$ rpki-client -vvf rpki.apnic.net/member_repository/A91716DE/8F340DD0752D11EC9C748D54C4F9AE02/TMkE6Uxcm5OkSk9l77IKgA1t1-c.mft File: TMkE6Uxcm5OkSk9l77IKgA1t1-c.mft (raw, json) Hash identifier: UGD5P0q2u4AsG6oo1/LE4g5WFOSJFn7g6Woqlv2d97I= Subject key identifier: 35:83:C0:35:C8:7E:62:3F:38:28:4F:0E:C6:EE:B0:C5:4D:A5:D5:FA Authority key identifier: 4C:C9:04:E9:4C:5C:9B:93:A4:4A:4F:65:EF:B2:0A:80:0D:6D:D7:E7 Certificate issuer: /CN=A91716DE/serialNumber=4CC904E94C5C9B93A44A4F65EFB20A800D6DD7E7 Certificate serial: 0400 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TMkE6Uxcm5OkSk9l77IKgA1t1-c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91716DE/8F340DD0752D11EC9C748D54C4F9AE02/TMkE6Uxcm5OkSk9l77IKgA1t1-c.mft Manifest number: 03F8 Signing time: Thu 15 May 2025 00:30:55 +0000 Manifest this update: Thu 15 May 2025 00:30:55 +0000 Manifest next update: Thu 22 May 2025 00:30:55 +0000 Files and hashes: 1: TMkE6Uxcm5OkSk9l77IKgA1t1-c.crl (hash: gANwR0dplAVjSBTSR67sPeKaguv480xu13WDIZBH31Q=) 2: E2348176D54D11EF8A899250C4F9AE02.roa (hash: vU7fQooVaJk/8bmjfMJwzmIcKpCJVNxNvX0SFPwtzeQ=) 3: 75FC6CC2753711EC9091CB62C4F9AE02.roa (hash: GmAluyp1SMa2XHtQwLg3qsZiugrvAjRv/8qqPdWoOr4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91716DE/8F340DD0752D11EC9C748D54C4F9AE02/TMkE6Uxcm5OkSk9l77IKgA1t1-c.crl rsync://rpki.apnic.net/member_repository/A91716DE/8F340DD0752D11EC9C748D54C4F9AE02/TMkE6Uxcm5OkSk9l77IKgA1t1-c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TMkE6Uxcm5OkSk9l77IKgA1t1-c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 00:30:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1024 (0x400) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91716DE, serialNumber=4CC904E94C5C9B93A44A4F65EFB20A800D6DD7E7 Validity Not Before: May 15 00:30:55 2025 GMT Not After : May 22 00:30:55 2025 GMT Subject: CN=682535bf-8e8e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:69:97:ed:3c:bf:bd:77:b0:62:5a:c8:3d:7b: 0b:ab:92:d1:00:96:90:e0:5a:16:4f:ef:e2:20:aa: e1:71:35:0c:51:07:7c:88:40:15:88:81:43:d6:72: c6:58:b1:36:fc:e6:af:06:28:b6:97:af:5a:06:de: be:da:1a:ef:4b:b9:7b:58:2e:50:e2:b4:17:cf:ae: a3:75:95:81:48:2d:36:2c:df:e3:19:bf:fd:7c:3b: de:32:60:4b:0d:e5:b5:38:a7:a8:ae:72:e4:c9:ef: c2:81:f3:13:2c:63:cc:5f:70:18:fa:1b:6a:91:70: 7b:1a:04:64:2f:b3:42:ee:1b:ad:10:9f:0f:27:35: b1:de:e4:69:e1:a3:7d:e2:6d:c0:a0:9f:b0:9d:a9: 4d:2e:9f:3f:b4:b9:ca:62:21:b2:dd:07:da:ba:e1: 15:10:9d:57:0c:e9:40:41:bf:50:56:d4:e9:ad:31: 9b:6a:fc:3d:4a:2f:99:9f:97:dc:a9:59:2e:65:c4: 6e:07:8c:79:85:e9:64:83:39:0f:2b:d7:78:00:c5: 43:97:f0:84:7a:ef:e5:d9:05:a5:81:80:ae:23:33: 7a:db:d6:42:fa:a5:3b:33:3b:cb:07:1f:1d:4a:a7: 20:7d:a4:1a:fa:7f:34:65:0c:d2:d0:ba:dc:41:27: 37:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:83:C0:35:C8:7E:62:3F:38:28:4F:0E:C6:EE:B0:C5:4D:A5:D5:FA X509v3 Authority Key Identifier: keyid:4C:C9:04:E9:4C:5C:9B:93:A4:4A:4F:65:EF:B2:0A:80:0D:6D:D7:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91716DE/8F340DD0752D11EC9C748D54C4F9AE02/TMkE6Uxcm5OkSk9l77IKgA1t1-c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TMkE6Uxcm5OkSk9l77IKgA1t1-c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91716DE/8F340DD0752D11EC9C748D54C4F9AE02/TMkE6Uxcm5OkSk9l77IKgA1t1-c.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 55:be:4f:ae:0c:91:3e:61:c2:63:f6:b0:96:0e:b6:ee:2c:1a: 3e:74:10:f7:8b:78:f4:74:32:a2:a2:e9:b8:b4:ab:8a:96:4d: af:15:22:37:c8:19:fc:a2:04:cd:ca:aa:33:b6:aa:91:7f:42: 92:26:c8:6e:2e:01:c9:c6:11:30:9c:0e:80:a3:be:0d:04:86: 03:e5:7c:09:1a:e7:e9:10:04:a8:45:c1:23:74:e0:6d:02:5d: 2e:fc:9e:a5:cc:cf:30:72:17:71:97:8c:45:af:22:f0:79:d1: b3:dd:d6:81:0f:dd:2d:34:41:bc:c0:2e:de:98:96:6a:f0:82: 1a:48:c4:55:bd:eb:bf:7f:1a:1d:9c:af:61:0f:7f:9e:04:77: 6d:44:09:bb:e5:f5:bd:66:f8:21:7e:9d:40:79:0e:f4:b5:9a: c0:cf:b7:40:74:42:f4:d8:6d:17:2f:6b:fb:3f:95:94:b4:69: 73:cf:36:c8:21:c8:59:bd:59:66:bb:1c:84:6c:a9:4c:9f:48: 00:be:41:84:c2:26:e3:b6:de:77:8f:e3:ed:5e:5c:d2:fa:e3: a2:73:23:fa:a1:77:07:11:d9:da:40:bf:b7:84:6f:5e:e7:03: f5:f0:59:2a:6b:27:c7:a9:a7:78:fb:4f:2e:19:c3:2e:ce:03: 82:d9:1e:c2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBAAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzE2REUxMTAvBgNVBAUTKDRDQzkwNEU5NEM1QzlCOTNBNDRBNEY2NUVGQjIwQTgw MEQ2REQ3RTcwHhcNMjUwNTE1MDAzMDU1WhcNMjUwNTIyMDAzMDU1WjAYMRYwFAYD VQQDEw02ODI1MzViZi04ZThlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5mmX7Ty/vXewYlrIPXsLq5LRAJaQ4FoWT+/iIKrhcTUMUQd8iEAViIFD1nLG WLE2/OavBii2l69aBt6+2hrvS7l7WC5Q4rQXz66jdZWBSC02LN/jGb/9fDveMmBL DeW1OKeornLkye/CgfMTLGPMX3AY+htqkXB7GgRkL7NC7hutEJ8PJzWx3uRp4aN9 4m3AoJ+wnalNLp8/tLnKYiGy3QfauuEVEJ1XDOlAQb9QVtTprTGbavw9Si+Zn5fc qVkuZcRuB4x5helkgzkPK9d4AMVDl/CEeu/l2QWlgYCuIzN629ZC+qU7MzvLBx8d SqcgfaQa+n80ZQzS0LrcQSc37QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDWDwDXI fmI/OChPDsbusMVNpdX6MB8GA1UdIwQYMBaAFEzJBOlMXJuTpEpPZe+yCoANbdfn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MTZERS84RjM0MEREMDc1 MkQxMUVDOUM3NDhENTRDNEY5QUUwMi9UTWtFNlV4Y201T2tTazlsNzdJS2dBMXQx LWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RNa0U2VXhjbTVPa1NrOWw3N0lLZ0ExdDEtYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MTZERS84RjM0MEREMDc1MkQxMUVDOUM3NDhENTRDNEY5QUUwMi9UTWtFNlV4Y201 T2tTazlsNzdJS2dBMXQxLWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBVvk+uDJE+YcJj9rCWDrbuLBo+dBD3i3j0dDKioum4tKuKlk2vFSI3 yBn8ogTNyqoztqqRf0KSJshuLgHJxhEwnA6Ao74NBIYD5XwJGufpEASoRcEjdOBt Al0u/J6lzM8wchdxl4xFryLwedGz3daBD90tNEG8wC7emJZq8IIaSMRVveu/fxod nK9hD3+eBHdtRAm75fW9Zvghfp1AeQ70tZrAz7dAdEL02G0XL2v7P5WUtGlzzzbI IchZvVlmuxyEbKlMn0gAvkGEwibjtt53j+PtXlzS+uOicyP6oXcHEdnaQL+3hG9e 5wP18FkqayfHqad4+08uGcMuzgOC2R7C -----END CERTIFICATE-----Generated at Thu May 15 19:04:56 2025 by rpki-client