$ rpki-client -vvf rpki.apnic.net/member_repository/A91FEB37/3CB779E0F5F711EFB82EFD6BC4F9AE02/TmiwSN0926X0ePH9KIqGGLqfq6o.mft File: TmiwSN0926X0ePH9KIqGGLqfq6o.mft (raw, json) Hash identifier: /lGtLen3QJamn93ygm1LjzbiS9+m5GmrS5m50WyksxE= Subject key identifier: 73:09:EE:63:30:CF:A6:1D:B4:40:FF:FC:F0:AD:DF:EF:F3:57:1D:B9 Authority key identifier: 4E:68:B0:48:DD:3D:DB:A5:F4:78:F1:FD:28:8A:86:18:BA:9F:AB:AA Certificate issuer: /CN=A91FEB37/serialNumber=4E68B048DD3DDBA5F478F1FD288A8618BA9FABAA Certificate serial: 3A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TmiwSN0926X0ePH9KIqGGLqfq6o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FEB37/3CB779E0F5F711EFB82EFD6BC4F9AE02/TmiwSN0926X0ePH9KIqGGLqfq6o.mft Manifest number: 36 Signing time: Tue 03 Jun 2025 07:31:11 +0000 Manifest this update: Tue 03 Jun 2025 07:31:10 +0000 Manifest next update: Tue 10 Jun 2025 07:31:10 +0000 Files and hashes: 1: TmiwSN0926X0ePH9KIqGGLqfq6o.crl (hash: f8IHgaYMlevYGYgjOL1JbxvTbeTZhzcnulW6SNyXa8o=) 2: 0FED0338F66C11EFA1F5216AC4F9AE02.roa (hash: U5ihYANfpqZVv2wTmvSMJeDuFIy+/heVKl2c8EiBKYs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FEB37/3CB779E0F5F711EFB82EFD6BC4F9AE02/TmiwSN0926X0ePH9KIqGGLqfq6o.crl rsync://rpki.apnic.net/member_repository/A91FEB37/3CB779E0F5F711EFB82EFD6BC4F9AE02/TmiwSN0926X0ePH9KIqGGLqfq6o.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TmiwSN0926X0ePH9KIqGGLqfq6o.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 07:31:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58 (0x3a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FEB37, serialNumber=4E68B048DD3DDBA5F478F1FD288A8618BA9FABAA Validity Not Before: Jun 3 07:31:10 2025 GMT Not After : Jun 10 07:31:10 2025 GMT Subject: CN=683ea4be-10ac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:da:43:9e:a7:6b:cf:75:c0:8d:a2:c3:d0:e2: 56:7c:a5:be:f9:99:88:f8:57:83:17:b9:e1:d8:39: 63:55:ff:8e:21:02:92:d0:9e:cb:f9:3b:dc:8a:1c: ad:bf:09:ff:64:c3:d4:72:f2:19:9d:4e:f6:84:fa: 9c:c1:eb:ef:8a:20:10:6b:8a:2c:0b:ef:fe:ba:b2: 5f:46:3a:ee:91:60:db:ec:59:7f:e5:f0:10:22:61: ed:3a:09:35:5d:4a:69:76:88:ec:66:c4:1a:6c:da: a5:a3:4f:10:72:2f:37:ba:dc:18:4b:83:b3:4f:f3: 30:ef:42:ee:43:3f:77:0a:34:98:06:b0:95:35:54: 1b:ff:65:2d:a7:86:4a:aa:e2:6e:27:a6:c5:d3:50: 4f:e8:b8:75:c0:73:05:cc:40:a3:d9:ab:c3:e4:01: b2:87:2d:3a:95:3e:d2:d6:c4:27:4f:87:89:4d:ab: 30:e3:ce:95:50:b7:83:2a:70:a9:b8:8c:41:65:09: 16:7a:70:36:7b:4b:da:21:6d:8f:e0:b3:8e:a0:42: 1d:92:08:a2:2b:d8:b2:3b:25:a5:5d:ca:33:44:da: 1d:a1:58:9b:8c:79:e1:92:22:09:c4:6f:28:06:28: f4:a8:74:d7:cf:62:a7:0c:05:75:e7:c1:0e:00:09: 16:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:09:EE:63:30:CF:A6:1D:B4:40:FF:FC:F0:AD:DF:EF:F3:57:1D:B9 X509v3 Authority Key Identifier: keyid:4E:68:B0:48:DD:3D:DB:A5:F4:78:F1:FD:28:8A:86:18:BA:9F:AB:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FEB37/3CB779E0F5F711EFB82EFD6BC4F9AE02/TmiwSN0926X0ePH9KIqGGLqfq6o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TmiwSN0926X0ePH9KIqGGLqfq6o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FEB37/3CB779E0F5F711EFB82EFD6BC4F9AE02/TmiwSN0926X0ePH9KIqGGLqfq6o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 66:e2:23:4c:73:3a:36:0f:65:de:56:cb:84:67:88:63:3f:ad: 61:82:04:9a:d5:44:27:e9:ec:4e:94:1f:e6:6c:c8:08:dc:47: bd:26:d5:bc:53:7d:08:ca:aa:45:4a:c9:0b:47:db:6b:14:66: 9d:86:99:e7:38:ac:07:30:1c:85:78:06:f0:f9:d5:85:02:ef: 27:eb:f2:ad:6b:27:26:89:6c:5f:cd:e6:0f:98:a1:23:36:3b: 7e:69:97:59:7b:e9:3a:0d:72:42:be:d9:e4:08:fd:45:0d:4d: 46:d0:d4:eb:a2:83:4c:a1:85:85:fe:9f:28:2f:81:29:c8:46: b1:70:55:04:e9:54:4b:84:10:69:cb:e3:77:fa:64:5e:5a:8a: 87:6c:21:87:a8:b1:17:86:a7:85:7d:30:4b:f8:0b:44:3d:4c: 37:20:b6:f9:68:ff:60:c0:f5:be:43:a6:03:6f:da:67:78:48: be:82:da:c4:2e:74:1a:ed:cb:f9:1c:a2:b0:65:7d:aa:e7:bb: e7:0f:e7:bd:54:fb:0c:06:78:8d:c4:56:17:76:61:04:a2:19: ad:3a:eb:54:4f:1e:3c:bf:07:88:55:c0:2f:bb:2a:56:5d:d0: 2e:86:9a:51:38:1a:52:5f:e1:59:24:56:6f:e9:5c:63:73:a6: 84:3a:a8:f1 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBOjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG RUIzNzExMC8GA1UEBRMoNEU2OEIwNDhERDNEREJBNUY0NzhGMUZEMjg4QTg2MThC QTlGQUJBQTAeFw0yNTA2MDMwNzMxMTBaFw0yNTA2MTAwNzMxMTBaMBgxFjAUBgNV BAMTDTY4M2VhNGJlLTEwYWMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCd2kOep2vPdcCNosPQ4lZ8pb75mYj4V4MXueHYOWNV/44hApLQnsv5O9yKHK2/ Cf9kw9Ry8hmdTvaE+pzB6++KIBBriiwL7/66sl9GOu6RYNvsWX/l8BAiYe06CTVd Sml2iOxmxBps2qWjTxByLze63BhLg7NP8zDvQu5DP3cKNJgGsJU1VBv/ZS2nhkqq 4m4npsXTUE/ouHXAcwXMQKPZq8PkAbKHLTqVPtLWxCdPh4lNqzDjzpVQt4MqcKm4 jEFlCRZ6cDZ7S9ohbY/gs46gQh2SCKIr2LI7JaVdyjNE2h2hWJuMeeGSIgnEbygG KPSodNfPYqcMBXXnwQ4ACRaZAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUcwnuYzDP ph20QP/88K3f7/NXHbkwHwYDVR0jBBgwFoAUTmiwSN0926X0ePH9KIqGGLqfq6ow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUZFQjM3LzNDQjc3OUUwRjVG NzExRUZCODJFRkQ2QkM0RjlBRTAyL1RtaXdTTjA5MjZYMGVQSDlLSXFHR0xxZnE2 by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvVG1pd1NOMDkyNlgwZVBIOUtJcUdHTHFmcTZvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUZF QjM3LzNDQjc3OUUwRjVGNzExRUZCODJFRkQ2QkM0RjlBRTAyL1RtaXdTTjA5MjZY MGVQSDlLSXFHR0xxZnE2by5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGbiI0xzOjYPZd5Wy4RniGM/rWGCBJrVRCfp7E6UH+ZsyAjcR70m1bxT fQjKqkVKyQtH22sUZp2Gmec4rAcwHIV4BvD51YUC7yfr8q1rJyaJbF/N5g+YoSM2 O35pl1l76ToNckK+2eQI/UUNTUbQ1Ouig0yhhYX+nygvgSnIRrFwVQTpVEuEEGnL 43f6ZF5aiodsIYeosReGp4V9MEv4C0Q9TDcgtvlo/2DA9b5DpgNv2md4SL6C2sQu dBrty/kcorBlfarnu+cP571U+wwGeI3EVhd2YQSiGa0661RPHjy/B4hVwC+7KlZd 0C6GmlE4GlJf4VkkVm/pXGNzpoQ6qPE= -----END CERTIFICATE-----Generated at Wed Jun 4 00:25:49 2025 by rpki-client