$ rpki-client -vvf rpki.apnic.net/member_repository/A91847A4/F29EB20A07E011F0B6185162C4F9AE02/TN-Z5wf5AjOOFNUQJJqWJbyg_50.mft File: TN-Z5wf5AjOOFNUQJJqWJbyg_50.mft (raw, json) Hash identifier: t+X7JUc8IXYhiN0QUQL8XqfLXY5oi1bhZAL6Mhy+w3s= Subject key identifier: FB:11:FB:49:05:B6:56:D9:40:BC:B4:15:7F:9E:5A:1A:A0:AE:01:C9 Authority key identifier: 4C:DF:99:E7:07:F9:02:33:8E:14:D5:10:24:9A:96:25:BC:A0:FF:9D Certificate issuer: /CN=A91847A4/serialNumber=4CDF99E707F902338E14D510249A9625BCA0FF9D Certificate serial: 18 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TN-Z5wf5AjOOFNUQJJqWJbyg_50.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91847A4/F29EB20A07E011F0B6185162C4F9AE02/TN-Z5wf5AjOOFNUQJJqWJbyg_50.mft Manifest number: 16 Signing time: Fri 25 Apr 2025 07:01:24 +0000 Manifest this update: Fri 25 Apr 2025 07:01:23 +0000 Manifest next update: Fri 02 May 2025 07:01:23 +0000 Files and hashes: 1: TN-Z5wf5AjOOFNUQJJqWJbyg_50.crl (hash: mD93xb/h/PuzL0Cu+6HiT+hQHa9u3vWZztxGbdB74dw=) 2: 1201EAF6083911F0B43D9172C4F9AE02.roa (hash: uAnBgSZhSmrvFmkynr5ZDyN/xYOEHNfe2WWeRhfO1A8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91847A4/F29EB20A07E011F0B6185162C4F9AE02/TN-Z5wf5AjOOFNUQJJqWJbyg_50.crl rsync://rpki.apnic.net/member_repository/A91847A4/F29EB20A07E011F0B6185162C4F9AE02/TN-Z5wf5AjOOFNUQJJqWJbyg_50.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TN-Z5wf5AjOOFNUQJJqWJbyg_50.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 07:01:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24 (0x18) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91847A4, serialNumber=4CDF99E707F902338E14D510249A9625BCA0FF9D Validity Not Before: Apr 25 07:01:23 2025 GMT Not After : May 2 07:01:23 2025 GMT Subject: CN=680b3343-328c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:18:bc:8f:08:2f:ec:e9:b3:3e:98:cf:3d:1c: 1a:8e:ba:41:a9:be:9f:d1:d1:ba:f4:58:78:2a:52: 2f:fe:20:33:16:3e:3c:ff:01:02:da:bf:23:f4:46: 46:17:4c:e9:2c:e0:58:5f:d8:ec:1d:32:e6:9b:c2: e3:b8:21:3e:cd:4b:21:18:83:d1:0c:8d:19:90:63: a8:58:73:59:9c:57:7b:e7:34:d0:62:16:89:cb:5b: b9:39:bf:4a:22:6b:d8:28:80:ca:1e:cb:5c:7f:3c: 81:1a:22:79:da:f9:97:ad:3f:8b:8a:e9:f4:7d:33: e1:b1:49:f8:76:d5:78:03:47:6e:00:1d:20:77:c1: bc:c2:4e:c6:6c:b3:bc:6e:cb:65:f2:58:f9:a2:9f: 67:ba:18:4c:f9:f9:67:41:a6:ee:8d:56:49:04:3b: f6:ff:eb:45:ae:18:be:93:f5:b6:3d:fb:00:0d:65: f0:6e:29:85:fc:b3:91:6f:56:01:f5:ea:65:6f:98: d7:ad:d9:d7:d0:50:1f:3f:f4:af:10:b3:7a:d0:0c: 78:f9:01:3b:df:88:f6:e1:8b:b5:66:89:13:c0:ac: 74:9c:16:ba:ef:fc:28:b8:73:ad:22:af:94:6b:d1: 3e:84:4a:f5:db:e1:ab:dd:c8:83:49:ca:5c:54:ed: ff:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:11:FB:49:05:B6:56:D9:40:BC:B4:15:7F:9E:5A:1A:A0:AE:01:C9 X509v3 Authority Key Identifier: keyid:4C:DF:99:E7:07:F9:02:33:8E:14:D5:10:24:9A:96:25:BC:A0:FF:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91847A4/F29EB20A07E011F0B6185162C4F9AE02/TN-Z5wf5AjOOFNUQJJqWJbyg_50.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TN-Z5wf5AjOOFNUQJJqWJbyg_50.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91847A4/F29EB20A07E011F0B6185162C4F9AE02/TN-Z5wf5AjOOFNUQJJqWJbyg_50.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6f:33:a5:59:b1:7d:5c:33:76:1f:27:f3:87:e2:c6:25:02:09: a3:24:64:1d:a1:39:11:f7:6e:99:ad:17:3c:f8:a8:ef:d2:e0: 65:41:d4:df:85:9b:74:02:2b:36:b5:d8:b3:a6:ef:93:c7:67: c1:56:1d:18:b3:3f:d4:68:8a:9d:df:ff:3f:60:94:2f:6e:64: a8:5e:02:45:6b:1e:bf:79:e9:c7:c7:9b:a9:a0:87:f8:52:2a: 9c:f8:bd:a2:4e:02:eb:da:1c:6c:17:46:ad:2e:a5:72:70:f3: e5:a5:82:88:2c:e1:4f:7a:13:45:35:6f:fc:1b:79:77:0b:87: a7:bf:27:6e:96:5b:dd:a4:b0:9d:37:3c:a9:a5:c4:1c:5a:2d: 39:9f:08:5b:8d:91:91:4d:ba:e6:ca:44:a7:7b:7c:aa:21:c3: d0:ce:04:d6:bd:22:48:f2:ab:fa:5a:e3:3d:3a:b2:95:c4:4f: 97:fd:d4:0d:85:42:4b:c0:34:17:c5:2e:d7:46:2f:2f:1d:93: 44:f7:4a:fd:08:a8:01:76:e6:98:f4:3f:b0:15:ac:6d:d3:c2: 3a:3c:0a:dc:90:38:b2:ca:a0:3d:f0:d4:1a:63:d8:aa:81:bd: 15:87:de:0a:0b:c2:b8:39:4f:0d:04:01:ee:9e:29:f0:36:72: 4b:10:9d:21 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBGDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 NDdBNDExMC8GA1UEBRMoNENERjk5RTcwN0Y5MDIzMzhFMTRENTEwMjQ5QTk2MjVC Q0EwRkY5RDAeFw0yNTA0MjUwNzAxMjNaFw0yNTA1MDIwNzAxMjNaMBgxFjAUBgNV BAMTDTY4MGIzMzQzLTMyOGMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC+GLyPCC/s6bM+mM89HBqOukGpvp/R0br0WHgqUi/+IDMWPjz/AQLavyP0RkYX TOks4Fhf2OwdMuabwuO4IT7NSyEYg9EMjRmQY6hYc1mcV3vnNNBiFonLW7k5v0oi a9gogMoey1x/PIEaInna+ZetP4uK6fR9M+GxSfh21XgDR24AHSB3wbzCTsZss7xu y2XyWPmin2e6GEz5+WdBpu6NVkkEO/b/60WuGL6T9bY9+wANZfBuKYX8s5FvVgH1 6mVvmNet2dfQUB8/9K8Qs3rQDHj5ATvfiPbhi7VmiRPArHScFrrv/Ci4c60ir5Rr 0T6ESvXb4avdyINJylxU7f9xAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU+xH7SQW2 VtlAvLQVf55aGqCuAckwHwYDVR0jBBgwFoAUTN+Z5wf5AjOOFNUQJJqWJbyg/50w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTg0N0E0L0YyOUVCMjBBMDdF MDExRjBCNjE4NTE2MkM0RjlBRTAyL1ROLVo1d2Y1QWpPT0ZOVVFKSnFXSmJ5Z181 MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvVE4tWjV3ZjVBak9PRk5VUUpKcVdKYnlnXzUwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTg0 N0E0L0YyOUVCMjBBMDdFMDExRjBCNjE4NTE2MkM0RjlBRTAyL1ROLVo1d2Y1QWpP T0ZOVVFKSnFXSmJ5Z181MC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAG8zpVmxfVwzdh8n84fixiUCCaMkZB2hORH3bpmtFzz4qO/S4GVB1N+F m3QCKza12LOm75PHZ8FWHRizP9Roip3f/z9glC9uZKheAkVrHr956cfHm6mgh/hS Kpz4vaJOAuvaHGwXRq0upXJw8+Wlgogs4U96E0U1b/wbeXcLh6e/J26WW92ksJ03 PKmlxBxaLTmfCFuNkZFNuubKRKd7fKohw9DOBNa9Ikjyq/pa4z06spXET5f91A2F QkvANBfFLtdGLy8dk0T3Sv0IqAF25pj0P7AVrG3Twjo8CtyQOLLKoD3w1Bpj2KqB vRWH3goLwrg5Tw0EAe6eKfA2cksQnSE= -----END CERTIFICATE-----Generated at Sat Apr 26 17:11:39 2025 by rpki-client