$ rpki-client -vvf rpki.apnic.net/member_repository/A916C4BC/A970B2EC51AC11EC9ED9041BC4F9AE02/Tf7DQ3yQv0FNBRiLSCx4SObzFhs.mft File: Tf7DQ3yQv0FNBRiLSCx4SObzFhs.mft (raw, json) Hash identifier: 9gXrY9C9FEqxzs3hbelsII4g5iHX4VXm+HMKr92E5bM= Subject key identifier: 99:D1:FF:D0:98:2E:EC:E2:99:2D:EC:C0:6A:16:18:57:8A:96:5E:09 Authority key identifier: 4D:FE:C3:43:7C:90:BF:41:4D:05:18:8B:48:2C:78:48:E6:F3:16:1B Certificate issuer: /CN=A916C4BC/serialNumber=4DFEC3437C90BF414D05188B482C7848E6F3161B Certificate serial: 044A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Tf7DQ3yQv0FNBRiLSCx4SObzFhs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916C4BC/A970B2EC51AC11EC9ED9041BC4F9AE02/Tf7DQ3yQv0FNBRiLSCx4SObzFhs.mft Manifest number: 0446 Signing time: Fri 25 Apr 2025 00:00:30 +0000 Manifest this update: Fri 25 Apr 2025 00:00:29 +0000 Manifest next update: Fri 02 May 2025 00:00:29 +0000 Files and hashes: 1: Tf7DQ3yQv0FNBRiLSCx4SObzFhs.crl (hash: Zo+9zwIWTacfzPo/b3Mc4ebZqKZwTvFFRLwM51zqpvI=) 2: F593443851B011ECB5188E24C4F9AE02.roa (hash: CA35rH85+j+YJMr1xe8QwPujExClO3AIGNQ5xuf0vDw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916C4BC/A970B2EC51AC11EC9ED9041BC4F9AE02/Tf7DQ3yQv0FNBRiLSCx4SObzFhs.crl rsync://rpki.apnic.net/member_repository/A916C4BC/A970B2EC51AC11EC9ED9041BC4F9AE02/Tf7DQ3yQv0FNBRiLSCx4SObzFhs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Tf7DQ3yQv0FNBRiLSCx4SObzFhs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 00:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1098 (0x44a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916C4BC, serialNumber=4DFEC3437C90BF414D05188B482C7848E6F3161B Validity Not Before: Apr 25 00:00:29 2025 GMT Not After : May 2 00:00:29 2025 GMT Subject: CN=680ad09e-2e69 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:6d:46:30:ab:3d:dd:39:3e:c7:4a:30:4a:da: 72:6d:88:b0:9e:f7:fe:e0:05:b1:bd:17:de:d2:11: 49:69:59:17:ac:58:96:95:1b:c8:90:3c:22:28:27: 3e:09:3b:cf:b1:d5:a7:f1:2b:d7:1f:c9:f3:2b:4d: 5e:b2:f2:73:05:f9:16:91:7c:c0:1d:eb:30:b2:d0: ef:6e:9d:75:cd:4f:fc:ba:b8:e3:a8:ce:d2:33:e6: d7:c5:92:14:40:e8:92:61:c9:dc:4a:9c:54:08:f3: 40:ba:e8:37:1e:63:87:56:cb:07:41:97:e9:24:93: 19:20:4c:15:5e:72:30:55:01:b6:ec:a5:1a:ac:e6: 1c:d7:10:65:ad:57:98:90:20:5c:e2:38:55:9c:83: f7:13:9c:8a:92:ff:97:42:40:87:2d:42:1e:fc:19: cd:fa:f4:ff:f4:1f:2f:fa:08:37:9e:84:1b:bb:ef: a0:83:c3:ca:68:26:d6:9d:58:b4:12:6b:84:67:37: e4:3b:3a:79:16:d7:5b:fd:1e:d8:da:e2:a1:aa:cf: 73:4d:0e:09:ab:5f:89:9b:a5:6a:52:4e:2b:d9:a8: ac:11:07:2f:70:79:92:b6:7a:44:73:3a:d4:58:51: 1c:ed:cb:f5:bc:b5:44:cc:b0:1b:b4:86:fb:9a:a2: ca:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:D1:FF:D0:98:2E:EC:E2:99:2D:EC:C0:6A:16:18:57:8A:96:5E:09 X509v3 Authority Key Identifier: keyid:4D:FE:C3:43:7C:90:BF:41:4D:05:18:8B:48:2C:78:48:E6:F3:16:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916C4BC/A970B2EC51AC11EC9ED9041BC4F9AE02/Tf7DQ3yQv0FNBRiLSCx4SObzFhs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Tf7DQ3yQv0FNBRiLSCx4SObzFhs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916C4BC/A970B2EC51AC11EC9ED9041BC4F9AE02/Tf7DQ3yQv0FNBRiLSCx4SObzFhs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7b:6c:cc:79:37:67:03:20:cb:ae:1e:4f:7a:b3:64:b1:b4:ab: 7b:e0:a4:9d:cc:cc:7e:6e:e3:a3:b4:b3:29:14:e0:73:fe:22: a7:62:96:69:0a:b2:f7:6e:ac:4d:f5:c8:20:a6:c4:65:60:c7: 84:53:16:60:28:0e:b9:51:47:80:a3:54:9a:27:f8:a1:3e:73: a9:ab:8f:13:76:56:65:39:96:02:4f:8c:93:48:0f:fe:e2:8e: f5:f2:69:d7:e2:b4:b3:d3:83:d9:1f:86:b3:6d:69:48:96:33: a7:2f:d3:72:0c:e9:12:cc:ee:f6:6d:54:6e:22:4d:79:6a:a8: 94:8f:a0:fe:a2:f0:18:ab:26:97:3b:03:69:de:c3:de:8c:6a: b9:2e:42:24:6a:6d:d2:41:3b:99:fb:c6:8e:f3:cc:df:72:4f: 6e:36:ba:95:13:a5:77:46:c4:3f:31:11:a9:55:8e:ff:9e:bb: a8:4b:56:23:23:0c:fc:03:09:18:b7:a6:4e:a0:54:9b:56:b2: 34:ca:38:74:d3:1d:91:bd:ff:b4:e7:64:59:f9:08:ee:0a:ac: b7:66:f7:91:2a:c5:e9:7c:61:18:ed:b9:03:a6:db:d0:f4:79: 19:92:00:55:b8:14:18:53:1f:79:b3:e6:d1:8f:ef:da:7b:1e: 4d:df:cb:50 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBEowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkM0QkMxMTAvBgNVBAUTKDRERkVDMzQzN0M5MEJGNDE0RDA1MTg4QjQ4MkM3ODQ4 RTZGMzE2MUIwHhcNMjUwNDI1MDAwMDI5WhcNMjUwNTAyMDAwMDI5WjAYMRYwFAYD VQQDEw02ODBhZDA5ZS0yZTY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmm1GMKs93Tk+x0owStpybYiwnvf+4AWxvRfe0hFJaVkXrFiWlRvIkDwiKCc+ CTvPsdWn8SvXH8nzK01esvJzBfkWkXzAHeswstDvbp11zU/8urjjqM7SM+bXxZIU QOiSYcncSpxUCPNAuug3HmOHVssHQZfpJJMZIEwVXnIwVQG27KUarOYc1xBlrVeY kCBc4jhVnIP3E5yKkv+XQkCHLUIe/BnN+vT/9B8v+gg3noQbu++gg8PKaCbWnVi0 EmuEZzfkOzp5Ftdb/R7Y2uKhqs9zTQ4Jq1+Jm6VqUk4r2aisEQcvcHmStnpEczrU WFEc7cv1vLVEzLAbtIb7mqLKHQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJnR/9CY LuzimS3swGoWGFeKll4JMB8GA1UdIwQYMBaAFE3+w0N8kL9BTQUYi0gseEjm8xYb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QzRCQy9BOTcwQjJFQzUx QUMxMUVDOUVEOTA0MUJDNEY5QUUwMi9UZjdEUTN5UXYwRk5CUmlMU0N4NFNPYnpG aHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RmN0RRM3lRdjBGTkJSaUxTQ3g0U09iekZocy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QzRCQy9BOTcwQjJFQzUxQUMxMUVDOUVEOTA0MUJDNEY5QUUwMi9UZjdEUTN5UXYw Rk5CUmlMU0N4NFNPYnpGaHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB7bMx5N2cDIMuuHk96s2SxtKt74KSdzMx+buOjtLMpFOBz/iKnYpZp CrL3bqxN9cggpsRlYMeEUxZgKA65UUeAo1SaJ/ihPnOpq48TdlZlOZYCT4yTSA/+ 4o718mnX4rSz04PZH4azbWlIljOnL9NyDOkSzO72bVRuIk15aqiUj6D+ovAYqyaX OwNp3sPejGq5LkIkam3SQTuZ+8aO88zfck9uNrqVE6V3RsQ/MRGpVY7/nruoS1Yj Iwz8AwkYt6ZOoFSbVrI0yjh00x2Rvf+052RZ+QjuCqy3ZveRKsXpfGEY7bkDptvQ 9HkZkgBVuBQYUx95s+bRj+/aex5N38tQ -----END CERTIFICATE-----Generated at Sat Apr 26 05:12:20 2025 by rpki-client