$ rpki-client -vvf rpki.apnic.net/member_repository/A913DA50/D49BD210F49F11E98BFFF82CC4F9AE02/tXSEdav1kHeBiVHMH-bti9LzEhM.mft File: tXSEdav1kHeBiVHMH-bti9LzEhM.mft (raw, json) Hash identifier: MFWYWthC+JhLEt17PnXfAb8XfJNj8pF4oz5d6EvgUDY= Subject key identifier: BF:C5:E3:F9:E4:5F:8D:66:F9:47:BD:0E:BB:30:08:2C:F0:D4:AB:DC Authority key identifier: B5:74:84:75:AB:F5:90:77:81:89:51:CC:1F:E6:ED:8B:D2:F3:12:13 Certificate issuer: /CN=A913DA50/serialNumber=B5748475ABF59077818951CC1FE6ED8BD2F31213 Certificate serial: 0C8F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tXSEdav1kHeBiVHMH-bti9LzEhM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913DA50/D49BD210F49F11E98BFFF82CC4F9AE02/tXSEdav1kHeBiVHMH-bti9LzEhM.mft Manifest number: 0C87 Signing time: Thu 24 Apr 2025 18:09:50 +0000 Manifest this update: Thu 24 Apr 2025 18:09:50 +0000 Manifest next update: Thu 01 May 2025 18:09:50 +0000 Files and hashes: 1: tXSEdav1kHeBiVHMH-bti9LzEhM.crl (hash: QyXoUVdcVM62JEmZj9KlvHjXzabRdxyf3MV5v6Rp3aw=) 2: E458D4E0F4A011E98C19332EC4F9AE02.roa (hash: Kuacwrd9xmPbCRcHxM/w7AGXBwpLtTpK06rVdfJjAc4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913DA50/D49BD210F49F11E98BFFF82CC4F9AE02/tXSEdav1kHeBiVHMH-bti9LzEhM.crl rsync://rpki.apnic.net/member_repository/A913DA50/D49BD210F49F11E98BFFF82CC4F9AE02/tXSEdav1kHeBiVHMH-bti9LzEhM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tXSEdav1kHeBiVHMH-bti9LzEhM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 18:09:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3215 (0xc8f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913DA50, serialNumber=B5748475ABF59077818951CC1FE6ED8BD2F31213 Validity Not Before: Apr 24 18:09:50 2025 GMT Not After : May 1 18:09:50 2025 GMT Subject: CN=680a7e6e-928b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:b6:35:98:8b:cd:3c:67:95:21:45:6b:f5:e7: c5:00:31:d9:67:bf:23:c0:47:6f:41:f3:8d:00:c8: 37:ee:0e:5e:65:e9:22:f5:63:db:d6:82:a0:05:17: 6b:be:29:50:8f:4c:ac:49:01:bc:62:89:f4:44:2f: 93:29:3a:ad:c7:ff:c6:f8:a0:b1:70:8c:f0:d9:6f: e0:86:e8:4a:38:ac:bb:60:fb:e6:a7:73:6c:8c:50: f3:a3:90:27:14:91:e9:40:4b:b5:fa:83:42:b5:c8: 3b:58:61:e3:c1:71:00:4b:0b:f5:03:d8:2f:f4:a2: fd:17:1b:54:d9:9b:df:72:44:64:09:64:75:50:ee: 4d:8f:94:1d:9d:fe:99:a3:ce:2d:2e:8f:fa:93:f6: d5:90:92:c4:0d:91:99:47:b2:3f:62:de:d7:52:1c: 96:2e:44:89:92:56:e1:67:23:47:85:99:a8:32:e2: 1b:4c:a3:4f:af:25:b6:53:f7:d2:49:ab:24:2a:5b: d1:f6:db:e0:a5:f6:3d:ab:94:f7:26:f4:79:90:cb: 9b:68:fa:3c:78:0e:c3:e6:3b:bd:23:e6:c0:a6:ad: 57:4d:be:1f:78:7f:36:34:e7:a2:bd:ed:c0:1b:6e: a5:4b:f5:f7:b7:e8:fa:af:08:71:ca:3a:0c:ed:2a: 20:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:C5:E3:F9:E4:5F:8D:66:F9:47:BD:0E:BB:30:08:2C:F0:D4:AB:DC X509v3 Authority Key Identifier: keyid:B5:74:84:75:AB:F5:90:77:81:89:51:CC:1F:E6:ED:8B:D2:F3:12:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913DA50/D49BD210F49F11E98BFFF82CC4F9AE02/tXSEdav1kHeBiVHMH-bti9LzEhM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tXSEdav1kHeBiVHMH-bti9LzEhM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913DA50/D49BD210F49F11E98BFFF82CC4F9AE02/tXSEdav1kHeBiVHMH-bti9LzEhM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 43:b7:e1:57:a2:78:3e:03:c1:7a:6c:30:f3:6d:3d:5f:bf:1d: b5:63:dd:6e:69:68:94:fe:51:41:62:c0:65:03:6a:1e:35:8f: 2c:b5:91:78:92:f9:cf:f8:14:5d:1e:7c:19:2e:00:1f:5c:51: 85:e4:0f:a5:b4:d3:7d:76:b8:43:4b:14:ec:41:10:ed:2c:79: 3c:31:09:d9:05:32:f8:76:68:d9:0f:a4:be:b1:bc:68:1c:fb: 5d:2e:3f:5d:c4:df:d3:31:35:ad:75:be:ea:27:f2:44:a7:b5: 43:af:4f:4e:57:8d:80:ce:ad:30:95:1c:60:d8:b4:62:90:77: 8e:46:f8:23:b2:d7:a7:d2:27:a9:eb:2a:9e:5c:88:37:27:2d: 57:bf:42:81:92:5d:95:2c:a8:ef:b6:c6:36:89:6e:61:69:e4: 81:f9:4c:a9:f5:d6:92:0e:09:6b:94:fc:9f:70:ff:54:f8:62: 4c:3d:e6:95:82:06:b5:67:55:d2:e2:43:cb:dd:b7:37:99:bb: a6:2f:ad:79:aa:98:ff:06:22:fe:26:54:eb:a4:1f:0e:1f:c1: 79:98:00:c0:b4:d7:97:e7:24:10:49:3b:5f:a3:c5:8c:f5:d8: e5:28:1e:70:6a:20:11:87:39:e4:2b:7d:38:07:5f:a6:7e:a4: 56:f7:5e:1b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDI8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0RBNTAxMTAvBgNVBAUTKEI1NzQ4NDc1QUJGNTkwNzc4MTg5NTFDQzFGRTZFRDhC RDJGMzEyMTMwHhcNMjUwNDI0MTgwOTUwWhcNMjUwNTAxMTgwOTUwWjAYMRYwFAYD VQQDEw02ODBhN2U2ZS05MjhiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5rY1mIvNPGeVIUVr9efFADHZZ78jwEdvQfONAMg37g5eZeki9WPb1oKgBRdr vilQj0ysSQG8Yon0RC+TKTqtx//G+KCxcIzw2W/ghuhKOKy7YPvmp3NsjFDzo5An FJHpQEu1+oNCtcg7WGHjwXEASwv1A9gv9KL9FxtU2ZvfckRkCWR1UO5Nj5Qdnf6Z o84tLo/6k/bVkJLEDZGZR7I/Yt7XUhyWLkSJklbhZyNHhZmoMuIbTKNPryW2U/fS SaskKlvR9tvgpfY9q5T3JvR5kMubaPo8eA7D5ju9I+bApq1XTb4feH82NOeive3A G26lS/X3t+j6rwhxyjoM7SogzwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL/F4/nk X41m+Ue9DrswCCzw1KvcMB8GA1UdIwQYMBaAFLV0hHWr9ZB3gYlRzB/m7YvS8xIT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzREE1MC9ENDlCRDIxMEY0 OUYxMUU5OEJGRkY4MkNDNEY5QUUwMi90WFNFZGF2MWtIZUJpVkhNSC1idGk5THpF aE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RYU0VkYXYxa0hlQmlWSE1ILWJ0aTlMekVoTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz REE1MC9ENDlCRDIxMEY0OUYxMUU5OEJGRkY4MkNDNEY5QUUwMi90WFNFZGF2MWtI ZUJpVkhNSC1idGk5THpFaE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBDt+FXong+A8F6bDDzbT1fvx21Y91uaWiU/lFBYsBlA2oeNY8stZF4 kvnP+BRdHnwZLgAfXFGF5A+ltNN9drhDSxTsQRDtLHk8MQnZBTL4dmjZD6S+sbxo HPtdLj9dxN/TMTWtdb7qJ/JEp7VDr09OV42Azq0wlRxg2LRikHeORvgjsten0iep 6yqeXIg3Jy1Xv0KBkl2VLKjvtsY2iW5haeSB+Uyp9daSDglrlPyfcP9U+GJMPeaV gga1Z1XS4kPL3bc3mbumL615qpj/BiL+JlTrpB8OH8F5mADAtNeX5yQQSTtfo8WM 9djlKB5waiARhznkK304B1+mfqRW914b -----END CERTIFICATE-----Generated at Sat Apr 26 13:03:10 2025 by rpki-client