$ rpki-client -vvf rpki.apnic.net/member_repository/A9161A58/B389304EA7EC11EA80485864C4F9AE02/tGadMNIQ5JB80oiL50uJpt08tsg.mft File: tGadMNIQ5JB80oiL50uJpt08tsg.mft (raw, json) Hash identifier: uPDDeODT29vEoGYr+6zYLjxF+CBVjFpYarGmIIVXiXk= Subject key identifier: 50:E6:B0:B0:3A:BC:A7:E2:E9:CB:28:81:7E:3A:E4:9B:CC:22:1A:AB Authority key identifier: B4:66:9D:30:D2:10:E4:90:7C:D2:88:8B:E7:4B:89:A6:DD:3C:B6:C8 Certificate issuer: /CN=A9161A58/serialNumber=B4669D30D210E4907CD2888BE74B89A6DD3CB6C8 Certificate serial: 0922 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tGadMNIQ5JB80oiL50uJpt08tsg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9161A58/B389304EA7EC11EA80485864C4F9AE02/tGadMNIQ5JB80oiL50uJpt08tsg.mft Manifest number: 0910 Signing time: Fri 30 May 2025 20:34:06 +0000 Manifest this update: Fri 30 May 2025 20:34:06 +0000 Manifest next update: Fri 06 Jun 2025 20:34:06 +0000 Files and hashes: 1: tGadMNIQ5JB80oiL50uJpt08tsg.crl (hash: KLEOOhhAy1uiyJh0WZ5tRPd8fKCNDi/9zxTE960OCBw=) 2: 6E6FFF6A92F911ED8A66E70CC4F9AE02.roa (hash: 4s1yJr2g52+DMFY429ohpA5bZaHqp1IUUCW4B4SaCTc=) 3: B350B67E964611EDA10D8777C4F9AE02.roa (hash: Q3J0B0gf8wzjDQC7Y6zzpOQiUzusEOubL6oTAO7DZBI=) 4: D7120558A7ED11EA95BED565C4F9AE02.roa (hash: dHv+b9eqHvJpNCOa+cVeJt4WLtjB7VsmaWpat9hHq+U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9161A58/B389304EA7EC11EA80485864C4F9AE02/tGadMNIQ5JB80oiL50uJpt08tsg.crl rsync://rpki.apnic.net/member_repository/A9161A58/B389304EA7EC11EA80485864C4F9AE02/tGadMNIQ5JB80oiL50uJpt08tsg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tGadMNIQ5JB80oiL50uJpt08tsg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 20:34:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2338 (0x922) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9161A58, serialNumber=B4669D30D210E4907CD2888BE74B89A6DD3CB6C8 Validity Not Before: May 30 20:34:06 2025 GMT Not After : Jun 6 20:34:06 2025 GMT Subject: CN=683a163e-fbe2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:09:73:d5:fa:cb:37:a7:a2:3f:9d:96:76:24: 46:29:6e:69:1a:13:ad:74:49:4d:bd:3b:ba:25:0a: e7:ba:0f:9f:86:a1:6c:07:41:0e:ab:4f:23:87:dd: 49:21:3f:a4:57:f9:39:24:54:0c:b1:db:22:db:e0: 0a:e4:8c:0d:d8:d1:47:3e:43:64:6c:29:ba:21:4b: a2:c8:69:2b:93:d2:1e:67:42:c3:20:af:98:19:84: 98:0a:17:c1:d4:c3:27:1e:61:36:7d:f3:34:ba:3a: 1b:0e:f7:2c:c5:f8:ff:3e:e9:c8:48:09:4f:e7:28: 02:28:db:ad:d0:49:01:b0:40:b9:09:2c:2a:f6:9e: 2e:94:24:59:d6:57:22:06:ed:88:d2:ee:d7:a5:c0: dc:57:bb:c8:6e:4a:95:91:a4:b4:25:1d:61:22:79: f3:04:da:1b:87:34:48:c1:2d:8e:7b:10:6f:29:c7: 52:65:4c:1a:43:3c:f5:c3:47:2a:a3:8c:05:bc:eb: 90:91:d3:74:2f:1e:00:c7:f8:1e:3f:17:c7:b0:a2: 9a:37:63:b8:96:5f:27:43:7a:d1:5a:1d:de:ee:37: a8:79:e8:30:3e:ad:67:d6:6d:09:60:e4:e1:c5:80: 9b:e4:d3:f0:70:8f:69:95:2d:d1:c3:2f:05:19:5c: be:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:E6:B0:B0:3A:BC:A7:E2:E9:CB:28:81:7E:3A:E4:9B:CC:22:1A:AB X509v3 Authority Key Identifier: keyid:B4:66:9D:30:D2:10:E4:90:7C:D2:88:8B:E7:4B:89:A6:DD:3C:B6:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9161A58/B389304EA7EC11EA80485864C4F9AE02/tGadMNIQ5JB80oiL50uJpt08tsg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tGadMNIQ5JB80oiL50uJpt08tsg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9161A58/B389304EA7EC11EA80485864C4F9AE02/tGadMNIQ5JB80oiL50uJpt08tsg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7f:90:99:db:06:64:d5:f5:23:a4:35:f8:5e:68:2e:6f:9e:8a: ee:a0:6c:38:94:c7:a8:1c:f7:3f:19:42:18:56:6c:02:4a:40: bd:5c:db:24:a8:01:f8:44:1f:4c:38:b9:55:a4:79:85:f3:bc: 3c:15:d1:e5:78:99:a7:48:7e:04:3d:63:25:a6:17:83:9d:36: 27:1d:b8:c1:93:b2:7d:e5:1f:cf:92:fa:c2:af:13:a8:23:7c: 25:6e:20:8b:53:86:a8:79:55:84:2a:48:91:0d:84:bf:74:56: a9:92:f4:14:16:cd:6a:44:9d:aa:8a:c5:25:de:90:0a:bb:b4: c6:fd:22:35:25:90:78:7f:55:b6:55:11:de:94:18:84:94:d7: c4:cc:a6:78:9d:73:ec:c7:ce:01:a2:4b:29:6d:a4:1f:17:fc: a1:a8:d1:8d:f5:e2:84:d6:2f:73:a1:f3:b4:53:f6:97:e9:a1: 25:2d:6c:c6:ce:c2:35:78:e0:09:58:e1:4e:41:db:b1:76:53: a4:28:82:dc:1e:1f:6e:cf:a0:be:b0:df:08:f3:22:9d:b1:ce: 33:db:f7:06:05:04:af:50:b1:28:a5:fe:b6:97:3b:a9:41:4e: 24:fe:03:47:92:91:03:50:b3:7c:80:c1:5c:b8:6d:41:8e:ad: 00:f5:83:a8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCSIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjFBNTgxMTAvBgNVBAUTKEI0NjY5RDMwRDIxMEU0OTA3Q0QyODg4QkU3NEI4OUE2 REQzQ0I2QzgwHhcNMjUwNTMwMjAzNDA2WhcNMjUwNjA2MjAzNDA2WjAYMRYwFAYD VQQDEw02ODNhMTYzZS1mYmUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnQlz1frLN6eiP52WdiRGKW5pGhOtdElNvTu6JQrnug+fhqFsB0EOq08jh91J IT+kV/k5JFQMsdsi2+AK5IwN2NFHPkNkbCm6IUuiyGkrk9IeZ0LDIK+YGYSYChfB 1MMnHmE2ffM0ujobDvcsxfj/PunISAlP5ygCKNut0EkBsEC5CSwq9p4ulCRZ1lci Bu2I0u7XpcDcV7vIbkqVkaS0JR1hInnzBNobhzRIwS2OexBvKcdSZUwaQzz1w0cq o4wFvOuQkdN0Lx4Ax/gePxfHsKKaN2O4ll8nQ3rRWh3e7jeoeegwPq1n1m0JYOTh xYCb5NPwcI9plS3Rwy8FGVy+WwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFDmsLA6 vKfi6csogX465JvMIhqrMB8GA1UdIwQYMBaAFLRmnTDSEOSQfNKIi+dLiabdPLbI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MUE1OC9CMzg5MzA0RUE3 RUMxMUVBODA0ODU4NjRDNEY5QUUwMi90R2FkTU5JUTVKQjgwb2lMNTB1SnB0MDh0 c2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RHYWRNTklRNUpCODBvaUw1MHVKcHQwOHRzZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MUE1OC9CMzg5MzA0RUE3RUMxMUVBODA0ODU4NjRDNEY5QUUwMi90R2FkTU5JUTVK Qjgwb2lMNTB1SnB0MDh0c2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB/kJnbBmTV9SOkNfheaC5vnoruoGw4lMeoHPc/GUIYVmwCSkC9XNsk qAH4RB9MOLlVpHmF87w8FdHleJmnSH4EPWMlpheDnTYnHbjBk7J95R/PkvrCrxOo I3wlbiCLU4aoeVWEKkiRDYS/dFapkvQUFs1qRJ2qisUl3pAKu7TG/SI1JZB4f1W2 VRHelBiElNfEzKZ4nXPsx84BokspbaQfF/yhqNGN9eKE1i9zofO0U/aX6aElLWzG zsI1eOAJWOFOQduxdlOkKILcHh9uz6C+sN8I8yKdsc4z2/cGBQSvULEopf62lzup QU4k/gNHkpEDULN8gMFcuG1Bjq0A9YOo -----END CERTIFICATE-----Generated at Sat May 31 17:37:49 2025 by rpki-client