$ rpki-client -vvf rpki.apnic.net/member_repository/A91466E8/D8388D34F3FC11EF926CE630C4F9AE02/TCISGt-uP1dSgBZRUcP9MOOq_QE.mft File: TCISGt-uP1dSgBZRUcP9MOOq_QE.mft (raw, json) Hash identifier: T0r7i6aiIQayKcaIzjcWC3TXM+kPzDcbWBZp4r8lf0g= Subject key identifier: 11:5E:0E:54:45:4B:38:8F:84:23:2A:EF:F1:C1:09:BA:D7:02:1D:44 Authority key identifier: 4C:22:12:1A:DF:AE:3F:57:52:80:16:51:51:C3:FD:30:E3:AA:FD:01 Certificate issuer: /CN=A91466E8/serialNumber=4C22121ADFAE3F575280165151C3FD30E3AAFD01 Certificate serial: 22 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TCISGt-uP1dSgBZRUcP9MOOq_QE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91466E8/D8388D34F3FC11EF926CE630C4F9AE02/TCISGt-uP1dSgBZRUcP9MOOq_QE.mft Manifest number: 21 Signing time: Fri 25 Apr 2025 06:50:01 +0000 Manifest this update: Fri 25 Apr 2025 06:50:00 +0000 Manifest next update: Fri 02 May 2025 06:50:00 +0000 Files and hashes: 1: TCISGt-uP1dSgBZRUcP9MOOq_QE.crl (hash: K7oj2r8IBSL4XPMEsSqSsp3L3WsISbcFWUIcTs5oiFE=) 2: 02640B0CF97911EF99F9BE80C4F9AE02.roa (hash: cI8Rp+uDdJ361Bt2iDuipm5XRt6w/fm/O6/Pc4tHNDU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91466E8/D8388D34F3FC11EF926CE630C4F9AE02/TCISGt-uP1dSgBZRUcP9MOOq_QE.crl rsync://rpki.apnic.net/member_repository/A91466E8/D8388D34F3FC11EF926CE630C4F9AE02/TCISGt-uP1dSgBZRUcP9MOOq_QE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TCISGt-uP1dSgBZRUcP9MOOq_QE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 06:50:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34 (0x22) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91466E8, serialNumber=4C22121ADFAE3F575280165151C3FD30E3AAFD01 Validity Not Before: Apr 25 06:50:00 2025 GMT Not After : May 2 06:50:00 2025 GMT Subject: CN=680b3099-5f34 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:ee:a5:e1:6a:4b:02:b6:c3:93:aa:f3:e1:7f: f6:e5:3a:b2:9e:de:b3:d2:a4:36:3e:52:c5:d9:71: 84:db:67:97:fa:76:b5:25:ee:e1:51:21:90:47:61: ab:9c:93:60:b4:9f:09:d5:40:12:c5:90:18:05:d9: f0:64:a0:c1:0e:4a:cb:2d:f4:25:99:24:66:58:6e: 4b:82:96:03:26:bc:79:5c:92:bc:97:44:64:5e:27: 62:f9:81:92:fd:fe:15:38:d5:7e:74:a7:f4:dd:5c: 9d:8c:3b:fe:46:69:93:c8:0b:27:a9:14:27:3d:f7: 45:5f:3e:da:0f:af:d9:ce:3a:b7:01:83:e7:23:47: f4:e2:93:4f:bf:15:33:6b:32:f7:eb:2b:eb:bc:eb: 17:ea:ac:ea:2c:ca:ae:76:85:4f:8e:88:7f:dc:89: 82:67:ba:a6:a9:49:47:55:6f:de:77:9f:88:42:70: 72:e4:6d:0b:1e:06:25:c1:38:5c:6b:c8:dd:cc:d3: 8f:2c:a7:d1:f6:6c:e9:01:d9:8e:7d:40:ba:40:cb: 24:6a:22:24:c3:e0:9c:70:8d:6d:43:d5:79:5b:6b: ee:97:7a:91:df:71:c2:7f:b0:f6:9f:8c:83:a2:85: ac:80:a5:58:98:59:3c:09:f5:13:7b:37:b9:80:78: ea:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:5E:0E:54:45:4B:38:8F:84:23:2A:EF:F1:C1:09:BA:D7:02:1D:44 X509v3 Authority Key Identifier: keyid:4C:22:12:1A:DF:AE:3F:57:52:80:16:51:51:C3:FD:30:E3:AA:FD:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91466E8/D8388D34F3FC11EF926CE630C4F9AE02/TCISGt-uP1dSgBZRUcP9MOOq_QE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TCISGt-uP1dSgBZRUcP9MOOq_QE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91466E8/D8388D34F3FC11EF926CE630C4F9AE02/TCISGt-uP1dSgBZRUcP9MOOq_QE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4c:94:64:f0:16:c9:03:73:0d:18:4b:f9:cb:6c:93:f6:c9:97: b1:d8:6b:8d:6b:59:40:16:d5:c4:ff:d1:74:89:3e:2b:ec:b5: df:a8:34:c9:a3:16:15:bc:85:5f:57:ff:4c:43:00:f8:aa:e2: 76:0b:c1:a1:5b:ca:0f:33:d5:f5:90:33:c4:d7:c1:c7:fc:db: 68:cc:76:45:4c:e5:68:84:ba:7b:88:2d:58:c6:cb:e5:c3:f1: fa:41:52:e4:46:f3:52:16:12:a6:61:48:3f:57:7d:55:30:1f: b3:47:3a:b1:a2:6b:d5:4f:48:fc:ae:48:a2:09:48:62:67:81: d4:f8:ce:ad:20:fd:27:7b:c1:da:2c:d4:ee:da:4d:bc:2d:d3: e7:44:ef:30:0c:29:58:35:f4:f1:ed:53:ef:ef:61:1b:13:9a: 14:6b:ea:ea:d0:bc:48:3b:1d:c7:9d:55:22:fd:5b:88:f4:4f: 1f:b6:e4:65:bf:1f:c9:db:8c:ec:2c:a7:f1:e1:a8:e9:af:1c: a1:b4:e8:35:2f:29:6d:a5:e0:4a:43:cf:d6:49:16:07:66:00: da:a0:22:79:bb:af:24:74:c9:f3:7c:7d:f6:55:52:f7:ad:81: f1:48:37:02:22:2e:e3:5d:76:37:2c:93:43:b7:35:70:a4:ea: b3:22:07:f4 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBIjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 NjZFODExMC8GA1UEBRMoNEMyMjEyMUFERkFFM0Y1NzUyODAxNjUxNTFDM0ZEMzBF M0FBRkQwMTAeFw0yNTA0MjUwNjUwMDBaFw0yNTA1MDIwNjUwMDBaMBgxFjAUBgNV BAMTDTY4MGIzMDk5LTVmMzQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDu7qXhaksCtsOTqvPhf/blOrKe3rPSpDY+UsXZcYTbZ5f6drUl7uFRIZBHYauc k2C0nwnVQBLFkBgF2fBkoMEOSsst9CWZJGZYbkuClgMmvHlckryXRGReJ2L5gZL9 /hU41X50p/TdXJ2MO/5GaZPICyepFCc990VfPtoPr9nOOrcBg+cjR/Tik0+/FTNr MvfrK+u86xfqrOosyq52hU+OiH/ciYJnuqapSUdVb953n4hCcHLkbQseBiXBOFxr yN3M048sp9H2bOkB2Y59QLpAyyRqIiTD4JxwjW1D1Xlba+6XepHfccJ/sPafjIOi hayApViYWTwJ9RN7N7mAeOpFAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUEV4OVEVL OI+EIyrv8cEJutcCHUQwHwYDVR0jBBgwFoAUTCISGt+uP1dSgBZRUcP9MOOq/QEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ2NkU4L0Q4Mzg4RDM0RjNG QzExRUY5MjZDRTYzMEM0RjlBRTAyL1RDSVNHdC11UDFkU2dCWlJVY1A5TU9PcV9R RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvVENJU0d0LXVQMWRTZ0JaUlVjUDlNT09xX1FFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ2 NkU4L0Q4Mzg4RDM0RjNGQzExRUY5MjZDRTYzMEM0RjlBRTAyL1RDSVNHdC11UDFk U2dCWlJVY1A5TU9PcV9RRS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAEyUZPAWyQNzDRhL+ctsk/bJl7HYa41rWUAW1cT/0XSJPivstd+oNMmj FhW8hV9X/0xDAPiq4nYLwaFbyg8z1fWQM8TXwcf822jMdkVM5WiEunuILVjGy+XD 8fpBUuRG81IWEqZhSD9XfVUwH7NHOrGia9VPSPyuSKIJSGJngdT4zq0g/Sd7wdos 1O7aTbwt0+dE7zAMKVg19PHtU+/vYRsTmhRr6urQvEg7HcedVSL9W4j0Tx+25GW/ H8nbjOwsp/HhqOmvHKG06DUvKW2l4EpDz9ZJFgdmANqgInm7ryR0yfN8ffZVUvet gfFINwIiLuNddjcsk0O3NXCk6rMiB/Q= -----END CERTIFICATE-----Generated at Sat Apr 26 13:04:33 2025 by rpki-client