$ rpki-client -vvf rpki.apnic.net/member_repository/A91DE43E/CC03FBB82AFB11EA8DF37D55C4F9AE02/tpVKYo70-TShCnBay8uQbtYQSAw.mft File: tpVKYo70-TShCnBay8uQbtYQSAw.mft (raw, json) Hash identifier: taxTn9CaambnuG8jMxozf1ik+V0meCHUfzKcMc4cNrM= Subject key identifier: 44:C9:B7:C5:0E:BA:B7:4F:7C:1D:5D:8D:F3:FE:A2:CF:D2:3E:D0:2C Authority key identifier: B6:95:4A:62:8E:F4:F9:34:A1:0A:70:5A:CB:CB:90:6E:D6:10:48:0C Certificate issuer: /CN=A91DE43E/serialNumber=B6954A628EF4F934A10A705ACBCB906ED610480C Certificate serial: 0B84 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tpVKYo70-TShCnBay8uQbtYQSAw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DE43E/CC03FBB82AFB11EA8DF37D55C4F9AE02/tpVKYo70-TShCnBay8uQbtYQSAw.mft Manifest number: 0B7E Signing time: Fri 30 May 2025 19:14:30 +0000 Manifest this update: Fri 30 May 2025 19:14:30 +0000 Manifest next update: Fri 06 Jun 2025 19:14:30 +0000 Files and hashes: 1: tpVKYo70-TShCnBay8uQbtYQSAw.crl (hash: fMmEOQrYh0z/TPEKYRCofqQJPJ7jIO2y2dXHI0HtOo8=) 2: 5E117DC82AFC11EAB5FEC955C4F9AE02.roa (hash: FLXDHzghX+xgCtsrZgeGezVp6qrYExOvwRgCUG3oquw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DE43E/CC03FBB82AFB11EA8DF37D55C4F9AE02/tpVKYo70-TShCnBay8uQbtYQSAw.crl rsync://rpki.apnic.net/member_repository/A91DE43E/CC03FBB82AFB11EA8DF37D55C4F9AE02/tpVKYo70-TShCnBay8uQbtYQSAw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tpVKYo70-TShCnBay8uQbtYQSAw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 19:14:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2948 (0xb84) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DE43E, serialNumber=B6954A628EF4F934A10A705ACBCB906ED610480C Validity Not Before: May 30 19:14:30 2025 GMT Not After : Jun 6 19:14:30 2025 GMT Subject: CN=683a0396-ecf1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:47:ea:9e:2c:f6:1c:d3:38:89:5a:ff:4e:5f: 3a:e6:43:d1:5f:cc:0c:35:f1:75:ff:a9:54:d2:af: e8:95:da:37:32:aa:fb:59:d8:5c:0f:ce:ea:a1:0f: 09:ac:fb:0f:ff:c3:3a:25:63:b7:33:8d:14:0b:df: 61:f6:ec:24:f9:f5:75:66:3c:6a:cb:bf:18:b4:f5: 48:c7:b4:5c:61:e7:e3:f5:58:8c:cf:fa:8b:07:e4: 16:1a:bf:a0:83:b5:85:3e:84:3d:71:12:99:88:9c: 02:68:fc:ab:3d:39:da:19:37:d1:36:ad:78:15:8c: 86:48:7e:90:b0:14:7d:27:d1:0e:09:96:27:4c:6b: c0:56:7e:66:b1:ef:1c:9b:e2:62:01:2c:7b:d5:db: 9b:39:92:00:94:aa:61:e8:64:09:a1:ee:13:4c:96: 2d:d3:fc:16:6d:3f:a7:e4:e0:ec:77:ad:f9:cc:ca: 0e:05:9a:4e:4d:08:0f:6f:bb:1e:6e:ad:c1:44:56: 0c:22:25:06:7c:77:4f:92:ec:2d:d0:03:2a:5f:d0: db:69:a5:a7:3e:fb:88:66:41:35:76:ee:51:c8:b7: 9a:35:7d:6b:76:30:1d:6e:66:6a:29:4e:9d:6e:84: ec:a1:e9:e3:0e:d8:13:45:97:a6:73:6b:0d:fd:6f: ab:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:C9:B7:C5:0E:BA:B7:4F:7C:1D:5D:8D:F3:FE:A2:CF:D2:3E:D0:2C X509v3 Authority Key Identifier: keyid:B6:95:4A:62:8E:F4:F9:34:A1:0A:70:5A:CB:CB:90:6E:D6:10:48:0C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DE43E/CC03FBB82AFB11EA8DF37D55C4F9AE02/tpVKYo70-TShCnBay8uQbtYQSAw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tpVKYo70-TShCnBay8uQbtYQSAw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DE43E/CC03FBB82AFB11EA8DF37D55C4F9AE02/tpVKYo70-TShCnBay8uQbtYQSAw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3c:71:29:d3:4b:a1:b5:75:1e:54:c5:e3:ef:c7:93:df:0a:8e: 0c:8f:ee:69:9c:c8:39:03:a4:51:05:be:5d:4e:51:87:d2:e1: 7a:c1:9e:e1:35:fd:a3:75:88:10:9a:e2:db:9d:62:3f:59:b8: 44:45:7e:0c:02:da:8d:95:bd:10:bf:3c:65:76:61:92:26:38: b4:9c:c6:f2:c8:91:e7:2c:d1:90:2d:5b:f8:a2:7f:56:a3:63: ec:b6:9a:ba:79:db:ce:30:f8:b1:82:11:88:21:ae:10:24:c6: be:bf:f4:57:e8:81:96:98:3d:cf:a7:d4:6b:84:f9:8c:a4:56: 0c:64:69:99:41:51:9a:7c:a5:c2:2c:ac:17:04:80:d4:47:05: 7b:c6:63:e3:f3:48:3a:5f:20:a0:c5:22:9a:de:a0:8e:5c:64: 07:ac:db:d3:29:04:a8:8a:70:54:1e:7f:b5:97:e9:d5:f4:40: 4b:ce:12:27:91:11:91:81:42:46:28:14:05:3a:69:fc:5f:fe: b5:b9:e0:27:4b:e8:0f:58:d6:1e:a2:30:78:c9:c7:78:d1:2d: c4:cf:c0:d1:c2:c4:23:85:0b:aa:b5:8f:07:01:00:ee:43:44: 8c:cf:fd:e9:cf:95:f5:4b:9e:dc:5f:6a:fe:f5:58:10:47:cd: 68:79:94:a0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC4QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REU0M0UxMTAvBgNVBAUTKEI2OTU0QTYyOEVGNEY5MzRBMTBBNzA1QUNCQ0I5MDZF RDYxMDQ4MEMwHhcNMjUwNTMwMTkxNDMwWhcNMjUwNjA2MTkxNDMwWjAYMRYwFAYD VQQDEw02ODNhMDM5Ni1lY2YxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw0fqniz2HNM4iVr/Tl865kPRX8wMNfF1/6lU0q/oldo3Mqr7WdhcD87qoQ8J rPsP/8M6JWO3M40UC99h9uwk+fV1Zjxqy78YtPVIx7RcYefj9ViMz/qLB+QWGr+g g7WFPoQ9cRKZiJwCaPyrPTnaGTfRNq14FYyGSH6QsBR9J9EOCZYnTGvAVn5mse8c m+JiASx71dubOZIAlKph6GQJoe4TTJYt0/wWbT+n5ODsd635zMoOBZpOTQgPb7se bq3BRFYMIiUGfHdPkuwt0AMqX9DbaaWnPvuIZkE1du5RyLeaNX1rdjAdbmZqKU6d boTsoenjDtgTRZemc2sN/W+ruwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFETJt8UO urdPfB1djfP+os/SPtAsMB8GA1UdIwQYMBaAFLaVSmKO9Pk0oQpwWsvLkG7WEEgM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERTQzRS9DQzAzRkJCODJB RkIxMUVBOERGMzdENTVDNEY5QUUwMi90cFZLWW83MC1UU2hDbkJheTh1UWJ0WVFT QXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RwVktZbzcwLVRTaENuQmF5OHVRYnRZUVNBdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RTQzRS9DQzAzRkJCODJBRkIxMUVBOERGMzdENTVDNEY5QUUwMi90cFZLWW83MC1U U2hDbkJheTh1UWJ0WVFTQXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA8cSnTS6G1dR5UxePvx5PfCo4Mj+5pnMg5A6RRBb5dTlGH0uF6wZ7h Nf2jdYgQmuLbnWI/WbhERX4MAtqNlb0QvzxldmGSJji0nMbyyJHnLNGQLVv4on9W o2Pstpq6edvOMPixghGIIa4QJMa+v/RX6IGWmD3Pp9RrhPmMpFYMZGmZQVGafKXC LKwXBIDURwV7xmPj80g6XyCgxSKa3qCOXGQHrNvTKQSoinBUHn+1l+nV9EBLzhIn kRGRgUJGKBQFOmn8X/61ueAnS+gPWNYeojB4ycd40S3Ez8DRwsQjhQuqtY8HAQDu Q0SMz/3pz5X1S57cX2r+9VgQR81oeZSg -----END CERTIFICATE-----Generated at Sat May 31 17:03:25 2025 by rpki-client