31:ff:b3:af:6b:79:ed:7b:f3:1a:3e:ef:16: f1:0a:f6:df:dd:3b:06:8b:62:fe:f3:e0:20:8f:69:d0:9b:71: 6c:61:b9:ab:d1:5a:8c:33:a3:24:b4:6b:69:98:02:bf:0a:4e: 77:fd:42:d5:f4:b2:73:db:39:e9:c4:f6:d5:dc:95:4d:96:c7: 11:17:fe:af:8c:55:67:1b:68:45:99:5f:bc:9c:29:5e:1b:da: 8d:ff:fa:25:5f:db:51:b8:40:1f:4f:67:f1:0f:c1:83:6e:db: 41:5b:2c:08:ee:68:5a:34:c2:4f:fe:0e:14:9e:13:f0:88:39: 42:a4:b7:05 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEQyNzExMTAvBgNVBAUTKDRDRUVFRTZEMzY2M0MxM0ZEODJFOTMxREFDNjlGMTcw NDZGQzk5QjMwHhcNMjUwNTMxMDMzMzA3WhcNMjUwNjA3MDMzMzA3WjAYMRYwFAYD VQQDEw02ODNhNzg3My05MjRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAncYo4I9/fN5sKY/1/5G1ATDjmYUTRQvlVDKpBSokEzW3R15AX/H1DAGxUcIQ f9vfkeZxijLDRSyQrnd0xs2N1RBK40xjp3+GANvZ3+2oeiPgtmhj9uWsAVQuV+BY 3BwKdn5gfmmhWFyNAYvvFpcGW3nbD7kYAeiEnVP/v5ufvWEBEHmWJsZpv/vPImRw hPX0z/LNNCZAndIFG0IkDJkG043jjEEc8SsAVZZAmvNrIbHR2YlDsA7vNg8id3YG ki/Ain1woeHXkuMwjYeVHMh3AlZ8i+Hdf6RyMaCPaiTUJPJxv6Ol0KXIOT7c1rMp unMp3Ol+BAHbXjWzufBteoA65QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN1hkkxy tt2h3xo2/eHpakZEAAMRMB8GA1UdIwQYMBaAFEzu7m02Y8E/2C6THaxp8XBG/Jmz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RDI3MS8yODE0RjBERTEx QjExMUVFOTA0N0JGMThDNEY5QUUwMi9UTzd1YlRaandUX1lMcE1kckdueGNFYjht Yk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RPN3ViVFpqd1RfWUxwTWRyR254Y0ViOG1iTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RDI3MS8yODE0RjBERTExQjExMUVFOTA0N0JGMThDNEY5QUUwMi9UTzd1YlRaandU X1lMcE1kckdueGNFYjhtYk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA90bfdc3Q5ZT41Aleaac3Z6dhOnh0sKPvipfPIwFOaaytqWzq+W4fS c6OaArgS/WzIHvcVbBsifieN2NsDYUlsQi0LjsMB02OfmLFa0gbVyS5+DjFurkeW xijeCOS6vP6yHPzh2WQ9cwHj4q7rnMlKUEhQKAaiB1epX6kst/sVCS18wDH/s69r ee178xo+7xbxCvbf3TsGi2L+8+Agj2nQm3FsYbmr0VqMM6MktGtpmAK/Ck53/ULV 9LJz2znpxPbV3JVNlscRF/6vjFVnG2hFmV+8nCleG9qN//olX9tRuEAfT2fxD8GD bttBWywI7mhaNMJP/g4UnhPwiDlCpLcF -----END CERTIFICATE-----Generated at Sat May 31 17:28:53 2025 by rpki-client