$ rpki-client -vvf rpki.apnic.net/member_repository/A9188D2D/A0682A048FF911EDABEC2537C4F9AE02/tYgfusqd6_Rspghj0pd8U_3WwZA.mft File: tYgfusqd6_Rspghj0pd8U_3WwZA.mft (raw, json) Hash identifier: PpW/kFsVVM4v0qyt/ohZHuNGZoc7EmfRpox9zw4eHdY= Subject key identifier: 1D:41:3B:3E:D0:46:0D:67:9D:72:5B:E6:24:C5:F8:AE:CF:BA:6B:41 Authority key identifier: B5:88:1F:BA:CA:9D:EB:F4:6C:A6:08:63:D2:97:7C:53:FD:D6:C1:90 Certificate issuer: /CN=A9188D2D/serialNumber=B5881FBACA9DEBF46CA60863D2977C53FDD6C190 Certificate serial: 01C3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tYgfusqd6_Rspghj0pd8U_3WwZA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9188D2D/A0682A048FF911EDABEC2537C4F9AE02/tYgfusqd6_Rspghj0pd8U_3WwZA.mft Manifest number: 01BD Signing time: Sat 31 May 2025 02:45:23 +0000 Manifest this update: Sat 31 May 2025 02:45:22 +0000 Manifest next update: Sat 07 Jun 2025 02:45:22 +0000 Files and hashes: 1: tYgfusqd6_Rspghj0pd8U_3WwZA.crl (hash: AkpfVpljsnHjCZgqGqt6zQ27IN7ZXGX9DDZC136vnvs=) 2: D9D943568FFC11ED9776CB38C4F9AE02.roa (hash: CAQTwJ95TZU81HKb4Y7lVQbfnRcyYnVzCOwyM749MwA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9188D2D/A0682A048FF911EDABEC2537C4F9AE02/tYgfusqd6_Rspghj0pd8U_3WwZA.crl rsync://rpki.apnic.net/member_repository/A9188D2D/A0682A048FF911EDABEC2537C4F9AE02/tYgfusqd6_Rspghj0pd8U_3WwZA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tYgfusqd6_Rspghj0pd8U_3WwZA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 02:45:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 451 (0x1c3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9188D2D, serialNumber=B5881FBACA9DEBF46CA60863D2977C53FDD6C190 Validity Not Before: May 31 02:45:22 2025 GMT Not After : Jun 7 02:45:22 2025 GMT Subject: CN=683a6d43-322e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:74:cd:c2:b8:71:84:79:20:83:af:f3:1e:d9: 99:3b:95:33:80:22:07:9f:dc:df:95:6c:f0:c2:60: ee:f5:e7:a5:8c:e6:52:67:04:f1:79:42:76:0c:18: a1:4e:4e:f9:a9:91:dc:85:55:26:69:5c:b4:62:3f: 6a:a6:c0:c3:05:cb:4e:7a:6a:83:36:51:b8:84:25: b2:31:9e:c3:fb:60:b8:89:3d:9f:27:49:45:d1:a5: f3:10:5f:d3:34:8a:43:d7:d4:bb:6a:e2:da:16:0c: af:38:4f:22:88:90:fd:ea:0e:8d:cf:a9:61:e8:51: 81:9d:f7:7a:39:b2:e9:2a:80:51:98:5b:8e:fa:8e: 8c:2b:28:50:fc:c2:e1:f4:91:86:4c:01:0a:a0:ed: 42:e3:2c:93:62:83:ff:d8:5a:ab:82:5f:e0:af:b7: 32:09:14:46:c1:5d:2a:47:15:94:3c:5b:80:88:10: 67:19:ee:1a:a4:3d:87:50:82:b1:ff:fa:1d:c1:16: ec:26:56:fd:9a:f8:28:4f:6c:7e:cb:5b:90:af:2c: 91:ec:b1:c8:dc:2c:53:1d:05:ac:7e:4b:0b:99:a6: 6c:33:4f:38:50:03:b8:43:1f:8f:e4:31:23:4b:94: d4:a4:d3:e8:a8:f8:6f:b0:59:dc:7d:70:63:08:ba: a5:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:41:3B:3E:D0:46:0D:67:9D:72:5B:E6:24:C5:F8:AE:CF:BA:6B:41 X509v3 Authority Key Identifier: keyid:B5:88:1F:BA:CA:9D:EB:F4:6C:A6:08:63:D2:97:7C:53:FD:D6:C1:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9188D2D/A0682A048FF911EDABEC2537C4F9AE02/tYgfusqd6_Rspghj0pd8U_3WwZA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tYgfusqd6_Rspghj0pd8U_3WwZA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9188D2D/A0682A048FF911EDABEC2537C4F9AE02/tYgfusqd6_Rspghj0pd8U_3WwZA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1c:85:e0:cf:66:01:f7:ef:2f:3c:2f:fd:41:4c:05:dc:11:4d: cb:42:96:f9:f7:44:7f:5e:8d:98:23:fb:9c:f7:8c:60:0b:d4: 52:5e:10:2a:b6:bf:e9:c9:22:2b:80:40:d4:45:9a:4a:6f:e2: 3c:be:19:7c:33:35:95:85:0b:68:a1:40:54:8d:30:e9:67:81: 95:91:4b:e5:8b:a2:b0:f4:e4:6a:a4:91:80:52:c3:89:5d:26: 53:d1:66:42:34:a8:86:ba:e5:53:b4:8e:5f:b3:ad:27:4b:3f: a1:aa:87:0a:9f:90:6b:41:56:ca:71:09:98:a7:a7:f0:3e:6a: 0b:6f:6b:10:d3:21:45:8f:2e:23:9f:8f:d4:5c:34:64:d2:92: de:d2:a0:25:1e:00:3f:99:09:aa:66:27:75:8a:c0:f6:c0:9d: f6:d6:e3:bf:13:11:0d:97:f6:76:e0:4c:9e:e9:5e:fe:7b:92: ef:3b:04:81:d6:b8:aa:83:9f:c4:15:31:77:6a:1f:76:43:3b: f7:5b:29:8e:63:9d:0e:b3:bc:f3:f2:8d:2e:10:22:3a:08:b1: 5d:bd:4d:cc:65:a3:ca:30:97:53:64:f7:5b:01:d0:dd:ef:f9: 6d:8a:85:23:e5:8f:ee:59:d6:24:6d:1c:e6:86:9d:27:f9:88: f4:25:e2:ac -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAcMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODhEMkQxMTAvBgNVBAUTKEI1ODgxRkJBQ0E5REVCRjQ2Q0E2MDg2M0QyOTc3QzUz RkRENkMxOTAwHhcNMjUwNTMxMDI0NTIyWhcNMjUwNjA3MDI0NTIyWjAYMRYwFAYD VQQDEw02ODNhNmQ0My0zMjJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwHTNwrhxhHkgg6/zHtmZO5UzgCIHn9zflWzwwmDu9eeljOZSZwTxeUJ2DBih Tk75qZHchVUmaVy0Yj9qpsDDBctOemqDNlG4hCWyMZ7D+2C4iT2fJ0lF0aXzEF/T NIpD19S7auLaFgyvOE8iiJD96g6Nz6lh6FGBnfd6ObLpKoBRmFuO+o6MKyhQ/MLh 9JGGTAEKoO1C4yyTYoP/2Fqrgl/gr7cyCRRGwV0qRxWUPFuAiBBnGe4apD2HUIKx //odwRbsJlb9mvgoT2x+y1uQryyR7LHI3CxTHQWsfksLmaZsM084UAO4Qx+P5DEj S5TUpNPoqPhvsFncfXBjCLqlzQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB1BOz7Q Rg1nnXJb5iTF+K7PumtBMB8GA1UdIwQYMBaAFLWIH7rKnev0bKYIY9KXfFP91sGQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4OEQyRC9BMDY4MkEwNDhG RjkxMUVEQUJFQzI1MzdDNEY5QUUwMi90WWdmdXNxZDZfUnNwZ2hqMHBkOFVfM1d3 WkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RZZ2Z1c3FkNl9Sc3BnaGowcGQ4VV8zV3daQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 OEQyRC9BMDY4MkEwNDhGRjkxMUVEQUJFQzI1MzdDNEY5QUUwMi90WWdmdXNxZDZf UnNwZ2hqMHBkOFVfM1d3WkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAcheDPZgH37y88L/1BTAXcEU3LQpb590R/Xo2YI/uc94xgC9RSXhAq tr/pySIrgEDURZpKb+I8vhl8MzWVhQtooUBUjTDpZ4GVkUvli6Kw9ORqpJGAUsOJ XSZT0WZCNKiGuuVTtI5fs60nSz+hqocKn5BrQVbKcQmYp6fwPmoLb2sQ0yFFjy4j n4/UXDRk0pLe0qAlHgA/mQmqZid1isD2wJ321uO/ExENl/Z24Eye6V7+e5LvOwSB 1riqg5/EFTF3ah92Qzv3WymOY50Os7zz8o0uECI6CLFdvU3MZaPKMJdTZPdbAdDd 7/ltioUj5Y/uWdYkbRzmhp0n+Yj0JeKs -----END CERTIFICATE-----Generated at Sat May 31 16:40:43 2025 by rpki-client