$ rpki-client -vvf rpki.apnic.net/member_repository/A91A6E4D/D3CC0D64FB4611EBA7661839C4F9AE02/tr-xkXvTGlViMihYRudjoUMyymg.mft File: tr-xkXvTGlViMihYRudjoUMyymg.mft (raw, json) Hash identifier: e1cpl5iCZk3Wnq4jrCb6hnrn3NWAgxLbNe2vl02NKao= Subject key identifier: DD:7D:7A:F3:0D:08:BA:50:70:6C:C0:53:6E:1E:1B:B9:B8:28:11:70 Authority key identifier: B6:BF:B1:91:7B:D3:1A:55:62:32:28:58:46:E7:63:A1:43:32:CA:68 Certificate issuer: /CN=A91A6E4D/serialNumber=B6BFB1917BD31A556232285846E763A14332CA68 Certificate serial: 0520 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tr-xkXvTGlViMihYRudjoUMyymg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A6E4D/D3CC0D64FB4611EBA7661839C4F9AE02/tr-xkXvTGlViMihYRudjoUMyymg.mft Manifest number: 0520 Signing time: Sat 10 May 2025 23:08:36 +0000 Manifest this update: Sat 10 May 2025 23:08:35 +0000 Manifest next update: Sat 17 May 2025 23:08:35 +0000 Files and hashes: 1: tr-xkXvTGlViMihYRudjoUMyymg.crl (hash: RU6PseaujZTMLkGFpoa0UkLX6m3GQhG+RqTdeWfmk5g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A6E4D/D3CC0D64FB4611EBA7661839C4F9AE02/tr-xkXvTGlViMihYRudjoUMyymg.crl rsync://rpki.apnic.net/member_repository/A91A6E4D/D3CC0D64FB4611EBA7661839C4F9AE02/tr-xkXvTGlViMihYRudjoUMyymg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tr-xkXvTGlViMihYRudjoUMyymg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 23:08:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1312 (0x520) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A6E4D, serialNumber=B6BFB1917BD31A556232285846E763A14332CA68 Validity Not Before: May 10 23:08:35 2025 GMT Not After : May 17 23:08:35 2025 GMT Subject: CN=681fdc74-bc18 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:09:ca:ab:0f:85:72:b5:44:05:e1:78:09:86: de:6b:04:38:0a:4f:3a:27:c2:34:e2:a9:a7:30:36: b2:df:7d:91:80:f8:08:ed:4a:20:e4:31:dd:18:89: de:56:87:01:ec:c2:a8:83:14:a5:57:9b:7c:63:ce: 7a:ec:09:d3:51:f2:0d:ba:de:fb:48:0b:13:7c:a9: 32:4f:17:ae:25:43:ef:48:57:f1:fe:5d:8c:0f:54: 58:e0:dd:2b:5b:67:2e:43:dd:ea:c8:42:43:f8:1f: d4:86:6a:04:90:c0:56:96:c5:2c:4b:72:fa:63:a5: 67:86:ec:34:45:ef:fd:74:e0:f4:f4:8e:66:1d:de: ac:9f:44:50:2e:b7:9f:9f:39:4a:c5:38:b4:2c:f1: ce:44:1f:74:e4:09:61:60:1e:b3:20:27:0e:5b:76: e8:b9:ca:cd:37:41:a0:a7:e7:72:d3:1f:37:37:08: f5:88:3d:64:c2:66:ce:d7:29:9e:54:a7:ed:bd:11: c8:31:1e:2c:cc:a0:25:52:48:68:83:69:74:a9:5c: 18:ca:76:39:24:87:33:38:b0:f6:a9:03:55:76:3a: 26:8f:22:ec:92:67:7b:1e:ae:ca:bc:bb:f2:53:a2: e3:6b:75:75:7c:d3:88:c0:85:a7:10:74:23:e2:97: 26:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:7D:7A:F3:0D:08:BA:50:70:6C:C0:53:6E:1E:1B:B9:B8:28:11:70 X509v3 Authority Key Identifier: keyid:B6:BF:B1:91:7B:D3:1A:55:62:32:28:58:46:E7:63:A1:43:32:CA:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A6E4D/D3CC0D64FB4611EBA7661839C4F9AE02/tr-xkXvTGlViMihYRudjoUMyymg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tr-xkXvTGlViMihYRudjoUMyymg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A6E4D/D3CC0D64FB4611EBA7661839C4F9AE02/tr-xkXvTGlViMihYRudjoUMyymg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 09:73:7d:64:9e:b5:ff:3f:03:d8:be:d3:f2:2b:85:69:79:c0: 51:d4:ee:79:20:72:31:ab:aa:94:c8:cb:95:d7:5f:cd:ae:18: ce:eb:e4:6c:e6:a1:ea:5c:58:c4:9e:53:4d:ec:52:ec:9c:8c: 4b:81:a5:a2:4b:6b:bf:c1:f0:9f:bd:f5:6f:e8:17:bc:9a:f3: 3c:78:bf:82:0b:18:f0:32:61:56:5d:1e:2a:35:30:b0:cd:8c: e1:28:94:23:01:dd:3b:da:2d:d6:4f:0b:2a:bb:60:24:4d:3b: a5:2c:18:8c:4c:22:31:54:01:b2:fb:c7:90:80:64:8e:e0:6d: fb:e9:c8:c3:bc:c2:09:e0:92:2a:0b:b8:eb:de:09:76:32:30: f6:a2:28:0a:9c:ef:15:20:19:2f:56:e6:9e:50:ab:9b:11:e9: e1:b1:bf:02:96:00:aa:0a:6c:86:91:66:6d:75:f2:aa:66:ae: e2:ff:c0:7e:79:58:78:ac:45:b7:15:c0:8e:5c:86:b6:2c:f0: 34:cd:83:48:17:c6:95:43:5a:bf:fc:2b:94:e9:5f:63:12:eb: 96:93:3f:60:0b:9a:a7:0c:48:d0:f2:53:03:5c:8e:3c:7e:ec: e1:18:de:44:36:8c:28:56:9a:53:d7:ac:5a:4f:2e:f9:a6:5e: c9:a1:44:12 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBSAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTZFNEQxMTAvBgNVBAUTKEI2QkZCMTkxN0JEMzFBNTU2MjMyMjg1ODQ2RTc2M0Ex NDMzMkNBNjgwHhcNMjUwNTEwMjMwODM1WhcNMjUwNTE3MjMwODM1WjAYMRYwFAYD VQQDEw02ODFmZGM3NC1iYzE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0wnKqw+FcrVEBeF4CYbeawQ4Ck86J8I04qmnMDay332RgPgI7Uog5DHdGIne VocB7MKogxSlV5t8Y8567AnTUfINut77SAsTfKkyTxeuJUPvSFfx/l2MD1RY4N0r W2cuQ93qyEJD+B/UhmoEkMBWlsUsS3L6Y6Vnhuw0Re/9dOD09I5mHd6sn0RQLref nzlKxTi0LPHORB905AlhYB6zICcOW3boucrNN0Ggp+dy0x83Nwj1iD1kwmbO1yme VKftvRHIMR4szKAlUkhog2l0qVwYynY5JIczOLD2qQNVdjomjyLskmd7Hq7KvLvy U6Lja3V1fNOIwIWnEHQj4pcmVQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN19evMN CLpQcGzAU24eG7m4KBFwMB8GA1UdIwQYMBaAFLa/sZF70xpVYjIoWEbnY6FDMspo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNkU0RC9EM0NDMEQ2NEZC NDYxMUVCQTc2NjE4MzlDNEY5QUUwMi90ci14a1h2VEdsVmlNaWhZUnVkam9VTXl5 bWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RyLXhrWHZUR2xWaU1paFlSdWRqb1VNeXltZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NkU0RC9EM0NDMEQ2NEZCNDYxMUVCQTc2NjE4MzlDNEY5QUUwMi90ci14a1h2VEds VmlNaWhZUnVkam9VTXl5bWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAJc31knrX/PwPYvtPyK4VpecBR1O55IHIxq6qUyMuV11/NrhjO6+Rs 5qHqXFjEnlNN7FLsnIxLgaWiS2u/wfCfvfVv6Be8mvM8eL+CCxjwMmFWXR4qNTCw zYzhKJQjAd072i3WTwsqu2AkTTulLBiMTCIxVAGy+8eQgGSO4G376cjDvMIJ4JIq C7jr3gl2MjD2oigKnO8VIBkvVuaeUKubEenhsb8ClgCqCmyGkWZtdfKqZq7i/8B+ eVh4rEW3FcCOXIa2LPA0zYNIF8aVQ1q//CuU6V9jEuuWkz9gC5qnDEjQ8lMDXI48 fuzhGN5ENowoVppT16xaTy75pl7JoUQS -----END CERTIFICATE-----Generated at Mon May 12 11:29:59 2025 by rpki-client