$ rpki-client -vvf rpki.apnic.net/member_repository/A91AFAAC/4AF0C92A354A11F0BA766E4CC4F9AE02/TT_EcGT06hvcqym55lsx103iZOA.mft File: TT_EcGT06hvcqym55lsx103iZOA.mft (raw, json) Hash identifier: LeKKDjSXAZ54ecWCYuF5uUSBJ+E4kcakMBGEqS44MZ4= Subject key identifier: 08:E7:53:EC:5A:D6:BF:64:24:B1:C8:43:D5:00:27:26:98:72:8F:DC Authority key identifier: 4D:3F:C4:70:64:F4:EA:1B:DC:AB:29:B9:E6:5B:31:D7:4D:E2:64:E0 Certificate issuer: /CN=A91AFAAC/serialNumber=4D3FC47064F4EA1BDCAB29B9E65B31D74DE264E0 Certificate serial: 09 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TT_EcGT06hvcqym55lsx103iZOA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AFAAC/4AF0C92A354A11F0BA766E4CC4F9AE02/TT_EcGT06hvcqym55lsx103iZOA.mft Manifest number: 08 Signing time: Tue 03 Jun 2025 08:02:05 +0000 Manifest this update: Tue 03 Jun 2025 08:02:04 +0000 Manifest next update: Tue 10 Jun 2025 08:02:04 +0000 Files and hashes: 1: TT_EcGT06hvcqym55lsx103iZOA.crl (hash: G5aby2DZwx6AcLurKAWi/csxgbEKKMxyIPJNqfP0sco=) 2: 40F5D9E6354B11F0A873F14DC4F9AE02.roa (hash: Cosb+eMZxQ3sCZz6h4y2hYsraDJKDCIgjZyVYBFmpVk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AFAAC/4AF0C92A354A11F0BA766E4CC4F9AE02/TT_EcGT06hvcqym55lsx103iZOA.crl rsync://rpki.apnic.net/member_repository/A91AFAAC/4AF0C92A354A11F0BA766E4CC4F9AE02/TT_EcGT06hvcqym55lsx103iZOA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TT_EcGT06hvcqym55lsx103iZOA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 08:02:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9 (0x9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AFAAC, serialNumber=4D3FC47064F4EA1BDCAB29B9E65B31D74DE264E0 Validity Not Before: Jun 3 08:02:04 2025 GMT Not After : Jun 10 08:02:04 2025 GMT Subject: CN=683eabfd-89b9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:b8:1c:c1:df:e0:73:b7:54:50:52:4f:1e:01: ff:1a:4d:1c:6b:21:ca:62:66:3b:d9:f8:24:64:56: 20:29:57:9b:69:68:6c:93:5f:cf:45:bd:cb:3e:05: d1:81:f8:a1:2a:60:28:68:b5:98:0f:7a:82:6a:91: 6f:5e:50:53:59:6b:42:e7:c9:15:55:5f:35:62:3a: 71:0f:c6:8c:49:fc:67:8c:df:75:96:9c:f9:b0:e3: 8b:f1:ed:20:e2:a2:67:58:5f:fe:87:9c:74:f3:d0: 44:dc:7f:34:ea:8f:4d:ab:58:51:c8:90:09:95:f5: b7:38:d8:fe:ec:d4:ef:9f:de:ce:3f:bd:be:d6:e5: 4b:44:35:fe:e8:f9:88:da:e8:14:f1:b3:7f:a1:29: c7:9d:0e:f7:01:fa:3d:ea:59:1c:bd:c9:9e:93:f2: 3c:b8:42:da:7e:27:6e:73:a2:52:88:fe:13:11:fd: 5d:d9:f5:88:c6:aa:5b:2d:4a:10:a7:5a:b2:68:0e: c1:db:a6:e8:5d:cd:01:1e:4f:92:20:9e:cf:6d:9a: 44:a1:c3:c6:77:95:0a:35:b7:ac:12:f5:17:65:55: c2:8b:f0:48:c4:78:54:4f:7c:d6:c0:fb:51:1e:fe: 20:b6:6c:04:f9:67:09:67:9e:a3:00:ad:dc:66:b6: ad:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:E7:53:EC:5A:D6:BF:64:24:B1:C8:43:D5:00:27:26:98:72:8F:DC X509v3 Authority Key Identifier: keyid:4D:3F:C4:70:64:F4:EA:1B:DC:AB:29:B9:E6:5B:31:D7:4D:E2:64:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AFAAC/4AF0C92A354A11F0BA766E4CC4F9AE02/TT_EcGT06hvcqym55lsx103iZOA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TT_EcGT06hvcqym55lsx103iZOA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AFAAC/4AF0C92A354A11F0BA766E4CC4F9AE02/TT_EcGT06hvcqym55lsx103iZOA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 94:87:0e:ef:69:7d:ce:6a:72:2c:e6:46:3f:23:5e:87:bf:90: 2e:e0:a1:79:93:7e:b0:59:85:0a:7b:ce:4b:18:a1:b1:18:c1: 10:3e:e9:f1:93:43:dd:51:ab:cc:7e:5f:61:63:2d:33:74:b4: d5:f2:e5:16:66:6a:32:d2:fc:6c:57:b0:2f:68:9e:ca:fd:af: 3f:c7:08:26:f2:08:d0:54:06:9d:5e:9c:b3:b4:a7:4f:56:08: 3d:23:07:0f:5b:1e:a0:7c:90:40:17:e6:4a:60:fa:98:b7:5c: fc:f7:82:87:be:27:12:c4:a6:cb:d7:38:98:ca:ce:2a:a2:7b: 42:92:7c:97:3a:db:b6:d8:12:c4:df:2a:27:3d:a2:d1:b0:06: 1b:42:fd:7f:42:56:c6:47:49:00:88:16:25:5c:b3:22:6f:fa: 67:00:f9:be:f0:75:28:60:57:1d:c4:d9:9c:62:ce:97:e7:ec: 9e:19:f2:39:be:63:3b:81:43:68:b8:b2:23:1c:10:35:8e:3d: 3e:14:4b:2d:a7:68:74:f4:d3:c0:38:b0:b6:8e:4f:72:bd:0f: c5:3e:e0:ef:19:e3:6d:94:e3:7f:b2:8e:a1:fd:bf:fd:ff:fe: 84:bb:0f:db:d1:d0:da:94:d8:eb:ce:52:7d:12:18:e1:f4:17: 22:a3:c2:1d -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBCTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB RkFBQzExMC8GA1UEBRMoNEQzRkM0NzA2NEY0RUExQkRDQUIyOUI5RTY1QjMxRDc0 REUyNjRFMDAeFw0yNTA2MDMwODAyMDRaFw0yNTA2MTAwODAyMDRaMBgxFjAUBgNV BAMTDTY4M2VhYmZkLTg5YjkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCyuBzB3+Bzt1RQUk8eAf8aTRxrIcpiZjvZ+CRkViApV5tpaGyTX89Fvcs+BdGB +KEqYChotZgPeoJqkW9eUFNZa0LnyRVVXzViOnEPxoxJ/GeM33WWnPmw44vx7SDi omdYX/6HnHTz0ETcfzTqj02rWFHIkAmV9bc42P7s1O+f3s4/vb7W5UtENf7o+Yja 6BTxs3+hKcedDvcB+j3qWRy9yZ6T8jy4Qtp+J25zolKI/hMR/V3Z9YjGqlstShCn WrJoDsHbpuhdzQEeT5Igns9tmkShw8Z3lQo1t6wS9RdlVcKL8EjEeFRPfNbA+1Ee /iC2bAT5ZwlnnqMArdxmtq2LAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUCOdT7FrW v2QkschD1QAnJphyj9wwHwYDVR0jBBgwFoAUTT/EcGT06hvcqym55lsx103iZOAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFGQUFDLzRBRjBDOTJBMzU0 QTExRjBCQTc2NkU0Q0M0RjlBRTAyL1RUX0VjR1QwNmh2Y3F5bTU1bHN4MTAzaVpP QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvVFRfRWNHVDA2aHZjcXltNTVsc3gxMDNpWk9BLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFG QUFDLzRBRjBDOTJBMzU0QTExRjBCQTc2NkU0Q0M0RjlBRTAyL1RUX0VjR1QwNmh2 Y3F5bTU1bHN4MTAzaVpPQS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJSHDu9pfc5qcizmRj8jXoe/kC7goXmTfrBZhQp7zksYobEYwRA+6fGT Q91Rq8x+X2FjLTN0tNXy5RZmajLS/GxXsC9onsr9rz/HCCbyCNBUBp1enLO0p09W CD0jBw9bHqB8kEAX5kpg+pi3XPz3goe+JxLEpsvXOJjKziqie0KSfJc627bYEsTf Kic9otGwBhtC/X9CVsZHSQCIFiVcsyJv+mcA+b7wdShgVx3E2Zxizpfn7J4Z8jm+ YzuBQ2i4siMcEDWOPT4USy2naHT008A4sLaOT3K9D8U+4O8Z422U43+yjqH9v/3/ /oS7D9vR0NqU2OvOUn0SGOH0FyKjwh0= -----END CERTIFICATE-----Generated at Tue Jun 3 23:42:44 2025 by rpki-client