$ rpki-client -vvf rpki.apnic.net/member_repository/A914F349/C6F5001AEDB111ECAF435C5DC4F9AE02/TZRPMLjG5pGYjTAvumwvnFdMBLA.mft File: TZRPMLjG5pGYjTAvumwvnFdMBLA.mft (raw, json) Hash identifier: qKb+/DK7BWZ3m9yPL+CX6UkGEMDTKvD/IDk00ulOpC4= Subject key identifier: 84:A1:19:A2:B6:12:D9:EC:EC:BA:EC:BF:3B:AD:90:08:63:0A:2B:72 Authority key identifier: 4D:94:4F:30:B8:C6:E6:91:98:8D:30:2F:BA:6C:2F:9C:57:4C:04:B0 Certificate issuer: /CN=A914F349/serialNumber=4D944F30B8C6E691988D302FBA6C2F9C574C04B0 Certificate serial: 02C3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TZRPMLjG5pGYjTAvumwvnFdMBLA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914F349/C6F5001AEDB111ECAF435C5DC4F9AE02/TZRPMLjG5pGYjTAvumwvnFdMBLA.mft Manifest number: 02C0 Signing time: Tue 13 May 2025 01:13:17 +0000 Manifest this update: Tue 13 May 2025 01:13:16 +0000 Manifest next update: Tue 20 May 2025 01:13:16 +0000 Files and hashes: 1: TZRPMLjG5pGYjTAvumwvnFdMBLA.crl (hash: ixsGzhpFkyBDWRThxBE68nYoUOjHorETzj2+iaqs5vM=) 2: E5A22A7CEDB811ECB7BDFF0AC4F9AE02.roa (hash: iYkVHc+gEz+KBoaY/orgybHRRbhE8SWTurly5q5QifM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914F349/C6F5001AEDB111ECAF435C5DC4F9AE02/TZRPMLjG5pGYjTAvumwvnFdMBLA.crl rsync://rpki.apnic.net/member_repository/A914F349/C6F5001AEDB111ECAF435C5DC4F9AE02/TZRPMLjG5pGYjTAvumwvnFdMBLA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TZRPMLjG5pGYjTAvumwvnFdMBLA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 01:13:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 707 (0x2c3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914F349, serialNumber=4D944F30B8C6E691988D302FBA6C2F9C574C04B0 Validity Not Before: May 13 01:13:16 2025 GMT Not After : May 20 01:13:16 2025 GMT Subject: CN=68229cac-025c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:ff:9c:c1:59:f5:b9:aa:0e:06:9d:59:6a:8f: d5:6c:b5:26:f8:1c:96:2a:6b:e6:c3:3b:d6:1e:fe: 08:b7:ea:01:35:ca:46:9d:f3:bb:f2:e9:3b:f8:ee: e5:78:0a:dd:6f:75:dc:2a:f2:38:ad:8f:7b:3c:b5: db:67:10:0b:33:f3:13:4d:79:1a:b7:aa:d7:8c:4e: 98:7e:f1:c7:76:7a:67:ec:13:1b:1e:b2:e6:90:32: 07:a7:0a:d6:36:fa:76:b1:58:1a:61:d7:36:6a:a9: 5c:92:af:4b:90:1e:d4:b3:82:29:4b:08:58:95:a0: eb:b5:c0:3f:30:0a:eb:43:27:9b:fb:86:1e:44:1e: dd:4f:fb:9c:8f:29:5b:09:84:54:f1:b8:ef:a6:e0: 09:cf:03:6a:e5:91:d3:64:9c:db:8f:55:e7:79:e5: 47:eb:0d:f6:7a:ff:57:44:ac:d4:e8:a4:eb:90:b2: 1c:cd:42:3a:be:f1:ca:ce:86:c0:a7:fe:04:15:27: 89:7f:0c:02:b0:e8:5b:08:e1:98:48:62:bf:1e:ab: 02:a8:50:dc:8c:43:a0:39:b5:bd:c8:20:fc:5e:6f: 58:e7:60:0b:97:33:02:ec:17:50:a1:98:7f:c5:4c: d3:65:00:34:78:0a:80:f7:58:21:42:50:3e:8f:0e: 94:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:A1:19:A2:B6:12:D9:EC:EC:BA:EC:BF:3B:AD:90:08:63:0A:2B:72 X509v3 Authority Key Identifier: keyid:4D:94:4F:30:B8:C6:E6:91:98:8D:30:2F:BA:6C:2F:9C:57:4C:04:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914F349/C6F5001AEDB111ECAF435C5DC4F9AE02/TZRPMLjG5pGYjTAvumwvnFdMBLA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TZRPMLjG5pGYjTAvumwvnFdMBLA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914F349/C6F5001AEDB111ECAF435C5DC4F9AE02/TZRPMLjG5pGYjTAvumwvnFdMBLA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 29:42:3c:d2:4e:00:f6:80:77:c6:ef:7c:a5:57:5d:20:6b:18: ea:4f:a0:dc:1b:15:9f:f6:d6:0c:39:62:3c:22:7d:b9:1a:26: fd:5f:b4:57:85:41:0a:ca:20:eb:7f:aa:82:a0:31:2f:b7:77: 21:f9:e0:2a:5b:1d:49:9c:a6:d2:2f:60:53:93:39:0d:43:7a: 4b:ef:53:ee:0b:44:fd:bb:26:22:dd:68:be:76:a3:3a:18:3c: 5c:f7:3a:76:92:19:e4:69:18:01:78:ed:2d:4a:2d:d4:6b:2f: 30:c3:1f:e0:a4:ae:7f:21:88:d3:e2:aa:f9:52:6a:3e:63:f6: 2d:24:40:dc:01:62:65:fb:59:c8:09:5f:77:c4:a5:90:af:ea: 61:e8:51:6d:b4:3b:0d:e3:38:15:c9:45:86:b4:59:55:16:13: 13:04:b5:4e:74:2a:98:c7:b5:06:15:1a:ec:6e:25:da:38:5c: 18:43:4c:fd:cc:11:d2:a1:7d:b6:04:f5:ab:5e:c6:9b:fc:c4: a8:70:60:c6:f9:30:5b:69:f6:66:60:33:d9:26:1b:91:92:f8: bb:7f:1c:d4:8e:2c:c8:20:4e:eb:ad:05:d5:09:21:18:0c:74: 18:c8:63:cf:97:f9:7e:e5:6b:21:59:c6:b9:65:94:d4:06:e1: f2:c1:df:1e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAsMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEYzNDkxMTAvBgNVBAUTKDREOTQ0RjMwQjhDNkU2OTE5ODhEMzAyRkJBNkMyRjlD NTc0QzA0QjAwHhcNMjUwNTEzMDExMzE2WhcNMjUwNTIwMDExMzE2WjAYMRYwFAYD VQQDEw02ODIyOWNhYy0wMjVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6f+cwVn1uaoOBp1Zao/VbLUm+ByWKmvmwzvWHv4It+oBNcpGnfO78uk7+O7l eArdb3XcKvI4rY97PLXbZxALM/MTTXkat6rXjE6YfvHHdnpn7BMbHrLmkDIHpwrW Nvp2sVgaYdc2aqlckq9LkB7Us4IpSwhYlaDrtcA/MArrQyeb+4YeRB7dT/ucjylb CYRU8bjvpuAJzwNq5ZHTZJzbj1XneeVH6w32ev9XRKzU6KTrkLIczUI6vvHKzobA p/4EFSeJfwwCsOhbCOGYSGK/HqsCqFDcjEOgObW9yCD8Xm9Y52ALlzMC7BdQoZh/ xUzTZQA0eAqA91ghQlA+jw6UoQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIShGaK2 Etns7LrsvzutkAhjCityMB8GA1UdIwQYMBaAFE2UTzC4xuaRmI0wL7psL5xXTASw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RjM0OS9DNkY1MDAxQUVE QjExMUVDQUY0MzVDNURDNEY5QUUwMi9UWlJQTUxqRzVwR1lqVEF2dW13dm5GZE1C TEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RaUlBNTGpHNXBHWWpUQXZ1bXd2bkZkTUJMQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RjM0OS9DNkY1MDAxQUVEQjExMUVDQUY0MzVDNURDNEY5QUUwMi9UWlJQTUxqRzVw R1lqVEF2dW13dm5GZE1CTEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQApQjzSTgD2gHfG73ylV10gaxjqT6DcGxWf9tYMOWI8In25Gib9X7RX hUEKyiDrf6qCoDEvt3ch+eAqWx1JnKbSL2BTkzkNQ3pL71PuC0T9uyYi3Wi+dqM6 GDxc9zp2khnkaRgBeO0tSi3Uay8wwx/gpK5/IYjT4qr5Umo+Y/YtJEDcAWJl+1nI CV93xKWQr+ph6FFttDsN4zgVyUWGtFlVFhMTBLVOdCqYx7UGFRrsbiXaOFwYQ0z9 zBHSoX22BPWrXsab/MSocGDG+TBbafZmYDPZJhuRkvi7fxzUjizIIE7rrQXVCSEY DHQYyGPPl/l+5WshWca5ZZTUBuHywd8e -----END CERTIFICATE-----Generated at Wed May 14 19:39:09 2025 by rpki-client