$ rpki-client -vvf rpki.apnic.net/member_repository/A915203C/46C88C82747711EA83654F4DC4F9AE02/TkRgz2OyS3w1ue2uyX5jpyxL3iM.mft File: TkRgz2OyS3w1ue2uyX5jpyxL3iM.mft (raw, json) Hash identifier: sVIKJ2YZ296WcomU1ZN2ko/5IfzkSpp3pmBYVD2YqA0= Subject key identifier: 3E:9C:E5:F2:A2:68:34:E5:BC:2F:B5:C8:60:4F:3E:D8:59:00:B1:CE Authority key identifier: 4E:44:60:CF:63:B2:4B:7C:35:B9:ED:AE:C9:7E:63:A7:2C:4B:DE:23 Certificate issuer: /CN=A915203C/serialNumber=4E4460CF63B24B7C35B9EDAEC97E63A72C4BDE23 Certificate serial: 0A05 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TkRgz2OyS3w1ue2uyX5jpyxL3iM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915203C/46C88C82747711EA83654F4DC4F9AE02/TkRgz2OyS3w1ue2uyX5jpyxL3iM.mft Manifest number: 09FF Signing time: Wed 14 May 2025 19:58:17 +0000 Manifest this update: Wed 14 May 2025 19:58:16 +0000 Manifest next update: Wed 21 May 2025 19:58:16 +0000 Files and hashes: 1: TkRgz2OyS3w1ue2uyX5jpyxL3iM.crl (hash: zqsHi/nL/zccPtys42a+CHsAlz0UhgweuuXipr2OSnY=) 2: 4A7F0102747811EAB3C2634EC4F9AE02.roa (hash: 1nP7wgiAU6ogCq9MB/uivojHlNVu46xfBAf9/7vfcJE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915203C/46C88C82747711EA83654F4DC4F9AE02/TkRgz2OyS3w1ue2uyX5jpyxL3iM.crl rsync://rpki.apnic.net/member_repository/A915203C/46C88C82747711EA83654F4DC4F9AE02/TkRgz2OyS3w1ue2uyX5jpyxL3iM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TkRgz2OyS3w1ue2uyX5jpyxL3iM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 19:58:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2565 (0xa05) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915203C, serialNumber=4E4460CF63B24B7C35B9EDAEC97E63A72C4BDE23 Validity Not Before: May 14 19:58:16 2025 GMT Not After : May 21 19:58:16 2025 GMT Subject: CN=6824f5d8-aa3b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:01:93:88:d6:48:fa:9f:d6:69:7e:dd:15:23: 7e:ba:1b:dd:35:a8:ee:46:c5:39:5f:5d:1c:f8:8f: a2:3f:dd:e4:7b:05:75:91:bf:b2:4c:bb:23:c6:22: fa:e4:e6:29:8c:c3:86:ab:10:61:20:f8:a8:12:1f: 6f:02:ba:3a:f8:ba:c4:8a:04:b9:66:92:b9:da:54: fc:06:fc:00:40:b4:c0:0d:37:17:17:3b:68:0e:9c: 9a:5a:61:7d:17:16:ed:52:1d:66:e5:84:82:7b:fb: 62:86:33:ed:3f:82:61:15:50:65:b6:09:c1:a1:cf: 97:59:0a:46:55:de:18:0f:ff:68:34:46:2f:71:42: 28:70:0d:ef:7a:60:24:f2:8a:2b:2a:21:35:4c:68: d7:b6:63:4e:2e:67:e2:0f:ca:ee:89:b0:67:64:3e: e8:4e:77:f1:32:45:bb:02:75:aa:bc:d0:d6:1c:c3: 63:cf:b5:22:fd:87:eb:ba:ef:e2:25:b4:10:bb:1b: ad:d8:6c:b6:e5:84:26:79:78:87:1e:56:34:13:5b: ee:16:26:70:e5:b2:fb:f5:5e:ec:38:79:ec:9d:32: 59:db:d6:d4:11:bc:40:bc:64:a6:49:15:e7:4c:0f: fa:7e:73:79:72:25:29:da:70:14:22:a6:a1:19:44: d5:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:9C:E5:F2:A2:68:34:E5:BC:2F:B5:C8:60:4F:3E:D8:59:00:B1:CE X509v3 Authority Key Identifier: keyid:4E:44:60:CF:63:B2:4B:7C:35:B9:ED:AE:C9:7E:63:A7:2C:4B:DE:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915203C/46C88C82747711EA83654F4DC4F9AE02/TkRgz2OyS3w1ue2uyX5jpyxL3iM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TkRgz2OyS3w1ue2uyX5jpyxL3iM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915203C/46C88C82747711EA83654F4DC4F9AE02/TkRgz2OyS3w1ue2uyX5jpyxL3iM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 76:dd:df:33:cd:be:ec:43:b6:f6:1c:1e:3b:03:c7:f0:52:fe: 2e:39:0f:94:14:77:e6:b4:73:23:fb:ac:f3:0e:c9:bd:b5:32: 4a:12:54:a1:33:76:eb:08:1b:24:3e:1f:c7:94:76:12:5b:33: 9b:a7:dd:06:58:fd:ba:35:1e:15:e0:9c:b9:3e:1a:cb:5a:ce: 8d:64:16:b6:6a:2d:e0:40:c2:3c:15:0a:4e:af:3d:46:1c:10: 52:fd:bc:f1:63:4b:de:03:61:a3:19:53:e0:d7:ad:16:ae:2a: c4:d2:1e:5b:73:58:68:ea:62:ce:00:df:6d:fe:bb:4b:77:34: 0b:84:ac:34:4a:e5:d1:35:53:2a:42:31:1b:2b:99:f3:79:38: 59:b1:d2:0c:70:fc:6f:d9:26:9a:67:13:08:e0:83:6c:e1:2f: 94:6e:08:2e:8d:7d:bc:52:1a:04:aa:ae:36:80:5b:2e:d9:91: 02:0d:bf:a5:b1:64:16:a6:f5:9f:ea:2b:35:53:ab:8b:8a:bd: 1a:17:01:98:b8:48:b4:51:9c:46:ae:1f:45:4a:ae:8f:41:05: 50:53:47:96:b1:12:59:56:0d:50:db:61:e2:b7:f0:1e:e0:26: c9:df:80:6d:42:2c:73:30:4b:ec:bd:bb:d8:c0:70:1d:4d:54: d0:ab:f4:78 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCgUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTIwM0MxMTAvBgNVBAUTKDRFNDQ2MENGNjNCMjRCN0MzNUI5RURBRUM5N0U2M0E3 MkM0QkRFMjMwHhcNMjUwNTE0MTk1ODE2WhcNMjUwNTIxMTk1ODE2WjAYMRYwFAYD VQQDEw02ODI0ZjVkOC1hYTNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1AGTiNZI+p/WaX7dFSN+uhvdNajuRsU5X10c+I+iP93kewV1kb+yTLsjxiL6 5OYpjMOGqxBhIPioEh9vAro6+LrEigS5ZpK52lT8BvwAQLTADTcXFztoDpyaWmF9 FxbtUh1m5YSCe/tihjPtP4JhFVBltgnBoc+XWQpGVd4YD/9oNEYvcUIocA3vemAk 8oorKiE1TGjXtmNOLmfiD8ruibBnZD7oTnfxMkW7AnWqvNDWHMNjz7Ui/Yfruu/i JbQQuxut2Gy25YQmeXiHHlY0E1vuFiZw5bL79V7sOHnsnTJZ29bUEbxAvGSmSRXn TA/6fnN5ciUp2nAUIqahGUTVYwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD6c5fKi aDTlvC+1yGBPPthZALHOMB8GA1UdIwQYMBaAFE5EYM9jskt8Nbntrsl+Y6csS94j MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MjAzQy80NkM4OEM4Mjc0 NzcxMUVBODM2NTRGNERDNEY5QUUwMi9Ua1JnejJPeVMzdzF1ZTJ1eVg1anB5eEwz aU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RrUmd6Mk95UzN3MXVlMnV5WDVqcHl4TDNpTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MjAzQy80NkM4OEM4Mjc0NzcxMUVBODM2NTRGNERDNEY5QUUwMi9Ua1JnejJPeVMz dzF1ZTJ1eVg1anB5eEwzaU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB23d8zzb7sQ7b2HB47A8fwUv4uOQ+UFHfmtHMj+6zzDsm9tTJKElSh M3brCBskPh/HlHYSWzObp90GWP26NR4V4Jy5PhrLWs6NZBa2ai3gQMI8FQpOrz1G HBBS/bzxY0veA2GjGVPg160WrirE0h5bc1ho6mLOAN9t/rtLdzQLhKw0SuXRNVMq QjEbK5nzeThZsdIMcPxv2SaaZxMI4INs4S+UbggujX28UhoEqq42gFsu2ZECDb+l sWQWpvWf6is1U6uLir0aFwGYuEi0UZxGrh9FSq6PQQVQU0eWsRJZVg1Q22Hit/Ae 4CbJ34BtQixzMEvsvbvYwHAdTVTQq/R4 -----END CERTIFICATE-----Generated at Fri May 16 18:56:45 2025 by rpki-client