$ rpki-client -vvf rpki.apnic.net/member_repository/A91E0EF2/B50546525EE211ECAFA64B44C4F9AE02/TAYxLToLHGP1R9TWRXxM1a9xQ80.mft File: TAYxLToLHGP1R9TWRXxM1a9xQ80.mft (raw, json) Hash identifier: Wd4fpxFDM25R+gwpYXsleGlVwaKwOp7fe+4QqWZXNyg= Subject key identifier: 31:C4:73:93:BE:7A:4C:56:A8:EC:A0:F6:E2:E7:29:7E:E5:27:8D:94 Authority key identifier: 4C:06:31:2D:3A:0B:1C:63:F5:47:D4:D6:45:7C:4C:D5:AF:71:43:CD Certificate issuer: /CN=A91E0EF2/serialNumber=4C06312D3A0B1C63F547D4D6457C4CD5AF7143CD Certificate serial: 042A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TAYxLToLHGP1R9TWRXxM1a9xQ80.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E0EF2/B50546525EE211ECAFA64B44C4F9AE02/TAYxLToLHGP1R9TWRXxM1a9xQ80.mft Manifest number: 0426 Signing time: Fri 25 Apr 2025 00:09:09 +0000 Manifest this update: Fri 25 Apr 2025 00:09:09 +0000 Manifest next update: Fri 02 May 2025 00:09:09 +0000 Files and hashes: 1: TAYxLToLHGP1R9TWRXxM1a9xQ80.crl (hash: mbyqjdMewtw7SH/vsM5X61N7wkSQv8lBxeOPUT1MWGw=) 2: 09C2A1645A3511ED8F0A3087C4F9AE02.roa (hash: RiGNiFnNAoJRKUyYrUN1wLZV9I9idQnh7FmtgNq/Suc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E0EF2/B50546525EE211ECAFA64B44C4F9AE02/TAYxLToLHGP1R9TWRXxM1a9xQ80.crl rsync://rpki.apnic.net/member_repository/A91E0EF2/B50546525EE211ECAFA64B44C4F9AE02/TAYxLToLHGP1R9TWRXxM1a9xQ80.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TAYxLToLHGP1R9TWRXxM1a9xQ80.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 00:09:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1066 (0x42a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E0EF2, serialNumber=4C06312D3A0B1C63F547D4D6457C4CD5AF7143CD Validity Not Before: Apr 25 00:09:09 2025 GMT Not After : May 2 00:09:09 2025 GMT Subject: CN=680ad2a5-17f3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:c9:2c:1c:fe:21:72:61:1d:8d:90:d7:ac:29: f4:bc:6f:42:39:55:11:26:4c:0c:85:5c:a8:1c:eb: b9:87:de:43:86:8b:e7:67:13:fe:b5:e9:f0:bc:c4: 4f:8a:7c:c3:f2:fe:f3:e9:98:af:07:e8:ae:56:fc: ab:31:fd:75:08:19:f2:f7:c5:c8:8a:02:39:53:9c: a5:0c:b9:9f:73:58:81:bb:a1:0f:de:31:a1:6e:0a: 14:c0:8b:86:1b:55:e6:91:2f:4c:e5:c9:8e:ef:24: bd:ae:79:df:ed:c4:16:66:66:66:e1:d5:9b:f5:3e: e2:5d:6e:cf:ff:22:a8:c9:e3:44:9e:7c:16:71:b1: 16:f4:09:ef:ce:f6:e2:47:57:4d:54:af:77:63:d2: a2:83:18:20:d8:c1:a2:5c:f1:ba:64:0b:22:a9:42: 40:d3:7d:13:4c:d5:c2:bf:96:b8:cd:c5:f0:7c:20: a7:48:4a:c5:9d:fa:20:53:d4:08:ef:e9:de:03:84: cb:af:67:9d:99:39:27:18:f4:7c:8f:3c:83:98:d0: 57:d3:00:80:7b:21:ed:e2:80:c7:03:b9:7a:6b:e2: a6:83:0a:97:92:20:48:de:a6:f5:6c:7c:e8:7d:ad: 39:76:3a:8e:99:a6:ff:d3:c9:29:34:11:b8:81:d7: 8d:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:C4:73:93:BE:7A:4C:56:A8:EC:A0:F6:E2:E7:29:7E:E5:27:8D:94 X509v3 Authority Key Identifier: keyid:4C:06:31:2D:3A:0B:1C:63:F5:47:D4:D6:45:7C:4C:D5:AF:71:43:CD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E0EF2/B50546525EE211ECAFA64B44C4F9AE02/TAYxLToLHGP1R9TWRXxM1a9xQ80.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TAYxLToLHGP1R9TWRXxM1a9xQ80.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E0EF2/B50546525EE211ECAFA64B44C4F9AE02/TAYxLToLHGP1R9TWRXxM1a9xQ80.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0e:2e:13:af:fb:53:3c:59:be:d3:a8:df:4c:a7:8b:7b:23:40: 8e:23:bd:b7:44:ab:6d:fe:47:7c:ca:b3:21:1b:f2:05:5c:7a: 48:b9:93:d2:c0:35:2b:42:6a:2d:1a:28:26:3c:54:7a:0a:77: db:63:d6:fe:61:04:14:f5:29:5a:92:d8:71:cd:45:8d:7b:bd: 82:65:36:36:49:35:fe:d0:ac:6f:32:72:3e:5b:4e:ee:54:d3: 95:29:d7:d1:1d:58:ac:28:3a:be:3b:59:ac:95:23:cc:ea:36: 97:05:af:0c:77:c6:f2:c0:1e:f2:bd:7a:2d:a6:f5:96:b2:27: dc:d6:43:51:26:53:49:5c:55:dc:3a:cd:bf:39:68:13:08:00: 55:ff:32:7c:d1:eb:8c:91:56:c9:89:5a:ca:9c:2a:eb:ca:58: bf:00:11:17:a1:f0:ff:e2:77:68:48:35:18:6c:1c:0c:c7:2e: 27:64:1e:ae:f7:2f:ef:44:a9:81:59:ab:cd:52:05:42:00:ae: 77:38:ef:f9:da:7a:33:91:5b:1f:e3:15:22:fe:05:98:46:b0: 93:42:f4:40:c9:ca:3d:b3:89:1b:5b:74:36:09:e2:28:6c:81: 43:d3:fe:aa:3d:2c:3c:9f:75:84:94:48:d7:2d:57:2e:25:08: e6:d4:de:f2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBCowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTBFRjIxMTAvBgNVBAUTKDRDMDYzMTJEM0EwQjFDNjNGNTQ3RDRENjQ1N0M0Q0Q1 QUY3MTQzQ0QwHhcNMjUwNDI1MDAwOTA5WhcNMjUwNTAyMDAwOTA5WjAYMRYwFAYD VQQDEw02ODBhZDJhNS0xN2YzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn8ksHP4hcmEdjZDXrCn0vG9COVURJkwMhVyoHOu5h95DhovnZxP+tenwvMRP inzD8v7z6ZivB+iuVvyrMf11CBny98XIigI5U5ylDLmfc1iBu6EP3jGhbgoUwIuG G1XmkS9M5cmO7yS9rnnf7cQWZmZm4dWb9T7iXW7P/yKoyeNEnnwWcbEW9Anvzvbi R1dNVK93Y9Kigxgg2MGiXPG6ZAsiqUJA030TTNXCv5a4zcXwfCCnSErFnfogU9QI 7+neA4TLr2edmTknGPR8jzyDmNBX0wCAeyHt4oDHA7l6a+KmgwqXkiBI3qb1bHzo fa05djqOmab/08kpNBG4gdeNzwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDHEc5O+ ekxWqOyg9uLnKX7lJ42UMB8GA1UdIwQYMBaAFEwGMS06Cxxj9UfU1kV8TNWvcUPN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMEVGMi9CNTA1NDY1MjVF RTIxMUVDQUZBNjRCNDRDNEY5QUUwMi9UQVl4TFRvTEhHUDFSOVRXUlh4TTFhOXhR ODAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RBWXhMVG9MSEdQMVI5VFdSWHhNMWE5eFE4MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MEVGMi9CNTA1NDY1MjVFRTIxMUVDQUZBNjRCNDRDNEY5QUUwMi9UQVl4TFRvTEhH UDFSOVRXUlh4TTFhOXhRODAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAOLhOv+1M8Wb7TqN9Mp4t7I0COI723RKtt/kd8yrMhG/IFXHpIuZPS wDUrQmotGigmPFR6CnfbY9b+YQQU9SlakthxzUWNe72CZTY2STX+0KxvMnI+W07u VNOVKdfRHVisKDq+O1mslSPM6jaXBa8Md8bywB7yvXotpvWWsifc1kNRJlNJXFXc Os2/OWgTCABV/zJ80euMkVbJiVrKnCrryli/ABEXofD/4ndoSDUYbBwMxy4nZB6u 9y/vRKmBWavNUgVCAK53OO/52nozkVsf4xUi/gWYRrCTQvRAyco9s4kbW3Q2CeIo bIFD0/6qPSw8n3WElEjXLVcuJQjm1N7y -----END CERTIFICATE-----Generated at Sat Apr 26 05:55:03 2025 by rpki-client