$ rpki-client -vvf rpki.apnic.net/member_repository/A91E0EF2/B50546525EE211ECAFA64B44C4F9AE02/TAYxLToLHGP1R9TWRXxM1a9xQ80.mft File: TAYxLToLHGP1R9TWRXxM1a9xQ80.mft (raw, json) Hash identifier: qK7DC2qA1IsuVWG1mBkv9DSZZVBfttlnI2hlAF9gpaI= Subject key identifier: 27:08:5F:A4:83:9A:A6:B9:B4:62:D0:9C:49:AA:68:4E:0D:03:3D:1A Authority key identifier: 4C:06:31:2D:3A:0B:1C:63:F5:47:D4:D6:45:7C:4C:D5:AF:71:43:CD Certificate issuer: /CN=A91E0EF2/serialNumber=4C06312D3A0B1C63F547D4D6457C4CD5AF7143CD Certificate serial: 0443 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TAYxLToLHGP1R9TWRXxM1a9xQ80.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E0EF2/B50546525EE211ECAFA64B44C4F9AE02/TAYxLToLHGP1R9TWRXxM1a9xQ80.mft Manifest number: 043F Signing time: Sun 15 Jun 2025 00:01:31 +0000 Manifest this update: Sun 15 Jun 2025 00:01:31 +0000 Manifest next update: Sun 22 Jun 2025 00:01:31 +0000 Files and hashes: 1: TAYxLToLHGP1R9TWRXxM1a9xQ80.crl (hash: IGHRtpc/7xkoOJj7+KTVbeRuDlddaGSDwKB1NvqCt3g=) 2: 09C2A1645A3511ED8F0A3087C4F9AE02.roa (hash: RiGNiFnNAoJRKUyYrUN1wLZV9I9idQnh7FmtgNq/Suc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E0EF2/B50546525EE211ECAFA64B44C4F9AE02/TAYxLToLHGP1R9TWRXxM1a9xQ80.crl rsync://rpki.apnic.net/member_repository/A91E0EF2/B50546525EE211ECAFA64B44C4F9AE02/TAYxLToLHGP1R9TWRXxM1a9xQ80.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TAYxLToLHGP1R9TWRXxM1a9xQ80.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 00:01:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1091 (0x443) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E0EF2, serialNumber=4C06312D3A0B1C63F547D4D6457C4CD5AF7143CD Validity Not Before: Jun 15 00:01:31 2025 GMT Not After : Jun 22 00:01:31 2025 GMT Subject: CN=684e0d5b-866c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:34:e4:5b:82:58:f1:39:0f:d4:25:3f:1f:85: 52:ff:ae:36:b5:7b:73:33:ae:f6:85:d1:2f:95:66: ac:79:dc:47:aa:e2:b5:cd:d6:71:ca:46:c1:e9:fd: 8b:a8:2d:2e:dc:a4:5a:b4:71:41:9a:90:c7:c9:1d: 49:ac:36:dc:b1:f4:65:7e:6c:b1:22:2a:46:9c:32: eb:25:63:fa:cd:38:f7:72:ad:df:d5:52:b5:5b:d7: f6:68:d6:70:e9:c5:89:7f:9e:b4:3b:48:df:41:a0: ec:7a:bb:dc:6e:7f:52:cf:84:71:19:af:42:2a:4d: 4c:93:86:22:9c:92:7f:42:dc:40:f7:17:b8:a6:be: 8d:a4:99:d5:61:04:69:88:d6:73:84:f4:fa:b7:60: 9d:3d:39:d8:62:96:d4:a4:5c:0e:f2:c5:4c:fa:8f: ed:56:7c:79:4a:29:11:69:7c:62:19:f4:bd:0d:84: a9:25:8b:14:64:c3:ac:17:12:b0:98:95:8a:f7:6d: 86:92:3a:14:19:5f:d9:3e:d7:35:0e:c4:ab:bb:d1: d1:2a:a5:a2:31:20:a8:06:16:81:6d:6f:bf:86:fb: 6f:3d:de:dc:d0:59:91:d1:97:ce:73:3d:14:bb:ea: 1d:43:84:ce:b1:41:c2:8f:e5:d0:6c:be:f8:a5:1a: c1:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:08:5F:A4:83:9A:A6:B9:B4:62:D0:9C:49:AA:68:4E:0D:03:3D:1A X509v3 Authority Key Identifier: keyid:4C:06:31:2D:3A:0B:1C:63:F5:47:D4:D6:45:7C:4C:D5:AF:71:43:CD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E0EF2/B50546525EE211ECAFA64B44C4F9AE02/TAYxLToLHGP1R9TWRXxM1a9xQ80.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TAYxLToLHGP1R9TWRXxM1a9xQ80.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E0EF2/B50546525EE211ECAFA64B44C4F9AE02/TAYxLToLHGP1R9TWRXxM1a9xQ80.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bf:64:a9:12:cd:bb:ae:d0:04:a3:0e:d5:db:90:9d:e0:ec:17: 6c:0f:0f:87:db:ba:9b:a0:0f:f0:a4:c8:2a:8f:9e:00:5e:8f: 0a:10:3f:33:b8:6c:b8:a3:44:bd:9f:82:db:fc:fc:35:11:79: 35:a2:8c:bc:dc:77:f8:97:01:73:24:0f:d2:87:66:cf:45:52: 4e:32:ba:b6:16:3a:09:63:ac:c8:52:72:42:03:fd:9a:49:27: 40:d7:09:fd:a2:c1:70:03:b9:6f:e2:88:df:dd:fa:84:bf:3f: c3:af:58:72:93:5a:04:b4:9b:08:f8:29:af:0b:ec:6e:00:f7: 71:a3:fc:8a:0b:03:75:f9:61:ee:2e:3b:7b:b6:7b:c9:9a:8b: ac:1f:55:0b:8c:45:57:a0:d8:64:59:6c:5e:f9:53:53:0a:50: 71:88:a0:f6:22:5a:0c:43:e5:b3:5d:bd:d7:90:a1:01:f4:0c: af:1b:b0:ce:01:94:56:e9:16:01:ff:07:53:56:89:e9:0b:e9: 93:d5:2f:24:d7:3b:82:91:8a:b6:a1:93:02:56:7d:d4:78:df: 42:50:bf:be:d1:64:3c:da:93:24:d0:89:04:4b:7f:13:26:80: ba:e4:c5:29:fe:51:1a:c5:16:fd:9b:cd:9c:d0:2a:14:6a:be: e2:21:2e:01 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBEMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTBFRjIxMTAvBgNVBAUTKDRDMDYzMTJEM0EwQjFDNjNGNTQ3RDRENjQ1N0M0Q0Q1 QUY3MTQzQ0QwHhcNMjUwNjE1MDAwMTMxWhcNMjUwNjIyMDAwMTMxWjAYMRYwFAYD VQQDEw02ODRlMGQ1Yi04NjZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApDTkW4JY8TkP1CU/H4VS/642tXtzM672hdEvlWasedxHquK1zdZxykbB6f2L qC0u3KRatHFBmpDHyR1JrDbcsfRlfmyxIipGnDLrJWP6zTj3cq3f1VK1W9f2aNZw 6cWJf560O0jfQaDservcbn9Sz4RxGa9CKk1Mk4YinJJ/QtxA9xe4pr6NpJnVYQRp iNZzhPT6t2CdPTnYYpbUpFwO8sVM+o/tVnx5SikRaXxiGfS9DYSpJYsUZMOsFxKw mJWK922GkjoUGV/ZPtc1DsSru9HRKqWiMSCoBhaBbW+/hvtvPd7c0FmR0ZfOcz0U u+odQ4TOsUHCj+XQbL74pRrBFQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCcIX6SD mqa5tGLQnEmqaE4NAz0aMB8GA1UdIwQYMBaAFEwGMS06Cxxj9UfU1kV8TNWvcUPN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMEVGMi9CNTA1NDY1MjVF RTIxMUVDQUZBNjRCNDRDNEY5QUUwMi9UQVl4TFRvTEhHUDFSOVRXUlh4TTFhOXhR ODAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RBWXhMVG9MSEdQMVI5VFdSWHhNMWE5eFE4MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MEVGMi9CNTA1NDY1MjVFRTIxMUVDQUZBNjRCNDRDNEY5QUUwMi9UQVl4TFRvTEhH UDFSOVRXUlh4TTFhOXhRODAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC/ZKkSzbuu0ASjDtXbkJ3g7BdsDw+H27qboA/wpMgqj54AXo8KED8z uGy4o0S9n4Lb/Pw1EXk1ooy83Hf4lwFzJA/Sh2bPRVJOMrq2FjoJY6zIUnJCA/2a SSdA1wn9osFwA7lv4ojf3fqEvz/Dr1hyk1oEtJsI+CmvC+xuAPdxo/yKCwN1+WHu Ljt7tnvJmousH1ULjEVXoNhkWWxe+VNTClBxiKD2IloMQ+WzXb3XkKEB9AyvG7DO AZRW6RYB/wdTVonpC+mT1S8k1zuCkYq2oZMCVn3UeN9CUL++0WQ82pMk0IkES38T JoC65MUp/lEaxRb9m82c0CoUar7iIS4B -----END CERTIFICATE-----Generated at Sun Jun 15 08:38:48 2025 by rpki-client