$ rpki-client -vvf rpki.apnic.net/member_repository/A91F4B3F/1CDF87E4516011EEB0A5826AC4F9AE02/TnVPewjIAAZ84HEJetOUaJDao2U.mft File: TnVPewjIAAZ84HEJetOUaJDao2U.mft (raw, json) Hash identifier: VMb6ncSnvSIKzXEOHyat4ZQl/FEWRGp1cDL5UfvF0jw= Subject key identifier: 08:77:F4:C0:B8:93:8D:0A:87:2A:9E:F9:54:52:AF:75:0D:5D:A8:0E Authority key identifier: 4E:75:4F:7B:08:C8:00:06:7C:E0:71:09:7A:D3:94:68:90:DA:A3:65 Certificate issuer: /CN=A91F4B3F/serialNumber=4E754F7B08C800067CE071097AD3946890DAA365 Certificate serial: 0134 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TnVPewjIAAZ84HEJetOUaJDao2U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F4B3F/1CDF87E4516011EEB0A5826AC4F9AE02/TnVPewjIAAZ84HEJetOUaJDao2U.mft Manifest number: 0131 Signing time: Fri 25 Apr 2025 03:36:55 +0000 Manifest this update: Fri 25 Apr 2025 03:36:54 +0000 Manifest next update: Fri 02 May 2025 03:36:54 +0000 Files and hashes: 1: TnVPewjIAAZ84HEJetOUaJDao2U.crl (hash: KWO3EaQudnnI1ObKrM2iYuCpj8Zbyxwgq7V9pHMaDng=) 2: D875D57EF30611EEAFFC0C66C4F9AE02.roa (hash: DsVxbJQBFvHguy7znDHJZ9CR2UmTMow8V9P9QuFVJ9Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F4B3F/1CDF87E4516011EEB0A5826AC4F9AE02/TnVPewjIAAZ84HEJetOUaJDao2U.crl rsync://rpki.apnic.net/member_repository/A91F4B3F/1CDF87E4516011EEB0A5826AC4F9AE02/TnVPewjIAAZ84HEJetOUaJDao2U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TnVPewjIAAZ84HEJetOUaJDao2U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 03:36:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 308 (0x134) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F4B3F, serialNumber=4E754F7B08C800067CE071097AD3946890DAA365 Validity Not Before: Apr 25 03:36:54 2025 GMT Not After : May 2 03:36:54 2025 GMT Subject: CN=680b0357-d07d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:ca:4d:9c:d0:a2:a7:20:90:ae:01:f1:73:8a: dd:6e:d5:a0:24:e5:79:6d:91:54:6b:81:77:91:42: 8a:6b:34:61:44:1b:55:62:31:16:0a:71:eb:9b:73: 09:5d:98:36:60:c2:cf:94:95:78:81:d6:5b:44:c8: 8a:13:61:a6:2c:25:96:14:cc:73:e0:2c:f3:c9:24: 8c:93:1f:b3:5a:53:da:0d:d1:d0:1e:d7:1d:5b:b6: 81:a8:98:47:6d:6a:a3:8b:9f:ac:c4:eb:20:33:dd: b5:51:75:ae:f1:ab:7c:92:3a:41:b0:6a:4c:38:5e: bd:a1:15:ae:2f:05:f2:80:d7:c5:59:86:94:d0:73: db:69:41:4c:61:4b:50:b8:80:37:54:a1:02:3a:ff: 92:38:fd:66:da:a6:fa:c1:40:26:9e:a4:5f:e8:50: b0:21:49:59:8b:3d:4a:10:e3:47:8e:aa:64:53:18: cd:fc:ec:d3:d5:0f:07:92:c2:55:4a:a2:12:f7:bc: 22:f9:c6:99:98:e8:07:42:be:2a:a0:2e:a3:0d:b5: 83:e8:cd:16:48:79:8f:f3:75:85:52:60:fb:89:18: 4f:d9:4a:6a:1c:99:1e:7d:6a:3a:bd:a8:cc:36:0a: b9:9e:7c:94:09:e3:27:3a:20:27:ea:ab:f8:8a:d3: 22:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:77:F4:C0:B8:93:8D:0A:87:2A:9E:F9:54:52:AF:75:0D:5D:A8:0E X509v3 Authority Key Identifier: keyid:4E:75:4F:7B:08:C8:00:06:7C:E0:71:09:7A:D3:94:68:90:DA:A3:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F4B3F/1CDF87E4516011EEB0A5826AC4F9AE02/TnVPewjIAAZ84HEJetOUaJDao2U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TnVPewjIAAZ84HEJetOUaJDao2U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F4B3F/1CDF87E4516011EEB0A5826AC4F9AE02/TnVPewjIAAZ84HEJetOUaJDao2U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 05:46:25:0d:00:8c:90:08:9f:76:78:70:99:23:85:16:2f:13: 5e:3b:51:c3:58:49:70:78:c0:d4:31:e8:0e:5d:48:ad:32:2d: f8:ba:f2:aa:fe:88:97:c2:b6:ad:72:bb:40:e1:db:83:a4:ec: 05:eb:55:b0:66:55:7c:02:33:d9:80:99:bb:78:bc:9f:d0:79: 22:65:40:e4:93:3b:2f:54:99:45:07:a0:6b:b8:90:18:cf:22: 5f:88:d8:6d:f0:92:e5:f4:12:3f:88:a5:7f:64:16:c6:32:46: 39:65:d5:61:71:a6:4a:a1:3d:36:be:8b:22:89:b5:c2:36:2a: 32:9a:55:d8:1a:74:f6:32:0c:93:1c:a1:d2:cb:c9:31:c8:1c: b8:c9:0e:a1:28:58:49:7f:33:08:2f:fe:15:93:c0:1a:d0:52: 48:50:be:9e:e2:9b:74:4a:33:ed:e5:14:66:0a:fe:93:31:13: 24:a8:d1:da:1d:ed:fe:6c:b7:c4:1a:63:da:17:0d:5e:1e:b0: 32:06:84:8f:70:24:98:14:0a:1b:9d:7d:76:73:6c:ab:f9:87: 70:59:90:db:31:f1:f3:f5:7c:b8:1d:d6:08:37:00:51:50:fa: cd:1f:00:27:3b:0e:19:db:b3:26:2d:9a:4a:29:14:09:5f:7c: 4f:ec:41:ad -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjRCM0YxMTAvBgNVBAUTKDRFNzU0RjdCMDhDODAwMDY3Q0UwNzEwOTdBRDM5NDY4 OTBEQUEzNjUwHhcNMjUwNDI1MDMzNjU0WhcNMjUwNTAyMDMzNjU0WjAYMRYwFAYD VQQDEw02ODBiMDM1Ny1kMDdkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy8pNnNCipyCQrgHxc4rdbtWgJOV5bZFUa4F3kUKKazRhRBtVYjEWCnHrm3MJ XZg2YMLPlJV4gdZbRMiKE2GmLCWWFMxz4CzzySSMkx+zWlPaDdHQHtcdW7aBqJhH bWqji5+sxOsgM921UXWu8at8kjpBsGpMOF69oRWuLwXygNfFWYaU0HPbaUFMYUtQ uIA3VKECOv+SOP1m2qb6wUAmnqRf6FCwIUlZiz1KEONHjqpkUxjN/OzT1Q8HksJV SqIS97wi+caZmOgHQr4qoC6jDbWD6M0WSHmP83WFUmD7iRhP2UpqHJkefWo6vajM Ngq5nnyUCeMnOiAn6qv4itMiewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAh39MC4 k40Khyqe+VRSr3UNXagOMB8GA1UdIwQYMBaAFE51T3sIyAAGfOBxCXrTlGiQ2qNl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNEIzRi8xQ0RGODdFNDUx NjAxMUVFQjBBNTgyNkFDNEY5QUUwMi9UblZQZXdqSUFBWjg0SEVKZXRPVWFKRGFv MlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RuVlBld2pJQUFaODRIRUpldE9VYUpEYW8yVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NEIzRi8xQ0RGODdFNDUxNjAxMUVFQjBBNTgyNkFDNEY5QUUwMi9UblZQZXdqSUFB Wjg0SEVKZXRPVWFKRGFvMlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAFRiUNAIyQCJ92eHCZI4UWLxNeO1HDWElweMDUMegOXUitMi34uvKq /oiXwratcrtA4duDpOwF61WwZlV8AjPZgJm7eLyf0HkiZUDkkzsvVJlFB6BruJAY zyJfiNht8JLl9BI/iKV/ZBbGMkY5ZdVhcaZKoT02vosiibXCNioymlXYGnT2MgyT HKHSy8kxyBy4yQ6hKFhJfzMIL/4Vk8Aa0FJIUL6e4pt0SjPt5RRmCv6TMRMkqNHa He3+bLfEGmPaFw1eHrAyBoSPcCSYFAobnX12c2yr+YdwWZDbMfHz9Xy4HdYINwBR UPrNHwAnOw4Z27MmLZpKKRQJX3xP7EGt -----END CERTIFICATE-----Generated at Sat Apr 26 05:51:45 2025 by rpki-client