$ rpki-client -vvf rpki.apnic.net/member_repository/A91E57A9/7BBD11AC1FF311EFA3FB2C81C4F9AE02/TiWbqHpAtm2EKsjOCup4TkvXOC4.mft File: TiWbqHpAtm2EKsjOCup4TkvXOC4.mft (raw, json) Hash identifier: VZArBeSC3mRBS8FCv0v6lOPEQKjofBAkoaWeTfdVdfk= Subject key identifier: 63:06:39:34:D6:BC:D6:D1:20:44:91:C7:54:3C:4C:45:E9:98:69:F3 Authority key identifier: 4E:25:9B:A8:7A:40:B6:6D:84:2A:C8:CE:0A:EA:78:4E:4B:D7:38:2E Certificate issuer: /CN=A91E57A9/serialNumber=4E259BA87A40B66D842AC8CE0AEA784E4BD7382E Certificate serial: B5 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TiWbqHpAtm2EKsjOCup4TkvXOC4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E57A9/7BBD11AC1FF311EFA3FB2C81C4F9AE02/TiWbqHpAtm2EKsjOCup4TkvXOC4.mft Manifest number: B3 Signing time: Thu 15 May 2025 05:17:59 +0000 Manifest this update: Thu 15 May 2025 05:17:59 +0000 Manifest next update: Thu 22 May 2025 05:17:59 +0000 Files and hashes: 1: TiWbqHpAtm2EKsjOCup4TkvXOC4.crl (hash: Qml/CAQWbDKAw2yNVcgI4qBOCG/tNH3/ISn+ohVApM0=) 2: 4647BCD66E7F11EF9223EA62C4F9AE02.roa (hash: B83vyctz3B0CBY300XtJK40jQxKO2YbqnW1lhv/rnh0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E57A9/7BBD11AC1FF311EFA3FB2C81C4F9AE02/TiWbqHpAtm2EKsjOCup4TkvXOC4.crl rsync://rpki.apnic.net/member_repository/A91E57A9/7BBD11AC1FF311EFA3FB2C81C4F9AE02/TiWbqHpAtm2EKsjOCup4TkvXOC4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TiWbqHpAtm2EKsjOCup4TkvXOC4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 05:17:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 181 (0xb5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E57A9, serialNumber=4E259BA87A40B66D842AC8CE0AEA784E4BD7382E Validity Not Before: May 15 05:17:59 2025 GMT Not After : May 22 05:17:59 2025 GMT Subject: CN=68257907-bbec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:45:a6:e5:e8:b8:70:da:92:9f:02:08:f7:c8: 79:93:78:d3:bd:88:73:a0:a6:e9:b8:07:1e:b8:3b: 13:b6:5a:bb:cd:9c:8b:eb:fb:3b:0c:53:51:70:ac: 6a:72:e5:bd:89:d1:50:17:b9:6c:78:91:0e:73:e4: 46:4f:46:1a:1a:e2:eb:4c:3d:39:c8:9f:3f:e0:93: 4b:88:43:a7:5e:7a:83:f2:75:05:4d:ac:68:50:dc: 1b:1b:d7:f6:d0:34:ef:22:89:97:29:87:0e:da:d3: b5:c8:be:c1:45:b5:6c:29:4c:04:b0:ad:03:a8:3a: 61:b9:96:52:18:14:4d:01:0c:32:cc:1f:11:f3:07: 79:4a:14:ea:97:68:b9:32:64:c0:05:d3:3c:f2:e4: f7:58:e6:5b:3b:48:69:eb:bd:a8:c4:b1:6c:f8:4a: 95:59:67:c7:4c:cf:fe:39:b8:4f:10:01:e8:1c:03: 2c:80:01:ea:33:25:8d:3e:74:68:9d:75:21:c9:5c: e9:8e:60:66:fd:89:f7:60:fe:b9:6f:70:68:a6:ac: b4:8d:d6:ef:00:87:59:9a:aa:d9:69:4c:77:37:2b: 01:00:99:94:a4:c4:26:a7:f6:b1:cf:1e:cf:5b:42: 5e:13:7c:2d:92:cf:27:a1:c3:3c:14:e6:8e:0f:64: 56:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:06:39:34:D6:BC:D6:D1:20:44:91:C7:54:3C:4C:45:E9:98:69:F3 X509v3 Authority Key Identifier: keyid:4E:25:9B:A8:7A:40:B6:6D:84:2A:C8:CE:0A:EA:78:4E:4B:D7:38:2E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E57A9/7BBD11AC1FF311EFA3FB2C81C4F9AE02/TiWbqHpAtm2EKsjOCup4TkvXOC4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TiWbqHpAtm2EKsjOCup4TkvXOC4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E57A9/7BBD11AC1FF311EFA3FB2C81C4F9AE02/TiWbqHpAtm2EKsjOCup4TkvXOC4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4b:91:7a:a7:9c:04:ea:eb:ae:75:ca:90:b4:e2:78:e9:4a:ad: b8:37:a3:29:7d:58:0b:24:a7:a1:3e:ff:bf:ad:ea:7f:66:74: b3:8f:a7:5d:38:74:ff:c7:e3:3e:ea:79:8a:7e:41:9c:69:c8: d8:9d:e2:bf:7d:50:9b:cd:6c:e5:44:7d:a0:fc:6e:62:dd:b7: 2c:95:a4:0a:91:eb:97:d5:6e:4a:33:fb:b2:c7:88:4d:05:f9: 09:49:80:c3:90:f9:1d:91:69:af:ff:df:d3:3e:10:32:89:0f: dc:23:37:89:69:61:cb:fc:fb:c8:90:dd:b1:c5:9e:e2:f5:1b: 3a:cf:00:41:4f:63:88:f9:e3:ed:70:18:bc:08:25:90:5c:17: 64:f9:1f:dc:0c:8c:cc:c9:bd:2d:d0:d3:51:42:cb:ea:7e:5f: e5:d3:54:75:ec:cd:6a:46:98:8d:d4:3b:b7:bc:43:c0:e6:b1: 39:02:5c:f8:bb:9f:94:c2:b5:66:d8:81:81:3a:31:a4:36:eb: e4:94:33:d8:9e:57:ab:5a:5b:7e:77:be:a6:f7:c5:e8:47:42: 89:44:f7:6c:ad:2b:42:b8:3c:6f:7f:44:3c:7b:50:4d:3b:81: ba:ec:84:81:00:28:a8:b4:d5:3b:27:44:3a:a9:59:de:e3:5a: 15:60:de:90 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTU3QTkxMTAvBgNVBAUTKDRFMjU5QkE4N0E0MEI2NkQ4NDJBQzhDRTBBRUE3ODRF NEJENzM4MkUwHhcNMjUwNTE1MDUxNzU5WhcNMjUwNTIyMDUxNzU5WjAYMRYwFAYD VQQDEw02ODI1NzkwNy1iYmVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAykWm5ei4cNqSnwII98h5k3jTvYhzoKbpuAceuDsTtlq7zZyL6/s7DFNRcKxq cuW9idFQF7lseJEOc+RGT0YaGuLrTD05yJ8/4JNLiEOnXnqD8nUFTaxoUNwbG9f2 0DTvIomXKYcO2tO1yL7BRbVsKUwEsK0DqDphuZZSGBRNAQwyzB8R8wd5ShTql2i5 MmTABdM88uT3WOZbO0hp672oxLFs+EqVWWfHTM/+ObhPEAHoHAMsgAHqMyWNPnRo nXUhyVzpjmBm/Yn3YP65b3Bopqy0jdbvAIdZmqrZaUx3NysBAJmUpMQmp/axzx7P W0JeE3wtks8nocM8FOaOD2RWlQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGMGOTTW vNbRIESRx1Q8TEXpmGnzMB8GA1UdIwQYMBaAFE4lm6h6QLZthCrIzgrqeE5L1zgu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNTdBOS83QkJEMTFBQzFG RjMxMUVGQTNGQjJDODFDNEY5QUUwMi9UaVdicUhwQXRtMkVLc2pPQ3VwNFRrdlhP QzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1RpV2JxSHBBdG0yRUtzak9DdXA0VGt2WE9DNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NTdBOS83QkJEMTFBQzFGRjMxMUVGQTNGQjJDODFDNEY5QUUwMi9UaVdicUhwQXRt MkVLc2pPQ3VwNFRrdlhPQzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBLkXqnnATq6651ypC04njpSq24N6MpfVgLJKehPv+/rep/ZnSzj6dd OHT/x+M+6nmKfkGcacjYneK/fVCbzWzlRH2g/G5i3bcslaQKkeuX1W5KM/uyx4hN BfkJSYDDkPkdkWmv/9/TPhAyiQ/cIzeJaWHL/PvIkN2xxZ7i9Rs6zwBBT2OI+ePt cBi8CCWQXBdk+R/cDIzMyb0t0NNRQsvqfl/l01R17M1qRpiN1Du3vEPA5rE5Alz4 u5+UwrVm2IGBOjGkNuvklDPYnlerWlt+d76m98XoR0KJRPdsrStCuDxvf0Q8e1BN O4G67ISBACiotNU7J0Q6qVne41oVYN6Q -----END CERTIFICATE-----Generated at Thu May 15 19:51:01 2025 by rpki-client