$ rpki-client -vvf rpki.apnic.net/member_repository/A91BA0AE/37EB0C66C96411EAA106E859C4F9AE02/tgIe7mg2BaoGSwbTS-MxqGqNHj4.mft File: tgIe7mg2BaoGSwbTS-MxqGqNHj4.mft (raw, json) Hash identifier: CQIcYQbZpLl4DWSWuS1MVgIOja0FFVpu4KNYfHo0TOE= Subject key identifier: AE:BE:9D:33:D3:07:B9:65:E6:B9:D7:55:20:53:13:4B:B8:23:4A:51 Authority key identifier: B6:02:1E:EE:68:36:05:AA:06:4B:06:D3:4B:E3:31:A8:6A:8D:1E:3E Certificate issuer: /CN=A91BA0AE/serialNumber=B6021EEE683605AA064B06D34BE331A86A8D1E3E Certificate serial: 01C9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tgIe7mg2BaoGSwbTS-MxqGqNHj4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BA0AE/37EB0C66C96411EAA106E859C4F9AE02/tgIe7mg2BaoGSwbTS-MxqGqNHj4.mft Manifest number: 0A0D Signing time: Thu 24 Apr 2025 20:37:01 +0000 Manifest this update: Thu 24 Apr 2025 20:37:00 +0000 Manifest next update: Thu 01 May 2025 20:37:00 +0000 Files and hashes: 1: tgIe7mg2BaoGSwbTS-MxqGqNHj4.crl (hash: QdXbsahUFRn0AX/47g6ql7NwS6M6GRKb+3b/00Tx9e4=) 2: 6897097E6C6311EDBCFA073FC4F9AE02.roa (hash: iM1WPBGRU8kyt2wtZ44xuEtw5kiXcIfrSzUOCPpEqtg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BA0AE/37EB0C66C96411EAA106E859C4F9AE02/tgIe7mg2BaoGSwbTS-MxqGqNHj4.crl rsync://rpki.apnic.net/member_repository/A91BA0AE/37EB0C66C96411EAA106E859C4F9AE02/tgIe7mg2BaoGSwbTS-MxqGqNHj4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tgIe7mg2BaoGSwbTS-MxqGqNHj4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 20:37:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 457 (0x1c9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BA0AE, serialNumber=B6021EEE683605AA064B06D34BE331A86A8D1E3E Validity Not Before: Apr 24 20:37:00 2025 GMT Not After : May 1 20:37:00 2025 GMT Subject: CN=680aa0ec-f788 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:82:3f:a8:07:2b:f9:83:08:88:a1:1e:fb:7a: 8e:45:33:83:b9:ea:77:34:79:a4:5a:a5:ed:b0:62: 12:37:5a:d9:e4:8e:2f:dd:9c:bd:01:b3:5f:6f:ad: a6:1d:53:fd:23:20:17:c4:49:d7:5d:f2:a7:ea:b9: 13:7f:aa:c1:bb:d5:f3:3b:bb:ad:e1:25:3a:d6:d7: e2:af:ad:9e:76:71:1d:e8:76:7b:79:f6:15:72:57: 68:9f:89:8d:d9:7d:5a:e1:da:c1:de:af:a9:69:f1: ac:54:d1:cd:97:38:56:00:27:17:79:54:81:4f:91: b1:d8:ff:63:fd:64:89:83:09:4b:17:80:ee:13:51: 77:3a:e6:10:15:87:c1:7a:d7:f3:6f:a1:c3:0f:cc: 92:c5:e6:2e:c7:e1:9c:44:7c:1e:4a:fc:7e:c7:54: c8:20:c7:21:4c:af:3f:b0:bd:a4:bf:e9:c0:3f:2f: a7:7e:96:46:0f:5a:31:f6:6d:b8:39:5d:24:82:c2: 94:aa:65:b6:bb:94:5f:38:fa:e7:5f:98:6d:8b:9a: 52:23:f0:7f:3e:95:69:b5:a5:ac:45:c0:c9:62:cb: 32:ac:12:e5:86:1b:b7:6a:e9:b1:8e:3f:8e:b8:05: e3:ef:d7:b4:19:d8:ba:82:1c:c8:bf:b6:d5:1b:76: ef:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:BE:9D:33:D3:07:B9:65:E6:B9:D7:55:20:53:13:4B:B8:23:4A:51 X509v3 Authority Key Identifier: keyid:B6:02:1E:EE:68:36:05:AA:06:4B:06:D3:4B:E3:31:A8:6A:8D:1E:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BA0AE/37EB0C66C96411EAA106E859C4F9AE02/tgIe7mg2BaoGSwbTS-MxqGqNHj4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tgIe7mg2BaoGSwbTS-MxqGqNHj4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BA0AE/37EB0C66C96411EAA106E859C4F9AE02/tgIe7mg2BaoGSwbTS-MxqGqNHj4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 38:7c:cc:d1:14:e5:5f:74:37:97:e8:8d:4f:b9:68:04:c6:2f: c3:3f:d9:a3:3f:b5:bf:18:85:4f:f4:c3:6d:2f:79:98:14:3a: 33:e2:5b:c5:b1:bb:76:0e:66:96:56:25:59:56:86:05:b1:8c: 62:b8:f1:e3:73:86:c5:31:a1:44:d4:f6:1f:6a:fe:1f:2f:76: 10:4c:8a:5b:dd:43:48:eb:9e:d6:63:a4:b1:2d:54:25:73:6e: 09:ce:34:0e:07:fa:eb:9d:bf:30:12:0e:9b:30:d6:ae:e3:62: f3:a1:0a:93:e9:26:b5:9b:52:1f:0a:83:ea:5d:e9:1b:7b:83: e7:a1:56:44:ad:40:2f:70:14:af:a6:16:44:89:06:46:e2:d8: 1c:d9:d9:e4:1b:1f:72:d4:63:13:0c:dc:40:4a:33:0f:4b:9d: 40:55:af:92:1f:41:2d:79:31:64:8f:83:5c:dc:65:7b:42:3b: 61:70:d8:4e:df:99:25:d9:7e:8b:03:b4:58:1e:72:72:e0:a0: 58:71:93:4f:05:3f:f8:d9:76:d6:f6:71:72:7c:ce:d3:ab:59: 1a:07:c6:61:74:8c:1c:3d:e5:72:00:d3:38:da:c7:0f:75:2a: b6:2e:b2:4f:0d:ad:5d:3b:14:cf:ab:52:b1:75:b0:60:d8:e1: 37:e0:ef:9f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAckwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkEwQUUxMTAvBgNVBAUTKEI2MDIxRUVFNjgzNjA1QUEwNjRCMDZEMzRCRTMzMUE4 NkE4RDFFM0UwHhcNMjUwNDI0MjAzNzAwWhcNMjUwNTAxMjAzNzAwWjAYMRYwFAYD VQQDEw02ODBhYTBlYy1mNzg4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz4I/qAcr+YMIiKEe+3qORTODuep3NHmkWqXtsGISN1rZ5I4v3Zy9AbNfb62m HVP9IyAXxEnXXfKn6rkTf6rBu9XzO7ut4SU61tfir62ednEd6HZ7efYVcldon4mN 2X1a4drB3q+pafGsVNHNlzhWACcXeVSBT5Gx2P9j/WSJgwlLF4DuE1F3OuYQFYfB etfzb6HDD8ySxeYux+GcRHweSvx+x1TIIMchTK8/sL2kv+nAPy+nfpZGD1ox9m24 OV0kgsKUqmW2u5RfOPrnX5hti5pSI/B/PpVptaWsRcDJYssyrBLlhhu3aumxjj+O uAXj79e0Gdi6ghzIv7bVG3bvuQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK6+nTPT B7ll5rnXVSBTE0u4I0pRMB8GA1UdIwQYMBaAFLYCHu5oNgWqBksG00vjMahqjR4+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQTBBRS8zN0VCMEM2NkM5 NjQxMUVBQTEwNkU4NTlDNEY5QUUwMi90Z0llN21nMkJhb0dTd2JUUy1NeHFHcU5I ajQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RnSWU3bWcyQmFvR1N3YlRTLU14cUdxTkhqNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QTBBRS8zN0VCMEM2NkM5NjQxMUVBQTEwNkU4NTlDNEY5QUUwMi90Z0llN21nMkJh b0dTd2JUUy1NeHFHcU5IajQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA4fMzRFOVfdDeX6I1PuWgExi/DP9mjP7W/GIVP9MNtL3mYFDoz4lvF sbt2DmaWViVZVoYFsYxiuPHjc4bFMaFE1PYfav4fL3YQTIpb3UNI657WY6SxLVQl c24JzjQOB/rrnb8wEg6bMNau42LzoQqT6Sa1m1IfCoPqXekbe4PnoVZErUAvcBSv phZEiQZG4tgc2dnkGx9y1GMTDNxASjMPS51AVa+SH0EteTFkj4Nc3GV7QjthcNhO 35kl2X6LA7RYHnJy4KBYcZNPBT/42XbW9nFyfM7Tq1kaB8ZhdIwcPeVyANM42scP dSq2LrJPDa1dOxTPq1KxdbBg2OE34O+f -----END CERTIFICATE-----Generated at Sat Apr 26 17:05:03 2025 by rpki-client