$ rpki-client -vvf rpki.apnic.net/member_repository/A91F372C/6796D8E25ECE11EFA9A8B03EC4F9AE02/TGLx4QuIP11XhNY1dA_SMDTOv-I.mft File: TGLx4QuIP11XhNY1dA_SMDTOv-I.mft (raw, json) Hash identifier: Z8EFxk35x9cjrmm5RtFzizQVNIJDY7ElwsIQQFW8xlI= Subject key identifier: 60:2E:CE:88:23:C7:7F:5B:AB:FB:F7:48:F1:F6:67:67:75:00:E7:44 Authority key identifier: 4C:62:F1:E1:0B:88:3F:5D:57:84:D6:35:74:0F:D2:30:34:CE:BF:E2 Certificate issuer: /CN=A91F372C/serialNumber=4C62F1E10B883F5D5784D635740FD23034CEBFE2 Certificate serial: 99 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TGLx4QuIP11XhNY1dA_SMDTOv-I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F372C/6796D8E25ECE11EFA9A8B03EC4F9AE02/TGLx4QuIP11XhNY1dA_SMDTOv-I.mft Manifest number: 91 Signing time: Fri 09 May 2025 05:34:33 +0000 Manifest this update: Fri 09 May 2025 05:34:32 +0000 Manifest next update: Fri 16 May 2025 05:34:32 +0000 Files and hashes: 1: TGLx4QuIP11XhNY1dA_SMDTOv-I.crl (hash: vhjvU5An7gEu7GszQk9SoHOsG73FONwGvrnf0Z9gMBI=) 2: A98932365ED311EF9DE3E178C4F9AE02.roa (hash: yKRhd9URAtdD8ZNuj/dQF3lpNBMNfFXTujt18TvU+XY=) 3: DD015FDE639D11EFB9BDBE62C4F9AE02.roa (hash: SDxl8l5CQA8d0jF8r7Sa6q9ALS3hHi/3Jt4li1lWZ7Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F372C/6796D8E25ECE11EFA9A8B03EC4F9AE02/TGLx4QuIP11XhNY1dA_SMDTOv-I.crl rsync://rpki.apnic.net/member_repository/A91F372C/6796D8E25ECE11EFA9A8B03EC4F9AE02/TGLx4QuIP11XhNY1dA_SMDTOv-I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TGLx4QuIP11XhNY1dA_SMDTOv-I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 16 May 2025 05:34:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 153 (0x99) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F372C, serialNumber=4C62F1E10B883F5D5784D635740FD23034CEBFE2 Validity Not Before: May 9 05:34:32 2025 GMT Not After : May 16 05:34:32 2025 GMT Subject: CN=681d93e8-98d3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:32:5a:82:e5:ab:ec:27:dd:7f:c3:6c:ad:b5: 66:17:bf:7e:52:8b:6e:6e:70:b2:40:57:e4:79:f2: 69:d4:3c:44:0a:d8:85:5c:47:7c:19:81:8b:12:25: 0d:59:12:66:59:53:b7:c8:e6:73:33:4a:01:fc:97: ad:e8:61:63:01:7f:3b:f3:fc:b2:db:1a:3c:3a:25: e2:61:e1:65:22:60:b5:ba:b7:2b:df:fe:4b:64:f3: 46:f3:14:9e:bf:a9:a7:9e:aa:34:b6:1c:6a:ea:82: 9d:b8:1b:57:d2:17:d1:b1:57:11:7a:48:42:83:51: 57:e1:b4:2a:65:e1:f0:4a:c3:d1:5f:7b:60:7c:d0: d3:6e:d1:95:45:f2:55:bc:d5:c0:41:02:0f:ed:8f: 42:9f:29:07:78:7c:48:7c:dd:88:c3:15:55:ff:b4: 8b:06:6f:ae:d5:7f:b5:3e:0b:19:a4:ba:c1:6b:62: 1b:42:3f:e4:82:d4:9c:07:fd:ab:8a:bb:d4:d8:96: cc:2e:92:23:02:d8:b3:58:8e:26:c5:ec:90:0e:bb: 9f:b9:84:a1:b6:17:27:df:15:e9:3d:c6:1a:fd:c8: ad:e4:16:cd:e8:d8:80:ea:64:11:bc:3b:73:ae:87: 34:40:19:d7:6d:92:cf:23:e1:6c:3a:60:99:a4:fb: 9d:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:2E:CE:88:23:C7:7F:5B:AB:FB:F7:48:F1:F6:67:67:75:00:E7:44 X509v3 Authority Key Identifier: keyid:4C:62:F1:E1:0B:88:3F:5D:57:84:D6:35:74:0F:D2:30:34:CE:BF:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F372C/6796D8E25ECE11EFA9A8B03EC4F9AE02/TGLx4QuIP11XhNY1dA_SMDTOv-I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TGLx4QuIP11XhNY1dA_SMDTOv-I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F372C/6796D8E25ECE11EFA9A8B03EC4F9AE02/TGLx4QuIP11XhNY1dA_SMDTOv-I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c8:b0:ec:99:a8:9b:87:d9:b0:6f:b6:f6:c8:c5:24:cc:56:4b: 7f:63:73:56:f3:97:df:6b:8f:9d:7c:4a:df:9e:11:27:23:4c: 67:1f:a8:32:37:87:c4:bd:32:62:95:16:4d:42:77:6e:63:61: b1:b2:e5:83:c4:e9:26:4c:b3:bc:d6:0a:42:2a:89:80:75:b1: 82:a5:a1:ab:df:54:4f:64:1a:9a:37:23:88:51:7a:35:39:7d: 85:eb:7a:cb:23:02:e0:82:34:90:4b:b3:4e:b3:68:e1:5a:0c: 0f:69:36:f9:35:c8:19:fb:0b:fb:3e:43:ea:3c:49:c3:9b:60: 86:98:63:52:71:f7:70:a6:30:d4:ee:c0:73:87:cb:02:ff:e0: 24:74:c5:64:5d:a9:c2:61:91:88:c2:47:13:44:61:03:f1:c3: d7:5d:8f:7c:01:18:48:25:06:0f:a7:0f:ba:c4:de:ac:42:e4: 28:8b:1e:0f:11:c8:50:d4:c5:8d:32:09:fb:3a:f8:f6:ef:2c: 6b:60:eb:5e:cf:2f:00:ea:3c:ee:68:c1:0a:df:a7:ba:09:44: 00:4e:12:51:cf:0e:57:a7:6c:65:91:a1:78:1d:05:81:08:31: 55:9e:de:0e:50:99:13:49:ff:94:78:bd:ad:8d:36:44:60:3e: 54:6f:f9:47 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjM3MkMxMTAvBgNVBAUTKDRDNjJGMUUxMEI4ODNGNUQ1Nzg0RDYzNTc0MEZEMjMw MzRDRUJGRTIwHhcNMjUwNTA5MDUzNDMyWhcNMjUwNTE2MDUzNDMyWjAYMRYwFAYD VQQDEw02ODFkOTNlOC05OGQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmzJaguWr7Cfdf8NsrbVmF79+UotubnCyQFfkefJp1DxECtiFXEd8GYGLEiUN WRJmWVO3yOZzM0oB/Jet6GFjAX878/yy2xo8OiXiYeFlImC1urcr3/5LZPNG8xSe v6mnnqo0thxq6oKduBtX0hfRsVcRekhCg1FX4bQqZeHwSsPRX3tgfNDTbtGVRfJV vNXAQQIP7Y9CnykHeHxIfN2IwxVV/7SLBm+u1X+1PgsZpLrBa2IbQj/kgtScB/2r irvU2JbMLpIjAtizWI4mxeyQDrufuYShthcn3xXpPcYa/cit5BbN6NiA6mQRvDtz roc0QBnXbZLPI+FsOmCZpPudRQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGAuzogj x39bq/v3SPH2Z2d1AOdEMB8GA1UdIwQYMBaAFExi8eELiD9dV4TWNXQP0jA0zr/i MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMzcyQy82Nzk2RDhFMjVF Q0UxMUVGQTlBOEIwM0VDNEY5QUUwMi9UR0x4NFF1SVAxMVhoTlkxZEFfU01EVE92 LUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RHTHg0UXVJUDExWGhOWTFkQV9TTURUT3YtSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MzcyQy82Nzk2RDhFMjVFQ0UxMUVGQTlBOEIwM0VDNEY5QUUwMi9UR0x4NFF1SVAx MVhoTlkxZEFfU01EVE92LUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDIsOyZqJuH2bBvtvbIxSTMVkt/Y3NW85ffa4+dfErfnhEnI0xnH6gy N4fEvTJilRZNQnduY2GxsuWDxOkmTLO81gpCKomAdbGCpaGr31RPZBqaNyOIUXo1 OX2F63rLIwLggjSQS7NOs2jhWgwPaTb5NcgZ+wv7PkPqPEnDm2CGmGNScfdwpjDU 7sBzh8sC/+AkdMVkXanCYZGIwkcTRGED8cPXXY98ARhIJQYPpw+6xN6sQuQoix4P EchQ1MWNMgn7Ovj27yxrYOtezy8A6jzuaMEK36e6CUQAThJRzw5Xp2xlkaF4HQWB CDFVnt4OUJkTSf+UeL2tjTZEYD5Ub/lH -----END CERTIFICATE-----Generated at Sun May 11 04:28:41 2025 by rpki-client