$ rpki-client -vvf rpki.apnic.net/member_repository/A9174880/69F04BA81D6A11E2BB7014A808B02CD2/Ty_T8AtY8TSpqOPn3ajY0grANSc.mft File: Ty_T8AtY8TSpqOPn3ajY0grANSc.mft (raw, json) Hash identifier: rymHqOS8vXL221jTIP5ypDgUg/7iqgThSp4Tj+xmOeA= Subject key identifier: 2F:B9:21:78:42:3B:35:78:9D:03:04:35:BC:AD:A9:5B:1C:B5:F1:1B Authority key identifier: 4F:2F:D3:F0:0B:58:F1:34:A9:A8:E3:E7:DD:A8:D8:D2:0A:C0:35:27 Certificate issuer: /CN=A9174880/serialNumber=4F2FD3F00B58F134A9A8E3E7DDA8D8D20AC03527 Certificate serial: 34F5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ty_T8AtY8TSpqOPn3ajY0grANSc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9174880/69F04BA81D6A11E2BB7014A808B02CD2/Ty_T8AtY8TSpqOPn3ajY0grANSc.mft Manifest number: 34B5 Signing time: Thu 24 Apr 2025 14:16:46 +0000 Manifest this update: Thu 24 Apr 2025 14:16:46 +0000 Manifest next update: Thu 01 May 2025 14:16:46 +0000 Files and hashes: 1: Ty_T8AtY8TSpqOPn3ajY0grANSc.crl (hash: qTLnviGpuXHtTCjqOJnT6nbuy34vo0tRoeycEDV9WcU=) 2: 5D81654A561E11E7A4FFF329C4F9AE02.roa (hash: lNgj4TvSe3KKVyyrTSvIWXZ/d+PVLLALfHGvhjBEEiE=) 3: 3869DF8A1C6011EEAF58FB61C4F9AE02.roa (hash: nfzhFLP0jYKTq0z6wHGwsoz8GMYhYCaKTE6tTnCuKUk=) 4: B5885EF852D411EC8C8CE26CC4F9AE02.roa (hash: r9l8dniBLJAah6kBshgsvvbb8QtLGysiZozs08rVUnY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9174880/69F04BA81D6A11E2BB7014A808B02CD2/Ty_T8AtY8TSpqOPn3ajY0grANSc.crl rsync://rpki.apnic.net/member_repository/A9174880/69F04BA81D6A11E2BB7014A808B02CD2/Ty_T8AtY8TSpqOPn3ajY0grANSc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ty_T8AtY8TSpqOPn3ajY0grANSc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 14:16:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13557 (0x34f5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9174880, serialNumber=4F2FD3F00B58F134A9A8E3E7DDA8D8D20AC03527 Validity Not Before: Apr 24 14:16:46 2025 GMT Not After : May 1 14:16:46 2025 GMT Subject: CN=680a47ce-f19d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:bf:87:1d:8d:06:a0:7e:da:2b:f5:df:26:82: 5d:ca:9e:af:cc:82:6b:d3:19:d3:48:c4:2c:93:6f: 29:fc:d1:e8:32:17:4b:b3:95:a2:95:9b:e0:fe:ab: c6:85:3b:9a:1e:bd:69:be:67:07:15:cc:2a:81:c6: e1:02:55:67:55:b3:cd:56:9b:87:e4:b8:81:b9:f4: 27:ce:bb:40:3d:68:f1:0c:33:48:98:af:81:c7:28: c9:77:a9:02:58:d0:e9:75:07:b7:50:f8:8f:bf:d6: f1:11:bc:c5:eb:65:5d:49:28:5c:92:e0:16:62:9f: 13:df:df:04:67:79:a3:fd:80:26:60:db:40:ff:d3: 68:10:17:ff:91:81:34:3f:86:4d:7b:1a:66:dd:70: 79:1a:34:c1:f8:85:b6:ee:aa:25:58:c2:1d:17:c2: ed:2f:fa:04:46:2c:4c:b1:82:c9:3f:5c:fe:8a:6f: ab:68:d0:53:54:04:54:56:3f:a4:96:4c:73:8e:2b: 4c:80:53:eb:99:a1:7c:47:67:20:f8:c0:78:7c:e5: e7:34:20:da:7f:79:24:46:7d:e9:d9:51:12:54:fd: e4:1b:d1:8b:8e:a3:43:19:04:6e:1c:00:bb:ff:cf: 07:0c:75:33:53:61:70:13:b7:f7:f3:8f:f2:b4:6a: d3:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:B9:21:78:42:3B:35:78:9D:03:04:35:BC:AD:A9:5B:1C:B5:F1:1B X509v3 Authority Key Identifier: keyid:4F:2F:D3:F0:0B:58:F1:34:A9:A8:E3:E7:DD:A8:D8:D2:0A:C0:35:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9174880/69F04BA81D6A11E2BB7014A808B02CD2/Ty_T8AtY8TSpqOPn3ajY0grANSc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ty_T8AtY8TSpqOPn3ajY0grANSc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9174880/69F04BA81D6A11E2BB7014A808B02CD2/Ty_T8AtY8TSpqOPn3ajY0grANSc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a7:70:7b:4b:3e:fe:a9:29:1d:c3:66:f8:f5:95:cd:4f:c0:a4: 9f:a2:4e:86:cb:87:49:33:61:56:31:0e:36:41:25:48:94:00: b7:f2:74:85:04:82:88:83:b8:be:d4:3c:0f:4a:fa:a9:e0:4c: 21:2c:b5:d6:41:f2:cb:31:70:d1:17:87:29:7a:5f:55:83:78: dc:be:86:ee:52:af:b5:06:cb:5d:58:d8:28:91:90:8d:5c:30: 75:13:9b:85:5c:66:7f:04:0b:d4:aa:5f:27:cb:b7:67:7a:ee: 70:cb:bf:d5:94:02:e0:89:ea:c3:be:8b:1c:8c:46:f1:38:00: 30:4d:a3:4d:6e:52:c2:c3:3e:d6:fb:82:64:4e:ac:45:eb:b6: d8:4a:15:4c:8b:71:b9:41:cb:81:f7:3e:63:d8:ed:63:7e:e4: a6:1a:db:25:88:74:71:46:3f:98:b6:e7:48:31:c8:3f:9e:f2: 90:a3:06:d4:c6:3a:35:93:b2:c4:a5:e0:dc:84:df:73:aa:b2: 9c:d0:e0:ce:bc:92:89:9a:2b:2b:ab:e9:ee:50:4c:dd:1d:44: 71:cf:f8:fe:01:f0:d9:80:7a:af:4f:fa:22:65:37:d4:3b:99: a4:51:36:7f:f2:9d:dc:3d:a0:82:88:ec:39:8f:9d:f4:bb:91: 3a:22:d6:28 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNPUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzQ4ODAxMTAvBgNVBAUTKDRGMkZEM0YwMEI1OEYxMzRBOUE4RTNFN0REQThEOEQy MEFDMDM1MjcwHhcNMjUwNDI0MTQxNjQ2WhcNMjUwNTAxMTQxNjQ2WjAYMRYwFAYD VQQDEw02ODBhNDdjZS1mMTlkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAl7+HHY0GoH7aK/XfJoJdyp6vzIJr0xnTSMQsk28p/NHoMhdLs5WilZvg/qvG hTuaHr1pvmcHFcwqgcbhAlVnVbPNVpuH5LiBufQnzrtAPWjxDDNImK+BxyjJd6kC WNDpdQe3UPiPv9bxEbzF62VdSShckuAWYp8T398EZ3mj/YAmYNtA/9NoEBf/kYE0 P4ZNexpm3XB5GjTB+IW27qolWMIdF8LtL/oERixMsYLJP1z+im+raNBTVARUVj+k lkxzjitMgFPrmaF8R2cg+MB4fOXnNCDaf3kkRn3p2VESVP3kG9GLjqNDGQRuHAC7 /88HDHUzU2FwE7f384/ytGrT5wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC+5IXhC OzV4nQMENbytqVsctfEbMB8GA1UdIwQYMBaAFE8v0/ALWPE0qajj592o2NIKwDUn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NDg4MC82OUYwNEJBODFE NkExMUUyQkI3MDE0QTgwOEIwMkNEMi9UeV9UOEF0WThUU3BxT1BuM2FqWTBnckFO U2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1R5X1Q4QXRZOFRTcHFPUG4zYWpZMGdyQU5TYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NDg4MC82OUYwNEJBODFENkExMUUyQkI3MDE0QTgwOEIwMkNEMi9UeV9UOEF0WThU U3BxT1BuM2FqWTBnckFOU2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCncHtLPv6pKR3DZvj1lc1PwKSfok6Gy4dJM2FWMQ42QSVIlAC38nSF BIKIg7i+1DwPSvqp4EwhLLXWQfLLMXDRF4cpel9Vg3jcvobuUq+1BstdWNgokZCN XDB1E5uFXGZ/BAvUql8ny7dneu5wy7/VlALgierDvoscjEbxOAAwTaNNblLCwz7W +4JkTqxF67bYShVMi3G5QcuB9z5j2O1jfuSmGtsliHRxRj+YtudIMcg/nvKQowbU xjo1k7LEpeDchN9zqrKc0ODOvJKJmisrq+nuUEzdHURxz/j+AfDZgHqvT/oiZTfU O5mkUTZ/8p3cPaCCiOw5j530u5E6ItYo -----END CERTIFICATE-----Generated at Sat Apr 26 14:15:58 2025 by rpki-client