$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8F9B/01EDEF965DBE11EF8A06ED40C4F9AE02/TLITKnI2puO1uWMMoDARSGMoVfc.mft File: TLITKnI2puO1uWMMoDARSGMoVfc.mft (raw, json) Hash identifier: lNQurylt+AWDrViaUUk6PJZEQPmDVBtVLay5RziH6Jo= Subject key identifier: D4:47:29:5A:E4:9A:3A:2D:49:2E:2D:88:90:74:2A:E2:1F:95:4D:5B Authority key identifier: 4C:B2:13:2A:72:36:A6:E3:B5:B9:63:0C:A0:30:11:48:63:28:55:F7 Certificate issuer: /CN=A91F8F9B/serialNumber=4CB2132A7236A6E3B5B9630CA0301148632855F7 Certificate serial: 82 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TLITKnI2puO1uWMMoDARSGMoVfc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8F9B/01EDEF965DBE11EF8A06ED40C4F9AE02/TLITKnI2puO1uWMMoDARSGMoVfc.mft Manifest number: 81 Signing time: Fri 25 Apr 2025 05:36:37 +0000 Manifest this update: Fri 25 Apr 2025 05:36:36 +0000 Manifest next update: Fri 02 May 2025 05:36:36 +0000 Files and hashes: 1: TLITKnI2puO1uWMMoDARSGMoVfc.crl (hash: EBV7cLEOcz01ZSBtgbfR68WJUsKv6rh+jYX0I4jSfKE=) 2: 71DBC7BE5DBF11EFB8714857C4F9AE02.roa (hash: jmXb0sPHquklWucQNPULW9k7ur2PuqaFZnebmPVFmaE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8F9B/01EDEF965DBE11EF8A06ED40C4F9AE02/TLITKnI2puO1uWMMoDARSGMoVfc.crl rsync://rpki.apnic.net/member_repository/A91F8F9B/01EDEF965DBE11EF8A06ED40C4F9AE02/TLITKnI2puO1uWMMoDARSGMoVfc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TLITKnI2puO1uWMMoDARSGMoVfc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 05:36:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 130 (0x82) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8F9B, serialNumber=4CB2132A7236A6E3B5B9630CA0301148632855F7 Validity Not Before: Apr 25 05:36:36 2025 GMT Not After : May 2 05:36:36 2025 GMT Subject: CN=680b1f64-b330 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:88:b6:3d:a4:49:f0:a0:98:75:39:82:25:6e: 9c:29:6f:e9:63:be:4c:d1:2a:f9:0e:c8:87:05:e9: 89:f7:97:54:7e:1f:6a:b8:f3:ab:28:3a:d9:f6:c8: a7:9e:02:1a:54:a2:e5:2d:54:ee:4f:49:22:f5:0a: 43:dd:ec:a8:33:1b:1f:b1:a1:e6:ae:e0:3e:6e:39: 0f:b7:a4:cd:07:38:06:ca:2f:34:45:11:e7:3d:f2: a5:de:a8:df:ca:71:60:2c:9b:38:0a:15:d6:8d:75: e5:38:5c:b8:55:cc:80:2c:7e:ec:51:b2:e5:d8:f4: ea:58:a0:37:32:d5:83:73:30:fd:3e:86:5a:da:b5: 75:fe:7c:f3:26:fa:ff:53:19:b9:26:0d:60:7a:14: 1c:c2:b9:f5:10:69:f0:fb:f8:5e:27:7c:ca:53:d2: 57:80:b1:82:55:5a:3f:7d:67:39:c4:65:51:96:96: 26:3b:1e:27:2c:9f:d1:20:67:ef:13:45:95:ee:af: fa:16:bb:78:fa:1f:5a:87:e2:43:e1:cf:a1:95:9b: 0b:b5:d1:1b:33:da:93:90:6d:c4:f3:8c:58:65:76: 61:a1:2d:9b:36:cb:82:48:03:8d:5b:0e:9d:31:19: e0:58:c9:40:3d:2a:88:36:96:55:a4:c1:00:93:dc: a2:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:47:29:5A:E4:9A:3A:2D:49:2E:2D:88:90:74:2A:E2:1F:95:4D:5B X509v3 Authority Key Identifier: keyid:4C:B2:13:2A:72:36:A6:E3:B5:B9:63:0C:A0:30:11:48:63:28:55:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8F9B/01EDEF965DBE11EF8A06ED40C4F9AE02/TLITKnI2puO1uWMMoDARSGMoVfc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TLITKnI2puO1uWMMoDARSGMoVfc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8F9B/01EDEF965DBE11EF8A06ED40C4F9AE02/TLITKnI2puO1uWMMoDARSGMoVfc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 92:84:bc:31:f3:7d:e1:51:0b:c6:15:94:1c:5f:38:fa:2c:b3: 79:71:d4:86:6b:3a:7c:f1:c8:31:7c:d0:f5:05:37:53:81:83: ed:92:81:21:62:b6:8e:ea:14:df:3e:c5:b2:6c:ba:c4:82:fa: 43:b6:dc:18:21:62:e1:93:d0:3d:0d:8d:6a:c9:47:dc:cc:2e: bb:9b:92:63:58:ab:e9:18:bb:5b:b5:6e:99:d9:a0:75:78:3e: ee:51:a4:38:8c:67:1a:7c:94:09:33:03:a6:0b:90:75:fe:88: 5f:20:d2:0e:db:d9:7b:ad:44:7b:04:fe:9a:06:69:cd:a0:2d: cf:12:4e:bc:2f:f3:12:ae:2e:9d:86:61:f6:81:57:1f:dc:11: 41:f4:c6:50:e7:b6:4e:9f:61:0c:ad:b6:b9:c0:f0:82:43:64: 5c:19:c6:56:bd:9b:64:8b:d2:60:0d:ba:64:ce:3f:48:92:82: 61:8a:d7:96:20:17:e2:1e:00:58:f9:6c:6b:b2:bf:fc:d3:21: 38:c6:c4:68:38:da:8e:a1:9c:a1:24:bb:09:a6:aa:de:25:29: 33:22:2a:d4:e7:c0:5d:58:d1:f6:0d:1e:f7:dd:62:3f:d6:f4: f8:c2:13:b6:5e:eb:71:72:5c:c8:d2:82:17:c2:dd:b6:a7:fb: 6d:f9:04:3d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjhGOUIxMTAvBgNVBAUTKDRDQjIxMzJBNzIzNkE2RTNCNUI5NjMwQ0EwMzAxMTQ4 NjMyODU1RjcwHhcNMjUwNDI1MDUzNjM2WhcNMjUwNTAyMDUzNjM2WjAYMRYwFAYD VQQDEw02ODBiMWY2NC1iMzMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2Yi2PaRJ8KCYdTmCJW6cKW/pY75M0Sr5DsiHBemJ95dUfh9quPOrKDrZ9sin ngIaVKLlLVTuT0ki9QpD3eyoMxsfsaHmruA+bjkPt6TNBzgGyi80RRHnPfKl3qjf ynFgLJs4ChXWjXXlOFy4VcyALH7sUbLl2PTqWKA3MtWDczD9PoZa2rV1/nzzJvr/ Uxm5Jg1gehQcwrn1EGnw+/heJ3zKU9JXgLGCVVo/fWc5xGVRlpYmOx4nLJ/RIGfv E0WV7q/6Frt4+h9ah+JD4c+hlZsLtdEbM9qTkG3E84xYZXZhoS2bNsuCSAONWw6d MRngWMlAPSqINpZVpMEAk9yi/wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNRHKVrk mjotSS4tiJB0KuIflU1bMB8GA1UdIwQYMBaAFEyyEypyNqbjtbljDKAwEUhjKFX3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOEY5Qi8wMUVERUY5NjVE QkUxMUVGOEEwNkVENDBDNEY5QUUwMi9UTElUS25JMnB1TzF1V01Nb0RBUlNHTW9W ZmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RMSVRLbkkycHVPMXVXTU1vREFSU0dNb1ZmYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG OEY5Qi8wMUVERUY5NjVEQkUxMUVGOEEwNkVENDBDNEY5QUUwMi9UTElUS25JMnB1 TzF1V01Nb0RBUlNHTW9WZmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCShLwx833hUQvGFZQcXzj6LLN5cdSGazp88cgxfND1BTdTgYPtkoEh YraO6hTfPsWybLrEgvpDttwYIWLhk9A9DY1qyUfczC67m5JjWKvpGLtbtW6Z2aB1 eD7uUaQ4jGcafJQJMwOmC5B1/ohfINIO29l7rUR7BP6aBmnNoC3PEk68L/MSri6d hmH2gVcf3BFB9MZQ57ZOn2EMrba5wPCCQ2RcGcZWvZtki9JgDbpkzj9IkoJhiteW IBfiHgBY+Wxrsr/80yE4xsRoONqOoZyhJLsJpqreJSkzIirU58BdWNH2DR733WI/ 1vT4whO2XutxclzI0oIXwt22p/tt+QQ9 -----END CERTIFICATE-----Generated at Sat Apr 26 13:01:14 2025 by rpki-client