$ rpki-client -vvf rpki.apnic.net/member_repository/A9198D95/48ED296AE06511EEB35F421EC4F9AE02/_tgXL4qVo1IC1RxvdfqUfehE9M0.mft File: _tgXL4qVo1IC1RxvdfqUfehE9M0.mft (raw, json) Hash identifier: vZQldS6Ck7AIQ6doLRp6b9GIj6TskjqQ9SAgKLtPeJI= Subject key identifier: 54:88:FC:17:85:33:7C:33:09:92:E7:61:6F:EC:27:61:71:99:8C:A1 Authority key identifier: FE:D8:17:2F:8A:95:A3:52:02:D5:1C:6F:75:FA:94:7D:E8:44:F4:CD Certificate issuer: /CN=A9198D95/serialNumber=FED8172F8A95A35202D51C6F75FA947DE844F4CD Certificate serial: E5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_tgXL4qVo1IC1RxvdfqUfehE9M0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9198D95/48ED296AE06511EEB35F421EC4F9AE02/_tgXL4qVo1IC1RxvdfqUfehE9M0.mft Manifest number: E3 Signing time: Sat 31 May 2025 05:02:15 +0000 Manifest this update: Sat 31 May 2025 05:02:14 +0000 Manifest next update: Sat 07 Jun 2025 05:02:14 +0000 Files and hashes: 1: _tgXL4qVo1IC1RxvdfqUfehE9M0.crl (hash: YXO2Bp8ocvne4zPndCDFWXPQDk+JWPIqxLnuePlCrnk=) 2: 994A883AE06511EEA8CEC61EC4F9AE02.roa (hash: LjsOflVWx2ASLq3Z//t4WARlGyPly5HO69O4zsWdHy0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9198D95/48ED296AE06511EEB35F421EC4F9AE02/_tgXL4qVo1IC1RxvdfqUfehE9M0.crl rsync://rpki.apnic.net/member_repository/A9198D95/48ED296AE06511EEB35F421EC4F9AE02/_tgXL4qVo1IC1RxvdfqUfehE9M0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_tgXL4qVo1IC1RxvdfqUfehE9M0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 05:02:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 229 (0xe5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9198D95, serialNumber=FED8172F8A95A35202D51C6F75FA947DE844F4CD Validity Not Before: May 31 05:02:14 2025 GMT Not After : Jun 7 05:02:14 2025 GMT Subject: CN=683a8d57-9b89 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:db:43:20:74:1a:e0:90:b8:20:b5:50:47:50: 11:a3:05:1b:1d:f7:c5:d9:96:7a:de:77:1a:9b:c5: 7e:88:41:c1:6b:7c:fc:73:2b:7c:f8:59:ba:2e:bb: 4a:86:9b:55:5a:98:25:4f:a2:58:78:d6:fe:7c:b2: 5e:f9:10:d1:72:0f:18:8e:0d:b6:53:5a:62:d8:94: 05:e0:40:ae:72:f0:35:f0:ee:21:c0:4e:c1:a6:a8: d9:7a:05:3d:d7:bf:36:f2:e6:ac:0e:7f:78:b9:1a: 38:d8:e3:32:0b:e6:21:d6:90:81:13:e8:69:9f:06: 89:24:ff:ea:67:83:ed:66:b2:71:64:ba:3a:6a:08: 6c:45:c7:97:ea:57:91:0f:4d:5b:90:60:4a:30:9d: 95:eb:bd:9a:ef:7a:c8:c4:4a:ab:85:2c:08:d7:6e: eb:5e:61:61:67:7f:65:9f:88:c9:ab:7d:03:dd:eb: 78:02:e0:af:e8:ca:0c:88:0d:ce:0c:5f:6d:ad:30: 39:95:c5:89:09:e7:f5:e4:a2:ad:9a:ce:f8:59:ea: 06:8d:e8:44:34:3c:88:68:78:24:72:2f:02:de:13: dd:19:e5:ff:bd:23:cf:ab:1f:9b:1c:1b:5c:cb:27: ab:ba:d1:e1:1d:47:02:eb:51:9e:81:52:5a:f7:d4: 2a:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:88:FC:17:85:33:7C:33:09:92:E7:61:6F:EC:27:61:71:99:8C:A1 X509v3 Authority Key Identifier: keyid:FE:D8:17:2F:8A:95:A3:52:02:D5:1C:6F:75:FA:94:7D:E8:44:F4:CD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9198D95/48ED296AE06511EEB35F421EC4F9AE02/_tgXL4qVo1IC1RxvdfqUfehE9M0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_tgXL4qVo1IC1RxvdfqUfehE9M0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9198D95/48ED296AE06511EEB35F421EC4F9AE02/_tgXL4qVo1IC1RxvdfqUfehE9M0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 59:09:c5:1d:51:24:d5:50:df:25:07:97:3d:31:83:19:75:3c: 67:dc:a8:53:46:58:c8:36:68:8e:2c:5b:24:55:9a:45:e5:78: 03:9e:69:1b:de:85:d3:87:fc:25:be:69:c9:f9:76:c8:6d:a7: 68:55:86:ad:87:d4:5e:dc:fc:95:33:35:b5:d5:70:1a:04:e0: 73:86:41:9e:51:bb:a8:c4:3b:63:c4:19:8b:96:0b:23:75:1d: 42:e5:83:4a:88:0a:f5:4e:5b:92:32:b4:4d:5f:95:78:dd:38: 63:a8:34:ea:0a:d9:97:61:94:f3:89:41:42:12:b7:c8:31:09: d9:b8:90:37:97:af:e1:ef:f2:d2:de:e0:a3:4c:56:b4:f8:4b: 44:fa:42:31:3b:4e:2e:f9:f4:d0:15:ed:8c:17:e3:a4:53:c7: f2:4e:33:ee:65:56:86:18:b8:a1:86:eb:aa:90:19:30:3d:39: 21:5b:97:0f:bd:89:25:87:37:ca:91:21:8e:dd:73:d3:2c:58: fe:e9:0b:71:15:3f:73:8d:70:df:0f:51:21:b3:9e:16:1d:1d: 69:b5:70:5c:d1:db:84:1f:6f:93:17:82:09:50:ba:52:35:e3: d4:de:79:ed:67:da:c7:fc:04:a1:43:c6:f1:9f:2f:1c:1b:97: 6a:d2:99:a9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OThEOTUxMTAvBgNVBAUTKEZFRDgxNzJGOEE5NUEzNTIwMkQ1MUM2Rjc1RkE5NDdE RTg0NEY0Q0QwHhcNMjUwNTMxMDUwMjE0WhcNMjUwNjA3MDUwMjE0WjAYMRYwFAYD VQQDEw02ODNhOGQ1Ny05Yjg5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwdtDIHQa4JC4ILVQR1ARowUbHffF2ZZ63ncam8V+iEHBa3z8cyt8+Fm6LrtK hptVWpglT6JYeNb+fLJe+RDRcg8Yjg22U1pi2JQF4ECucvA18O4hwE7BpqjZegU9 17828uasDn94uRo42OMyC+Yh1pCBE+hpnwaJJP/qZ4PtZrJxZLo6aghsRceX6leR D01bkGBKMJ2V672a73rIxEqrhSwI127rXmFhZ39ln4jJq30D3et4AuCv6MoMiA3O DF9trTA5lcWJCef15KKtms74WeoGjehENDyIaHgkci8C3hPdGeX/vSPPqx+bHBtc yyerutHhHUcC61GegVJa99QqbQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFSI/BeF M3wzCZLnYW/sJ2FxmYyhMB8GA1UdIwQYMBaAFP7YFy+KlaNSAtUcb3X6lH3oRPTN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OEQ5NS80OEVEMjk2QUUw NjUxMUVFQjM1RjQyMUVDNEY5QUUwMi9fdGdYTDRxVm8xSUMxUnh2ZGZxVWZlaEU5 TTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL190Z1hMNHFWbzFJQzFSeHZkZnFVZmVoRTlNMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OEQ5NS80OEVEMjk2QUUwNjUxMUVFQjM1RjQyMUVDNEY5QUUwMi9fdGdYTDRxVm8x SUMxUnh2ZGZxVWZlaEU5TTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBZCcUdUSTVUN8lB5c9MYMZdTxn3KhTRljINmiOLFskVZpF5XgDnmkb 3oXTh/wlvmnJ+XbIbadoVYath9Re3PyVMzW11XAaBOBzhkGeUbuoxDtjxBmLlgsj dR1C5YNKiAr1TluSMrRNX5V43ThjqDTqCtmXYZTziUFCErfIMQnZuJA3l6/h7/LS 3uCjTFa0+EtE+kIxO04u+fTQFe2MF+OkU8fyTjPuZVaGGLihhuuqkBkwPTkhW5cP vYklhzfKkSGO3XPTLFj+6QtxFT9zjXDfD1Ehs54WHR1ptXBc0duEH2+TF4IJULpS NePU3nntZ9rH/AShQ8bxny8cG5dq0pmp -----END CERTIFICATE-----Generated at Sat May 31 17:32:56 2025 by rpki-client