$ rpki-client -vvf rpki.apnic.net/member_repository/A91A3F5D/10F94EF006AB11EF87BFA725C4F9AE02/tAgYFca67ZihzJUKxvoQvGAFiQI.mft File: tAgYFca67ZihzJUKxvoQvGAFiQI.mft (raw, json) Hash identifier: xQqdn9KSWp4oFq0cq6sE47sTZU2wcxoiplLJuwIbWHo= Subject key identifier: A4:C0:2F:EA:25:B7:76:C7:D8:48:2E:F8:71:BF:85:04:7E:39:23:8B Authority key identifier: B4:08:18:15:C6:BA:ED:98:A1:CC:95:0A:C6:FA:10:BC:60:05:89:02 Certificate issuer: /CN=A91A3F5D/serialNumber=B4081815C6BAED98A1CC950AC6FA10BC60058902 Certificate serial: DE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tAgYFca67ZihzJUKxvoQvGAFiQI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A3F5D/10F94EF006AB11EF87BFA725C4F9AE02/tAgYFca67ZihzJUKxvoQvGAFiQI.mft Manifest number: D2 Signing time: Sat 31 May 2025 05:19:17 +0000 Manifest this update: Sat 31 May 2025 05:19:17 +0000 Manifest next update: Sat 07 Jun 2025 05:19:17 +0000 Files and hashes: 1: tAgYFca67ZihzJUKxvoQvGAFiQI.crl (hash: dh/q2bl1pKl0OMj+A//BPPu+Ysed/4seUL+3zPz0ZKU=) 2: C27BAE1E63B411EF9A87155DC4F9AE02.roa (hash: SSYQhoePXSEZdBWsz2dSUFdjtoPBSwBZmvZLvzmRmE0=) 3: 04B0D250076211EFB14D3B12C4F9AE02.roa (hash: P3/wZ7DQvbJJfKWvdajqCfHfPIC9vT8MvrKGyjWYukc=) 4: 052FFA76076211EFB14D3B12C4F9AE02.roa (hash: ZSCw86aRTNxpcp5h59Ua7FuiYhnQ7JZYo+fxXzI0qEo=) 5: 03DAC9E4076211EFB14D3B12C4F9AE02.roa (hash: 81XCmtMAkz8d5MFKkbARa3r3fmwCBxTjGKLV+BXxDFc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A3F5D/10F94EF006AB11EF87BFA725C4F9AE02/tAgYFca67ZihzJUKxvoQvGAFiQI.crl rsync://rpki.apnic.net/member_repository/A91A3F5D/10F94EF006AB11EF87BFA725C4F9AE02/tAgYFca67ZihzJUKxvoQvGAFiQI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tAgYFca67ZihzJUKxvoQvGAFiQI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 05:19:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 222 (0xde) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A3F5D, serialNumber=B4081815C6BAED98A1CC950AC6FA10BC60058902 Validity Not Before: May 31 05:19:17 2025 GMT Not After : Jun 7 05:19:17 2025 GMT Subject: CN=683a9155-588e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:7f:71:25:8b:fc:c7:cb:86:6d:41:b9:75:0f: 78:60:e7:51:e2:62:b9:8e:73:95:7a:3f:84:24:ee: ef:dd:1a:37:e3:9c:6c:dc:d1:c2:9b:ec:37:29:29: ab:57:6a:db:5d:1f:65:47:37:31:a3:35:aa:e1:98: 18:3f:7c:c9:40:0e:9b:17:59:c2:37:91:74:24:e0: 2a:de:d2:63:7b:c0:aa:cc:77:53:e2:16:be:dc:ca: ff:d0:35:74:ca:c4:a5:0b:b0:57:0d:83:b0:61:ba: b2:4c:7f:e7:22:9b:db:e5:f3:c0:c7:c4:f6:c3:06: a4:5e:f3:5d:a9:d4:8b:68:c3:a3:d8:26:35:59:d4: 8d:12:3a:93:59:57:53:fd:7f:1f:4c:a3:d7:89:3f: 57:c4:41:27:ab:9e:bb:72:26:7d:be:ef:be:02:64: f1:f7:17:b0:50:e7:ed:3b:d2:b0:62:6a:0c:0b:9b: 1a:76:26:a0:ab:63:68:48:7a:fc:88:13:3a:ee:03: b0:f9:4b:29:b2:62:d3:9d:c6:0b:c3:c9:1f:d7:31: b3:71:b7:76:96:83:f2:59:10:66:6a:16:09:b2:25: a1:56:ed:a4:aa:11:01:04:43:dd:69:05:06:a3:50: ea:35:ca:2b:86:4c:0c:56:54:dd:31:82:c4:7a:0b: 87:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:C0:2F:EA:25:B7:76:C7:D8:48:2E:F8:71:BF:85:04:7E:39:23:8B X509v3 Authority Key Identifier: keyid:B4:08:18:15:C6:BA:ED:98:A1:CC:95:0A:C6:FA:10:BC:60:05:89:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A3F5D/10F94EF006AB11EF87BFA725C4F9AE02/tAgYFca67ZihzJUKxvoQvGAFiQI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tAgYFca67ZihzJUKxvoQvGAFiQI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A3F5D/10F94EF006AB11EF87BFA725C4F9AE02/tAgYFca67ZihzJUKxvoQvGAFiQI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a4:a0:b7:1c:60:c5:32:51:36:26:24:78:85:b1:8d:16:e9:49: 9e:eb:bb:00:6a:02:b0:be:52:25:bf:80:0b:fc:05:3c:81:1f: d0:6b:f3:e3:cd:e0:80:7e:de:32:ba:0f:1f:b9:89:f2:f9:c9: a9:d8:d0:27:5a:af:31:da:5b:57:5a:c0:7c:8b:15:cb:de:82: 6e:76:f0:6b:25:41:2c:91:b8:11:b7:a6:fe:2b:c4:1d:db:c1: 46:e8:05:b9:42:a2:61:7d:4f:87:6c:ac:e6:19:c3:7b:5a:45: 7d:0e:f5:f8:44:12:98:66:12:9e:a3:e2:c0:5e:89:ef:25:d3: 9e:25:6a:a6:97:4e:64:79:fb:37:0b:78:af:54:ad:24:c5:cc: ef:43:2f:91:ba:f1:6c:d7:90:44:ca:73:ea:fe:81:fe:fb:b8: 3b:07:f2:8f:77:08:75:8d:be:3d:f5:b4:2f:61:35:45:5a:b3: 0a:b1:b6:ad:f4:8b:8b:6f:21:98:bd:05:28:a3:97:25:31:9e: 99:fe:81:1e:38:da:23:ff:39:b2:7e:79:e5:db:29:ea:6c:9c: bb:b6:13:08:9c:4f:60:5d:23:44:28:73:34:1e:59:6a:91:03: cc:8a:6b:48:a9:d7:1e:7b:2b:9b:7f:1f:d5:e9:66:34:e5:ae: 8a:19:48:ca -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAN4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTNGNUQxMTAvBgNVBAUTKEI0MDgxODE1QzZCQUVEOThBMUNDOTUwQUM2RkExMEJD NjAwNTg5MDIwHhcNMjUwNTMxMDUxOTE3WhcNMjUwNjA3MDUxOTE3WjAYMRYwFAYD VQQDEw02ODNhOTE1NS01ODhlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqH9xJYv8x8uGbUG5dQ94YOdR4mK5jnOVej+EJO7v3Ro345xs3NHCm+w3KSmr V2rbXR9lRzcxozWq4ZgYP3zJQA6bF1nCN5F0JOAq3tJje8CqzHdT4ha+3Mr/0DV0 ysSlC7BXDYOwYbqyTH/nIpvb5fPAx8T2wwakXvNdqdSLaMOj2CY1WdSNEjqTWVdT /X8fTKPXiT9XxEEnq567ciZ9vu++AmTx9xewUOftO9KwYmoMC5sadiagq2NoSHr8 iBM67gOw+UspsmLTncYLw8kf1zGzcbd2loPyWRBmahYJsiWhVu2kqhEBBEPdaQUG o1DqNcorhkwMVlTdMYLEeguHjQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKTAL+ol t3bH2Egu+HG/hQR+OSOLMB8GA1UdIwQYMBaAFLQIGBXGuu2YocyVCsb6ELxgBYkC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBM0Y1RC8xMEY5NEVGMDA2 QUIxMUVGODdCRkE3MjVDNEY5QUUwMi90QWdZRmNhNjdaaWh6SlVLeHZvUXZHQUZp UUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RBZ1lGY2E2N1ppaHpKVUt4dm9RdkdBRmlRSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB M0Y1RC8xMEY5NEVGMDA2QUIxMUVGODdCRkE3MjVDNEY5QUUwMi90QWdZRmNhNjda aWh6SlVLeHZvUXZHQUZpUUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCkoLccYMUyUTYmJHiFsY0W6Ume67sAagKwvlIlv4AL/AU8gR/Qa/Pj zeCAft4yug8fuYny+cmp2NAnWq8x2ltXWsB8ixXL3oJudvBrJUEskbgRt6b+K8Qd 28FG6AW5QqJhfU+HbKzmGcN7WkV9DvX4RBKYZhKeo+LAXonvJdOeJWqml05kefs3 C3ivVK0kxczvQy+RuvFs15BEynPq/oH++7g7B/KPdwh1jb499bQvYTVFWrMKsbat 9IuLbyGYvQUoo5clMZ6Z/oEeONoj/zmyfnnl2ynqbJy7thMInE9gXSNEKHM0Hllq kQPMimtIqdceeyubfx/V6WY05a6KGUjK -----END CERTIFICATE-----Generated at Sat May 31 17:32:56 2025 by rpki-client