$ rpki-client -vvf rpki.apnic.net/member_repository/A915203C/46C88C82747711EA83654F4DC4F9AE02/TkRgz2OyS3w1ue2uyX5jpyxL3iM.mft File: TkRgz2OyS3w1ue2uyX5jpyxL3iM.mft (raw, json) Hash identifier: cJ57C8HcA6jJXSWGG7g9tTqvgKWAiNPONYrIssh6J5U= Subject key identifier: 44:E0:88:DB:77:D0:26:83:68:AA:AD:F3:8D:75:61:3D:D0:1B:E0:54 Authority key identifier: 4E:44:60:CF:63:B2:4B:7C:35:B9:ED:AE:C9:7E:63:A7:2C:4B:DE:23 Certificate issuer: /CN=A915203C/serialNumber=4E4460CF63B24B7C35B9EDAEC97E63A72C4BDE23 Certificate serial: 0A1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TkRgz2OyS3w1ue2uyX5jpyxL3iM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915203C/46C88C82747711EA83654F4DC4F9AE02/TkRgz2OyS3w1ue2uyX5jpyxL3iM.mft Manifest number: 0A17 Signing time: Wed 02 Jul 2025 20:01:41 +0000 Manifest this update: Wed 02 Jul 2025 20:01:41 +0000 Manifest next update: Wed 09 Jul 2025 20:01:41 +0000 Files and hashes: 1: TkRgz2OyS3w1ue2uyX5jpyxL3iM.crl (hash: 5F0qXpUkXCWSdWyev6p8hXRNsFpMoXjpXz0NGk9gHc0=) 2: 4A7F0102747811EAB3C2634EC4F9AE02.roa (hash: 1nP7wgiAU6ogCq9MB/uivojHlNVu46xfBAf9/7vfcJE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915203C/46C88C82747711EA83654F4DC4F9AE02/TkRgz2OyS3w1ue2uyX5jpyxL3iM.crl rsync://rpki.apnic.net/member_repository/A915203C/46C88C82747711EA83654F4DC4F9AE02/TkRgz2OyS3w1ue2uyX5jpyxL3iM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TkRgz2OyS3w1ue2uyX5jpyxL3iM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 20:01:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2589 (0xa1d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915203C, serialNumber=4E4460CF63B24B7C35B9EDAEC97E63A72C4BDE23 Validity Not Before: Jul 2 20:01:41 2025 GMT Not After : Jul 9 20:01:41 2025 GMT Subject: CN=68659025-ee73 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:3c:75:b5:8c:3a:01:a6:bb:d2:3c:e2:64:d4: ae:69:a8:f4:02:33:10:97:d6:23:51:fa:7e:e3:4e: 4e:60:7c:4d:33:52:ad:4e:d6:c5:01:2a:5f:db:4f: db:f7:7d:33:27:ea:9f:c5:d5:6f:d7:8d:fa:29:82: e9:06:3b:57:db:1f:da:26:f2:fd:39:63:f4:8d:ae: 14:6b:1a:28:cc:5b:34:17:ff:13:74:22:ce:e9:eb: 8b:f9:42:d3:a7:e4:58:3f:24:f6:75:0f:f2:1f:31: c2:03:75:70:8e:e4:9d:54:2d:54:cc:bd:c5:ed:d9: 1c:30:b6:3f:02:6c:ce:99:07:1d:c6:49:b3:53:83: 45:70:89:5a:c9:f2:2c:f2:9a:3a:90:28:4b:e2:0f: 17:ca:13:6d:20:5c:c0:80:d4:ae:aa:ac:3c:b5:e2: 86:9b:67:08:d9:c2:7e:58:31:2c:37:93:43:f1:e3: 1a:1b:36:84:eb:e0:7c:57:89:ce:95:ea:1e:51:0b: 1d:7b:53:30:78:ad:00:f9:0c:aa:8b:ad:21:3f:f9: 8a:8c:ab:d6:bc:b9:6c:58:4f:40:98:74:52:02:25: 3c:3b:79:da:25:30:b2:30:4d:b3:2d:eb:c1:78:0b: 1f:4c:84:48:d3:32:c5:b7:15:48:f3:b6:8f:cb:27: 32:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:E0:88:DB:77:D0:26:83:68:AA:AD:F3:8D:75:61:3D:D0:1B:E0:54 X509v3 Authority Key Identifier: keyid:4E:44:60:CF:63:B2:4B:7C:35:B9:ED:AE:C9:7E:63:A7:2C:4B:DE:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915203C/46C88C82747711EA83654F4DC4F9AE02/TkRgz2OyS3w1ue2uyX5jpyxL3iM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TkRgz2OyS3w1ue2uyX5jpyxL3iM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915203C/46C88C82747711EA83654F4DC4F9AE02/TkRgz2OyS3w1ue2uyX5jpyxL3iM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption aa:e7:c0:45:e4:66:42:06:3a:60:6e:64:d7:ae:72:d3:b2:46: dd:e9:96:94:fd:bb:d3:66:0e:fc:b5:79:1e:fc:cd:22:f3:19: 6e:af:fc:fd:9e:46:a4:46:23:ac:d3:7f:31:6c:21:37:37:b6: e7:b6:3d:a0:fd:f2:fd:9d:18:26:46:8b:41:3d:59:66:64:65: 31:54:db:0c:32:49:55:26:f5:a2:97:9a:9c:68:c6:fb:70:50: b0:b3:95:a6:2f:1c:47:86:c0:30:3b:45:94:c2:20:94:3d:a2: 06:5d:a5:b9:2a:87:39:a5:57:7d:a9:c8:f3:bb:8d:bc:35:d6: a9:53:07:8f:61:28:8a:58:49:0f:f3:5e:a2:a0:a7:b0:4b:3c: 82:7d:9e:03:55:f4:39:eb:c1:28:bc:ee:4c:a0:19:25:1b:6f: b2:d9:dd:12:d6:b0:37:b5:0b:b7:2b:c3:a6:f1:86:7d:f3:da: 3f:27:6b:9a:e3:c1:3b:d3:fd:d1:d7:a5:d1:b6:72:8e:0b:19: 1b:d8:60:c0:1e:78:f9:e9:c3:1d:e1:65:1f:b2:06:35:a5:5b: 85:e9:47:83:8b:0d:9b:0f:a2:39:58:27:c0:ad:39:f2:b0:75: b4:a2:6e:ff:d1:42:3c:2e:6a:9c:b9:63:f9:55:dd:a7:95:2e: ad:79:fb:e2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCh0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTIwM0MxMTAvBgNVBAUTKDRFNDQ2MENGNjNCMjRCN0MzNUI5RURBRUM5N0U2M0E3 MkM0QkRFMjMwHhcNMjUwNzAyMjAwMTQxWhcNMjUwNzA5MjAwMTQxWjAYMRYwFAYD VQQDEw02ODY1OTAyNS1lZTczMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArjx1tYw6Aaa70jziZNSuaaj0AjMQl9YjUfp+405OYHxNM1KtTtbFASpf20/b 930zJ+qfxdVv1436KYLpBjtX2x/aJvL9OWP0ja4UaxoozFs0F/8TdCLO6euL+ULT p+RYPyT2dQ/yHzHCA3VwjuSdVC1UzL3F7dkcMLY/AmzOmQcdxkmzU4NFcIlayfIs 8po6kChL4g8XyhNtIFzAgNSuqqw8teKGm2cI2cJ+WDEsN5ND8eMaGzaE6+B8V4nO leoeUQsde1MweK0A+Qyqi60hP/mKjKvWvLlsWE9AmHRSAiU8O3naJTCyME2zLevB eAsfTIRI0zLFtxVI87aPyycyZQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFETgiNt3 0CaDaKqt8411YT3QG+BUMB8GA1UdIwQYMBaAFE5EYM9jskt8Nbntrsl+Y6csS94j MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MjAzQy80NkM4OEM4Mjc0 NzcxMUVBODM2NTRGNERDNEY5QUUwMi9Ua1JnejJPeVMzdzF1ZTJ1eVg1anB5eEwz aU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RrUmd6Mk95UzN3MXVlMnV5WDVqcHl4TDNpTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MjAzQy80NkM4OEM4Mjc0NzcxMUVBODM2NTRGNERDNEY5QUUwMi9Ua1JnejJPeVMz dzF1ZTJ1eVg1anB5eEwzaU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCq58BF5GZCBjpgbmTXrnLTskbd6ZaU/bvTZg78tXke/M0i8xlur/z9 nkakRiOs038xbCE3N7bntj2g/fL9nRgmRotBPVlmZGUxVNsMMklVJvWil5qcaMb7 cFCws5WmLxxHhsAwO0WUwiCUPaIGXaW5Koc5pVd9qcjzu428NdapUwePYSiKWEkP 816ioKewSzyCfZ4DVfQ568EovO5MoBklG2+y2d0S1rA3tQu3K8Om8YZ989o/J2ua 48E70/3R16XRtnKOCxkb2GDAHnj56cMd4WUfsgY1pVuF6UeDiw2bD6I5WCfArTny sHW0om7/0UI8LmqcuWP5Vd2nlS6tefvi -----END CERTIFICATE-----Generated at Thu Jul 3 11:24:27 2025 by rpki-client