$ rpki-client -vvf rpki.apnic.net/member_repository/A915203C/46C88C82747711EA83654F4DC4F9AE02/TkRgz2OyS3w1ue2uyX5jpyxL3iM.mft File: TkRgz2OyS3w1ue2uyX5jpyxL3iM.mft (raw, json) Hash identifier: DCoEU+o/zgburJgUS9ELF2kkiNPY/9WVf+b+jbPnGM0= Subject key identifier: A1:2C:89:0B:59:9D:4D:78:17:50:51:9F:9E:24:6C:35:11:C4:62:C8 Authority key identifier: 4E:44:60:CF:63:B2:4B:7C:35:B9:ED:AE:C9:7E:63:A7:2C:4B:DE:23 Certificate issuer: /CN=A915203C/serialNumber=4E4460CF63B24B7C35B9EDAEC97E63A72C4BDE23 Certificate serial: 0A39 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TkRgz2OyS3w1ue2uyX5jpyxL3iM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915203C/46C88C82747711EA83654F4DC4F9AE02/TkRgz2OyS3w1ue2uyX5jpyxL3iM.mft Manifest number: 0A32 Signing time: Fri 22 Aug 2025 19:53:08 +0000 Manifest this update: Fri 22 Aug 2025 19:53:07 +0000 Manifest next update: Fri 29 Aug 2025 19:53:07 +0000 Files and hashes: 1: TkRgz2OyS3w1ue2uyX5jpyxL3iM.crl (hash: WdKY5sAO5j3SeH2pdv+9RmfCWS8uoRxBNU5fJ3ueo8s=) 2: 4A7F0102747811EAB3C2634EC4F9AE02.roa (hash: 1nP7wgiAU6ogCq9MB/uivojHlNVu46xfBAf9/7vfcJE=) 3: 039A4408614511F0B95C3C38C4F9AE02.roa (hash: oDjyKM5SNuLjv6Hcd551F4doAQus0w8X4mHseINWIyM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915203C/46C88C82747711EA83654F4DC4F9AE02/TkRgz2OyS3w1ue2uyX5jpyxL3iM.crl rsync://rpki.apnic.net/member_repository/A915203C/46C88C82747711EA83654F4DC4F9AE02/TkRgz2OyS3w1ue2uyX5jpyxL3iM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TkRgz2OyS3w1ue2uyX5jpyxL3iM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 19:53:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2617 (0xa39) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915203C, serialNumber=4E4460CF63B24B7C35B9EDAEC97E63A72C4BDE23 Validity Not Before: Aug 22 19:53:07 2025 GMT Not After : Aug 29 19:53:07 2025 GMT Subject: CN=68a8caa4-a3c5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:5d:7e:38:cf:16:1e:ff:9a:b2:f4:bb:5a:0a: c1:f0:a4:c6:84:41:ff:b9:05:85:7c:54:eb:0d:ce: c6:d7:13:be:74:1b:6f:c4:ff:4d:42:fd:9e:cf:a9: a1:64:00:da:6e:30:e1:60:06:ad:9a:35:f5:41:4a: b5:de:cb:4f:e2:e1:a0:c9:bf:a4:9e:54:ac:99:1f: 77:a5:c1:80:94:69:c9:c8:bc:9d:36:7e:3d:d8:aa: 4f:9c:58:e2:c7:d4:27:69:28:83:99:79:ee:55:dc: 7d:01:12:46:ea:21:96:a4:e7:96:ca:a5:ec:fe:51: f3:dd:9a:15:a0:f5:2e:db:93:5e:e7:30:41:07:b1: fb:47:cb:d9:68:17:7b:a1:09:4b:40:c3:24:71:78: 5c:93:11:20:a2:ef:52:96:45:e6:3e:92:2c:95:25: f9:f5:b0:f6:8f:42:0a:e0:14:2b:64:2d:65:70:4a: 4b:33:c4:b0:9f:51:e4:70:dd:3d:6a:01:55:22:89: e0:cc:e4:e6:30:e7:25:04:40:fb:cc:5b:02:69:42: a7:23:7e:e9:2d:30:f7:e0:bc:38:19:e1:3c:d2:a4: 0d:9f:36:f2:9a:00:3e:d6:69:fe:65:b3:46:6a:55: ed:eb:52:06:35:d5:33:c3:21:20:8f:01:60:3f:22: b0:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:2C:89:0B:59:9D:4D:78:17:50:51:9F:9E:24:6C:35:11:C4:62:C8 X509v3 Authority Key Identifier: keyid:4E:44:60:CF:63:B2:4B:7C:35:B9:ED:AE:C9:7E:63:A7:2C:4B:DE:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915203C/46C88C82747711EA83654F4DC4F9AE02/TkRgz2OyS3w1ue2uyX5jpyxL3iM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TkRgz2OyS3w1ue2uyX5jpyxL3iM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915203C/46C88C82747711EA83654F4DC4F9AE02/TkRgz2OyS3w1ue2uyX5jpyxL3iM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cb:6b:b5:5e:ab:80:25:7f:ed:dd:bf:2c:8b:93:ef:16:8a:83: 09:06:69:dd:be:2e:a0:26:72:9e:f3:96:a4:0e:e2:7b:e1:f4: 02:50:2b:8f:58:ce:4c:ba:fe:00:57:f1:18:05:1d:25:c2:59: 49:ec:db:f7:c9:e9:45:c1:13:9b:a2:57:cc:05:e1:9f:49:1c: ba:0d:da:c3:f5:d0:10:d8:cd:0b:b4:89:4f:9d:77:8e:6f:74: c1:bc:67:34:09:2d:39:81:65:45:d1:b5:6f:e6:62:48:85:01: 40:9c:c5:60:14:8b:a1:5f:4b:96:36:24:47:78:7a:1d:a7:bd: 48:81:08:21:86:b5:e6:2d:93:4e:e7:56:44:9a:d4:c6:31:eb: 9a:bf:03:48:0c:a2:56:af:42:b3:b0:54:a4:1c:0d:d1:ed:82: 11:a3:17:e2:dd:4a:db:8a:ae:ae:e9:b8:83:08:db:19:d6:fd: 1e:0f:74:66:54:57:78:4d:4d:27:c9:ab:7c:1b:49:ca:1c:ea: f1:9e:65:f4:21:2b:58:ea:33:ef:47:f4:93:03:0f:c5:6e:0b: d0:45:48:18:fa:ca:fc:a1:59:c7:fc:74:0b:a1:1a:5d:4b:f8: 35:6f:f4:9c:fe:92:ab:20:b9:39:5d:e0:37:90:f9:16:9b:b7: b4:18:d4:fa -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCjkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTIwM0MxMTAvBgNVBAUTKDRFNDQ2MENGNjNCMjRCN0MzNUI5RURBRUM5N0U2M0E3 MkM0QkRFMjMwHhcNMjUwODIyMTk1MzA3WhcNMjUwODI5MTk1MzA3WjAYMRYwFAYD VQQDEw02OGE4Y2FhNC1hM2M1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxF1+OM8WHv+asvS7WgrB8KTGhEH/uQWFfFTrDc7G1xO+dBtvxP9NQv2ez6mh ZADabjDhYAatmjX1QUq13stP4uGgyb+knlSsmR93pcGAlGnJyLydNn492KpPnFji x9QnaSiDmXnuVdx9ARJG6iGWpOeWyqXs/lHz3ZoVoPUu25Ne5zBBB7H7R8vZaBd7 oQlLQMMkcXhckxEgou9SlkXmPpIslSX59bD2j0IK4BQrZC1lcEpLM8Swn1HkcN09 agFVIongzOTmMOclBED7zFsCaUKnI37pLTD34Lw4GeE80qQNnzbymgA+1mn+ZbNG alXt61IGNdUzwyEgjwFgPyKwzwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKEsiQtZ nU14F1BRn54kbDURxGLIMB8GA1UdIwQYMBaAFE5EYM9jskt8Nbntrsl+Y6csS94j MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MjAzQy80NkM4OEM4Mjc0 NzcxMUVBODM2NTRGNERDNEY5QUUwMi9Ua1JnejJPeVMzdzF1ZTJ1eVg1anB5eEwz aU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RrUmd6Mk95UzN3MXVlMnV5WDVqcHl4TDNpTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MjAzQy80NkM4OEM4Mjc0NzcxMUVBODM2NTRGNERDNEY5QUUwMi9Ua1JnejJPeVMz dzF1ZTJ1eVg1anB5eEwzaU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDLa7Veq4Alf+3dvyyLk+8WioMJBmndvi6gJnKe85akDuJ74fQCUCuP WM5Muv4AV/EYBR0lwllJ7Nv3yelFwRObolfMBeGfSRy6DdrD9dAQ2M0LtIlPnXeO b3TBvGc0CS05gWVF0bVv5mJIhQFAnMVgFIuhX0uWNiRHeHodp71IgQghhrXmLZNO 51ZEmtTGMeuavwNIDKJWr0KzsFSkHA3R7YIRoxfi3Urbiq6u6biDCNsZ1v0eD3Rm VFd4TU0nyat8G0nKHOrxnmX0IStY6jPvR/STAw/FbgvQRUgY+sr8oVnH/HQLoRpd S/g1b/Sc/pKrILk5XeA3kPkWm7e0GNT6 -----END CERTIFICATE-----Generated at Sat Aug 23 20:30:47 2025 by rpki-client