$ rpki-client -vvf rpki.apnic.net/member_repository/A9118309/1A48DC866FFC11EA88F3D22BC4F9AE02/tg1afDY_D02TL-MXuQzmz4DSg8k.mft File: tg1afDY_D02TL-MXuQzmz4DSg8k.mft (raw, json) Hash identifier: oiQBPzR+WxYpxaIw42QQqiYIEX1a9ooCAce/DdoVQJo= Subject key identifier: 72:30:FC:D9:83:26:D8:34:9A:E9:46:C7:62:B2:1E:64:A3:03:EA:54 Authority key identifier: B6:0D:5A:7C:36:3F:0F:4D:93:2F:E3:17:B9:0C:E6:CF:80:D2:83:C9 Certificate issuer: /CN=A9118309/serialNumber=B60D5A7C363F0F4D932FE317B90CE6CF80D283C9 Certificate serial: 0A17 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tg1afDY_D02TL-MXuQzmz4DSg8k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9118309/1A48DC866FFC11EA88F3D22BC4F9AE02/tg1afDY_D02TL-MXuQzmz4DSg8k.mft Manifest number: 0A10 Signing time: Thu 24 Apr 2025 19:43:27 +0000 Manifest this update: Thu 24 Apr 2025 19:43:27 +0000 Manifest next update: Thu 01 May 2025 19:43:27 +0000 Files and hashes: 1: tg1afDY_D02TL-MXuQzmz4DSg8k.crl (hash: zfwtzbWzUZ0yVN/KmefkM3QtY7+FrkPJH6TpWEmgqVc=) 2: 59AA22D06FFD11EA9160902DC4F9AE02.roa (hash: FFN4hO+BD0+aFl8/ZDC9OYQdd66UMk5Uncgv5z8RJvA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9118309/1A48DC866FFC11EA88F3D22BC4F9AE02/tg1afDY_D02TL-MXuQzmz4DSg8k.crl rsync://rpki.apnic.net/member_repository/A9118309/1A48DC866FFC11EA88F3D22BC4F9AE02/tg1afDY_D02TL-MXuQzmz4DSg8k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tg1afDY_D02TL-MXuQzmz4DSg8k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 19:43:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2583 (0xa17) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9118309, serialNumber=B60D5A7C363F0F4D932FE317B90CE6CF80D283C9 Validity Not Before: Apr 24 19:43:27 2025 GMT Not After : May 1 19:43:27 2025 GMT Subject: CN=680a945f-8d3a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:84:2a:1f:fa:5d:9d:1c:51:15:3e:86:dc:a1: e6:f9:e7:be:7a:d2:cc:2c:d4:96:fa:db:6a:c8:40: d8:a8:8f:56:60:a1:9a:8e:21:8e:b3:59:c8:bc:64: 96:f5:82:0c:3a:ce:29:30:58:e9:e4:b0:96:0d:40: 32:f6:ee:df:f9:7d:87:d1:3f:c1:cf:77:d0:2f:6f: ff:28:3c:71:b4:b5:a8:48:7e:c6:d0:5f:a4:ca:e6: 44:4e:28:c8:10:40:90:0f:8c:66:86:8d:a0:4d:4c: fa:54:a9:43:13:60:bb:d7:9b:40:43:ff:e3:4b:ed: ac:74:44:fd:b9:ed:52:77:e7:2f:07:cb:93:06:f5: 92:1c:2a:69:41:05:3a:ed:b0:e2:8d:d4:01:39:11: 71:d2:5d:a4:7e:a8:62:1d:1f:2f:43:7e:b9:d7:3b: af:e8:97:d3:49:3e:57:d2:8f:5d:fd:9a:8f:dd:a6: 09:58:b8:5a:b0:09:f0:4b:ed:e5:41:b4:32:26:68: 9a:37:70:37:a9:ab:34:5d:55:ba:9b:a0:ef:3e:8c: 52:50:55:52:92:a5:02:4c:b9:cb:f3:2b:cd:95:7a: 2a:a3:3c:b3:49:39:e8:e9:f0:56:d9:52:2d:f5:42: c9:54:fd:f9:3e:7a:b7:58:cd:ce:35:c1:82:e5:26: 73:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:30:FC:D9:83:26:D8:34:9A:E9:46:C7:62:B2:1E:64:A3:03:EA:54 X509v3 Authority Key Identifier: keyid:B6:0D:5A:7C:36:3F:0F:4D:93:2F:E3:17:B9:0C:E6:CF:80:D2:83:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9118309/1A48DC866FFC11EA88F3D22BC4F9AE02/tg1afDY_D02TL-MXuQzmz4DSg8k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tg1afDY_D02TL-MXuQzmz4DSg8k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9118309/1A48DC866FFC11EA88F3D22BC4F9AE02/tg1afDY_D02TL-MXuQzmz4DSg8k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 83:0d:c0:55:f7:6e:e3:d4:d3:7c:fa:26:2a:9a:52:15:1e:93: 41:14:a5:5e:f0:ce:0e:47:b4:fc:9f:13:0c:bd:44:58:ec:e9: 17:d8:4b:e6:12:95:29:3f:27:3b:b6:b0:75:c8:87:ca:b4:65: 14:29:13:fc:cb:bf:08:95:31:34:c8:6a:f4:1c:fe:b9:09:05: c9:a9:3d:ae:8e:1b:6b:18:10:3b:5d:ee:f1:b9:b6:98:75:75: c1:60:a4:b3:66:0c:40:0d:2a:f3:7d:eb:3d:ec:96:ef:ed:ff: 61:16:aa:52:43:f9:1e:e5:c4:9a:b4:33:29:53:12:08:73:d5: d9:a3:eb:86:4c:0d:eb:05:43:13:89:ee:e1:bb:bd:ac:a7:22: f5:f3:a9:b6:04:b8:9e:ba:14:a3:c7:0c:ca:e9:bf:56:8d:07: b8:1e:21:67:23:f3:47:aa:60:6c:95:43:0b:92:b5:40:6f:a0: fb:ff:1f:0b:dc:07:15:06:d3:01:8c:c6:c1:61:25:17:d7:7f: 57:64:d7:2d:01:e2:30:5a:2e:6c:6a:25:a6:6c:0a:f1:b8:1e: e5:29:ed:96:b6:c3:15:48:19:90:5e:02:fe:e7:95:71:a2:2a: f2:6f:0e:0e:d2:15:cf:bc:d9:d2:0c:5c:56:8c:b9:be:e9:b1: b7:9c:b9:61 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICChcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTgzMDkxMTAvBgNVBAUTKEI2MEQ1QTdDMzYzRjBGNEQ5MzJGRTMxN0I5MENFNkNG ODBEMjgzQzkwHhcNMjUwNDI0MTk0MzI3WhcNMjUwNTAxMTk0MzI3WjAYMRYwFAYD VQQDEw02ODBhOTQ1Zi04ZDNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5oQqH/pdnRxRFT6G3KHm+ee+etLMLNSW+ttqyEDYqI9WYKGajiGOs1nIvGSW 9YIMOs4pMFjp5LCWDUAy9u7f+X2H0T/Bz3fQL2//KDxxtLWoSH7G0F+kyuZETijI EECQD4xmho2gTUz6VKlDE2C715tAQ//jS+2sdET9ue1Sd+cvB8uTBvWSHCppQQU6 7bDijdQBORFx0l2kfqhiHR8vQ3651zuv6JfTST5X0o9d/ZqP3aYJWLhasAnwS+3l QbQyJmiaN3A3qas0XVW6m6DvPoxSUFVSkqUCTLnL8yvNlXoqozyzSTno6fBW2VIt 9ULJVP35Pnq3WM3ONcGC5SZzfwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHIw/NmD Jtg0mulGx2KyHmSjA+pUMB8GA1UdIwQYMBaAFLYNWnw2Pw9Nky/jF7kM5s+A0oPJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExODMwOS8xQTQ4REM4NjZG RkMxMUVBODhGM0QyMkJDNEY5QUUwMi90ZzFhZkRZX0QwMlRMLU1YdVF6bXo0RFNn OGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RnMWFmRFlfRDAyVEwtTVh1UXptejREU2c4ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx ODMwOS8xQTQ4REM4NjZGRkMxMUVBODhGM0QyMkJDNEY5QUUwMi90ZzFhZkRZX0Qw MlRMLU1YdVF6bXo0RFNnOGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCDDcBV927j1NN8+iYqmlIVHpNBFKVe8M4OR7T8nxMMvURY7OkX2Evm EpUpPyc7trB1yIfKtGUUKRP8y78IlTE0yGr0HP65CQXJqT2ujhtrGBA7Xe7xubaY dXXBYKSzZgxADSrzfes97Jbv7f9hFqpSQ/ke5cSatDMpUxIIc9XZo+uGTA3rBUMT ie7hu72spyL186m2BLieuhSjxwzK6b9WjQe4HiFnI/NHqmBslUMLkrVAb6D7/x8L 3AcVBtMBjMbBYSUX139XZNctAeIwWi5saiWmbArxuB7lKe2WtsMVSBmQXgL+55Vx oirybw4O0hXPvNnSDFxWjLm+6bG3nLlh -----END CERTIFICATE-----Generated at Sat Apr 26 04:34:17 2025 by rpki-client