$ rpki-client -vvf rpki.apnic.net/member_repository/A917C71E/C78E4A721CA811EA8CBB4543C4F9AE02/tZsFZqgqmDvebfHF3kxYLJvKg5I.mft File: tZsFZqgqmDvebfHF3kxYLJvKg5I.mft (raw, json) Hash identifier: mV+T1mKCObDkgbB88Zkmcihw9Jfg+B+Ba/CgJFRGxJg= Subject key identifier: 14:8B:D7:EA:AF:B5:B3:39:FC:36:6E:D9:28:A8:E0:FA:86:81:80:21 Authority key identifier: B5:9B:05:66:A8:2A:98:3B:DE:6D:F1:C5:DE:4C:58:2C:9B:CA:83:92 Certificate issuer: /CN=A917C71E/serialNumber=B59B0566A82A983BDE6DF1C5DE4C582C9BCA8392 Certificate serial: 0BE4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tZsFZqgqmDvebfHF3kxYLJvKg5I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C71E/C78E4A721CA811EA8CBB4543C4F9AE02/tZsFZqgqmDvebfHF3kxYLJvKg5I.mft Manifest number: 0BCC Signing time: Thu 24 Apr 2025 18:49:16 +0000 Manifest this update: Thu 24 Apr 2025 18:49:16 +0000 Manifest next update: Thu 01 May 2025 18:49:16 +0000 Files and hashes: 1: tZsFZqgqmDvebfHF3kxYLJvKg5I.crl (hash: sCeLv/vr0gLoUxaDMyLYgJ2vKdhEQjIyQDg8HpWEB74=) 2: CD843242EF5D11EFA15B580DC4F9AE02.roa (hash: ighwwoIoB/hqwC6NEB1yaB5MkiB7uZW6ja95rSu/mC0=) 3: CB46AC50509111EF9E40402FC4F9AE02.roa (hash: ad0J4ZFgNbW6j5IO3p20cgw4SuRj+wZOS+Yi86cuNgg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C71E/C78E4A721CA811EA8CBB4543C4F9AE02/tZsFZqgqmDvebfHF3kxYLJvKg5I.crl rsync://rpki.apnic.net/member_repository/A917C71E/C78E4A721CA811EA8CBB4543C4F9AE02/tZsFZqgqmDvebfHF3kxYLJvKg5I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tZsFZqgqmDvebfHF3kxYLJvKg5I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 18:49:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3044 (0xbe4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C71E, serialNumber=B59B0566A82A983BDE6DF1C5DE4C582C9BCA8392 Validity Not Before: Apr 24 18:49:16 2025 GMT Not After : May 1 18:49:16 2025 GMT Subject: CN=680a87ac-0b99 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:3b:6d:03:14:05:c1:f4:c9:87:fa:21:0d:a7: 6c:af:cd:f1:9b:ab:5d:82:d4:a3:b6:85:c9:24:06: f9:42:3e:cd:66:4e:80:f4:a8:70:9f:10:61:d8:83: c6:1e:82:f4:68:32:c2:d2:89:46:a5:9a:d0:10:d0: 5e:e1:15:ee:38:b2:e9:46:db:7a:0b:fb:c4:bc:8d: 19:9a:b9:97:a6:7f:13:af:6f:ce:c4:b7:bd:6f:af: 0b:f2:69:e8:52:d7:16:c8:93:78:dc:97:b5:c5:70: 4a:bd:fc:9d:b4:62:c2:df:05:80:56:00:a1:62:15: 58:f2:b4:cb:a5:1c:4d:f2:ca:01:10:93:cd:6c:e6: 16:a1:d5:99:8d:50:48:4b:01:70:1d:dc:66:92:21: ae:15:61:d8:3e:91:6c:53:de:20:33:48:9b:4f:32: 41:dc:f2:13:77:9b:5e:e1:25:df:38:be:b7:da:eb: 54:20:42:e2:32:f7:0c:ae:ee:03:67:6c:0c:19:cd: 77:80:70:16:47:0d:56:b2:3e:5d:49:6f:40:0b:e0: 39:4d:28:aa:c5:5f:2d:0e:e8:e1:a8:19:77:4d:0e: 68:70:4b:c5:60:92:d6:be:59:8f:e9:97:22:5e:51: ff:a9:4d:c9:81:63:2e:b2:f8:52:d1:6e:6c:9a:70: 55:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:8B:D7:EA:AF:B5:B3:39:FC:36:6E:D9:28:A8:E0:FA:86:81:80:21 X509v3 Authority Key Identifier: keyid:B5:9B:05:66:A8:2A:98:3B:DE:6D:F1:C5:DE:4C:58:2C:9B:CA:83:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C71E/C78E4A721CA811EA8CBB4543C4F9AE02/tZsFZqgqmDvebfHF3kxYLJvKg5I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tZsFZqgqmDvebfHF3kxYLJvKg5I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C71E/C78E4A721CA811EA8CBB4543C4F9AE02/tZsFZqgqmDvebfHF3kxYLJvKg5I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 12:b9:9f:88:9d:ed:70:12:5c:d9:d1:fa:28:af:65:c6:aa:a1: d9:ce:ff:8e:51:1a:f9:59:5c:c8:87:00:7a:04:ca:e1:10:8f: 23:b4:23:c0:61:19:1b:19:e3:f3:e0:90:92:a9:38:d2:81:1c: e4:13:61:5b:d3:5a:69:29:c6:80:d9:45:9a:37:9d:86:9c:00: 3b:86:cf:c8:b7:fb:f5:68:55:cc:8f:30:8c:2d:28:2f:61:4e: 09:26:6c:ce:8e:0e:3e:02:af:b9:47:e7:4e:61:7d:f5:be:0e: 16:cf:97:2e:52:d4:46:83:57:45:91:2a:63:e0:98:6a:15:73: 1a:e7:62:36:83:bc:f2:69:d0:94:45:de:21:8a:64:54:7e:be: 7d:89:2f:d1:57:e7:83:fc:b5:be:ae:a1:ae:62:b5:29:2b:7f: 5e:46:65:65:2d:b0:17:18:24:a3:66:18:40:b9:27:54:f2:71: 1a:c4:b0:df:80:59:b7:da:89:7b:b0:43:5e:84:b2:02:cd:84: 18:68:22:e0:63:71:9c:aa:bb:13:e5:80:37:ef:cd:b0:04:ee: 4e:f5:f4:35:7e:cc:9b:bd:6d:cc:09:b9:19:4b:7e:83:f1:06: b7:3c:90:ee:e1:3d:b1:67:7b:fe:62:b5:55:b2:22:56:1f:5a: 97:f0:22:37 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC+QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0M3MUUxMTAvBgNVBAUTKEI1OUIwNTY2QTgyQTk4M0JERTZERjFDNURFNEM1ODJD OUJDQTgzOTIwHhcNMjUwNDI0MTg0OTE2WhcNMjUwNTAxMTg0OTE2WjAYMRYwFAYD VQQDEw02ODBhODdhYy0wYjk5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3zttAxQFwfTJh/ohDadsr83xm6tdgtSjtoXJJAb5Qj7NZk6A9KhwnxBh2IPG HoL0aDLC0olGpZrQENBe4RXuOLLpRtt6C/vEvI0ZmrmXpn8Tr2/OxLe9b68L8mno UtcWyJN43Je1xXBKvfydtGLC3wWAVgChYhVY8rTLpRxN8soBEJPNbOYWodWZjVBI SwFwHdxmkiGuFWHYPpFsU94gM0ibTzJB3PITd5te4SXfOL632utUIELiMvcMru4D Z2wMGc13gHAWRw1Wsj5dSW9AC+A5TSiqxV8tDujhqBl3TQ5ocEvFYJLWvlmP6Zci XlH/qU3JgWMusvhS0W5smnBV1QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBSL1+qv tbM5/DZu2Sio4PqGgYAhMB8GA1UdIwQYMBaAFLWbBWaoKpg73m3xxd5MWCybyoOS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzcxRS9DNzhFNEE3MjFD QTgxMUVBOENCQjQ1NDNDNEY5QUUwMi90WnNGWnFncW1EdmViZkhGM2t4WUxKdktn NUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Rac0ZacWdxbUR2ZWJmSEYza3hZTEp2S2c1SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QzcxRS9DNzhFNEE3MjFDQTgxMUVBOENCQjQ1NDNDNEY5QUUwMi90WnNGWnFncW1E dmViZkhGM2t4WUxKdktnNUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQASuZ+Ine1wElzZ0foor2XGqqHZzv+OURr5WVzIhwB6BMrhEI8jtCPA YRkbGePz4JCSqTjSgRzkE2Fb01ppKcaA2UWaN52GnAA7hs/It/v1aFXMjzCMLSgv YU4JJmzOjg4+Aq+5R+dOYX31vg4Wz5cuUtRGg1dFkSpj4JhqFXMa52I2g7zyadCU Rd4himRUfr59iS/RV+eD/LW+rqGuYrUpK39eRmVlLbAXGCSjZhhAuSdU8nEaxLDf gFm32ol7sENehLICzYQYaCLgY3GcqrsT5YA3782wBO5O9fQ1fsybvW3MCbkZS36D 8Qa3PJDu4T2xZ3v+YrVVsiJWH1qX8CI3 -----END CERTIFICATE-----Generated at Sat Apr 26 15:06:32 2025 by rpki-client