$ rpki-client -vvf rpki.apnic.net/member_repository/A91F372C/6796D8E25ECE11EFA9A8B03EC4F9AE02/TGLx4QuIP11XhNY1dA_SMDTOv-I.mft File: TGLx4QuIP11XhNY1dA_SMDTOv-I.mft (raw, json) Hash identifier: yUiEK+oF4Z8sn6VuorDsTC1DM5PklEwYraAdDhY5K48= Subject key identifier: 01:B9:AA:D0:50:9F:65:37:CB:16:5F:96:70:35:4C:E1:FF:D3:EC:19 Authority key identifier: 4C:62:F1:E1:0B:88:3F:5D:57:84:D6:35:74:0F:D2:30:34:CE:BF:E2 Certificate issuer: /CN=A91F372C/serialNumber=4C62F1E10B883F5D5784D635740FD23034CEBFE2 Certificate serial: B2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TGLx4QuIP11XhNY1dA_SMDTOv-I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F372C/6796D8E25ECE11EFA9A8B03EC4F9AE02/TGLx4QuIP11XhNY1dA_SMDTOv-I.mft Manifest number: AA Signing time: Sun 29 Jun 2025 05:16:12 +0000 Manifest this update: Sun 29 Jun 2025 05:16:11 +0000 Manifest next update: Sun 06 Jul 2025 05:16:11 +0000 Files and hashes: 1: TGLx4QuIP11XhNY1dA_SMDTOv-I.crl (hash: gD/TexxHcsNAI0aAfCgpq9XrUSyqYWpQHr4VWB11VXc=) 2: A98932365ED311EF9DE3E178C4F9AE02.roa (hash: yKRhd9URAtdD8ZNuj/dQF3lpNBMNfFXTujt18TvU+XY=) 3: DD015FDE639D11EFB9BDBE62C4F9AE02.roa (hash: SDxl8l5CQA8d0jF8r7Sa6q9ALS3hHi/3Jt4li1lWZ7Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F372C/6796D8E25ECE11EFA9A8B03EC4F9AE02/TGLx4QuIP11XhNY1dA_SMDTOv-I.crl rsync://rpki.apnic.net/member_repository/A91F372C/6796D8E25ECE11EFA9A8B03EC4F9AE02/TGLx4QuIP11XhNY1dA_SMDTOv-I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TGLx4QuIP11XhNY1dA_SMDTOv-I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 06 Jul 2025 05:16:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 178 (0xb2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F372C, serialNumber=4C62F1E10B883F5D5784D635740FD23034CEBFE2 Validity Not Before: Jun 29 05:16:11 2025 GMT Not After : Jul 6 05:16:11 2025 GMT Subject: CN=6860cc1c-b4fe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:fd:62:e5:aa:49:5e:96:8c:7f:72:2b:ad:ea: 67:08:4e:8c:f1:e0:28:12:19:d2:3a:12:39:bf:b7: 58:45:3c:6e:fa:37:98:4d:73:fa:a6:d9:74:74:e5: df:28:03:e0:b6:ff:ea:63:bb:eb:c8:8b:82:7e:c4: a6:8a:94:68:ee:d1:f9:8b:ca:fd:b6:10:70:b0:7d: 4e:35:46:ca:6b:a2:24:19:37:39:4f:74:f9:02:87: 3a:a5:b9:c2:4d:21:31:50:11:d9:c4:51:1a:15:55: 11:63:da:22:d3:41:8c:18:b0:f5:45:79:c8:0c:27: e9:b3:fc:11:e5:a0:d9:4f:cc:59:af:00:4f:da:21: 21:ee:df:cb:76:37:1e:66:83:f1:af:72:8b:da:68: 3f:ba:71:2f:a3:08:59:e0:c3:1e:35:f4:ca:01:4a: fb:a3:cf:ab:75:77:71:be:c5:bb:d3:dc:33:38:b3: 09:d0:7f:5a:90:d9:2c:3a:c6:3d:ca:a5:e5:80:b0: 27:d0:c0:b2:e9:d0:d3:ba:fc:ee:eb:4c:92:32:31: 77:79:be:e2:df:47:d5:88:7c:3b:78:4b:fa:b9:ff: 3c:56:7d:e9:19:09:37:76:93:d4:f4:e9:1a:41:05: 76:4d:3f:4c:a5:c1:c7:b4:21:f1:ee:b2:55:bb:43: 4e:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:B9:AA:D0:50:9F:65:37:CB:16:5F:96:70:35:4C:E1:FF:D3:EC:19 X509v3 Authority Key Identifier: keyid:4C:62:F1:E1:0B:88:3F:5D:57:84:D6:35:74:0F:D2:30:34:CE:BF:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F372C/6796D8E25ECE11EFA9A8B03EC4F9AE02/TGLx4QuIP11XhNY1dA_SMDTOv-I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TGLx4QuIP11XhNY1dA_SMDTOv-I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F372C/6796D8E25ECE11EFA9A8B03EC4F9AE02/TGLx4QuIP11XhNY1dA_SMDTOv-I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 69:45:35:77:f2:0e:c6:77:7c:6e:cf:8c:c0:e9:21:9b:89:d3: 66:65:1a:b9:a3:61:f0:d7:fc:1c:f8:0b:2b:c9:b0:7c:c9:84: 21:b2:dc:ab:76:ac:e2:2d:87:09:ee:0a:1c:7a:1f:74:ed:5a: 25:0d:c4:34:11:09:45:97:91:4a:0a:48:b4:f4:aa:13:41:4b: 5c:35:42:87:ab:2b:0e:7a:90:e7:55:b1:a2:d9:7b:ee:19:d3: e0:ec:bd:ee:33:6b:3e:40:a3:cc:b0:0a:e3:94:db:42:26:a3: d6:a4:15:dc:82:5a:b3:b6:eb:32:4b:9e:79:24:78:a9:34:35: a2:3d:bf:b1:cd:f0:1e:92:9c:12:87:6a:c4:68:a0:5d:cc:2f: 2f:f0:39:e7:03:f6:a5:6f:92:7c:e9:73:f4:c3:4b:5d:93:0f: 35:7e:61:e0:f0:03:2c:59:9f:76:52:2c:c5:9c:cb:c1:69:58: b0:7d:86:2c:87:16:47:0f:9a:11:6f:dd:39:2f:34:3b:a6:40: 39:7d:9e:2d:57:eb:66:b3:06:81:cc:0e:9a:b4:50:d1:3d:af: 3a:27:60:71:7f:3a:55:d3:0d:95:aa:20:11:b0:a5:17:4a:68: 9b:6e:a1:f6:4e:4b:05:a9:a6:56:f4:fe:6b:63:51:da:84:6d: 4e:74:4d:02 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjM3MkMxMTAvBgNVBAUTKDRDNjJGMUUxMEI4ODNGNUQ1Nzg0RDYzNTc0MEZEMjMw MzRDRUJGRTIwHhcNMjUwNjI5MDUxNjExWhcNMjUwNzA2MDUxNjExWjAYMRYwFAYD VQQDEw02ODYwY2MxYy1iNGZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtv1i5apJXpaMf3IrrepnCE6M8eAoEhnSOhI5v7dYRTxu+jeYTXP6ptl0dOXf KAPgtv/qY7vryIuCfsSmipRo7tH5i8r9thBwsH1ONUbKa6IkGTc5T3T5Aoc6pbnC TSExUBHZxFEaFVURY9oi00GMGLD1RXnIDCfps/wR5aDZT8xZrwBP2iEh7t/Ldjce ZoPxr3KL2mg/unEvowhZ4MMeNfTKAUr7o8+rdXdxvsW709wzOLMJ0H9akNksOsY9 yqXlgLAn0MCy6dDTuvzu60ySMjF3eb7i30fViHw7eEv6uf88Vn3pGQk3dpPU9Oka QQV2TT9MpcHHtCHx7rJVu0NOewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAG5qtBQ n2U3yxZflnA1TOH/0+wZMB8GA1UdIwQYMBaAFExi8eELiD9dV4TWNXQP0jA0zr/i MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMzcyQy82Nzk2RDhFMjVF Q0UxMUVGQTlBOEIwM0VDNEY5QUUwMi9UR0x4NFF1SVAxMVhoTlkxZEFfU01EVE92 LUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RHTHg0UXVJUDExWGhOWTFkQV9TTURUT3YtSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MzcyQy82Nzk2RDhFMjVFQ0UxMUVGQTlBOEIwM0VDNEY5QUUwMi9UR0x4NFF1SVAx MVhoTlkxZEFfU01EVE92LUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBpRTV38g7Gd3xuz4zA6SGbidNmZRq5o2Hw1/wc+AsrybB8yYQhstyr dqziLYcJ7goceh907VolDcQ0EQlFl5FKCki09KoTQUtcNUKHqysOepDnVbGi2Xvu GdPg7L3uM2s+QKPMsArjlNtCJqPWpBXcglqztusyS555JHipNDWiPb+xzfAekpwS h2rEaKBdzC8v8DnnA/alb5J86XP0w0tdkw81fmHg8AMsWZ92UizFnMvBaViwfYYs hxZHD5oRb905LzQ7pkA5fZ4tV+tmswaBzA6atFDRPa86J2BxfzpV0w2VqiARsKUX SmibbqH2TksFqaZW9P5rY1HahG1OdE0C -----END CERTIFICATE-----Generated at Tue Jul 1 06:58:10 2025 by rpki-client