$ rpki-client -vvf rpki.apnic.net/member_repository/A91D200F/25787402164F11EE9E73404EC4F9AE02/TZCQh73foVBeK7oD8gYRLq7_sRs.mft File: TZCQh73foVBeK7oD8gYRLq7_sRs.mft (raw, json) Hash identifier: xbj9ts87CiYviIs30/Rqve1SJnib+actv4TQNZa88Hk= Subject key identifier: D0:1F:1E:FA:11:32:2D:06:4B:3F:6D:FF:13:4F:AC:48:6D:27:45:02 Authority key identifier: 4D:90:90:87:BD:DF:A1:50:5E:2B:BA:03:F2:06:11:2E:AE:FF:B1:1B Certificate issuer: /CN=A91D200F/serialNumber=4D909087BDDFA1505E2BBA03F206112EAEFFB11B Certificate serial: 0175 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TZCQh73foVBeK7oD8gYRLq7_sRs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D200F/25787402164F11EE9E73404EC4F9AE02/TZCQh73foVBeK7oD8gYRLq7_sRs.mft Manifest number: 016A Signing time: Sun 11 May 2025 02:54:45 +0000 Manifest this update: Sun 11 May 2025 02:54:44 +0000 Manifest next update: Sun 18 May 2025 02:54:44 +0000 Files and hashes: 1: TZCQh73foVBeK7oD8gYRLq7_sRs.crl (hash: fqwtWU1ZxLTWre1YJyS1hdm/PfGGVShyx1hPwZcEB8M=) 2: D71B60EC2B5911EE81C7542FC4F9AE02.roa (hash: LOa+P/ojEAQa7LHXQVKaskvdIoCLS3b4cZFOn+kB2uw=) 3: 039807B286B511EFAF868C6EC4F9AE02.roa (hash: shT5jO7CGMGG+hH7ceO9PXeIRAabJhok08ZuY7EKsTc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D200F/25787402164F11EE9E73404EC4F9AE02/TZCQh73foVBeK7oD8gYRLq7_sRs.crl rsync://rpki.apnic.net/member_repository/A91D200F/25787402164F11EE9E73404EC4F9AE02/TZCQh73foVBeK7oD8gYRLq7_sRs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TZCQh73foVBeK7oD8gYRLq7_sRs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 02:54:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 373 (0x175) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D200F, serialNumber=4D909087BDDFA1505E2BBA03F206112EAEFFB11B Validity Not Before: May 11 02:54:44 2025 GMT Not After : May 18 02:54:44 2025 GMT Subject: CN=68201174-e544 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:e9:58:87:46:a4:15:bc:8c:cc:d9:35:16:13: bf:7d:28:b2:04:93:8e:57:d6:45:27:79:07:84:72: 09:49:5b:9d:24:8e:9f:52:63:df:33:be:8c:f0:59: 0a:6b:1c:38:a0:f1:2b:75:b4:6f:6f:82:70:70:65: be:92:f4:4a:89:59:f8:b4:8d:0a:44:c1:3f:ae:99: b6:bc:88:db:5d:c5:98:0e:e8:0f:e5:e7:42:b2:63: e7:4e:11:4a:4e:14:e4:b6:50:fe:f3:d0:67:6e:d9: c8:50:8b:98:39:4d:d0:b7:7f:1c:de:e3:6c:d0:a4: 4f:ac:73:29:a7:0b:c4:42:a0:4b:79:dd:82:88:69: ae:85:5d:42:ef:a7:c9:e6:bf:c6:a9:c2:09:aa:1d: fa:0f:85:43:68:df:d0:a6:1d:63:32:06:90:c3:a1: 96:6f:ac:6d:7e:e6:01:6a:05:0d:a9:4c:29:66:31: 66:4d:0b:e2:a4:41:ff:ca:67:5e:3c:35:d4:7a:d8: 30:2f:59:2b:97:34:7b:5c:44:bb:23:96:cb:37:ba: 89:ae:ca:c8:22:da:60:02:ab:73:eb:e1:20:cf:1c: 43:55:a3:86:75:97:3c:b9:1e:b9:36:dc:a4:ee:7a: bb:61:67:45:0f:bb:ea:5e:bc:c0:82:f8:0f:39:fe: 40:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:1F:1E:FA:11:32:2D:06:4B:3F:6D:FF:13:4F:AC:48:6D:27:45:02 X509v3 Authority Key Identifier: keyid:4D:90:90:87:BD:DF:A1:50:5E:2B:BA:03:F2:06:11:2E:AE:FF:B1:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D200F/25787402164F11EE9E73404EC4F9AE02/TZCQh73foVBeK7oD8gYRLq7_sRs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TZCQh73foVBeK7oD8gYRLq7_sRs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D200F/25787402164F11EE9E73404EC4F9AE02/TZCQh73foVBeK7oD8gYRLq7_sRs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 94:8e:c1:20:c3:83:47:83:50:58:12:cb:5c:29:23:4d:e5:54: af:03:ae:7c:72:11:53:2c:c9:15:5f:af:d3:de:c7:ad:58:57: 39:22:ca:c8:ef:da:33:00:2e:c6:ce:9d:10:91:8e:d0:ba:22: 3c:92:d1:1d:de:65:ea:dd:81:29:a9:d2:43:8c:cd:fe:6f:a3: 12:4b:69:b3:eb:b7:fd:52:99:1d:fe:23:b3:cb:50:00:d0:93: fa:96:66:01:85:a7:af:4e:38:02:97:28:2e:d7:d5:9a:cc:95: 95:c4:60:2c:1f:75:a0:9f:21:46:b1:a9:2f:e7:d9:7b:7b:61: 6f:23:0a:d1:9c:c7:52:c4:1e:a9:8a:d9:4c:1e:f4:53:ad:e1: 97:de:b7:9a:e2:6d:6a:49:7c:1d:07:2f:c1:d6:70:f6:ac:36: ad:d7:6a:45:3b:8a:8d:22:db:de:cd:07:52:d3:83:f4:01:51: 4a:bf:77:93:2a:01:f6:7f:c7:60:64:d1:10:6d:10:ab:da:b3: a1:2a:59:e8:d8:1e:50:70:79:86:f9:ca:5e:a7:39:c6:cb:91: dc:97:71:d7:b6:ed:27:92:37:0e:ba:c8:7f:0a:4a:88:00:e3: 35:9a:f2:21:5e:77:4e:3d:9b:33:3e:c0:51:44:c2:f1:d8:a8: ab:98:19:82 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDIwMEYxMTAvBgNVBAUTKDREOTA5MDg3QkRERkExNTA1RTJCQkEwM0YyMDYxMTJF QUVGRkIxMUIwHhcNMjUwNTExMDI1NDQ0WhcNMjUwNTE4MDI1NDQ0WjAYMRYwFAYD VQQDEw02ODIwMTE3NC1lNTQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx+lYh0akFbyMzNk1FhO/fSiyBJOOV9ZFJ3kHhHIJSVudJI6fUmPfM76M8FkK axw4oPErdbRvb4JwcGW+kvRKiVn4tI0KRME/rpm2vIjbXcWYDugP5edCsmPnThFK ThTktlD+89BnbtnIUIuYOU3Qt38c3uNs0KRPrHMppwvEQqBLed2CiGmuhV1C76fJ 5r/GqcIJqh36D4VDaN/Qph1jMgaQw6GWb6xtfuYBagUNqUwpZjFmTQvipEH/ymde PDXUetgwL1krlzR7XES7I5bLN7qJrsrIItpgAqtz6+EgzxxDVaOGdZc8uR65Ntyk 7nq7YWdFD7vqXrzAgvgPOf5AlwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNAfHvoR Mi0GSz9t/xNPrEhtJ0UCMB8GA1UdIwQYMBaAFE2QkIe936FQXiu6A/IGES6u/7Eb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMjAwRi8yNTc4NzQwMjE2 NEYxMUVFOUU3MzQwNEVDNEY5QUUwMi9UWkNRaDczZm9WQmVLN29EOGdZUkxxN19z UnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RaQ1FoNzNmb1ZCZUs3b0Q4Z1lSTHE3X3NScy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MjAwRi8yNTc4NzQwMjE2NEYxMUVFOUU3MzQwNEVDNEY5QUUwMi9UWkNRaDczZm9W QmVLN29EOGdZUkxxN19zUnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCUjsEgw4NHg1BYEstcKSNN5VSvA658chFTLMkVX6/T3setWFc5IsrI 79ozAC7Gzp0QkY7QuiI8ktEd3mXq3YEpqdJDjM3+b6MSS2mz67f9Upkd/iOzy1AA 0JP6lmYBhaevTjgClygu19WazJWVxGAsH3WgnyFGsakv59l7e2FvIwrRnMdSxB6p itlMHvRTreGX3rea4m1qSXwdBy/B1nD2rDat12pFO4qNItvezQdS04P0AVFKv3eT KgH2f8dgZNEQbRCr2rOhKlno2B5QcHmG+cpepznGy5Hcl3HXtu0nkjcOush/CkqI AOM1mvIhXndOPZszPsBRRMLx2KirmBmC -----END CERTIFICATE-----Generated at Sun May 11 22:23:48 2025 by rpki-client