$ rpki-client -vvf rpki.apnic.net/member_repository/A91CA8EA/D8CA13C2404911EC9B6EFE7BC4F9AE02/tii4qSXEXjrDpxvkEUZimYv0s-A.mft File: tii4qSXEXjrDpxvkEUZimYv0s-A.mft (raw, json) Hash identifier: aSZbXAhzvpdUrQ8yU0Q69i7KmeBStRzK19SJWCt5V4w= Subject key identifier: F6:C6:EA:04:F8:D3:3B:73:CD:B2:34:5B:55:15:6E:90:49:70:4D:E9 Authority key identifier: B6:28:B8:A9:25:C4:5E:3A:C3:A7:1B:E4:11:46:62:99:8B:F4:B3:E0 Certificate issuer: /CN=A91CA8EA/serialNumber=B628B8A925C45E3AC3A71BE4114662998BF4B3E0 Certificate serial: 0498 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tii4qSXEXjrDpxvkEUZimYv0s-A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CA8EA/D8CA13C2404911EC9B6EFE7BC4F9AE02/tii4qSXEXjrDpxvkEUZimYv0s-A.mft Manifest number: 048C Signing time: Sat 31 May 2025 00:14:23 +0000 Manifest this update: Sat 31 May 2025 00:14:23 +0000 Manifest next update: Sat 07 Jun 2025 00:14:23 +0000 Files and hashes: 1: tii4qSXEXjrDpxvkEUZimYv0s-A.crl (hash: s5sAJs/yYh4H0vmX4xGEyaUMn4yr6QjNvf4xZE+4cRo=) 2: 14A07422D45E11EEB37CB639C4F9AE02.roa (hash: jYyif5XzvidlG1gkLHEZCka6sLKHMVLL3uaZPQUQSWU=) 3: 207388F2D45E11EE8D29793EC4F9AE02.roa (hash: aIqnIQInPJrCMj5K0+1zGOgCOM0xLmrh4KbjkSzgqVY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CA8EA/D8CA13C2404911EC9B6EFE7BC4F9AE02/tii4qSXEXjrDpxvkEUZimYv0s-A.crl rsync://rpki.apnic.net/member_repository/A91CA8EA/D8CA13C2404911EC9B6EFE7BC4F9AE02/tii4qSXEXjrDpxvkEUZimYv0s-A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tii4qSXEXjrDpxvkEUZimYv0s-A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 00:14:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1176 (0x498) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CA8EA, serialNumber=B628B8A925C45E3AC3A71BE4114662998BF4B3E0 Validity Not Before: May 31 00:14:23 2025 GMT Not After : Jun 7 00:14:23 2025 GMT Subject: CN=683a49df-2968 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:8f:fa:36:7c:0b:6e:56:bf:d8:56:73:f8:dc: 67:0e:9b:f1:a7:04:87:ec:c9:82:b8:b9:6c:46:f2: d6:33:68:34:65:7b:c0:44:3e:0b:80:c8:49:77:02: 35:22:98:6c:94:54:fc:67:2c:4f:c9:58:ad:bf:94: dd:97:e6:5d:d0:59:4d:11:d2:c4:ab:fc:5a:ff:4f: 0d:78:8d:1f:aa:95:1e:e0:b7:a5:95:f4:33:64:fb: 17:11:4a:57:7d:39:10:57:12:0e:e9:e0:e4:20:50: 9c:bd:83:c8:58:dd:38:51:0b:f1:c8:92:26:b0:98: 44:7a:cc:b5:3f:df:f5:60:9f:b0:39:c2:29:8e:84: 23:e1:7d:a6:06:c5:d8:9b:cf:09:13:6e:1c:a5:50: c5:6e:91:43:c7:bc:16:1f:23:33:cf:13:cd:b7:4d: de:c4:11:be:51:c8:ec:e8:04:12:bf:40:3a:e0:77: 4c:d5:46:bb:80:14:de:15:de:8e:b1:e1:05:db:74: 2a:0f:9d:cb:ca:61:82:be:ff:33:d8:a3:36:31:cf: 11:97:0f:64:5a:62:3b:27:35:3a:31:45:7d:21:83: 47:53:49:2e:5f:b4:71:10:42:9a:51:66:28:fa:a4: 2e:dc:69:ca:af:38:74:7b:be:71:62:b0:1f:6e:2e: 02:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:C6:EA:04:F8:D3:3B:73:CD:B2:34:5B:55:15:6E:90:49:70:4D:E9 X509v3 Authority Key Identifier: keyid:B6:28:B8:A9:25:C4:5E:3A:C3:A7:1B:E4:11:46:62:99:8B:F4:B3:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CA8EA/D8CA13C2404911EC9B6EFE7BC4F9AE02/tii4qSXEXjrDpxvkEUZimYv0s-A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tii4qSXEXjrDpxvkEUZimYv0s-A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CA8EA/D8CA13C2404911EC9B6EFE7BC4F9AE02/tii4qSXEXjrDpxvkEUZimYv0s-A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b4:6d:4e:28:80:1a:45:a2:a8:00:1c:d8:91:45:9a:33:4f:24: bb:a1:db:67:56:ca:f5:46:98:64:9f:55:8e:dd:4f:62:27:f2: e5:99:8e:b5:55:98:6c:2f:dd:6a:fb:12:7f:0d:a6:22:20:83: 06:19:1a:b8:0e:64:f9:28:fc:8d:ff:09:08:60:69:12:d0:2a: 89:82:32:89:34:3d:9e:14:c2:04:46:23:c5:b9:ce:ce:ac:29: 42:f9:cd:3b:e1:85:ce:34:78:a3:58:3a:9d:51:63:21:3f:6b: 28:87:b1:c9:70:de:b3:e9:57:c6:0e:9b:70:45:38:3d:df:f1: 7f:0b:b0:45:53:b2:22:10:e0:8c:c2:95:b8:9d:11:31:34:24: f2:82:9e:cf:07:7f:2d:6d:b7:3f:29:74:15:a6:0e:07:c8:8e: 5b:30:2a:ec:3a:cd:23:9a:3e:80:79:c5:7a:2e:98:71:40:ad: 2c:c0:72:07:81:8c:9d:a4:fd:d3:bd:d3:24:3b:52:ab:80:1f: 1d:f9:13:88:d9:16:c8:eb:ef:42:9f:12:f5:25:6e:10:eb:16: ea:63:c9:93:c2:b2:85:c3:96:68:d9:82:65:cb:2b:18:ee:cb: 00:ed:14:8e:65:30:d7:53:24:bc:f2:60:89:5f:03:7c:11:70: 9b:94:19:ac -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBJgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0E4RUExMTAvBgNVBAUTKEI2MjhCOEE5MjVDNDVFM0FDM0E3MUJFNDExNDY2Mjk5 OEJGNEIzRTAwHhcNMjUwNTMxMDAxNDIzWhcNMjUwNjA3MDAxNDIzWjAYMRYwFAYD VQQDEw02ODNhNDlkZi0yOTY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA04/6NnwLbla/2FZz+NxnDpvxpwSH7MmCuLlsRvLWM2g0ZXvARD4LgMhJdwI1 IphslFT8ZyxPyVitv5Tdl+Zd0FlNEdLEq/xa/08NeI0fqpUe4LellfQzZPsXEUpX fTkQVxIO6eDkIFCcvYPIWN04UQvxyJImsJhEesy1P9/1YJ+wOcIpjoQj4X2mBsXY m88JE24cpVDFbpFDx7wWHyMzzxPNt03exBG+Ucjs6AQSv0A64HdM1Ua7gBTeFd6O seEF23QqD53LymGCvv8z2KM2Mc8Rlw9kWmI7JzU6MUV9IYNHU0kuX7RxEEKaUWYo +qQu3GnKrzh0e75xYrAfbi4CMQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPbG6gT4 0ztzzbI0W1UVbpBJcE3pMB8GA1UdIwQYMBaAFLYouKklxF46w6cb5BFGYpmL9LPg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQThFQS9EOENBMTNDMjQw NDkxMUVDOUI2RUZFN0JDNEY5QUUwMi90aWk0cVNYRVhqckRweHZrRVVaaW1ZdjBz LUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RpaTRxU1hFWGpyRHB4dmtFVVppbVl2MHMtQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QThFQS9EOENBMTNDMjQwNDkxMUVDOUI2RUZFN0JDNEY5QUUwMi90aWk0cVNYRVhq ckRweHZrRVVaaW1ZdjBzLUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC0bU4ogBpFoqgAHNiRRZozTyS7odtnVsr1Rphkn1WO3U9iJ/LlmY61 VZhsL91q+xJ/DaYiIIMGGRq4DmT5KPyN/wkIYGkS0CqJgjKJND2eFMIERiPFuc7O rClC+c074YXONHijWDqdUWMhP2soh7HJcN6z6VfGDptwRTg93/F/C7BFU7IiEOCM wpW4nRExNCTygp7PB38tbbc/KXQVpg4HyI5bMCrsOs0jmj6AecV6LphxQK0swHIH gYydpP3TvdMkO1KrgB8d+ROI2RbI6+9CnxL1JW4Q6xbqY8mTwrKFw5Zo2YJlyysY 7ssA7RSOZTDXUyS88mCJXwN8EXCblBms -----END CERTIFICATE-----Generated at Sat May 31 17:18:57 2025 by rpki-client