$ rpki-client -vvf rpki.apnic.net/member_repository/A9148F50/A1E1F79C411E11EBA0B8FA56C4F9AE02/TPa6KUJsvCB032LFH683jELTuK8.mft File: TPa6KUJsvCB032LFH683jELTuK8.mft (raw, json) Hash identifier: fkikz0fsFMyz5B3yAZ7tQqnZG/qaA0/9x/orErn5PCM= Subject key identifier: A7:DD:32:3D:74:88:59:6D:A7:A4:BD:36:05:2D:9E:01:86:69:0D:14 Authority key identifier: 4C:F6:BA:29:42:6C:BC:20:74:DF:62:C5:1F:AF:37:8C:42:D3:B8:AF Certificate issuer: /CN=A9148F50/serialNumber=4CF6BA29426CBC2074DF62C51FAF378C42D3B8AF Certificate serial: 0705 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TPa6KUJsvCB032LFH683jELTuK8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9148F50/A1E1F79C411E11EBA0B8FA56C4F9AE02/TPa6KUJsvCB032LFH683jELTuK8.mft Manifest number: 06FF Signing time: Mon 12 May 2025 21:43:20 +0000 Manifest this update: Mon 12 May 2025 21:43:19 +0000 Manifest next update: Mon 19 May 2025 21:43:19 +0000 Files and hashes: 1: TPa6KUJsvCB032LFH683jELTuK8.crl (hash: b1mkzNCCdGZEymEl4ZgdOx2N6FSyBem65UlsUlJpAjI=) 2: B6A436A8411F11EBA45D5857C4F9AE02.roa (hash: COBPm0g4nlJAOhrh0hQYrpWCggmct2exc7fAFXJ645A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9148F50/A1E1F79C411E11EBA0B8FA56C4F9AE02/TPa6KUJsvCB032LFH683jELTuK8.crl rsync://rpki.apnic.net/member_repository/A9148F50/A1E1F79C411E11EBA0B8FA56C4F9AE02/TPa6KUJsvCB032LFH683jELTuK8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TPa6KUJsvCB032LFH683jELTuK8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 21:43:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1797 (0x705) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9148F50, serialNumber=4CF6BA29426CBC2074DF62C51FAF378C42D3B8AF Validity Not Before: May 12 21:43:19 2025 GMT Not After : May 19 21:43:19 2025 GMT Subject: CN=68226b78-3ba9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:21:62:ae:3f:c6:85:01:45:a1:84:a4:e2:b7: 6e:aa:81:68:95:9a:db:98:d4:9f:f8:78:f9:80:73: 63:d6:49:6c:36:3e:9d:d2:c2:f9:82:15:33:12:e3: a0:18:65:64:3a:f0:70:d0:ce:52:f4:4f:46:a6:e9: 99:92:f3:d9:ef:69:76:05:f5:db:81:31:3c:8c:62: 37:b3:e4:02:ee:da:fa:94:ca:ed:32:91:39:ae:28: 35:7e:91:bc:eb:ba:0d:b6:ea:2c:ad:4a:b2:41:26: c4:97:ee:85:67:07:7e:35:e7:01:0b:23:a6:e5:c4: bb:90:df:57:61:ee:ec:e2:df:39:c5:52:20:cd:d0: e8:d6:61:41:c3:a8:43:ba:3f:5e:3d:38:9c:db:66: 66:90:14:57:90:57:84:27:fa:6b:5f:5b:4b:6a:0d: cb:38:b3:5c:f0:0e:77:c6:5d:af:e3:c0:4e:4f:56: f5:85:9f:18:23:fb:35:84:b7:e1:10:55:74:f1:d1: f7:94:95:7b:f2:fb:79:92:4d:b3:cc:49:b0:b8:fd: dc:86:63:ab:59:8f:29:0a:6f:ea:cc:1c:25:29:a8: 32:ab:8a:70:2b:a5:cd:9a:2b:ae:84:7c:55:d9:82: 07:78:d3:3e:13:cb:32:c2:48:a5:79:22:59:d9:21: d0:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:DD:32:3D:74:88:59:6D:A7:A4:BD:36:05:2D:9E:01:86:69:0D:14 X509v3 Authority Key Identifier: keyid:4C:F6:BA:29:42:6C:BC:20:74:DF:62:C5:1F:AF:37:8C:42:D3:B8:AF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9148F50/A1E1F79C411E11EBA0B8FA56C4F9AE02/TPa6KUJsvCB032LFH683jELTuK8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TPa6KUJsvCB032LFH683jELTuK8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148F50/A1E1F79C411E11EBA0B8FA56C4F9AE02/TPa6KUJsvCB032LFH683jELTuK8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 98:17:dd:37:bc:60:a4:e3:7c:47:7a:e4:18:81:6c:43:01:66: d8:7a:36:62:2d:6d:14:c1:20:ec:e5:d7:a9:80:bf:26:45:f4: 56:cf:6d:cc:b7:88:8c:30:35:58:82:3b:a1:7c:66:65:98:07: 75:b0:80:c9:75:fe:87:63:fb:15:25:ff:c2:48:aa:c1:6e:92: cf:e9:bb:91:49:0d:f8:3d:22:0f:16:02:5b:77:c2:15:b0:f0: 96:b9:b5:bd:51:a4:35:36:37:cd:95:6a:4a:27:3c:47:95:e0: 44:a9:69:b1:8e:b9:8c:a6:75:d2:97:57:c7:7e:6f:9f:78:2c: 79:84:75:5c:7d:ed:64:b4:81:19:07:f4:20:2d:92:e3:1f:35: 24:e3:bb:1f:df:d7:58:73:b2:f4:45:fd:33:d0:9b:d9:e1:0d: e0:2f:91:83:73:ef:61:5f:26:ce:35:0d:51:9d:13:d0:b6:cf: 86:7e:d4:13:7c:17:8a:53:f2:c6:20:c9:43:61:26:55:ec:3c: 8b:18:9f:1f:31:99:14:06:08:da:f9:7b:cf:27:43:66:c1:71: 46:48:97:d8:9f:ba:fb:f0:3b:d2:ef:f2:d8:1f:9b:1d:0c:ef: eb:50:45:4c:4a:38:10:73:14:5f:e6:61:77:06:08:32:b3:83: 5b:6a:7f:11 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBwUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDhGNTAxMTAvBgNVBAUTKDRDRjZCQTI5NDI2Q0JDMjA3NERGNjJDNTFGQUYzNzhD NDJEM0I4QUYwHhcNMjUwNTEyMjE0MzE5WhcNMjUwNTE5MjE0MzE5WjAYMRYwFAYD VQQDEw02ODIyNmI3OC0zYmE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvCFirj/GhQFFoYSk4rduqoFolZrbmNSf+Hj5gHNj1klsNj6d0sL5ghUzEuOg GGVkOvBw0M5S9E9GpumZkvPZ72l2BfXbgTE8jGI3s+QC7tr6lMrtMpE5rig1fpG8 67oNtuosrUqyQSbEl+6FZwd+NecBCyOm5cS7kN9XYe7s4t85xVIgzdDo1mFBw6hD uj9ePTic22ZmkBRXkFeEJ/prX1tLag3LOLNc8A53xl2v48BOT1b1hZ8YI/s1hLfh EFV08dH3lJV78vt5kk2zzEmwuP3chmOrWY8pCm/qzBwlKagyq4pwK6XNmiuuhHxV 2YIHeNM+E8sywkileSJZ2SHQeQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKfdMj10 iFltp6S9NgUtngGGaQ0UMB8GA1UdIwQYMBaAFEz2uilCbLwgdN9ixR+vN4xC07iv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OEY1MC9BMUUxRjc5QzQx MUUxMUVCQTBCOEZBNTZDNEY5QUUwMi9UUGE2S1VKc3ZDQjAzMkxGSDY4M2pFTFR1 SzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RQYTZLVUpzdkNCMDMyTEZINjgzakVMVHVLOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OEY1MC9BMUUxRjc5QzQxMUUxMUVCQTBCOEZBNTZDNEY5QUUwMi9UUGE2S1VKc3ZD QjAzMkxGSDY4M2pFTFR1SzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCYF903vGCk43xHeuQYgWxDAWbYejZiLW0UwSDs5depgL8mRfRWz23M t4iMMDVYgjuhfGZlmAd1sIDJdf6HY/sVJf/CSKrBbpLP6buRSQ34PSIPFgJbd8IV sPCWubW9UaQ1NjfNlWpKJzxHleBEqWmxjrmMpnXSl1fHfm+feCx5hHVcfe1ktIEZ B/QgLZLjHzUk47sf39dYc7L0Rf0z0JvZ4Q3gL5GDc+9hXybONQ1RnRPQts+GftQT fBeKU/LGIMlDYSZV7DyLGJ8fMZkUBgja+XvPJ0NmwXFGSJfYn7r78DvS7/LYH5sd DO/rUEVMSjgQcxRf5mF3Bggys4Nban8R -----END CERTIFICATE-----Generated at Wed May 14 23:12:38 2025 by rpki-client