$ rpki-client -vvf rpki.apnic.net/member_repository/A911A4F7/9A58C38A85FC11EFBC210F5EC4F9AE02/tdlVl3raRoOsW1nCWBi0Q4HCT-Y.mft File: tdlVl3raRoOsW1nCWBi0Q4HCT-Y.mft (raw, json) Hash identifier: 8xBChEdUTsVaZRZUUkbVJ7/bQ1u6Hyi2oz0yGEQzzVM= Subject key identifier: 55:E2:40:62:E2:B7:F7:8D:2B:A8:1E:13:53:81:EC:96:C7:88:AC:BD Authority key identifier: B5:D9:55:97:7A:DA:46:83:AC:5B:59:C2:58:18:B4:43:81:C2:4F:E6 Certificate issuer: /CN=A911A4F7/serialNumber=B5D955977ADA4683AC5B59C25818B44381C24FE6 Certificate serial: 68 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tdlVl3raRoOsW1nCWBi0Q4HCT-Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911A4F7/9A58C38A85FC11EFBC210F5EC4F9AE02/tdlVl3raRoOsW1nCWBi0Q4HCT-Y.mft Manifest number: 67 Signing time: Fri 25 Apr 2025 05:56:16 +0000 Manifest this update: Fri 25 Apr 2025 05:56:15 +0000 Manifest next update: Fri 02 May 2025 05:56:15 +0000 Files and hashes: 1: tdlVl3raRoOsW1nCWBi0Q4HCT-Y.crl (hash: jLGqnT3yYmKs/5z9OReE4KZjz3ouN8iSp2+MKDjAM8I=) 2: F17DA0FE85FC11EFBD7A485FC4F9AE02.roa (hash: H6cM4D6HiFEzXOD3BJphw2tquQW1HD/n9sWWwx2nQbg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911A4F7/9A58C38A85FC11EFBC210F5EC4F9AE02/tdlVl3raRoOsW1nCWBi0Q4HCT-Y.crl rsync://rpki.apnic.net/member_repository/A911A4F7/9A58C38A85FC11EFBC210F5EC4F9AE02/tdlVl3raRoOsW1nCWBi0Q4HCT-Y.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tdlVl3raRoOsW1nCWBi0Q4HCT-Y.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 05:56:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 104 (0x68) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911A4F7, serialNumber=B5D955977ADA4683AC5B59C25818B44381C24FE6 Validity Not Before: Apr 25 05:56:15 2025 GMT Not After : May 2 05:56:15 2025 GMT Subject: CN=680b2400-a54f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:4d:5a:fc:0a:87:af:9a:22:ac:bd:33:2d:16: c4:a5:29:ec:16:f9:25:fc:81:28:78:c3:7c:ff:5a: 4b:04:99:8c:fa:a1:52:06:4e:93:46:fa:16:4e:5d: 4d:2a:b2:f1:66:f8:ed:82:56:33:01:4e:de:89:08: 74:4f:65:1e:7d:a0:67:e8:5d:33:24:4f:6f:ee:03: 1a:d8:b8:1d:dc:9e:a8:9a:3d:65:30:5f:9a:a2:fb: 96:14:1f:46:f8:83:32:f4:81:0f:98:cc:46:4b:68: e1:24:28:2a:1e:21:4e:56:28:ba:4a:db:68:2c:9c: 09:32:6f:21:c6:b9:46:32:77:7e:e5:8e:39:4a:91: 14:04:ed:09:4a:a4:e6:43:48:7d:8d:47:4e:67:26: b8:5a:b9:0b:b5:c9:1a:b3:69:9b:07:70:15:e3:cf: 92:64:b7:01:86:d9:2e:f9:93:45:7a:68:77:9a:17: d7:90:cc:82:4f:b6:ab:aa:19:4d:df:a4:77:61:ab: 3e:97:25:f0:45:e3:90:79:f0:68:a4:8f:8c:ee:83: e9:14:a7:7b:32:1f:f6:bd:fa:ec:6e:2b:e6:52:50: 5c:36:78:8e:27:78:a6:d0:3e:ea:37:77:7b:be:7f: f4:8d:ad:5b:11:6c:5c:e8:85:b8:8e:95:85:50:80: 88:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:E2:40:62:E2:B7:F7:8D:2B:A8:1E:13:53:81:EC:96:C7:88:AC:BD X509v3 Authority Key Identifier: keyid:B5:D9:55:97:7A:DA:46:83:AC:5B:59:C2:58:18:B4:43:81:C2:4F:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911A4F7/9A58C38A85FC11EFBC210F5EC4F9AE02/tdlVl3raRoOsW1nCWBi0Q4HCT-Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tdlVl3raRoOsW1nCWBi0Q4HCT-Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911A4F7/9A58C38A85FC11EFBC210F5EC4F9AE02/tdlVl3raRoOsW1nCWBi0Q4HCT-Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8c:d6:8a:9e:de:f0:ed:e6:2e:3b:b9:fc:18:1b:42:c1:5f:67: 94:c4:fa:58:c5:d4:5f:08:de:1a:5d:21:69:09:34:b4:2a:eb: eb:19:d3:6d:1a:d1:5a:4d:b1:c5:f6:44:af:2a:bd:83:26:96: 5e:79:f3:29:5a:02:ce:5c:e2:7a:33:43:e2:17:d0:19:d3:0d: 63:49:4b:b8:ff:5d:d2:bd:fb:88:08:46:a0:66:86:39:ee:28: 15:e5:50:d6:22:75:24:8a:ef:04:5d:d0:cc:1b:45:20:bd:0d: 94:53:a1:3c:c6:19:05:dc:1c:b1:3b:88:90:32:d3:2f:39:3c: 2e:3b:5d:0a:a5:5d:98:52:51:b0:6f:70:a9:e9:42:e3:15:8d: a5:b6:e1:d2:9d:21:1b:b7:46:6b:f6:da:63:df:70:61:e0:d4: 28:f5:26:ee:34:0b:40:ed:a9:4d:d0:56:fe:44:f5:76:f7:06: b1:48:a2:df:ee:86:31:a6:f5:5f:e3:44:cc:19:62:83:58:2a: 0a:ed:41:f2:2f:0d:36:2f:86:cd:a9:6a:1b:8c:14:43:94:d1: c7:c8:53:a3:da:8e:4a:9e:ed:0b:02:4d:7d:97:43:bb:c4:f1: 5e:3a:60:b0:fa:ac:d4:46:21:6d:65:1c:68:5a:8e:a8:29:6e: ef:d3:d8:db -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBaDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx QTRGNzExMC8GA1UEBRMoQjVEOTU1OTc3QURBNDY4M0FDNUI1OUMyNTgxOEI0NDM4 MUMyNEZFNjAeFw0yNTA0MjUwNTU2MTVaFw0yNTA1MDIwNTU2MTVaMBgxFjAUBgNV BAMTDTY4MGIyNDAwLWE1NGYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC5TVr8CoevmiKsvTMtFsSlKewW+SX8gSh4w3z/WksEmYz6oVIGTpNG+hZOXU0q svFm+O2CVjMBTt6JCHRPZR59oGfoXTMkT2/uAxrYuB3cnqiaPWUwX5qi+5YUH0b4 gzL0gQ+YzEZLaOEkKCoeIU5WKLpK22gsnAkybyHGuUYyd37ljjlKkRQE7QlKpOZD SH2NR05nJrhauQu1yRqzaZsHcBXjz5JktwGG2S75k0V6aHeaF9eQzIJPtquqGU3f pHdhqz6XJfBF45B58Gikj4zug+kUp3syH/a9+uxuK+ZSUFw2eI4neKbQPuo3d3u+ f/SNrVsRbFzohbiOlYVQgIgZAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUVeJAYuK3 940rqB4TU4HslseIrL0wHwYDVR0jBBgwFoAUtdlVl3raRoOsW1nCWBi0Q4HCT+Yw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFBNEY3LzlBNThDMzhBODVG QzExRUZCQzIxMEY1RUM0RjlBRTAyL3RkbFZsM3JhUm9Pc1cxbkNXQmkwUTRIQ1Qt WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvdGRsVmwzcmFSb09zVzFuQ1dCaTBRNEhDVC1ZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFB NEY3LzlBNThDMzhBODVGQzExRUZCQzIxMEY1RUM0RjlBRTAyL3RkbFZsM3JhUm9P c1cxbkNXQmkwUTRIQ1QtWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAIzWip7e8O3mLju5/BgbQsFfZ5TE+ljF1F8I3hpdIWkJNLQq6+sZ020a 0VpNscX2RK8qvYMmll558ylaAs5c4nozQ+IX0BnTDWNJS7j/XdK9+4gIRqBmhjnu KBXlUNYidSSK7wRd0MwbRSC9DZRToTzGGQXcHLE7iJAy0y85PC47XQqlXZhSUbBv cKnpQuMVjaW24dKdIRu3Rmv22mPfcGHg1Cj1Ju40C0DtqU3QVv5E9Xb3BrFIot/u hjGm9V/jRMwZYoNYKgrtQfIvDTYvhs2pahuMFEOU0cfIU6Pajkqe7QsCTX2XQ7vE 8V46YLD6rNRGIW1lHGhajqgpbu/T2Ns= -----END CERTIFICATE-----Generated at Sat Apr 26 15:23:50 2025 by rpki-client