$ rpki-client -vvf rpki.apnic.net/member_repository/A91534B8/A86B375A094411ED8DD10971C4F9AE02/loAFcwGMfC-1oAgeY8Y_TaRAPLY.mft File: loAFcwGMfC-1oAgeY8Y_TaRAPLY.mft (raw, json) Hash identifier: Gs1OWyQQtAjD80n/OiN4M5HSX02nlpMLJmDnqIpBfw4= Subject key identifier: 64:07:3B:90:B1:FB:E7:D6:2C:D9:07:CA:7F:CC:44:5F:6F:C8:8E:01 Authority key identifier: 96:80:05:73:01:8C:7C:2F:B5:A0:08:1E:63:C6:3F:4D:A4:40:3C:B6 Certificate issuer: /CN=A91534B8/serialNumber=96800573018C7C2FB5A0081E63C63F4DA4403CB6 Certificate serial: 028D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/loAFcwGMfC-1oAgeY8Y_TaRAPLY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91534B8/A86B375A094411ED8DD10971C4F9AE02/loAFcwGMfC-1oAgeY8Y_TaRAPLY.mft Manifest number: 0289 Signing time: Sun 11 May 2025 01:12:27 +0000 Manifest this update: Sun 11 May 2025 01:12:27 +0000 Manifest next update: Sun 18 May 2025 01:12:27 +0000 Files and hashes: 1: loAFcwGMfC-1oAgeY8Y_TaRAPLY.crl (hash: zRbK8xbfR/kYp1FjJhkEFpuLuE8G+gfR/Z3mPhUAwBw=) 2: E52CB968094711EDA5B20C0AC4F9AE02.roa (hash: +DAM4u0XWzGXzujdBmpBOJBuyDMu2NVi0XXcoENn480=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91534B8/A86B375A094411ED8DD10971C4F9AE02/loAFcwGMfC-1oAgeY8Y_TaRAPLY.crl rsync://rpki.apnic.net/member_repository/A91534B8/A86B375A094411ED8DD10971C4F9AE02/loAFcwGMfC-1oAgeY8Y_TaRAPLY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/loAFcwGMfC-1oAgeY8Y_TaRAPLY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 01:12:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 653 (0x28d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91534B8, serialNumber=96800573018C7C2FB5A0081E63C63F4DA4403CB6 Validity Not Before: May 11 01:12:27 2025 GMT Not After : May 18 01:12:27 2025 GMT Subject: CN=681ff97b-67ab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:fd:a6:de:ef:78:bd:15:15:2d:a2:fb:8e:a0: 69:7d:72:4c:c9:21:44:c8:7d:6b:f1:7f:05:94:9f: c6:17:7d:46:88:f5:9d:89:ab:2d:77:71:2d:d0:44: 7e:4c:08:1d:5f:aa:f8:85:7d:18:82:b7:35:bf:56: 6c:ca:9c:4e:42:9f:cb:ca:16:f4:34:0e:fe:9b:f8: 8f:96:ce:6c:03:3e:1d:e3:58:06:15:05:b1:24:7d: 49:5b:dc:87:3a:e5:76:2a:78:03:d6:3c:5e:38:25: 6d:1c:d4:06:7b:a1:f8:3e:dc:14:9c:f8:b1:88:88: 71:0b:2b:62:44:7f:04:7d:e9:ed:71:88:72:8f:97: 6a:5a:cd:4b:5b:e7:cf:67:0b:81:09:2a:d3:c9:b4: 0e:5d:00:12:b7:0a:c2:0b:5a:4b:2f:a3:ab:ae:d8: de:6a:90:dc:d6:07:9d:61:11:b6:7b:d1:2d:6d:0f: 99:3a:ed:8b:b4:c4:27:65:21:73:9e:60:8b:38:86: 95:6a:65:0c:70:12:6b:ec:4b:91:c0:b8:04:98:03: 93:9d:15:dc:8a:0d:2e:bd:a8:b4:7c:25:4e:c5:05: db:8c:21:4c:dc:c3:71:a3:0f:f0:40:54:31:d1:18: 17:30:2c:a4:17:68:b5:37:25:33:d3:fe:67:24:fd: 9c:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:07:3B:90:B1:FB:E7:D6:2C:D9:07:CA:7F:CC:44:5F:6F:C8:8E:01 X509v3 Authority Key Identifier: keyid:96:80:05:73:01:8C:7C:2F:B5:A0:08:1E:63:C6:3F:4D:A4:40:3C:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91534B8/A86B375A094411ED8DD10971C4F9AE02/loAFcwGMfC-1oAgeY8Y_TaRAPLY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/loAFcwGMfC-1oAgeY8Y_TaRAPLY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91534B8/A86B375A094411ED8DD10971C4F9AE02/loAFcwGMfC-1oAgeY8Y_TaRAPLY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 85:b5:5c:ad:97:37:c5:43:2d:85:01:4d:30:c7:9b:5b:e5:7b: 68:82:3a:0e:f0:91:9e:da:43:b9:17:0b:f2:75:a2:d3:ce:73: 0f:cb:31:e2:85:ed:88:c4:02:d8:09:27:10:a6:5e:b4:94:26: 4c:30:e9:3c:88:9d:f8:9d:2a:38:75:48:3a:87:43:f5:da:85: 89:82:e7:b8:03:36:e0:be:ef:a6:e3:c6:be:da:b8:b6:61:34: 99:95:70:27:db:43:de:d6:7e:2b:cf:9e:ca:0d:9a:b4:a7:77: 25:1a:4e:59:cc:2f:fa:cc:81:2b:0c:09:e8:c8:fd:2e:2a:46: 01:e3:a7:08:97:f6:69:43:95:2e:42:da:89:40:76:90:47:2a: ee:6f:92:2f:c5:82:52:4b:ee:f9:69:54:5d:e4:f3:1b:d3:36: ba:d3:ea:1c:d9:c4:c2:5a:8c:2c:84:56:96:c0:9c:1c:07:df: 26:65:d6:dc:3f:f1:47:9a:b9:65:ec:22:5e:39:67:fb:a1:81: c0:b3:51:ea:5f:0e:88:3e:d2:1e:ef:8f:bd:3e:34:12:43:93: 0b:a4:ab:69:fc:f4:62:e5:84:dc:7e:ca:57:f9:7e:ef:82:6b: 2c:65:09:27:9c:c6:d5:63:58:a3:0a:76:01:6d:ab:9f:49:63: fe:c3:0e:dd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAo0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTM0QjgxMTAvBgNVBAUTKDk2ODAwNTczMDE4QzdDMkZCNUEwMDgxRTYzQzYzRjRE QTQ0MDNDQjYwHhcNMjUwNTExMDExMjI3WhcNMjUwNTE4MDExMjI3WjAYMRYwFAYD VQQDEw02ODFmZjk3Yi02N2FiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8/2m3u94vRUVLaL7jqBpfXJMySFEyH1r8X8FlJ/GF31GiPWdiastd3Et0ER+ TAgdX6r4hX0Ygrc1v1ZsypxOQp/Lyhb0NA7+m/iPls5sAz4d41gGFQWxJH1JW9yH OuV2KngD1jxeOCVtHNQGe6H4PtwUnPixiIhxCytiRH8EfentcYhyj5dqWs1LW+fP ZwuBCSrTybQOXQAStwrCC1pLL6OrrtjeapDc1gedYRG2e9EtbQ+ZOu2LtMQnZSFz nmCLOIaVamUMcBJr7EuRwLgEmAOTnRXcig0uvai0fCVOxQXbjCFM3MNxow/wQFQx 0RgXMCykF2i1NyUz0/5nJP2c9QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGQHO5Cx ++fWLNkHyn/MRF9vyI4BMB8GA1UdIwQYMBaAFJaABXMBjHwvtaAIHmPGP02kQDy2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MzRCOC9BODZCMzc1QTA5 NDQxMUVEOEREMTA5NzFDNEY5QUUwMi9sb0FGY3dHTWZDLTFvQWdlWThZX1RhUkFQ TFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xvQUZjd0dNZkMtMW9BZ2VZOFlfVGFSQVBMWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MzRCOC9BODZCMzc1QTA5NDQxMUVEOEREMTA5NzFDNEY5QUUwMi9sb0FGY3dHTWZD LTFvQWdlWThZX1RhUkFQTFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCFtVytlzfFQy2FAU0wx5tb5XtogjoO8JGe2kO5FwvydaLTznMPyzHi he2IxALYCScQpl60lCZMMOk8iJ34nSo4dUg6h0P12oWJgue4Azbgvu+m48a+2ri2 YTSZlXAn20Pe1n4rz57KDZq0p3clGk5ZzC/6zIErDAnoyP0uKkYB46cIl/ZpQ5Uu QtqJQHaQRyrub5IvxYJSS+75aVRd5PMb0za60+oc2cTCWowshFaWwJwcB98mZdbc P/FHmrll7CJeOWf7oYHAs1HqXw6IPtIe74+9PjQSQ5MLpKtp/PRi5YTcfspX+X7v gmssZQknnMbVY1ijCnYBbaufSWP+ww7d -----END CERTIFICATE-----Generated at Sun May 11 10:37:35 2025 by rpki-client