$ rpki-client -vvf rpki.apnic.net/member_repository/A916A033/8BAE8B88294B11EBA0BC902FC4F9AE02/tNHFfu7y2pEKr3lGCpvLIab80v0.mft File: tNHFfu7y2pEKr3lGCpvLIab80v0.mft (raw, json) Hash identifier: QHNsAgp39fwyXypPN8lmVHG0QzvxZg70lsQYWlipK3w= Subject key identifier: 52:16:27:9B:F8:2E:55:CD:36:9A:5D:35:5C:C4:E0:9A:65:66:B5:DE Authority key identifier: B4:D1:C5:7E:EE:F2:DA:91:0A:AF:79:46:0A:9B:CB:21:A6:FC:D2:FD Certificate issuer: /CN=A916A033/serialNumber=B4D1C57EEEF2DA910AAF79460A9BCB21A6FCD2FD Certificate serial: 0742 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tNHFfu7y2pEKr3lGCpvLIab80v0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916A033/8BAE8B88294B11EBA0BC902FC4F9AE02/tNHFfu7y2pEKr3lGCpvLIab80v0.mft Manifest number: 0737 Signing time: Thu 24 Apr 2025 21:33:07 +0000 Manifest this update: Thu 24 Apr 2025 21:33:07 +0000 Manifest next update: Thu 01 May 2025 21:33:07 +0000 Files and hashes: 1: tNHFfu7y2pEKr3lGCpvLIab80v0.crl (hash: cX8mXuf/rlsOQPlO05/xNb12pgX3dzUXmbxutgEAF/E=) 2: EB0FEBAA295811EBB519AC70C4F9AE02.roa (hash: l0d5U/HukOAxqR+/ThmuC5REmFDut/5BnvDM1762AlY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916A033/8BAE8B88294B11EBA0BC902FC4F9AE02/tNHFfu7y2pEKr3lGCpvLIab80v0.crl rsync://rpki.apnic.net/member_repository/A916A033/8BAE8B88294B11EBA0BC902FC4F9AE02/tNHFfu7y2pEKr3lGCpvLIab80v0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tNHFfu7y2pEKr3lGCpvLIab80v0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 21:33:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1858 (0x742) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916A033, serialNumber=B4D1C57EEEF2DA910AAF79460A9BCB21A6FCD2FD Validity Not Before: Apr 24 21:33:07 2025 GMT Not After : May 1 21:33:07 2025 GMT Subject: CN=680aae13-cba0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:91:40:bf:db:be:c9:bb:7e:0d:38:55:66:0e: 3a:14:55:d7:30:f2:38:cc:fd:25:18:98:51:27:26: 1b:14:60:92:43:0a:2f:0a:da:1b:fe:0d:b0:dc:5b: a7:91:a7:65:a0:74:83:7f:84:a8:a5:87:84:f2:2a: f4:b6:d5:a3:a1:41:9c:d7:cf:7e:91:27:49:5c:36: 73:3d:58:7e:2c:93:c4:66:87:23:e0:60:ee:7b:6e: 5d:e7:7b:1a:0c:92:8d:4d:0e:73:b9:c9:1f:db:4d: fe:e7:c0:82:0a:ea:69:1b:2d:63:c4:17:92:35:f5: df:92:5b:b9:07:f5:b7:90:cc:55:71:32:41:36:b6: 1c:33:ed:0d:39:26:fd:9e:9b:f4:d2:9f:c1:8b:4b: fb:06:a3:58:ca:85:44:fe:9f:19:6f:fe:6b:8f:12: 06:95:ce:86:8e:73:9f:0d:06:bb:93:a2:26:32:7e: dc:99:01:f5:8a:46:99:0a:eb:ed:4c:6c:5d:08:5a: c9:49:e3:64:97:7e:f3:d6:59:6b:9f:06:6e:e9:18: e7:d5:af:af:62:b6:51:39:4e:b5:73:ff:24:98:31: ba:47:90:75:cc:70:f4:c0:06:1b:60:99:24:12:fc: d4:f8:5a:8e:73:34:9d:db:2f:2c:53:5e:61:fd:fc: f3:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:16:27:9B:F8:2E:55:CD:36:9A:5D:35:5C:C4:E0:9A:65:66:B5:DE X509v3 Authority Key Identifier: keyid:B4:D1:C5:7E:EE:F2:DA:91:0A:AF:79:46:0A:9B:CB:21:A6:FC:D2:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916A033/8BAE8B88294B11EBA0BC902FC4F9AE02/tNHFfu7y2pEKr3lGCpvLIab80v0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tNHFfu7y2pEKr3lGCpvLIab80v0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916A033/8BAE8B88294B11EBA0BC902FC4F9AE02/tNHFfu7y2pEKr3lGCpvLIab80v0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 12:f5:56:f6:da:52:0a:ad:a5:7d:55:86:49:af:37:91:ab:f7: 09:30:d4:af:b1:0f:70:a9:8e:bf:7a:f7:93:b4:00:19:32:d3: 0a:4d:59:46:12:db:17:a9:c9:97:42:22:65:f7:62:cb:6b:bb: 40:fd:a4:56:b7:86:22:09:40:6e:63:1c:b6:58:25:7f:08:7f: 1e:ed:b6:64:8e:aa:87:0e:23:80:c6:68:09:f3:9d:db:96:a7: 00:90:f6:c3:d7:ca:51:be:28:1a:ac:91:05:a3:c8:82:1d:cc: 41:53:b5:64:5c:cd:0c:a8:46:e9:83:0b:ab:96:b6:43:64:57: e7:30:d2:ec:f1:42:cf:cb:2b:da:20:c7:a4:f0:08:d3:f7:0e: 5e:6b:2f:cf:9d:6f:28:e1:e5:af:3d:c7:b4:13:42:16:4d:c0: 5e:79:be:fc:b5:c0:fd:cd:25:48:77:fd:cc:3f:60:cf:ff:e6: 7e:5a:fc:23:a4:69:13:cc:e0:1e:b0:e0:6c:dd:be:94:7f:e6: cb:cf:fa:1f:bd:a7:55:50:e4:31:9e:1a:4a:01:bf:16:35:95: cd:30:ea:74:cc:03:10:d9:88:35:8c:1b:f5:7b:61:e1:5b:c8: c8:16:fa:f7:db:55:76:37:47:d4:b7:49:f6:48:84:c1:39:eb: d8:d5:a3:7d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB0IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkEwMzMxMTAvBgNVBAUTKEI0RDFDNTdFRUVGMkRBOTEwQUFGNzk0NjBBOUJDQjIx QTZGQ0QyRkQwHhcNMjUwNDI0MjEzMzA3WhcNMjUwNTAxMjEzMzA3WjAYMRYwFAYD VQQDEw02ODBhYWUxMy1jYmEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo5FAv9u+ybt+DThVZg46FFXXMPI4zP0lGJhRJyYbFGCSQwovCtob/g2w3Fun kadloHSDf4SopYeE8ir0ttWjoUGc189+kSdJXDZzPVh+LJPEZocj4GDue25d53sa DJKNTQ5zuckf203+58CCCuppGy1jxBeSNfXfklu5B/W3kMxVcTJBNrYcM+0NOSb9 npv00p/Bi0v7BqNYyoVE/p8Zb/5rjxIGlc6GjnOfDQa7k6ImMn7cmQH1ikaZCuvt TGxdCFrJSeNkl37z1llrnwZu6Rjn1a+vYrZROU61c/8kmDG6R5B1zHD0wAYbYJkk EvzU+FqOczSd2y8sU15h/fzziQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFIWJ5v4 LlXNNppdNVzE4JplZrXeMB8GA1UdIwQYMBaAFLTRxX7u8tqRCq95RgqbyyGm/NL9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QTAzMy84QkFFOEI4ODI5 NEIxMUVCQTBCQzkwMkZDNEY5QUUwMi90TkhGZnU3eTJwRUtyM2xHQ3B2TElhYjgw djAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ROSEZmdTd5MnBFS3IzbEdDcHZMSWFiODB2MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QTAzMy84QkFFOEI4ODI5NEIxMUVCQTBCQzkwMkZDNEY5QUUwMi90TkhGZnU3eTJw RUtyM2xHQ3B2TElhYjgwdjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAS9Vb22lIKraV9VYZJrzeRq/cJMNSvsQ9wqY6/eveTtAAZMtMKTVlG EtsXqcmXQiJl92LLa7tA/aRWt4YiCUBuYxy2WCV/CH8e7bZkjqqHDiOAxmgJ853b lqcAkPbD18pRvigarJEFo8iCHcxBU7VkXM0MqEbpgwurlrZDZFfnMNLs8ULPyyva IMek8AjT9w5eay/PnW8o4eWvPce0E0IWTcBeeb78tcD9zSVId/3MP2DP/+Z+Wvwj pGkTzOAesOBs3b6Uf+bLz/ofvadVUOQxnhpKAb8WNZXNMOp0zAMQ2Yg1jBv1e2Hh W8jIFvr321V2N0fUt0n2SITBOevY1aN9 -----END CERTIFICATE-----Generated at Sat Apr 26 14:55:42 2025 by rpki-client