$ rpki-client -vvf rpki.apnic.net/member_repository/A91E0EF2/B50546525EE211ECAFA64B44C4F9AE02/TAYxLToLHGP1R9TWRXxM1a9xQ80.mft File: TAYxLToLHGP1R9TWRXxM1a9xQ80.mft (raw, json) Hash identifier: HNq8WjhIJtBOjF3N8UedksH5+apJS2OBhl6KznEk7ZU= Subject key identifier: 87:9B:96:14:A0:15:91:7D:14:1A:4B:82:30:37:BF:60:63:9E:B6:F0 Authority key identifier: 4C:06:31:2D:3A:0B:1C:63:F5:47:D4:D6:45:7C:4C:D5:AF:71:43:CD Certificate issuer: /CN=A91E0EF2/serialNumber=4C06312D3A0B1C63F547D4D6457C4CD5AF7143CD Certificate serial: 043B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TAYxLToLHGP1R9TWRXxM1a9xQ80.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E0EF2/B50546525EE211ECAFA64B44C4F9AE02/TAYxLToLHGP1R9TWRXxM1a9xQ80.mft Manifest number: 0437 Signing time: Sat 31 May 2025 00:31:32 +0000 Manifest this update: Sat 31 May 2025 00:31:31 +0000 Manifest next update: Sat 07 Jun 2025 00:31:31 +0000 Files and hashes: 1: TAYxLToLHGP1R9TWRXxM1a9xQ80.crl (hash: CbFYVLCEuuBAexqYouInLwJ4XwgYK4hNJBd3rC5cHwI=) 2: 09C2A1645A3511ED8F0A3087C4F9AE02.roa (hash: RiGNiFnNAoJRKUyYrUN1wLZV9I9idQnh7FmtgNq/Suc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E0EF2/B50546525EE211ECAFA64B44C4F9AE02/TAYxLToLHGP1R9TWRXxM1a9xQ80.crl rsync://rpki.apnic.net/member_repository/A91E0EF2/B50546525EE211ECAFA64B44C4F9AE02/TAYxLToLHGP1R9TWRXxM1a9xQ80.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TAYxLToLHGP1R9TWRXxM1a9xQ80.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 00:31:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1083 (0x43b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E0EF2, serialNumber=4C06312D3A0B1C63F547D4D6457C4CD5AF7143CD Validity Not Before: May 31 00:31:31 2025 GMT Not After : Jun 7 00:31:31 2025 GMT Subject: CN=683a4de4-cab8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:3a:d7:c2:d8:95:0f:4e:c4:91:09:96:b2:a1: 02:cf:50:ec:b6:79:b6:27:ca:1c:9c:58:7e:85:ed: af:38:cd:f8:c6:13:10:ea:fe:e3:b9:0b:b1:d0:8d: 88:5a:b3:54:51:7d:55:a0:84:2f:66:90:a6:7c:ce: d9:49:74:1b:96:6a:8a:c1:c3:1f:db:2a:f8:57:3e: ee:5e:92:50:d2:ba:c1:67:c3:46:2f:66:b3:ff:50: c8:d6:d0:27:fd:2a:64:3b:f9:b1:93:1b:cd:85:f4: 29:3b:8e:de:4f:2a:7d:bd:36:2f:13:f8:74:06:83: ea:93:6a:92:6b:2d:2f:4c:06:ce:9a:bd:90:0e:22: 7c:63:74:09:58:68:67:72:18:5d:40:c6:22:c6:e1: 79:ba:09:59:f8:4c:bf:2a:d0:b0:8f:94:44:89:b8: f3:a7:12:f2:94:b8:ad:34:c1:f5:50:73:f1:31:25: 60:99:9a:bd:dd:1d:ec:8c:2e:9b:1d:26:ed:9a:11: 71:f9:2b:14:43:c8:72:1b:77:f1:c8:b4:4b:be:e4: 65:fc:f8:f4:34:c5:8d:0b:9a:45:50:1c:00:5a:95: 90:80:21:13:68:92:52:6e:8a:4c:2b:7d:ee:9c:ac: 43:3f:ee:71:2b:dd:90:08:b1:94:f5:4f:62:4f:f7: e4:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:9B:96:14:A0:15:91:7D:14:1A:4B:82:30:37:BF:60:63:9E:B6:F0 X509v3 Authority Key Identifier: keyid:4C:06:31:2D:3A:0B:1C:63:F5:47:D4:D6:45:7C:4C:D5:AF:71:43:CD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E0EF2/B50546525EE211ECAFA64B44C4F9AE02/TAYxLToLHGP1R9TWRXxM1a9xQ80.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TAYxLToLHGP1R9TWRXxM1a9xQ80.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E0EF2/B50546525EE211ECAFA64B44C4F9AE02/TAYxLToLHGP1R9TWRXxM1a9xQ80.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5f:b5:37:e5:a4:00:5d:1d:05:b6:14:1c:89:ac:9e:eb:61:df: 88:b0:28:ba:27:a2:14:8c:8e:19:ba:98:fb:2c:ef:2d:5b:89: 69:85:4d:97:61:85:0e:95:27:73:31:be:b9:d6:81:d5:25:75: a4:f6:bd:32:b3:65:47:78:33:63:be:04:70:97:95:ff:9f:08: a9:27:25:50:c5:f1:c9:e2:d4:1c:02:56:4e:f7:14:f2:66:9f: 18:1f:ef:66:78:c8:13:9c:70:12:fd:b0:3a:ac:45:44:00:e8: 26:1d:70:46:e8:ad:3d:36:5a:77:b8:d5:df:2a:51:56:48:0a: 21:e3:ae:d1:e6:05:dd:4f:9f:cc:b9:8c:7d:e6:c6:2b:50:96: 94:b7:f9:38:6e:d3:86:a7:47:19:3c:f1:ad:8b:ab:d6:34:04: e2:d4:15:be:ff:12:cf:86:c2:9e:e8:7b:4f:aa:f2:60:12:bc: f0:74:a5:31:0a:c8:f7:13:15:2e:77:0a:f8:e7:e2:73:55:22: 0b:ac:79:71:12:e4:1f:49:d5:d8:b9:ab:73:15:9c:2f:b2:10: c5:5b:9e:3b:07:71:5f:18:38:3a:89:9e:ec:0d:30:96:a7:8f: 52:4f:c7:88:50:33:bd:03:59:93:c3:68:22:3e:ca:5c:6a:13: 8d:fa:3a:a7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBDswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTBFRjIxMTAvBgNVBAUTKDRDMDYzMTJEM0EwQjFDNjNGNTQ3RDRENjQ1N0M0Q0Q1 QUY3MTQzQ0QwHhcNMjUwNTMxMDAzMTMxWhcNMjUwNjA3MDAzMTMxWjAYMRYwFAYD VQQDEw02ODNhNGRlNC1jYWI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2DrXwtiVD07EkQmWsqECz1Dstnm2J8ocnFh+he2vOM34xhMQ6v7juQux0I2I WrNUUX1VoIQvZpCmfM7ZSXQblmqKwcMf2yr4Vz7uXpJQ0rrBZ8NGL2az/1DI1tAn /SpkO/mxkxvNhfQpO47eTyp9vTYvE/h0BoPqk2qSay0vTAbOmr2QDiJ8Y3QJWGhn chhdQMYixuF5uglZ+Ey/KtCwj5REibjzpxLylLitNMH1UHPxMSVgmZq93R3sjC6b HSbtmhFx+SsUQ8hyG3fxyLRLvuRl/Pj0NMWNC5pFUBwAWpWQgCETaJJSbopMK33u nKxDP+5xK92QCLGU9U9iT/fkqwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIeblhSg FZF9FBpLgjA3v2BjnrbwMB8GA1UdIwQYMBaAFEwGMS06Cxxj9UfU1kV8TNWvcUPN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMEVGMi9CNTA1NDY1MjVF RTIxMUVDQUZBNjRCNDRDNEY5QUUwMi9UQVl4TFRvTEhHUDFSOVRXUlh4TTFhOXhR ODAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RBWXhMVG9MSEdQMVI5VFdSWHhNMWE5eFE4MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MEVGMi9CNTA1NDY1MjVFRTIxMUVDQUZBNjRCNDRDNEY5QUUwMi9UQVl4TFRvTEhH UDFSOVRXUlh4TTFhOXhRODAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBftTflpABdHQW2FByJrJ7rYd+IsCi6J6IUjI4Zupj7LO8tW4lphU2X YYUOlSdzMb651oHVJXWk9r0ys2VHeDNjvgRwl5X/nwipJyVQxfHJ4tQcAlZO9xTy Zp8YH+9meMgTnHAS/bA6rEVEAOgmHXBG6K09Nlp3uNXfKlFWSAoh467R5gXdT5/M uYx95sYrUJaUt/k4btOGp0cZPPGti6vWNATi1BW+/xLPhsKe6HtPqvJgErzwdKUx Csj3ExUudwr45+JzVSILrHlxEuQfSdXYuatzFZwvshDFW547B3FfGDg6iZ7sDTCW p49ST8eIUDO9A1mTw2giPspcahON+jqn -----END CERTIFICATE-----Generated at Sat May 31 17:03:30 2025 by rpki-client