$ rpki-client -vvf rpki.apnic.net/member_repository/A91E28E2/952FA632D2E611ED9A52D55AC4F9AE02/tIGYczHh7UCLUcuf2O9KZQrIZpo.mft File: tIGYczHh7UCLUcuf2O9KZQrIZpo.mft (raw, json) Hash identifier: s7dMc80fL4U3bBQbuoHvvTuiuA6iyUFLVZvO0VH5qp4= Subject key identifier: 9F:65:15:87:07:E3:B3:A7:0A:FC:FA:B7:72:C1:EF:D1:14:4D:B1:A9 Authority key identifier: B4:81:98:73:31:E1:ED:40:8B:51:CB:9F:D8:EF:4A:65:0A:C8:66:9A Certificate issuer: /CN=A91E28E2/serialNumber=B481987331E1ED408B51CB9FD8EF4A650AC8669A Certificate serial: 0187 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tIGYczHh7UCLUcuf2O9KZQrIZpo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E28E2/952FA632D2E611ED9A52D55AC4F9AE02/tIGYczHh7UCLUcuf2O9KZQrIZpo.mft Manifest number: 017A Signing time: Thu 13 Mar 2025 02:41:45 +0000 Manifest this update: Thu 13 Mar 2025 02:41:45 +0000 Manifest next update: Thu 20 Mar 2025 02:41:45 +0000 Files and hashes: 1: tIGYczHh7UCLUcuf2O9KZQrIZpo.crl (hash: lLG/3EP6EC5LOPiRjBtTnjRa8O6eD8xIEC3PV06TsZ4=) 2: 7D22B44E249D11EFAC24EF6CC4F9AE02.roa (hash: 5+9jJwjzRyNYN2O27C0xkTXdTv27eYHF2xhj3n4/zw8=) 3: 9772767EB69A11EFBEB6CE0CC4F9AE02.roa (hash: OTItAaxPPemMiPzq6xmShyEDu1glCIdZDgb+Zo6pNyA=) 4: 9C6F02C6249D11EF9532356DC4F9AE02.roa (hash: H7vSiuNaTY/QVhx1Z+0HnkEM6Adv1NWsmVcvR+Op02o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E28E2/952FA632D2E611ED9A52D55AC4F9AE02/tIGYczHh7UCLUcuf2O9KZQrIZpo.crl rsync://rpki.apnic.net/member_repository/A91E28E2/952FA632D2E611ED9A52D55AC4F9AE02/tIGYczHh7UCLUcuf2O9KZQrIZpo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tIGYczHh7UCLUcuf2O9KZQrIZpo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 20 Mar 2025 02:41:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 391 (0x187) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E28E2 Validity Not Before: Mar 13 02:41:45 2025 GMT Not After : Mar 20 02:41:45 2025 GMT Subject: CN=67d245e9-c1bb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:ba:14:c1:9a:f6:76:4b:b4:44:fc:af:99:88: 8f:b2:d5:a7:20:80:7e:84:c9:c3:fa:68:65:12:0b: 2a:06:92:11:85:47:b7:fc:ed:32:eb:32:83:89:0e: 57:52:54:58:bc:39:a9:33:db:77:24:5c:49:40:82: 74:48:2c:fd:d7:96:d8:9a:78:9f:3d:d4:a6:f5:1c: 37:86:3c:38:35:4a:fc:76:ae:14:e6:aa:46:79:fd: a3:29:b2:3b:d1:1c:77:65:2a:c7:75:d6:8e:62:3a: 38:5b:3d:6e:93:2a:d2:cd:4f:30:96:40:5b:95:50: 59:27:cb:d6:74:a6:cf:63:c4:7a:5c:d9:22:db:29: ed:5d:11:9b:72:2d:93:e3:d2:39:1b:78:da:45:a3: 0a:94:b7:28:a8:23:d6:9f:5e:f9:b6:8e:83:64:28: 63:a1:4f:0e:20:dd:0a:ad:a4:27:79:99:45:2c:71: c5:de:a2:ea:1e:0e:2d:6c:5b:c2:48:65:a6:cf:de: e6:d2:8d:e1:e7:2c:5d:57:ec:19:73:3f:82:36:a2: ec:26:01:f0:22:79:a3:1d:4e:bc:1c:7b:e2:59:96: f8:dd:8c:92:e4:ec:f8:25:b7:f8:a1:1c:bf:7d:08: 34:0e:10:7a:37:07:a6:8e:9d:39:e0:4f:5c:77:05: a0:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:65:15:87:07:E3:B3:A7:0A:FC:FA:B7:72:C1:EF:D1:14:4D:B1:A9 X509v3 Authority Key Identifier: keyid:B4:81:98:73:31:E1:ED:40:8B:51:CB:9F:D8:EF:4A:65:0A:C8:66:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E28E2/952FA632D2E611ED9A52D55AC4F9AE02/tIGYczHh7UCLUcuf2O9KZQrIZpo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tIGYczHh7UCLUcuf2O9KZQrIZpo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E28E2/952FA632D2E611ED9A52D55AC4F9AE02/tIGYczHh7UCLUcuf2O9KZQrIZpo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8b:30:03:d6:7e:13:af:d2:3a:60:f1:1d:75:5b:53:4b:c7:e4: 6f:78:4f:0f:81:ba:c0:9b:15:06:79:32:7e:1c:a2:02:62:6d: 59:59:aa:9e:c1:ae:07:45:2a:93:47:1c:21:5a:d3:2a:22:1f: 17:5c:02:f6:e5:1a:06:82:0d:fa:8c:65:58:86:c9:1b:41:ff: 28:33:d5:47:3c:75:fa:95:6e:af:42:44:e2:1c:59:68:a2:6a: 51:5f:bd:62:29:22:4e:35:17:cb:9e:09:10:ca:f5:75:03:65: 3e:1e:73:6e:af:f3:51:78:61:a7:a4:7a:f2:d8:7e:cc:2c:40: 81:48:fe:0b:40:db:47:d9:05:27:af:d4:45:2c:3b:49:9b:be: 29:77:bd:80:02:5d:9f:48:89:42:ca:9f:24:2d:a5:41:7b:84: 33:b1:d0:02:82:b1:9a:c3:c3:7c:9a:50:42:37:90:05:9a:88: 62:0c:dc:1c:3e:4e:42:24:6c:2b:9e:d0:79:6d:9b:6b:53:2c: 16:e9:2a:96:7f:6d:d5:eb:a8:7e:e2:9e:aa:5b:34:87:33:c5: 2d:de:2a:e9:68:ea:ed:b9:7f:a2:59:94:11:50:85:e8:67:0c: bb:31:8e:2a:c3:0b:64:57:99:1f:11:20:92:d7:dd:d9:3d:9f: e6:0b:7a:97 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAYcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTI4RTIxMTAvBgNVBAUTKEI0ODE5ODczMzFFMUVENDA4QjUxQ0I5RkQ4RUY0QTY1 MEFDODY2OUEwHhcNMjUwMzEzMDI0MTQ1WhcNMjUwMzIwMDI0MTQ1WjAYMRYwFAYD VQQDEw02N2QyNDVlOS1jMWJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyroUwZr2dku0RPyvmYiPstWnIIB+hMnD+mhlEgsqBpIRhUe3/O0y6zKDiQ5X UlRYvDmpM9t3JFxJQIJ0SCz915bYmnifPdSm9Rw3hjw4NUr8dq4U5qpGef2jKbI7 0Rx3ZSrHddaOYjo4Wz1ukyrSzU8wlkBblVBZJ8vWdKbPY8R6XNki2yntXRGbci2T 49I5G3jaRaMKlLcoqCPWn175to6DZChjoU8OIN0KraQneZlFLHHF3qLqHg4tbFvC SGWmz97m0o3h5yxdV+wZcz+CNqLsJgHwInmjHU68HHviWZb43YyS5Oz4Jbf4oRy/ fQg0DhB6Nwemjp054E9cdwWgvQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ9lFYcH 47OnCvz6t3LB79EUTbGpMB8GA1UdIwQYMBaAFLSBmHMx4e1Ai1HLn9jvSmUKyGaa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMjhFMi85NTJGQTYzMkQy RTYxMUVEOUE1MkQ1NUFDNEY5QUUwMi90SUdZY3pIaDdVQ0xVY3VmMk85S1pRckla cG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RJR1ljekhoN1VDTFVjdWYyTzlLWlFySVpwby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MjhFMi85NTJGQTYzMkQyRTYxMUVEOUE1MkQ1NUFDNEY5QUUwMi90SUdZY3pIaDdV Q0xVY3VmMk85S1pRcklacG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCLMAPWfhOv0jpg8R11W1NLx+RveE8PgbrAmxUGeTJ+HKICYm1ZWaqe wa4HRSqTRxwhWtMqIh8XXAL25RoGgg36jGVYhskbQf8oM9VHPHX6lW6vQkTiHFlo ompRX71iKSJONRfLngkQyvV1A2U+HnNur/NReGGnpHry2H7MLECBSP4LQNtH2QUn r9RFLDtJm74pd72AAl2fSIlCyp8kLaVBe4QzsdACgrGaw8N8mlBCN5AFmohiDNwc Pk5CJGwrntB5bZtrUywW6SqWf23V66h+4p6qWzSHM8Ut3irpaOrtuX+iWZQRUIXo Zwy7MY4qwwtkV5kfESCS193ZPZ/mC3qX -----END CERTIFICATE-----Generated at Thu Mar 13 21:28:26 2025 by rpki-client