$ rpki-client -vvf rpki.apnic.net/member_repository/A9195D93/5C10A810DC5D11E5B325452EC4F9AE02/mTXGObPDUdvtWyk5lPcvgUzPm6k.mft File: mTXGObPDUdvtWyk5lPcvgUzPm6k.mft (raw, json) Hash identifier: FTObuL3fKjWAJ15m5MnT1XD0xX4sRoD4GGVEz6toY1Y= Subject key identifier: 32:F5:11:61:35:47:71:07:0E:92:7F:22:D5:BA:25:E2:32:50:16:CC Authority key identifier: 99:35:C6:39:B3:C3:51:DB:ED:5B:29:39:94:F7:2F:81:4C:CF:9B:A9 Certificate issuer: /CN=A9195D93/serialNumber=9935C639B3C351DBED5B293994F72F814CCF9BA9 Certificate serial: 218C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mTXGObPDUdvtWyk5lPcvgUzPm6k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9195D93/5C10A810DC5D11E5B325452EC4F9AE02/mTXGObPDUdvtWyk5lPcvgUzPm6k.mft Manifest number: 2174 Signing time: Thu 24 Apr 2025 15:55:58 +0000 Manifest this update: Thu 24 Apr 2025 15:55:58 +0000 Manifest next update: Thu 01 May 2025 15:55:58 +0000 Files and hashes: 1: mTXGObPDUdvtWyk5lPcvgUzPm6k.crl (hash: Cjk7IPm9zvlrjXy90htEccLu1Z0eeR008fmoCKp9IOM=) 2: 5D2D29A2966D11EA96C50E81C4F9AE02.roa (hash: O+MHFL5HucSSSkSZxHxmzfF8b/+aFHUTT5vt1LsMrv8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9195D93/5C10A810DC5D11E5B325452EC4F9AE02/mTXGObPDUdvtWyk5lPcvgUzPm6k.crl rsync://rpki.apnic.net/member_repository/A9195D93/5C10A810DC5D11E5B325452EC4F9AE02/mTXGObPDUdvtWyk5lPcvgUzPm6k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mTXGObPDUdvtWyk5lPcvgUzPm6k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 15:55:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8588 (0x218c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9195D93, serialNumber=9935C639B3C351DBED5B293994F72F814CCF9BA9 Validity Not Before: Apr 24 15:55:58 2025 GMT Not After : May 1 15:55:58 2025 GMT Subject: CN=680a5f0e-f837 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:66:68:40:cf:16:25:70:b5:b7:d1:76:b9:fb: 88:0c:7a:36:ba:cf:94:5c:43:49:dd:77:02:15:15: 19:0e:25:11:93:09:b2:f1:63:91:fc:17:85:66:f0: bc:5d:cb:50:6e:43:78:01:9a:6b:da:ee:37:96:f9: 5e:ba:30:f4:11:a6:8d:c9:0d:f3:1a:99:4d:40:f3: 95:0a:e5:18:23:c0:30:ab:5d:21:6b:dc:4a:98:a8: c0:e1:c3:49:fe:07:8a:56:bd:30:62:84:cb:24:42: e6:5a:77:ff:8d:7b:43:16:b6:83:1d:a5:50:1e:a0: 14:70:5a:7c:a2:4e:67:d5:83:67:1f:c0:ec:b9:a7: 42:90:a3:3b:0f:d0:33:39:09:dd:16:1f:47:03:b1: 9e:b6:ea:99:f0:1b:c1:c0:f4:19:b5:c6:a2:65:52: 14:00:81:a2:91:1b:99:1e:f2:79:f6:6d:2e:14:a6: 33:50:06:08:30:11:35:59:80:0e:71:21:ef:31:70: 8e:3e:d4:21:af:cd:7e:7b:2c:4e:2f:e0:fc:19:cb: ab:ca:4c:82:73:7b:26:f0:88:21:c1:86:2f:7a:2c: 4d:ef:b0:7d:69:78:91:db:8c:1b:0a:b6:27:f9:08: 3f:13:95:e5:2a:fe:60:01:d7:21:a1:43:75:a5:a7: 62:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:F5:11:61:35:47:71:07:0E:92:7F:22:D5:BA:25:E2:32:50:16:CC X509v3 Authority Key Identifier: keyid:99:35:C6:39:B3:C3:51:DB:ED:5B:29:39:94:F7:2F:81:4C:CF:9B:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9195D93/5C10A810DC5D11E5B325452EC4F9AE02/mTXGObPDUdvtWyk5lPcvgUzPm6k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mTXGObPDUdvtWyk5lPcvgUzPm6k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9195D93/5C10A810DC5D11E5B325452EC4F9AE02/mTXGObPDUdvtWyk5lPcvgUzPm6k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 77:02:e4:35:6c:6e:41:30:97:02:5f:1d:42:c7:26:5a:f0:e9: 59:91:ae:4e:aa:83:4a:c7:59:fd:ce:e0:d5:fa:0e:2e:7b:e8: fe:69:0f:f8:5a:9c:57:10:48:f6:8f:3c:dd:07:27:5e:25:59: 35:b9:db:71:a8:da:53:e5:c2:48:cf:34:a3:ca:c0:b3:67:da: 9a:94:c1:85:50:88:2b:b6:6d:96:e9:25:1d:ae:e0:e3:8f:11: 1b:db:44:c7:7e:19:0c:6b:7e:54:95:9a:cf:e1:da:cb:be:39: 18:fe:df:8e:81:1b:97:a4:01:dc:41:9d:15:cd:7a:f3:45:7f: bb:2e:0d:e3:32:fe:02:2b:93:71:67:5e:49:b3:d2:3c:3c:97: e2:55:99:c0:2e:b9:7f:54:52:72:df:b7:d7:2b:ed:db:d5:84: a9:d5:ea:b5:29:5b:04:c0:3f:4a:34:4f:b4:da:a5:18:4f:28: 4b:26:f3:c6:e9:b8:5e:7c:0b:0f:65:16:24:00:95:ff:e8:6a: ee:0c:c7:bb:e1:70:f5:77:15:99:8b:f0:fb:21:4f:48:7b:54: 09:63:b8:71:39:2e:0b:1d:5b:75:d6:ac:c0:2e:7c:7a:b3:33: 35:1b:ed:4d:d8:c1:0f:21:29:47:53:30:26:ae:79:13:fc:ca: 66:49:31:38 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIYwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTVEOTMxMTAvBgNVBAUTKDk5MzVDNjM5QjNDMzUxREJFRDVCMjkzOTk0RjcyRjgx NENDRjlCQTkwHhcNMjUwNDI0MTU1NTU4WhcNMjUwNTAxMTU1NTU4WjAYMRYwFAYD VQQDEw02ODBhNWYwZS1mODM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwGZoQM8WJXC1t9F2ufuIDHo2us+UXENJ3XcCFRUZDiURkwmy8WOR/BeFZvC8 XctQbkN4AZpr2u43lvleujD0EaaNyQ3zGplNQPOVCuUYI8Awq10ha9xKmKjA4cNJ /geKVr0wYoTLJELmWnf/jXtDFraDHaVQHqAUcFp8ok5n1YNnH8DsuadCkKM7D9Az OQndFh9HA7GetuqZ8BvBwPQZtcaiZVIUAIGikRuZHvJ59m0uFKYzUAYIMBE1WYAO cSHvMXCOPtQhr81+eyxOL+D8GcurykyCc3sm8IghwYYveixN77B9aXiR24wbCrYn +Qg/E5XlKv5gAdchoUN1padiwQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDL1EWE1 R3EHDpJ/ItW6JeIyUBbMMB8GA1UdIwQYMBaAFJk1xjmzw1Hb7VspOZT3L4FMz5up MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NUQ5My81QzEwQTgxMERD NUQxMUU1QjMyNTQ1MkVDNEY5QUUwMi9tVFhHT2JQRFVkdnRXeWs1bFBjdmdVelBt NmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21UWEdPYlBEVWR2dFd5azVsUGN2Z1V6UG02ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NUQ5My81QzEwQTgxMERDNUQxMUU1QjMyNTQ1MkVDNEY5QUUwMi9tVFhHT2JQRFVk dnRXeWs1bFBjdmdVelBtNmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB3AuQ1bG5BMJcCXx1CxyZa8OlZka5OqoNKx1n9zuDV+g4ue+j+aQ/4 WpxXEEj2jzzdBydeJVk1udtxqNpT5cJIzzSjysCzZ9qalMGFUIgrtm2W6SUdruDj jxEb20THfhkMa35UlZrP4drLvjkY/t+OgRuXpAHcQZ0VzXrzRX+7Lg3jMv4CK5Nx Z15Js9I8PJfiVZnALrl/VFJy37fXK+3b1YSp1eq1KVsEwD9KNE+02qUYTyhLJvPG 6bhefAsPZRYkAJX/6GruDMe74XD1dxWZi/D7IU9Ie1QJY7hxOS4LHVt11qzALnx6 szM1G+1N2MEPISlHUzAmrnkT/MpmSTE4 -----END CERTIFICATE-----Generated at Sat Apr 26 04:34:59 2025 by rpki-client