$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF233/08F05260B37811EF88322B0FC4F9AE02/TnWast4kVGn4MRuSc7VVOH51CpA.mft File: TnWast4kVGn4MRuSc7VVOH51CpA.mft (raw, json) Hash identifier: 91frw0qlQe4hR22udSW8vfBtlnIeaC5T8YcGtF5Kx6M= Subject key identifier: B7:4F:1E:BA:65:94:94:7B:BD:9C:87:21:FB:F6:35:64:87:C1:05:CA Authority key identifier: 4E:75:9A:B2:DE:24:54:69:F8:31:1B:92:73:B5:55:38:7E:75:0A:90 Certificate issuer: /CN=A91DF233/serialNumber=4E759AB2DE245469F8311B9273B555387E750A90 Certificate serial: 5E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TnWast4kVGn4MRuSc7VVOH51CpA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DF233/08F05260B37811EF88322B0FC4F9AE02/TnWast4kVGn4MRuSc7VVOH51CpA.mft Manifest number: 5D Signing time: Tue 03 Jun 2025 06:57:26 +0000 Manifest this update: Tue 03 Jun 2025 06:57:25 +0000 Manifest next update: Tue 10 Jun 2025 06:57:25 +0000 Files and hashes: 1: TnWast4kVGn4MRuSc7VVOH51CpA.crl (hash: d2HWevOmZaszxtx0ZAafJfFbKBuOKUlzbVDJqZrCcog=) 2: 1FE0E016B37D11EFBDE18263C4F9AE02.roa (hash: i4QqretrMrfllRlkSz0xUOac9qaskNbaHtNPO9MoQA0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DF233/08F05260B37811EF88322B0FC4F9AE02/TnWast4kVGn4MRuSc7VVOH51CpA.crl rsync://rpki.apnic.net/member_repository/A91DF233/08F05260B37811EF88322B0FC4F9AE02/TnWast4kVGn4MRuSc7VVOH51CpA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TnWast4kVGn4MRuSc7VVOH51CpA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 06:57:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 94 (0x5e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DF233, serialNumber=4E759AB2DE245469F8311B9273B555387E750A90 Validity Not Before: Jun 3 06:57:25 2025 GMT Not After : Jun 10 06:57:25 2025 GMT Subject: CN=683e9cd6-7120 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:ff:ec:ce:a9:26:e6:f0:91:06:71:df:f5:79: 5f:74:09:48:34:3d:0d:e2:da:d1:a5:b5:1a:cb:ac: 7a:9c:f5:6b:cf:75:55:94:3a:64:2b:3f:d5:05:75: d5:74:ad:f4:5f:aa:ac:35:f8:65:5f:7a:56:a6:fe: 94:c9:ea:66:fc:60:96:fe:44:62:fa:8a:f2:e0:bc: 40:d3:5b:6d:5e:68:30:09:b2:84:cd:09:30:04:68: 9a:e3:fa:23:94:81:ae:a1:87:6d:4c:2d:aa:56:1d: 5f:37:33:b9:6b:c3:10:77:fc:78:14:14:3b:fc:d5: aa:bf:7f:18:af:9e:64:72:bd:d3:a1:57:57:8b:16: dc:7c:34:46:dc:d3:ba:4c:51:eb:bc:d3:7a:de:df: 60:15:d7:57:a0:7c:9c:46:be:7e:b4:97:b9:a7:25: a7:da:45:99:6e:dd:7e:7d:fc:b3:c6:f1:6d:79:1d: df:f8:5f:8b:04:75:b5:18:c1:2d:b9:4b:8f:22:cd: 97:71:98:7c:38:1e:e7:ff:de:3f:d6:f2:2f:85:d5: 88:4b:dc:e1:41:19:3d:22:06:e5:54:d5:60:5e:fd: 7d:82:f6:bb:71:fb:99:52:e8:a7:e2:ea:7c:6e:be: b3:fe:28:2e:e9:a7:75:6f:e5:59:c9:ff:e2:4f:ea: f4:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:4F:1E:BA:65:94:94:7B:BD:9C:87:21:FB:F6:35:64:87:C1:05:CA X509v3 Authority Key Identifier: keyid:4E:75:9A:B2:DE:24:54:69:F8:31:1B:92:73:B5:55:38:7E:75:0A:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DF233/08F05260B37811EF88322B0FC4F9AE02/TnWast4kVGn4MRuSc7VVOH51CpA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TnWast4kVGn4MRuSc7VVOH51CpA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF233/08F05260B37811EF88322B0FC4F9AE02/TnWast4kVGn4MRuSc7VVOH51CpA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3d:6c:16:d4:d3:64:a3:4d:76:0b:15:34:d8:4c:bc:19:84:49: ea:15:f0:71:70:22:cc:53:cb:3c:91:96:0b:db:5a:79:23:d5: 99:53:99:53:02:88:8c:1d:c3:56:11:60:f2:52:0b:2a:9f:e8: f2:24:1f:31:f1:ea:b6:6e:07:ae:33:0b:a7:ad:e7:e9:12:93: ff:22:23:bb:6c:88:f2:e3:4e:23:05:d1:3a:36:60:f6:9b:ac: 16:58:be:32:ca:cd:82:2e:e5:fa:c0:78:9c:ce:d7:d0:c1:60: 86:44:ef:82:d4:04:b9:0b:a3:39:52:e6:b8:90:0a:d9:00:07: f1:5d:ae:bd:c6:7f:f1:d9:22:5d:c9:62:f1:c5:64:f1:7d:e5: a2:1a:d9:d9:28:a0:49:88:a3:78:fe:ab:3d:ad:d1:99:77:01: 6c:cd:dc:19:8d:e3:27:0d:b7:67:f2:68:42:ec:24:2f:96:53: 51:86:76:9c:eb:aa:0e:fa:e4:be:90:e7:57:36:de:51:3d:6e: 12:8a:20:e6:c2:d0:9d:44:f5:10:3e:71:d8:54:2b:25:4e:16: 5e:3d:41:c4:f0:2d:51:45:62:39:a4:27:7c:19:92:ad:19:ef: 3a:d1:ea:39:36:ca:77:46:87:d8:52:bb:da:e3:fa:2b:95:8c: 8e:5e:87:06 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBXjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE RjIzMzExMC8GA1UEBRMoNEU3NTlBQjJERTI0NTQ2OUY4MzExQjkyNzNCNTU1Mzg3 RTc1MEE5MDAeFw0yNTA2MDMwNjU3MjVaFw0yNTA2MTAwNjU3MjVaMBgxFjAUBgNV BAMTDTY4M2U5Y2Q2LTcxMjAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCw/+zOqSbm8JEGcd/1eV90CUg0PQ3i2tGltRrLrHqc9WvPdVWUOmQrP9UFddV0 rfRfqqw1+GVfelam/pTJ6mb8YJb+RGL6ivLgvEDTW21eaDAJsoTNCTAEaJrj+iOU ga6hh21MLapWHV83M7lrwxB3/HgUFDv81aq/fxivnmRyvdOhV1eLFtx8NEbc07pM Ueu803re32AV11egfJxGvn60l7mnJafaRZlu3X59/LPG8W15Hd/4X4sEdbUYwS25 S48izZdxmHw4Huf/3j/W8i+F1YhL3OFBGT0iBuVU1WBe/X2C9rtx+5lS6Kfi6nxu vrP+KC7pp3Vv5VnJ/+JP6vR7AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUt08eumWU lHu9nIch+/Y1ZIfBBcowHwYDVR0jBBgwFoAUTnWast4kVGn4MRuSc7VVOH51CpAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURGMjMzLzA4RjA1MjYwQjM3 ODExRUY4ODMyMkIwRkM0RjlBRTAyL1RuV2FzdDRrVkduNE1SdVNjN1ZWT0g1MUNw QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvVG5XYXN0NGtWR240TVJ1U2M3VlZPSDUxQ3BBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURG MjMzLzA4RjA1MjYwQjM3ODExRUY4ODMyMkIwRkM0RjlBRTAyL1RuV2FzdDRrVkdu NE1SdVNjN1ZWT0g1MUNwQS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAD1sFtTTZKNNdgsVNNhMvBmESeoV8HFwIsxTyzyRlgvbWnkj1ZlTmVMC iIwdw1YRYPJSCyqf6PIkHzHx6rZuB64zC6et5+kSk/8iI7tsiPLjTiMF0To2YPab rBZYvjLKzYIu5frAeJzO19DBYIZE74LUBLkLozlS5riQCtkAB/Fdrr3Gf/HZIl3J YvHFZPF95aIa2dkooEmIo3j+qz2t0Zl3AWzN3BmN4ycNt2fyaELsJC+WU1GGdpzr qg765L6Q51c23lE9bhKKIObC0J1E9RA+cdhUKyVOFl49QcTwLVFFYjmkJ3wZkq0Z 7zrR6jk2yndGh9hSu9rj+iuVjI5ehwY= -----END CERTIFICATE-----Generated at Tue Jun 3 23:43:27 2025 by rpki-client