$ rpki-client -vvf rpki.apnic.net/member_repository/A9118309/1A48DC866FFC11EA88F3D22BC4F9AE02/tg1afDY_D02TL-MXuQzmz4DSg8k.mft File: tg1afDY_D02TL-MXuQzmz4DSg8k.mft (raw, json) Hash identifier: l/TIduJb/k7D7gji84E1FIBMpSGBTdriaSWLftWZBCM= Subject key identifier: 07:38:A7:FD:6F:B6:54:26:C4:96:82:24:95:26:A8:D6:46:57:83:BA Authority key identifier: B6:0D:5A:7C:36:3F:0F:4D:93:2F:E3:17:B9:0C:E6:CF:80:D2:83:C9 Certificate issuer: /CN=A9118309/serialNumber=B60D5A7C363F0F4D932FE317B90CE6CF80D283C9 Certificate serial: 0A24 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tg1afDY_D02TL-MXuQzmz4DSg8k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9118309/1A48DC866FFC11EA88F3D22BC4F9AE02/tg1afDY_D02TL-MXuQzmz4DSg8k.mft Manifest number: 0A1C Signing time: Wed 14 May 2025 19:55:41 +0000 Manifest this update: Wed 14 May 2025 19:55:40 +0000 Manifest next update: Wed 21 May 2025 19:55:40 +0000 Files and hashes: 1: tg1afDY_D02TL-MXuQzmz4DSg8k.crl (hash: FkajdL1fArUHxiBI7pMomkuJbApADUTHYE58LXrZGy4=) 2: 59AA22D06FFD11EA9160902DC4F9AE02.roa (hash: 3RxABu3KC/9hSKHYQMzVVe4gdoAQgiDaudG41V9QJ3s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9118309/1A48DC866FFC11EA88F3D22BC4F9AE02/tg1afDY_D02TL-MXuQzmz4DSg8k.crl rsync://rpki.apnic.net/member_repository/A9118309/1A48DC866FFC11EA88F3D22BC4F9AE02/tg1afDY_D02TL-MXuQzmz4DSg8k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tg1afDY_D02TL-MXuQzmz4DSg8k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 19:55:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2596 (0xa24) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9118309, serialNumber=B60D5A7C363F0F4D932FE317B90CE6CF80D283C9 Validity Not Before: May 14 19:55:40 2025 GMT Not After : May 21 19:55:40 2025 GMT Subject: CN=6824f53c-045a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:30:c7:47:ad:15:2b:8a:50:3c:08:49:13:87: d4:e8:5c:ba:e6:3e:88:30:2b:ae:df:ac:b5:7a:21: b7:d4:67:37:b3:15:b7:02:60:5e:54:ee:a4:5c:b7: 51:8d:21:6b:de:3a:67:7a:e3:1b:1a:01:89:df:c7: f4:39:49:5f:15:6c:8e:13:e2:43:f5:78:10:6d:c1: 9f:81:34:a9:d6:70:e1:c2:dc:b0:52:6e:29:23:1c: 7a:aa:2f:6e:be:7a:cc:3e:f1:96:76:a9:ab:67:4c: c0:5a:81:30:d4:5b:4b:08:e9:9c:02:4d:24:4e:89: 07:9f:26:13:dd:73:c0:5d:76:b7:02:f1:ee:cd:3f: 7d:bd:66:28:2d:73:b2:9e:3f:70:57:37:bd:58:9c: 1f:ce:20:5c:3e:4a:0e:a3:32:a4:cb:3f:05:67:42: 7d:6a:a9:90:25:f8:35:21:d1:c2:7d:56:55:ea:e6: 27:e7:4a:e5:55:d3:c4:25:40:55:2a:bc:8c:26:53: 69:23:6a:50:51:75:5e:7d:d9:b9:99:81:3e:e8:9d: af:6b:97:eb:11:8b:4b:14:60:c6:e6:c1:47:94:1e: cd:be:77:03:62:1f:2b:34:59:d6:c2:83:ee:69:1d: 9f:91:98:e6:06:56:27:65:9a:7c:e9:ef:9f:27:3f: 78:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:38:A7:FD:6F:B6:54:26:C4:96:82:24:95:26:A8:D6:46:57:83:BA X509v3 Authority Key Identifier: keyid:B6:0D:5A:7C:36:3F:0F:4D:93:2F:E3:17:B9:0C:E6:CF:80:D2:83:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9118309/1A48DC866FFC11EA88F3D22BC4F9AE02/tg1afDY_D02TL-MXuQzmz4DSg8k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tg1afDY_D02TL-MXuQzmz4DSg8k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9118309/1A48DC866FFC11EA88F3D22BC4F9AE02/tg1afDY_D02TL-MXuQzmz4DSg8k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 03:ef:b5:47:af:e8:0b:69:8a:b4:88:43:ed:ae:57:8d:a6:8d: f3:ce:af:82:0d:d0:7c:f7:26:94:0c:3e:b6:e4:9e:a4:f5:72: a7:ee:af:3e:6c:49:10:6d:1b:4d:71:42:0a:27:e5:e1:3f:2a: bc:31:b4:73:5e:23:f6:a5:8e:08:96:19:b5:f2:4c:28:d2:e8: 63:99:13:a1:da:d8:e6:74:bf:02:60:25:dc:c1:fb:e4:43:58: 20:d7:1c:bc:f8:7c:a8:77:16:fb:46:df:a0:dd:45:9d:b7:9e: 73:f8:2c:03:f0:69:6f:2e:f9:cb:ac:bc:d9:d8:79:4e:0f:7b: 1f:ce:6e:52:42:18:d6:08:df:17:ec:9c:65:25:b5:14:b3:63: da:ff:a9:8a:66:15:71:f2:13:62:5f:5e:ed:f4:00:ff:9a:13: 95:4d:5a:aa:eb:81:b3:94:62:d2:35:dc:49:2a:16:47:9a:a0: 3b:b6:32:74:a0:2f:4e:67:c3:2d:c6:3b:2f:c8:12:c0:eb:c1: 6c:6c:81:5f:f7:1d:ba:02:60:36:02:70:e4:a1:70:e6:ae:59: 9a:9f:cb:f6:01:9f:44:d3:ff:4f:e7:bb:96:e8:78:89:00:1a: c7:f7:78:a3:37:09:05:0d:9e:b2:14:b1:87:2b:c2:94:57:b6: 8f:ce:7e:13 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCiQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTgzMDkxMTAvBgNVBAUTKEI2MEQ1QTdDMzYzRjBGNEQ5MzJGRTMxN0I5MENFNkNG ODBEMjgzQzkwHhcNMjUwNTE0MTk1NTQwWhcNMjUwNTIxMTk1NTQwWjAYMRYwFAYD VQQDEw02ODI0ZjUzYy0wNDVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxDDHR60VK4pQPAhJE4fU6Fy65j6IMCuu36y1eiG31Gc3sxW3AmBeVO6kXLdR jSFr3jpneuMbGgGJ38f0OUlfFWyOE+JD9XgQbcGfgTSp1nDhwtywUm4pIxx6qi9u vnrMPvGWdqmrZ0zAWoEw1FtLCOmcAk0kTokHnyYT3XPAXXa3AvHuzT99vWYoLXOy nj9wVze9WJwfziBcPkoOozKkyz8FZ0J9aqmQJfg1IdHCfVZV6uYn50rlVdPEJUBV KryMJlNpI2pQUXVefdm5mYE+6J2va5frEYtLFGDG5sFHlB7NvncDYh8rNFnWwoPu aR2fkZjmBlYnZZp86e+fJz94bQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAc4p/1v tlQmxJaCJJUmqNZGV4O6MB8GA1UdIwQYMBaAFLYNWnw2Pw9Nky/jF7kM5s+A0oPJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExODMwOS8xQTQ4REM4NjZG RkMxMUVBODhGM0QyMkJDNEY5QUUwMi90ZzFhZkRZX0QwMlRMLU1YdVF6bXo0RFNn OGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RnMWFmRFlfRDAyVEwtTVh1UXptejREU2c4ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx ODMwOS8xQTQ4REM4NjZGRkMxMUVBODhGM0QyMkJDNEY5QUUwMi90ZzFhZkRZX0Qw MlRMLU1YdVF6bXo0RFNnOGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAD77VHr+gLaYq0iEPtrleNpo3zzq+CDdB89yaUDD625J6k9XKn7q8+ bEkQbRtNcUIKJ+XhPyq8MbRzXiP2pY4Ilhm18kwo0uhjmROh2tjmdL8CYCXcwfvk Q1gg1xy8+Hyodxb7Rt+g3UWdt55z+CwD8GlvLvnLrLzZ2HlOD3sfzm5SQhjWCN8X 7JxlJbUUs2Pa/6mKZhVx8hNiX17t9AD/mhOVTVqq64GzlGLSNdxJKhZHmqA7tjJ0 oC9OZ8MtxjsvyBLA68FsbIFf9x26AmA2AnDkoXDmrlman8v2AZ9E0/9P57uW6HiJ ABrH93ijNwkFDZ6yFLGHK8KUV7aPzn4T -----END CERTIFICATE-----Generated at Fri May 16 00:31:15 2025 by rpki-client