$ rpki-client -vvf rpki.apnic.net/member_repository/A91342C5/16637C2EA4E911ECAF3FB152C4F9AE02/TSeJUeK9itKFuUCo6p5X43lxHms.mft File: TSeJUeK9itKFuUCo6p5X43lxHms.mft (raw, json) Hash identifier: U5Vrwx7HqP3tLEcvA9Us9VABnE3/lL/d6+EIyzZG1ic= Subject key identifier: 72:7A:20:03:83:49:D7:13:F3:6A:38:DD:C2:BA:63:B5:4C:58:C6:FD Authority key identifier: 4D:27:89:51:E2:BD:8A:D2:85:B9:40:A8:EA:9E:57:E3:79:71:1E:6B Certificate issuer: /CN=A91342C5/serialNumber=4D278951E2BD8AD285B940A8EA9E57E379711E6B Certificate serial: 037C Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/TSeJUeK9itKFuUCo6p5X43lxHms.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91342C5/16637C2EA4E911ECAF3FB152C4F9AE02/TSeJUeK9itKFuUCo6p5X43lxHms.mft Manifest number: 0377 Signing time: Fri 25 Apr 2025 00:41:45 +0000 Manifest this update: Fri 25 Apr 2025 00:41:44 +0000 Manifest next update: Fri 02 May 2025 00:41:44 +0000 Files and hashes: 1: TSeJUeK9itKFuUCo6p5X43lxHms.crl (hash: BKenCLF+mw8ylGZIV57gQcg0JHjSjDJK6b+XpfEAiJE=) 2: E8E194B8A5CC11EC85A86A1FC4F9AE02.roa (hash: ypQGr8fcGrxnVWfQ2RrFsZZ4R7tmsDgEITmj6bx0ScA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91342C5/16637C2EA4E911ECAF3FB152C4F9AE02/TSeJUeK9itKFuUCo6p5X43lxHms.crl rsync://rpki.apnic.net/member_repository/A91342C5/16637C2EA4E911ECAF3FB152C4F9AE02/TSeJUeK9itKFuUCo6p5X43lxHms.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/TSeJUeK9itKFuUCo6p5X43lxHms.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 00:41:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 892 (0x37c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91342C5, serialNumber=4D278951E2BD8AD285B940A8EA9E57E379711E6B Validity Not Before: Apr 25 00:41:44 2025 GMT Not After : May 2 00:41:44 2025 GMT Subject: CN=680ada49-7fe8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:11:b0:8e:05:f3:1a:87:f8:4b:66:d8:a4:38: 37:96:aa:c7:98:1d:98:ff:41:3a:07:0b:bb:cd:db: 2b:fa:31:f2:7f:2a:93:34:fb:2c:7d:0c:dc:7f:a5: 1a:98:57:3b:b0:3c:ef:59:73:05:06:c5:36:52:11: cb:e2:98:61:cf:20:bf:51:fb:25:3b:98:cd:55:37: 5f:62:7b:36:9a:1f:ee:0a:1e:e4:54:93:5c:d4:4e: 7f:1b:32:1f:78:a8:51:0e:f7:ef:2a:92:8f:da:a2: 37:a3:bd:36:3c:ce:3d:d2:e8:64:f0:f3:04:ac:b3: dc:53:d8:20:47:5b:95:09:6b:a7:74:39:5a:8a:6d: bb:2f:20:b1:1f:e1:59:b3:75:ce:9c:05:83:0f:80: d8:97:5f:24:51:fa:24:7c:83:28:da:66:c3:fe:2d: db:c2:03:8d:a0:83:03:90:c5:39:94:1e:fd:d7:93: b2:f9:a3:79:5e:26:c9:d6:cd:57:3b:d9:79:8c:ea: 1f:64:32:a2:f7:7b:82:a6:2e:81:6f:0a:b7:b7:71: 2f:ec:05:21:b0:e8:a2:de:49:eb:02:85:76:b9:a5: 12:ab:87:01:e6:85:ba:14:29:8f:94:e6:fa:fc:a7: 44:c6:91:2b:58:d0:c8:25:07:a0:bb:2f:3f:18:96: b7:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:7A:20:03:83:49:D7:13:F3:6A:38:DD:C2:BA:63:B5:4C:58:C6:FD X509v3 Authority Key Identifier: keyid:4D:27:89:51:E2:BD:8A:D2:85:B9:40:A8:EA:9E:57:E3:79:71:1E:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91342C5/16637C2EA4E911ECAF3FB152C4F9AE02/TSeJUeK9itKFuUCo6p5X43lxHms.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/TSeJUeK9itKFuUCo6p5X43lxHms.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91342C5/16637C2EA4E911ECAF3FB152C4F9AE02/TSeJUeK9itKFuUCo6p5X43lxHms.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5d:98:39:03:80:ca:30:49:e5:c2:77:31:51:4d:59:eb:37:87: ba:f3:c2:41:f2:d6:38:42:a1:9c:0b:fe:11:3b:c1:22:82:5a: 6a:b9:f5:89:9a:dd:fb:71:f2:a9:c3:d8:a3:80:c2:54:f2:07: c7:83:0e:5f:e1:6f:7a:6c:e3:83:a9:6a:4f:48:db:1d:d4:43: d2:a2:e2:1c:61:bf:d8:15:e4:83:eb:2d:3a:45:1d:fc:6f:43: e3:01:0e:b9:5b:9f:75:40:70:a7:fb:96:96:49:e4:73:30:ad: b5:a1:37:40:cf:79:e6:9d:12:84:a3:79:59:4f:51:ff:2a:a9: c0:42:61:1a:91:f8:b2:65:e1:aa:ff:f1:fa:95:16:e8:ca:57: 24:ab:52:70:07:e0:bf:e8:81:6d:9f:ec:40:f0:60:0e:c3:8c: f2:3a:44:f9:9f:cd:2b:07:74:8c:c0:a3:31:61:0b:54:1c:d6: 8c:7e:fb:2b:66:94:d1:3d:d0:49:b6:e4:05:f1:88:b1:f0:9b: e0:e9:c5:33:f3:9b:70:72:fd:b9:01:79:8c:dc:1a:94:ae:20: 09:40:57:0c:e6:87:5c:ff:c7:a7:94:e5:3b:df:ba:9b:99:e5: dc:4d:d7:09:91:55:96:31:50:57:70:1e:52:5a:bd:ea:12:50: ac:52:65:45 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA3wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzQyQzUxMTAvBgNVBAUTKDREMjc4OTUxRTJCRDhBRDI4NUI5NDBBOEVBOUU1N0Uz Nzk3MTFFNkIwHhcNMjUwNDI1MDA0MTQ0WhcNMjUwNTAyMDA0MTQ0WjAYMRYwFAYD VQQDEw02ODBhZGE0OS03ZmU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0BGwjgXzGof4S2bYpDg3lqrHmB2Y/0E6Bwu7zdsr+jHyfyqTNPssfQzcf6Ua mFc7sDzvWXMFBsU2UhHL4phhzyC/UfslO5jNVTdfYns2mh/uCh7kVJNc1E5/GzIf eKhRDvfvKpKP2qI3o702PM490uhk8PMErLPcU9ggR1uVCWundDlaim27LyCxH+FZ s3XOnAWDD4DYl18kUfokfIMo2mbD/i3bwgONoIMDkMU5lB7915Oy+aN5XibJ1s1X O9l5jOofZDKi93uCpi6Bbwq3t3Ev7AUhsOii3knrAoV2uaUSq4cB5oW6FCmPlOb6 /KdExpErWNDIJQeguy8/GJa3vwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHJ6IAOD SdcT82o43cK6Y7VMWMb9MB8GA1UdIwQYMBaAFE0niVHivYrShblAqOqeV+N5cR5r MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNDJDNS8xNjYzN0MyRUE0 RTkxMUVDQUYzRkIxNTJDNEY5QUUwMi9UU2VKVWVLOWl0S0Z1VUNvNnA1WDQzbHhI bXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL1RTZUpVZUs5aXRLRnVVQ282cDVYNDNseEhtcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NDJDNS8xNjYzN0MyRUE0RTkxMUVDQUYzRkIxNTJDNEY5QUUwMi9UU2VKVWVLOWl0 S0Z1VUNvNnA1WDQzbHhIbXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBdmDkDgMowSeXCdzFRTVnrN4e688JB8tY4QqGcC/4RO8EiglpqufWJ mt37cfKpw9ijgMJU8gfHgw5f4W96bOODqWpPSNsd1EPSouIcYb/YFeSD6y06RR38 b0PjAQ65W591QHCn+5aWSeRzMK21oTdAz3nmnRKEo3lZT1H/KqnAQmEakfiyZeGq //H6lRboylckq1JwB+C/6IFtn+xA8GAOw4zyOkT5n80rB3SMwKMxYQtUHNaMfvsr ZpTRPdBJtuQF8Yix8Jvg6cUz85twcv25AXmM3BqUriAJQFcM5odc/8enlOU737qb meXcTdcJkVWWMVBXcB5SWr3qElCsUmVF -----END CERTIFICATE-----Generated at Sat Apr 26 12:20:21 2025 by rpki-client