$ rpki-client -vvf rpki.apnic.net/member_repository/A911ABF4/EA87185C721B11E9BB748150C4F9AE02/aTyLTLomsG0s-roPm-TTffDd_z0.mft File: aTyLTLomsG0s-roPm-TTffDd_z0.mft (raw, json) Hash identifier: 0iBieUTHNTGVkodxNcWhZjsIscxbmwlRnH1A5XeOhHo= Subject key identifier: CA:8B:69:F9:E7:CD:25:AA:68:D8:4D:69:5A:06:87:49:29:EE:59:B9 Authority key identifier: 69:3C:8B:4C:BA:26:B0:6D:2C:FA:BA:0F:9B:E4:D3:7D:F0:DD:FF:3D Certificate issuer: /CN=A911ABF4/serialNumber=693C8B4CBA26B06D2CFABA0F9BE4D37DF0DDFF3D Certificate serial: 7F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aTyLTLomsG0s-roPm-TTffDd_z0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911ABF4/EA87185C721B11E9BB748150C4F9AE02/aTyLTLomsG0s-roPm-TTffDd_z0.mft Manifest number: 1794 Signing time: Thu 24 Apr 2025 17:37:06 +0000 Manifest this update: Thu 24 Apr 2025 17:37:05 +0000 Manifest next update: Thu 01 May 2025 17:37:05 +0000 Files and hashes: 1: aTyLTLomsG0s-roPm-TTffDd_z0.crl (hash: hQO5W19f78y+HIxllv8nUoWvGRVOBhMr5ugwP2g4NnY=) 2: 9A6F15D6624311EFA06D813FC4F9AE02.roa (hash: cvyJpDKtEjYd0NNvfJQS1R5prVmYd7uPbRa+BmYqEmQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911ABF4/EA87185C721B11E9BB748150C4F9AE02/aTyLTLomsG0s-roPm-TTffDd_z0.crl rsync://rpki.apnic.net/member_repository/A911ABF4/EA87185C721B11E9BB748150C4F9AE02/aTyLTLomsG0s-roPm-TTffDd_z0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aTyLTLomsG0s-roPm-TTffDd_z0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 17:37:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 127 (0x7f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911ABF4, serialNumber=693C8B4CBA26B06D2CFABA0F9BE4D37DF0DDFF3D Validity Not Before: Apr 24 17:37:05 2025 GMT Not After : May 1 17:37:05 2025 GMT Subject: CN=680a76c1-05fe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:24:86:e0:c2:2e:02:07:e7:0c:ad:08:6b:52: de:aa:ce:48:1d:c3:86:00:e0:fe:48:63:da:53:78: 9c:b0:3a:b1:4f:d0:3f:65:6d:b1:e4:ab:29:97:64: 97:0a:6e:e6:5d:24:1a:20:03:2b:19:04:47:20:1b: 94:ee:c9:93:83:71:ca:c8:4b:9e:e0:8b:7a:e7:40: 1a:e6:fc:cd:68:1d:ff:2f:0f:60:b9:20:7e:7a:dd: 69:42:9d:c1:03:9b:d6:e3:e0:55:c8:0c:14:2a:b6: 8b:14:27:74:db:e0:e4:f4:25:97:ae:cf:bb:09:c1: 07:71:10:11:76:02:b4:af:e7:fe:f4:0d:16:9a:c3: fb:eb:f3:04:9e:cb:8b:ef:a2:f3:8d:dd:3a:14:7d: d8:d7:34:df:99:19:b9:93:bf:a0:5f:4a:95:3c:4c: 52:d0:24:66:8f:13:f0:5f:bc:a2:aa:27:b2:c5:ff: f2:71:d1:5e:9f:05:10:96:2e:c3:fc:60:25:6a:fa: e8:a2:d4:a3:f5:04:75:91:3f:b3:4b:12:07:fc:86: 0b:1a:82:a6:5e:dc:de:28:93:09:14:ec:d7:bd:0a: 17:ea:25:18:f1:d0:56:f9:3a:2e:84:a6:b4:f3:65: bc:fe:87:6d:c3:2b:ba:95:5c:4f:b9:34:af:45:75: 60:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:8B:69:F9:E7:CD:25:AA:68:D8:4D:69:5A:06:87:49:29:EE:59:B9 X509v3 Authority Key Identifier: keyid:69:3C:8B:4C:BA:26:B0:6D:2C:FA:BA:0F:9B:E4:D3:7D:F0:DD:FF:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911ABF4/EA87185C721B11E9BB748150C4F9AE02/aTyLTLomsG0s-roPm-TTffDd_z0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aTyLTLomsG0s-roPm-TTffDd_z0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911ABF4/EA87185C721B11E9BB748150C4F9AE02/aTyLTLomsG0s-roPm-TTffDd_z0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d1:90:a2:73:a4:f7:b0:94:b9:54:92:35:fc:bd:88:13:6e:22: f0:0d:52:96:0c:05:32:81:83:9c:8a:bd:a2:d0:1f:a0:d9:54: 95:e5:e2:8a:ff:0d:13:be:6e:60:54:28:0d:08:37:29:fd:10: 11:3b:53:90:97:55:d8:ff:f0:19:43:d9:d5:38:03:fc:8a:31: 6c:40:01:2d:7f:e5:e7:09:a0:63:a1:73:82:d6:ff:0a:af:c2: 5e:2c:27:76:08:bc:7a:9a:71:76:bb:f5:a1:7a:1d:d2:42:ed: 95:fe:1c:c5:c0:5f:8c:76:b9:16:28:29:80:72:2f:7e:5c:6d: 99:bc:b5:b0:2e:38:19:17:30:bd:34:8d:37:3e:63:d3:82:13: 59:e4:b3:d4:72:59:28:9b:89:bf:ea:43:68:d6:55:ee:47:f0: 68:c1:16:8a:4b:07:39:59:57:5c:fd:21:03:da:f2:a5:33:72: 4b:85:97:b4:b4:32:f0:f6:69:56:26:6f:08:56:4b:27:40:cd: 1b:91:2e:21:dc:be:e2:4c:7c:2d:e2:13:01:27:e2:75:bc:61: 05:d1:03:74:79:76:eb:fd:3a:74:78:81:79:7e:02:15:5b:14: ee:f4:27:28:5d:b5:67:62:88:23:54:75:cd:38:ef:0f:0b:21: 6a:8b:b4:57 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBfzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx QUJGNDExMC8GA1UEBRMoNjkzQzhCNENCQTI2QjA2RDJDRkFCQTBGOUJFNEQzN0RG MERERkYzRDAeFw0yNTA0MjQxNzM3MDVaFw0yNTA1MDExNzM3MDVaMBgxFjAUBgNV BAMTDTY4MGE3NmMxLTA1ZmUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC6JIbgwi4CB+cMrQhrUt6qzkgdw4YA4P5IY9pTeJywOrFP0D9lbbHkqymXZJcK buZdJBogAysZBEcgG5TuyZODccrIS57gi3rnQBrm/M1oHf8vD2C5IH563WlCncED m9bj4FXIDBQqtosUJ3Tb4OT0JZeuz7sJwQdxEBF2ArSv5/70DRaaw/vr8wSey4vv ovON3ToUfdjXNN+ZGbmTv6BfSpU8TFLQJGaPE/BfvKKqJ7LF//Jx0V6fBRCWLsP8 YCVq+uii1KP1BHWRP7NLEgf8hgsagqZe3N4okwkU7Ne9ChfqJRjx0Fb5Oi6EprTz Zbz+h23DK7qVXE+5NK9FdWABAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUyotp+efN Japo2E1pWgaHSSnuWbkwHwYDVR0jBBgwFoAUaTyLTLomsG0s+roPm+TTffDd/z0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFBQkY0L0VBODcxODVDNzIx QjExRTlCQjc0ODE1MEM0RjlBRTAyL2FUeUxUTG9tc0cwcy1yb1BtLVRUZmZEZF96 MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvYVR5TFRMb21zRzBzLXJvUG0tVFRmZkRkX3owLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFB QkY0L0VBODcxODVDNzIxQjExRTlCQjc0ODE1MEM0RjlBRTAyL2FUeUxUTG9tc0cw cy1yb1BtLVRUZmZEZF96MC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBANGQonOk97CUuVSSNfy9iBNuIvANUpYMBTKBg5yKvaLQH6DZVJXl4or/ DRO+bmBUKA0INyn9EBE7U5CXVdj/8BlD2dU4A/yKMWxAAS1/5ecJoGOhc4LW/wqv wl4sJ3YIvHqacXa79aF6HdJC7ZX+HMXAX4x2uRYoKYByL35cbZm8tbAuOBkXML00 jTc+Y9OCE1nks9RyWSibib/qQ2jWVe5H8GjBFopLBzlZV1z9IQPa8qUzckuFl7S0 MvD2aVYmbwhWSydAzRuRLiHcvuJMfC3iEwEn4nW8YQXRA3R5duv9OnR4gXl+AhVb FO70JyhdtWdiiCNUdc047w8LIWqLtFc= -----END CERTIFICATE-----Generated at Sat Apr 26 04:27:05 2025 by rpki-client