$ rpki-client -vvf rpki.apnic.net/member_repository/A9197CBD/3570DF2EB11411EE95E74365C4F9AE02/tIZeO-nFadK5Pyw1HKsk0VBqrA0.mft File: tIZeO-nFadK5Pyw1HKsk0VBqrA0.mft (raw, json) Hash identifier: p4tToPNZPZyC/LGaOH1azkX+3JsbN3QX4BRGOIy239E= Subject key identifier: 6D:C6:44:1A:56:5B:95:52:E3:EB:59:AF:2E:3E:B8:15:13:38:12:43 Authority key identifier: B4:86:5E:3B:E9:C5:69:D2:B9:3F:2C:35:1C:AB:24:D1:50:6A:AC:0D Certificate issuer: /CN=A9197CBD/serialNumber=B4865E3BE9C569D2B93F2C351CAB24D1506AAC0D Certificate serial: 0100 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tIZeO-nFadK5Pyw1HKsk0VBqrA0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9197CBD/3570DF2EB11411EE95E74365C4F9AE02/tIZeO-nFadK5Pyw1HKsk0VBqrA0.mft Manifest number: FC Signing time: Sun 11 May 2025 04:00:26 +0000 Manifest this update: Sun 11 May 2025 04:00:25 +0000 Manifest next update: Sun 18 May 2025 04:00:25 +0000 Files and hashes: 1: tIZeO-nFadK5Pyw1HKsk0VBqrA0.crl (hash: 0/oKwsfNOuGPrcDLki5lGsgqzpRy1aM4MQh9gyv6RpY=) 2: 4074E5EA7B1D11EFB5696E45C4F9AE02.roa (hash: 1SdPp/miyItNAEGeBSAKuJFOP+wIUKHiHtHU72zXu1w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9197CBD/3570DF2EB11411EE95E74365C4F9AE02/tIZeO-nFadK5Pyw1HKsk0VBqrA0.crl rsync://rpki.apnic.net/member_repository/A9197CBD/3570DF2EB11411EE95E74365C4F9AE02/tIZeO-nFadK5Pyw1HKsk0VBqrA0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tIZeO-nFadK5Pyw1HKsk0VBqrA0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 04:00:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 256 (0x100) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9197CBD, serialNumber=B4865E3BE9C569D2B93F2C351CAB24D1506AAC0D Validity Not Before: May 11 04:00:25 2025 GMT Not After : May 18 04:00:25 2025 GMT Subject: CN=682020d9-757f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:e3:f4:1f:b2:56:3c:33:d0:e2:08:bc:1d:86: 4e:b2:71:28:bd:73:a4:fd:5d:74:85:31:a4:59:cd: 6a:ee:6c:0d:e3:82:be:b2:d8:3f:1e:c3:72:e6:ad: 72:64:34:60:39:88:1b:0e:fc:58:d5:eb:3e:38:9a: 87:00:b2:9e:2f:9b:79:e2:15:3b:33:43:6d:e3:95: 93:0f:a5:c1:43:0e:18:99:bd:ac:c7:37:a6:39:7e: fb:b7:e7:f0:3e:f4:29:a5:d9:df:11:93:f0:9b:d6: 7c:19:99:12:4a:97:ac:55:6a:8a:42:0f:09:e9:4d: 0a:51:88:80:ab:84:22:92:de:ec:55:2d:f6:df:31: a1:38:88:65:7a:2f:d6:78:f4:ee:72:ad:05:56:72: ff:dc:d8:6d:6b:d8:d8:2f:99:e3:9c:1a:47:63:e0: fa:fe:f0:49:6b:d3:53:90:cb:9f:a8:f8:45:30:fe: 86:0e:9b:7e:a8:1f:18:1e:49:1a:66:ac:b4:cf:6a: 04:18:cd:9e:58:fa:1d:c3:82:48:15:56:6c:c4:5f: 12:32:c0:12:0e:a1:50:a1:78:e4:46:1c:0f:3f:cd: 0f:18:a3:80:0f:79:36:44:43:64:9c:16:aa:4c:8f: 82:a6:f1:14:22:30:d3:1d:23:37:a1:2b:e0:e2:4d: 21:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:C6:44:1A:56:5B:95:52:E3:EB:59:AF:2E:3E:B8:15:13:38:12:43 X509v3 Authority Key Identifier: keyid:B4:86:5E:3B:E9:C5:69:D2:B9:3F:2C:35:1C:AB:24:D1:50:6A:AC:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9197CBD/3570DF2EB11411EE95E74365C4F9AE02/tIZeO-nFadK5Pyw1HKsk0VBqrA0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tIZeO-nFadK5Pyw1HKsk0VBqrA0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9197CBD/3570DF2EB11411EE95E74365C4F9AE02/tIZeO-nFadK5Pyw1HKsk0VBqrA0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2d:e0:ca:09:44:5e:cf:3e:3b:be:93:96:d5:df:a3:f5:29:d0: e6:b2:5e:2c:7d:6d:c0:0e:be:6b:b7:95:7d:be:83:1a:ec:91: 16:1e:ac:76:1f:e8:ea:f4:f4:80:73:63:ba:06:cd:4a:9d:14: c9:87:42:9f:dd:c8:27:9a:3d:54:98:a4:53:82:f5:fb:d8:84: 99:54:42:91:fa:2e:fe:52:fe:70:13:d1:23:bf:7e:de:36:a9: d8:9a:2b:fa:c9:f3:f6:a2:e1:cc:98:c1:4c:da:48:b1:b3:ba: 4b:0d:93:cf:40:c5:16:37:db:aa:07:08:85:a5:de:01:c0:84: c9:fc:84:3f:52:e4:1a:c9:97:bd:54:4f:44:9d:58:26:01:ff: 2f:53:2b:f3:ee:6b:c5:46:ac:c7:10:a2:18:db:a8:f9:5b:8d: 13:23:92:a0:f4:7f:07:73:99:b5:0a:3a:7c:b0:0e:04:2e:92: eb:0d:ff:80:6d:e8:c2:de:f0:d7:e1:87:c6:0b:3d:05:12:c0: 51:56:2b:2f:1c:95:b9:e8:ee:d9:e6:2a:85:b7:c0:0e:6c:37: 15:78:20:4b:09:04:5a:28:ae:c2:0a:a1:7d:bf:23:b4:16:f7: 26:f7:69:82:08:59:bb:fa:fa:fb:9b:05:c8:ac:d5:37:1b:df: 36:ba:74:f2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTdDQkQxMTAvBgNVBAUTKEI0ODY1RTNCRTlDNTY5RDJCOTNGMkMzNTFDQUIyNEQx NTA2QUFDMEQwHhcNMjUwNTExMDQwMDI1WhcNMjUwNTE4MDQwMDI1WjAYMRYwFAYD VQQDEw02ODIwMjBkOS03NTdmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAouP0H7JWPDPQ4gi8HYZOsnEovXOk/V10hTGkWc1q7mwN44K+stg/HsNy5q1y ZDRgOYgbDvxY1es+OJqHALKeL5t54hU7M0Nt45WTD6XBQw4Ymb2sxzemOX77t+fw PvQppdnfEZPwm9Z8GZkSSpesVWqKQg8J6U0KUYiAq4Qikt7sVS323zGhOIhlei/W ePTucq0FVnL/3Nhta9jYL5njnBpHY+D6/vBJa9NTkMufqPhFMP6GDpt+qB8YHkka Zqy0z2oEGM2eWPodw4JIFVZsxF8SMsASDqFQoXjkRhwPP80PGKOAD3k2RENknBaq TI+CpvEUIjDTHSM3oSvg4k0hbQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG3GRBpW W5VS4+tZry4+uBUTOBJDMB8GA1UdIwQYMBaAFLSGXjvpxWnSuT8sNRyrJNFQaqwN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5N0NCRC8zNTcwREYyRUIx MTQxMUVFOTVFNzQzNjVDNEY5QUUwMi90SVplTy1uRmFkSzVQeXcxSEtzazBWQnFy QTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3RJWmVPLW5GYWRLNVB5dzFIS3NrMFZCcXJBMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 N0NCRC8zNTcwREYyRUIxMTQxMUVFOTVFNzQzNjVDNEY5QUUwMi90SVplTy1uRmFk SzVQeXcxSEtzazBWQnFyQTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAt4MoJRF7PPju+k5bV36P1KdDmsl4sfW3ADr5rt5V9voMa7JEWHqx2 H+jq9PSAc2O6Bs1KnRTJh0Kf3cgnmj1UmKRTgvX72ISZVEKR+i7+Uv5wE9Ejv37e NqnYmiv6yfP2ouHMmMFM2kixs7pLDZPPQMUWN9uqBwiFpd4BwITJ/IQ/UuQayZe9 VE9EnVgmAf8vUyvz7mvFRqzHEKIY26j5W40TI5Kg9H8Hc5m1Cjp8sA4ELpLrDf+A bejC3vDX4YfGCz0FEsBRVisvHJW56O7Z5iqFt8AObDcVeCBLCQRaKK7CCqF9vyO0 Fvcm92mCCFm7+vr7mwXIrNU3G982unTy -----END CERTIFICATE-----Generated at Sun May 11 21:48:11 2025 by rpki-client