$ rpki-client -vvf rpki.apnic.net/member_repository/A91609E6/B616C86A4F7711EC9F09456EC4F9AE02/Tky0uRUee64RK-xTWcMclVgO4DE.mft File: Tky0uRUee64RK-xTWcMclVgO4DE.mft (raw, json) Hash identifier: OehAfzEkhPHkEUQqqBgMQBJnip7khGl1OgRUV3tnlmo= Subject key identifier: 4D:BA:EE:74:2A:60:94:FB:E1:BB:F9:37:F8:39:E3:FD:62:21:E6:69 Authority key identifier: 4E:4C:B4:B9:15:1E:7B:AE:11:2B:EC:53:59:C3:1C:95:58:0E:E0:31 Certificate issuer: /CN=A91609E6/serialNumber=4E4CB4B9151E7BAE112BEC5359C31C95580EE031 Certificate serial: 0458 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Tky0uRUee64RK-xTWcMclVgO4DE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91609E6/B616C86A4F7711EC9F09456EC4F9AE02/Tky0uRUee64RK-xTWcMclVgO4DE.mft Manifest number: 0454 Signing time: Sat 10 May 2025 23:46:37 +0000 Manifest this update: Sat 10 May 2025 23:46:37 +0000 Manifest next update: Sat 17 May 2025 23:46:37 +0000 Files and hashes: 1: Tky0uRUee64RK-xTWcMclVgO4DE.crl (hash: eZlujOM5o+9MDeBAv8EFD7klJ5oH7lZPiireHsiwzYI=) 2: C36AEA764F7911ECAA7C6A6FC4F9AE02.roa (hash: 6pwSl/tH7jpCf2nCpLbxQOYWHD+R7qNFnABfqWkqa5o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91609E6/B616C86A4F7711EC9F09456EC4F9AE02/Tky0uRUee64RK-xTWcMclVgO4DE.crl rsync://rpki.apnic.net/member_repository/A91609E6/B616C86A4F7711EC9F09456EC4F9AE02/Tky0uRUee64RK-xTWcMclVgO4DE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Tky0uRUee64RK-xTWcMclVgO4DE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 23:46:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1112 (0x458) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91609E6, serialNumber=4E4CB4B9151E7BAE112BEC5359C31C95580EE031 Validity Not Before: May 10 23:46:37 2025 GMT Not After : May 17 23:46:37 2025 GMT Subject: CN=681fe55d-3279 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:88:7d:02:f3:2e:e5:46:27:5a:c1:9c:07:95: b6:c3:35:bd:26:db:e7:7d:b5:fc:d1:39:57:7a:40: ff:d9:82:6b:44:df:68:5b:c8:ac:06:58:44:14:e0: fa:93:6f:ff:30:0c:30:27:19:33:e0:49:1b:c3:06: 1c:92:01:c4:25:13:31:ec:7f:49:47:fd:01:d6:02: 75:d9:cf:a4:72:67:de:a0:53:88:4e:e4:16:98:62: 49:e6:c4:42:d8:46:9c:86:8e:00:fd:a4:f3:14:bd: 5f:95:62:eb:60:f5:de:49:e7:85:a2:a7:95:70:b5: 48:11:71:54:40:27:fc:54:aa:ce:6f:2c:da:1a:8b: e9:27:5f:4f:50:01:6a:0e:c4:eb:d3:df:0e:87:43: 9a:03:b1:ba:1e:e5:c7:76:66:60:2e:3e:43:03:52: ac:f8:c7:21:f1:4c:ba:42:d6:bc:e5:4c:91:a4:13: 02:a4:92:4f:79:aa:8a:ea:1e:82:13:f2:21:89:45: b8:26:0d:ff:c7:8f:69:50:fb:33:2e:1b:e7:2e:f4: 2a:33:e7:9b:b3:60:71:36:27:00:f9:d6:38:3d:1c: c4:4c:20:dd:b8:30:a2:90:70:25:09:36:c5:86:75: 49:d7:57:40:a0:ce:ff:0c:0f:90:1d:12:a0:f0:f2: a4:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:BA:EE:74:2A:60:94:FB:E1:BB:F9:37:F8:39:E3:FD:62:21:E6:69 X509v3 Authority Key Identifier: keyid:4E:4C:B4:B9:15:1E:7B:AE:11:2B:EC:53:59:C3:1C:95:58:0E:E0:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91609E6/B616C86A4F7711EC9F09456EC4F9AE02/Tky0uRUee64RK-xTWcMclVgO4DE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Tky0uRUee64RK-xTWcMclVgO4DE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91609E6/B616C86A4F7711EC9F09456EC4F9AE02/Tky0uRUee64RK-xTWcMclVgO4DE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 70:98:04:1d:ce:98:d2:91:d6:b4:fb:0e:b4:6a:b5:44:ef:86: cf:e1:95:ea:1a:45:1f:4a:e3:6a:29:85:5d:fe:a0:01:e3:f5: 33:dc:6e:72:4e:d3:d5:1a:66:10:c8:39:38:55:a2:0c:06:5a: e2:a2:d0:33:ff:55:bc:39:3b:64:be:59:0b:99:1f:2d:80:78: 6b:50:f1:40:52:38:f1:c1:02:b6:ea:a4:9a:1e:3e:49:82:02: f0:ab:36:9f:0e:e0:b6:e5:e5:42:20:d5:10:d2:ba:7d:f3:d9: 46:60:86:4a:65:ec:df:39:59:86:67:81:33:4a:1b:c0:00:8c: 04:3c:f1:c4:a6:51:14:bf:c0:e7:4b:7f:43:1c:1b:98:7a:60: 6f:bf:58:f7:d3:01:48:80:c6:a3:31:b7:7b:06:0c:f2:47:9c: ff:dc:e5:e7:af:39:d6:62:ce:83:6f:e6:43:9d:36:67:9b:9f: d4:a7:4e:42:96:6e:3a:f7:6c:2a:11:46:38:95:e8:a2:d0:b4: 0c:b9:93:f5:24:54:40:37:37:0e:a0:b6:e3:a4:87:e1:3b:5f: 8d:42:40:c1:10:47:a0:d5:a6:6f:c2:a7:d0:50:42:f5:37:99: 95:36:70:ed:b2:39:7e:33:51:3b:21:34:ff:13:18:a4:10:74: 69:c3:8a:e2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBFgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjA5RTYxMTAvBgNVBAUTKDRFNENCNEI5MTUxRTdCQUUxMTJCRUM1MzU5QzMxQzk1 NTgwRUUwMzEwHhcNMjUwNTEwMjM0NjM3WhcNMjUwNTE3MjM0NjM3WjAYMRYwFAYD VQQDEw02ODFmZTU1ZC0zMjc5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuIh9AvMu5UYnWsGcB5W2wzW9JtvnfbX80TlXekD/2YJrRN9oW8isBlhEFOD6 k2//MAwwJxkz4EkbwwYckgHEJRMx7H9JR/0B1gJ12c+kcmfeoFOITuQWmGJJ5sRC 2Eacho4A/aTzFL1flWLrYPXeSeeFoqeVcLVIEXFUQCf8VKrObyzaGovpJ19PUAFq DsTr098Oh0OaA7G6HuXHdmZgLj5DA1Ks+Mch8Uy6Qta85UyRpBMCpJJPeaqK6h6C E/IhiUW4Jg3/x49pUPszLhvnLvQqM+ebs2BxNicA+dY4PRzETCDduDCikHAlCTbF hnVJ11dAoM7/DA+QHRKg8PKkPQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE267nQq YJT74bv5N/g54/1iIeZpMB8GA1UdIwQYMBaAFE5MtLkVHnuuESvsU1nDHJVYDuAx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MDlFNi9CNjE2Qzg2QTRG NzcxMUVDOUYwOTQ1NkVDNEY5QUUwMi9Ua3kwdVJVZWU2NFJLLXhUV2NNY2xWZ080 REUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RreTB1UlVlZTY0UksteFRXY01jbFZnTzRERS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MDlFNi9CNjE2Qzg2QTRGNzcxMUVDOUYwOTQ1NkVDNEY5QUUwMi9Ua3kwdVJVZWU2 NFJLLXhUV2NNY2xWZ080REUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBwmAQdzpjSkda0+w60arVE74bP4ZXqGkUfSuNqKYVd/qAB4/Uz3G5y TtPVGmYQyDk4VaIMBlriotAz/1W8OTtkvlkLmR8tgHhrUPFAUjjxwQK26qSaHj5J ggLwqzafDuC25eVCINUQ0rp989lGYIZKZezfOVmGZ4EzShvAAIwEPPHEplEUv8Dn S39DHBuYemBvv1j30wFIgMajMbd7BgzyR5z/3OXnrznWYs6Db+ZDnTZnm5/Up05C lm4692wqEUY4leii0LQMuZP1JFRANzcOoLbjpIfhO1+NQkDBEEeg1aZvwqfQUEL1 N5mVNnDtsjl+M1E7ITT/ExikEHRpw4ri -----END CERTIFICATE-----Generated at Mon May 12 13:29:33 2025 by rpki-client