$ rpki-client -vvf rpki.apnic.net/member_repository/A91D4636/2C9BC33C979911ECBE725A3CC4F9AE02/tGhODWIsua_RLLX6PkiF382FAE0.mft File: tGhODWIsua_RLLX6PkiF382FAE0.mft (raw, json) Hash identifier: Xqo4CcSL9uHuo9/DezlGyZxuSDgOJ79IATIxbK2WC8Y= Subject key identifier: 63:82:EA:1D:9D:40:3B:8A:EC:5E:85:C5:71:6A:14:DA:E9:99:27:43 Authority key identifier: B4:68:4E:0D:62:2C:B9:AF:D1:2C:B5:FA:3E:48:85:DF:CD:85:00:4D Certificate issuer: /CN=A91D4636/serialNumber=B4684E0D622CB9AFD12CB5FA3E4885DFCD85004D Certificate serial: 03A8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tGhODWIsua_RLLX6PkiF382FAE0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D4636/2C9BC33C979911ECBE725A3CC4F9AE02/tGhODWIsua_RLLX6PkiF382FAE0.mft Manifest number: 03A0 Signing time: Tue 13 May 2025 00:33:55 +0000 Manifest this update: Tue 13 May 2025 00:33:54 +0000 Manifest next update: Tue 20 May 2025 00:33:54 +0000 Files and hashes: 1: tGhODWIsua_RLLX6PkiF382FAE0.crl (hash: Sn/6W4RnFijSS06YOiYv8OiwuBgwKODoM+Sqa3kbZ2U=) 2: C458350E979C11EC8E769C43C4F9AE02.roa (hash: eviaeNHpTyeX/nwMhD0qRHeqmHQSy0IY0Lvxy4hMeV0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D4636/2C9BC33C979911ECBE725A3CC4F9AE02/tGhODWIsua_RLLX6PkiF382FAE0.crl rsync://rpki.apnic.net/member_repository/A91D4636/2C9BC33C979911ECBE725A3CC4F9AE02/tGhODWIsua_RLLX6PkiF382FAE0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tGhODWIsua_RLLX6PkiF382FAE0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 00:33:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 936 (0x3a8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D4636, serialNumber=B4684E0D622CB9AFD12CB5FA3E4885DFCD85004D Validity Not Before: May 13 00:33:54 2025 GMT Not After : May 20 00:33:54 2025 GMT Subject: CN=68229372-676b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:e6:70:50:69:4e:8e:69:28:b9:67:e4:2a:44: 89:87:31:2f:62:39:d5:f9:52:fe:a2:59:7b:0c:68: c6:2c:03:53:5f:1f:9b:d5:52:2a:66:dd:17:e0:a5: c7:38:4a:28:ed:e8:d7:ea:46:d5:f2:a0:cc:2c:8a: 77:a2:65:ba:89:fb:da:c1:e3:7d:83:87:b7:85:86: 10:92:d7:d9:1a:c9:bb:56:83:58:03:fb:1a:b0:2e: a4:a1:bf:0b:a7:fc:11:d8:ae:aa:49:a9:c8:4d:c2: 08:bf:f4:b2:c6:52:ef:34:75:aa:e3:29:fc:bc:2c: 56:44:07:24:d7:18:69:b7:37:bf:97:25:06:2e:12: e1:d7:69:40:ef:85:77:eb:ab:25:5b:09:ed:42:38: 27:74:9e:1c:0f:87:84:b0:77:2e:26:09:a9:cd:1c: fe:11:63:7d:f3:71:fb:cc:91:b8:4a:62:a8:93:b9: 76:d2:dc:72:44:af:96:80:82:5c:4f:3b:ce:b0:fa: 93:9b:34:59:04:ca:3c:24:e3:a9:2d:5e:89:43:f2: a0:66:8c:41:60:22:2a:14:e8:a6:c9:21:28:36:bf: a3:c7:b4:a0:cf:9b:2c:95:a9:e7:ff:43:ba:21:94: 3d:61:93:7f:8d:53:8e:e7:de:f7:88:d1:70:3e:34: 51:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:82:EA:1D:9D:40:3B:8A:EC:5E:85:C5:71:6A:14:DA:E9:99:27:43 X509v3 Authority Key Identifier: keyid:B4:68:4E:0D:62:2C:B9:AF:D1:2C:B5:FA:3E:48:85:DF:CD:85:00:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D4636/2C9BC33C979911ECBE725A3CC4F9AE02/tGhODWIsua_RLLX6PkiF382FAE0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tGhODWIsua_RLLX6PkiF382FAE0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D4636/2C9BC33C979911ECBE725A3CC4F9AE02/tGhODWIsua_RLLX6PkiF382FAE0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 52:dd:0d:0e:7c:b2:a7:1e:fa:d2:25:61:b8:54:7c:07:12:b5: c3:b6:6b:54:5b:a0:51:14:5a:2f:f1:83:8b:63:ce:c4:e2:15: 2f:88:a0:d1:4c:c3:f5:e6:82:9e:8f:92:83:06:47:4a:c9:ee: bc:8f:af:64:39:6d:e2:15:a4:3f:be:4f:8d:8c:28:28:b1:0c: 8d:2c:74:fd:31:bb:ae:50:b6:79:9e:06:c7:59:1c:c9:2f:7d: 4b:91:ed:f4:47:d7:df:77:a7:28:47:e2:80:82:25:e9:13:5a: 1e:81:64:04:15:93:07:e1:36:e8:10:d9:6e:cd:bb:e6:9d:96: a9:d0:5b:85:0b:ff:8a:24:38:47:2a:b2:e6:8a:d4:f4:32:cb: f0:da:fe:32:0a:1d:3c:24:db:5b:ea:49:49:cd:8d:2f:fa:8d: 1c:60:39:93:68:62:3c:bc:d0:55:e1:dd:9d:44:3d:ba:3b:44: be:51:cb:f6:93:46:bb:7b:bc:84:ab:00:1d:b3:3f:03:a8:ab: e7:36:26:39:99:23:3d:0b:05:30:c5:da:a8:0b:f4:2f:35:21: 02:9d:b3:61:a5:d0:9b:89:43:b4:b3:76:35:93:0f:37:1e:3f: b9:8a:d0:29:48:56:17:a6:1d:85:bb:16:4d:ab:59:d8:aa:d2: 16:af:ea:38 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA6gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDQ2MzYxMTAvBgNVBAUTKEI0Njg0RTBENjIyQ0I5QUZEMTJDQjVGQTNFNDg4NURG Q0Q4NTAwNEQwHhcNMjUwNTEzMDAzMzU0WhcNMjUwNTIwMDAzMzU0WjAYMRYwFAYD VQQDEw02ODIyOTM3Mi02NzZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6OZwUGlOjmkouWfkKkSJhzEvYjnV+VL+oll7DGjGLANTXx+b1VIqZt0X4KXH OEoo7ejX6kbV8qDMLIp3omW6ifvaweN9g4e3hYYQktfZGsm7VoNYA/sasC6kob8L p/wR2K6qSanITcIIv/SyxlLvNHWq4yn8vCxWRAck1xhptze/lyUGLhLh12lA74V3 66slWwntQjgndJ4cD4eEsHcuJgmpzRz+EWN983H7zJG4SmKok7l20txyRK+WgIJc TzvOsPqTmzRZBMo8JOOpLV6JQ/KgZoxBYCIqFOimySEoNr+jx7Sgz5sslann/0O6 IZQ9YZN/jVOO5973iNFwPjRR3wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGOC6h2d QDuK7F6FxXFqFNrpmSdDMB8GA1UdIwQYMBaAFLRoTg1iLLmv0Sy1+j5Ihd/NhQBN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENDYzNi8yQzlCQzMzQzk3 OTkxMUVDQkU3MjVBM0NDNEY5QUUwMi90R2hPRFdJc3VhX1JMTFg2UGtpRjM4MkZB RTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RHaE9EV0lzdWFfUkxMWDZQa2lGMzgyRkFFMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NDYzNi8yQzlCQzMzQzk3OTkxMUVDQkU3MjVBM0NDNEY5QUUwMi90R2hPRFdJc3Vh X1JMTFg2UGtpRjM4MkZBRTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBS3Q0OfLKnHvrSJWG4VHwHErXDtmtUW6BRFFov8YOLY87E4hUviKDR TMP15oKej5KDBkdKye68j69kOW3iFaQ/vk+NjCgosQyNLHT9MbuuULZ5ngbHWRzJ L31Lke30R9ffd6coR+KAgiXpE1oegWQEFZMH4TboENluzbvmnZap0FuFC/+KJDhH KrLmitT0Msvw2v4yCh08JNtb6klJzY0v+o0cYDmTaGI8vNBV4d2dRD26O0S+Ucv2 k0a7e7yEqwAdsz8DqKvnNiY5mSM9CwUwxdqoC/QvNSECnbNhpdCbiUO0s3Y1kw83 Hj+5itApSFYXph2FuxZNq1nYqtIWr+o4 -----END CERTIFICATE-----Generated at Wed May 14 07:10:36 2025 by rpki-client