$ rpki-client -vvf rpki.apnic.net/member_repository/A91820CC/936B43320BD911F08C607F87C4F9AE02/t0ZCTjTomeFM0znQc7tfSRj9B4c.mft File: t0ZCTjTomeFM0znQc7tfSRj9B4c.mft (raw, json) Hash identifier: j+DOH6t6VHpFCqS1XsaZb6WHPdJFdeXRPhrmQ1aCoQ4= Subject key identifier: 77:91:2B:39:81:5B:5C:FD:DC:E9:F6:D7:52:A4:98:81:6D:2E:29:72 Authority key identifier: B7:46:42:4E:34:E8:99:E1:4C:D3:39:D0:73:BB:5F:49:18:FD:07:87 Certificate issuer: /CN=A91820CC/serialNumber=B746424E34E899E14CD339D073BB5F4918FD0787 Certificate serial: 12 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t0ZCTjTomeFM0znQc7tfSRj9B4c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91820CC/936B43320BD911F08C607F87C4F9AE02/t0ZCTjTomeFM0znQc7tfSRj9B4c.mft Manifest number: 11 Signing time: Fri 25 Apr 2025 07:04:10 +0000 Manifest this update: Fri 25 Apr 2025 07:04:09 +0000 Manifest next update: Fri 02 May 2025 07:04:09 +0000 Files and hashes: 1: t0ZCTjTomeFM0znQc7tfSRj9B4c.crl (hash: QteB1nwLi9MUwKXOe8YOvZgM8TyF5F1Ovr8u+oM5DEE=) 2: 675707260BDA11F0A768300AC4F9AE02.roa (hash: wilBGqna+OfcXED1b/uTuE5R5bjXwDBDwAo+DwpXl+8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91820CC/936B43320BD911F08C607F87C4F9AE02/t0ZCTjTomeFM0znQc7tfSRj9B4c.crl rsync://rpki.apnic.net/member_repository/A91820CC/936B43320BD911F08C607F87C4F9AE02/t0ZCTjTomeFM0znQc7tfSRj9B4c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t0ZCTjTomeFM0znQc7tfSRj9B4c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 07:04:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18 (0x12) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91820CC, serialNumber=B746424E34E899E14CD339D073BB5F4918FD0787 Validity Not Before: Apr 25 07:04:09 2025 GMT Not After : May 2 07:04:09 2025 GMT Subject: CN=680b33e9-82e4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:97:25:b3:d9:cb:10:ba:fe:34:67:5d:d4:50: 57:3a:06:14:21:96:a5:f0:14:1c:d3:c3:2c:b8:22: 76:75:df:ef:f6:a8:33:57:46:b9:92:d9:8f:f4:c8: 47:d5:da:e9:93:ac:fa:b1:ec:08:10:a3:0b:43:c8: 63:fb:e3:ec:92:48:ae:99:15:6f:7b:2b:75:59:dd: 75:fd:28:c3:51:e0:88:34:7c:ac:9c:98:1f:68:76: b3:67:3f:b3:02:5b:5a:9a:80:5f:82:32:1c:63:20: 09:0e:03:d0:08:a0:7c:18:0d:08:d0:34:6e:1b:2d: e6:75:a9:d6:91:17:44:d9:da:dc:a5:21:4f:2a:b3: ab:c0:56:62:a9:62:dc:d0:a0:ab:8d:c0:3a:1b:5b: 45:f5:d3:37:8f:8f:e4:92:c4:d9:ca:b0:27:e4:dd: 51:cb:d7:6a:f6:48:47:72:65:25:3b:9a:e9:73:cb: fb:c7:aa:4c:1c:72:4f:4f:a9:b9:9b:d3:54:3e:f0: 2d:97:e8:a8:e1:4c:ae:97:5a:21:4f:18:1c:21:56: 0b:58:0b:7c:5f:c4:a9:1f:31:29:f7:02:bc:74:00: b4:de:e5:3e:22:bf:e9:31:ea:16:f7:9a:ca:76:59: cc:5f:81:fb:6a:46:c2:7b:d1:62:fe:3d:b5:2b:be: bc:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:91:2B:39:81:5B:5C:FD:DC:E9:F6:D7:52:A4:98:81:6D:2E:29:72 X509v3 Authority Key Identifier: keyid:B7:46:42:4E:34:E8:99:E1:4C:D3:39:D0:73:BB:5F:49:18:FD:07:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91820CC/936B43320BD911F08C607F87C4F9AE02/t0ZCTjTomeFM0znQc7tfSRj9B4c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t0ZCTjTomeFM0znQc7tfSRj9B4c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91820CC/936B43320BD911F08C607F87C4F9AE02/t0ZCTjTomeFM0znQc7tfSRj9B4c.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4d:02:ef:f1:b6:13:29:bd:3b:2b:6f:f7:2a:ff:07:c2:64:98: 2a:e6:ee:10:cc:1d:0a:58:1b:e2:e2:c0:ad:73:40:26:d6:da: 00:1a:7c:75:7b:7f:6d:91:2c:74:af:ee:e8:cf:91:62:3f:10: 52:a5:19:8b:da:9a:0b:b8:38:92:f6:b7:b9:41:bb:2f:b2:f7: cd:0b:98:8f:5e:8a:71:55:46:83:96:83:9f:17:9b:ce:0e:3d: ea:80:13:7e:34:ac:19:50:f2:f3:f4:01:8e:63:fd:aa:7f:10: 53:45:61:87:7a:83:db:b1:e1:00:2a:a2:73:09:25:8b:f5:13: 8d:2f:81:73:9f:65:fe:6a:de:14:16:4f:4e:31:ce:6d:22:b5: 27:06:6f:74:8d:9d:82:c3:89:8b:ed:1c:f9:f7:57:82:c9:d1: 7a:43:83:43:8d:13:25:3b:27:42:85:43:12:95:17:b2:81:99: 06:cf:0b:a5:9f:45:37:1a:4a:61:98:eb:be:0f:bc:e7:32:99: 1e:09:e0:e7:a3:cb:e9:48:15:f3:b6:22:23:0c:73:ee:0c:e4: 14:19:45:c5:db:59:92:f3:2b:95:a9:48:ac:63:bd:7d:18:a4: c1:a6:da:0f:84:7b:86:0b:d5:d8:b3:9d:6b:81:e8:1b:8b:ac: b9:b6:28:ca -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBEjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 MjBDQzExMC8GA1UEBRMoQjc0NjQyNEUzNEU4OTlFMTRDRDMzOUQwNzNCQjVGNDkx OEZEMDc4NzAeFw0yNTA0MjUwNzA0MDlaFw0yNTA1MDIwNzA0MDlaMBgxFjAUBgNV BAMTDTY4MGIzM2U5LTgyZTQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCxlyWz2csQuv40Z13UUFc6BhQhlqXwFBzTwyy4InZ13+/2qDNXRrmS2Y/0yEfV 2umTrPqx7AgQowtDyGP74+ySSK6ZFW97K3VZ3XX9KMNR4Ig0fKycmB9odrNnP7MC W1qagF+CMhxjIAkOA9AIoHwYDQjQNG4bLeZ1qdaRF0TZ2tylIU8qs6vAVmKpYtzQ oKuNwDobW0X10zePj+SSxNnKsCfk3VHL12r2SEdyZSU7mulzy/vHqkwcck9Pqbmb 01Q+8C2X6KjhTK6XWiFPGBwhVgtYC3xfxKkfMSn3Arx0ALTe5T4iv+kx6hb3msp2 WcxfgftqRsJ70WL+PbUrvrx9AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUd5ErOYFb XP3c6fbXUqSYgW0uKXIwHwYDVR0jBBgwFoAUt0ZCTjTomeFM0znQc7tfSRj9B4cw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTgyMENDLzkzNkI0MzMyMEJE OTExRjA4QzYwN0Y4N0M0RjlBRTAyL3QwWkNUalRvbWVGTTB6blFjN3RmU1JqOUI0 Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvdDBaQ1RqVG9tZUZNMHpuUWM3dGZTUmo5QjRjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTgy MENDLzkzNkI0MzMyMEJEOTExRjA4QzYwN0Y4N0M0RjlBRTAyL3QwWkNUalRvbWVG TTB6blFjN3RmU1JqOUI0Yy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAE0C7/G2Eym9Oytv9yr/B8JkmCrm7hDMHQpYG+LiwK1zQCbW2gAafHV7 f22RLHSv7ujPkWI/EFKlGYvamgu4OJL2t7lBuy+y980LmI9einFVRoOWg58Xm84O PeqAE340rBlQ8vP0AY5j/ap/EFNFYYd6g9ux4QAqonMJJYv1E40vgXOfZf5q3hQW T04xzm0itScGb3SNnYLDiYvtHPn3V4LJ0XpDg0ONEyU7J0KFQxKVF7KBmQbPC6Wf RTcaSmGY674PvOcymR4J4Oejy+lIFfO2IiMMc+4M5BQZRcXbWZLzK5WpSKxjvX0Y pMGm2g+Ee4YL1diznWuB6BuLrLm2KMo= -----END CERTIFICATE-----Generated at Sat Apr 26 14:16:00 2025 by rpki-client