$ rpki-client -vvf rpki.apnic.net/member_repository/A916A0AF/FD65B4D8E4A611EBB94AA54CC4F9AE02/tmRR-XGIyvgYTQfBMKJdlXb4wQU.mft File: tmRR-XGIyvgYTQfBMKJdlXb4wQU.mft (raw, json) Hash identifier: n7e0CIOL977eFhrKRqEYdqCvaplvVdQmFNoU8Y5eRk4= Subject key identifier: 14:93:73:C3:CD:5C:7F:AB:4D:43:C6:F3:76:4B:8E:34:56:2B:C7:F9 Authority key identifier: B6:64:51:F9:71:88:CA:F8:18:4D:07:C1:30:A2:5D:95:76:F8:C1:05 Certificate issuer: /CN=A916A0AF/serialNumber=B66451F97188CAF8184D07C130A25D9576F8C105 Certificate serial: 0538 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tmRR-XGIyvgYTQfBMKJdlXb4wQU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916A0AF/FD65B4D8E4A611EBB94AA54CC4F9AE02/tmRR-XGIyvgYTQfBMKJdlXb4wQU.mft Manifest number: 0533 Signing time: Mon 17 Feb 2025 00:25:37 +0000 Manifest this update: Mon 17 Feb 2025 00:25:36 +0000 Manifest next update: Mon 24 Feb 2025 00:25:36 +0000 Files and hashes: 1: tmRR-XGIyvgYTQfBMKJdlXb4wQU.crl (hash: oh5qrANTAZSvc/hehGRMc8Qw2NqYUSQQTWMY2RcSeI4=) 2: 529F69FCE5CA11EBB98C5577C4F9AE02.roa (hash: iGGEAjUC0++42POw1gb2SZmwmNS0zkkpPN27YBry/aI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916A0AF/FD65B4D8E4A611EBB94AA54CC4F9AE02/tmRR-XGIyvgYTQfBMKJdlXb4wQU.crl rsync://rpki.apnic.net/member_repository/A916A0AF/FD65B4D8E4A611EBB94AA54CC4F9AE02/tmRR-XGIyvgYTQfBMKJdlXb4wQU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tmRR-XGIyvgYTQfBMKJdlXb4wQU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1336 (0x538) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916A0AF Validity Not Before: Feb 17 00:25:36 2025 GMT Not After : Feb 24 00:25:36 2025 GMT Subject: CN=67b28201-b148 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:f6:c2:eb:13:e1:ef:f9:9b:f9:1f:b0:78:e0: 0f:b5:96:ea:ef:23:56:b8:8e:72:14:99:e5:c6:23: 00:b0:f7:a1:5f:c7:e5:76:d1:ec:62:fb:1e:72:77: 3c:ff:5b:e0:5e:3a:fc:63:13:a3:e8:78:66:9c:51: 44:34:b9:a8:12:f9:23:41:1a:6b:af:e7:aa:ee:24: a9:87:fa:bb:5c:8d:20:15:56:e7:ba:28:17:4c:1c: 96:b3:87:0b:82:1c:64:f1:c8:d6:b8:89:76:e2:ff: 6b:5d:2d:2c:fb:c5:c8:78:1c:5b:9f:66:88:4f:b1: 6a:30:de:74:b7:5a:06:57:ef:05:87:ac:8b:a7:16: 87:81:9d:76:f2:3a:2d:d7:26:3f:e4:fb:74:53:0b: 8f:26:8e:4a:fa:62:e6:7c:5c:d8:0e:62:c9:00:66: 4c:e6:ce:84:e6:1b:f7:99:73:33:d0:b8:21:b0:43: 64:e8:a6:63:87:5d:25:46:da:88:03:6a:33:91:4c: 7c:8a:e2:8d:79:e3:8d:03:0b:89:e7:44:7a:57:ed: bc:b1:7c:8b:44:0e:75:00:79:23:77:08:f4:4e:d8: a7:9a:1d:f1:e6:39:d0:38:fd:57:0e:25:52:c8:fd: 9a:e8:69:db:88:08:26:67:6b:77:c4:ef:a4:a9:67: 9c:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:93:73:C3:CD:5C:7F:AB:4D:43:C6:F3:76:4B:8E:34:56:2B:C7:F9 X509v3 Authority Key Identifier: keyid:B6:64:51:F9:71:88:CA:F8:18:4D:07:C1:30:A2:5D:95:76:F8:C1:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916A0AF/FD65B4D8E4A611EBB94AA54CC4F9AE02/tmRR-XGIyvgYTQfBMKJdlXb4wQU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tmRR-XGIyvgYTQfBMKJdlXb4wQU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916A0AF/FD65B4D8E4A611EBB94AA54CC4F9AE02/tmRR-XGIyvgYTQfBMKJdlXb4wQU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 95:06:56:2f:a5:e2:cf:e3:b3:2f:c1:67:d2:25:87:6a:57:e1: 28:8f:1a:ac:3c:38:87:a0:d1:1a:72:09:0c:13:9d:41:a5:0e: d6:62:69:76:99:d1:c2:22:fe:02:1a:f0:fd:14:56:50:f0:44: 4e:b5:12:e3:f0:2c:ca:82:6d:87:0e:e5:01:b9:ee:50:0d:d8: 5e:ec:0e:35:23:7a:1b:aa:5e:b2:e9:19:c0:9b:dd:64:d5:0e: e8:96:96:b7:5d:6e:07:21:11:31:b2:39:1b:24:87:f1:d5:61: 41:d0:43:f6:ec:8e:3b:83:e2:9f:7c:d4:ff:9e:d6:eb:99:9b: 3c:93:3f:27:60:11:80:ea:41:42:ca:23:f6:b1:17:a2:4c:b8: 5f:bb:2c:e6:ac:22:90:3d:8e:19:74:98:fb:d5:28:2c:0a:9f: 21:aa:a2:40:64:63:ea:9e:e2:4a:a7:d7:1d:81:90:cf:46:12: 1f:c7:c2:3e:22:8f:36:6a:9f:c1:e9:1a:76:c5:64:bf:b4:3f: 5d:23:81:5a:36:66:2c:18:6f:4e:01:fb:4a:21:be:15:54:b2: f4:0d:e3:18:a4:88:66:f8:49:3f:8e:15:3f:b2:f2:a4:d5:9b: 84:c5:69:15:49:5f:cb:e2:f8:e8:e6:2a:dd:6c:56:46:44:5b: ed:72:62:9f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBTgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkEwQUYxMTAvBgNVBAUTKEI2NjQ1MUY5NzE4OENBRjgxODREMDdDMTMwQTI1RDk1 NzZGOEMxMDUwHhcNMjUwMjE3MDAyNTM2WhcNMjUwMjI0MDAyNTM2WjAYMRYwFAYD VQQDEw02N2IyODIwMS1iMTQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4PbC6xPh7/mb+R+weOAPtZbq7yNWuI5yFJnlxiMAsPehX8fldtHsYvsecnc8 /1vgXjr8YxOj6HhmnFFENLmoEvkjQRprr+eq7iSph/q7XI0gFVbnuigXTByWs4cL ghxk8cjWuIl24v9rXS0s+8XIeBxbn2aIT7FqMN50t1oGV+8Fh6yLpxaHgZ128jot 1yY/5Pt0UwuPJo5K+mLmfFzYDmLJAGZM5s6E5hv3mXMz0LghsENk6KZjh10lRtqI A2ozkUx8iuKNeeONAwuJ50R6V+28sXyLRA51AHkjdwj0Ttinmh3x5jnQOP1XDiVS yP2a6GnbiAgmZ2t3xO+kqWecnQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBSTc8PN XH+rTUPG83ZLjjRWK8f5MB8GA1UdIwQYMBaAFLZkUflxiMr4GE0HwTCiXZV2+MEF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QTBBRi9GRDY1QjREOEU0 QTYxMUVCQjk0QUE1NENDNEY5QUUwMi90bVJSLVhHSXl2Z1lUUWZCTUtKZGxYYjR3 UVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RtUlItWEdJeXZnWVRRZkJNS0pkbFhiNHdRVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QTBBRi9GRDY1QjREOEU0QTYxMUVCQjk0QUE1NENDNEY5QUUwMi90bVJSLVhHSXl2 Z1lUUWZCTUtKZGxYYjR3UVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCVBlYvpeLP47MvwWfSJYdqV+EojxqsPDiHoNEacgkME51BpQ7WYml2 mdHCIv4CGvD9FFZQ8EROtRLj8CzKgm2HDuUBue5QDdhe7A41I3obql6y6RnAm91k 1Q7olpa3XW4HIRExsjkbJIfx1WFB0EP27I47g+KffNT/ntbrmZs8kz8nYBGA6kFC yiP2sReiTLhfuyzmrCKQPY4ZdJj71SgsCp8hqqJAZGPqnuJKp9cdgZDPRhIfx8I+ Io82ap/B6Rp2xWS/tD9dI4FaNmYsGG9OAftKIb4VVLL0DeMYpIhm+Ek/jhU/svKk 1ZuExWkVSV/L4vjo5irdbFZGRFvtcmKf -----END CERTIFICATE-----Generated at Mon Feb 17 07:45:40 2025 by rpki-client