$ rpki-client -vvf rpki.apnic.net/member_repository/A9135B49/5318A108120111EFADC85345C4F9AE02/TDZeNqZHnY6wtQ2Q820dexnvhNM.mft File: TDZeNqZHnY6wtQ2Q820dexnvhNM.mft (raw, json) Hash identifier: 5qE3AVeBt8p/oZDx9945SKe0Es+jMMoh37nE2g8AKXk= Subject key identifier: 19:5A:21:CF:AE:FA:ED:C8:AF:94:E8:4A:4F:0C:32:DC:AE:BE:B6:7F Authority key identifier: 4C:36:5E:36:A6:47:9D:8E:B0:B5:0D:90:F3:6D:1D:7B:19:EF:84:D3 Certificate issuer: /CN=A9135B49/serialNumber=4C365E36A6479D8EB0B50D90F36D1D7B19EF84D3 Certificate serial: FF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TDZeNqZHnY6wtQ2Q820dexnvhNM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9135B49/5318A108120111EFADC85345C4F9AE02/TDZeNqZHnY6wtQ2Q820dexnvhNM.mft Manifest number: E5 Signing time: Thu 15 May 2025 05:11:48 +0000 Manifest this update: Thu 15 May 2025 05:11:47 +0000 Manifest next update: Thu 22 May 2025 05:11:47 +0000 Files and hashes: 1: TDZeNqZHnY6wtQ2Q820dexnvhNM.crl (hash: xTW8/mRN+/++EMSfmL0rajX7hM2UlbrTahVzSNmwkc8=) 2: 59E4E2A415BA11F084EFBB7CC4F9AE02.roa (hash: HZDyu1joYX+dxKnFptiA5xky7OHNJkIOKQTmsVfZf5A=) 3: 26B79D64E9FE11EF8751AE17C4F9AE02.roa (hash: VTVe81N4pW9ER21bMKt6sFjbfFvf/H+A7jZRhppZ5sg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9135B49/5318A108120111EFADC85345C4F9AE02/TDZeNqZHnY6wtQ2Q820dexnvhNM.crl rsync://rpki.apnic.net/member_repository/A9135B49/5318A108120111EFADC85345C4F9AE02/TDZeNqZHnY6wtQ2Q820dexnvhNM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TDZeNqZHnY6wtQ2Q820dexnvhNM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 05:11:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 255 (0xff) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9135B49, serialNumber=4C365E36A6479D8EB0B50D90F36D1D7B19EF84D3 Validity Not Before: May 15 05:11:47 2025 GMT Not After : May 22 05:11:47 2025 GMT Subject: CN=68257793-74cb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:04:25:c4:9d:bc:bd:4b:a8:e8:5d:0d:90:9b: 1d:19:a5:7c:91:9c:54:27:18:09:ec:22:c9:c9:b5: a6:c6:d4:53:81:cb:30:b1:20:ee:e9:a1:1b:76:61: 9b:63:cc:0c:45:37:cb:12:6f:39:a8:c4:59:e0:af: ef:89:30:d7:fc:f1:7b:8b:e9:ee:03:ac:a2:d2:de: ed:a4:dc:4a:64:37:2b:99:e3:64:2a:04:b8:39:1e: b4:9a:0f:85:27:16:70:c2:b9:7f:c7:ac:24:73:1b: 47:86:cc:cf:52:ee:d5:d6:00:67:e4:cd:81:63:f9: da:64:fb:b0:8b:e6:a5:85:fe:f5:3f:4b:6f:fa:ee: bf:c1:bd:ca:0c:fd:55:6b:f2:8e:5b:d0:8e:01:b7: 23:0f:ad:b2:ed:ae:f3:64:f9:0d:59:01:48:4a:71: f4:ce:0b:2f:9b:9a:32:61:14:54:b4:0f:c5:c7:47: a3:03:e4:65:bc:55:17:f5:82:00:ad:ea:3c:0f:c5: cb:9b:da:59:d1:4f:cf:22:76:95:23:0a:c2:c6:c0: ca:25:93:69:a7:b0:7d:cf:11:ef:ef:df:ba:c2:1f: ff:38:1e:2b:c6:f9:f3:3c:6e:85:af:3d:fb:03:26: aa:49:7a:66:65:9d:ce:2b:df:96:2e:66:15:39:f0: d7:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:5A:21:CF:AE:FA:ED:C8:AF:94:E8:4A:4F:0C:32:DC:AE:BE:B6:7F X509v3 Authority Key Identifier: keyid:4C:36:5E:36:A6:47:9D:8E:B0:B5:0D:90:F3:6D:1D:7B:19:EF:84:D3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9135B49/5318A108120111EFADC85345C4F9AE02/TDZeNqZHnY6wtQ2Q820dexnvhNM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TDZeNqZHnY6wtQ2Q820dexnvhNM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9135B49/5318A108120111EFADC85345C4F9AE02/TDZeNqZHnY6wtQ2Q820dexnvhNM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 20:5d:8a:e6:45:16:32:a8:68:73:f2:53:4c:4c:a0:c3:49:94: 04:e4:53:31:0d:96:ae:9d:93:53:d6:a9:b3:e9:ec:e2:62:8d: ee:d2:89:eb:1a:20:92:2a:6c:d2:69:4a:0b:75:69:14:5f:70: 3c:9b:9c:51:96:d6:78:46:47:2a:7d:f5:5f:fa:c6:2a:98:1a: 9f:7f:3a:8c:98:e0:e2:e3:a6:0e:79:02:3e:53:3a:94:b0:32: d5:43:05:88:53:91:79:b5:a1:53:bc:82:ab:ce:a3:69:65:47: 93:04:0b:62:84:94:bb:f9:5c:f7:22:37:2a:28:12:73:ee:91: d6:4f:78:08:9c:3d:4c:36:91:1e:f3:bc:d5:21:74:ad:1c:fe: a4:3a:e6:e3:8b:20:76:64:19:ac:50:66:7b:52:a3:cc:90:d3: d0:0f:ef:4f:4c:ee:b5:7f:7b:c6:44:8f:c7:06:03:97:21:1b: 67:fc:60:b6:fb:bb:e0:92:3c:79:5e:7b:86:08:4b:b6:05:7e: d5:4f:8c:12:cb:58:e6:93:94:e3:c0:7c:9d:f6:42:a9:7d:d3: b1:e3:eb:9b:e4:df:e5:bd:fc:9c:0c:da:67:2c:a5:f1:58:a3: 8c:94:2f:3d:3f:c6:92:a8:26:40:49:5d:fe:83:c0:b5:17:58: 31:86:31:de -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAP8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzVCNDkxMTAvBgNVBAUTKDRDMzY1RTM2QTY0NzlEOEVCMEI1MEQ5MEYzNkQxRDdC MTlFRjg0RDMwHhcNMjUwNTE1MDUxMTQ3WhcNMjUwNTIyMDUxMTQ3WjAYMRYwFAYD VQQDEw02ODI1Nzc5My03NGNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsQQlxJ28vUuo6F0NkJsdGaV8kZxUJxgJ7CLJybWmxtRTgcswsSDu6aEbdmGb Y8wMRTfLEm85qMRZ4K/viTDX/PF7i+nuA6yi0t7tpNxKZDcrmeNkKgS4OR60mg+F JxZwwrl/x6wkcxtHhszPUu7V1gBn5M2BY/naZPuwi+alhf71P0tv+u6/wb3KDP1V a/KOW9COAbcjD62y7a7zZPkNWQFISnH0zgsvm5oyYRRUtA/Fx0ejA+RlvFUX9YIA reo8D8XLm9pZ0U/PInaVIwrCxsDKJZNpp7B9zxHv79+6wh//OB4rxvnzPG6Frz37 AyaqSXpmZZ3OK9+WLmYVOfDXIQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBlaIc+u +u3Ir5ToSk8MMtyuvrZ/MB8GA1UdIwQYMBaAFEw2XjamR52OsLUNkPNtHXsZ74TT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNUI0OS81MzE4QTEwODEy MDExMUVGQURDODUzNDVDNEY5QUUwMi9URFplTnFaSG5ZNnd0UTJRODIwZGV4bnZo Tk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1REWmVOcVpIblk2d3RRMlE4MjBkZXhudmhOTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NUI0OS81MzE4QTEwODEyMDExMUVGQURDODUzNDVDNEY5QUUwMi9URFplTnFaSG5Z Nnd0UTJRODIwZGV4bnZoTk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAgXYrmRRYyqGhz8lNMTKDDSZQE5FMxDZaunZNT1qmz6eziYo3u0onr GiCSKmzSaUoLdWkUX3A8m5xRltZ4RkcqffVf+sYqmBqffzqMmODi46YOeQI+UzqU sDLVQwWIU5F5taFTvIKrzqNpZUeTBAtihJS7+Vz3IjcqKBJz7pHWT3gInD1MNpEe 87zVIXStHP6kOubjiyB2ZBmsUGZ7UqPMkNPQD+9PTO61f3vGRI/HBgOXIRtn/GC2 +7vgkjx5XnuGCEu2BX7VT4wSy1jmk5TjwHyd9kKpfdOx4+ub5N/lvfycDNpnLKXx WKOMlC89P8aSqCZASV3+g8C1F1gxhjHe -----END CERTIFICATE-----Generated at Thu May 15 21:36:15 2025 by rpki-client