$ rpki-client -vvf rpki.apnic.net/member_repository/A91FD64D/370786C8999411ED8567311FC4F9AE02/tLGKJT-2KTQ3EWY13d0ZlCi2jVs.mft File: tLGKJT-2KTQ3EWY13d0ZlCi2jVs.mft (raw, json) Hash identifier: YDu4yt2sf2BY7iHVbbGywVJ6gR21g2WB/F/ZtvGqxvQ= Subject key identifier: E4:BC:EF:67:C3:AC:29:BB:0A:41:9A:8A:6D:29:C3:33:13:BA:B0:65 Authority key identifier: B4:B1:8A:25:3F:B6:29:34:37:11:66:35:DD:DD:19:94:28:B6:8D:5B Certificate issuer: /CN=A91FD64D/serialNumber=B4B18A253FB6293437116635DDDD199428B68D5B Certificate serial: 01B9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tLGKJT-2KTQ3EWY13d0ZlCi2jVs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FD64D/370786C8999411ED8567311FC4F9AE02/tLGKJT-2KTQ3EWY13d0ZlCi2jVs.mft Manifest number: 01B1 Signing time: Sun 11 May 2025 02:10:08 +0000 Manifest this update: Sun 11 May 2025 02:10:08 +0000 Manifest next update: Sun 18 May 2025 02:10:08 +0000 Files and hashes: 1: tLGKJT-2KTQ3EWY13d0ZlCi2jVs.crl (hash: 0A+WqqOANimGX4qP/N6H0+uXN4FtVwIJyVlnoCV627Y=) 2: 34BB892E449C11EEB60E1441C4F9AE02.roa (hash: XQvlP4Z6PPDTvpFje+rE615QVj8K/dlNzggLZwnPCHY=) 3: 66D00EB2449C11EE86105C41C4F9AE02.roa (hash: sFUlSAs686BHpBPHFZ6jJXEM4AvroBrl/QL/VRc6YMo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FD64D/370786C8999411ED8567311FC4F9AE02/tLGKJT-2KTQ3EWY13d0ZlCi2jVs.crl rsync://rpki.apnic.net/member_repository/A91FD64D/370786C8999411ED8567311FC4F9AE02/tLGKJT-2KTQ3EWY13d0ZlCi2jVs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tLGKJT-2KTQ3EWY13d0ZlCi2jVs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 02:10:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 441 (0x1b9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FD64D, serialNumber=B4B18A253FB6293437116635DDDD199428B68D5B Validity Not Before: May 11 02:10:08 2025 GMT Not After : May 18 02:10:08 2025 GMT Subject: CN=68200700-a6f2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:6b:7d:ee:2f:fe:b7:df:37:1d:f8:d7:e4:14: 51:40:2c:27:a0:8f:4c:08:eb:ad:7b:cd:9d:fa:de: 24:f8:06:8d:b7:da:79:1e:43:bf:e5:b8:3a:6b:35: 33:3b:fa:a5:07:ad:e8:c3:b9:04:24:4c:31:0a:64: c9:17:fa:15:e5:ac:25:27:38:8a:51:ff:b7:a9:d3: e4:b1:41:2d:f0:73:93:08:65:28:d4:b2:8d:da:d3: 5b:91:a6:68:6e:83:3a:d7:c4:4b:f8:20:df:75:11: 3b:bd:b9:a4:29:fd:21:58:1f:35:2e:c5:6f:75:bd: 2f:5a:cd:7c:3e:19:2c:b0:59:93:e1:85:8e:a3:0f: f4:39:14:ad:72:6e:b6:ff:c9:21:3e:cb:29:7d:26: a7:b8:af:95:42:2e:73:a9:3b:f1:e4:a4:21:6c:a7: 91:3f:ab:e2:47:18:01:17:ac:4c:3a:33:1d:f3:4a: c0:6d:d3:3d:c5:94:cb:9c:f7:b4:50:c1:91:39:8a: 6e:86:d0:91:a1:ed:9f:df:33:40:1b:f6:40:8b:5b: 29:6d:c1:27:45:d2:87:53:fa:23:0d:82:4b:11:8a: 6d:fa:b1:c3:a6:05:60:87:99:cb:24:fc:21:c4:f0: de:a6:d5:20:77:14:17:d9:fd:09:ed:55:11:f3:8b: bb:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:BC:EF:67:C3:AC:29:BB:0A:41:9A:8A:6D:29:C3:33:13:BA:B0:65 X509v3 Authority Key Identifier: keyid:B4:B1:8A:25:3F:B6:29:34:37:11:66:35:DD:DD:19:94:28:B6:8D:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FD64D/370786C8999411ED8567311FC4F9AE02/tLGKJT-2KTQ3EWY13d0ZlCi2jVs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tLGKJT-2KTQ3EWY13d0ZlCi2jVs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FD64D/370786C8999411ED8567311FC4F9AE02/tLGKJT-2KTQ3EWY13d0ZlCi2jVs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 47:a8:8f:55:00:65:84:49:24:3a:e2:72:1d:a6:45:3c:3b:cd: 99:5b:46:ba:25:5a:b4:53:27:5f:a6:8e:1e:34:ef:93:53:7c: f8:ae:db:e8:5f:30:8f:ed:83:39:96:0c:d1:43:db:cd:e8:80: 81:73:61:af:ab:8b:b7:fa:30:eb:4b:15:30:03:5f:f8:22:ec: b4:a7:57:4a:0f:0f:4c:6c:22:3a:81:dc:02:8c:d1:db:c1:70: b2:37:c0:b0:1b:42:49:2c:19:2c:9e:c0:60:9f:c7:8d:0a:35: 12:65:99:e4:a3:94:8e:54:d5:35:f8:6d:e8:10:a5:04:b1:3c: 99:da:13:c1:c5:4d:3e:79:a1:ea:eb:a0:aa:ed:e8:bf:03:37: 85:14:2d:2d:09:d8:a2:8c:f9:e9:5b:17:e5:d5:cf:56:09:16: 55:0c:28:02:70:3e:4a:52:1e:15:dd:a4:72:b9:f8:8f:31:43: 13:34:80:50:e2:bf:6a:7f:18:ce:6c:b8:ef:3a:f4:5f:0a:ff: f9:8e:6a:9d:32:b4:d8:12:c0:1b:bf:66:22:72:e4:b9:c0:a4: 18:13:c4:04:62:25:b4:b3:2a:d3:a4:82:35:16:f4:09:b4:89: c7:5e:2f:48:90:63:a0:f8:cd:95:57:b3:45:ed:eb:03:ae:28: 5b:4b:46:ba -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAbkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkQ2NEQxMTAvBgNVBAUTKEI0QjE4QTI1M0ZCNjI5MzQzNzExNjYzNUREREQxOTk0 MjhCNjhENUIwHhcNMjUwNTExMDIxMDA4WhcNMjUwNTE4MDIxMDA4WjAYMRYwFAYD VQQDEw02ODIwMDcwMC1hNmYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwWt97i/+t983HfjX5BRRQCwnoI9MCOute82d+t4k+AaNt9p5HkO/5bg6azUz O/qlB63ow7kEJEwxCmTJF/oV5awlJziKUf+3qdPksUEt8HOTCGUo1LKN2tNbkaZo boM618RL+CDfdRE7vbmkKf0hWB81LsVvdb0vWs18PhkssFmT4YWOow/0ORStcm62 /8khPsspfSanuK+VQi5zqTvx5KQhbKeRP6viRxgBF6xMOjMd80rAbdM9xZTLnPe0 UMGROYpuhtCRoe2f3zNAG/ZAi1spbcEnRdKHU/ojDYJLEYpt+rHDpgVgh5nLJPwh xPDeptUgdxQX2f0J7VUR84u7qQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOS872fD rCm7CkGaim0pwzMTurBlMB8GA1UdIwQYMBaAFLSxiiU/tik0NxFmNd3dGZQoto1b MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRDY0RC8zNzA3ODZDODk5 OTQxMUVEODU2NzMxMUZDNEY5QUUwMi90TEdLSlQtMktUUTNFV1kxM2QwWmxDaTJq VnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RMR0tKVC0yS1RRM0VXWTEzZDBabENpMmpWcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RDY0RC8zNzA3ODZDODk5OTQxMUVEODU2NzMxMUZDNEY5QUUwMi90TEdLSlQtMktU UTNFV1kxM2QwWmxDaTJqVnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBHqI9VAGWESSQ64nIdpkU8O82ZW0a6JVq0Uydfpo4eNO+TU3z4rtvo XzCP7YM5lgzRQ9vN6ICBc2Gvq4u3+jDrSxUwA1/4Iuy0p1dKDw9MbCI6gdwCjNHb wXCyN8CwG0JJLBksnsBgn8eNCjUSZZnko5SOVNU1+G3oEKUEsTyZ2hPBxU0+eaHq 66Cq7ei/AzeFFC0tCdiijPnpWxfl1c9WCRZVDCgCcD5KUh4V3aRyufiPMUMTNIBQ 4r9qfxjObLjvOvRfCv/5jmqdMrTYEsAbv2YicuS5wKQYE8QEYiW0syrTpII1FvQJ tInHXi9IkGOg+M2VV7NF7esDrihbS0a6 -----END CERTIFICATE-----Generated at Sun May 11 10:20:23 2025 by rpki-client