$ rpki-client -vvf rpki.apnic.net/member_repository/A91B25F2/EF90CD4E03B011EA85F02934C4F9AE02/tsh7tYco929vkKCd_WuqGtTnO8o.mft File: tsh7tYco929vkKCd_WuqGtTnO8o.mft (raw, json) Hash identifier: qxTzUxnJ/GXhJh0TH33F8PiI9xcGjU7yZtf4p+RzkzQ= Subject key identifier: 84:73:43:BC:CA:87:3F:19:83:B2:9F:53:1B:1C:46:72:95:42:82:44 Authority key identifier: B6:C8:7B:B5:87:28:F7:6F:6F:90:A0:9D:FD:6B:AA:1A:D4:E7:3B:CA Certificate issuer: /CN=A91B25F2/serialNumber=B6C87BB58728F76F6F90A09DFD6BAA1AD4E73BCA Certificate serial: 0C79 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tsh7tYco929vkKCd_WuqGtTnO8o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B25F2/EF90CD4E03B011EA85F02934C4F9AE02/tsh7tYco929vkKCd_WuqGtTnO8o.mft Manifest number: 0C5F Signing time: Fri 16 May 2025 18:37:06 +0000 Manifest this update: Fri 16 May 2025 18:37:06 +0000 Manifest next update: Fri 23 May 2025 18:37:06 +0000 Files and hashes: 1: tsh7tYco929vkKCd_WuqGtTnO8o.crl (hash: JNmiqHlg01ZTtSGWv1LkJP98SQPWOUKBxLpPN5sRI+I=) 2: E8F85ED4EC5811EFA9B9C618C4F9AE02.roa (hash: ykoz29uCG/11xDnxQBhHvrkmfn5Ejy8eSvfC/XRGcV0=) 3: 47DADED8EC5211EFBF551F6DC4F9AE02.roa (hash: Dq4Ro4BCHubyTM+Puy9Ox1X2qGGmM5W4/l0WmjnI3vE=) 4: 2B633118DF2F11EFAD7BEE6BC4F9AE02.roa (hash: LCBsasgUklncuTCZqxiSNtZe0VPDq700osnXP0sG1fE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B25F2/EF90CD4E03B011EA85F02934C4F9AE02/tsh7tYco929vkKCd_WuqGtTnO8o.crl rsync://rpki.apnic.net/member_repository/A91B25F2/EF90CD4E03B011EA85F02934C4F9AE02/tsh7tYco929vkKCd_WuqGtTnO8o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tsh7tYco929vkKCd_WuqGtTnO8o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 23 May 2025 18:37:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3193 (0xc79) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B25F2, serialNumber=B6C87BB58728F76F6F90A09DFD6BAA1AD4E73BCA Validity Not Before: May 16 18:37:06 2025 GMT Not After : May 23 18:37:06 2025 GMT Subject: CN=682785d2-1566 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:cf:e7:b6:f0:bf:ef:19:22:28:fb:f4:74:0f: 17:32:1f:ef:5b:d1:9b:eb:81:af:f7:73:82:13:0c: d9:ce:13:8a:6e:66:b9:92:77:75:f4:95:cc:29:1d: b4:82:9b:23:b8:ce:a1:69:f3:66:66:6b:6e:b6:3d: 8e:6e:f5:12:a0:38:a1:88:11:aa:5d:d1:96:58:cd: b1:b9:a8:aa:2f:f3:15:e0:4a:5d:59:e7:a9:cb:2a: 0a:6a:9a:9a:f5:cf:c4:7f:5a:6a:d9:47:b4:ee:c9: dc:8b:37:d4:ce:b8:be:37:d6:9c:03:d5:a2:d1:5d: 75:2c:fc:c5:04:ff:44:e8:7f:40:0d:19:22:1c:63: 81:2b:1c:c7:dc:a3:95:be:d9:c2:74:d6:c5:50:a8: e5:66:78:b0:c7:ec:36:31:24:97:f4:87:07:2f:e8: ac:8d:79:f2:6f:19:ec:cc:49:05:87:0e:4f:66:9f: d9:03:b5:64:2e:fb:4a:89:b6:c6:60:a6:90:28:1d: e7:b7:81:c7:21:5d:61:44:b9:1d:28:70:64:1e:72: 10:14:32:6f:c5:bd:dc:2c:e9:11:47:64:76:91:29: cf:0d:0f:0d:6e:41:d6:0d:af:08:5a:10:8e:d6:b0: cd:d2:f7:57:c9:8b:7f:f6:67:94:75:ab:3a:21:e6: cf:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:73:43:BC:CA:87:3F:19:83:B2:9F:53:1B:1C:46:72:95:42:82:44 X509v3 Authority Key Identifier: keyid:B6:C8:7B:B5:87:28:F7:6F:6F:90:A0:9D:FD:6B:AA:1A:D4:E7:3B:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B25F2/EF90CD4E03B011EA85F02934C4F9AE02/tsh7tYco929vkKCd_WuqGtTnO8o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tsh7tYco929vkKCd_WuqGtTnO8o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B25F2/EF90CD4E03B011EA85F02934C4F9AE02/tsh7tYco929vkKCd_WuqGtTnO8o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 50:08:0d:b7:24:ea:e8:74:9d:97:5b:a7:95:e4:6c:d9:4b:dc: 46:92:8a:35:b0:b2:c4:08:b4:cf:d3:eb:f0:17:17:a5:b3:cc: fd:3e:35:84:6c:dd:05:4c:31:6e:50:5a:c7:73:a5:d9:de:15: bd:b9:7f:9c:c2:33:37:30:a7:25:4e:a0:9b:76:e8:14:c2:3f: af:61:fc:cb:51:bc:4d:6a:fb:3e:0b:57:2e:52:1b:ef:b6:0c: 80:7b:20:68:20:81:01:30:c8:bf:b6:47:fb:93:9f:25:49:6d: d4:28:53:31:66:8d:76:89:01:4e:cb:4a:a6:32:f1:cb:82:48: 93:a8:eb:38:89:9a:c0:67:69:a0:e0:68:56:7d:86:22:6b:18: 44:9e:3b:e9:60:2a:7f:bc:2d:37:7a:ad:92:4a:9c:ba:92:7e: d7:0a:45:da:b0:48:ed:28:c8:92:f1:d1:63:71:f9:65:04:1a: 61:8b:0c:cc:dd:54:93:47:f6:7f:e9:78:b4:98:b3:8a:a8:18: 42:78:0f:c8:64:b4:0d:2f:66:32:fe:72:5a:97:0a:09:cb:8a: fe:1b:6a:9b:ee:7a:fa:c4:1c:56:ad:eb:0e:a9:ac:ff:a1:ff: 11:9f:21:e0:a3:92:f2:f2:6c:e2:43:55:9d:e1:9a:69:47:a4: 29:15:9c:c3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDHkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjI1RjIxMTAvBgNVBAUTKEI2Qzg3QkI1ODcyOEY3NkY2RjkwQTA5REZENkJBQTFB RDRFNzNCQ0EwHhcNMjUwNTE2MTgzNzA2WhcNMjUwNTIzMTgzNzA2WjAYMRYwFAYD VQQDEw02ODI3ODVkMi0xNTY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4s/ntvC/7xkiKPv0dA8XMh/vW9Gb64Gv93OCEwzZzhOKbma5knd19JXMKR20 gpsjuM6hafNmZmtutj2ObvUSoDihiBGqXdGWWM2xuaiqL/MV4EpdWeepyyoKapqa 9c/Ef1pq2Ue07sncizfUzri+N9acA9Wi0V11LPzFBP9E6H9ADRkiHGOBKxzH3KOV vtnCdNbFUKjlZniwx+w2MSSX9IcHL+isjXnybxnszEkFhw5PZp/ZA7VkLvtKibbG YKaQKB3nt4HHIV1hRLkdKHBkHnIQFDJvxb3cLOkRR2R2kSnPDQ8NbkHWDa8IWhCO 1rDN0vdXyYt/9meUdas6IebP4wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIRzQ7zK hz8Zg7KfUxscRnKVQoJEMB8GA1UdIwQYMBaAFLbIe7WHKPdvb5Cgnf1rqhrU5zvK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMjVGMi9FRjkwQ0Q0RTAz QjAxMUVBODVGMDI5MzRDNEY5QUUwMi90c2g3dFljbzkyOXZrS0NkX1d1cUd0VG5P OG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RzaDd0WWNvOTI5dmtLQ2RfV3VxR3RUbk84by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MjVGMi9FRjkwQ0Q0RTAzQjAxMUVBODVGMDI5MzRDNEY5QUUwMi90c2g3dFljbzky OXZrS0NkX1d1cUd0VG5POG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBQCA23JOrodJ2XW6eV5GzZS9xGkoo1sLLECLTP0+vwFxels8z9PjWE bN0FTDFuUFrHc6XZ3hW9uX+cwjM3MKclTqCbdugUwj+vYfzLUbxNavs+C1cuUhvv tgyAeyBoIIEBMMi/tkf7k58lSW3UKFMxZo12iQFOy0qmMvHLgkiTqOs4iZrAZ2mg 4GhWfYYiaxhEnjvpYCp/vC03eq2SSpy6kn7XCkXasEjtKMiS8dFjcfllBBphiwzM 3VSTR/Z/6Xi0mLOKqBhCeA/IZLQNL2Yy/nJalwoJy4r+G2qb7nr6xBxWresOqaz/ of8RnyHgo5Ly8mziQ1Wd4ZppR6QpFZzD -----END CERTIFICATE-----Generated at Sat May 17 17:48:29 2025 by rpki-client