$ rpki-client -vvf rpki.apnic.net/member_repository/A916C128/664A9BCAFA6D11E3B6AC23505911EA32/tWQnMiZdQL91ypSp7IEZIRwbmzI.mft File: tWQnMiZdQL91ypSp7IEZIRwbmzI.mft (raw, json) Hash identifier: c6i7migylNcRRwEGGCw6Zu8lsv+nFBC1upRNpGE0VBk= Subject key identifier: 61:DA:22:D4:32:F9:AE:75:7D:4E:7F:C4:56:F1:03:C4:25:C9:87:2C Authority key identifier: B5:64:27:32:26:5D:40:BF:75:CA:94:A9:EC:81:19:21:1C:1B:9B:32 Certificate issuer: /CN=A916C128/serialNumber=B5642732265D40BF75CA94A9EC8119211C1B9B32 Certificate serial: 2C20 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tWQnMiZdQL91ypSp7IEZIRwbmzI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916C128/664A9BCAFA6D11E3B6AC23505911EA32/tWQnMiZdQL91ypSp7IEZIRwbmzI.mft Manifest number: 2B7B Signing time: Mon 12 May 2025 15:32:19 +0000 Manifest this update: Mon 12 May 2025 15:32:18 +0000 Manifest next update: Mon 19 May 2025 15:32:18 +0000 Files and hashes: 1: tWQnMiZdQL91ypSp7IEZIRwbmzI.crl (hash: 561wBWOHhmMbljShUF3mqqqXW0AoVUoZ4ott4PFGY3A=) 2: 13461F60ABDC11EDAE837666C4F9AE02.roa (hash: cw0PqwBBK0RHpksVvzPS62Y/XzIKpQmwvX5oJ3Ga1Uc=) 3: E0CC928CABDE11ED954F5C84C4F9AE02.roa (hash: G/2ljlZXzsuc6fmr+LrsxDu437pL1+BbINl7CakOHNg=) 4: DF821D20ABDE11ED954F5C84C4F9AE02.roa (hash: ZzwjjjV43983S9z3YZGjXBw9c3x4QvReAm0radZl0Rc=) 5: 4462F034F0EC11EB9D0B176AC4F9AE02.roa (hash: iJX8QvRtMVBhv+UXxylmDNIfKvmMzmtMROe4rMBXyWI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916C128/664A9BCAFA6D11E3B6AC23505911EA32/tWQnMiZdQL91ypSp7IEZIRwbmzI.crl rsync://rpki.apnic.net/member_repository/A916C128/664A9BCAFA6D11E3B6AC23505911EA32/tWQnMiZdQL91ypSp7IEZIRwbmzI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tWQnMiZdQL91ypSp7IEZIRwbmzI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 15:32:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11296 (0x2c20) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916C128, serialNumber=B5642732265D40BF75CA94A9EC8119211C1B9B32 Validity Not Before: May 12 15:32:18 2025 GMT Not After : May 19 15:32:18 2025 GMT Subject: CN=68221483-13a3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:8f:61:db:bb:73:68:1e:d8:08:5b:36:0a:61: cd:69:9e:de:63:c4:87:5e:8e:1d:cf:5c:a5:0a:eb: 9e:45:40:d0:d9:e1:7b:d6:35:e5:1c:da:c9:3f:fc: 29:53:9c:6b:01:9d:92:c7:f8:ea:b9:56:0c:68:3a: 38:5d:58:d3:9c:bf:f9:ee:1c:1c:14:4d:28:78:b0: 1d:f3:8c:6f:d6:e6:81:b0:c6:06:4e:b5:1a:eb:22: 85:37:35:b6:cf:e7:df:ea:d7:27:7d:bd:72:65:dc: 9b:00:0b:47:3e:8a:be:c4:f0:c4:00:af:ef:f0:95: 65:a9:85:fd:33:2a:57:93:86:eb:db:a3:8f:21:4a: ee:d3:70:af:ac:89:df:40:cb:2a:90:42:90:de:ff: 5f:a1:13:94:71:0d:1c:84:49:16:94:03:97:0f:c9: 97:a6:51:be:41:95:2f:7c:6d:0b:43:c9:5b:db:aa: 50:fe:00:0a:17:c6:3b:35:f1:9d:7a:f9:c1:56:85: e6:cf:b9:72:2c:52:88:36:b6:27:f2:47:f9:06:e9: d3:56:8f:03:94:e2:2a:fc:ec:68:1e:8a:67:9d:4c: 38:8e:df:a7:2f:f2:ca:f9:81:05:04:78:28:4d:ee: 42:6b:37:ce:14:cd:7f:97:e9:60:17:87:ac:81:6e: 0d:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:DA:22:D4:32:F9:AE:75:7D:4E:7F:C4:56:F1:03:C4:25:C9:87:2C X509v3 Authority Key Identifier: keyid:B5:64:27:32:26:5D:40:BF:75:CA:94:A9:EC:81:19:21:1C:1B:9B:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916C128/664A9BCAFA6D11E3B6AC23505911EA32/tWQnMiZdQL91ypSp7IEZIRwbmzI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tWQnMiZdQL91ypSp7IEZIRwbmzI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916C128/664A9BCAFA6D11E3B6AC23505911EA32/tWQnMiZdQL91ypSp7IEZIRwbmzI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 98:dc:ea:d1:ca:a0:59:35:7a:09:78:23:d1:6a:ce:7c:c2:d5: 50:46:ec:f1:ca:5b:01:59:b6:6a:21:60:0d:50:12:f7:b7:8d: 73:9a:c5:7e:00:c9:ca:f4:74:5c:21:ef:62:34:6e:8c:b3:7f: 44:f5:41:26:bc:25:37:4a:90:a7:dd:d9:95:24:46:f9:7f:cb: 4f:0a:24:f3:3c:ae:75:3e:ce:94:fc:88:87:e9:34:f4:a0:2b: 42:0f:b7:db:33:24:2c:d1:cd:43:88:ce:fa:df:61:95:7a:91: 5d:62:cc:e2:89:b5:59:58:71:90:b4:29:c5:26:c8:45:d0:58: 3f:8a:8d:4d:06:28:9a:63:a1:39:81:bb:4e:b3:e9:65:5d:bb: d7:f4:fe:de:b2:a2:c3:58:47:ff:7e:b6:b8:0f:a4:f5:ba:b9: 9d:3d:c5:5f:58:4b:90:62:36:92:b1:3d:70:33:af:1b:ed:04: 0c:58:21:97:e3:87:6b:65:2b:93:30:fd:2d:28:17:6a:f8:10: 6f:d7:02:65:56:89:57:b9:ec:e5:5b:51:56:27:6f:86:9b:52: ea:b6:c0:d6:85:85:dc:69:5d:ac:26:ab:1b:57:24:87:ed:56: df:71:29:1d:92:43:78:6f:39:54:36:bf:ad:84:ea:78:4c:b0: ef:e2:9f:3a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICLCAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkMxMjgxMTAvBgNVBAUTKEI1NjQyNzMyMjY1RDQwQkY3NUNBOTRBOUVDODExOTIx MUMxQjlCMzIwHhcNMjUwNTEyMTUzMjE4WhcNMjUwNTE5MTUzMjE4WjAYMRYwFAYD VQQDEw02ODIyMTQ4My0xM2EzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy49h27tzaB7YCFs2CmHNaZ7eY8SHXo4dz1ylCuueRUDQ2eF71jXlHNrJP/wp U5xrAZ2Sx/jquVYMaDo4XVjTnL/57hwcFE0oeLAd84xv1uaBsMYGTrUa6yKFNzW2 z+ff6tcnfb1yZdybAAtHPoq+xPDEAK/v8JVlqYX9MypXk4br26OPIUru03CvrInf QMsqkEKQ3v9foROUcQ0chEkWlAOXD8mXplG+QZUvfG0LQ8lb26pQ/gAKF8Y7NfGd evnBVoXmz7lyLFKINrYn8kf5BunTVo8DlOIq/OxoHopnnUw4jt+nL/LK+YEFBHgo Te5CazfOFM1/l+lgF4esgW4N5QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGHaItQy +a51fU5/xFbxA8QlyYcsMB8GA1UdIwQYMBaAFLVkJzImXUC/dcqUqeyBGSEcG5sy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QzEyOC82NjRBOUJDQUZB NkQxMUUzQjZBQzIzNTA1OTExRUEzMi90V1FuTWlaZFFMOTF5cFNwN0lFWklSd2Jt ekkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RXUW5NaVpkUUw5MXlwU3A3SUVaSVJ3Ym16SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QzEyOC82NjRBOUJDQUZBNkQxMUUzQjZBQzIzNTA1OTExRUEzMi90V1FuTWlaZFFM OTF5cFNwN0lFWklSd2JtekkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCY3OrRyqBZNXoJeCPRas58wtVQRuzxylsBWbZqIWANUBL3t41zmsV+ AMnK9HRcIe9iNG6Ms39E9UEmvCU3SpCn3dmVJEb5f8tPCiTzPK51Ps6U/IiH6TT0 oCtCD7fbMyQs0c1DiM7632GVepFdYsziibVZWHGQtCnFJshF0Fg/io1NBiiaY6E5 gbtOs+llXbvX9P7esqLDWEf/fra4D6T1urmdPcVfWEuQYjaSsT1wM68b7QQMWCGX 44drZSuTMP0tKBdq+BBv1wJlVolXuezlW1FWJ2+Gm1LqtsDWhYXcaV2sJqsbVySH 7VbfcSkdkkN4bzlUNr+thOp4TLDv4p86 -----END CERTIFICATE-----Generated at Wed May 14 04:52:13 2025 by rpki-client