$ rpki-client -vvf rpki.apnic.net/member_repository/A9198D95/48ED296AE06511EEB35F421EC4F9AE02/_tgXL4qVo1IC1RxvdfqUfehE9M0.mft File: _tgXL4qVo1IC1RxvdfqUfehE9M0.mft (raw, json) Hash identifier: tGkPt0kKUZdtimFyxtzlFhViIqLwKZXk17zoZ8xU4wo= Subject key identifier: 2C:8A:ED:73:63:7F:52:80:F7:E7:DA:48:D1:2D:AD:0A:E2:DF:02:6C Authority key identifier: FE:D8:17:2F:8A:95:A3:52:02:D5:1C:6F:75:FA:94:7D:E8:44:F4:CD Certificate issuer: /CN=A9198D95/serialNumber=FED8172F8A95A35202D51C6F75FA947DE844F4CD Certificate serial: D4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_tgXL4qVo1IC1RxvdfqUfehE9M0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9198D95/48ED296AE06511EEB35F421EC4F9AE02/_tgXL4qVo1IC1RxvdfqUfehE9M0.mft Manifest number: D2 Signing time: Fri 25 Apr 2025 04:40:42 +0000 Manifest this update: Fri 25 Apr 2025 04:40:42 +0000 Manifest next update: Fri 02 May 2025 04:40:42 +0000 Files and hashes: 1: _tgXL4qVo1IC1RxvdfqUfehE9M0.crl (hash: 0Yhr8ye2sQEpPnR9FUfID+Kyk2jPpn5zIF9uHbTQ8Fs=) 2: 994A883AE06511EEA8CEC61EC4F9AE02.roa (hash: LjsOflVWx2ASLq3Z//t4WARlGyPly5HO69O4zsWdHy0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9198D95/48ED296AE06511EEB35F421EC4F9AE02/_tgXL4qVo1IC1RxvdfqUfehE9M0.crl rsync://rpki.apnic.net/member_repository/A9198D95/48ED296AE06511EEB35F421EC4F9AE02/_tgXL4qVo1IC1RxvdfqUfehE9M0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_tgXL4qVo1IC1RxvdfqUfehE9M0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 04:40:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 212 (0xd4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9198D95, serialNumber=FED8172F8A95A35202D51C6F75FA947DE844F4CD Validity Not Before: Apr 25 04:40:42 2025 GMT Not After : May 2 04:40:42 2025 GMT Subject: CN=680b124a-50d3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:66:19:03:88:7e:5f:0d:58:aa:f5:f6:2c:6e: 40:cb:e8:e3:96:34:af:96:04:59:3d:6f:e5:f4:71: cb:e3:4a:c7:ef:14:59:5c:2e:87:d1:55:2e:52:1b: e7:1c:28:0c:67:a1:16:39:93:ef:45:be:6c:4a:18: e4:fe:6f:62:00:e9:f0:87:27:6b:2f:dc:a8:1f:60: f4:f3:f8:9c:9d:5c:3e:72:86:86:64:fc:fc:52:ea: f6:b8:4e:a8:7b:9d:0d:a7:3f:f1:9b:dd:40:ef:d0: 39:39:85:c3:78:ec:46:17:f4:01:22:48:c6:16:4e: 92:c6:94:b4:6a:61:1e:bd:1b:5d:fe:fc:5f:d5:85: 90:da:0c:be:a7:84:82:39:90:ba:66:59:33:90:d1: 69:bb:9c:7d:14:e3:7c:9d:60:e6:47:98:d7:fc:91: fb:cc:b5:8c:14:27:e0:de:1f:74:93:c4:b0:94:c9: 5c:ac:c2:4d:a7:4d:92:f5:0d:1f:53:40:9a:b0:1f: 35:19:bd:10:f7:eb:cb:2e:3f:67:39:f5:4c:d0:16: b3:ec:36:3e:9d:72:a2:41:01:1d:7a:d8:1b:48:12: a6:59:83:ce:c0:54:a7:ba:8c:5b:1d:87:af:9d:ca: 6f:1d:70:e3:c1:c2:8a:81:8e:f3:21:04:6c:d8:92: c3:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:8A:ED:73:63:7F:52:80:F7:E7:DA:48:D1:2D:AD:0A:E2:DF:02:6C X509v3 Authority Key Identifier: keyid:FE:D8:17:2F:8A:95:A3:52:02:D5:1C:6F:75:FA:94:7D:E8:44:F4:CD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9198D95/48ED296AE06511EEB35F421EC4F9AE02/_tgXL4qVo1IC1RxvdfqUfehE9M0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_tgXL4qVo1IC1RxvdfqUfehE9M0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9198D95/48ED296AE06511EEB35F421EC4F9AE02/_tgXL4qVo1IC1RxvdfqUfehE9M0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 82:ad:ac:40:33:9b:c6:70:42:70:1f:eb:b6:88:47:ef:d7:ee: 2a:9d:1a:b7:a0:ea:1d:35:20:0f:a2:a5:dd:5b:cb:db:9a:a0: 24:0a:2f:6f:d1:f9:da:44:8b:72:e4:0f:eb:a5:ef:5e:97:98: cd:b3:5f:52:44:b3:f3:10:d0:89:0a:65:e7:76:79:4f:c3:9d: 64:4d:06:66:7c:95:5d:72:89:22:0c:6b:a5:dd:fe:a7:e2:6a: e8:dd:79:52:98:04:91:e6:01:45:c7:b1:6d:49:61:6c:22:be: 6d:49:04:e4:92:1e:27:3f:75:66:e4:bb:ca:4e:29:cc:a9:ba: d0:65:bc:03:35:04:e2:53:10:37:13:aa:15:94:a2:03:08:ab: e0:0c:63:29:f2:f2:bb:7f:c2:ab:fe:77:b1:51:e8:3d:5b:9f: 62:13:e4:85:3f:e4:c9:00:f2:77:ea:3f:1f:5f:81:02:a7:8a: 49:b5:36:dc:f6:b8:b3:ff:48:3f:69:d8:1e:1b:ed:fb:58:ad: 30:ca:c0:ea:c7:47:6d:65:5a:4f:c7:b4:c9:79:27:a4:7d:c9: 80:21:05:87:ea:2d:5b:55:46:fa:3f:2f:e9:83:a6:f6:7d:f1: c2:e6:f1:59:d4:4f:17:45:ce:ae:fb:49:81:33:65:5c:c3:78: 94:4a:78:be -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OThEOTUxMTAvBgNVBAUTKEZFRDgxNzJGOEE5NUEzNTIwMkQ1MUM2Rjc1RkE5NDdE RTg0NEY0Q0QwHhcNMjUwNDI1MDQ0MDQyWhcNMjUwNTAyMDQ0MDQyWjAYMRYwFAYD VQQDEw02ODBiMTI0YS01MGQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz2YZA4h+Xw1YqvX2LG5Ay+jjljSvlgRZPW/l9HHL40rH7xRZXC6H0VUuUhvn HCgMZ6EWOZPvRb5sShjk/m9iAOnwhydrL9yoH2D08/icnVw+coaGZPz8Uur2uE6o e50Npz/xm91A79A5OYXDeOxGF/QBIkjGFk6SxpS0amEevRtd/vxf1YWQ2gy+p4SC OZC6ZlkzkNFpu5x9FON8nWDmR5jX/JH7zLWMFCfg3h90k8SwlMlcrMJNp02S9Q0f U0CasB81Gb0Q9+vLLj9nOfVM0Baz7DY+nXKiQQEdetgbSBKmWYPOwFSnuoxbHYev ncpvHXDjwcKKgY7zIQRs2JLDIwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCyK7XNj f1KA9+faSNEtrQri3wJsMB8GA1UdIwQYMBaAFP7YFy+KlaNSAtUcb3X6lH3oRPTN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OEQ5NS80OEVEMjk2QUUw NjUxMUVFQjM1RjQyMUVDNEY5QUUwMi9fdGdYTDRxVm8xSUMxUnh2ZGZxVWZlaEU5 TTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL190Z1hMNHFWbzFJQzFSeHZkZnFVZmVoRTlNMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OEQ5NS80OEVEMjk2QUUwNjUxMUVFQjM1RjQyMUVDNEY5QUUwMi9fdGdYTDRxVm8x SUMxUnh2ZGZxVWZlaEU5TTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCCraxAM5vGcEJwH+u2iEfv1+4qnRq3oOodNSAPoqXdW8vbmqAkCi9v 0fnaRIty5A/rpe9el5jNs19SRLPzENCJCmXndnlPw51kTQZmfJVdcokiDGul3f6n 4mro3XlSmASR5gFFx7FtSWFsIr5tSQTkkh4nP3Vm5LvKTinMqbrQZbwDNQTiUxA3 E6oVlKIDCKvgDGMp8vK7f8Kr/nexUeg9W59iE+SFP+TJAPJ36j8fX4ECp4pJtTbc 9riz/0g/adgeG+37WK0wysDqx0dtZVpPx7TJeSekfcmAIQWH6i1bVUb6Py/pg6b2 ffHC5vFZ1E8XRc6u+0mBM2Vcw3iUSni+ -----END CERTIFICATE-----Generated at Sat Apr 26 15:05:40 2025 by rpki-client