$ rpki-client -vvf rpki.apnic.net/member_repository/A914D271/2814F0DE11B111EE9047BF18C4F9AE02/TO7ubTZjwT_YLpMdrGnxcEb8mbM.mft File: TO7ubTZjwT_YLpMdrGnxcEb8mbM.mft (raw, json) Hash identifier: erkypy44tUvGC41BSfW08r4NP5FepPRCccH0YruiNZw= Subject key identifier: D1:F8:25:67:0B:AD:60:05:19:B0:DA:95:A1:E3:77:40:58:AD:64:8F Authority key identifier: 4C:EE:EE:6D:36:63:C1:3F:D8:2E:93:1D:AC:69:F1:70:46:FC:99:B3 Certificate issuer: /CN=A914D271/serialNumber=4CEEEE6D3663C13FD82E931DAC69F17046FC99B3 Certificate serial: 0179 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TO7ubTZjwT_YLpMdrGnxcEb8mbM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914D271/2814F0DE11B111EE9047BF18C4F9AE02/TO7ubTZjwT_YLpMdrGnxcEb8mbM.mft Manifest number: 0175 Signing time: Sun 15 Jun 2025 03:00:13 +0000 Manifest this update: Sun 15 Jun 2025 03:00:12 +0000 Manifest next update: Sun 22 Jun 2025 03:00:12 +0000 Files and hashes: 1: TO7ubTZjwT_YLpMdrGnxcEb8mbM.crl (hash: 4GVY9L3Axzh6S4Qfl2FXm6FFHOlVZbRR2c1cT+AhIs8=) 2: 5EAB725014A211EEA889E832C4F9AE02.roa (hash: mX0oS42d4Afnuz1c6BL0lN1MWESAc87z/AqUedcAt4c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914D271/2814F0DE11B111EE9047BF18C4F9AE02/TO7ubTZjwT_YLpMdrGnxcEb8mbM.crl rsync://rpki.apnic.net/member_repository/A914D271/2814F0DE11B111EE9047BF18C4F9AE02/TO7ubTZjwT_YLpMdrGnxcEb8mbM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TO7ubTZjwT_YLpMdrGnxcEb8mbM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 377 (0x179) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914D271, serialNumber=4CEEEE6D3663C13FD82E931DAC69F17046FC99B3 Validity Not Before: Jun 15 03:00:12 2025 GMT Not After : Jun 22 03:00:12 2025 GMT Subject: CN=684e373d-b98e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:a9:c2:33:4d:e1:57:63:62:3e:fe:19:f7:db: 37:e4:e1:f3:c9:2c:89:36:1a:d0:60:c8:86:45:fa: 36:a8:de:03:15:ac:fb:3a:5b:c6:ff:aa:46:69:10: 41:0b:fa:ca:7e:31:55:df:8f:56:32:51:c9:83:d4: 32:d5:23:cb:85:1a:72:41:07:67:fa:41:41:05:9d: 05:cc:6f:d3:5d:b4:0c:d0:8b:33:73:d2:e7:4d:17: 00:60:03:06:9f:36:49:dd:66:27:b0:df:53:4e:62: 68:9b:eb:b4:5a:eb:20:cf:6a:46:6e:d6:03:a6:53: 9a:fd:3b:66:37:b3:e1:70:19:c7:44:c9:b2:7b:38: 8c:4f:25:23:70:85:f5:57:d2:13:ad:08:9c:1e:f4: c3:de:74:e6:ac:b7:f9:a7:2d:4a:e4:b9:ba:82:bb: f0:a2:3d:a4:ac:32:92:da:e3:79:d0:60:11:39:14: b3:d4:24:86:30:28:a7:6f:92:06:55:f6:4a:24:3b: be:7a:a0:a8:61:8e:c1:be:3e:d3:35:9e:a5:6d:74: d3:60:4e:ec:db:52:b8:29:05:f8:d1:4c:08:ec:53: 17:72:93:5c:fd:6a:5f:43:e2:89:4e:ce:fe:66:83: 6e:28:02:c2:2a:73:10:b8:b2:28:66:cb:54:e4:07: d4:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:F8:25:67:0B:AD:60:05:19:B0:DA:95:A1:E3:77:40:58:AD:64:8F X509v3 Authority Key Identifier: keyid:4C:EE:EE:6D:36:63:C1:3F:D8:2E:93:1D:AC:69:F1:70:46:FC:99:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914D271/2814F0DE11B111EE9047BF18C4F9AE02/TO7ubTZjwT_YLpMdrGnxcEb8mbM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TO7ubTZjwT_YLpMdrGnxcEb8mbM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914D271/2814F0DE11B111EE9047BF18C4F9AE02/TO7ubTZjwT_YLpMdrGnxcEb8mbM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7c:44:35:74:a9:f8:fb:4e:fc:29:5c:4f:b6:25:12:5e:62:16: f0:0c:ea:54:af:43:3c:d9:6e:e9:98:1d:07:d2:82:66:47:6b: a4:25:e2:99:87:e3:09:99:54:57:ab:25:1f:11:50:d7:6b:35: 23:88:04:b5:95:09:ba:ef:03:6a:6d:7e:ff:0b:3f:3e:21:59: 86:48:50:c9:cf:30:c6:a6:12:cb:03:fd:0a:9f:22:55:ca:8f: e7:5b:82:0e:22:f3:c4:de:14:94:bb:bc:8e:bf:a4:87:b4:0e: 39:c0:c6:25:41:cc:ae:7a:f2:40:91:0f:e2:de:38:2b:e5:9f: e3:61:b6:66:59:e3:13:ce:f9:05:be:52:98:9f:e5:f8:9b:ba: 9d:92:c8:53:f5:17:33:5d:90:dc:ab:d8:e7:2c:cd:1d:25:d4: 17:9a:ac:d7:af:a8:94:01:09:3c:ae:34:9b:75:7a:40:4a:ac: 04:d4:74:1f:a0:b7:c2:18:04:00:68:9a:c7:9a:e8:2c:49:87: 2c:d1:34:c4:fa:9e:7a:05:a0:2c:7e:74:8d:5d:8c:c8:14:f7: d9:ad:ea:6a:43:5b:1d:d0:e4:93:b6:c4:c9:d9:de:6c:b5:61: 21:5c:b5:44:6a:a4:e7:e6:77:53:df:e2:fa:bf:b3:53:cb:c5: 3b:6f:8d:d1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEQyNzExMTAvBgNVBAUTKDRDRUVFRTZEMzY2M0MxM0ZEODJFOTMxREFDNjlGMTcw NDZGQzk5QjMwHhcNMjUwNjE1MDMwMDEyWhcNMjUwNjIyMDMwMDEyWjAYMRYwFAYD VQQDEw02ODRlMzczZC1iOThlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmanCM03hV2NiPv4Z99s35OHzySyJNhrQYMiGRfo2qN4DFaz7OlvG/6pGaRBB C/rKfjFV349WMlHJg9Qy1SPLhRpyQQdn+kFBBZ0FzG/TXbQM0Iszc9LnTRcAYAMG nzZJ3WYnsN9TTmJom+u0Wusgz2pGbtYDplOa/TtmN7PhcBnHRMmyeziMTyUjcIX1 V9ITrQicHvTD3nTmrLf5py1K5Lm6grvwoj2krDKS2uN50GARORSz1CSGMCinb5IG VfZKJDu+eqCoYY7Bvj7TNZ6lbXTTYE7s21K4KQX40UwI7FMXcpNc/WpfQ+KJTs7+ ZoNuKALCKnMQuLIoZstU5AfUpQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNH4JWcL rWAFGbDalaHjd0BYrWSPMB8GA1UdIwQYMBaAFEzu7m02Y8E/2C6THaxp8XBG/Jmz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RDI3MS8yODE0RjBERTEx QjExMUVFOTA0N0JGMThDNEY5QUUwMi9UTzd1YlRaandUX1lMcE1kckdueGNFYjht Yk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RPN3ViVFpqd1RfWUxwTWRyR254Y0ViOG1iTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RDI3MS8yODE0RjBERTExQjExMUVFOTA0N0JGMThDNEY5QUUwMi9UTzd1YlRaandU X1lMcE1kckdueGNFYjhtYk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB8RDV0qfj7TvwpXE+2JRJeYhbwDOpUr0M82W7pmB0H0oJmR2ukJeKZ h+MJmVRXqyUfEVDXazUjiAS1lQm67wNqbX7/Cz8+IVmGSFDJzzDGphLLA/0KnyJV yo/nW4IOIvPE3hSUu7yOv6SHtA45wMYlQcyuevJAkQ/i3jgr5Z/jYbZmWeMTzvkF vlKYn+X4m7qdkshT9RczXZDcq9jnLM0dJdQXmqzXr6iUAQk8rjSbdXpASqwE1HQf oLfCGAQAaJrHmugsSYcs0TTE+p56BaAsfnSNXYzIFPfZrepqQ1sd0OSTtsTJ2d5s tWEhXLVEaqTn5ndT3+L6v7NTy8U7b43R -----END CERTIFICATE-----Generated at Sun Jun 15 10:01:14 2025 by rpki-client