$ rpki-client -vvf rpki.apnic.net/member_repository/A9197ADE/89A493E2FE4D11EFA1AFFC1AC4F9AE02/2TIL_awMkLNCikT8fcoOL3kJd0E.mft File: 2TIL_awMkLNCikT8fcoOL3kJd0E.mft (raw, json) Hash identifier: sBkW8QW6KPUVGvORjVnIEbv9c8JMeuSnHTU7wFxgF2o= Subject key identifier: 6A:68:23:4C:33:91:9B:65:67:81:14:E3:C4:A9:8F:88:CF:C9:4D:6D Authority key identifier: D9:32:0B:FD:AC:0C:90:B3:42:8A:44:FC:7D:CA:0E:2F:79:09:77:41 Certificate issuer: /CN=A9197ADE/serialNumber=D9320BFDAC0C90B3428A44FC7DCA0E2F79097741 Certificate serial: 25 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2TIL_awMkLNCikT8fcoOL3kJd0E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9197ADE/89A493E2FE4D11EFA1AFFC1AC4F9AE02/2TIL_awMkLNCikT8fcoOL3kJd0E.mft Manifest number: 23 Signing time: Sun 11 May 2025 06:35:45 +0000 Manifest this update: Sun 11 May 2025 06:35:44 +0000 Manifest next update: Sun 18 May 2025 06:35:44 +0000 Files and hashes: 1: 2TIL_awMkLNCikT8fcoOL3kJd0E.crl (hash: dWS5SF382ZUuuhqtOKHfkctaYpK8sVC4NEC684H+1Ck=) 2: E0CFA54EFE4D11EF8274971BC4F9AE02.roa (hash: xErSiwEVGbEN6QlFmGLkFVWsdMEkeNM0TxyRejXCRHw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9197ADE/89A493E2FE4D11EFA1AFFC1AC4F9AE02/2TIL_awMkLNCikT8fcoOL3kJd0E.crl rsync://rpki.apnic.net/member_repository/A9197ADE/89A493E2FE4D11EFA1AFFC1AC4F9AE02/2TIL_awMkLNCikT8fcoOL3kJd0E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2TIL_awMkLNCikT8fcoOL3kJd0E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37 (0x25) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9197ADE, serialNumber=D9320BFDAC0C90B3428A44FC7DCA0E2F79097741 Validity Not Before: May 11 06:35:44 2025 GMT Not After : May 18 06:35:44 2025 GMT Subject: CN=68204541-a693 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:14:e4:56:6e:4f:0d:31:6c:b4:1b:f1:99:fd: 20:1d:c6:37:57:be:ad:3a:14:ba:56:d1:09:c8:0e: 80:fe:bb:56:69:86:45:04:e7:70:83:41:d7:e8:85: 3f:7b:92:eb:47:f3:3a:74:b0:b9:2b:d6:6f:b4:de: 3d:4c:61:72:63:e9:b9:61:aa:51:60:9a:d6:a5:40: ff:81:c7:7b:44:b0:d0:ce:64:8f:74:08:9d:15:86: 84:0e:e7:fd:da:0d:cf:7c:e1:69:a1:e4:bf:28:eb: 14:ae:75:d4:6e:01:19:99:ba:d7:8c:78:f9:89:82: 16:51:9d:93:c1:bb:1b:ff:73:dc:71:e0:af:d2:a1: 99:5c:2c:fb:0b:d8:b7:6b:cb:70:d2:bf:ba:6d:a4: 62:de:f5:17:d1:f2:1e:cc:ca:a1:07:41:bb:4f:86: 47:fe:c8:cf:24:18:11:33:35:53:66:ae:1d:3b:16: 0e:7d:44:0d:79:32:62:0c:b1:3f:a2:87:65:a5:6e: 4c:44:28:71:c5:ca:44:a9:1b:a8:c8:2b:13:bd:6e: 48:a6:f1:6b:8b:87:9f:3d:61:cf:c3:dc:55:91:b8: da:28:bb:21:45:38:71:68:77:da:71:5a:1e:ea:86: c4:1d:bd:b8:a0:1a:d5:88:d1:7b:5d:da:45:76:c1: bb:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:68:23:4C:33:91:9B:65:67:81:14:E3:C4:A9:8F:88:CF:C9:4D:6D X509v3 Authority Key Identifier: keyid:D9:32:0B:FD:AC:0C:90:B3:42:8A:44:FC:7D:CA:0E:2F:79:09:77:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9197ADE/89A493E2FE4D11EFA1AFFC1AC4F9AE02/2TIL_awMkLNCikT8fcoOL3kJd0E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2TIL_awMkLNCikT8fcoOL3kJd0E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9197ADE/89A493E2FE4D11EFA1AFFC1AC4F9AE02/2TIL_awMkLNCikT8fcoOL3kJd0E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 90:8c:20:0b:ac:e4:71:a6:d6:15:a7:b9:50:a9:e6:ee:9d:97: 63:82:98:94:95:89:54:ce:dc:12:6d:8e:6b:e6:27:d7:f1:78: a1:bf:74:7f:58:ba:d3:4f:cf:79:df:1d:0a:76:a6:59:80:46: e1:36:e0:54:13:34:01:01:95:9b:06:58:af:f5:98:9c:a1:d1: d4:13:99:b1:ec:63:8d:78:be:d5:89:76:2b:3c:ab:12:81:24: d4:29:3d:73:41:74:11:3a:b6:3f:00:46:60:2b:1d:6f:a2:5a: 4f:a6:69:dd:d0:3a:30:02:6a:0a:2e:3c:66:f9:f0:ec:e1:21: 00:ac:51:64:93:0f:9e:39:d4:d7:ee:14:86:3c:6c:9b:df:02: 93:a1:b4:66:a5:2b:90:d9:04:88:7e:ce:62:c0:f2:83:8b:13: 43:b5:56:3c:1e:2c:56:c1:9b:e4:14:50:43:c3:4e:94:1e:f7: a7:3b:30:d5:4c:72:7c:b2:51:08:9f:15:c3:5e:05:8b:d6:92: 27:0b:5b:0e:cd:4c:32:bb:ca:3e:a7:06:9d:79:68:fd:a9:b9: ff:64:61:79:6e:8b:a3:e4:31:9f:a0:87:c3:3b:dc:b6:8b:3d: c4:c0:5b:da:84:f6:72:c4:d3:74:cc:9a:b1:88:d6:7c:65:9b: f4:e3:bc:48 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBJTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 N0FERTExMC8GA1UEBRMoRDkzMjBCRkRBQzBDOTBCMzQyOEE0NEZDN0RDQTBFMkY3 OTA5Nzc0MTAeFw0yNTA1MTEwNjM1NDRaFw0yNTA1MTgwNjM1NDRaMBgxFjAUBgNV BAMTDTY4MjA0NTQxLWE2OTMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCuFORWbk8NMWy0G/GZ/SAdxjdXvq06FLpW0QnIDoD+u1ZphkUE53CDQdfohT97 kutH8zp0sLkr1m+03j1MYXJj6blhqlFgmtalQP+Bx3tEsNDOZI90CJ0VhoQO5/3a Dc984Wmh5L8o6xSuddRuARmZuteMePmJghZRnZPBuxv/c9xx4K/SoZlcLPsL2Ldr y3DSv7ptpGLe9RfR8h7MyqEHQbtPhkf+yM8kGBEzNVNmrh07Fg59RA15MmIMsT+i h2WlbkxEKHHFykSpG6jIKxO9bkim8WuLh589Yc/D3FWRuNoouyFFOHFod9pxWh7q hsQdvbigGtWI0Xtd2kV2wbvnAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUamgjTDOR m2VngRTjxKmPiM/JTW0wHwYDVR0jBBgwFoAU2TIL/awMkLNCikT8fcoOL3kJd0Ew DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk3QURFLzg5QTQ5M0UyRkU0 RDExRUZBMUFGRkMxQUM0RjlBRTAyLzJUSUxfYXdNa0xOQ2lrVDhmY29PTDNrSmQw RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMlRJTF9hd01rTE5DaWtUOGZjb09MM2tKZDBFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk3 QURFLzg5QTQ5M0UyRkU0RDExRUZBMUFGRkMxQUM0RjlBRTAyLzJUSUxfYXdNa0xO Q2lrVDhmY29PTDNrSmQwRS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJCMIAus5HGm1hWnuVCp5u6dl2OCmJSViVTO3BJtjmvmJ9fxeKG/dH9Y utNPz3nfHQp2plmARuE24FQTNAEBlZsGWK/1mJyh0dQTmbHsY414vtWJdis8qxKB JNQpPXNBdBE6tj8ARmArHW+iWk+mad3QOjACagouPGb58OzhIQCsUWSTD5451Nfu FIY8bJvfApOhtGalK5DZBIh+zmLA8oOLE0O1VjweLFbBm+QUUEPDTpQe96c7MNVM cnyyUQifFcNeBYvWkicLWw7NTDK7yj6nBp15aP2puf9kYXlui6PkMZ+gh8M73LaL PcTAW9qE9nLE03TMmrGI1nxlm/TjvEg= -----END CERTIFICATE-----Generated at Sun May 11 13:49:55 2025 by rpki-client