$ rpki-client -vvf rpki.apnic.net/member_repository/A91FD64D/370786C8999411ED8567311FC4F9AE02/tLGKJT-2KTQ3EWY13d0ZlCi2jVs.mft File: tLGKJT-2KTQ3EWY13d0ZlCi2jVs.mft (raw, json) Hash identifier: 0F7Cze7c3fY3OHokcpJGLed8hxcjO0xgKIOLQKPq8XA= Subject key identifier: 4C:87:F9:42:52:E3:CC:E0:42:06:F9:07:23:96:99:9F:21:14:E8:9B Authority key identifier: B4:B1:8A:25:3F:B6:29:34:37:11:66:35:DD:DD:19:94:28:B6:8D:5B Certificate issuer: /CN=A91FD64D/serialNumber=B4B18A253FB6293437116635DDDD199428B68D5B Certificate serial: 01B1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tLGKJT-2KTQ3EWY13d0ZlCi2jVs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FD64D/370786C8999411ED8567311FC4F9AE02/tLGKJT-2KTQ3EWY13d0ZlCi2jVs.mft Manifest number: 01A9 Signing time: Fri 25 Apr 2025 02:26:37 +0000 Manifest this update: Fri 25 Apr 2025 02:26:36 +0000 Manifest next update: Fri 02 May 2025 02:26:36 +0000 Files and hashes: 1: tLGKJT-2KTQ3EWY13d0ZlCi2jVs.crl (hash: KIBggSrortxHoIfS0QS3BE3DRAXXSA7vyaNxbYbVo74=) 2: 34BB892E449C11EEB60E1441C4F9AE02.roa (hash: XQvlP4Z6PPDTvpFje+rE615QVj8K/dlNzggLZwnPCHY=) 3: 66D00EB2449C11EE86105C41C4F9AE02.roa (hash: sFUlSAs686BHpBPHFZ6jJXEM4AvroBrl/QL/VRc6YMo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FD64D/370786C8999411ED8567311FC4F9AE02/tLGKJT-2KTQ3EWY13d0ZlCi2jVs.crl rsync://rpki.apnic.net/member_repository/A91FD64D/370786C8999411ED8567311FC4F9AE02/tLGKJT-2KTQ3EWY13d0ZlCi2jVs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tLGKJT-2KTQ3EWY13d0ZlCi2jVs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 02:26:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 433 (0x1b1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FD64D, serialNumber=B4B18A253FB6293437116635DDDD199428B68D5B Validity Not Before: Apr 25 02:26:36 2025 GMT Not After : May 2 02:26:36 2025 GMT Subject: CN=680af2dc-42b1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:d4:62:87:d8:cb:84:f5:47:dc:9f:d9:5f:14: cd:dd:e5:00:72:6c:c8:e3:6a:93:cb:a4:09:bb:a3: c8:9a:1c:29:eb:fd:d8:e2:8b:a4:4a:f7:5b:c3:af: 42:11:c9:a5:6e:a3:10:ff:15:e7:7b:3d:78:eb:c3: 93:f9:98:ce:1c:88:af:3b:6b:ec:c2:18:77:36:fc: 04:6e:b5:6f:d0:91:84:d3:c5:b3:4a:86:76:2a:64: c3:0c:61:30:db:0b:6c:01:7c:a3:8d:f0:0f:18:83: cc:1d:7d:bb:c5:e7:28:0a:b2:a8:61:c1:37:06:be: a6:d5:66:ab:79:74:48:a8:94:ad:eb:dc:50:3e:43: 8d:f5:aa:17:81:6a:68:66:5a:23:28:f9:4d:c7:76: d1:d1:a1:46:9d:04:36:87:ff:ff:db:0e:80:13:cd: 7c:b2:82:ca:54:9d:62:37:6f:2b:b1:ba:8f:d1:20: 67:8d:fa:7a:c1:cb:4e:79:f7:c7:df:bc:04:26:5e: 66:0b:6a:d2:9d:f8:0d:3b:71:76:1f:27:7b:ac:b0: fa:51:10:a0:aa:96:54:c8:78:3d:10:6e:b6:1f:31: a3:3c:07:54:3d:19:08:bb:68:1d:a5:ac:52:09:4a: 70:3b:c0:fa:2e:f8:df:8c:55:e3:70:64:85:93:8d: 3c:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:87:F9:42:52:E3:CC:E0:42:06:F9:07:23:96:99:9F:21:14:E8:9B X509v3 Authority Key Identifier: keyid:B4:B1:8A:25:3F:B6:29:34:37:11:66:35:DD:DD:19:94:28:B6:8D:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FD64D/370786C8999411ED8567311FC4F9AE02/tLGKJT-2KTQ3EWY13d0ZlCi2jVs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tLGKJT-2KTQ3EWY13d0ZlCi2jVs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FD64D/370786C8999411ED8567311FC4F9AE02/tLGKJT-2KTQ3EWY13d0ZlCi2jVs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 43:4a:1c:e1:d1:92:ee:c5:68:be:7e:59:4b:b7:c6:d7:9b:db: e8:4e:ab:b4:73:83:ae:d0:ae:d7:bf:fd:8d:de:d4:8e:3d:87: 5c:e1:d6:a3:61:97:eb:3e:9f:01:09:2b:60:ac:6d:96:b3:14: db:1e:78:6a:75:de:87:c2:0c:a3:16:ad:2f:6e:bc:6b:8a:94: b5:b7:65:ed:55:a1:95:03:b5:7a:b1:7c:0c:ed:3c:3e:08:52: 44:88:b4:9b:60:f1:ec:78:3b:9b:62:78:06:95:d4:f5:6c:87: 7e:23:a3:e1:23:71:e6:6b:bc:90:4a:7f:43:74:34:4d:02:b3: 53:86:bc:44:f4:a5:34:31:20:76:be:2f:9b:f3:35:0e:e6:50: 5b:8d:a3:a1:fd:18:62:a1:43:56:b6:8c:ef:5e:2d:ec:58:32: c0:fa:f2:7f:fb:b3:e8:c4:4d:17:1d:24:1a:c7:a2:b1:bb:e0: da:b7:3a:9f:24:64:18:f1:fa:28:c5:05:e7:60:ac:57:83:3c: c6:a6:b7:14:06:77:76:e7:8e:87:b4:a6:1b:1c:83:a2:10:cc: cc:45:dd:8d:ad:7c:46:45:e4:15:91:f4:b6:1f:fb:9f:de:92: 3d:31:9a:f0:d7:fc:af:00:7d:91:b9:79:21:15:50:6f:b8:75: 6a:90:2d:74 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAbEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkQ2NEQxMTAvBgNVBAUTKEI0QjE4QTI1M0ZCNjI5MzQzNzExNjYzNUREREQxOTk0 MjhCNjhENUIwHhcNMjUwNDI1MDIyNjM2WhcNMjUwNTAyMDIyNjM2WjAYMRYwFAYD VQQDEw02ODBhZjJkYy00MmIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwtRih9jLhPVH3J/ZXxTN3eUAcmzI42qTy6QJu6PImhwp6/3Y4oukSvdbw69C EcmlbqMQ/xXnez1468OT+ZjOHIivO2vswhh3NvwEbrVv0JGE08WzSoZ2KmTDDGEw 2wtsAXyjjfAPGIPMHX27xecoCrKoYcE3Br6m1WareXRIqJSt69xQPkON9aoXgWpo ZlojKPlNx3bR0aFGnQQ2h///2w6AE818soLKVJ1iN28rsbqP0SBnjfp6wctOeffH 37wEJl5mC2rSnfgNO3F2Hyd7rLD6URCgqpZUyHg9EG62HzGjPAdUPRkIu2gdpaxS CUpwO8D6LvjfjFXjcGSFk408sQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEyH+UJS 48zgQgb5ByOWmZ8hFOibMB8GA1UdIwQYMBaAFLSxiiU/tik0NxFmNd3dGZQoto1b MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRDY0RC8zNzA3ODZDODk5 OTQxMUVEODU2NzMxMUZDNEY5QUUwMi90TEdLSlQtMktUUTNFV1kxM2QwWmxDaTJq VnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RMR0tKVC0yS1RRM0VXWTEzZDBabENpMmpWcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RDY0RC8zNzA3ODZDODk5OTQxMUVEODU2NzMxMUZDNEY5QUUwMi90TEdLSlQtMktU UTNFV1kxM2QwWmxDaTJqVnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBDShzh0ZLuxWi+fllLt8bXm9voTqu0c4Ou0K7Xv/2N3tSOPYdc4daj YZfrPp8BCStgrG2WsxTbHnhqdd6HwgyjFq0vbrxripS1t2XtVaGVA7V6sXwM7Tw+ CFJEiLSbYPHseDubYngGldT1bId+I6PhI3Hma7yQSn9DdDRNArNThrxE9KU0MSB2 vi+b8zUO5lBbjaOh/RhioUNWtozvXi3sWDLA+vJ/+7PoxE0XHSQax6Kxu+Datzqf JGQY8fooxQXnYKxXgzzGprcUBnd2546HtKYbHIOiEMzMRd2NrXxGReQVkfS2H/uf 3pI9MZrw1/yvAH2RuXkhFVBvuHVqkC10 -----END CERTIFICATE-----Generated at Sat Apr 26 03:39:39 2025 by rpki-client