$ rpki-client -vvf rpki.apnic.net/member_repository/A9170187/F1E2A3F8571C11ECBB63FE83C4F9AE02/tkVWXJMbKETS92DqqrDirkvjFBQ.mft File: tkVWXJMbKETS92DqqrDirkvjFBQ.mft (raw, json) Hash identifier: +QIMToI2G9QU6T5v024MJuQGEqRYNVM4/MNLA2JBOm4= Subject key identifier: D9:35:FB:5D:D8:03:30:6F:3F:3C:02:FB:BD:B4:61:E9:4E:D3:B9:0C Authority key identifier: B6:45:56:5C:93:1B:28:44:D2:F7:60:EA:AA:B0:E2:AE:4B:E3:14:14 Certificate issuer: /CN=A9170187/serialNumber=B645565C931B2844D2F760EAAAB0E2AE4BE31414 Certificate serial: 0449 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tkVWXJMbKETS92DqqrDirkvjFBQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170187/F1E2A3F8571C11ECBB63FE83C4F9AE02/tkVWXJMbKETS92DqqrDirkvjFBQ.mft Manifest number: 0444 Signing time: Sat 17 May 2025 00:31:35 +0000 Manifest this update: Sat 17 May 2025 00:31:34 +0000 Manifest next update: Sat 24 May 2025 00:31:34 +0000 Files and hashes: 1: tkVWXJMbKETS92DqqrDirkvjFBQ.crl (hash: 7RGzdwR21Dp9oGEtB8IoNk3QI7oZYP+Mi/l4bnt0PtM=) 2: 838DF1B0572011EC905C770CC4F9AE02.roa (hash: jLktry4iXdQWD0/47QB08nrgPUPRx2Qy+Cc/teSX0cc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170187/F1E2A3F8571C11ECBB63FE83C4F9AE02/tkVWXJMbKETS92DqqrDirkvjFBQ.crl rsync://rpki.apnic.net/member_repository/A9170187/F1E2A3F8571C11ECBB63FE83C4F9AE02/tkVWXJMbKETS92DqqrDirkvjFBQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tkVWXJMbKETS92DqqrDirkvjFBQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 24 May 2025 00:31:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1097 (0x449) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170187, serialNumber=B645565C931B2844D2F760EAAAB0E2AE4BE31414 Validity Not Before: May 17 00:31:34 2025 GMT Not After : May 24 00:31:34 2025 GMT Subject: CN=6827d8e7-deb7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:1b:ae:99:06:f7:84:47:90:a6:23:8e:8d:16: 58:af:97:1b:f6:1d:9a:84:87:93:36:f4:08:4c:71: 0f:df:ec:71:5b:94:32:af:51:32:c9:b6:bc:06:0e: 1b:7a:00:d9:49:90:9f:dc:29:82:a6:02:23:0d:11: d5:10:2f:18:76:89:35:bc:33:c5:95:df:9c:bb:4a: 58:8e:d2:de:fb:60:bf:5d:d8:a9:a2:bd:33:ec:f2: d5:9c:84:50:e7:0d:3f:55:27:9b:d3:f3:06:76:03: 1c:9d:a0:bd:da:d0:82:27:25:a1:c4:11:c1:a7:3a: e4:ff:b1:92:fe:18:96:61:21:06:9f:a4:a4:3c:57: a8:f3:ea:a0:d0:7b:dc:dd:e8:da:be:89:d3:13:bb: 6e:57:b1:e2:39:4f:6c:68:7e:5d:01:d6:a4:21:97: 2b:e7:66:12:ad:4c:d3:a5:f8:fa:b8:53:45:39:5a: 86:88:24:41:7a:69:06:76:f2:21:1d:ae:44:a0:31: 6c:7f:bc:e7:8e:03:4c:ce:11:97:fb:6e:6f:78:fd: b6:7a:3c:04:66:71:dc:3e:4b:37:31:cd:01:8a:b0: 18:66:e1:67:12:f8:4a:0a:91:0f:5b:7b:08:58:47: df:6b:a0:02:98:53:28:9e:b1:13:67:a6:98:6e:70: e3:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:35:FB:5D:D8:03:30:6F:3F:3C:02:FB:BD:B4:61:E9:4E:D3:B9:0C X509v3 Authority Key Identifier: keyid:B6:45:56:5C:93:1B:28:44:D2:F7:60:EA:AA:B0:E2:AE:4B:E3:14:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170187/F1E2A3F8571C11ECBB63FE83C4F9AE02/tkVWXJMbKETS92DqqrDirkvjFBQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tkVWXJMbKETS92DqqrDirkvjFBQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170187/F1E2A3F8571C11ECBB63FE83C4F9AE02/tkVWXJMbKETS92DqqrDirkvjFBQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 48:8f:0a:cb:3a:2e:06:01:12:46:b1:f6:7c:19:cb:d8:f5:5c: b2:e6:eb:d2:a6:b6:66:11:40:67:bb:0a:8c:79:80:cb:cc:f6: 41:2c:dd:57:82:8f:a4:54:95:a9:64:b5:ef:ce:6b:02:a5:3c: 20:9b:7b:aa:b0:94:f2:32:cd:67:de:07:f9:e5:b3:dd:60:25: 4f:27:01:83:7c:63:b8:29:fe:a9:4f:e3:32:b7:8a:ce:20:3d: 17:fb:73:01:9d:9e:57:5a:78:b6:54:06:3f:f2:99:d4:8e:55: 60:56:e8:af:64:66:35:56:22:66:ff:93:49:68:d7:f8:fc:a3: ec:b9:ca:55:8a:02:e0:f2:6e:2b:74:e5:58:f2:22:7e:34:f8: 12:f8:f6:7a:d0:0d:6c:57:29:fb:aa:2d:e9:08:f3:8f:d7:76: c7:ba:fc:9e:9c:2f:13:c2:28:35:c1:00:cb:5f:52:29:4d:70: 6c:b3:73:db:cd:91:c5:f5:7f:66:3e:38:8d:9c:39:0b:4a:e4: 50:b8:cf:d1:85:f8:92:9a:3e:fe:b9:e7:77:e1:48:84:d7:6f: aa:dc:f9:c5:04:d7:2b:87:a7:c9:f9:d2:c0:6d:bc:d1:4d:d9: 8b:1c:e5:31:a6:9c:80:d6:4a:ca:95:5f:ad:fb:42:c1:b7:76: f2:51:25:38 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBEkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzAxODcxMTAvBgNVBAUTKEI2NDU1NjVDOTMxQjI4NDREMkY3NjBFQUFBQjBFMkFF NEJFMzE0MTQwHhcNMjUwNTE3MDAzMTM0WhcNMjUwNTI0MDAzMTM0WjAYMRYwFAYD VQQDEw02ODI3ZDhlNy1kZWI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwRuumQb3hEeQpiOOjRZYr5cb9h2ahIeTNvQITHEP3+xxW5Qyr1Eyyba8Bg4b egDZSZCf3CmCpgIjDRHVEC8Ydok1vDPFld+cu0pYjtLe+2C/Xdipor0z7PLVnIRQ 5w0/VSeb0/MGdgMcnaC92tCCJyWhxBHBpzrk/7GS/hiWYSEGn6SkPFeo8+qg0Hvc 3ejavonTE7tuV7HiOU9saH5dAdakIZcr52YSrUzTpfj6uFNFOVqGiCRBemkGdvIh Ha5EoDFsf7znjgNMzhGX+25veP22ejwEZnHcPks3Mc0BirAYZuFnEvhKCpEPW3sI WEffa6ACmFMonrETZ6aYbnDjNwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNk1+13Y AzBvPzwC+720YelO07kMMB8GA1UdIwQYMBaAFLZFVlyTGyhE0vdg6qqw4q5L4xQU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MDE4Ny9GMUUyQTNGODU3 MUMxMUVDQkI2M0ZFODNDNEY5QUUwMi90a1ZXWEpNYktFVFM5MkRxcXJEaXJrdmpG QlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RrVldYSk1iS0VUUzkyRHFxckRpcmt2akZCUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MDE4Ny9GMUUyQTNGODU3MUMxMUVDQkI2M0ZFODNDNEY5QUUwMi90a1ZXWEpNYktF VFM5MkRxcXJEaXJrdmpGQlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBIjwrLOi4GARJGsfZ8GcvY9Vyy5uvSprZmEUBnuwqMeYDLzPZBLN1X go+kVJWpZLXvzmsCpTwgm3uqsJTyMs1n3gf55bPdYCVPJwGDfGO4Kf6pT+Myt4rO ID0X+3MBnZ5XWni2VAY/8pnUjlVgVuivZGY1ViJm/5NJaNf4/KPsucpVigLg8m4r dOVY8iJ+NPgS+PZ60A1sVyn7qi3pCPOP13bHuvyenC8Twig1wQDLX1IpTXBss3Pb zZHF9X9mPjiNnDkLSuRQuM/RhfiSmj7+ued34UiE12+q3PnFBNcrh6fJ+dLAbbzR TdmLHOUxppyA1krKlV+t+0LBt3byUSU4 -----END CERTIFICATE-----Generated at Sat May 17 11:32:57 2025 by rpki-client