$ rpki-client -vvf rpki.apnic.net/member_repository/A91C7991/7C7B1F66C35A11EAA8ECB67FC4F9AE02/TCaZ0hPdXVmbDsDkY7lIT9si9Cc.mft File: TCaZ0hPdXVmbDsDkY7lIT9si9Cc.mft (raw, json) Hash identifier: KGlpR3CnkEoqW6WPfwGX8V57uEa/loB4sapj/XXsJps= Subject key identifier: C3:1E:CA:D9:23:2A:E6:F8:4E:5B:11:CE:38:46:38:73:C4:C4:1F:DA Authority key identifier: 4C:26:99:D2:13:DD:5D:59:9B:0E:C0:E4:63:B9:48:4F:DB:22:F4:27 Certificate issuer: /CN=A91C7991/serialNumber=4C2699D213DD5D599B0EC0E463B9484FDB22F427 Certificate serial: 0871 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TCaZ0hPdXVmbDsDkY7lIT9si9Cc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C7991/7C7B1F66C35A11EAA8ECB67FC4F9AE02/TCaZ0hPdXVmbDsDkY7lIT9si9Cc.mft Manifest number: 0869 Signing time: Sat 10 May 2025 20:23:15 +0000 Manifest this update: Sat 10 May 2025 20:23:14 +0000 Manifest next update: Sat 17 May 2025 20:23:14 +0000 Files and hashes: 1: TCaZ0hPdXVmbDsDkY7lIT9si9Cc.crl (hash: TWrFny96n9M4HkluzTflEQ/gqLncKPyVL4mB8JwHEE0=) 2: 456CD12E5F0111ECAE4F0286C4F9AE02.roa (hash: Yvl58W31jTaXrFpKwLiylkuL3NEb2f8QrSD0rbbSX2w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C7991/7C7B1F66C35A11EAA8ECB67FC4F9AE02/TCaZ0hPdXVmbDsDkY7lIT9si9Cc.crl rsync://rpki.apnic.net/member_repository/A91C7991/7C7B1F66C35A11EAA8ECB67FC4F9AE02/TCaZ0hPdXVmbDsDkY7lIT9si9Cc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TCaZ0hPdXVmbDsDkY7lIT9si9Cc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 20:23:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2161 (0x871) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C7991, serialNumber=4C2699D213DD5D599B0EC0E463B9484FDB22F427 Validity Not Before: May 10 20:23:14 2025 GMT Not After : May 17 20:23:14 2025 GMT Subject: CN=681fb5b2-9a11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:cc:c0:8d:df:fc:dd:02:34:9b:42:e4:99:b1: 79:29:78:a2:f6:5b:a8:6c:30:f7:8b:2e:3a:d5:60: 26:57:9d:05:39:d0:3a:91:5f:c5:75:66:95:ac:2a: db:e2:8f:a9:b8:98:10:54:a2:b3:57:eb:5f:7e:ed: 1f:60:67:a9:96:de:13:90:1d:94:45:6b:cf:95:7b: b8:eb:1f:86:d5:28:83:28:cf:a0:5d:3b:c5:22:d8: bc:24:63:25:0d:03:dc:19:f1:3b:aa:65:06:c9:c7: 9f:da:0e:f0:36:58:3c:b9:83:da:2e:1c:d8:d5:07: 03:9e:41:a5:28:e4:63:89:5e:cc:c2:8e:e2:3c:e7: e8:ce:e5:f5:c9:18:c5:0d:c3:22:e7:e0:fb:c6:c5: 35:4e:a1:b2:42:64:6f:e0:e0:21:a3:e9:bd:8e:99: dd:32:26:94:21:93:b2:b2:98:bf:56:07:9f:de:fc: cb:4e:24:11:46:04:34:fc:f4:3b:68:2a:1e:68:f8: df:7f:74:cd:d0:a6:6b:a7:f3:86:29:ef:49:76:1e: ab:99:75:93:90:e6:0c:a1:be:57:d3:de:76:58:d3: 1b:e1:9d:1e:63:75:a3:5c:aa:4a:e4:9f:1a:ae:72: f4:04:41:77:f6:1f:6e:37:0d:a6:a5:51:9b:7d:d3: 6c:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:1E:CA:D9:23:2A:E6:F8:4E:5B:11:CE:38:46:38:73:C4:C4:1F:DA X509v3 Authority Key Identifier: keyid:4C:26:99:D2:13:DD:5D:59:9B:0E:C0:E4:63:B9:48:4F:DB:22:F4:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C7991/7C7B1F66C35A11EAA8ECB67FC4F9AE02/TCaZ0hPdXVmbDsDkY7lIT9si9Cc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TCaZ0hPdXVmbDsDkY7lIT9si9Cc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C7991/7C7B1F66C35A11EAA8ECB67FC4F9AE02/TCaZ0hPdXVmbDsDkY7lIT9si9Cc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 51:11:5b:71:a6:6a:9c:e1:0f:a7:c2:bc:8d:73:a8:dd:4c:13: a6:8a:47:4f:73:23:9a:0d:ef:96:48:9c:6a:06:17:e7:44:59: 21:8b:76:38:21:65:63:26:09:b0:6a:72:0f:06:65:37:a2:16: 68:e4:19:45:ee:a4:74:e2:22:63:af:50:1f:ef:ac:98:c5:20: 9e:7f:3f:c0:2d:87:81:02:59:c6:a8:f3:bc:f8:1c:72:6e:59: c0:21:52:3f:32:17:1c:f8:0f:21:b5:71:b1:21:c2:eb:19:d6: 17:58:87:98:ac:51:1a:ea:b4:75:19:e7:70:52:a3:ea:85:6b: ea:42:50:48:a3:53:41:6d:60:e0:35:30:74:1c:01:df:63:89: 3b:e4:86:44:e1:3d:a3:44:64:11:50:c7:05:50:5f:d4:d5:ce: d3:a8:25:07:d3:49:2d:a3:ca:02:83:b1:e0:97:46:4f:9c:2d: 00:e3:d2:43:8c:d9:2e:03:44:2f:eb:9e:2e:40:76:7f:8e:0f: 8b:89:6f:dd:ad:31:58:46:9e:09:e6:ce:15:34:44:ed:a6:de: 5b:92:90:09:b8:93:e1:c7:08:49:65:45:9e:49:32:1e:ef:cf: c6:ff:61:ae:18:25:e6:9c:d3:61:62:69:68:4e:9f:89:94:63: 01:73:9c:07 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCHEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzc5OTExMTAvBgNVBAUTKDRDMjY5OUQyMTNERDVENTk5QjBFQzBFNDYzQjk0ODRG REIyMkY0MjcwHhcNMjUwNTEwMjAyMzE0WhcNMjUwNTE3MjAyMzE0WjAYMRYwFAYD VQQDEw02ODFmYjViMi05YTExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA18zAjd/83QI0m0LkmbF5KXii9luobDD3iy461WAmV50FOdA6kV/FdWaVrCrb 4o+puJgQVKKzV+tffu0fYGeplt4TkB2URWvPlXu46x+G1SiDKM+gXTvFIti8JGMl DQPcGfE7qmUGycef2g7wNlg8uYPaLhzY1QcDnkGlKORjiV7Mwo7iPOfozuX1yRjF DcMi5+D7xsU1TqGyQmRv4OAho+m9jpndMiaUIZOyspi/Vgef3vzLTiQRRgQ0/PQ7 aCoeaPjff3TN0KZrp/OGKe9Jdh6rmXWTkOYMob5X0952WNMb4Z0eY3WjXKpK5J8a rnL0BEF39h9uNw2mpVGbfdNsVwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMMeytkj Kub4TlsRzjhGOHPExB/aMB8GA1UdIwQYMBaAFEwmmdIT3V1Zmw7A5GO5SE/bIvQn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNzk5MS83QzdCMUY2NkMz NUExMUVBQThFQ0I2N0ZDNEY5QUUwMi9UQ2FaMGhQZFhWbWJEc0RrWTdsSVQ5c2k5 Q2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RDYVowaFBkWFZtYkRzRGtZN2xJVDlzaTlDYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD Nzk5MS83QzdCMUY2NkMzNUExMUVBQThFQ0I2N0ZDNEY5QUUwMi9UQ2FaMGhQZFhW bWJEc0RrWTdsSVQ5c2k5Q2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBREVtxpmqc4Q+nwryNc6jdTBOmikdPcyOaDe+WSJxqBhfnRFkhi3Y4 IWVjJgmwanIPBmU3ohZo5BlF7qR04iJjr1Af76yYxSCefz/ALYeBAlnGqPO8+Bxy blnAIVI/Mhcc+A8htXGxIcLrGdYXWIeYrFEa6rR1GedwUqPqhWvqQlBIo1NBbWDg NTB0HAHfY4k75IZE4T2jRGQRUMcFUF/U1c7TqCUH00kto8oCg7Hgl0ZPnC0A49JD jNkuA0Qv654uQHZ/jg+LiW/drTFYRp4J5s4VNETtpt5bkpAJuJPhxwhJZUWeSTIe 78/G/2GuGCXmnNNhYmloTp+JlGMBc5wH -----END CERTIFICATE-----Generated at Sun May 11 12:30:14 2025 by rpki-client