$ rpki-client -vvf rpki.apnic.net/member_repository/A91B8070/AE364696138411F0BC5F4547C4F9AE02/TvuTtJvxulYAjfxgYItSFq7JmsY.mft File: TvuTtJvxulYAjfxgYItSFq7JmsY.mft (raw, json) Hash identifier: W5QuEsEONfJtf+wHTvfUW2vr6xCChf8QdGsHMUKN07c= Subject key identifier: 33:2F:AD:A0:19:54:36:55:09:3B:12:F4:DA:6B:10:AB:B4:5B:0A:93 Authority key identifier: 4E:FB:93:B4:9B:F1:BA:56:00:8D:FC:60:60:8B:52:16:AE:C9:9A:C6 Certificate issuer: /CN=A91B8070/serialNumber=4EFB93B49BF1BA56008DFC60608B5216AEC99AC6 Certificate serial: 0F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TvuTtJvxulYAjfxgYItSFq7JmsY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B8070/AE364696138411F0BC5F4547C4F9AE02/TvuTtJvxulYAjfxgYItSFq7JmsY.mft Manifest number: 0D Signing time: Fri 25 Apr 2025 07:06:43 +0000 Manifest this update: Fri 25 Apr 2025 07:06:42 +0000 Manifest next update: Fri 02 May 2025 07:06:42 +0000 Files and hashes: 1: TvuTtJvxulYAjfxgYItSFq7JmsY.crl (hash: pB75RIwdEE2+vaAWkKpdFSCgZ4Rdbonfj5An4VbuL3w=) 2: 3AD6ED62138511F08BE72448C4F9AE02.roa (hash: 3S4RVGDMTvhO6vm0Gyvr7UAtQxMy4Fhc3zbaUVgynRE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B8070/AE364696138411F0BC5F4547C4F9AE02/TvuTtJvxulYAjfxgYItSFq7JmsY.crl rsync://rpki.apnic.net/member_repository/A91B8070/AE364696138411F0BC5F4547C4F9AE02/TvuTtJvxulYAjfxgYItSFq7JmsY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TvuTtJvxulYAjfxgYItSFq7JmsY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 07:06:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15 (0xf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B8070, serialNumber=4EFB93B49BF1BA56008DFC60608B5216AEC99AC6 Validity Not Before: Apr 25 07:06:42 2025 GMT Not After : May 2 07:06:42 2025 GMT Subject: CN=680b3482-5362 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:85:64:f8:0f:c1:03:93:f1:21:50:c7:e1:3c: c9:30:2a:2a:e9:f1:5b:ce:a3:6c:b9:71:94:a3:ca: 6e:fb:f4:c2:09:8b:59:79:3a:56:02:94:fe:15:77: c1:8c:f3:6a:da:82:c9:18:b7:bc:7f:d5:3b:9f:5a: ad:c3:f2:16:2e:8f:37:7e:5f:15:f5:a3:3e:7a:e2: 92:d8:90:76:27:03:2f:b4:51:25:7f:cf:b2:32:94: fb:ba:75:9e:94:fc:ec:e2:d9:76:91:90:1c:97:85: 33:e6:74:c8:0f:bc:d3:3d:a9:21:dc:89:b0:9d:b6: cf:97:a3:ec:89:8d:a6:13:0b:06:bc:2c:df:3d:de: f3:9a:5b:d3:2e:c7:cc:2b:62:3c:1f:1a:50:d3:47: 96:9b:9d:a9:c1:86:6c:f6:ef:0a:1b:ca:85:ed:1b: f0:4c:08:b3:64:ba:a6:41:48:90:95:a7:7d:f7:fb: 64:9b:75:6d:9b:07:53:f3:08:72:aa:df:f5:bc:59: 5b:dd:32:56:17:08:53:73:8c:70:cd:99:d3:41:de: 4f:1a:41:84:8f:b5:65:56:49:7b:12:de:2e:42:ca: ec:32:f5:7f:34:00:6e:36:67:e6:ff:e2:50:c1:9b: a4:71:5b:ce:34:96:76:65:f0:68:9d:4b:5e:ef:b6: 75:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:2F:AD:A0:19:54:36:55:09:3B:12:F4:DA:6B:10:AB:B4:5B:0A:93 X509v3 Authority Key Identifier: keyid:4E:FB:93:B4:9B:F1:BA:56:00:8D:FC:60:60:8B:52:16:AE:C9:9A:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B8070/AE364696138411F0BC5F4547C4F9AE02/TvuTtJvxulYAjfxgYItSFq7JmsY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TvuTtJvxulYAjfxgYItSFq7JmsY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B8070/AE364696138411F0BC5F4547C4F9AE02/TvuTtJvxulYAjfxgYItSFq7JmsY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 10:2b:aa:3c:03:ab:b8:57:4a:b1:bc:a1:ef:4f:f8:da:4f:f4: 71:ca:e5:fb:db:1e:fb:a0:82:ce:c3:d3:a1:8b:b8:2d:e9:19: 3e:66:a7:2d:94:6d:33:f3:e7:f3:72:16:82:23:e4:f5:3d:f1: 56:1a:b0:e7:52:56:52:fe:72:69:8a:1d:d0:77:52:03:21:c7: bc:d3:d7:3d:9a:4e:50:be:a1:37:d0:34:9f:98:61:99:77:c5: 5b:06:ec:2e:ef:f2:f0:a8:95:cc:bd:ab:e9:24:d8:02:f6:cc: 96:9b:0c:f2:07:61:37:85:24:2f:f2:66:80:49:26:ed:85:24: 99:e5:af:72:af:4a:ec:4f:57:b8:93:a6:99:1b:fb:eb:61:e7: c9:9f:9e:20:2a:c7:27:ef:12:2f:84:ae:5c:af:a3:bb:a5:ee: e0:79:83:37:72:70:98:89:70:f4:a7:81:3c:c7:2f:f8:b1:cf: 08:fc:03:44:85:03:e7:2f:3a:73:e4:af:83:13:0c:b4:5c:6d: 22:10:ca:bf:61:f5:91:2e:80:78:d7:0e:d1:61:15:95:23:01: 8d:87:45:a1:6b:e3:f3:af:55:bb:e3:f6:de:4c:1a:03:ac:02: 96:49:66:63:6c:89:41:6c:9c:36:7f:45:59:af:5e:90:5d:43: e8:51:ac:2e -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBDzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC ODA3MDExMC8GA1UEBRMoNEVGQjkzQjQ5QkYxQkE1NjAwOERGQzYwNjA4QjUyMTZB RUM5OUFDNjAeFw0yNTA0MjUwNzA2NDJaFw0yNTA1MDIwNzA2NDJaMBgxFjAUBgNV BAMTDTY4MGIzNDgyLTUzNjIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC1hWT4D8EDk/EhUMfhPMkwKirp8VvOo2y5cZSjym779MIJi1l5OlYClP4Vd8GM 82ragskYt7x/1TufWq3D8hYujzd+XxX1oz564pLYkHYnAy+0USV/z7IylPu6dZ6U /Ozi2XaRkByXhTPmdMgPvNM9qSHcibCdts+Xo+yJjaYTCwa8LN893vOaW9Mux8wr YjwfGlDTR5abnanBhmz27wobyoXtG/BMCLNkuqZBSJCVp333+2SbdW2bB1PzCHKq 3/W8WVvdMlYXCFNzjHDNmdNB3k8aQYSPtWVWSXsS3i5Cyuwy9X80AG42Z+b/4lDB m6RxW840lnZl8GidS17vtnWLAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUMy+toBlU NlUJOxL02msQq7RbCpMwHwYDVR0jBBgwFoAUTvuTtJvxulYAjfxgYItSFq7JmsYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI4MDcwL0FFMzY0Njk2MTM4 NDExRjBCQzVGNDU0N0M0RjlBRTAyL1R2dVR0SnZ4dWxZQWpmeGdZSXRTRnE3Sm1z WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvVHZ1VHRKdnh1bFlBamZ4Z1lJdFNGcTdKbXNZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI4 MDcwL0FFMzY0Njk2MTM4NDExRjBCQzVGNDU0N0M0RjlBRTAyL1R2dVR0SnZ4dWxZ QWpmeGdZSXRTRnE3Sm1zWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABArqjwDq7hXSrG8oe9P+NpP9HHK5fvbHvuggs7D06GLuC3pGT5mpy2U bTPz5/NyFoIj5PU98VYasOdSVlL+cmmKHdB3UgMhx7zT1z2aTlC+oTfQNJ+YYZl3 xVsG7C7v8vColcy9q+kk2AL2zJabDPIHYTeFJC/yZoBJJu2FJJnlr3KvSuxPV7iT ppkb++th58mfniAqxyfvEi+Erlyvo7ul7uB5gzdycJiJcPSngTzHL/ixzwj8A0SF A+cvOnPkr4MTDLRcbSIQyr9h9ZEugHjXDtFhFZUjAY2HRaFr4/OvVbvj9t5MGgOs ApZJZmNsiUFsnDZ/RVmvXpBdQ+hRrC4= -----END CERTIFICATE-----Generated at Sat Apr 26 05:07:03 2025 by rpki-client