$ rpki-client -vvf rpki.apnic.net/member_repository/A91466E8/D8388D34F3FC11EF926CE630C4F9AE02/TCISGt-uP1dSgBZRUcP9MOOq_QE.mft File: TCISGt-uP1dSgBZRUcP9MOOq_QE.mft (raw, json) Hash identifier: hJI7hCYdsF/XurA8wplDvr1WCwu9kje0YjBUBYw1o7w= Subject key identifier: C9:2C:AE:38:41:37:7F:D2:28:B6:5F:CB:32:CA:F9:BC:B6:16:EB:45 Authority key identifier: 4C:22:12:1A:DF:AE:3F:57:52:80:16:51:51:C3:FD:30:E3:AA:FD:01 Certificate issuer: /CN=A91466E8/serialNumber=4C22121ADFAE3F575280165151C3FD30E3AAFD01 Certificate serial: 2B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TCISGt-uP1dSgBZRUcP9MOOq_QE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91466E8/D8388D34F3FC11EF926CE630C4F9AE02/TCISGt-uP1dSgBZRUcP9MOOq_QE.mft Manifest number: 2A Signing time: Tue 13 May 2025 06:57:09 +0000 Manifest this update: Tue 13 May 2025 06:57:08 +0000 Manifest next update: Tue 20 May 2025 06:57:08 +0000 Files and hashes: 1: TCISGt-uP1dSgBZRUcP9MOOq_QE.crl (hash: Mu1VQzPXskzf1n01rqsIF9JOHp+/8BULnfRfOHlpwfc=) 2: 02640B0CF97911EF99F9BE80C4F9AE02.roa (hash: cI8Rp+uDdJ361Bt2iDuipm5XRt6w/fm/O6/Pc4tHNDU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91466E8/D8388D34F3FC11EF926CE630C4F9AE02/TCISGt-uP1dSgBZRUcP9MOOq_QE.crl rsync://rpki.apnic.net/member_repository/A91466E8/D8388D34F3FC11EF926CE630C4F9AE02/TCISGt-uP1dSgBZRUcP9MOOq_QE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TCISGt-uP1dSgBZRUcP9MOOq_QE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 06:57:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43 (0x2b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91466E8, serialNumber=4C22121ADFAE3F575280165151C3FD30E3AAFD01 Validity Not Before: May 13 06:57:08 2025 GMT Not After : May 20 06:57:08 2025 GMT Subject: CN=6822ed44-dacb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:c2:bd:aa:9f:3e:12:de:9a:bd:f2:4b:22:5a: 59:29:bf:14:97:8a:74:05:75:c0:e8:c8:02:bd:7f: e4:52:15:5a:0e:ba:42:ff:4f:6c:3a:af:ed:bb:a2: ab:8f:06:d8:5e:12:e1:3e:ad:a9:c0:cd:2d:a4:a9: 63:ca:3c:e8:11:cc:04:c5:d8:7b:d6:99:88:fc:6e: c6:a1:6f:b4:32:fe:52:5b:ad:04:74:88:93:91:1d: e1:7e:28:1b:2e:e6:98:78:26:ee:b7:3c:a6:cc:8b: 3d:56:38:4e:74:f4:05:6b:a8:96:54:57:fd:ed:ac: de:23:50:e5:a1:d6:3f:49:f8:5b:83:e7:29:ac:16: e6:fe:79:c4:18:13:b8:69:77:3f:eb:14:3f:54:e1: 2c:14:08:d7:0d:25:10:6f:21:db:a4:b6:bd:cb:01: a2:77:1f:58:78:3f:2f:d3:c3:eb:ec:2e:32:76:0a: 6e:e0:64:7c:67:c1:2b:56:40:64:92:45:53:9b:3e: 1e:22:66:5a:c3:74:8e:73:60:c6:4f:f5:7f:22:19: ba:64:ac:31:7f:86:22:85:4b:5d:52:83:c8:a2:e4: 2d:9c:a9:49:77:1c:3a:3b:66:69:1a:8e:46:09:a5: fb:5e:ae:e4:70:82:d2:22:a3:26:fe:f3:af:e3:d6: ce:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:2C:AE:38:41:37:7F:D2:28:B6:5F:CB:32:CA:F9:BC:B6:16:EB:45 X509v3 Authority Key Identifier: keyid:4C:22:12:1A:DF:AE:3F:57:52:80:16:51:51:C3:FD:30:E3:AA:FD:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91466E8/D8388D34F3FC11EF926CE630C4F9AE02/TCISGt-uP1dSgBZRUcP9MOOq_QE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TCISGt-uP1dSgBZRUcP9MOOq_QE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91466E8/D8388D34F3FC11EF926CE630C4F9AE02/TCISGt-uP1dSgBZRUcP9MOOq_QE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 09:32:fb:ff:7b:65:21:46:64:c3:65:e7:03:c7:59:dc:c0:98: a6:1c:79:20:55:ab:a5:78:4b:71:81:8a:bf:5d:d8:dc:b8:66: 3d:e1:8c:de:cf:6b:a5:68:00:96:13:d5:28:85:a3:a7:a8:12: bd:ec:b9:94:c3:db:a9:56:5e:80:27:9a:6e:b6:60:36:78:15: 07:ae:2e:70:01:05:51:0d:28:47:cb:37:31:e9:88:f3:e2:cc: 67:23:52:bc:7e:b3:75:00:91:42:39:e1:d4:70:6b:ca:4e:92: 36:a9:ca:b7:79:0b:49:d6:47:9f:53:b4:8d:d5:5b:04:2c:99: 1a:1a:96:26:93:d3:8b:7c:8a:93:65:a5:0e:fc:24:69:47:96: d3:e6:b4:40:2b:83:b0:42:40:12:54:ca:e5:66:41:a2:13:c1: 1b:7b:e2:30:16:b1:d1:2c:9a:43:c1:0e:ae:3d:88:21:94:1e: cb:0b:bd:cd:1e:82:36:46:5a:bc:73:2a:0d:68:1b:e7:ca:ee: 12:80:2d:c3:dd:22:4c:4e:ea:55:fd:a4:f0:3b:83:ce:f5:2e: 17:cc:7f:ec:dc:9a:5c:a2:36:7a:1f:4e:57:bf:43:7a:98:ae: 17:50:45:cb:07:9f:72:3a:d6:bc:7d:f5:16:cf:95:46:b5:4e: eb:fb:a1:41 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBKzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 NjZFODExMC8GA1UEBRMoNEMyMjEyMUFERkFFM0Y1NzUyODAxNjUxNTFDM0ZEMzBF M0FBRkQwMTAeFw0yNTA1MTMwNjU3MDhaFw0yNTA1MjAwNjU3MDhaMBgxFjAUBgNV BAMTDTY4MjJlZDQ0LWRhY2IwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDMwr2qnz4S3pq98ksiWlkpvxSXinQFdcDoyAK9f+RSFVoOukL/T2w6r+27oquP BtheEuE+ranAzS2kqWPKPOgRzATF2HvWmYj8bsahb7Qy/lJbrQR0iJORHeF+KBsu 5ph4Ju63PKbMiz1WOE509AVrqJZUV/3trN4jUOWh1j9J+FuD5ymsFub+ecQYE7hp dz/rFD9U4SwUCNcNJRBvIduktr3LAaJ3H1h4Py/Tw+vsLjJ2Cm7gZHxnwStWQGSS RVObPh4iZlrDdI5zYMZP9X8iGbpkrDF/hiKFS11Sg8ii5C2cqUl3HDo7ZmkajkYJ pfteruRwgtIioyb+86/j1s4jAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUySyuOEE3 f9Iotl/LMsr5vLYW60UwHwYDVR0jBBgwFoAUTCISGt+uP1dSgBZRUcP9MOOq/QEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ2NkU4L0Q4Mzg4RDM0RjNG QzExRUY5MjZDRTYzMEM0RjlBRTAyL1RDSVNHdC11UDFkU2dCWlJVY1A5TU9PcV9R RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvVENJU0d0LXVQMWRTZ0JaUlVjUDlNT09xX1FFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ2 NkU4L0Q4Mzg4RDM0RjNGQzExRUY5MjZDRTYzMEM0RjlBRTAyL1RDSVNHdC11UDFk U2dCWlJVY1A5TU9PcV9RRS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAAky+/97ZSFGZMNl5wPHWdzAmKYceSBVq6V4S3GBir9d2Ny4Zj3hjN7P a6VoAJYT1SiFo6eoEr3suZTD26lWXoAnmm62YDZ4FQeuLnABBVENKEfLNzHpiPPi zGcjUrx+s3UAkUI54dRwa8pOkjapyrd5C0nWR59TtI3VWwQsmRoaliaT04t8ipNl pQ78JGlHltPmtEArg7BCQBJUyuVmQaITwRt74jAWsdEsmkPBDq49iCGUHssLvc0e gjZGWrxzKg1oG+fK7hKALcPdIkxO6lX9pPA7g871LhfMf+zcmlyiNnofTle/Q3qY rhdQRcsHn3I61rx99RbPlUa1Tuv7oUE= -----END CERTIFICATE-----Generated at Wed May 14 18:31:44 2025 by rpki-client