$ rpki-client -vvf rpki.apnic.net/member_repository/A91D0A62/1FA96DA0283111EC97A01316C4F9AE02/TN7H1CHxboUWcqgSOd0Y_IweOVY.mft File: TN7H1CHxboUWcqgSOd0Y_IweOVY.mft (raw, json) Hash identifier: +Vnih+8eO406FXnhGHtKpVYDNNgZRFYCVj+rqUvq9iE= Subject key identifier: 25:45:0D:F2:D0:C4:12:C8:F0:55:C4:7C:59:C0:4C:AC:F8:8D:D6:26 Authority key identifier: 4C:DE:C7:D4:21:F1:6E:85:16:72:A8:12:39:DD:18:FC:8C:1E:39:56 Certificate issuer: /CN=A91D0A62/serialNumber=4CDEC7D421F16E851672A81239DD18FC8C1E3956 Certificate serial: 04BF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TN7H1CHxboUWcqgSOd0Y_IweOVY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D0A62/1FA96DA0283111EC97A01316C4F9AE02/TN7H1CHxboUWcqgSOd0Y_IweOVY.mft Manifest number: 04BB Signing time: Wed 14 May 2025 23:53:56 +0000 Manifest this update: Wed 14 May 2025 23:53:56 +0000 Manifest next update: Wed 21 May 2025 23:53:56 +0000 Files and hashes: 1: TN7H1CHxboUWcqgSOd0Y_IweOVY.crl (hash: vMOjD3o6amr5YUm8Ad2pi60rF+BfIXyXbyagnzJfltU=) 2: C54BA97E283311ECBE887F3BC4F9AE02.roa (hash: XOTWPX30EoXJqKV6109bwG+UksO95BBHigXDmFEItd0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D0A62/1FA96DA0283111EC97A01316C4F9AE02/TN7H1CHxboUWcqgSOd0Y_IweOVY.crl rsync://rpki.apnic.net/member_repository/A91D0A62/1FA96DA0283111EC97A01316C4F9AE02/TN7H1CHxboUWcqgSOd0Y_IweOVY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TN7H1CHxboUWcqgSOd0Y_IweOVY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 23:53:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1215 (0x4bf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D0A62, serialNumber=4CDEC7D421F16E851672A81239DD18FC8C1E3956 Validity Not Before: May 14 23:53:56 2025 GMT Not After : May 21 23:53:56 2025 GMT Subject: CN=68252d14-22eb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:51:38:f1:f2:2e:e4:bd:bf:a9:79:df:15:0d: 31:8c:bd:b4:a5:80:60:ba:ca:03:59:4e:c6:0a:ac: 85:f5:c2:fe:16:27:7d:d7:84:9f:43:2d:43:80:9d: f3:83:00:3b:be:5b:23:a0:45:45:95:26:0f:58:f0: 3a:3e:39:81:0a:7c:c5:0b:55:e6:42:13:fd:37:df: e1:b7:c6:72:da:5e:b3:18:2d:e2:cf:da:f8:9d:5f: b7:ca:ac:9b:da:1d:ea:cb:aa:22:10:b3:bd:0a:47: 1e:25:af:b3:2c:40:84:b8:61:f6:37:ec:54:2c:cf: 26:78:cd:dc:cf:f6:ca:1d:fa:9a:f5:56:e2:15:25: e0:cb:65:01:12:a6:ea:3b:38:67:e4:57:87:05:98: 70:f0:7b:09:df:b2:92:16:f6:a1:d5:1f:b9:6f:d8: d2:d1:a8:67:a3:36:fe:c4:66:29:e6:4f:69:49:b1: a8:d8:00:08:fa:4b:ec:66:0a:03:6b:3e:53:96:01: 92:7e:bc:ac:3c:b5:71:44:46:4a:51:18:aa:3c:7b: 41:c9:a4:72:b5:61:c0:1d:f7:9e:87:30:18:0f:51: 1a:eb:8e:25:b6:56:45:67:63:61:20:2d:37:c5:49: ac:f2:26:b7:1c:4e:da:3f:fa:8e:fd:c8:be:47:de: 61:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:45:0D:F2:D0:C4:12:C8:F0:55:C4:7C:59:C0:4C:AC:F8:8D:D6:26 X509v3 Authority Key Identifier: keyid:4C:DE:C7:D4:21:F1:6E:85:16:72:A8:12:39:DD:18:FC:8C:1E:39:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D0A62/1FA96DA0283111EC97A01316C4F9AE02/TN7H1CHxboUWcqgSOd0Y_IweOVY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TN7H1CHxboUWcqgSOd0Y_IweOVY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D0A62/1FA96DA0283111EC97A01316C4F9AE02/TN7H1CHxboUWcqgSOd0Y_IweOVY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 62:cf:f0:3d:b6:a9:ce:c7:ba:4f:fb:de:0a:55:1f:a7:3f:23: 16:97:2d:b4:13:71:64:16:0f:36:a9:25:4d:7e:3f:d2:8b:62: 80:d1:11:12:d4:ee:50:f7:e6:72:ca:a7:46:39:1c:53:0e:ef: 6b:42:73:30:ce:0a:81:e0:b7:9a:f5:27:09:d0:5c:59:cf:f7: 93:3e:89:3e:71:29:8d:29:d7:05:31:f0:b7:d3:33:c7:44:34: fd:a1:e1:c7:e4:01:ad:04:ea:e7:04:a2:0f:dd:5f:5c:d8:94: 59:2c:10:ae:99:58:fb:73:f4:90:a1:a8:a3:eb:ad:26:73:b4: f9:ad:48:d3:00:fb:27:37:85:4d:d0:51:3a:ea:87:9f:38:d3: 74:a9:21:b1:06:68:3e:ef:d6:9c:1b:68:cd:b3:31:f2:1b:7d: 57:a4:51:bc:5c:88:c7:a7:2d:89:e7:d5:17:4d:65:19:1b:4a: 41:b4:95:f9:88:2d:c5:3e:20:a0:f0:9c:ec:54:7a:73:3c:7f: 41:44:70:0e:8a:30:f4:84:1a:49:eb:61:47:96:a4:70:3f:c0: 9d:54:f0:57:da:c6:91:2c:1e:93:54:35:77:29:65:c0:22:91: 91:e0:d5:68:ef:6d:56:59:57:ec:ae:62:24:8d:07:24:5c:0d: 7d:d7:aa:2f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBL8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDBBNjIxMTAvBgNVBAUTKDRDREVDN0Q0MjFGMTZFODUxNjcyQTgxMjM5REQxOEZD OEMxRTM5NTYwHhcNMjUwNTE0MjM1MzU2WhcNMjUwNTIxMjM1MzU2WjAYMRYwFAYD VQQDEw02ODI1MmQxNC0yMmViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5VE48fIu5L2/qXnfFQ0xjL20pYBgusoDWU7GCqyF9cL+Fid914SfQy1DgJ3z gwA7vlsjoEVFlSYPWPA6PjmBCnzFC1XmQhP9N9/ht8Zy2l6zGC3iz9r4nV+3yqyb 2h3qy6oiELO9CkceJa+zLECEuGH2N+xULM8meM3cz/bKHfqa9VbiFSXgy2UBEqbq Ozhn5FeHBZhw8HsJ37KSFvah1R+5b9jS0ahnozb+xGYp5k9pSbGo2AAI+kvsZgoD az5TlgGSfrysPLVxREZKURiqPHtByaRytWHAHfeehzAYD1Ea644ltlZFZ2NhIC03 xUms8ia3HE7aP/qO/ci+R95hlQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCVFDfLQ xBLI8FXEfFnATKz4jdYmMB8GA1UdIwQYMBaAFEzex9Qh8W6FFnKoEjndGPyMHjlW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMEE2Mi8xRkE5NkRBMDI4 MzExMUVDOTdBMDEzMTZDNEY5QUUwMi9UTjdIMUNIeGJvVVdjcWdTT2QwWV9Jd2VP VlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RON0gxQ0h4Ym9VV2NxZ1NPZDBZX0l3ZU9WWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MEE2Mi8xRkE5NkRBMDI4MzExMUVDOTdBMDEzMTZDNEY5QUUwMi9UTjdIMUNIeGJv VVdjcWdTT2QwWV9Jd2VPVlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBiz/A9tqnOx7pP+94KVR+nPyMWly20E3FkFg82qSVNfj/Si2KA0RES 1O5Q9+ZyyqdGORxTDu9rQnMwzgqB4Lea9ScJ0FxZz/eTPok+cSmNKdcFMfC30zPH RDT9oeHH5AGtBOrnBKIP3V9c2JRZLBCumVj7c/SQoaij660mc7T5rUjTAPsnN4VN 0FE66oefONN0qSGxBmg+79acG2jNszHyG31XpFG8XIjHpy2J59UXTWUZG0pBtJX5 iC3FPiCg8JzsVHpzPH9BRHAOijD0hBpJ62FHlqRwP8CdVPBX2saRLB6TVDV3KWXA IpGR4NVo721WWVfsrmIkjQckXA1916ov -----END CERTIFICATE-----Generated at Fri May 16 12:04:20 2025 by rpki-client