$ rpki-client -vvf rpki.apnic.net/member_repository/A91342C5/16637C2EA4E911ECAF3FB152C4F9AE02/TSeJUeK9itKFuUCo6p5X43lxHms.mft File: TSeJUeK9itKFuUCo6p5X43lxHms.mft (raw, json) Hash identifier: RB2NlXSJeVIjKfZAC8pxNUXT0paM4yfp6hARQMQzKKo= Subject key identifier: CA:D8:DD:1A:EF:F0:05:21:95:87:88:94:62:43:9B:72:B2:B0:80:0D Authority key identifier: 4D:27:89:51:E2:BD:8A:D2:85:B9:40:A8:EA:9E:57:E3:79:71:1E:6B Certificate issuer: /CN=A91342C5/serialNumber=4D278951E2BD8AD285B940A8EA9E57E379711E6B Certificate serial: 0385 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/TSeJUeK9itKFuUCo6p5X43lxHms.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91342C5/16637C2EA4E911ECAF3FB152C4F9AE02/TSeJUeK9itKFuUCo6p5X43lxHms.mft Manifest number: 0380 Signing time: Tue 13 May 2025 00:42:17 +0000 Manifest this update: Tue 13 May 2025 00:42:16 +0000 Manifest next update: Tue 20 May 2025 00:42:16 +0000 Files and hashes: 1: TSeJUeK9itKFuUCo6p5X43lxHms.crl (hash: 8JBOZ5a5HvsarjAn7AbWxkRuHELbWAMYFe/XR1O6wek=) 2: E8E194B8A5CC11EC85A86A1FC4F9AE02.roa (hash: ypQGr8fcGrxnVWfQ2RrFsZZ4R7tmsDgEITmj6bx0ScA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91342C5/16637C2EA4E911ECAF3FB152C4F9AE02/TSeJUeK9itKFuUCo6p5X43lxHms.crl rsync://rpki.apnic.net/member_repository/A91342C5/16637C2EA4E911ECAF3FB152C4F9AE02/TSeJUeK9itKFuUCo6p5X43lxHms.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/TSeJUeK9itKFuUCo6p5X43lxHms.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 00:42:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 901 (0x385) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91342C5, serialNumber=4D278951E2BD8AD285B940A8EA9E57E379711E6B Validity Not Before: May 13 00:42:16 2025 GMT Not After : May 20 00:42:16 2025 GMT Subject: CN=68229568-de39 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:e9:31:ce:ad:9a:1f:59:63:9b:37:6b:88:c7: 98:1c:08:6b:c4:9a:b6:f6:ce:6d:19:b2:31:00:00: 9d:fc:9c:3b:30:2d:a3:2b:9c:9c:63:a9:bf:e5:b4: 05:14:3d:e5:e9:db:bb:df:d4:d2:25:2a:47:5d:08: d1:39:e7:1d:bc:d4:35:00:d6:e3:be:40:3b:d5:bc: 40:43:08:c6:5e:b7:6d:32:4f:8a:0f:7b:37:68:a4: c0:e2:10:6b:8d:e3:67:80:48:b0:b5:ee:f5:a5:e2: 35:8f:4e:e8:98:9b:58:49:5b:0c:53:e9:d9:98:6d: 16:c1:1a:02:b5:48:64:51:c1:a0:04:a6:e4:7e:6d: 23:70:18:ed:16:f5:61:5d:74:a3:32:9c:f9:53:26: b6:91:0c:95:2b:68:05:7c:31:fd:34:02:07:95:b1: 86:26:83:dd:ea:0f:16:08:74:de:78:47:b2:20:52: 23:73:ca:f0:88:f3:11:df:03:16:c3:b9:94:91:95: 75:5c:a3:97:18:ba:a8:c5:d0:06:b0:64:c4:41:66: e0:4c:c1:1e:a6:9f:2e:59:08:ba:5c:dd:b7:7e:c2: 96:8e:1f:1f:e2:f6:14:f7:40:48:95:fd:92:9c:6a: a3:d3:a4:9d:2a:94:df:7f:04:10:4f:11:e0:5f:81: 49:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:D8:DD:1A:EF:F0:05:21:95:87:88:94:62:43:9B:72:B2:B0:80:0D X509v3 Authority Key Identifier: keyid:4D:27:89:51:E2:BD:8A:D2:85:B9:40:A8:EA:9E:57:E3:79:71:1E:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91342C5/16637C2EA4E911ECAF3FB152C4F9AE02/TSeJUeK9itKFuUCo6p5X43lxHms.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/TSeJUeK9itKFuUCo6p5X43lxHms.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91342C5/16637C2EA4E911ECAF3FB152C4F9AE02/TSeJUeK9itKFuUCo6p5X43lxHms.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 14:df:05:72:61:6c:bd:bc:c8:bf:9a:0f:6b:03:03:ef:9c:d8: b1:8f:08:c6:ff:e0:03:e1:60:99:d0:f0:8a:75:8e:c6:94:77: 90:ab:b3:08:51:fb:9d:4d:b2:16:eb:54:3d:bc:b1:cd:59:d6: f4:21:f1:29:3a:b8:d7:18:83:03:f1:b1:99:7b:50:6b:30:12: d2:42:e0:b6:12:15:57:ee:a6:22:21:92:b7:bc:80:66:f2:cd: 49:0f:db:62:34:1b:cd:11:01:b3:40:94:67:06:6a:5f:4d:66: 1a:33:03:68:48:fc:c1:9d:96:b1:56:c7:06:9b:78:8c:70:a5: 3e:1d:62:52:b5:08:20:30:fa:c0:20:50:32:4c:7e:c0:99:75: 99:83:5d:da:dd:87:6a:82:2c:f3:16:5e:48:dc:a3:61:d3:34: 52:27:49:7a:6c:f1:9f:68:ed:7b:e9:73:d2:1d:89:98:0d:47: 1e:84:5d:10:b6:69:06:5f:80:e0:70:a2:63:8a:fa:bc:a8:8b: e4:b7:49:5b:cd:3f:78:3e:cf:d0:17:db:73:9e:ae:b2:ab:ae: 21:7c:b6:54:19:5d:b1:bd:22:e0:de:7e:22:93:fc:cd:50:8d: 16:19:b4:22:b9:ce:78:9a:8b:2f:0a:cc:7c:39:17:4a:9d:b2: c0:40:0c:12 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA4UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzQyQzUxMTAvBgNVBAUTKDREMjc4OTUxRTJCRDhBRDI4NUI5NDBBOEVBOUU1N0Uz Nzk3MTFFNkIwHhcNMjUwNTEzMDA0MjE2WhcNMjUwNTIwMDA0MjE2WjAYMRYwFAYD VQQDEw02ODIyOTU2OC1kZTM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx+kxzq2aH1ljmzdriMeYHAhrxJq29s5tGbIxAACd/Jw7MC2jK5ycY6m/5bQF FD3l6du739TSJSpHXQjROecdvNQ1ANbjvkA71bxAQwjGXrdtMk+KD3s3aKTA4hBr jeNngEiwte71peI1j07omJtYSVsMU+nZmG0WwRoCtUhkUcGgBKbkfm0jcBjtFvVh XXSjMpz5Uya2kQyVK2gFfDH9NAIHlbGGJoPd6g8WCHTeeEeyIFIjc8rwiPMR3wMW w7mUkZV1XKOXGLqoxdAGsGTEQWbgTMEepp8uWQi6XN23fsKWjh8f4vYU90BIlf2S nGqj06SdKpTffwQQTxHgX4FJUQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMrY3Rrv 8AUhlYeIlGJDm3KysIANMB8GA1UdIwQYMBaAFE0niVHivYrShblAqOqeV+N5cR5r MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNDJDNS8xNjYzN0MyRUE0 RTkxMUVDQUYzRkIxNTJDNEY5QUUwMi9UU2VKVWVLOWl0S0Z1VUNvNnA1WDQzbHhI bXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL1RTZUpVZUs5aXRLRnVVQ282cDVYNDNseEhtcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NDJDNS8xNjYzN0MyRUE0RTkxMUVDQUYzRkIxNTJDNEY5QUUwMi9UU2VKVWVLOWl0 S0Z1VUNvNnA1WDQzbHhIbXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAU3wVyYWy9vMi/mg9rAwPvnNixjwjG/+AD4WCZ0PCKdY7GlHeQq7MI UfudTbIW61Q9vLHNWdb0IfEpOrjXGIMD8bGZe1BrMBLSQuC2EhVX7qYiIZK3vIBm 8s1JD9tiNBvNEQGzQJRnBmpfTWYaMwNoSPzBnZaxVscGm3iMcKU+HWJStQggMPrA IFAyTH7AmXWZg13a3YdqgizzFl5I3KNh0zRSJ0l6bPGfaO176XPSHYmYDUcehF0Q tmkGX4DgcKJjivq8qIvkt0lbzT94Ps/QF9tznq6yq64hfLZUGV2xvSLg3n4ik/zN UI0WGbQiuc54mosvCsx8ORdKnbLAQAwS -----END CERTIFICATE-----Generated at Tue May 13 06:25:09 2025 by rpki-client