$ rpki-client -vvf rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/tADiGrPTJXQtuHeDDrxEB233CUg.mft File: tADiGrPTJXQtuHeDDrxEB233CUg.mft (raw, json) Hash identifier: KU8mWQuc+Q8bfFgHyXjVllH2EVZD7//be8NdXXOcGpA= Subject key identifier: 27:87:17:91:51:36:5B:E0:10:D9:78:2D:B0:C1:F8:44:C7:37:11:24 Authority key identifier: B4:00:E2:1A:B3:D3:25:74:2D:B8:77:83:0E:BC:44:07:6D:F7:09:48 Certificate issuer: /CN=A91658EF/serialNumber=B400E21AB3D325742DB877830EBC44076DF70948 Certificate serial: 0EFA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tADiGrPTJXQtuHeDDrxEB233CUg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/tADiGrPTJXQtuHeDDrxEB233CUg.mft Manifest number: 2B6E Signing time: Mon 12 May 2025 16:45:13 +0000 Manifest this update: Mon 12 May 2025 16:45:12 +0000 Manifest next update: Mon 19 May 2025 16:45:12 +0000 Files and hashes: 1: tADiGrPTJXQtuHeDDrxEB233CUg.crl (hash: K22LkxyzkfK4iECmPfHijMm1uiuFjiAVlpe7BTfc5Iw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/tADiGrPTJXQtuHeDDrxEB233CUg.crl rsync://rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/tADiGrPTJXQtuHeDDrxEB233CUg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tADiGrPTJXQtuHeDDrxEB233CUg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 16:45:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3834 (0xefa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91658EF, serialNumber=B400E21AB3D325742DB877830EBC44076DF70948 Validity Not Before: May 12 16:45:12 2025 GMT Not After : May 19 16:45:12 2025 GMT Subject: CN=68222599-1c7a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:3e:85:10:57:4c:ac:28:ac:5f:af:5b:c6:2b: cc:67:78:82:08:ed:bd:5c:f6:a2:73:6b:60:8f:44: db:ae:18:a5:7c:4c:e5:9d:31:8b:97:03:7d:4f:5a: 0a:80:c0:f1:3c:6a:e1:1a:bd:4b:e2:fe:d2:2c:29: 70:6e:28:7d:98:a6:22:bf:e1:be:2a:1a:ca:31:3f: e6:25:be:4e:f4:50:24:5a:5a:54:91:16:c8:01:c1: 82:80:f8:5a:80:74:d3:9b:c5:04:b5:a9:a1:50:7b: 69:71:0f:25:5d:6a:71:6c:44:cf:26:22:9f:ff:65: 6f:af:05:aa:c5:1a:60:fb:08:7c:0a:69:8e:85:21: 75:d8:ec:38:e0:72:52:65:bc:38:fd:9a:30:40:27: 76:b9:a8:05:6e:96:77:38:e8:0c:4a:9d:38:ac:f7: 42:95:72:29:15:32:f9:b8:c9:9a:83:b6:26:19:e5: 1e:4f:21:b7:c3:7a:e8:be:ba:e3:b5:f4:bc:1e:33: 27:75:6d:45:0c:c1:62:46:80:d7:81:0f:af:1d:28: eb:1d:b2:53:86:e1:89:ea:ac:03:e6:0d:48:9d:18: 6c:4d:52:19:f4:2f:24:90:d7:31:4f:bb:31:f2:e4: 06:e7:78:49:7e:cd:64:ee:5a:d6:b5:39:0e:1c:28: 29:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:87:17:91:51:36:5B:E0:10:D9:78:2D:B0:C1:F8:44:C7:37:11:24 X509v3 Authority Key Identifier: keyid:B4:00:E2:1A:B3:D3:25:74:2D:B8:77:83:0E:BC:44:07:6D:F7:09:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/tADiGrPTJXQtuHeDDrxEB233CUg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tADiGrPTJXQtuHeDDrxEB233CUg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/tADiGrPTJXQtuHeDDrxEB233CUg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 08:2e:7d:1b:b5:90:70:7c:e5:bb:78:5e:f9:7a:7b:0d:d0:a9: 1d:53:23:a6:46:0a:14:f8:bc:e8:4e:2f:c7:b4:19:66:a7:7d: a9:e8:de:50:c2:ae:30:1a:d0:db:d8:30:da:df:aa:21:2b:1e: 4d:ee:6c:59:39:fc:85:cf:5f:5c:ea:25:be:52:03:01:82:41: b5:3b:e8:aa:f6:c7:f8:87:a0:ca:b7:53:93:ef:a3:d2:7f:7a: 8c:a9:27:f1:d6:4b:af:aa:a3:3e:29:3c:bd:e9:eb:d5:ff:d3: 7a:37:54:b0:76:51:64:9d:31:0d:72:44:27:8a:26:b4:08:8f: 6c:ff:8c:32:14:27:70:de:96:cc:f2:c3:c6:92:51:df:1e:b3: dd:b6:7a:95:e7:21:ef:da:02:33:48:0a:c2:ca:8d:18:5c:c8: d3:06:ae:dd:e5:00:f0:23:0b:54:64:b9:31:00:74:de:01:60: 0f:0f:92:4c:b8:81:36:2b:6b:dc:d9:78:29:81:a9:ad:49:79: 16:fc:f9:e2:d9:2b:7d:4d:9f:7d:5a:70:c5:d2:f3:b8:c6:be: bb:db:af:ef:69:54:03:ef:0e:51:39:55:e4:d1:e2:07:21:67: fd:8e:96:31:bf:71:76:04:f2:a6:58:85:f2:07:f8:d4:14:28: 45:64:0e:15 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDvowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjU4RUYxMTAvBgNVBAUTKEI0MDBFMjFBQjNEMzI1NzQyREI4Nzc4MzBFQkM0NDA3 NkRGNzA5NDgwHhcNMjUwNTEyMTY0NTEyWhcNMjUwNTE5MTY0NTEyWjAYMRYwFAYD VQQDEw02ODIyMjU5OS0xYzdhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwD6FEFdMrCisX69bxivMZ3iCCO29XPaic2tgj0TbrhilfEzlnTGLlwN9T1oK gMDxPGrhGr1L4v7SLClwbih9mKYiv+G+KhrKMT/mJb5O9FAkWlpUkRbIAcGCgPha gHTTm8UEtamhUHtpcQ8lXWpxbETPJiKf/2VvrwWqxRpg+wh8CmmOhSF12Ow44HJS Zbw4/ZowQCd2uagFbpZ3OOgMSp04rPdClXIpFTL5uMmag7YmGeUeTyG3w3rovrrj tfS8HjMndW1FDMFiRoDXgQ+vHSjrHbJThuGJ6qwD5g1InRhsTVIZ9C8kkNcxT7sx 8uQG53hJfs1k7lrWtTkOHCgpNQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCeHF5FR NlvgENl4LbDB+ETHNxEkMB8GA1UdIwQYMBaAFLQA4hqz0yV0Lbh3gw68RAdt9wlI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NThFRi9EMjQzMzc5NjRB RUMxMUU4ODQxN0YzNEFDNEY5QUUwMi90QURpR3JQVEpYUXR1SGVERHJ4RUIyMzND VWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RBRGlHclBUSlhRdHVIZUREcnhFQjIzM0NVZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NThFRi9EMjQzMzc5NjRBRUMxMUU4ODQxN0YzNEFDNEY5QUUwMi90QURpR3JQVEpY UXR1SGVERHJ4RUIyMzNDVWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAILn0btZBwfOW7eF75ensN0KkdUyOmRgoU+LzoTi/HtBlmp32p6N5Q wq4wGtDb2DDa36ohKx5N7mxZOfyFz19c6iW+UgMBgkG1O+iq9sf4h6DKt1OT76PS f3qMqSfx1kuvqqM+KTy96evV/9N6N1SwdlFknTENckQniia0CI9s/4wyFCdw3pbM 8sPGklHfHrPdtnqV5yHv2gIzSArCyo0YXMjTBq7d5QDwIwtUZLkxAHTeAWAPD5JM uIE2K2vc2XgpgamtSXkW/Pni2St9TZ99WnDF0vO4xr6726/vaVQD7w5ROVXk0eIH IWf9jpYxv3F2BPKmWIXyB/jUFChFZA4V -----END CERTIFICATE-----Generated at Wed May 14 01:19:12 2025 by rpki-client