$ rpki-client -vvf rpki.apnic.net/member_repository/A917C34D/F4F049186B4211EB9D2C192CC4F9AE02/TAV55XydHpSk4-TgZlZmIOww4qc.mft File: TAV55XydHpSk4-TgZlZmIOww4qc.mft (raw, json) Hash identifier: 7LrUOzQHd4JdhzfcdjnDtvTnVuRWRclYRkDA6kFVwwc= Subject key identifier: DC:93:F5:3B:47:8E:8D:F0:74:7A:73:15:5E:29:4C:D6:04:75:6A:38 Authority key identifier: 4C:05:79:E5:7C:9D:1E:94:A4:E3:E4:E0:66:56:66:20:EC:30:E2:A7 Certificate issuer: /CN=A917C34D/serialNumber=4C0579E57C9D1E94A4E3E4E066566620EC30E2A7 Certificate serial: 0690 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TAV55XydHpSk4-TgZlZmIOww4qc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C34D/F4F049186B4211EB9D2C192CC4F9AE02/TAV55XydHpSk4-TgZlZmIOww4qc.mft Manifest number: 068A Signing time: Thu 24 Apr 2025 22:02:58 +0000 Manifest this update: Thu 24 Apr 2025 22:02:57 +0000 Manifest next update: Thu 01 May 2025 22:02:57 +0000 Files and hashes: 1: TAV55XydHpSk4-TgZlZmIOww4qc.crl (hash: LK3s0sO3YDuXXi7/41X513uwsWVfiD/mR01+fDC1Kjc=) 2: 00F7933C6F3B11EBA740F268C4F9AE02.roa (hash: XuD/dJtjIFCcLvDlNEI5r0Ri7UyViz+739sGCWSc5XQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C34D/F4F049186B4211EB9D2C192CC4F9AE02/TAV55XydHpSk4-TgZlZmIOww4qc.crl rsync://rpki.apnic.net/member_repository/A917C34D/F4F049186B4211EB9D2C192CC4F9AE02/TAV55XydHpSk4-TgZlZmIOww4qc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TAV55XydHpSk4-TgZlZmIOww4qc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 22:02:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1680 (0x690) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C34D, serialNumber=4C0579E57C9D1E94A4E3E4E066566620EC30E2A7 Validity Not Before: Apr 24 22:02:57 2025 GMT Not After : May 1 22:02:57 2025 GMT Subject: CN=680ab512-a256 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:fd:d0:4c:0c:23:90:64:15:47:5b:12:ab:a3: ea:a9:46:73:42:ac:fb:62:79:02:eb:97:bf:fe:a3: 5b:e3:71:7b:57:bf:8f:3e:aa:a3:be:c7:ec:f5:0d: ab:a4:0a:b7:97:cf:0d:63:55:e1:10:5f:05:52:fc: 8f:51:47:6c:09:de:d8:c6:ae:76:53:6d:2d:c0:f5: 8f:9f:a5:29:1e:b6:fb:0a:56:c6:f3:88:b5:1a:f7: 47:0b:77:fc:8e:85:6b:1d:96:0a:e0:1c:d4:a9:7d: ed:b9:c0:24:fa:65:98:ba:46:52:a2:53:16:6b:ff: 37:26:5b:13:3f:3d:1c:ce:68:54:25:09:c0:2b:33: 38:de:40:2f:ce:ea:d8:e5:f8:37:6f:c9:33:5a:4e: 9e:dc:46:db:12:96:2a:4c:3e:61:89:70:44:cc:f4: 26:e7:2b:0b:a5:1b:c3:c2:d6:dd:2e:ed:dd:d0:09: 0d:5d:11:ca:57:81:b6:40:e9:55:52:6a:1d:89:59: 43:0c:b7:2b:1d:4a:4e:a1:ab:3d:a1:99:64:e3:34: ae:d4:d0:60:1c:38:ee:00:e8:7f:9a:5b:96:57:fd: af:65:a9:91:3b:1d:4d:35:62:0d:1c:18:98:a1:41: 66:56:8f:91:7a:0d:f3:fd:24:5a:c1:ed:8c:d7:79: 3c:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:93:F5:3B:47:8E:8D:F0:74:7A:73:15:5E:29:4C:D6:04:75:6A:38 X509v3 Authority Key Identifier: keyid:4C:05:79:E5:7C:9D:1E:94:A4:E3:E4:E0:66:56:66:20:EC:30:E2:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C34D/F4F049186B4211EB9D2C192CC4F9AE02/TAV55XydHpSk4-TgZlZmIOww4qc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TAV55XydHpSk4-TgZlZmIOww4qc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C34D/F4F049186B4211EB9D2C192CC4F9AE02/TAV55XydHpSk4-TgZlZmIOww4qc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9d:4d:41:8e:af:41:3e:bb:09:67:e8:e5:62:51:dd:bd:1f:e2: cc:9d:eb:c3:fa:1b:ab:ca:63:f3:05:96:d0:6b:ec:93:50:65: d3:eb:31:a1:65:0d:05:3f:1e:27:39:30:a5:4d:36:ca:4f:6b: e2:f1:31:59:29:ca:eb:dc:d1:6b:90:ea:0a:95:c7:73:1c:cb: be:20:0a:8c:d3:d0:82:95:f8:15:65:5a:35:9c:a9:71:42:e0: a1:f0:43:01:13:57:95:d8:f2:d4:b5:bc:2e:78:37:a8:c0:13: 96:6b:75:a4:0b:2b:91:43:c7:e7:c5:6a:48:9b:f6:0e:ec:51: c3:2f:c6:7f:a6:84:75:90:e4:ce:bb:15:76:7a:70:8c:b1:1c: 5c:61:90:89:df:39:28:b5:8c:6b:47:51:4b:7d:d3:89:d6:ae: be:72:b9:f7:d7:79:b8:10:0b:9a:fb:f2:f2:81:78:9a:32:09: ec:1c:4b:eb:42:d0:19:ea:5e:45:09:9c:1a:af:c6:ce:9b:71: 1b:2a:bc:5a:8a:6a:fc:5d:8b:2b:28:02:f4:cc:5e:34:da:c2: 7e:54:ba:d9:05:52:a3:2c:8d:e3:83:02:55:bc:61:86:4f:1f: 55:a4:09:cb:67:89:8e:a4:fe:a0:8a:df:41:63:56:10:18:c1: 53:72:90:5d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBpAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0MzNEQxMTAvBgNVBAUTKDRDMDU3OUU1N0M5RDFFOTRBNEUzRTRFMDY2NTY2NjIw RUMzMEUyQTcwHhcNMjUwNDI0MjIwMjU3WhcNMjUwNTAxMjIwMjU3WjAYMRYwFAYD VQQDEw02ODBhYjUxMi1hMjU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArf3QTAwjkGQVR1sSq6PqqUZzQqz7YnkC65e//qNb43F7V7+PPqqjvsfs9Q2r pAq3l88NY1XhEF8FUvyPUUdsCd7Yxq52U20twPWPn6UpHrb7ClbG84i1GvdHC3f8 joVrHZYK4BzUqX3tucAk+mWYukZSolMWa/83JlsTPz0czmhUJQnAKzM43kAvzurY 5fg3b8kzWk6e3EbbEpYqTD5hiXBEzPQm5ysLpRvDwtbdLu3d0AkNXRHKV4G2QOlV UmodiVlDDLcrHUpOoas9oZlk4zSu1NBgHDjuAOh/mluWV/2vZamROx1NNWINHBiY oUFmVo+Reg3z/SRawe2M13k8CQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNyT9TtH jo3wdHpzFV4pTNYEdWo4MB8GA1UdIwQYMBaAFEwFeeV8nR6UpOPk4GZWZiDsMOKn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzM0RC9GNEYwNDkxODZC NDIxMUVCOUQyQzE5MkNDNEY5QUUwMi9UQVY1NVh5ZEhwU2s0LVRnWmxabUlPd3c0 cWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RBVjU1WHlkSHBTazQtVGdabFptSU93dzRxYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QzM0RC9GNEYwNDkxODZCNDIxMUVCOUQyQzE5MkNDNEY5QUUwMi9UQVY1NVh5ZEhw U2s0LVRnWmxabUlPd3c0cWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCdTUGOr0E+uwln6OViUd29H+LMnevD+hurymPzBZbQa+yTUGXT6zGh ZQ0FPx4nOTClTTbKT2vi8TFZKcrr3NFrkOoKlcdzHMu+IAqM09CClfgVZVo1nKlx QuCh8EMBE1eV2PLUtbwueDeowBOWa3WkCyuRQ8fnxWpIm/YO7FHDL8Z/poR1kOTO uxV2enCMsRxcYZCJ3zkotYxrR1FLfdOJ1q6+crn313m4EAua+/LygXiaMgnsHEvr QtAZ6l5FCZwar8bOm3EbKrxaimr8XYsrKAL0zF402sJ+VLrZBVKjLI3jgwJVvGGG Tx9VpAnLZ4mOpP6git9BY1YQGMFTcpBd -----END CERTIFICATE-----Generated at Sat Apr 26 13:11:51 2025 by rpki-client