$ rpki-client -vvf rpki.apnic.net/member_repository/A91116C7/C856D6C4C6C611E882A41260C4F9AE02/tnwkXksr7q0jwfBd0w_5B32HuOY.mft File: tnwkXksr7q0jwfBd0w_5B32HuOY.mft (raw, json) Hash identifier: PF2fgWZfjnYYq70J0hZFP3Vahw/gTgzPDL1h6OBqEzA= Subject key identifier: 19:ED:28:0D:B7:18:A8:96:E0:F7:D9:DC:98:37:87:2E:4D:C5:6B:FE Authority key identifier: B6:7C:24:5E:4B:2B:EE:AD:23:C1:F0:5D:D3:0F:F9:07:7D:87:B8:E6 Certificate issuer: /CN=A91116C7/serialNumber=B67C245E4B2BEEAD23C1F05DD30FF9077D87B8E6 Certificate serial: 1288 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tnwkXksr7q0jwfBd0w_5B32HuOY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91116C7/C856D6C4C6C611E882A41260C4F9AE02/tnwkXksr7q0jwfBd0w_5B32HuOY.mft Manifest number: 1281 Signing time: Thu 24 Apr 2025 17:06:36 +0000 Manifest this update: Thu 24 Apr 2025 17:06:36 +0000 Manifest next update: Thu 01 May 2025 17:06:36 +0000 Files and hashes: 1: tnwkXksr7q0jwfBd0w_5B32HuOY.crl (hash: 2OFOROKP6JboqL7GDb+QrC+H7klPYiIoxt1UN7DeMPY=) 2: 0CAF01A6C6C811E8AECD6165C4F9AE02.roa (hash: n2FBgQHuh988fwkOcnAooQ/jXQmiLgbdWeucP9Cz7sg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91116C7/C856D6C4C6C611E882A41260C4F9AE02/tnwkXksr7q0jwfBd0w_5B32HuOY.crl rsync://rpki.apnic.net/member_repository/A91116C7/C856D6C4C6C611E882A41260C4F9AE02/tnwkXksr7q0jwfBd0w_5B32HuOY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tnwkXksr7q0jwfBd0w_5B32HuOY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 17:06:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4744 (0x1288) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91116C7, serialNumber=B67C245E4B2BEEAD23C1F05DD30FF9077D87B8E6 Validity Not Before: Apr 24 17:06:36 2025 GMT Not After : May 1 17:06:36 2025 GMT Subject: CN=680a6f9c-55f5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:53:65:89:fa:18:99:4d:88:f4:df:1e:d1:86: 3c:62:20:23:f6:87:94:46:51:b5:63:c7:f9:3f:4d: 65:b9:d1:71:ec:c3:e0:32:24:77:fe:b2:19:26:12: 43:46:1b:6c:08:ec:b4:50:f3:d6:b7:1c:7a:93:86: d3:da:89:8a:fb:8c:b8:0d:a3:35:46:25:2b:4d:e6: 69:d5:70:60:69:c5:71:3f:51:1c:d3:8f:c3:cb:55: c3:91:08:cd:4e:3e:64:9c:d4:d5:03:57:a0:c4:dd: 0b:1c:c9:45:66:b6:ae:5a:27:15:ed:ad:21:a2:6c: d6:26:24:4b:20:30:29:df:61:95:d0:c1:11:0a:c5: 94:55:c5:c1:1a:4c:0f:48:a9:b7:dd:ea:c6:30:ef: cf:db:bd:8a:0e:a8:70:11:e3:0c:ae:5d:4a:3b:7f: 1b:23:8a:19:39:ce:13:e4:82:b5:86:28:bc:c9:e1: d8:6e:8a:bd:83:75:8a:d4:ab:2b:af:20:0f:46:44: 45:71:40:98:10:36:b0:21:2d:fd:f9:2f:0a:b0:5f: b2:5e:b5:32:29:31:15:ae:cf:87:ec:17:cc:14:77: 6a:9a:25:fe:b8:2c:12:c9:6b:00:31:2f:87:cb:b8: e0:1e:10:13:2b:3d:a3:6e:17:b4:e7:9c:06:2a:a4: ba:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:ED:28:0D:B7:18:A8:96:E0:F7:D9:DC:98:37:87:2E:4D:C5:6B:FE X509v3 Authority Key Identifier: keyid:B6:7C:24:5E:4B:2B:EE:AD:23:C1:F0:5D:D3:0F:F9:07:7D:87:B8:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91116C7/C856D6C4C6C611E882A41260C4F9AE02/tnwkXksr7q0jwfBd0w_5B32HuOY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tnwkXksr7q0jwfBd0w_5B32HuOY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91116C7/C856D6C4C6C611E882A41260C4F9AE02/tnwkXksr7q0jwfBd0w_5B32HuOY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6b:7b:98:f3:85:bc:d4:8c:ac:df:7e:1f:a9:4c:70:7c:35:47: 73:5a:83:f5:a9:2e:1d:7f:73:71:c2:01:35:ef:a3:02:6e:2f: b2:d0:8c:f1:8d:f6:bb:c4:60:f0:a8:2c:af:5b:8f:70:c6:52: 13:db:24:f5:28:bc:33:a7:f9:2c:1d:4f:9e:28:d7:96:6b:92: 6b:30:76:77:59:d8:7c:55:57:41:dc:b4:96:62:79:11:d9:fd: e0:69:7f:29:cb:c9:ac:13:ab:e5:d4:ac:85:6a:79:fb:2a:e2: 07:6a:be:96:86:4f:7c:d3:ff:3a:84:66:f7:a7:f2:e7:08:18: d9:e9:09:79:90:c7:07:4a:cd:58:70:9a:27:cb:4c:96:90:ba: 62:90:4f:80:5e:60:17:44:5b:3c:aa:c5:38:c9:81:7e:16:e4: 2c:dd:7e:c2:17:6b:c5:79:ea:f0:06:5f:1b:df:3a:ab:75:61: a2:a9:b0:9a:b7:6d:75:12:d5:c0:46:19:62:17:ed:5d:c0:08: 08:9e:7d:10:9a:02:d5:79:6f:9c:47:83:29:e2:95:37:aa:d6: 8f:02:49:c6:c0:68:0c:cc:db:5e:b7:22:87:56:7e:2a:9c:fe: 62:99:31:12:e3:23:cb:b9:3a:48:94:26:62:de:aa:9e:7d:b8: 87:4e:b6:37 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEogwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTE2QzcxMTAvBgNVBAUTKEI2N0MyNDVFNEIyQkVFQUQyM0MxRjA1REQzMEZGOTA3 N0Q4N0I4RTYwHhcNMjUwNDI0MTcwNjM2WhcNMjUwNTAxMTcwNjM2WjAYMRYwFAYD VQQDEw02ODBhNmY5Yy01NWY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA61NlifoYmU2I9N8e0YY8YiAj9oeURlG1Y8f5P01ludFx7MPgMiR3/rIZJhJD RhtsCOy0UPPWtxx6k4bT2omK+4y4DaM1RiUrTeZp1XBgacVxP1Ec04/Dy1XDkQjN Tj5knNTVA1egxN0LHMlFZrauWicV7a0homzWJiRLIDAp32GV0MERCsWUVcXBGkwP SKm33erGMO/P272KDqhwEeMMrl1KO38bI4oZOc4T5IK1hii8yeHYboq9g3WK1Ksr ryAPRkRFcUCYEDawIS39+S8KsF+yXrUyKTEVrs+H7BfMFHdqmiX+uCwSyWsAMS+H y7jgHhATKz2jbhe055wGKqS67wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBntKA23 GKiW4PfZ3Jg3hy5NxWv+MB8GA1UdIwQYMBaAFLZ8JF5LK+6tI8HwXdMP+Qd9h7jm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMTZDNy9DODU2RDZDNEM2 QzYxMUU4ODJBNDEyNjBDNEY5QUUwMi90bndrWGtzcjdxMGp3ZkJkMHdfNUIzMkh1 T1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Rud2tYa3NyN3EwandmQmQwd181QjMySHVPWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MTZDNy9DODU2RDZDNEM2QzYxMUU4ODJBNDEyNjBDNEY5QUUwMi90bndrWGtzcjdx MGp3ZkJkMHdfNUIzMkh1T1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBre5jzhbzUjKzffh+pTHB8NUdzWoP1qS4df3NxwgE176MCbi+y0Izx jfa7xGDwqCyvW49wxlIT2yT1KLwzp/ksHU+eKNeWa5JrMHZ3Wdh8VVdB3LSWYnkR 2f3gaX8py8msE6vl1KyFann7KuIHar6Whk980/86hGb3p/LnCBjZ6Ql5kMcHSs1Y cJony0yWkLpikE+AXmAXRFs8qsU4yYF+FuQs3X7CF2vFeerwBl8b3zqrdWGiqbCa t211EtXARhliF+1dwAgInn0QmgLVeW+cR4Mp4pU3qtaPAknGwGgMzNtetyKHVn4q nP5imTES4yPLuTpIlCZi3qqefbiHTrY3 -----END CERTIFICATE-----Generated at Sat Apr 26 15:24:15 2025 by rpki-client