$ rpki-client -vvf rpki.apnic.net/member_repository/A915825D/DD71D568A44611EF8D58A624C4F9AE02/TKAuwRGHSuDn0FVaJf8zAvkS64w.mft File: TKAuwRGHSuDn0FVaJf8zAvkS64w.mft (raw, json) Hash identifier: 0wvH3NriyL+X8gQXdnS5Z67Xvs4k91uhTRlTL4Puctc= Subject key identifier: BA:99:8E:BA:70:28:96:99:EC:34:5F:2A:F0:1E:01:F3:41:32:A6:71 Authority key identifier: 4C:A0:2E:C1:11:87:4A:E0:E7:D0:55:5A:25:FF:33:02:F9:12:EB:8C Certificate issuer: /CN=A915825D/serialNumber=4CA02EC111874AE0E7D0555A25FF3302F912EB8C Certificate serial: 67 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TKAuwRGHSuDn0FVaJf8zAvkS64w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915825D/DD71D568A44611EF8D58A624C4F9AE02/TKAuwRGHSuDn0FVaJf8zAvkS64w.mft Manifest number: 62 Signing time: Sun 11 May 2025 05:52:28 +0000 Manifest this update: Sun 11 May 2025 05:52:27 +0000 Manifest next update: Sun 18 May 2025 05:52:27 +0000 Files and hashes: 1: TKAuwRGHSuDn0FVaJf8zAvkS64w.crl (hash: 4+2iuA7U0+rcNmhM8Vo/B/mg/5gBeHs+Ky+zAtUUgDo=) 2: 109B1A6AC14F11EFAE8F4B0BC4F9AE02.roa (hash: m6Ln5a7ZSeIX81Tm2886H7n9SlKXj8hnsIcbsYsTN7o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915825D/DD71D568A44611EF8D58A624C4F9AE02/TKAuwRGHSuDn0FVaJf8zAvkS64w.crl rsync://rpki.apnic.net/member_repository/A915825D/DD71D568A44611EF8D58A624C4F9AE02/TKAuwRGHSuDn0FVaJf8zAvkS64w.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TKAuwRGHSuDn0FVaJf8zAvkS64w.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 05:52:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 103 (0x67) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915825D, serialNumber=4CA02EC111874AE0E7D0555A25FF3302F912EB8C Validity Not Before: May 11 05:52:27 2025 GMT Not After : May 18 05:52:27 2025 GMT Subject: CN=68203b1b-1379 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:49:23:36:00:9f:eb:a8:43:de:bc:21:42:c1: 70:55:e9:e4:05:20:05:11:97:d8:b3:4a:21:7e:e5: 27:10:a0:dd:01:57:c1:98:ab:9c:a3:13:e3:a5:a2: 5e:59:58:f0:34:e5:b0:6b:a5:2e:cd:59:ff:0a:15: 05:c3:06:7c:ff:fa:62:f6:a0:cb:91:15:ff:d8:b6: 19:a8:09:25:81:af:ed:88:28:1a:88:22:c8:c2:b9: 92:79:36:58:60:64:6e:b9:91:39:82:96:eb:39:be: d1:cf:c0:86:3d:ab:8a:7e:e4:2d:9c:f6:95:60:31: b3:58:4c:5d:d9:75:bb:10:8a:b6:df:f8:25:5e:ad: 41:e6:23:6e:73:87:ca:60:f4:70:1d:cf:7d:c0:8a: 97:c2:22:b5:3a:b9:fe:24:bc:83:3b:39:ed:7f:f4: 6d:68:e8:6f:b7:19:38:e6:34:52:53:a7:19:31:97: 71:1b:45:f6:dc:8e:ab:f8:64:14:1d:5f:1d:7b:7b: 20:dd:4c:54:7f:a0:80:44:00:83:82:79:e1:a6:69: ff:6b:cf:96:34:c7:05:c6:78:9f:1f:77:61:97:11: a1:56:b4:b0:3b:aa:bc:6a:56:68:7d:63:b3:dc:65: 03:99:f7:33:6f:47:9c:12:ab:4a:b6:d9:76:db:c8: e0:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:99:8E:BA:70:28:96:99:EC:34:5F:2A:F0:1E:01:F3:41:32:A6:71 X509v3 Authority Key Identifier: keyid:4C:A0:2E:C1:11:87:4A:E0:E7:D0:55:5A:25:FF:33:02:F9:12:EB:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915825D/DD71D568A44611EF8D58A624C4F9AE02/TKAuwRGHSuDn0FVaJf8zAvkS64w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TKAuwRGHSuDn0FVaJf8zAvkS64w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915825D/DD71D568A44611EF8D58A624C4F9AE02/TKAuwRGHSuDn0FVaJf8zAvkS64w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 27:1d:f6:3e:f9:f0:33:0e:28:4c:0f:dc:93:f6:37:73:1e:58: 75:83:82:8b:66:5d:b7:d5:30:2e:fa:3c:1e:c2:93:c1:a7:40: 53:7c:4a:bb:59:21:5b:e6:24:f1:2d:ec:de:b0:a3:8b:cf:5c: bd:07:25:a8:5d:bd:bd:cc:4e:78:94:ce:c6:68:7c:81:7d:a3: 6a:4d:2e:57:9a:f4:0a:af:4b:fe:49:8b:f9:a0:0d:81:53:4d: 0b:94:2c:d4:d0:34:06:37:ae:42:f8:92:e6:52:a1:31:9f:97: 32:94:11:f2:01:44:7e:90:12:d6:91:84:84:6f:42:de:49:92: 3d:32:29:c3:8d:a1:61:b8:2c:6b:1f:22:af:a0:b7:60:97:70: e7:d1:e7:57:cf:f4:a8:dc:75:26:cb:d3:d9:9d:03:1a:48:20: 89:97:71:85:9f:c3:9c:be:c1:63:24:11:81:1b:e8:65:c0:43: 81:d3:b2:0c:ee:6f:60:33:6c:79:a5:59:e9:9c:50:9f:e9:54: 17:97:21:e0:57:39:5b:98:fc:be:f2:e6:49:f3:95:3a:12:4c: 8a:86:1d:3f:21:03:44:29:da:2a:2c:a3:90:25:80:00:04:fd: c0:e1:b5:4d:60:08:85:70:04:48:87:18:4e:94:e9:1d:1e:32: 93:12:96:09 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBZzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 ODI1RDExMC8GA1UEBRMoNENBMDJFQzExMTg3NEFFMEU3RDA1NTVBMjVGRjMzMDJG OTEyRUI4QzAeFw0yNTA1MTEwNTUyMjdaFw0yNTA1MTgwNTUyMjdaMBgxFjAUBgNV BAMTDTY4MjAzYjFiLTEzNzkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDxSSM2AJ/rqEPevCFCwXBV6eQFIAURl9izSiF+5ScQoN0BV8GYq5yjE+Olol5Z WPA05bBrpS7NWf8KFQXDBnz/+mL2oMuRFf/YthmoCSWBr+2IKBqIIsjCuZJ5Nlhg ZG65kTmClus5vtHPwIY9q4p+5C2c9pVgMbNYTF3ZdbsQirbf+CVerUHmI25zh8pg 9HAdz33AipfCIrU6uf4kvIM7Oe1/9G1o6G+3GTjmNFJTpxkxl3EbRfbcjqv4ZBQd Xx17eyDdTFR/oIBEAIOCeeGmaf9rz5Y0xwXGeJ8fd2GXEaFWtLA7qrxqVmh9Y7Pc ZQOZ9zNvR5wSq0q22XbbyOCnAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUupmOunAo lpnsNF8q8B4B80EypnEwHwYDVR0jBBgwFoAUTKAuwRGHSuDn0FVaJf8zAvkS64ww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU4MjVEL0RENzFENTY4QTQ0 NjExRUY4RDU4QTYyNEM0RjlBRTAyL1RLQXV3UkdIU3VEbjBGVmFKZjh6QXZrUzY0 dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvVEtBdXdSR0hTdURuMEZWYUpmOHpBdmtTNjR3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU4 MjVEL0RENzFENTY4QTQ0NjExRUY4RDU4QTYyNEM0RjlBRTAyL1RLQXV3UkdIU3VE bjBGVmFKZjh6QXZrUzY0dy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACcd9j758DMOKEwP3JP2N3MeWHWDgotmXbfVMC76PB7Ck8GnQFN8SrtZ IVvmJPEt7N6wo4vPXL0HJahdvb3MTniUzsZofIF9o2pNLlea9AqvS/5Ji/mgDYFT TQuULNTQNAY3rkL4kuZSoTGflzKUEfIBRH6QEtaRhIRvQt5Jkj0yKcONoWG4LGsf Iq+gt2CXcOfR51fP9KjcdSbL09mdAxpIIImXcYWfw5y+wWMkEYEb6GXAQ4HTsgzu b2AzbHmlWemcUJ/pVBeXIeBXOVuY/L7y5knzlToSTIqGHT8hA0Qp2ioso5AlgAAE /cDhtU1gCIVwBEiHGE6U6R0eMpMSlgk= -----END CERTIFICATE-----Generated at Sun May 11 21:59:29 2025 by rpki-client