$ rpki-client -vvf rpki.apnic.net/member_repository/A91E28E2/952FA632D2E611ED9A52D55AC4F9AE02/tIGYczHh7UCLUcuf2O9KZQrIZpo.mft File: tIGYczHh7UCLUcuf2O9KZQrIZpo.mft (raw, json) Hash identifier: cLPWiS/amhx1mgZKmspHphRVOnP/0hhQNv9fWY7oKWg= Subject key identifier: 09:4D:66:EF:D1:A4:A8:EC:F0:BE:DE:58:A1:F3:EB:FA:98:1B:4D:31 Authority key identifier: B4:81:98:73:31:E1:ED:40:8B:51:CB:9F:D8:EF:4A:65:0A:C8:66:9A Certificate issuer: /CN=A91E28E2/serialNumber=B481987331E1ED408B51CB9FD8EF4A650AC8669A Certificate serial: 01A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tIGYczHh7UCLUcuf2O9KZQrIZpo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E28E2/952FA632D2E611ED9A52D55AC4F9AE02/tIGYczHh7UCLUcuf2O9KZQrIZpo.mft Manifest number: 0198 Signing time: Sun 11 May 2025 02:31:01 +0000 Manifest this update: Sun 11 May 2025 02:31:00 +0000 Manifest next update: Sun 18 May 2025 02:31:00 +0000 Files and hashes: 1: tIGYczHh7UCLUcuf2O9KZQrIZpo.crl (hash: V1GQobtC6GbI7RQPArNIVV7S5G8uhZQ86ZYycgllUCg=) 2: 7D22B44E249D11EFAC24EF6CC4F9AE02.roa (hash: 5+9jJwjzRyNYN2O27C0xkTXdTv27eYHF2xhj3n4/zw8=) 3: 9772767EB69A11EFBEB6CE0CC4F9AE02.roa (hash: OTItAaxPPemMiPzq6xmShyEDu1glCIdZDgb+Zo6pNyA=) 4: 9C6F02C6249D11EF9532356DC4F9AE02.roa (hash: H7vSiuNaTY/QVhx1Z+0HnkEM6Adv1NWsmVcvR+Op02o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E28E2/952FA632D2E611ED9A52D55AC4F9AE02/tIGYczHh7UCLUcuf2O9KZQrIZpo.crl rsync://rpki.apnic.net/member_repository/A91E28E2/952FA632D2E611ED9A52D55AC4F9AE02/tIGYczHh7UCLUcuf2O9KZQrIZpo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tIGYczHh7UCLUcuf2O9KZQrIZpo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 02:31:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 421 (0x1a5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E28E2, serialNumber=B481987331E1ED408B51CB9FD8EF4A650AC8669A Validity Not Before: May 11 02:31:00 2025 GMT Not After : May 18 02:31:00 2025 GMT Subject: CN=68200be4-6831 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:e3:d6:10:c1:34:5b:be:35:88:53:17:5c:73: f8:71:cb:42:c6:bf:a8:be:09:95:db:36:72:50:51: 67:78:87:52:9e:af:49:ea:a6:0b:73:fe:50:76:bd: 90:51:80:63:32:a9:41:07:89:39:01:34:c2:72:48: 9d:60:a3:4e:95:22:43:ae:e3:52:d7:bb:8d:64:dc: ad:63:4b:45:31:c8:98:85:69:b5:19:92:79:5b:e6: d6:0e:e9:a0:b3:40:37:52:f2:90:ed:a5:c6:f4:63: 58:e7:46:a1:9e:51:db:86:6e:44:5c:f6:1a:ab:27: 01:c0:28:79:ed:32:58:6b:37:0c:7d:da:22:a7:eb: 49:4e:62:e4:28:78:99:68:25:a1:35:73:1a:93:cd: 34:9e:d5:db:07:11:2d:e4:7d:86:ae:1c:c9:8b:a5: 5f:fe:d2:5a:e6:e4:ed:5c:16:01:e7:63:71:c5:a1: b0:95:33:58:da:35:bd:e5:c7:9e:b4:33:6c:a2:63: 5a:9b:da:63:4e:50:51:96:51:4d:f0:40:96:a5:1f: 78:99:d0:b4:6c:ab:26:51:f0:a2:3c:32:71:3e:52: 59:4d:9e:98:b0:c1:45:74:65:60:0a:de:71:2f:a3: b0:75:95:21:19:7c:d4:ea:0c:91:43:f0:37:0b:f2: bb:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:4D:66:EF:D1:A4:A8:EC:F0:BE:DE:58:A1:F3:EB:FA:98:1B:4D:31 X509v3 Authority Key Identifier: keyid:B4:81:98:73:31:E1:ED:40:8B:51:CB:9F:D8:EF:4A:65:0A:C8:66:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E28E2/952FA632D2E611ED9A52D55AC4F9AE02/tIGYczHh7UCLUcuf2O9KZQrIZpo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tIGYczHh7UCLUcuf2O9KZQrIZpo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E28E2/952FA632D2E611ED9A52D55AC4F9AE02/tIGYczHh7UCLUcuf2O9KZQrIZpo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 03:c2:e3:ae:68:f3:2d:40:b8:7d:41:87:b4:b2:d4:19:60:23: 18:b4:68:2d:82:dc:ef:1b:1e:df:52:fd:a4:8b:e5:59:d5:4c: a6:de:1e:05:97:ad:44:3f:cb:ce:0f:ae:33:1f:eb:aa:d6:33: bc:2b:67:ed:6b:53:2a:92:bc:11:a3:a3:03:9d:26:92:d6:a6: 12:2f:a0:31:21:cb:6e:34:45:26:35:ef:e1:dd:e4:ca:a4:a5: 1b:22:5f:0e:9d:ed:a1:9c:95:ea:03:8d:f4:4e:36:9a:8c:83: aa:0e:b3:5b:64:92:93:cf:9a:ba:81:e9:a4:0f:3c:48:ce:7a: 5b:4e:d9:4f:2c:55:0a:d5:32:44:ef:2e:b4:4d:50:54:86:89: dc:11:48:3a:81:56:12:8b:12:9b:19:b9:70:b2:29:cd:ca:0b: a9:40:ed:28:c9:c2:61:fd:ef:32:f2:d6:9d:e6:2a:df:f2:46: b3:ec:24:fe:d6:e8:47:86:0d:0a:5a:2c:2a:99:73:80:2d:05: bd:33:53:39:92:4d:06:ed:e8:ba:ac:98:82:21:d4:d7:eb:b5: c9:13:4b:45:9f:1a:14:70:34:f5:d7:b7:ad:e3:fa:71:c4:b6: ae:39:59:3e:53:02:3f:a9:79:34:1e:25:e4:9d:6f:d7:46:59: 5c:fa:d5:5d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAaUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTI4RTIxMTAvBgNVBAUTKEI0ODE5ODczMzFFMUVENDA4QjUxQ0I5RkQ4RUY0QTY1 MEFDODY2OUEwHhcNMjUwNTExMDIzMTAwWhcNMjUwNTE4MDIzMTAwWjAYMRYwFAYD VQQDEw02ODIwMGJlNC02ODMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp+PWEME0W741iFMXXHP4cctCxr+ovgmV2zZyUFFneIdSnq9J6qYLc/5Qdr2Q UYBjMqlBB4k5ATTCckidYKNOlSJDruNS17uNZNytY0tFMciYhWm1GZJ5W+bWDumg s0A3UvKQ7aXG9GNY50ahnlHbhm5EXPYaqycBwCh57TJYazcMfdoip+tJTmLkKHiZ aCWhNXMak800ntXbBxEt5H2GrhzJi6Vf/tJa5uTtXBYB52NxxaGwlTNY2jW95cee tDNsomNam9pjTlBRllFN8ECWpR94mdC0bKsmUfCiPDJxPlJZTZ6YsMFFdGVgCt5x L6OwdZUhGXzU6gyRQ/A3C/K7EwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAlNZu/R pKjs8L7eWKHz6/qYG00xMB8GA1UdIwQYMBaAFLSBmHMx4e1Ai1HLn9jvSmUKyGaa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMjhFMi85NTJGQTYzMkQy RTYxMUVEOUE1MkQ1NUFDNEY5QUUwMi90SUdZY3pIaDdVQ0xVY3VmMk85S1pRckla cG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RJR1ljekhoN1VDTFVjdWYyTzlLWlFySVpwby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MjhFMi85NTJGQTYzMkQyRTYxMUVEOUE1MkQ1NUFDNEY5QUUwMi90SUdZY3pIaDdV Q0xVY3VmMk85S1pRcklacG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQADwuOuaPMtQLh9QYe0stQZYCMYtGgtgtzvGx7fUv2ki+VZ1Uym3h4F l61EP8vOD64zH+uq1jO8K2fta1MqkrwRo6MDnSaS1qYSL6AxIctuNEUmNe/h3eTK pKUbIl8One2hnJXqA430TjaajIOqDrNbZJKTz5q6gemkDzxIznpbTtlPLFUK1TJE 7y60TVBUhoncEUg6gVYSixKbGblwsinNygupQO0oycJh/e8y8tad5irf8kaz7CT+ 1uhHhg0KWiwqmXOALQW9M1M5kk0G7ei6rJiCIdTX67XJE0tFnxoUcDT117et4/px xLauOVk+UwI/qXk0HiXknW/XRllc+tVd -----END CERTIFICATE-----Generated at Mon May 12 13:28:04 2025 by rpki-client