$ rpki-client -vvf rpki.apnic.net/member_repository/A91E28E2/952FA632D2E611ED9A52D55AC4F9AE02/tIGYczHh7UCLUcuf2O9KZQrIZpo.mft File: tIGYczHh7UCLUcuf2O9KZQrIZpo.mft (raw, json) Hash identifier: ncK6xKHxeM55T1mGJvvKqVC9Cg60iYEmgOBrP728fJg= Subject key identifier: 17:46:10:B6:78:FD:C4:72:5D:71:F2:CC:E1:57:49:CC:79:44:BA:F5 Authority key identifier: B4:81:98:73:31:E1:ED:40:8B:51:CB:9F:D8:EF:4A:65:0A:C8:66:9A Certificate issuer: /CN=A91E28E2/serialNumber=B481987331E1ED408B51CB9FD8EF4A650AC8669A Certificate serial: 01C3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tIGYczHh7UCLUcuf2O9KZQrIZpo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E28E2/952FA632D2E611ED9A52D55AC4F9AE02/tIGYczHh7UCLUcuf2O9KZQrIZpo.mft Manifest number: 01B3 Signing time: Tue 01 Jul 2025 03:42:11 +0000 Manifest this update: Tue 01 Jul 2025 03:42:10 +0000 Manifest next update: Tue 08 Jul 2025 03:42:10 +0000 Files and hashes: 1: tIGYczHh7UCLUcuf2O9KZQrIZpo.crl (hash: NJHQbgN5vNUv3B3Hh5C1Xr0yKvmZfZId7pb+py22MNw=) 2: 7D22B44E249D11EFAC24EF6CC4F9AE02.roa (hash: DqfdssaPIpgzVJKB8q8pzNxgEYWvLoidIXznK6mNfXA=) 3: 9772767EB69A11EFBEB6CE0CC4F9AE02.roa (hash: 7OwaJrudjWnecoz7BCK7kPXjzB+3R7tWJ8DmqplI2rk=) 4: 9C6F02C6249D11EF9532356DC4F9AE02.roa (hash: Ah9DA9XDU6AgPBrVhyRA7IEj119ByF47rhFGR96tGKc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E28E2/952FA632D2E611ED9A52D55AC4F9AE02/tIGYczHh7UCLUcuf2O9KZQrIZpo.crl rsync://rpki.apnic.net/member_repository/A91E28E2/952FA632D2E611ED9A52D55AC4F9AE02/tIGYczHh7UCLUcuf2O9KZQrIZpo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tIGYczHh7UCLUcuf2O9KZQrIZpo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 03:42:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 451 (0x1c3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E28E2, serialNumber=B481987331E1ED408B51CB9FD8EF4A650AC8669A Validity Not Before: Jul 1 03:42:10 2025 GMT Not After : Jul 8 03:42:10 2025 GMT Subject: CN=68635913-2020 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:08:b9:f4:10:c4:f4:e4:b8:d3:b2:1a:3c:56: b4:dc:7e:28:4a:d7:f8:db:13:0e:ef:fc:06:12:f9: 04:65:65:34:50:86:70:90:28:ab:ff:18:c7:2c:4b: 91:46:f3:71:b9:df:02:d1:72:86:2b:f5:08:17:b4: 49:8b:45:3f:d3:68:5d:77:cb:76:8d:9b:17:03:b1: b3:5f:7f:18:04:13:e2:e3:e3:90:66:39:78:f3:7e: 4f:b7:d6:b1:cc:8d:f7:bc:39:e8:a0:27:29:d5:9b: d6:c6:3b:80:30:96:3f:df:21:60:dc:f3:0c:2a:ff: 8b:5e:b2:bb:78:53:4d:90:88:fb:82:c4:e2:a9:f4: 58:ca:5c:08:80:ff:6a:e9:1d:72:39:54:58:45:79: 8e:af:7a:4a:9e:11:13:f6:a1:8c:bf:46:96:4b:36: d9:68:fa:ca:23:20:f0:f0:70:7f:8b:80:4b:ce:7d: 60:0d:3d:f7:e3:62:ad:a3:79:98:38:08:bc:90:12: 87:2e:ed:e7:5e:72:ff:d2:ba:98:b2:b9:b8:3f:54: dd:30:dd:f4:b0:57:89:c6:02:6e:b5:85:8f:7a:38: 39:d8:65:44:88:6e:0a:94:c9:95:ae:a7:03:7a:30: d9:dc:22:ed:3b:68:75:1a:10:06:1d:28:5d:86:b3: 17:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:46:10:B6:78:FD:C4:72:5D:71:F2:CC:E1:57:49:CC:79:44:BA:F5 X509v3 Authority Key Identifier: keyid:B4:81:98:73:31:E1:ED:40:8B:51:CB:9F:D8:EF:4A:65:0A:C8:66:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E28E2/952FA632D2E611ED9A52D55AC4F9AE02/tIGYczHh7UCLUcuf2O9KZQrIZpo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tIGYczHh7UCLUcuf2O9KZQrIZpo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E28E2/952FA632D2E611ED9A52D55AC4F9AE02/tIGYczHh7UCLUcuf2O9KZQrIZpo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 38:11:03:45:77:6d:8f:71:1e:18:27:c5:5c:50:27:a9:3c:85: 5b:94:9a:b0:48:ca:12:90:4c:0d:b2:28:6f:9c:ec:a6:0b:e5: a7:3e:8b:19:40:76:0d:04:6f:90:90:2c:b0:5a:ac:4d:1e:b5: 6b:12:46:e7:34:2a:5c:01:40:5f:a8:c3:62:bb:c9:d6:eb:55: 56:d0:dd:0f:51:1a:b1:30:5a:13:3b:78:fb:38:e8:6e:f1:ff: 69:85:92:e5:6b:a3:f2:0c:81:1e:3b:f5:1d:b1:ed:dc:b1:c9: dd:5d:03:21:de:59:5f:0e:59:21:af:77:a2:50:2b:98:7d:f7: e8:d1:c7:49:6a:71:83:85:ef:7c:7d:7a:65:d7:30:2e:90:f4: 01:1e:c5:1d:16:42:8e:fa:51:f1:ec:17:b4:3e:58:d2:4a:9b: 44:e1:4c:57:92:98:3d:25:e7:ef:b4:e5:cc:b6:be:fb:19:14: 60:16:3a:96:4e:29:06:3a:c9:29:6a:bb:c7:44:04:23:eb:89: b1:f3:06:7a:05:21:13:87:8c:1e:3c:d4:92:e4:b1:ad:8d:b9: a7:96:49:13:2c:c6:96:e5:02:19:1b:51:5e:92:c4:19:fb:83: 71:45:30:cc:0d:9f:1f:65:d1:43:5e:ec:e1:f3:49:5e:86:c1: ff:a0:68:08 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAcMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTI4RTIxMTAvBgNVBAUTKEI0ODE5ODczMzFFMUVENDA4QjUxQ0I5RkQ4RUY0QTY1 MEFDODY2OUEwHhcNMjUwNzAxMDM0MjEwWhcNMjUwNzA4MDM0MjEwWjAYMRYwFAYD VQQDEw02ODYzNTkxMy0yMDIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvgi59BDE9OS407IaPFa03H4oStf42xMO7/wGEvkEZWU0UIZwkCir/xjHLEuR RvNxud8C0XKGK/UIF7RJi0U/02hdd8t2jZsXA7GzX38YBBPi4+OQZjl4835Pt9ax zI33vDnooCcp1ZvWxjuAMJY/3yFg3PMMKv+LXrK7eFNNkIj7gsTiqfRYylwIgP9q 6R1yOVRYRXmOr3pKnhET9qGMv0aWSzbZaPrKIyDw8HB/i4BLzn1gDT3342Kto3mY OAi8kBKHLu3nXnL/0rqYsrm4P1TdMN30sFeJxgJutYWPejg52GVEiG4KlMmVrqcD ejDZ3CLtO2h1GhAGHShdhrMXLwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBdGELZ4 /cRyXXHyzOFXScx5RLr1MB8GA1UdIwQYMBaAFLSBmHMx4e1Ai1HLn9jvSmUKyGaa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMjhFMi85NTJGQTYzMkQy RTYxMUVEOUE1MkQ1NUFDNEY5QUUwMi90SUdZY3pIaDdVQ0xVY3VmMk85S1pRckla cG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RJR1ljekhoN1VDTFVjdWYyTzlLWlFySVpwby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MjhFMi85NTJGQTYzMkQyRTYxMUVEOUE1MkQ1NUFDNEY5QUUwMi90SUdZY3pIaDdV Q0xVY3VmMk85S1pRcklacG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA4EQNFd22PcR4YJ8VcUCepPIVblJqwSMoSkEwNsihvnOymC+WnPosZ QHYNBG+QkCywWqxNHrVrEkbnNCpcAUBfqMNiu8nW61VW0N0PURqxMFoTO3j7OOhu 8f9phZLla6PyDIEeO/Udse3cscndXQMh3llfDlkhr3eiUCuYfffo0cdJanGDhe98 fXpl1zAukPQBHsUdFkKO+lHx7Be0PljSSptE4UxXkpg9JefvtOXMtr77GRRgFjqW TikGOskparvHRAQj64mx8wZ6BSETh4wePNSS5LGtjbmnlkkTLMaW5QIZG1FeksQZ +4NxRTDMDZ8fZdFDXuzh80lehsH/oGgI -----END CERTIFICATE-----Generated at Thu Jul 3 00:54:03 2025 by rpki-client