$ rpki-client -vvf rpki.apnic.net/member_repository/A914D271/2814F0DE11B111EE9047BF18C4F9AE02/TO7ubTZjwT_YLpMdrGnxcEb8mbM.mft File: TO7ubTZjwT_YLpMdrGnxcEb8mbM.mft (raw, json) Hash identifier: mJOtlHS1pttzeY+RDpY3y9hAJWPD+KOME+TWWeNh2Z4= Subject key identifier: 6B:B6:A6:35:24:1C:D4:15:1D:A1:D1:1B:2D:47:73:E4:28:8E:F0:D7 Authority key identifier: 4C:EE:EE:6D:36:63:C1:3F:D8:2E:93:1D:AC:69:F1:70:46:FC:99:B3 Certificate issuer: /CN=A914D271/serialNumber=4CEEEE6D3663C13FD82E931DAC69F17046FC99B3 Certificate serial: 0160 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TO7ubTZjwT_YLpMdrGnxcEb8mbM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914D271/2814F0DE11B111EE9047BF18C4F9AE02/TO7ubTZjwT_YLpMdrGnxcEb8mbM.mft Manifest number: 015C Signing time: Fri 25 Apr 2025 03:11:42 +0000 Manifest this update: Fri 25 Apr 2025 03:11:41 +0000 Manifest next update: Fri 02 May 2025 03:11:41 +0000 Files and hashes: 1: TO7ubTZjwT_YLpMdrGnxcEb8mbM.crl (hash: cDRG3cYVKHiis2CCTlyN71XPUrXu2Ml4rOaZRbifVDs=) 2: 5EAB725014A211EEA889E832C4F9AE02.roa (hash: mX0oS42d4Afnuz1c6BL0lN1MWESAc87z/AqUedcAt4c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914D271/2814F0DE11B111EE9047BF18C4F9AE02/TO7ubTZjwT_YLpMdrGnxcEb8mbM.crl rsync://rpki.apnic.net/member_repository/A914D271/2814F0DE11B111EE9047BF18C4F9AE02/TO7ubTZjwT_YLpMdrGnxcEb8mbM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TO7ubTZjwT_YLpMdrGnxcEb8mbM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 03:11:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 352 (0x160) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914D271, serialNumber=4CEEEE6D3663C13FD82E931DAC69F17046FC99B3 Validity Not Before: Apr 25 03:11:41 2025 GMT Not After : May 2 03:11:41 2025 GMT Subject: CN=680afd6d-7621 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:dc:3c:11:63:4b:86:33:ae:57:bf:23:7e:41: 02:65:72:0b:40:c7:bb:26:cc:66:64:0f:78:1e:79: 60:8b:ad:33:dd:eb:5c:38:63:51:1b:d9:a5:87:d9: 3d:d3:16:8d:1d:24:ca:23:a4:21:59:dd:3a:94:da: 02:57:13:c1:4f:24:33:5c:9c:d9:32:09:62:0a:b0: 37:45:85:6c:07:7e:2e:99:de:2b:7a:40:cf:f4:c9: f0:57:46:fb:28:0d:bd:0b:7c:48:58:cf:22:e3:9b: a2:0b:72:48:af:c8:35:93:d5:0c:84:f7:89:07:4d: 21:7a:d6:61:08:80:4c:29:ce:d8:07:5a:4a:02:bd: 69:bc:f1:3e:33:de:51:b4:4a:7c:f1:ee:fd:11:db: 6f:d3:b4:2a:4c:21:02:85:b2:6d:ee:de:7a:fa:04: 82:d4:c3:b4:d1:e0:97:13:d0:e7:d4:2f:29:6a:3d: 7a:d6:15:e9:36:40:00:3e:29:85:8c:21:81:b7:da: b0:23:b7:fa:d1:2f:3d:10:b2:b1:a8:51:ba:32:c3: 50:3d:45:15:d3:b4:61:76:4b:7d:4f:b7:59:c3:a9: b7:f3:b1:7f:5d:83:e6:ef:fa:8d:44:eb:cf:3b:b6: 25:c9:5c:b4:e3:23:e8:04:46:ef:fe:91:00:1e:4f: 9a:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:B6:A6:35:24:1C:D4:15:1D:A1:D1:1B:2D:47:73:E4:28:8E:F0:D7 X509v3 Authority Key Identifier: keyid:4C:EE:EE:6D:36:63:C1:3F:D8:2E:93:1D:AC:69:F1:70:46:FC:99:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914D271/2814F0DE11B111EE9047BF18C4F9AE02/TO7ubTZjwT_YLpMdrGnxcEb8mbM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TO7ubTZjwT_YLpMdrGnxcEb8mbM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914D271/2814F0DE11B111EE9047BF18C4F9AE02/TO7ubTZjwT_YLpMdrGnxcEb8mbM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 27:ca:3a:7b:e7:76:33:66:1c:74:c8:d5:68:5c:63:cf:8e:fa: fa:e4:ff:92:97:c2:b3:5b:89:bf:37:64:98:eb:8c:07:4e:fb: 0f:60:c2:8d:82:34:6c:40:a7:81:50:b9:01:b0:5c:46:b8:66: 0d:f7:4d:21:0e:a4:8d:86:fd:3c:b1:61:da:44:c6:a3:e5:93: 43:70:8a:33:e2:91:5d:62:07:20:a6:13:bb:0c:15:7c:90:28: e5:4f:ae:b0:d6:11:5d:a6:2c:97:e2:21:f7:2a:b3:48:c1:9e: 96:83:97:e9:aa:78:80:ae:b1:ad:41:8c:bd:86:71:8d:f7:6c: ec:7b:07:15:ce:88:dd:63:16:50:9f:cd:bf:83:08:06:bf:aa: ad:3d:eb:e4:fe:b9:96:bb:44:ae:62:2d:5a:6a:e4:4a:38:16: 4c:85:7d:03:b5:a2:e4:0f:af:3d:9e:51:59:35:d1:f8:1c:e0: 29:f7:4e:08:ff:8c:b7:0c:d3:91:e8:1f:e4:7e:7a:00:db:39: 99:b2:a9:ed:b8:ae:43:82:5a:fb:c2:41:be:48:ac:49:cb:df: cc:7b:6f:9d:c5:65:a1:e4:37:d1:0a:5b:12:5e:4e:b5:1e:9b: 00:a4:91:a4:f7:ca:59:81:90:52:e3:cd:e7:9f:fa:cc:5a:0f: 87:a1:04:39 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAWAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEQyNzExMTAvBgNVBAUTKDRDRUVFRTZEMzY2M0MxM0ZEODJFOTMxREFDNjlGMTcw NDZGQzk5QjMwHhcNMjUwNDI1MDMxMTQxWhcNMjUwNTAyMDMxMTQxWjAYMRYwFAYD VQQDEw02ODBhZmQ2ZC03NjIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA19w8EWNLhjOuV78jfkECZXILQMe7JsxmZA94Hnlgi60z3etcOGNRG9mlh9k9 0xaNHSTKI6QhWd06lNoCVxPBTyQzXJzZMgliCrA3RYVsB34umd4rekDP9MnwV0b7 KA29C3xIWM8i45uiC3JIr8g1k9UMhPeJB00hetZhCIBMKc7YB1pKAr1pvPE+M95R tEp88e79Edtv07QqTCEChbJt7t56+gSC1MO00eCXE9Dn1C8paj161hXpNkAAPimF jCGBt9qwI7f60S89ELKxqFG6MsNQPUUV07Rhdkt9T7dZw6m387F/XYPm7/qNROvP O7YlyVy04yPoBEbv/pEAHk+aGwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGu2pjUk HNQVHaHRGy1Hc+QojvDXMB8GA1UdIwQYMBaAFEzu7m02Y8E/2C6THaxp8XBG/Jmz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RDI3MS8yODE0RjBERTEx QjExMUVFOTA0N0JGMThDNEY5QUUwMi9UTzd1YlRaandUX1lMcE1kckdueGNFYjht Yk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RPN3ViVFpqd1RfWUxwTWRyR254Y0ViOG1iTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RDI3MS8yODE0RjBERTExQjExMUVFOTA0N0JGMThDNEY5QUUwMi9UTzd1YlRaandU X1lMcE1kckdueGNFYjhtYk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAnyjp753YzZhx0yNVoXGPPjvr65P+Sl8KzW4m/N2SY64wHTvsPYMKN gjRsQKeBULkBsFxGuGYN900hDqSNhv08sWHaRMaj5ZNDcIoz4pFdYgcgphO7DBV8 kCjlT66w1hFdpiyX4iH3KrNIwZ6Wg5fpqniArrGtQYy9hnGN92zsewcVzojdYxZQ n82/gwgGv6qtPevk/rmWu0SuYi1aauRKOBZMhX0DtaLkD689nlFZNdH4HOAp904I /4y3DNOR6B/kfnoA2zmZsqntuK5Dglr7wkG+SKxJy9/Me2+dxWWh5DfRClsSXk61 HpsApJGk98pZgZBS483nn/rMWg+HoQQ5 -----END CERTIFICATE-----Generated at Sat Apr 26 13:05:21 2025 by rpki-client