$ rpki-client -vvf rpki.apnic.net/member_repository/A91E28E2/952FA632D2E611ED9A52D55AC4F9AE02/tIGYczHh7UCLUcuf2O9KZQrIZpo.mft File: tIGYczHh7UCLUcuf2O9KZQrIZpo.mft (raw, json) Hash identifier: 1xp+Obc2Kh+j8WlElTi+VSAMIRtNSLdpt04j7z9JrPM= Subject key identifier: 42:E1:3E:8F:D5:F2:6D:94:DB:CD:1B:32:AD:82:3A:67:E2:9D:15:E9 Authority key identifier: B4:81:98:73:31:E1:ED:40:8B:51:CB:9F:D8:EF:4A:65:0A:C8:66:9A Certificate issuer: /CN=A91E28E2/serialNumber=B481987331E1ED408B51CB9FD8EF4A650AC8669A Certificate serial: 01B7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tIGYczHh7UCLUcuf2O9KZQrIZpo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E28E2/952FA632D2E611ED9A52D55AC4F9AE02/tIGYczHh7UCLUcuf2O9KZQrIZpo.mft Manifest number: 01A7 Signing time: Sat 07 Jun 2025 03:01:35 +0000 Manifest this update: Sat 07 Jun 2025 03:01:35 +0000 Manifest next update: Sat 14 Jun 2025 03:01:35 +0000 Files and hashes: 1: tIGYczHh7UCLUcuf2O9KZQrIZpo.crl (hash: f0Jbccy7U47cUfpSsfR7xlHeT1j5DZ1KdxGwTMnhD2g=) 2: 7D22B44E249D11EFAC24EF6CC4F9AE02.roa (hash: DqfdssaPIpgzVJKB8q8pzNxgEYWvLoidIXznK6mNfXA=) 3: 9772767EB69A11EFBEB6CE0CC4F9AE02.roa (hash: 7OwaJrudjWnecoz7BCK7kPXjzB+3R7tWJ8DmqplI2rk=) 4: 9C6F02C6249D11EF9532356DC4F9AE02.roa (hash: Ah9DA9XDU6AgPBrVhyRA7IEj119ByF47rhFGR96tGKc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E28E2/952FA632D2E611ED9A52D55AC4F9AE02/tIGYczHh7UCLUcuf2O9KZQrIZpo.crl rsync://rpki.apnic.net/member_repository/A91E28E2/952FA632D2E611ED9A52D55AC4F9AE02/tIGYczHh7UCLUcuf2O9KZQrIZpo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tIGYczHh7UCLUcuf2O9KZQrIZpo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 14 Jun 2025 03:01:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 439 (0x1b7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E28E2, serialNumber=B481987331E1ED408B51CB9FD8EF4A650AC8669A Validity Not Before: Jun 7 03:01:35 2025 GMT Not After : Jun 14 03:01:35 2025 GMT Subject: CN=6843ab8f-262b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:ec:60:52:76:c9:a3:b4:9d:20:bd:07:8d:f3: 9a:fb:91:f8:ec:14:f0:f9:ea:e3:be:1b:4b:90:75: ba:5f:17:3c:cf:36:34:2a:2c:0b:ce:4e:12:af:2e: 43:d5:e3:ad:7a:77:c8:b6:bc:cb:e8:88:6a:06:e6: f7:cf:e9:20:3c:2b:08:1c:29:99:74:60:bf:50:e0: bc:14:a0:47:e5:e5:10:60:ad:ae:28:f2:05:bf:55: d1:27:cc:74:04:65:b5:ac:3d:4b:43:e4:d2:e1:1d: b7:75:34:77:70:81:34:1b:83:f5:16:d9:45:ab:f9: 5a:1c:10:0a:63:a2:2f:46:ac:26:27:b1:ac:c1:0f: 66:37:e3:38:79:73:59:8e:63:9e:5b:3d:24:fa:aa: b9:d9:e5:70:90:84:d3:a8:86:86:0d:ee:9b:32:5a: 71:12:34:dd:d7:56:ee:55:fb:4a:c5:90:43:1b:0a: 97:1f:c5:f4:1f:7a:a9:73:a9:fe:3d:ca:ed:23:96: ed:e2:b9:6b:45:1b:8a:34:0e:e3:3e:f5:66:09:a7: 14:c7:f5:1f:f9:6d:04:27:15:4f:21:a3:15:36:3a: 1d:2d:14:5e:b7:03:dd:6d:37:86:11:41:73:f7:3b: d4:44:d3:c4:bb:5d:43:8e:54:d9:f1:84:c4:62:3e: 45:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:E1:3E:8F:D5:F2:6D:94:DB:CD:1B:32:AD:82:3A:67:E2:9D:15:E9 X509v3 Authority Key Identifier: keyid:B4:81:98:73:31:E1:ED:40:8B:51:CB:9F:D8:EF:4A:65:0A:C8:66:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E28E2/952FA632D2E611ED9A52D55AC4F9AE02/tIGYczHh7UCLUcuf2O9KZQrIZpo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tIGYczHh7UCLUcuf2O9KZQrIZpo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E28E2/952FA632D2E611ED9A52D55AC4F9AE02/tIGYczHh7UCLUcuf2O9KZQrIZpo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 49:69:d3:2b:97:d6:6a:4e:4b:03:11:c3:1b:f9:e0:e8:31:7f: b1:0e:a8:e1:43:29:57:f1:2d:fb:40:eb:ac:98:aa:11:43:49: c2:b2:91:ce:a4:93:11:51:d9:e6:fd:b7:31:0e:66:4e:f7:eb: d7:d7:7c:cf:8b:28:42:a0:1d:ad:0a:62:48:67:42:b2:e7:b0: 59:b5:a0:f8:c5:f1:29:82:c1:54:a0:dc:35:04:99:5e:94:9f: dc:49:2a:11:62:a9:fd:1a:ae:a3:88:40:d4:0a:69:04:6e:a6: 4c:7a:d3:9b:52:84:ba:9f:be:75:56:c6:73:ba:0f:cd:49:ae: 5d:c6:43:b3:f6:e4:51:17:59:a9:04:c8:5c:58:7e:4e:8d:73: 37:81:b8:9b:f7:fa:aa:cd:f9:bc:d9:45:7b:87:7d:57:a8:7b: 10:2e:8d:86:cc:e5:e3:c4:6a:0e:6e:5a:cc:2c:7e:1c:a0:74: 03:71:c3:ac:d2:3b:4f:fb:49:5a:18:93:f1:a1:6d:46:34:ce: a3:65:95:94:16:ce:61:75:89:bd:f7:b3:4e:5e:a0:41:f1:b2: 0d:71:d7:ad:fb:25:c7:9c:a1:ac:be:2f:1b:78:e0:ce:4e:cb: 4f:af:df:a6:da:57:d0:0a:e5:9f:77:e5:2f:db:15:16:21:99: 4a:69:44:c8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAbcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTI4RTIxMTAvBgNVBAUTKEI0ODE5ODczMzFFMUVENDA4QjUxQ0I5RkQ4RUY0QTY1 MEFDODY2OUEwHhcNMjUwNjA3MDMwMTM1WhcNMjUwNjE0MDMwMTM1WjAYMRYwFAYD VQQDEw02ODQzYWI4Zi0yNjJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxuxgUnbJo7SdIL0HjfOa+5H47BTw+erjvhtLkHW6Xxc8zzY0KiwLzk4Sry5D 1eOtenfItrzL6IhqBub3z+kgPCsIHCmZdGC/UOC8FKBH5eUQYK2uKPIFv1XRJ8x0 BGW1rD1LQ+TS4R23dTR3cIE0G4P1FtlFq/laHBAKY6IvRqwmJ7GswQ9mN+M4eXNZ jmOeWz0k+qq52eVwkITTqIaGDe6bMlpxEjTd11buVftKxZBDGwqXH8X0H3qpc6n+ PcrtI5bt4rlrRRuKNA7jPvVmCacUx/Uf+W0EJxVPIaMVNjodLRRetwPdbTeGEUFz 9zvURNPEu11DjlTZ8YTEYj5FhwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFELhPo/V 8m2U280bMq2COmfinRXpMB8GA1UdIwQYMBaAFLSBmHMx4e1Ai1HLn9jvSmUKyGaa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMjhFMi85NTJGQTYzMkQy RTYxMUVEOUE1MkQ1NUFDNEY5QUUwMi90SUdZY3pIaDdVQ0xVY3VmMk85S1pRckla cG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RJR1ljekhoN1VDTFVjdWYyTzlLWlFySVpwby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MjhFMi85NTJGQTYzMkQyRTYxMUVEOUE1MkQ1NUFDNEY5QUUwMi90SUdZY3pIaDdV Q0xVY3VmMk85S1pRcklacG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBJadMrl9ZqTksDEcMb+eDoMX+xDqjhQylX8S37QOusmKoRQ0nCspHO pJMRUdnm/bcxDmZO9+vX13zPiyhCoB2tCmJIZ0Ky57BZtaD4xfEpgsFUoNw1BJle lJ/cSSoRYqn9Gq6jiEDUCmkEbqZMetObUoS6n751VsZzug/NSa5dxkOz9uRRF1mp BMhcWH5OjXM3gbib9/qqzfm82UV7h31XqHsQLo2GzOXjxGoOblrMLH4coHQDccOs 0jtP+0laGJPxoW1GNM6jZZWUFs5hdYm997NOXqBB8bINcdet+yXHnKGsvi8beODO TstPr9+m2lfQCuWfd+Uv2xUWIZlKaUTI -----END CERTIFICATE-----Generated at Sat Jun 7 06:23:25 2025 by rpki-client