$ rpki-client -vvf rpki.apnic.net/member_repository/A91D0A62/1FA96DA0283111EC97A01316C4F9AE02/TN7H1CHxboUWcqgSOd0Y_IweOVY.mft File: TN7H1CHxboUWcqgSOd0Y_IweOVY.mft (raw, json) Hash identifier: JKwxWScjvTmraxvMF0YQX05tmyODGNvRyK6E6uoBWC0= Subject key identifier: 18:95:60:52:F0:F3:CF:6B:CC:07:8E:77:4D:31:7D:5C:AC:6C:D5:A3 Authority key identifier: 4C:DE:C7:D4:21:F1:6E:85:16:72:A8:12:39:DD:18:FC:8C:1E:39:56 Certificate issuer: /CN=A91D0A62/serialNumber=4CDEC7D421F16E851672A81239DD18FC8C1E3956 Certificate serial: 04C6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TN7H1CHxboUWcqgSOd0Y_IweOVY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D0A62/1FA96DA0283111EC97A01316C4F9AE02/TN7H1CHxboUWcqgSOd0Y_IweOVY.mft Manifest number: 04C2 Signing time: Sat 31 May 2025 00:02:30 +0000 Manifest this update: Sat 31 May 2025 00:02:29 +0000 Manifest next update: Sat 07 Jun 2025 00:02:29 +0000 Files and hashes: 1: TN7H1CHxboUWcqgSOd0Y_IweOVY.crl (hash: 7q+nkNjEPJzcZ4E/ltBZ9snSNA9Xb/qM7a7qSN71Ui4=) 2: C54BA97E283311ECBE887F3BC4F9AE02.roa (hash: XOTWPX30EoXJqKV6109bwG+UksO95BBHigXDmFEItd0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D0A62/1FA96DA0283111EC97A01316C4F9AE02/TN7H1CHxboUWcqgSOd0Y_IweOVY.crl rsync://rpki.apnic.net/member_repository/A91D0A62/1FA96DA0283111EC97A01316C4F9AE02/TN7H1CHxboUWcqgSOd0Y_IweOVY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TN7H1CHxboUWcqgSOd0Y_IweOVY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 00:02:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1222 (0x4c6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D0A62, serialNumber=4CDEC7D421F16E851672A81239DD18FC8C1E3956 Validity Not Before: May 31 00:02:29 2025 GMT Not After : Jun 7 00:02:29 2025 GMT Subject: CN=683a4716-c43c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:10:5b:61:cb:49:17:01:64:23:c1:97:59:83: 46:1a:8f:fd:3d:41:a1:5e:f3:64:bd:54:37:cc:5b: 0b:6f:f4:de:9d:45:27:8f:65:17:a6:3b:84:73:58: 90:90:b2:d9:28:9f:5d:4f:f4:31:66:41:77:92:52: 5d:6b:e4:dc:26:3e:f4:b5:ee:10:50:8e:b3:80:70: 25:31:83:54:c7:0e:3e:1c:db:06:5d:22:d0:f8:ee: 39:83:3d:34:a1:3a:f9:b0:25:ed:bb:a8:79:8a:be: 9b:42:f4:2d:fe:ba:30:8f:48:6a:f0:d3:e3:c2:ff: 64:1c:d3:b4:ff:f3:13:d4:2c:78:90:ce:c7:f7:75: 7a:80:6a:48:ef:0e:8f:16:43:f8:41:10:ab:f3:1b: 18:23:fa:91:21:d6:59:0c:44:ec:cc:94:5d:43:30: ec:9a:0f:7e:62:11:1c:81:8b:58:ea:b4:e4:a1:c5: 8c:1e:44:bb:38:93:c6:c2:55:24:9b:3e:9b:45:b1: a8:59:dd:b0:bb:02:02:5e:94:05:2d:db:a5:3e:d7: 96:62:b5:9f:b9:45:ab:5e:13:2c:ee:84:12:5a:db: e7:b1:75:08:1c:ab:73:12:8a:d5:fd:11:c0:29:fb: 93:65:1d:b4:b8:2b:35:3d:91:86:f9:d3:74:60:00: 8d:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:95:60:52:F0:F3:CF:6B:CC:07:8E:77:4D:31:7D:5C:AC:6C:D5:A3 X509v3 Authority Key Identifier: keyid:4C:DE:C7:D4:21:F1:6E:85:16:72:A8:12:39:DD:18:FC:8C:1E:39:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D0A62/1FA96DA0283111EC97A01316C4F9AE02/TN7H1CHxboUWcqgSOd0Y_IweOVY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TN7H1CHxboUWcqgSOd0Y_IweOVY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D0A62/1FA96DA0283111EC97A01316C4F9AE02/TN7H1CHxboUWcqgSOd0Y_IweOVY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 84:a9:bd:22:4b:f5:75:05:33:47:e2:7c:95:dc:9e:b5:37:71: 53:da:ec:57:86:cc:db:98:8c:a0:51:39:87:1f:e5:60:db:51: d0:db:d7:28:4e:1b:74:fd:83:ed:ff:0d:60:fa:2d:ed:a3:58: 03:c3:50:9e:d2:3f:2b:3a:70:cb:9a:d7:63:e5:47:71:e1:c5: 77:91:74:9a:46:96:39:20:88:33:99:67:d9:ed:6a:ea:cc:19: ff:fe:65:32:df:d4:fd:96:25:1d:7c:de:93:97:54:ce:4a:4e: bd:06:3c:32:5a:57:3d:a3:b3:e8:91:43:0c:ad:94:f9:31:6b: c6:03:88:e2:db:5e:51:88:47:3d:91:88:59:ae:28:84:ef:9c: 5f:44:39:7a:b2:ff:49:e8:fe:a7:a6:b2:f7:96:4f:e5:38:b5: 05:6a:d8:c9:4f:d3:93:bb:f2:40:1d:59:03:95:be:db:44:8b: 8b:46:49:6d:f5:30:d8:74:f7:da:03:a5:fc:df:2c:c6:16:b5: 4f:59:93:db:80:d3:52:3b:5b:1a:7d:82:7d:67:9b:7f:67:9e: c1:93:59:03:df:b8:c6:98:b8:98:b2:62:29:88:3a:33:ab:53: 7f:79:61:b3:fa:2d:ee:57:1e:2b:d4:3e:7b:9e:f8:19:a2:38: ff:77:48:35 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBMYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDBBNjIxMTAvBgNVBAUTKDRDREVDN0Q0MjFGMTZFODUxNjcyQTgxMjM5REQxOEZD OEMxRTM5NTYwHhcNMjUwNTMxMDAwMjI5WhcNMjUwNjA3MDAwMjI5WjAYMRYwFAYD VQQDEw02ODNhNDcxNi1jNDNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2xBbYctJFwFkI8GXWYNGGo/9PUGhXvNkvVQ3zFsLb/TenUUnj2UXpjuEc1iQ kLLZKJ9dT/QxZkF3klJda+TcJj70te4QUI6zgHAlMYNUxw4+HNsGXSLQ+O45gz00 oTr5sCXtu6h5ir6bQvQt/rowj0hq8NPjwv9kHNO0//MT1Cx4kM7H93V6gGpI7w6P FkP4QRCr8xsYI/qRIdZZDETszJRdQzDsmg9+YhEcgYtY6rTkocWMHkS7OJPGwlUk mz6bRbGoWd2wuwICXpQFLdulPteWYrWfuUWrXhMs7oQSWtvnsXUIHKtzEorV/RHA KfuTZR20uCs1PZGG+dN0YACNqQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBiVYFLw 889rzAeOd00xfVysbNWjMB8GA1UdIwQYMBaAFEzex9Qh8W6FFnKoEjndGPyMHjlW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMEE2Mi8xRkE5NkRBMDI4 MzExMUVDOTdBMDEzMTZDNEY5QUUwMi9UTjdIMUNIeGJvVVdjcWdTT2QwWV9Jd2VP VlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RON0gxQ0h4Ym9VV2NxZ1NPZDBZX0l3ZU9WWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MEE2Mi8xRkE5NkRBMDI4MzExMUVDOTdBMDEzMTZDNEY5QUUwMi9UTjdIMUNIeGJv VVdjcWdTT2QwWV9Jd2VPVlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCEqb0iS/V1BTNH4nyV3J61N3FT2uxXhszbmIygUTmHH+Vg21HQ29co Tht0/YPt/w1g+i3to1gDw1Ce0j8rOnDLmtdj5Udx4cV3kXSaRpY5IIgzmWfZ7Wrq zBn//mUy39T9liUdfN6Tl1TOSk69BjwyWlc9o7PokUMMrZT5MWvGA4ji215RiEc9 kYhZriiE75xfRDl6sv9J6P6nprL3lk/lOLUFatjJT9OTu/JAHVkDlb7bRIuLRklt 9TDYdPfaA6X83yzGFrVPWZPbgNNSO1safYJ9Z5t/Z57Bk1kD37jGmLiYsmIpiDoz q1N/eWGz+i3uVx4r1D57nvgZojj/d0g1 -----END CERTIFICATE-----Generated at Sat May 31 17:46:23 2025 by rpki-client