$ rpki-client -vvf rpki.apnic.net/member_repository/A91B25F2/EF90CD4E03B011EA85F02934C4F9AE02/tsh7tYco929vkKCd_WuqGtTnO8o.mft File: tsh7tYco929vkKCd_WuqGtTnO8o.mft (raw, json) Hash identifier: XJs3yMiooq+ypVlotjJ/sUk0RA+B8fvVl0mWqe/ujCw= Subject key identifier: E1:36:29:BA:75:F1:1F:42:4D:FE:1C:A3:40:2A:97:A3:B0:DC:CF:67 Authority key identifier: B6:C8:7B:B5:87:28:F7:6F:6F:90:A0:9D:FD:6B:AA:1A:D4:E7:3B:CA Certificate issuer: /CN=A91B25F2/serialNumber=B6C87BB58728F76F6F90A09DFD6BAA1AD4E73BCA Certificate serial: 0C84 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tsh7tYco929vkKCd_WuqGtTnO8o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B25F2/EF90CD4E03B011EA85F02934C4F9AE02/tsh7tYco929vkKCd_WuqGtTnO8o.mft Manifest number: 0C69 Signing time: Fri 30 May 2025 18:34:37 +0000 Manifest this update: Fri 30 May 2025 18:34:37 +0000 Manifest next update: Fri 06 Jun 2025 18:34:37 +0000 Files and hashes: 1: tsh7tYco929vkKCd_WuqGtTnO8o.crl (hash: lN4UosAGjDU87OnCp6XpL53q+jV+Pm/39xfxI/E0YyE=) 2: E8F85ED4EC5811EFA9B9C618C4F9AE02.roa (hash: ykoz29uCG/11xDnxQBhHvrkmfn5Ejy8eSvfC/XRGcV0=) 3: 47DADED8EC5211EFBF551F6DC4F9AE02.roa (hash: Ns3EqlAuypXsdC/A5rNqIcQNoK/ntkU/96rQkctaiRc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B25F2/EF90CD4E03B011EA85F02934C4F9AE02/tsh7tYco929vkKCd_WuqGtTnO8o.crl rsync://rpki.apnic.net/member_repository/A91B25F2/EF90CD4E03B011EA85F02934C4F9AE02/tsh7tYco929vkKCd_WuqGtTnO8o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tsh7tYco929vkKCd_WuqGtTnO8o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 18:34:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3204 (0xc84) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B25F2, serialNumber=B6C87BB58728F76F6F90A09DFD6BAA1AD4E73BCA Validity Not Before: May 30 18:34:37 2025 GMT Not After : Jun 6 18:34:37 2025 GMT Subject: CN=6839fa3d-79de Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:c4:13:65:3f:ea:1e:fe:c6:65:38:63:8b:7a: 38:f3:21:31:67:58:39:a2:6a:ab:18:0a:44:44:6f: 58:8c:2b:2a:ba:24:b9:9a:ed:8f:f6:c6:41:29:af: f0:24:fc:2c:7c:bd:5c:3a:71:b9:e4:bb:6a:6f:dd: 21:43:19:e6:9a:ad:b7:84:52:5c:7f:27:a9:70:87: 01:f7:21:5e:4c:95:f5:f9:4d:d4:fa:69:bf:ea:cf: 8d:2d:64:c2:c8:77:6d:52:73:43:3e:50:c9:f1:5c: d7:85:83:75:86:61:f4:cd:94:46:de:81:1a:13:9b: f1:6c:c3:08:98:ab:1f:0a:b8:18:04:dd:63:20:d9: a1:fb:e1:16:24:c5:19:1b:25:5b:19:78:1b:5c:6b: 16:1f:3b:8a:6b:8b:f5:f8:19:86:d0:82:d5:35:e1: 25:70:13:3f:05:24:ee:bf:ed:e7:bf:c5:bb:1c:bf: 6c:4b:85:19:ff:2d:02:81:fb:de:52:30:8c:ff:98: 61:6d:f7:6c:c5:d8:37:6d:bb:e8:59:ad:73:18:67: 56:30:44:08:cd:a7:15:21:73:91:3e:6c:b3:9b:32: 53:6c:02:f2:ce:71:62:fa:54:26:83:02:f1:1f:ce: 95:5f:94:28:8d:6e:fa:b5:0a:6d:ca:60:5f:24:07: 24:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:36:29:BA:75:F1:1F:42:4D:FE:1C:A3:40:2A:97:A3:B0:DC:CF:67 X509v3 Authority Key Identifier: keyid:B6:C8:7B:B5:87:28:F7:6F:6F:90:A0:9D:FD:6B:AA:1A:D4:E7:3B:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B25F2/EF90CD4E03B011EA85F02934C4F9AE02/tsh7tYco929vkKCd_WuqGtTnO8o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tsh7tYco929vkKCd_WuqGtTnO8o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B25F2/EF90CD4E03B011EA85F02934C4F9AE02/tsh7tYco929vkKCd_WuqGtTnO8o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9c:16:a8:6d:07:37:fd:9c:3b:6d:e3:72:9e:7b:96:d1:33:a7: 74:5f:5f:85:56:e1:22:41:3f:5d:7b:60:2d:b0:b5:7f:75:3b: d8:be:9f:60:98:69:81:0a:b7:c7:dc:63:a2:82:ac:59:46:3b: e9:50:c5:78:aa:a2:1a:de:34:60:a7:e1:28:65:70:6a:a8:3f: 13:40:39:f3:f8:30:41:9f:54:5f:40:bd:98:42:f1:b3:1b:61: 1b:62:99:f0:32:06:72:86:d2:8d:99:46:e2:49:73:0c:a6:c0: b2:86:1a:e5:63:d2:81:22:8a:35:8c:e3:92:22:41:ca:60:ee: 95:83:90:12:2b:21:1f:e0:ec:25:a8:36:e9:e6:14:51:2c:47: 74:df:24:7c:a0:00:57:8e:c7:60:c4:07:02:13:51:35:d6:3c: d9:fe:b3:42:80:d5:b2:81:d1:82:61:74:0d:31:9d:c3:eb:d6: 85:79:e8:7c:9a:d7:c6:b0:9f:c1:86:e9:b9:e4:a5:9a:86:76: c9:aa:3d:27:22:66:db:67:a5:81:e1:ff:38:6b:35:3f:2c:e2: 60:0a:14:84:a4:90:d4:18:46:cc:0b:ac:9a:b3:0d:b3:b3:d0: 99:d9:5b:0e:23:86:a9:9b:56:b5:28:9a:3b:ce:a4:a4:80:d1: 19:90:7e:db -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDIQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjI1RjIxMTAvBgNVBAUTKEI2Qzg3QkI1ODcyOEY3NkY2RjkwQTA5REZENkJBQTFB RDRFNzNCQ0EwHhcNMjUwNTMwMTgzNDM3WhcNMjUwNjA2MTgzNDM3WjAYMRYwFAYD VQQDEw02ODM5ZmEzZC03OWRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq8QTZT/qHv7GZThji3o48yExZ1g5omqrGApERG9YjCsquiS5mu2P9sZBKa/w JPwsfL1cOnG55Ltqb90hQxnmmq23hFJcfyepcIcB9yFeTJX1+U3U+mm/6s+NLWTC yHdtUnNDPlDJ8VzXhYN1hmH0zZRG3oEaE5vxbMMImKsfCrgYBN1jINmh++EWJMUZ GyVbGXgbXGsWHzuKa4v1+BmG0ILVNeElcBM/BSTuv+3nv8W7HL9sS4UZ/y0Cgfve UjCM/5hhbfdsxdg3bbvoWa1zGGdWMEQIzacVIXORPmyzmzJTbALyznFi+lQmgwLx H86VX5QojW76tQptymBfJAckSwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOE2Kbp1 8R9CTf4co0Aql6Ow3M9nMB8GA1UdIwQYMBaAFLbIe7WHKPdvb5Cgnf1rqhrU5zvK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMjVGMi9FRjkwQ0Q0RTAz QjAxMUVBODVGMDI5MzRDNEY5QUUwMi90c2g3dFljbzkyOXZrS0NkX1d1cUd0VG5P OG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RzaDd0WWNvOTI5dmtLQ2RfV3VxR3RUbk84by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MjVGMi9FRjkwQ0Q0RTAzQjAxMUVBODVGMDI5MzRDNEY5QUUwMi90c2g3dFljbzky OXZrS0NkX1d1cUd0VG5POG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCcFqhtBzf9nDtt43Kee5bRM6d0X1+FVuEiQT9de2AtsLV/dTvYvp9g mGmBCrfH3GOigqxZRjvpUMV4qqIa3jRgp+EoZXBqqD8TQDnz+DBBn1RfQL2YQvGz G2EbYpnwMgZyhtKNmUbiSXMMpsCyhhrlY9KBIoo1jOOSIkHKYO6Vg5ASKyEf4Owl qDbp5hRRLEd03yR8oABXjsdgxAcCE1E11jzZ/rNCgNWygdGCYXQNMZ3D69aFeeh8 mtfGsJ/Bhum55KWahnbJqj0nImbbZ6WB4f84azU/LOJgChSEpJDUGEbMC6yasw2z s9CZ2VsOI4apm1a1KJo7zqSkgNEZkH7b -----END CERTIFICATE-----Generated at Sat May 31 17:57:52 2025 by rpki-client