$ rpki-client -vvf rpki.apnic.net/member_repository/A91A6E4D/D3CC0D64FB4611EBA7661839C4F9AE02/tr-xkXvTGlViMihYRudjoUMyymg.mft File: tr-xkXvTGlViMihYRudjoUMyymg.mft (raw, json) Hash identifier: LJI8KNZ4P38S+7XTyFmP16Nqc0iIKvWTr+psZEaaKWY= Subject key identifier: F0:A3:45:33:06:CF:4B:11:28:59:A3:C1:EA:E2:73:71:51:29:70:B2 Authority key identifier: B6:BF:B1:91:7B:D3:1A:55:62:32:28:58:46:E7:63:A1:43:32:CA:68 Certificate issuer: /CN=A91A6E4D/serialNumber=B6BFB1917BD31A556232285846E763A14332CA68 Certificate serial: 0517 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tr-xkXvTGlViMihYRudjoUMyymg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A6E4D/D3CC0D64FB4611EBA7661839C4F9AE02/tr-xkXvTGlViMihYRudjoUMyymg.mft Manifest number: 0517 Signing time: Thu 24 Apr 2025 23:21:02 +0000 Manifest this update: Thu 24 Apr 2025 23:21:02 +0000 Manifest next update: Thu 01 May 2025 23:21:02 +0000 Files and hashes: 1: tr-xkXvTGlViMihYRudjoUMyymg.crl (hash: BZ1CCmOEyoUYU9aTN0gAz/qggSS2ehZqhltZMPcVJfc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A6E4D/D3CC0D64FB4611EBA7661839C4F9AE02/tr-xkXvTGlViMihYRudjoUMyymg.crl rsync://rpki.apnic.net/member_repository/A91A6E4D/D3CC0D64FB4611EBA7661839C4F9AE02/tr-xkXvTGlViMihYRudjoUMyymg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tr-xkXvTGlViMihYRudjoUMyymg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 23:21:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1303 (0x517) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A6E4D, serialNumber=B6BFB1917BD31A556232285846E763A14332CA68 Validity Not Before: Apr 24 23:21:02 2025 GMT Not After : May 1 23:21:02 2025 GMT Subject: CN=680ac75e-bae3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:a3:50:81:be:ea:8d:80:95:a1:65:19:90:fa: 02:4c:3b:7b:0d:14:c7:78:f7:38:11:9e:4a:21:77: 04:8c:89:fa:52:c9:58:00:dd:0e:82:22:08:9d:07: 23:b3:dc:29:f4:04:93:78:91:36:8e:57:48:63:6b: 4c:38:1a:a4:ec:d8:92:38:d9:e5:f5:91:1b:32:c4: 61:57:00:50:57:0d:5a:22:2e:b6:e8:73:5f:0b:44: c9:c9:b5:29:2a:f6:b4:41:72:73:03:86:bf:ff:cd: 80:b0:63:f6:52:de:12:cc:b1:0b:bc:14:66:38:b0: 95:e8:aa:7d:71:93:e9:53:07:13:33:37:54:5f:3e: ca:66:0d:6b:1d:88:a7:c3:43:4b:5d:bd:db:a7:cc: 96:04:13:d8:37:4d:55:d5:94:71:40:0f:dc:81:2e: 51:40:e4:82:17:e9:af:6f:8d:2a:02:1d:b2:f3:4a: 3e:eb:02:16:fb:c2:32:7b:ad:c6:ff:01:ef:cd:44: cc:db:46:87:57:d0:50:df:fd:11:66:df:25:ea:01: 00:9c:40:fa:bf:e0:20:bf:d0:36:98:58:ad:fa:15: 52:1c:de:c7:93:6b:2f:20:49:ee:38:66:c4:b2:dd: 61:02:74:80:a0:57:aa:d4:0f:d5:1a:9d:5c:1b:fc: c9:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:A3:45:33:06:CF:4B:11:28:59:A3:C1:EA:E2:73:71:51:29:70:B2 X509v3 Authority Key Identifier: keyid:B6:BF:B1:91:7B:D3:1A:55:62:32:28:58:46:E7:63:A1:43:32:CA:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A6E4D/D3CC0D64FB4611EBA7661839C4F9AE02/tr-xkXvTGlViMihYRudjoUMyymg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tr-xkXvTGlViMihYRudjoUMyymg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A6E4D/D3CC0D64FB4611EBA7661839C4F9AE02/tr-xkXvTGlViMihYRudjoUMyymg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6c:e7:f5:c9:26:57:42:94:c6:e7:7c:31:c7:4e:12:70:0b:12: a2:d0:73:51:36:35:04:7a:55:c6:a1:84:41:80:08:bb:72:d0: df:41:ce:20:cc:9c:39:06:36:97:b5:64:d9:b8:26:43:55:71: f3:96:ab:dc:c3:5d:76:87:ce:1b:ad:79:8e:03:25:ed:49:6f: fe:bd:7c:29:e4:7d:08:f2:10:c5:5f:16:fe:3c:24:5b:a8:f7: e5:a9:15:2e:9d:2d:5b:36:01:65:7e:f6:07:17:6d:60:de:7c: 8f:70:44:d6:ed:99:81:14:bf:90:30:b5:e8:a3:45:1d:69:54: e9:36:98:d6:2c:fd:1e:98:37:0c:e7:56:17:95:4d:34:98:26: 3b:8c:02:b1:0a:6a:08:2c:9d:3f:1d:d9:7e:f6:3a:a6:d4:4a: 23:4a:9b:12:52:cc:28:88:df:ec:70:82:52:5a:b7:4f:8a:59: 1e:2b:aa:cd:82:52:58:de:4a:db:61:ee:86:37:7f:e1:fe:a1: 3c:47:3f:df:9c:ee:8d:2e:60:95:16:b9:47:3d:2a:79:43:9b: 51:fa:d4:48:ec:e3:0f:88:2b:e2:f6:f5:aa:e9:8a:21:42:f2: da:30:20:5b:67:e0:66:d6:97:5d:1e:c9:70:5f:24:2c:4c:83: e2:a9:73:65 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBRcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTZFNEQxMTAvBgNVBAUTKEI2QkZCMTkxN0JEMzFBNTU2MjMyMjg1ODQ2RTc2M0Ex NDMzMkNBNjgwHhcNMjUwNDI0MjMyMTAyWhcNMjUwNTAxMjMyMTAyWjAYMRYwFAYD VQQDEw02ODBhYzc1ZS1iYWUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1qNQgb7qjYCVoWUZkPoCTDt7DRTHePc4EZ5KIXcEjIn6UslYAN0OgiIInQcj s9wp9ASTeJE2jldIY2tMOBqk7NiSONnl9ZEbMsRhVwBQVw1aIi626HNfC0TJybUp Kva0QXJzA4a//82AsGP2Ut4SzLELvBRmOLCV6Kp9cZPpUwcTMzdUXz7KZg1rHYin w0NLXb3bp8yWBBPYN01V1ZRxQA/cgS5RQOSCF+mvb40qAh2y80o+6wIW+8Iye63G /wHvzUTM20aHV9BQ3/0RZt8l6gEAnED6v+Agv9A2mFit+hVSHN7Hk2svIEnuOGbE st1hAnSAoFeq1A/VGp1cG/zJmwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPCjRTMG z0sRKFmjweric3FRKXCyMB8GA1UdIwQYMBaAFLa/sZF70xpVYjIoWEbnY6FDMspo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNkU0RC9EM0NDMEQ2NEZC NDYxMUVCQTc2NjE4MzlDNEY5QUUwMi90ci14a1h2VEdsVmlNaWhZUnVkam9VTXl5 bWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RyLXhrWHZUR2xWaU1paFlSdWRqb1VNeXltZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NkU0RC9EM0NDMEQ2NEZCNDYxMUVCQTc2NjE4MzlDNEY5QUUwMi90ci14a1h2VEds VmlNaWhZUnVkam9VTXl5bWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBs5/XJJldClMbnfDHHThJwCxKi0HNRNjUEelXGoYRBgAi7ctDfQc4g zJw5BjaXtWTZuCZDVXHzlqvcw112h84brXmOAyXtSW/+vXwp5H0I8hDFXxb+PCRb qPflqRUunS1bNgFlfvYHF21g3nyPcETW7ZmBFL+QMLXoo0UdaVTpNpjWLP0emDcM 51YXlU00mCY7jAKxCmoILJ0/Hdl+9jqm1EojSpsSUswoiN/scIJSWrdPilkeK6rN glJY3krbYe6GN3/h/qE8Rz/fnO6NLmCVFrlHPSp5Q5tR+tRI7OMPiCvi9vWq6Yoh QvLaMCBbZ+Bm1pddHslwXyQsTIPiqXNl -----END CERTIFICATE-----Generated at Sat Apr 26 05:13:46 2025 by rpki-client