$ rpki-client -vvf rpki.apnic.net/member_repository/A9188D2D/A0682A048FF911EDABEC2537C4F9AE02/tYgfusqd6_Rspghj0pd8U_3WwZA.mft File: tYgfusqd6_Rspghj0pd8U_3WwZA.mft (raw, json) Hash identifier: zOb97dQARU4PS1/gXt1A0HIiIABAi91cTu0WsKant8s= Subject key identifier: EB:B0:F4:9D:17:C6:FC:86:96:74:D0:6F:C0:3E:17:4A:AE:2C:CB:1A Authority key identifier: B5:88:1F:BA:CA:9D:EB:F4:6C:A6:08:63:D2:97:7C:53:FD:D6:C1:90 Certificate issuer: /CN=A9188D2D/serialNumber=B5881FBACA9DEBF46CA60863D2977C53FDD6C190 Certificate serial: 01B2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tYgfusqd6_Rspghj0pd8U_3WwZA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9188D2D/A0682A048FF911EDABEC2537C4F9AE02/tYgfusqd6_Rspghj0pd8U_3WwZA.mft Manifest number: 01AC Signing time: Fri 25 Apr 2025 02:22:59 +0000 Manifest this update: Fri 25 Apr 2025 02:22:58 +0000 Manifest next update: Fri 02 May 2025 02:22:58 +0000 Files and hashes: 1: tYgfusqd6_Rspghj0pd8U_3WwZA.crl (hash: d7C30I+PfPQv6yIeBL/CNA5OIcCJEqmRDyt4UCnPKg4=) 2: D9D943568FFC11ED9776CB38C4F9AE02.roa (hash: CAQTwJ95TZU81HKb4Y7lVQbfnRcyYnVzCOwyM749MwA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9188D2D/A0682A048FF911EDABEC2537C4F9AE02/tYgfusqd6_Rspghj0pd8U_3WwZA.crl rsync://rpki.apnic.net/member_repository/A9188D2D/A0682A048FF911EDABEC2537C4F9AE02/tYgfusqd6_Rspghj0pd8U_3WwZA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tYgfusqd6_Rspghj0pd8U_3WwZA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 02:22:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 434 (0x1b2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9188D2D, serialNumber=B5881FBACA9DEBF46CA60863D2977C53FDD6C190 Validity Not Before: Apr 25 02:22:58 2025 GMT Not After : May 2 02:22:58 2025 GMT Subject: CN=680af202-d7bf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:5a:ac:06:bb:87:98:63:70:c6:da:47:17:c7: 9e:20:c2:69:da:7c:b9:27:18:7b:11:8f:c1:55:c6: 12:ae:dc:28:d3:2e:5b:81:7a:1a:e5:49:ae:b6:c4: 21:f5:df:a5:cb:d8:15:25:d5:57:a5:ca:79:b7:e7: d6:c4:ae:95:1c:12:ae:37:6a:67:3c:5e:4a:89:28: 7b:c3:c1:52:d2:fc:e0:aa:e7:89:d1:f9:f9:8c:d6: d2:7c:a5:b8:a1:0c:34:40:2f:6e:dc:0f:82:b2:ad: 3c:15:0d:14:54:33:4e:22:f8:4f:1b:2e:ba:54:10: f1:b9:de:cb:52:1e:c5:17:3b:f0:fb:14:a9:37:f6: be:f3:d6:87:fe:f8:1f:e6:30:f7:80:90:ed:6a:6f: e9:71:d8:48:a1:5f:0f:3c:3c:c4:dd:a1:ff:fb:63: 34:19:83:3c:c0:aa:67:a5:04:be:98:50:06:21:89: 9e:cb:21:0c:df:7c:92:ff:73:03:fe:ff:85:af:63: ed:8b:61:6d:74:06:25:96:43:11:e0:0a:94:e5:0e: 85:0e:b3:ac:77:40:0c:95:c3:c1:e0:02:7c:30:0d: eb:4d:bf:1d:3f:e6:20:7a:23:e7:d5:ac:da:57:35: 37:10:75:ee:57:8e:58:77:0d:22:51:f9:05:f3:0e: 9e:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:B0:F4:9D:17:C6:FC:86:96:74:D0:6F:C0:3E:17:4A:AE:2C:CB:1A X509v3 Authority Key Identifier: keyid:B5:88:1F:BA:CA:9D:EB:F4:6C:A6:08:63:D2:97:7C:53:FD:D6:C1:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9188D2D/A0682A048FF911EDABEC2537C4F9AE02/tYgfusqd6_Rspghj0pd8U_3WwZA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tYgfusqd6_Rspghj0pd8U_3WwZA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9188D2D/A0682A048FF911EDABEC2537C4F9AE02/tYgfusqd6_Rspghj0pd8U_3WwZA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5c:06:17:25:b8:fc:5d:70:30:fd:46:d4:29:5b:40:e4:0e:09: df:86:74:22:ea:01:b8:11:48:ce:76:46:e5:71:21:6b:dd:b8: 70:48:0e:f5:f2:cb:aa:9c:ec:18:4c:a3:1a:d0:f2:00:4d:53: ea:33:e7:d9:f7:df:41:bc:f0:c1:07:56:82:f4:d7:00:68:9f: e8:1c:d6:b7:05:f8:c9:24:0b:94:d3:d6:48:da:d7:9b:73:05: 38:f5:97:93:5f:e0:cc:70:f5:36:69:49:0d:a0:e5:ba:83:08: 4b:35:41:78:cb:c4:19:1e:c3:b3:b5:c9:a4:34:f1:92:cc:d1: 4a:39:d7:20:53:90:c0:09:39:15:67:6b:1d:bf:06:d6:62:14: 90:0d:e2:14:6a:31:ab:40:75:a2:dd:09:0d:8e:b8:0b:fd:41: 6d:56:84:5b:ab:70:77:cd:31:f6:d8:ad:c6:c1:f0:1c:65:f5: 19:55:30:42:ab:3f:fa:8a:6b:38:bc:00:e2:be:73:c8:71:cc: 7f:c8:4b:19:47:81:7f:55:78:fb:35:d5:4d:bb:00:2b:4a:a3: a0:1d:84:4c:96:30:0d:22:65:c7:f9:4b:67:89:bd:31:57:d6: 79:b4:a1:eb:ff:e8:81:b4:ac:28:ea:42:46:2c:83:a6:f7:ca: 5c:b6:45:e6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAbIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODhEMkQxMTAvBgNVBAUTKEI1ODgxRkJBQ0E5REVCRjQ2Q0E2MDg2M0QyOTc3QzUz RkRENkMxOTAwHhcNMjUwNDI1MDIyMjU4WhcNMjUwNTAyMDIyMjU4WjAYMRYwFAYD VQQDEw02ODBhZjIwMi1kN2JmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqlqsBruHmGNwxtpHF8eeIMJp2ny5Jxh7EY/BVcYSrtwo0y5bgXoa5UmutsQh 9d+ly9gVJdVXpcp5t+fWxK6VHBKuN2pnPF5KiSh7w8FS0vzgqueJ0fn5jNbSfKW4 oQw0QC9u3A+Csq08FQ0UVDNOIvhPGy66VBDxud7LUh7FFzvw+xSpN/a+89aH/vgf 5jD3gJDtam/pcdhIoV8PPDzE3aH/+2M0GYM8wKpnpQS+mFAGIYmeyyEM33yS/3MD /v+Fr2Pti2FtdAYllkMR4AqU5Q6FDrOsd0AMlcPB4AJ8MA3rTb8dP+YgeiPn1aza VzU3EHXuV45Ydw0iUfkF8w6eOQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOuw9J0X xvyGlnTQb8A+F0quLMsaMB8GA1UdIwQYMBaAFLWIH7rKnev0bKYIY9KXfFP91sGQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4OEQyRC9BMDY4MkEwNDhG RjkxMUVEQUJFQzI1MzdDNEY5QUUwMi90WWdmdXNxZDZfUnNwZ2hqMHBkOFVfM1d3 WkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RZZ2Z1c3FkNl9Sc3BnaGowcGQ4VV8zV3daQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 OEQyRC9BMDY4MkEwNDhGRjkxMUVEQUJFQzI1MzdDNEY5QUUwMi90WWdmdXNxZDZf UnNwZ2hqMHBkOFVfM1d3WkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBcBhcluPxdcDD9RtQpW0DkDgnfhnQi6gG4EUjOdkblcSFr3bhwSA71 8suqnOwYTKMa0PIATVPqM+fZ999BvPDBB1aC9NcAaJ/oHNa3BfjJJAuU09ZI2teb cwU49ZeTX+DMcPU2aUkNoOW6gwhLNUF4y8QZHsOztcmkNPGSzNFKOdcgU5DACTkV Z2sdvwbWYhSQDeIUajGrQHWi3QkNjrgL/UFtVoRbq3B3zTH22K3GwfAcZfUZVTBC qz/6ims4vADivnPIccx/yEsZR4F/VXj7NdVNuwArSqOgHYRMljANImXH+Utnib0x V9Z5tKHr/+iBtKwo6kJGLIOm98pctkXm -----END CERTIFICATE-----Generated at Sat Apr 26 12:23:40 2025 by rpki-client