$ rpki-client -vvf rpki.apnic.net/member_repository/A91BAE17/445EE09458BD11E49383AB76C4F9AE02/tksRCOmO7If7awwovgFkXHCLSsU.mft File: tksRCOmO7If7awwovgFkXHCLSsU.mft (raw, json) Hash identifier: /OXiettMzn8JgydCA12t5IZELrrCqp9AKaFpZIcr5zw= Subject key identifier: 09:9E:B4:E0:06:6F:0B:81:6B:AC:FA:86:9D:0C:ED:17:5F:95:89:0E Authority key identifier: B6:4B:11:08:E9:8E:EC:87:FB:6B:0C:28:BE:01:64:5C:70:8B:4A:C5 Certificate issuer: /CN=A91BAE17/serialNumber=B64B1108E98EEC87FB6B0C28BE01645C708B4AC5 Certificate serial: 2946 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tksRCOmO7If7awwovgFkXHCLSsU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BAE17/445EE09458BD11E49383AB76C4F9AE02/tksRCOmO7If7awwovgFkXHCLSsU.mft Manifest number: 2931 Signing time: Thu 24 Apr 2025 15:37:48 +0000 Manifest this update: Thu 24 Apr 2025 15:37:48 +0000 Manifest next update: Thu 01 May 2025 15:37:48 +0000 Files and hashes: 1: tksRCOmO7If7awwovgFkXHCLSsU.crl (hash: e+wa33yMSyYr8sjazeDGR1N0lNSyUCbME4+SOm8Y5H0=) 2: 98845C5C54EC11E791C3F825C4F9AE02.roa (hash: XWmzI2yeMf3apt5DHsKgv60jONcTAI6E+TZgl5OMpW8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BAE17/445EE09458BD11E49383AB76C4F9AE02/tksRCOmO7If7awwovgFkXHCLSsU.crl rsync://rpki.apnic.net/member_repository/A91BAE17/445EE09458BD11E49383AB76C4F9AE02/tksRCOmO7If7awwovgFkXHCLSsU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tksRCOmO7If7awwovgFkXHCLSsU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 15:37:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10566 (0x2946) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BAE17, serialNumber=B64B1108E98EEC87FB6B0C28BE01645C708B4AC5 Validity Not Before: Apr 24 15:37:48 2025 GMT Not After : May 1 15:37:48 2025 GMT Subject: CN=680a5acc-a1b4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:ef:64:75:fe:18:1b:de:1d:5f:46:79:44:9f: dd:6e:ea:bc:3a:40:cf:e4:e1:6e:3b:61:70:8f:13: 04:58:67:a7:06:df:ae:99:36:57:a6:4a:ba:2b:a9: b1:ad:ba:fc:ac:51:2f:d3:aa:0a:37:00:cb:d9:d7: bd:d0:e4:6a:b1:8e:7c:d9:fd:72:ab:1a:79:5d:37: 2e:0f:1a:59:d2:68:f7:8b:8a:78:e6:48:6e:e9:de: d9:24:11:05:63:10:a7:ea:c9:00:f6:78:d2:1d:83: e1:fc:30:5f:ed:e5:3c:37:d5:42:1f:01:45:d7:ad: 5e:f5:8e:f7:81:40:1e:c7:52:c5:d9:d8:53:ee:fe: 8d:43:80:8b:f9:d5:59:95:0b:be:42:3f:df:e6:c6: 36:64:e9:83:93:e5:a7:8c:20:c2:08:3f:f0:f2:c9: ef:36:7c:f0:64:4d:c3:e3:5c:7e:c5:e8:2a:38:75: 28:44:29:56:38:04:2f:7e:93:ff:fd:87:3f:7c:e4: 62:e9:61:dd:e4:79:01:ff:41:b0:3e:fc:fa:44:a7: d4:5c:94:bd:e5:c3:f2:48:2b:08:86:cb:27:74:0f: bb:2d:fe:c8:ad:82:42:0b:da:60:05:d6:96:9b:a3: c0:46:30:bf:ed:f5:eb:bd:f6:9c:d2:6f:f2:34:42: 4c:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:9E:B4:E0:06:6F:0B:81:6B:AC:FA:86:9D:0C:ED:17:5F:95:89:0E X509v3 Authority Key Identifier: keyid:B6:4B:11:08:E9:8E:EC:87:FB:6B:0C:28:BE:01:64:5C:70:8B:4A:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BAE17/445EE09458BD11E49383AB76C4F9AE02/tksRCOmO7If7awwovgFkXHCLSsU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tksRCOmO7If7awwovgFkXHCLSsU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BAE17/445EE09458BD11E49383AB76C4F9AE02/tksRCOmO7If7awwovgFkXHCLSsU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8e:8b:5d:f4:5c:fe:cf:77:eb:19:9b:b1:2e:20:3c:5f:b3:ac: 12:9e:e4:ea:0e:37:3b:a5:bf:24:fb:76:58:f9:dd:65:f0:86: b3:db:f0:ef:61:f2:e8:14:49:32:83:7d:f2:a0:7c:1a:ae:3c: fe:ec:64:46:1c:eb:b7:11:62:0d:84:51:0c:2f:e0:2c:07:61: b0:09:76:fb:82:1a:5b:5b:fd:93:ae:e2:8f:ca:40:39:aa:2a: df:5c:ae:c3:a9:42:e7:2d:d9:5e:a2:ee:28:f2:fa:8c:bb:f3: 22:3f:bf:48:2f:6d:f7:13:3e:f8:5e:0a:1e:73:91:a2:c0:e1: ea:19:93:fe:c6:ee:dd:7a:24:6a:9b:e1:ca:3d:58:de:d9:a4: f4:4d:40:8b:3e:5c:bd:a2:92:61:fb:0c:81:36:8f:53:96:5d: a7:78:8b:97:d4:72:93:b6:5e:a9:45:9a:22:c1:52:54:70:36: 08:92:ae:25:94:2e:67:ea:d7:2e:f9:8a:40:b5:e4:f0:db:c0: 68:05:d0:a9:2b:13:49:e1:26:e6:88:9e:9b:2b:8e:20:52:1d: 8d:3b:97:c4:e9:89:83:25:cb:e5:64:c2:7d:02:d4:a1:10:25: 47:5b:c7:0a:86:8e:55:2a:af:10:b0:00:f1:66:3a:56:1c:ff: 02:0c:ea:6a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICKUYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkFFMTcxMTAvBgNVBAUTKEI2NEIxMTA4RTk4RUVDODdGQjZCMEMyOEJFMDE2NDVD NzA4QjRBQzUwHhcNMjUwNDI0MTUzNzQ4WhcNMjUwNTAxMTUzNzQ4WjAYMRYwFAYD VQQDEw02ODBhNWFjYy1hMWI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAk+9kdf4YG94dX0Z5RJ/dbuq8OkDP5OFuO2FwjxMEWGenBt+umTZXpkq6K6mx rbr8rFEv06oKNwDL2de90ORqsY582f1yqxp5XTcuDxpZ0mj3i4p45khu6d7ZJBEF YxCn6skA9njSHYPh/DBf7eU8N9VCHwFF161e9Y73gUAex1LF2dhT7v6NQ4CL+dVZ lQu+Qj/f5sY2ZOmDk+WnjCDCCD/w8snvNnzwZE3D41x+xegqOHUoRClWOAQvfpP/ /Yc/fORi6WHd5HkB/0GwPvz6RKfUXJS95cPySCsIhssndA+7Lf7IrYJCC9pgBdaW m6PARjC/7fXrvfac0m/yNEJMEQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAmetOAG bwuBa6z6hp0M7RdflYkOMB8GA1UdIwQYMBaAFLZLEQjpjuyH+2sMKL4BZFxwi0rF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQUUxNy80NDVFRTA5NDU4 QkQxMUU0OTM4M0FCNzZDNEY5QUUwMi90a3NSQ09tTzdJZjdhd3dvdmdGa1hIQ0xT c1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Rrc1JDT21PN0lmN2F3d292Z0ZrWEhDTFNzVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QUUxNy80NDVFRTA5NDU4QkQxMUU0OTM4M0FCNzZDNEY5QUUwMi90a3NSQ09tTzdJ Zjdhd3dvdmdGa1hIQ0xTc1UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCOi130XP7Pd+sZm7EuIDxfs6wSnuTqDjc7pb8k+3ZY+d1l8Iaz2/Dv YfLoFEkyg33yoHwarjz+7GRGHOu3EWINhFEML+AsB2GwCXb7ghpbW/2TruKPykA5 qirfXK7DqULnLdleou4o8vqMu/MiP79IL233Ez74Xgoec5GiwOHqGZP+xu7deiRq m+HKPVje2aT0TUCLPly9opJh+wyBNo9Tll2neIuX1HKTtl6pRZoiwVJUcDYIkq4l lC5n6tcu+YpAteTw28BoBdCpKxNJ4SbmiJ6bK44gUh2NO5fE6YmDJcvlZMJ9AtSh ECVHW8cKho5VKq8QsADxZjpWHP8CDOpq -----END CERTIFICATE-----Generated at Sat Apr 26 04:32:34 2025 by rpki-client