$ rpki-client -vvf rpki.apnic.net/member_repository/A9198D95/48ED296AE06511EEB35F421EC4F9AE02/_tgXL4qVo1IC1RxvdfqUfehE9M0.mft File: _tgXL4qVo1IC1RxvdfqUfehE9M0.mft (raw, json) Hash identifier: QPiRX/QtJAQtL+EaP+WpP+4vIwLAHBMnNNseZuf0biM= Subject key identifier: 98:D3:F5:EC:AA:48:54:60:0F:24:B2:30:91:5B:AF:A3:55:C8:C0:A2 Authority key identifier: FE:D8:17:2F:8A:95:A3:52:02:D5:1C:6F:75:FA:94:7D:E8:44:F4:CD Certificate issuer: /CN=A9198D95/serialNumber=FED8172F8A95A35202D51C6F75FA947DE844F4CD Certificate serial: DD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_tgXL4qVo1IC1RxvdfqUfehE9M0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9198D95/48ED296AE06511EEB35F421EC4F9AE02/_tgXL4qVo1IC1RxvdfqUfehE9M0.mft Manifest number: DB Signing time: Tue 13 May 2025 04:42:54 +0000 Manifest this update: Tue 13 May 2025 04:42:54 +0000 Manifest next update: Tue 20 May 2025 04:42:54 +0000 Files and hashes: 1: _tgXL4qVo1IC1RxvdfqUfehE9M0.crl (hash: SiKpmOe2XYdHc1wlOetTIL2jZKOKLwHbHNAkJh8RayQ=) 2: 994A883AE06511EEA8CEC61EC4F9AE02.roa (hash: LjsOflVWx2ASLq3Z//t4WARlGyPly5HO69O4zsWdHy0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9198D95/48ED296AE06511EEB35F421EC4F9AE02/_tgXL4qVo1IC1RxvdfqUfehE9M0.crl rsync://rpki.apnic.net/member_repository/A9198D95/48ED296AE06511EEB35F421EC4F9AE02/_tgXL4qVo1IC1RxvdfqUfehE9M0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_tgXL4qVo1IC1RxvdfqUfehE9M0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 04:42:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 221 (0xdd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9198D95, serialNumber=FED8172F8A95A35202D51C6F75FA947DE844F4CD Validity Not Before: May 13 04:42:54 2025 GMT Not After : May 20 04:42:54 2025 GMT Subject: CN=6822cdce-0a43 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:38:4d:cf:9c:26:dc:9a:ef:0a:2e:2b:54:37: 92:6d:6f:31:97:e9:59:b1:92:45:4a:06:41:d5:e6: b5:bf:4a:40:52:31:dc:e2:1e:68:bf:54:5c:a2:84: 6d:d2:72:64:92:08:33:92:e5:d8:1a:4d:66:ec:d4: b5:4e:5d:1e:97:db:46:ba:d8:3c:25:b6:5f:3b:06: 75:d5:b8:bc:82:c0:35:69:74:7c:09:c1:5a:b9:b3: e6:59:da:a3:2d:75:7f:ec:ac:93:c2:0d:36:f6:f5: e5:5b:47:6e:92:13:0d:db:b7:23:1e:39:57:ac:09: f2:3c:ac:c5:82:50:53:f6:8d:d3:d3:72:72:a1:9f: 40:08:a2:23:46:4b:8d:1a:3d:c0:24:82:08:34:6a: b1:bf:03:cf:d7:b7:86:22:c3:08:04:91:b8:34:9e: 65:35:47:c4:3a:66:54:e0:9b:5e:68:d8:db:61:a4: 08:2d:c3:70:b2:e0:ab:67:bd:b8:da:44:da:b4:f9: 75:f7:94:a5:ab:40:f3:46:63:3d:87:d2:89:5e:c6: 70:16:9c:95:26:52:47:e3:e4:5e:84:1b:28:89:a7: 57:d0:74:da:55:b9:6b:f4:26:46:23:36:47:77:10: e5:d2:23:8b:fa:cd:ca:5b:83:52:9f:e5:1f:13:a0: c7:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:D3:F5:EC:AA:48:54:60:0F:24:B2:30:91:5B:AF:A3:55:C8:C0:A2 X509v3 Authority Key Identifier: keyid:FE:D8:17:2F:8A:95:A3:52:02:D5:1C:6F:75:FA:94:7D:E8:44:F4:CD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9198D95/48ED296AE06511EEB35F421EC4F9AE02/_tgXL4qVo1IC1RxvdfqUfehE9M0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_tgXL4qVo1IC1RxvdfqUfehE9M0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9198D95/48ED296AE06511EEB35F421EC4F9AE02/_tgXL4qVo1IC1RxvdfqUfehE9M0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 59:be:30:52:9c:6e:8c:8d:8d:f9:21:52:0f:26:1b:fc:c0:57: a5:aa:f7:6f:fe:4b:35:00:24:50:9d:20:3f:f0:de:4b:e5:03: f5:91:77:4f:7f:7a:46:12:ee:81:7a:63:db:d6:6f:fe:62:2f: 14:d8:ee:9b:e3:00:1f:c4:10:fb:18:cf:05:07:7a:72:41:e1: ac:83:bd:8c:29:65:f2:f2:64:09:25:f6:5c:f2:89:e5:b7:9a: 37:fd:9d:7f:52:fe:80:0b:76:95:e7:52:4e:1d:ab:6e:21:fb: 5d:b4:4b:be:30:13:2e:3b:9c:57:a4:7c:ac:22:39:69:2f:8d: f0:72:41:f9:c3:5c:32:30:12:53:e4:0c:76:9d:0f:e2:4a:77: 26:40:55:da:e8:15:39:d9:33:c0:28:30:ee:41:d6:91:42:5f: ee:ba:23:3f:0b:3b:b7:b7:47:cc:48:de:31:6b:8c:3e:7e:e8: 17:8b:c5:78:38:67:7a:46:e5:ff:33:3e:6e:9d:fe:9b:55:f4: 7f:14:f8:69:34:77:be:dd:97:1a:84:69:81:fd:4f:84:0a:19: dc:0d:e7:36:85:4a:61:d4:5b:f5:d3:8a:3a:a4:cc:9a:3d:6e: 2f:25:02:e0:6e:08:c3:84:c6:1a:77:0f:e9:87:54:92:27:bd: fb:03:04:b9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAN0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OThEOTUxMTAvBgNVBAUTKEZFRDgxNzJGOEE5NUEzNTIwMkQ1MUM2Rjc1RkE5NDdE RTg0NEY0Q0QwHhcNMjUwNTEzMDQ0MjU0WhcNMjUwNTIwMDQ0MjU0WjAYMRYwFAYD VQQDEw02ODIyY2RjZS0wYTQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxjhNz5wm3JrvCi4rVDeSbW8xl+lZsZJFSgZB1ea1v0pAUjHc4h5ov1RcooRt 0nJkkggzkuXYGk1m7NS1Tl0el9tGutg8JbZfOwZ11bi8gsA1aXR8CcFaubPmWdqj LXV/7KyTwg029vXlW0dukhMN27cjHjlXrAnyPKzFglBT9o3T03JyoZ9ACKIjRkuN Gj3AJIIINGqxvwPP17eGIsMIBJG4NJ5lNUfEOmZU4JteaNjbYaQILcNwsuCrZ724 2kTatPl195Slq0DzRmM9h9KJXsZwFpyVJlJH4+RehBsoiadX0HTaVblr9CZGIzZH dxDl0iOL+s3KW4NSn+UfE6DHoQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJjT9eyq SFRgDySyMJFbr6NVyMCiMB8GA1UdIwQYMBaAFP7YFy+KlaNSAtUcb3X6lH3oRPTN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OEQ5NS80OEVEMjk2QUUw NjUxMUVFQjM1RjQyMUVDNEY5QUUwMi9fdGdYTDRxVm8xSUMxUnh2ZGZxVWZlaEU5 TTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL190Z1hMNHFWbzFJQzFSeHZkZnFVZmVoRTlNMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OEQ5NS80OEVEMjk2QUUwNjUxMUVFQjM1RjQyMUVDNEY5QUUwMi9fdGdYTDRxVm8x SUMxUnh2ZGZxVWZlaEU5TTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBZvjBSnG6MjY35IVIPJhv8wFelqvdv/ks1ACRQnSA/8N5L5QP1kXdP f3pGEu6BemPb1m/+Yi8U2O6b4wAfxBD7GM8FB3pyQeGsg72MKWXy8mQJJfZc8onl t5o3/Z1/Uv6AC3aV51JOHatuIftdtEu+MBMuO5xXpHysIjlpL43wckH5w1wyMBJT 5Ax2nQ/iSncmQFXa6BU52TPAKDDuQdaRQl/uuiM/Czu3t0fMSN4xa4w+fugXi8V4 OGd6RuX/Mz5unf6bVfR/FPhpNHe+3ZcahGmB/U+EChncDec2hUph1Fv104o6pMya PW4vJQLgbgjDhMYadw/ph1SSJ737AwS5 -----END CERTIFICATE-----Generated at Thu May 15 00:47:40 2025 by rpki-client