$ rpki-client -vvf rpki.apnic.net/member_repository/A9173C8A/E7FFC5F486F711E78634EC7EC4F9AE02/Tisg2VNzK3Xu0S8SmSGgsbXrFY4.mft File: Tisg2VNzK3Xu0S8SmSGgsbXrFY4.mft (raw, json) Hash identifier: pZHf/rgP9X23GcH+gLt5ZkwkjrHAYxVtV3gWI8VOkNM= Subject key identifier: DD:10:33:82:F9:08:64:29:95:67:DE:27:13:47:B3:6E:21:AC:E7:DE Authority key identifier: 4E:2B:20:D9:53:73:2B:75:EE:D1:2F:12:99:21:A0:B1:B5:EB:15:8E Certificate issuer: /CN=A9173C8A/serialNumber=4E2B20D953732B75EED12F129921A0B1B5EB158E Certificate serial: 18F8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Tisg2VNzK3Xu0S8SmSGgsbXrFY4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9173C8A/E7FFC5F486F711E78634EC7EC4F9AE02/Tisg2VNzK3Xu0S8SmSGgsbXrFY4.mft Manifest number: 18EB Signing time: Thu 24 Apr 2025 16:27:55 +0000 Manifest this update: Thu 24 Apr 2025 16:27:55 +0000 Manifest next update: Thu 01 May 2025 16:27:55 +0000 Files and hashes: 1: Tisg2VNzK3Xu0S8SmSGgsbXrFY4.crl (hash: IsKmEC1W6GCmm9Hyi0I1iqZ/J8ylMEOo+Pvzaju3szI=) 2: 9FD5C8F48EFE11E88C6EBD37C4F9AE02.roa (hash: 7Hs9ZZORwzDrkP5Wsr0Azs8K265xvZ4OedgYnSopdc0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9173C8A/E7FFC5F486F711E78634EC7EC4F9AE02/Tisg2VNzK3Xu0S8SmSGgsbXrFY4.crl rsync://rpki.apnic.net/member_repository/A9173C8A/E7FFC5F486F711E78634EC7EC4F9AE02/Tisg2VNzK3Xu0S8SmSGgsbXrFY4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Tisg2VNzK3Xu0S8SmSGgsbXrFY4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 16:27:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6392 (0x18f8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9173C8A, serialNumber=4E2B20D953732B75EED12F129921A0B1B5EB158E Validity Not Before: Apr 24 16:27:55 2025 GMT Not After : May 1 16:27:55 2025 GMT Subject: CN=680a668b-e913 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:fe:e7:46:e4:4e:12:af:f9:6c:53:40:ff:0d: a1:eb:c4:c4:46:07:57:fd:58:ed:a4:19:a6:5c:fc: fc:96:c2:26:3e:ad:58:3c:95:00:de:b5:cd:ef:78: 7b:af:ab:09:34:f0:9c:55:0a:a1:a8:66:86:39:f9: ea:a7:5a:32:6c:ef:5d:e3:34:97:28:45:c4:87:92: 79:93:83:1b:d2:78:47:f6:5e:a0:9d:8b:52:2c:fd: 11:f1:9d:42:bc:7b:1d:4a:14:1b:ce:57:de:da:ea: 6f:a4:56:20:62:39:91:4b:cc:8e:72:d9:e7:7b:b4: 07:f9:b8:46:e5:8d:90:6b:88:93:f3:9b:c0:93:56: eb:a5:a5:6b:74:ba:8f:aa:e6:90:e7:c1:9f:75:a7: 57:bd:ef:b6:e4:fc:53:fc:b8:fc:ee:2f:9f:10:c8: 30:e1:d6:1d:d8:cb:90:dc:50:7a:70:7b:51:f7:00: 95:f6:3a:4e:9b:cd:ce:8e:fc:92:cd:83:12:65:e4: 1c:62:3e:3a:bb:4d:f9:58:da:48:06:d2:a2:d3:89: 6c:62:2e:26:95:40:f7:59:29:94:98:c1:5b:72:55: a5:2a:ec:75:54:03:dd:3c:61:49:7c:ce:6b:32:da: 55:0f:12:a7:61:cd:1e:28:ed:41:c6:03:6b:c3:3f: 9a:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:10:33:82:F9:08:64:29:95:67:DE:27:13:47:B3:6E:21:AC:E7:DE X509v3 Authority Key Identifier: keyid:4E:2B:20:D9:53:73:2B:75:EE:D1:2F:12:99:21:A0:B1:B5:EB:15:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9173C8A/E7FFC5F486F711E78634EC7EC4F9AE02/Tisg2VNzK3Xu0S8SmSGgsbXrFY4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Tisg2VNzK3Xu0S8SmSGgsbXrFY4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9173C8A/E7FFC5F486F711E78634EC7EC4F9AE02/Tisg2VNzK3Xu0S8SmSGgsbXrFY4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 58:44:38:26:0d:29:4e:10:c8:c5:02:fe:63:f7:23:b0:8b:6c: 12:8b:0e:30:b2:8e:b5:0b:52:2d:f9:5a:01:77:37:19:c6:09: f5:42:5f:24:a9:80:ba:c4:2b:bd:75:32:77:dd:ba:30:47:38: 90:8c:b2:e8:1b:1d:ea:6f:bf:6b:88:0b:24:ff:1b:43:6c:f9: 63:d3:ff:80:a4:99:43:cb:4c:c4:a5:b3:77:35:cc:4f:77:30: 22:a6:03:aa:92:73:27:9c:95:08:cb:68:96:10:86:8b:fa:2c: 23:80:40:bb:1f:c3:4a:74:92:47:49:b7:a3:db:ea:1f:1b:6f: e1:0d:66:05:c1:7a:07:a2:2b:72:8e:2c:cb:38:5c:c7:81:22: 4a:47:d5:d1:63:8c:74:db:5f:9d:54:60:b9:27:ce:32:9d:1c: 58:f1:c8:89:fc:5e:88:84:ba:fb:ff:f3:53:5f:87:ff:f9:03: 55:cb:f2:11:8d:28:d5:03:58:df:f5:b5:8e:48:76:7b:89:10: 99:70:1a:e0:bd:b0:17:2a:03:98:ac:14:da:22:48:19:77:aa: 36:3d:a1:80:a8:db:08:73:03:e4:17:c2:db:6c:b7:c5:f6:e8: df:d8:56:9c:8f:25:65:68:5d:07:fd:e3:2b:d4:68:79:05:b9: 83:29:86:69 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGPgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzNDOEExMTAvBgNVBAUTKDRFMkIyMEQ5NTM3MzJCNzVFRUQxMkYxMjk5MjFBMEIx QjVFQjE1OEUwHhcNMjUwNDI0MTYyNzU1WhcNMjUwNTAxMTYyNzU1WjAYMRYwFAYD VQQDEw02ODBhNjY4Yi1lOTEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr/7nRuROEq/5bFNA/w2h68TERgdX/VjtpBmmXPz8lsImPq1YPJUA3rXN73h7 r6sJNPCcVQqhqGaGOfnqp1oybO9d4zSXKEXEh5J5k4Mb0nhH9l6gnYtSLP0R8Z1C vHsdShQbzlfe2upvpFYgYjmRS8yOctnne7QH+bhG5Y2Qa4iT85vAk1brpaVrdLqP quaQ58GfdadXve+25PxT/Lj87i+fEMgw4dYd2MuQ3FB6cHtR9wCV9jpOm83OjvyS zYMSZeQcYj46u035WNpIBtKi04lsYi4mlUD3WSmUmMFbclWlKux1VAPdPGFJfM5r MtpVDxKnYc0eKO1BxgNrwz+aBQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN0QM4L5 CGQplWfeJxNHs24hrOfeMB8GA1UdIwQYMBaAFE4rINlTcyt17tEvEpkhoLG16xWO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3M0M4QS9FN0ZGQzVGNDg2 RjcxMUU3ODYzNEVDN0VDNEY5QUUwMi9UaXNnMlZOekszWHUwUzhTbVNHZ3NiWHJG WTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1Rpc2cyVk56SzNYdTBTOFNtU0dnc2JYckZZNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 M0M4QS9FN0ZGQzVGNDg2RjcxMUU3ODYzNEVDN0VDNEY5QUUwMi9UaXNnMlZOeksz WHUwUzhTbVNHZ3NiWHJGWTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBYRDgmDSlOEMjFAv5j9yOwi2wSiw4wso61C1It+VoBdzcZxgn1Ql8k qYC6xCu9dTJ33bowRziQjLLoGx3qb79riAsk/xtDbPlj0/+ApJlDy0zEpbN3NcxP dzAipgOqknMnnJUIy2iWEIaL+iwjgEC7H8NKdJJHSbej2+ofG2/hDWYFwXoHoity jizLOFzHgSJKR9XRY4x021+dVGC5J84ynRxY8ciJ/F6IhLr7//NTX4f/+QNVy/IR jSjVA1jf9bWOSHZ7iRCZcBrgvbAXKgOYrBTaIkgZd6o2PaGAqNsIcwPkF8LbbLfF 9ujf2FacjyVlaF0H/eMr1Gh5BbmDKYZp -----END CERTIFICATE-----Generated at Sat Apr 26 17:04:53 2025 by rpki-client