$ rpki-client -vvf rpki.apnic.net/member_repository/A91F4B3F/1CDF87E4516011EEB0A5826AC4F9AE02/TnVPewjIAAZ84HEJetOUaJDao2U.mft File: TnVPewjIAAZ84HEJetOUaJDao2U.mft (raw, json) Hash identifier: 1s1NuDQKHFgCSo090FFSp6IokaZg34+QdYN3/wT5cKA= Subject key identifier: 66:59:8A:AF:B9:7A:65:55:E9:63:84:75:C9:79:D1:FD:1D:33:3E:42 Authority key identifier: 4E:75:4F:7B:08:C8:00:06:7C:E0:71:09:7A:D3:94:68:90:DA:A3:65 Certificate issuer: /CN=A91F4B3F/serialNumber=4E754F7B08C800067CE071097AD3946890DAA365 Certificate serial: 013C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TnVPewjIAAZ84HEJetOUaJDao2U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F4B3F/1CDF87E4516011EEB0A5826AC4F9AE02/TnVPewjIAAZ84HEJetOUaJDao2U.mft Manifest number: 0139 Signing time: Sun 11 May 2025 03:18:14 +0000 Manifest this update: Sun 11 May 2025 03:18:14 +0000 Manifest next update: Sun 18 May 2025 03:18:14 +0000 Files and hashes: 1: TnVPewjIAAZ84HEJetOUaJDao2U.crl (hash: 7sEPN2i96oEmwNs9fgv67YAIIBeC9lL/l2x2K2ZlVsg=) 2: D875D57EF30611EEAFFC0C66C4F9AE02.roa (hash: DsVxbJQBFvHguy7znDHJZ9CR2UmTMow8V9P9QuFVJ9Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F4B3F/1CDF87E4516011EEB0A5826AC4F9AE02/TnVPewjIAAZ84HEJetOUaJDao2U.crl rsync://rpki.apnic.net/member_repository/A91F4B3F/1CDF87E4516011EEB0A5826AC4F9AE02/TnVPewjIAAZ84HEJetOUaJDao2U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TnVPewjIAAZ84HEJetOUaJDao2U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 03:18:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 316 (0x13c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F4B3F, serialNumber=4E754F7B08C800067CE071097AD3946890DAA365 Validity Not Before: May 11 03:18:14 2025 GMT Not After : May 18 03:18:14 2025 GMT Subject: CN=682016f6-5931 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:3d:5d:48:0b:5b:08:ae:f4:1e:6a:76:9c:83: b0:98:8a:74:b9:81:bd:78:ec:33:9b:9b:00:bc:94: 1b:95:ff:49:c9:9b:d9:94:15:90:19:69:88:c1:67: 9d:96:7a:f7:84:06:c9:7c:05:3a:ab:ae:17:3a:f6: 9d:e7:54:b3:13:a0:4d:d0:b1:66:5f:49:3b:e3:e5: 3a:e8:51:95:5b:51:e9:c6:52:0e:b9:11:13:b1:b9: b5:f2:f9:77:3b:b8:df:59:11:a0:85:31:af:c4:97: af:94:92:42:93:ee:d7:d5:b3:2f:7e:36:0f:f9:e8: 8c:c6:ff:67:42:5e:e2:7e:08:c5:3c:c4:5b:e0:b9: 58:e1:c1:3f:1a:bc:d8:04:2c:1a:5b:1e:76:6c:61: bb:4a:6e:c8:5e:fb:97:25:a7:0c:a9:f5:f6:30:55: 4e:92:8f:75:2f:d7:aa:96:2e:d9:ad:5c:50:87:c8: 1e:4e:34:32:78:c4:f2:f6:44:96:e2:e1:60:28:cd: 2a:8e:b4:b6:a1:f6:d1:e8:0f:89:2d:f1:a1:48:1e: ad:03:1a:06:16:f1:a3:84:96:72:a1:9f:2c:08:9f: 21:e8:64:3a:dd:b8:25:48:83:dd:2d:a6:10:88:73: 0b:b7:5d:25:44:9e:e9:e7:f3:b4:76:01:68:05:6c: 5c:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:59:8A:AF:B9:7A:65:55:E9:63:84:75:C9:79:D1:FD:1D:33:3E:42 X509v3 Authority Key Identifier: keyid:4E:75:4F:7B:08:C8:00:06:7C:E0:71:09:7A:D3:94:68:90:DA:A3:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F4B3F/1CDF87E4516011EEB0A5826AC4F9AE02/TnVPewjIAAZ84HEJetOUaJDao2U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TnVPewjIAAZ84HEJetOUaJDao2U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F4B3F/1CDF87E4516011EEB0A5826AC4F9AE02/TnVPewjIAAZ84HEJetOUaJDao2U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6b:a9:7f:16:0a:30:e0:51:4d:0e:bd:db:6e:7b:ba:14:c4:1b: d0:b8:de:b4:6c:5b:6b:ff:69:bb:17:83:0e:49:4b:a1:19:c5: 1b:db:b0:01:cd:73:93:c8:98:93:d4:1b:91:e5:e3:85:2a:76: c2:48:68:2e:82:f5:21:ae:ca:d9:26:54:36:b5:c8:13:a2:a3: 9d:9b:9a:88:fe:c6:7b:ff:ac:3c:94:73:38:d7:72:8f:2b:45: c5:36:76:eb:91:90:db:4a:cb:c9:ef:b1:fc:a8:98:bc:44:ba: 45:af:35:a0:69:16:62:69:82:88:04:0d:82:15:bb:f5:f4:77: dc:b9:c4:c8:85:f7:42:6c:7d:37:e2:2d:8f:c7:36:0a:ed:04: 18:e0:96:3c:d4:64:9c:ec:fb:e8:39:fe:27:79:72:4e:f4:fb: 2c:f9:82:49:e7:e3:36:e6:91:c3:64:71:23:72:fb:34:b0:96: 2e:a1:d3:c8:c7:ce:7e:08:60:21:e1:5c:7f:eb:d4:f4:ad:ac: a5:bd:a9:d0:5d:e5:ce:d5:5b:cf:f8:f3:86:78:6b:52:69:fc: 71:ad:99:6c:a8:35:da:97:22:5b:fc:f4:6f:47:71:da:c1:1c: db:98:84:6f:e6:4c:d7:50:a8:30:04:aa:fb:2f:73:d1:da:cb: 0f:50:95:b8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjRCM0YxMTAvBgNVBAUTKDRFNzU0RjdCMDhDODAwMDY3Q0UwNzEwOTdBRDM5NDY4 OTBEQUEzNjUwHhcNMjUwNTExMDMxODE0WhcNMjUwNTE4MDMxODE0WjAYMRYwFAYD VQQDEw02ODIwMTZmNi01OTMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvT1dSAtbCK70Hmp2nIOwmIp0uYG9eOwzm5sAvJQblf9JyZvZlBWQGWmIwWed lnr3hAbJfAU6q64XOvad51SzE6BN0LFmX0k74+U66FGVW1HpxlIOuRETsbm18vl3 O7jfWRGghTGvxJevlJJCk+7X1bMvfjYP+eiMxv9nQl7ifgjFPMRb4LlY4cE/GrzY BCwaWx52bGG7Sm7IXvuXJacMqfX2MFVOko91L9eqli7ZrVxQh8geTjQyeMTy9kSW 4uFgKM0qjrS2ofbR6A+JLfGhSB6tAxoGFvGjhJZyoZ8sCJ8h6GQ63bglSIPdLaYQ iHMLt10lRJ7p5/O0dgFoBWxcaQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGZZiq+5 emVV6WOEdcl50f0dMz5CMB8GA1UdIwQYMBaAFE51T3sIyAAGfOBxCXrTlGiQ2qNl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNEIzRi8xQ0RGODdFNDUx NjAxMUVFQjBBNTgyNkFDNEY5QUUwMi9UblZQZXdqSUFBWjg0SEVKZXRPVWFKRGFv MlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RuVlBld2pJQUFaODRIRUpldE9VYUpEYW8yVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NEIzRi8xQ0RGODdFNDUxNjAxMUVFQjBBNTgyNkFDNEY5QUUwMi9UblZQZXdqSUFB Wjg0SEVKZXRPVWFKRGFvMlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBrqX8WCjDgUU0Ovdtue7oUxBvQuN60bFtr/2m7F4MOSUuhGcUb27AB zXOTyJiT1BuR5eOFKnbCSGgugvUhrsrZJlQ2tcgToqOdm5qI/sZ7/6w8lHM413KP K0XFNnbrkZDbSsvJ77H8qJi8RLpFrzWgaRZiaYKIBA2CFbv19HfcucTIhfdCbH03 4i2PxzYK7QQY4JY81GSc7PvoOf4neXJO9Pss+YJJ5+M25pHDZHEjcvs0sJYuodPI x85+CGAh4Vx/69T0raylvanQXeXO1VvP+POGeGtSafxxrZlsqDXalyJb/PRvR3Ha wRzbmIRv5kzXUKgwBKr7L3PR2ssPUJW4 -----END CERTIFICATE-----Generated at Mon May 12 13:35:07 2025 by rpki-client