$ rpki-client -vvf rpki.apnic.net/member_repository/A91DE43E/CC03FBB82AFB11EA8DF37D55C4F9AE02/tpVKYo70-TShCnBay8uQbtYQSAw.mft File: tpVKYo70-TShCnBay8uQbtYQSAw.mft (raw, json) Hash identifier: CmunUKw690xrQXOdazYSezcp7nwcRqO4X5WEAPlljoc= Subject key identifier: 95:33:18:A5:6F:BF:4C:0B:B0:86:1B:19:99:14:41:CF:40:17:02:18 Authority key identifier: B6:95:4A:62:8E:F4:F9:34:A1:0A:70:5A:CB:CB:90:6E:D6:10:48:0C Certificate issuer: /CN=A91DE43E/serialNumber=B6954A628EF4F934A10A705ACBCB906ED610480C Certificate serial: 0B7D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tpVKYo70-TShCnBay8uQbtYQSAw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DE43E/CC03FBB82AFB11EA8DF37D55C4F9AE02/tpVKYo70-TShCnBay8uQbtYQSAw.mft Manifest number: 0B77 Signing time: Wed 14 May 2025 19:11:05 +0000 Manifest this update: Wed 14 May 2025 19:11:04 +0000 Manifest next update: Wed 21 May 2025 19:11:04 +0000 Files and hashes: 1: tpVKYo70-TShCnBay8uQbtYQSAw.crl (hash: ld07n/CYw9Mx2JaNuHc3EfytCeXP1T3wOJQlD/AJPE0=) 2: 5E117DC82AFC11EAB5FEC955C4F9AE02.roa (hash: FLXDHzghX+xgCtsrZgeGezVp6qrYExOvwRgCUG3oquw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DE43E/CC03FBB82AFB11EA8DF37D55C4F9AE02/tpVKYo70-TShCnBay8uQbtYQSAw.crl rsync://rpki.apnic.net/member_repository/A91DE43E/CC03FBB82AFB11EA8DF37D55C4F9AE02/tpVKYo70-TShCnBay8uQbtYQSAw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tpVKYo70-TShCnBay8uQbtYQSAw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 19:11:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2941 (0xb7d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DE43E, serialNumber=B6954A628EF4F934A10A705ACBCB906ED610480C Validity Not Before: May 14 19:11:04 2025 GMT Not After : May 21 19:11:04 2025 GMT Subject: CN=6824eac9-e2d0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:f6:91:68:66:43:55:4c:b2:08:1d:a9:05:ae: b3:53:16:90:f9:d4:07:ea:d1:05:6f:d9:3e:80:14: ca:35:0d:83:37:73:50:5d:1d:9f:63:31:0c:e6:41: 53:f6:94:a7:0d:1b:6e:15:17:95:84:9c:ff:05:da: 21:c5:ee:e2:c2:3e:c0:dd:0a:bf:76:7a:61:9f:38: 4d:b3:44:28:26:57:07:a3:59:96:ad:ad:b6:43:c5: fd:40:a1:58:27:16:48:66:c6:64:80:56:63:b7:94: a1:6f:51:75:32:bd:b8:f5:9f:a6:40:c3:83:ef:83: 43:d5:2a:e5:37:ee:d9:cf:af:2f:4b:d5:63:74:03: 70:0b:a5:d6:e2:2c:e7:8d:48:d2:25:74:c6:e8:9f: 91:22:54:a2:f3:ab:07:d7:38:f3:63:fa:13:a9:ba: c4:eb:18:16:b2:65:27:f1:09:b0:c1:5e:79:ee:97: 3b:72:29:14:d9:93:e8:7e:e8:6d:cd:bc:f1:70:1c: 07:51:73:8b:a7:27:60:5e:9c:de:63:76:08:07:d2: e8:ff:f6:1f:b2:72:c3:0d:eb:d9:4d:fc:3d:e7:d7: eb:b4:d4:7e:d0:38:37:c6:87:fe:ed:14:aa:60:83: 36:3f:3b:59:64:e1:48:75:79:fd:4b:b5:66:48:5f: 3c:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:33:18:A5:6F:BF:4C:0B:B0:86:1B:19:99:14:41:CF:40:17:02:18 X509v3 Authority Key Identifier: keyid:B6:95:4A:62:8E:F4:F9:34:A1:0A:70:5A:CB:CB:90:6E:D6:10:48:0C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DE43E/CC03FBB82AFB11EA8DF37D55C4F9AE02/tpVKYo70-TShCnBay8uQbtYQSAw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tpVKYo70-TShCnBay8uQbtYQSAw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DE43E/CC03FBB82AFB11EA8DF37D55C4F9AE02/tpVKYo70-TShCnBay8uQbtYQSAw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 28:55:29:3b:33:82:9e:6a:53:3e:36:71:ba:9e:c3:7c:c5:94: c0:27:3e:e2:7a:4a:ff:29:2d:3a:ab:5e:cd:c4:ef:50:d0:10: 53:ba:5f:f6:e7:6b:d2:47:96:13:a0:da:ab:db:5c:2b:39:57: 50:c0:a5:c0:c7:0f:8d:7f:0d:fa:eb:6c:ac:7e:2c:4a:4c:1f: d7:08:02:86:b1:0d:87:79:6c:70:5e:b0:4b:0a:ec:93:ba:d9: 97:ce:e2:f9:eb:05:db:52:4f:f8:0d:0c:76:e3:21:53:59:39: e6:16:7e:f9:9b:55:4c:23:f7:2f:1e:d9:cb:78:8e:d4:c3:89: c6:f4:86:e8:0e:b8:d8:78:36:21:ac:14:7d:d5:2f:4a:87:73: 2f:27:0d:91:b6:58:96:e1:79:6c:c1:66:c0:49:cc:09:ee:f3: c0:96:27:14:17:fc:80:cd:cf:98:b1:fa:39:0a:ae:bf:b9:e9: 3e:30:a3:46:1c:56:f1:94:ee:2c:ea:fb:9a:0e:b6:3f:5a:26: fd:b4:68:d2:88:56:52:fe:df:42:28:44:8e:d4:34:b3:1b:20: 41:46:49:15:f4:6f:2d:71:66:01:c1:00:e5:57:ed:87:bf:f6: e0:85:8a:47:88:ce:e3:42:56:63:11:96:d2:00:11:35:06:87: b6:bc:f7:0f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC30wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REU0M0UxMTAvBgNVBAUTKEI2OTU0QTYyOEVGNEY5MzRBMTBBNzA1QUNCQ0I5MDZF RDYxMDQ4MEMwHhcNMjUwNTE0MTkxMTA0WhcNMjUwNTIxMTkxMTA0WjAYMRYwFAYD VQQDEw02ODI0ZWFjOS1lMmQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx/aRaGZDVUyyCB2pBa6zUxaQ+dQH6tEFb9k+gBTKNQ2DN3NQXR2fYzEM5kFT 9pSnDRtuFReVhJz/Bdohxe7iwj7A3Qq/dnphnzhNs0QoJlcHo1mWra22Q8X9QKFY JxZIZsZkgFZjt5Shb1F1Mr249Z+mQMOD74ND1SrlN+7Zz68vS9VjdANwC6XW4izn jUjSJXTG6J+RIlSi86sH1zjzY/oTqbrE6xgWsmUn8QmwwV557pc7cikU2ZPofuht zbzxcBwHUXOLpydgXpzeY3YIB9Lo//YfsnLDDevZTfw959frtNR+0Dg3xof+7RSq YIM2PztZZOFIdXn9S7VmSF88vwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJUzGKVv v0wLsIYbGZkUQc9AFwIYMB8GA1UdIwQYMBaAFLaVSmKO9Pk0oQpwWsvLkG7WEEgM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERTQzRS9DQzAzRkJCODJB RkIxMUVBOERGMzdENTVDNEY5QUUwMi90cFZLWW83MC1UU2hDbkJheTh1UWJ0WVFT QXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RwVktZbzcwLVRTaENuQmF5OHVRYnRZUVNBdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RTQzRS9DQzAzRkJCODJBRkIxMUVBOERGMzdENTVDNEY5QUUwMi90cFZLWW83MC1U U2hDbkJheTh1UWJ0WVFTQXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAoVSk7M4KealM+NnG6nsN8xZTAJz7iekr/KS06q17NxO9Q0BBTul/2 52vSR5YToNqr21wrOVdQwKXAxw+Nfw3662ysfixKTB/XCAKGsQ2HeWxwXrBLCuyT utmXzuL56wXbUk/4DQx24yFTWTnmFn75m1VMI/cvHtnLeI7Uw4nG9IboDrjYeDYh rBR91S9Kh3MvJw2RtliW4XlswWbAScwJ7vPAlicUF/yAzc+Ysfo5Cq6/uek+MKNG HFbxlO4s6vuaDrY/Wib9tGjSiFZS/t9CKESO1DSzGyBBRkkV9G8tcWYBwQDlV+2H v/bghYpHiM7jQlZjEZbSABE1Boe2vPcP -----END CERTIFICATE-----Generated at Thu May 15 08:59:45 2025 by rpki-client