$ rpki-client -vvf rpki.apnic.net/member_repository/A91D0FCB/92DFFC78816911EF8213FB0CC4F9AE02/TLUe6HyCLo5ssFQoTLB-TPJPkhs.mft File: TLUe6HyCLo5ssFQoTLB-TPJPkhs.mft (raw, json) Hash identifier: jlIzaMQ56zZeke43tHgGp8LiMC1YRweg43P0RYjlbLQ= Subject key identifier: 78:D8:2C:80:8F:F3:05:CE:BD:65:F8:D9:AA:5D:45:F2:E0:74:21:14 Authority key identifier: 4C:B5:1E:E8:7C:82:2E:8E:6C:B0:54:28:4C:B0:7E:4C:F2:4F:92:1B Certificate issuer: /CN=A91D0FCB/serialNumber=4CB51EE87C822E8E6CB054284CB07E4CF24F921B Certificate serial: 72 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TLUe6HyCLo5ssFQoTLB-TPJPkhs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D0FCB/92DFFC78816911EF8213FB0CC4F9AE02/TLUe6HyCLo5ssFQoTLB-TPJPkhs.mft Manifest number: 72 Signing time: Sun 11 May 2025 05:33:29 +0000 Manifest this update: Sun 11 May 2025 05:33:29 +0000 Manifest next update: Sun 18 May 2025 05:33:29 +0000 Files and hashes: 1: TLUe6HyCLo5ssFQoTLB-TPJPkhs.crl (hash: 11C9/HXbf26YkC6kUy1Bs3/GFUrC2r8sc6RGFHGw6iM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D0FCB/92DFFC78816911EF8213FB0CC4F9AE02/TLUe6HyCLo5ssFQoTLB-TPJPkhs.crl rsync://rpki.apnic.net/member_repository/A91D0FCB/92DFFC78816911EF8213FB0CC4F9AE02/TLUe6HyCLo5ssFQoTLB-TPJPkhs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TLUe6HyCLo5ssFQoTLB-TPJPkhs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 05:33:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 114 (0x72) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D0FCB, serialNumber=4CB51EE87C822E8E6CB054284CB07E4CF24F921B Validity Not Before: May 11 05:33:29 2025 GMT Not After : May 18 05:33:29 2025 GMT Subject: CN=682036a9-0733 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:79:0e:59:e5:55:9a:6d:0c:f6:14:38:94:1b: 10:d6:db:15:fc:9b:50:15:fc:a5:38:5e:3b:4d:b2: 62:3b:04:d1:8d:5b:30:1d:a6:42:15:49:71:81:c4: 00:f3:b9:1c:ef:a9:c9:86:93:d6:2c:65:99:60:d9: ad:fd:d4:e0:65:fc:55:89:7c:85:08:d4:29:f6:cb: de:46:70:96:bc:c5:7e:24:13:a2:b6:a1:bb:42:4d: ca:60:cd:20:bd:c0:ad:69:83:22:ca:4a:10:ba:1b: 28:0f:3a:85:69:c0:9c:23:28:7b:2a:76:e5:da:38: 60:d6:d8:36:dc:be:6b:6e:a7:e2:00:4c:ac:9d:41: 6c:84:6b:11:d4:cc:da:af:0a:19:67:58:c7:d2:7b: 43:67:c8:52:94:27:96:b4:13:be:af:82:ac:7f:a8: 0d:da:e2:e7:16:d7:cc:47:81:e0:3d:a4:09:b5:7e: 1c:18:1d:7e:c9:7d:84:1c:b6:5d:f4:e7:cf:98:01: 3b:a4:2b:79:2c:e9:a6:9f:d7:f9:0f:d9:4b:22:e6: 71:de:1a:61:85:24:60:5f:22:c6:28:47:c6:fc:77: bd:af:6a:dc:46:18:cb:bf:be:67:fe:1d:b9:8d:d3: b6:83:de:e8:4b:75:69:2c:c8:cb:ee:d1:07:14:c1: ee:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:D8:2C:80:8F:F3:05:CE:BD:65:F8:D9:AA:5D:45:F2:E0:74:21:14 X509v3 Authority Key Identifier: keyid:4C:B5:1E:E8:7C:82:2E:8E:6C:B0:54:28:4C:B0:7E:4C:F2:4F:92:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D0FCB/92DFFC78816911EF8213FB0CC4F9AE02/TLUe6HyCLo5ssFQoTLB-TPJPkhs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TLUe6HyCLo5ssFQoTLB-TPJPkhs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D0FCB/92DFFC78816911EF8213FB0CC4F9AE02/TLUe6HyCLo5ssFQoTLB-TPJPkhs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 85:75:0d:dc:d6:24:fa:a7:a0:e3:96:96:71:f5:8f:17:de:86: 95:90:7b:eb:ae:a5:af:4c:ac:9f:dc:d3:d2:3d:15:69:d4:9c: 9f:e3:44:f2:bd:22:a9:31:87:3f:f5:07:76:80:34:fc:d8:cc: fe:9c:fc:f8:b5:a5:96:df:64:15:94:90:8e:0a:0d:56:e5:06: 57:22:14:ff:0b:1e:fe:89:8a:e0:58:7f:2f:c8:6d:3f:37:06: bf:0a:e6:56:a0:c6:68:c0:12:56:a9:28:27:de:c9:c5:8e:69: d9:14:7c:69:fd:d3:f0:55:7c:34:da:48:c1:4e:8b:85:94:dc: 83:3b:73:c0:64:29:d3:6f:21:fe:7c:dd:2d:df:87:78:d8:2b: 3e:52:2f:fe:fc:9a:7c:f4:e7:25:ed:1f:36:f2:4b:1b:a5:0e: 15:81:42:9e:de:fb:e8:4b:91:06:59:cc:b5:f2:02:bc:85:5c: 02:11:8c:c5:35:c4:b1:b2:93:97:e2:f2:6b:d5:da:e1:be:cd: ec:38:ef:68:00:27:0f:24:37:67:cd:0f:a1:49:d0:56:71:80: 7d:c7:28:ea:32:f0:d5:b7:2e:db:36:3f:60:8c:07:73:43:3d: 78:f1:da:c2:11:3a:5c:66:95:84:6f:cf:8e:b5:cc:bc:1b:b0: 8f:ac:6e:76 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBcjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE MEZDQjExMC8GA1UEBRMoNENCNTFFRTg3QzgyMkU4RTZDQjA1NDI4NENCMDdFNENG MjRGOTIxQjAeFw0yNTA1MTEwNTMzMjlaFw0yNTA1MTgwNTMzMjlaMBgxFjAUBgNV BAMTDTY4MjAzNmE5LTA3MzMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDOeQ5Z5VWabQz2FDiUGxDW2xX8m1AV/KU4XjtNsmI7BNGNWzAdpkIVSXGBxADz uRzvqcmGk9YsZZlg2a391OBl/FWJfIUI1Cn2y95GcJa8xX4kE6K2obtCTcpgzSC9 wK1pgyLKShC6GygPOoVpwJwjKHsqduXaOGDW2Dbcvmtup+IATKydQWyEaxHUzNqv ChlnWMfSe0NnyFKUJ5a0E76vgqx/qA3a4ucW18xHgeA9pAm1fhwYHX7JfYQctl30 58+YATukK3ks6aaf1/kP2Usi5nHeGmGFJGBfIsYoR8b8d72vatxGGMu/vmf+HbmN 07aD3uhLdWksyMvu0QcUwe6vAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUeNgsgI/z Bc69ZfjZql1F8uB0IRQwHwYDVR0jBBgwFoAUTLUe6HyCLo5ssFQoTLB+TPJPkhsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQwRkNCLzkyREZGQzc4ODE2 OTExRUY4MjEzRkIwQ0M0RjlBRTAyL1RMVWU2SHlDTG81c3NGUW9UTEItVFBKUGto cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvVExVZTZIeUNMbzVzc0ZRb1RMQi1UUEpQa2hzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQw RkNCLzkyREZGQzc4ODE2OTExRUY4MjEzRkIwQ0M0RjlBRTAyL1RMVWU2SHlDTG81 c3NGUW9UTEItVFBKUGtocy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAIV1DdzWJPqnoOOWlnH1jxfehpWQe+uupa9MrJ/c09I9FWnUnJ/jRPK9 Iqkxhz/1B3aANPzYzP6c/Pi1pZbfZBWUkI4KDVblBlciFP8LHv6JiuBYfy/IbT83 Br8K5lagxmjAElapKCfeycWOadkUfGn90/BVfDTaSMFOi4WU3IM7c8BkKdNvIf58 3S3fh3jYKz5SL/78mnz05yXtHzbySxulDhWBQp7e++hLkQZZzLXyAryFXAIRjMU1 xLGyk5fi8mvV2uG+zew472gAJw8kN2fND6FJ0FZxgH3HKOoy8NW3Lts2P2CMB3ND PXjx2sIROlxmlYRvz461zLwbsI+sbnY= -----END CERTIFICATE-----Generated at Sun May 11 18:07:37 2025 by rpki-client