$ rpki-client -vvf rpki.apnic.net/member_repository/A91632D7/F97959C2241711ED9C0C700DC4F9AE02/Tgc3hmfsedU9ZQ5STR6PmLCMKOE.mft File: Tgc3hmfsedU9ZQ5STR6PmLCMKOE.mft (raw, json) Hash identifier: LX3h4NLYIIkS/NUMGA2eBUhJEXA08rpYv+jOT5eP0ec= Subject key identifier: B3:BD:1C:C2:35:47:FC:73:85:B7:80:2E:C0:B9:0B:5C:65:1E:75:9F Authority key identifier: 4E:07:37:86:67:EC:79:D5:3D:65:0E:52:4D:1E:8F:98:B0:8C:28:E1 Certificate issuer: /CN=A91632D7/serialNumber=4E07378667EC79D53D650E524D1E8F98B08C28E1 Certificate serial: 0252 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Tgc3hmfsedU9ZQ5STR6PmLCMKOE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91632D7/F97959C2241711ED9C0C700DC4F9AE02/Tgc3hmfsedU9ZQ5STR6PmLCMKOE.mft Manifest number: 0248 Signing time: Sat 31 May 2025 02:03:31 +0000 Manifest this update: Sat 31 May 2025 02:03:31 +0000 Manifest next update: Sat 07 Jun 2025 02:03:31 +0000 Files and hashes: 1: Tgc3hmfsedU9ZQ5STR6PmLCMKOE.crl (hash: Z0BjUy9IfOVJkiWZ9s/D3DCxQwFNAZ/E1f7nbWMH+5A=) 2: 08B1833C1DE511F08883F35AC4F9AE02.roa (hash: qt/12QruPULSLrioUdGLIDziwQVI0MwcPO5Znz57Xok=) 3: C6C06E5CC18D11EEB2096833C4F9AE02.roa (hash: PCTX1P2d3fRflAHqzzXSaFtOX5cSgvLNCmPW7UGSTiw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91632D7/F97959C2241711ED9C0C700DC4F9AE02/Tgc3hmfsedU9ZQ5STR6PmLCMKOE.crl rsync://rpki.apnic.net/member_repository/A91632D7/F97959C2241711ED9C0C700DC4F9AE02/Tgc3hmfsedU9ZQ5STR6PmLCMKOE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Tgc3hmfsedU9ZQ5STR6PmLCMKOE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 02:03:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 594 (0x252) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91632D7, serialNumber=4E07378667EC79D53D650E524D1E8F98B08C28E1 Validity Not Before: May 31 02:03:31 2025 GMT Not After : Jun 7 02:03:31 2025 GMT Subject: CN=683a6373-634a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:9a:c9:62:4e:27:76:bc:37:21:1f:cc:25:38: 40:12:74:b1:14:82:8f:69:d2:0f:42:f7:3a:ac:4c: 5c:73:e9:2f:42:78:90:08:77:74:38:82:00:1d:be: ad:6f:0f:e2:94:93:1d:bc:aa:eb:84:9f:02:09:45: df:1f:96:2c:9b:91:bd:44:42:81:46:9d:f8:cb:43: 86:5f:19:20:93:44:a3:8b:c9:fb:f8:bc:b1:45:c0: cc:15:4b:ae:89:38:01:98:3d:53:81:f0:01:98:bf: 6b:eb:3d:8e:4b:b7:be:e0:99:7f:f2:86:68:aa:db: 1d:5a:16:30:bd:62:c5:51:44:64:3d:fa:f7:6f:b5: 4a:06:28:66:8c:4c:cc:e5:5c:68:e9:6a:3e:41:83: 5b:86:b3:cf:a2:5d:59:9e:71:71:14:e9:81:2a:f1: db:a3:9a:d7:5f:ed:be:58:ff:57:3c:5d:64:69:6b: 08:1c:86:2c:60:ee:66:d7:b1:89:91:b2:ac:fe:56: 67:91:95:34:3b:88:fb:62:65:a7:b8:06:75:a8:bf: 11:74:59:37:0f:81:8e:90:34:16:ed:ab:d4:fb:6e: de:a9:65:58:b1:2a:da:43:5d:72:bf:ef:e3:6a:04: ec:2b:8a:18:1d:fc:92:3c:9a:a0:a6:87:5c:62:ab: da:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:BD:1C:C2:35:47:FC:73:85:B7:80:2E:C0:B9:0B:5C:65:1E:75:9F X509v3 Authority Key Identifier: keyid:4E:07:37:86:67:EC:79:D5:3D:65:0E:52:4D:1E:8F:98:B0:8C:28:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91632D7/F97959C2241711ED9C0C700DC4F9AE02/Tgc3hmfsedU9ZQ5STR6PmLCMKOE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Tgc3hmfsedU9ZQ5STR6PmLCMKOE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91632D7/F97959C2241711ED9C0C700DC4F9AE02/Tgc3hmfsedU9ZQ5STR6PmLCMKOE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0f:d5:da:00:69:3a:5a:17:7e:39:c5:cd:f9:25:40:0e:4b:3c: 80:e3:84:67:90:02:e5:dc:56:9c:2a:e8:ff:88:cd:6a:1a:1f: 6b:93:34:ec:42:89:b1:77:a0:77:fe:36:87:40:2a:33:57:90: a4:bf:7e:86:24:6f:32:bd:c3:7e:c5:a3:6a:e6:d1:d9:bb:d2: 9b:24:87:21:84:fb:29:91:e8:04:42:b6:30:a8:36:d6:f9:78: b4:b8:3d:3a:42:cc:34:42:97:94:4d:e8:c4:95:0a:97:cc:a2: 25:f1:32:9d:55:55:ba:c8:14:99:f1:b6:53:03:5b:a4:b3:cd: 06:63:75:5f:65:f3:13:84:7c:a1:b5:13:29:6e:b6:e9:37:a4: 5a:18:1c:97:24:24:d9:a2:1b:4c:ff:06:87:23:8a:8a:a6:00: 8d:00:7c:97:16:1e:7b:e4:69:1d:d4:9f:8d:92:6f:3d:b5:ba: b4:ab:58:2b:64:9e:5a:4f:81:75:3f:6a:e0:da:fe:07:21:f3: dc:ce:9f:fe:ba:0f:28:eb:8d:46:4a:9a:3d:a9:20:62:e0:7b: 71:d4:3a:f7:2c:31:60:66:b2:5f:5c:d1:c8:53:da:77:07:0b: 3d:e4:62:2d:27:1c:3a:6d:01:f7:0d:15:3c:ee:21:c3:60:a7: dd:12:c6:e6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAlIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjMyRDcxMTAvBgNVBAUTKDRFMDczNzg2NjdFQzc5RDUzRDY1MEU1MjREMUU4Rjk4 QjA4QzI4RTEwHhcNMjUwNTMxMDIwMzMxWhcNMjUwNjA3MDIwMzMxWjAYMRYwFAYD VQQDEw02ODNhNjM3My02MzRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqZrJYk4ndrw3IR/MJThAEnSxFIKPadIPQvc6rExcc+kvQniQCHd0OIIAHb6t bw/ilJMdvKrrhJ8CCUXfH5Ysm5G9REKBRp34y0OGXxkgk0Sji8n7+LyxRcDMFUuu iTgBmD1TgfABmL9r6z2OS7e+4Jl/8oZoqtsdWhYwvWLFUURkPfr3b7VKBihmjEzM 5Vxo6Wo+QYNbhrPPol1ZnnFxFOmBKvHbo5rXX+2+WP9XPF1kaWsIHIYsYO5m17GJ kbKs/lZnkZU0O4j7YmWnuAZ1qL8RdFk3D4GOkDQW7avU+27eqWVYsSraQ11yv+/j agTsK4oYHfySPJqgpodcYqva7wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLO9HMI1 R/xzhbeALsC5C1xlHnWfMB8GA1UdIwQYMBaAFE4HN4Zn7HnVPWUOUk0ej5iwjCjh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MzJENy9GOTc5NTlDMjI0 MTcxMUVEOUMwQzcwMERDNEY5QUUwMi9UZ2MzaG1mc2VkVTlaUTVTVFI2UG1MQ01L T0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RnYzNobWZzZWRVOVpRNVNUUjZQbUxDTUtPRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MzJENy9GOTc5NTlDMjI0MTcxMUVEOUMwQzcwMERDNEY5QUUwMi9UZ2MzaG1mc2Vk VTlaUTVTVFI2UG1MQ01LT0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAP1doAaTpaF345xc35JUAOSzyA44RnkALl3FacKuj/iM1qGh9rkzTs Qomxd6B3/jaHQCozV5Ckv36GJG8yvcN+xaNq5tHZu9KbJIchhPspkegEQrYwqDbW +Xi0uD06Qsw0QpeUTejElQqXzKIl8TKdVVW6yBSZ8bZTA1uks80GY3VfZfMThHyh tRMpbrbpN6RaGByXJCTZohtM/waHI4qKpgCNAHyXFh575Gkd1J+Nkm89tbq0q1gr ZJ5aT4F1P2rg2v4HIfPczp/+ug8o641GSpo9qSBi4Htx1Dr3LDFgZrJfXNHIU9p3 Bws95GItJxw6bQH3DRU87iHDYKfdEsbm -----END CERTIFICATE-----Generated at Sat May 31 16:40:48 2025 by rpki-client