$ rpki-client -vvf rpki.apnic.net/member_repository/A916A0AF/FD65B4D8E4A611EBB94AA54CC4F9AE02/tmRR-XGIyvgYTQfBMKJdlXb4wQU.mft File: tmRR-XGIyvgYTQfBMKJdlXb4wQU.mft (raw, json) Hash identifier: IVAEcjQ4vbLbDv3yzJ2QbwRDlTqlv6pSOAP0gKXORN8= Subject key identifier: 5D:F3:91:E4:84:03:BC:30:F6:EA:AD:52:60:0A:81:C8:DD:5C:4F:C0 Authority key identifier: B6:64:51:F9:71:88:CA:F8:18:4D:07:C1:30:A2:5D:95:76:F8:C1:05 Certificate issuer: /CN=A916A0AF/serialNumber=B66451F97188CAF8184D07C130A25D9576F8C105 Certificate serial: 0544 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tmRR-XGIyvgYTQfBMKJdlXb4wQU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916A0AF/FD65B4D8E4A611EBB94AA54CC4F9AE02/tmRR-XGIyvgYTQfBMKJdlXb4wQU.mft Manifest number: 053F Signing time: Wed 12 Mar 2025 23:05:22 +0000 Manifest this update: Wed 12 Mar 2025 23:05:21 +0000 Manifest next update: Wed 19 Mar 2025 23:05:21 +0000 Files and hashes: 1: tmRR-XGIyvgYTQfBMKJdlXb4wQU.crl (hash: 8Pj0TPCLwnBFRzV4FysoDUroSU2EKxVBIuUpZFfb9qY=) 2: 529F69FCE5CA11EBB98C5577C4F9AE02.roa (hash: iGGEAjUC0++42POw1gb2SZmwmNS0zkkpPN27YBry/aI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916A0AF/FD65B4D8E4A611EBB94AA54CC4F9AE02/tmRR-XGIyvgYTQfBMKJdlXb4wQU.crl rsync://rpki.apnic.net/member_repository/A916A0AF/FD65B4D8E4A611EBB94AA54CC4F9AE02/tmRR-XGIyvgYTQfBMKJdlXb4wQU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tmRR-XGIyvgYTQfBMKJdlXb4wQU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Mar 2025 23:05:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1348 (0x544) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916A0AF Validity Not Before: Mar 12 23:05:21 2025 GMT Not After : Mar 19 23:05:21 2025 GMT Subject: CN=67d21331-1b17 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:5c:05:53:3a:e6:3a:ed:e9:ba:1c:43:7f:a5: 2c:c0:78:7b:2e:51:e9:21:9f:45:39:e4:f6:8d:d4: f0:f4:71:77:48:41:a3:86:4b:95:4f:96:ec:66:6a: f8:ae:0d:f4:b0:8c:73:2b:ba:a2:54:c9:7f:44:49: c9:9d:de:ee:9d:46:9a:26:86:5c:d0:d3:e1:a3:f7: e2:c7:02:77:d8:30:2d:15:49:91:11:64:27:34:36: ba:5e:c8:c4:da:66:ef:f7:bc:92:5c:ac:99:d9:4f: 60:f4:2f:6a:74:87:b7:2d:2a:15:38:66:c8:ed:28: 89:30:c6:65:e0:0a:0e:79:b3:81:85:2b:67:7d:b1: 9e:1b:ea:11:2d:19:f8:9b:57:95:7c:93:ba:f2:5f: f5:84:b5:06:97:c1:10:e8:4f:07:66:e4:6d:0e:af: f4:8b:c8:f5:0a:ed:72:75:8f:9d:73:dc:4e:2a:07: 17:86:6a:4a:af:90:b8:52:34:94:97:e5:20:cb:9d: b1:62:72:67:64:13:6a:f5:0a:f7:12:b6:7a:2c:9e: e5:5b:18:4c:42:a7:32:bc:43:a7:c2:9f:7c:99:16: be:3b:3d:08:2f:1d:4e:92:64:19:6a:64:e7:ca:84: d8:27:44:84:40:90:2c:33:01:3b:85:6e:86:0e:8b: 8a:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:F3:91:E4:84:03:BC:30:F6:EA:AD:52:60:0A:81:C8:DD:5C:4F:C0 X509v3 Authority Key Identifier: keyid:B6:64:51:F9:71:88:CA:F8:18:4D:07:C1:30:A2:5D:95:76:F8:C1:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916A0AF/FD65B4D8E4A611EBB94AA54CC4F9AE02/tmRR-XGIyvgYTQfBMKJdlXb4wQU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tmRR-XGIyvgYTQfBMKJdlXb4wQU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916A0AF/FD65B4D8E4A611EBB94AA54CC4F9AE02/tmRR-XGIyvgYTQfBMKJdlXb4wQU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 52:c8:1b:49:05:1e:70:44:56:95:e1:41:77:88:0d:00:f1:56: 01:71:30:28:89:7b:ec:0e:0d:23:04:97:fb:d2:b5:89:6b:65: 72:0b:97:eb:5b:a1:d6:cc:85:4c:57:33:4b:0c:0b:a4:9d:f6: a1:c3:47:d9:97:50:bb:d5:60:44:33:24:6c:45:52:b2:d2:61: 23:e1:14:51:7c:e4:dc:78:c4:02:29:1e:0a:95:6c:8d:ae:41: f2:87:ee:96:9f:dc:71:94:18:06:dc:ab:14:85:5c:81:fc:91: 49:50:3a:44:ae:fc:4a:61:bd:8f:f2:b8:d1:4b:97:e2:e0:f8: 61:a6:fb:0f:32:40:98:78:c2:f0:d2:c6:5b:13:51:43:79:27: e7:26:16:a8:61:d8:d1:2b:07:99:6f:52:83:67:13:da:c0:2e: 73:3f:54:f8:d3:67:3c:c2:ac:86:97:02:4e:ed:72:b0:f1:c9: e1:70:3a:fe:0a:92:ea:ab:ea:49:38:58:68:fc:20:8d:57:d4: 4d:38:74:22:49:9f:46:ea:0c:01:a3:a2:82:52:6a:76:41:3d: 53:f4:0e:b1:73:da:7c:d2:cd:39:37:ff:30:24:a1:4f:cb:28: e1:64:4b:18:f8:52:4f:5d:b6:9b:24:18:6c:8d:36:31:fb:05: b4:a1:a8:f8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBUQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkEwQUYxMTAvBgNVBAUTKEI2NjQ1MUY5NzE4OENBRjgxODREMDdDMTMwQTI1RDk1 NzZGOEMxMDUwHhcNMjUwMzEyMjMwNTIxWhcNMjUwMzE5MjMwNTIxWjAYMRYwFAYD VQQDEw02N2QyMTMzMS0xYjE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp1wFUzrmOu3puhxDf6UswHh7LlHpIZ9FOeT2jdTw9HF3SEGjhkuVT5bsZmr4 rg30sIxzK7qiVMl/REnJnd7unUaaJoZc0NPho/fixwJ32DAtFUmREWQnNDa6XsjE 2mbv97ySXKyZ2U9g9C9qdIe3LSoVOGbI7SiJMMZl4AoOebOBhStnfbGeG+oRLRn4 m1eVfJO68l/1hLUGl8EQ6E8HZuRtDq/0i8j1Cu1ydY+dc9xOKgcXhmpKr5C4UjSU l+Ugy52xYnJnZBNq9Qr3ErZ6LJ7lWxhMQqcyvEOnwp98mRa+Oz0ILx1OkmQZamTn yoTYJ0SEQJAsMwE7hW6GDouKSQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF3zkeSE A7ww9uqtUmAKgcjdXE/AMB8GA1UdIwQYMBaAFLZkUflxiMr4GE0HwTCiXZV2+MEF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QTBBRi9GRDY1QjREOEU0 QTYxMUVCQjk0QUE1NENDNEY5QUUwMi90bVJSLVhHSXl2Z1lUUWZCTUtKZGxYYjR3 UVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RtUlItWEdJeXZnWVRRZkJNS0pkbFhiNHdRVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QTBBRi9GRDY1QjREOEU0QTYxMUVCQjk0QUE1NENDNEY5QUUwMi90bVJSLVhHSXl2 Z1lUUWZCTUtKZGxYYjR3UVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBSyBtJBR5wRFaV4UF3iA0A8VYBcTAoiXvsDg0jBJf70rWJa2VyC5fr W6HWzIVMVzNLDAuknfahw0fZl1C71WBEMyRsRVKy0mEj4RRRfOTceMQCKR4KlWyN rkHyh+6Wn9xxlBgG3KsUhVyB/JFJUDpErvxKYb2P8rjRS5fi4PhhpvsPMkCYeMLw 0sZbE1FDeSfnJhaoYdjRKweZb1KDZxPawC5zP1T402c8wqyGlwJO7XKw8cnhcDr+ CpLqq+pJOFho/CCNV9RNOHQiSZ9G6gwBo6KCUmp2QT1T9A6xc9p80s05N/8wJKFP yyjhZEsY+FJPXbabJBhsjTYx+wW0oaj4 -----END CERTIFICATE-----Generated at Thu Mar 13 21:28:19 2025 by rpki-client