$ rpki-client -vvf rpki.apnic.net/member_repository/A9186249/98726D6ED17011EEA6151C4DC4F9AE02/TfrxJZm8ip9x2mCrOSDgofQBWOU.mft File: TfrxJZm8ip9x2mCrOSDgofQBWOU.mft (raw, json) Hash identifier: ZL1PO+WKK7OBKIRTmvc7KPG2Omb8sh+89Bu0nNYOrnc= Subject key identifier: 3E:5B:1D:B3:62:F3:24:C8:FE:E1:D5:3F:8A:2E:45:F8:59:68:96:18 Authority key identifier: 4D:FA:F1:25:99:BC:8A:9F:71:DA:60:AB:39:20:E0:A1:F4:01:58:E5 Certificate issuer: /CN=A9186249/serialNumber=4DFAF12599BC8A9F71DA60AB3920E0A1F40158E5 Certificate serial: E6 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TfrxJZm8ip9x2mCrOSDgofQBWOU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9186249/98726D6ED17011EEA6151C4DC4F9AE02/TfrxJZm8ip9x2mCrOSDgofQBWOU.mft Manifest number: E2 Signing time: Fri 25 Apr 2025 04:36:05 +0000 Manifest this update: Fri 25 Apr 2025 04:36:05 +0000 Manifest next update: Fri 02 May 2025 04:36:05 +0000 Files and hashes: 1: TfrxJZm8ip9x2mCrOSDgofQBWOU.crl (hash: Yncu3PnosUQR+YUNQZye1glldbY+suGAn75OsHaBtEk=) 2: E7780BD6D17411EE87F7325DC4F9AE02.roa (hash: 2EzfaEZcvEqdfL3o4m+mh66hiNoNCrlQkH2IaWK10g8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9186249/98726D6ED17011EEA6151C4DC4F9AE02/TfrxJZm8ip9x2mCrOSDgofQBWOU.crl rsync://rpki.apnic.net/member_repository/A9186249/98726D6ED17011EEA6151C4DC4F9AE02/TfrxJZm8ip9x2mCrOSDgofQBWOU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TfrxJZm8ip9x2mCrOSDgofQBWOU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 04:36:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 230 (0xe6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9186249, serialNumber=4DFAF12599BC8A9F71DA60AB3920E0A1F40158E5 Validity Not Before: Apr 25 04:36:05 2025 GMT Not After : May 2 04:36:05 2025 GMT Subject: CN=680b1135-46b5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:a7:4f:46:a4:d3:b1:46:84:e2:08:82:f5:45: 8a:dd:ec:38:22:55:66:c1:b0:75:f5:ba:30:d2:ec: f6:d6:76:75:98:48:96:3d:28:1d:75:8d:5b:a9:d9: 03:c4:ce:6e:97:39:bd:41:73:4e:51:0b:b4:65:53: 34:4d:72:ef:4b:9b:cb:33:95:98:64:7a:51:89:bc: 15:02:13:ea:5d:fa:d8:77:5b:c8:25:0c:43:f1:44: b3:8b:fd:8b:9b:7d:58:1b:ce:f8:ca:5f:8a:00:59: b4:3c:f1:81:33:e9:af:43:51:dd:27:a6:61:67:3f: e3:c1:15:53:d8:10:8a:f6:ed:57:f4:47:98:31:24: 99:06:f5:96:da:6b:55:4f:35:1f:1a:79:e6:dc:5c: c5:e5:3f:b8:46:b0:89:2f:77:a2:35:29:2a:91:e5: ab:00:b4:65:77:34:e7:4d:0c:81:6c:96:1a:99:fa: e2:60:d8:81:13:c8:0b:9a:62:61:25:49:cf:18:01: 45:9f:ac:6e:31:e2:af:2d:3d:82:25:5c:23:d1:d5: ee:d0:f3:71:a5:8b:cd:0b:36:f7:57:d4:bb:6c:d0: 5e:b2:9d:af:ad:8d:29:88:b9:e3:01:f7:f6:f8:51: 26:6e:ca:46:06:d0:11:78:49:cf:0a:85:3b:4a:e4: f2:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:5B:1D:B3:62:F3:24:C8:FE:E1:D5:3F:8A:2E:45:F8:59:68:96:18 X509v3 Authority Key Identifier: keyid:4D:FA:F1:25:99:BC:8A:9F:71:DA:60:AB:39:20:E0:A1:F4:01:58:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9186249/98726D6ED17011EEA6151C4DC4F9AE02/TfrxJZm8ip9x2mCrOSDgofQBWOU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TfrxJZm8ip9x2mCrOSDgofQBWOU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9186249/98726D6ED17011EEA6151C4DC4F9AE02/TfrxJZm8ip9x2mCrOSDgofQBWOU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2e:54:69:f9:8c:8e:5d:b5:60:13:42:fb:70:39:2a:1d:da:fe: 4a:7e:8c:82:bd:36:7b:4e:0f:ce:c6:f0:08:11:1c:96:d1:03: cc:e0:d8:91:21:d4:df:b4:94:82:aa:e6:b2:79:88:d1:f4:6d: 46:f8:71:1c:0e:54:f3:a4:51:8a:7b:06:2a:3f:e6:06:69:94: bb:9b:fa:b5:ed:90:8e:05:bf:3c:f8:45:1c:39:ff:08:aa:c3: 9b:b2:3b:0e:6a:99:2d:18:ee:56:72:e2:96:25:1c:8e:ca:32: a5:6e:b2:c9:d8:9c:f7:ee:0d:f1:10:b9:09:c1:b4:47:c4:84: c5:15:8a:c6:9e:16:d3:71:a5:07:49:2e:75:93:c3:5d:97:7b: df:49:c9:e7:95:c4:e2:e5:b2:31:98:5b:74:6d:70:3f:02:cc: d6:06:3a:c1:c1:3b:de:b8:75:14:f4:84:83:70:76:c6:7d:c6: 18:75:3d:40:d7:60:12:0d:cf:0f:aa:61:df:c4:9d:55:0c:30: 61:39:70:c4:39:81:d9:3c:63:bd:d4:97:46:04:da:35:db:b3: 13:f4:38:3e:94:57:3f:b0:35:3a:ad:1a:28:ba:11:04:f6:b5: 3d:99:84:7d:fa:ad:0e:f3:06:31:ab:97:ec:8d:50:70:d7:3c: 4c:5a:5f:9a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODYyNDkxMTAvBgNVBAUTKDRERkFGMTI1OTlCQzhBOUY3MURBNjBBQjM5MjBFMEEx RjQwMTU4RTUwHhcNMjUwNDI1MDQzNjA1WhcNMjUwNTAyMDQzNjA1WjAYMRYwFAYD VQQDEw02ODBiMTEzNS00NmI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwKdPRqTTsUaE4giC9UWK3ew4IlVmwbB19bow0uz21nZ1mEiWPSgddY1bqdkD xM5ulzm9QXNOUQu0ZVM0TXLvS5vLM5WYZHpRibwVAhPqXfrYd1vIJQxD8USzi/2L m31YG874yl+KAFm0PPGBM+mvQ1HdJ6ZhZz/jwRVT2BCK9u1X9EeYMSSZBvWW2mtV TzUfGnnm3FzF5T+4RrCJL3eiNSkqkeWrALRldzTnTQyBbJYamfriYNiBE8gLmmJh JUnPGAFFn6xuMeKvLT2CJVwj0dXu0PNxpYvNCzb3V9S7bNBesp2vrY0piLnjAff2 +FEmbspGBtAReEnPCoU7SuTy4wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD5bHbNi 8yTI/uHVP4ouRfhZaJYYMB8GA1UdIwQYMBaAFE368SWZvIqfcdpgqzkg4KH0AVjl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NjI0OS85ODcyNkQ2RUQx NzAxMUVFQTYxNTFDNERDNEY5QUUwMi9UZnJ4SlptOGlwOXgybUNyT1NEZ29mUUJX T1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1RmcnhKWm04aXA5eDJtQ3JPU0Rnb2ZRQldPVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NjI0OS85ODcyNkQ2RUQxNzAxMUVFQTYxNTFDNERDNEY5QUUwMi9UZnJ4SlptOGlw OXgybUNyT1NEZ29mUUJXT1UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAuVGn5jI5dtWATQvtwOSod2v5KfoyCvTZ7Tg/OxvAIERyW0QPM4NiR IdTftJSCquayeYjR9G1G+HEcDlTzpFGKewYqP+YGaZS7m/q17ZCOBb88+EUcOf8I qsObsjsOapktGO5WcuKWJRyOyjKlbrLJ2Jz37g3xELkJwbRHxITFFYrGnhbTcaUH SS51k8Ndl3vfScnnlcTi5bIxmFt0bXA/AszWBjrBwTveuHUU9ISDcHbGfcYYdT1A 12ASDc8PqmHfxJ1VDDBhOXDEOYHZPGO91JdGBNo127MT9Dg+lFc/sDU6rRoouhEE 9rU9mYR9+q0O8wYxq5fsjVBw1zxMWl+a -----END CERTIFICATE-----Generated at Sat Apr 26 13:03:23 2025 by rpki-client