$ rpki-client -vvf rpki.apnic.net/member_repository/A91716DE/8F340DD0752D11EC9C748D54C4F9AE02/TMkE6Uxcm5OkSk9l77IKgA1t1-c.mft File: TMkE6Uxcm5OkSk9l77IKgA1t1-c.mft (raw, json) Hash identifier: FAQA1eeXzYzBFw+kSG7Kf+xTn9/3VRniSxeBVcw8BBU= Subject key identifier: 15:E7:92:19:99:5C:40:1D:68:CE:42:08:7F:79:DD:21:1E:D0:87:F3 Authority key identifier: 4C:C9:04:E9:4C:5C:9B:93:A4:4A:4F:65:EF:B2:0A:80:0D:6D:D7:E7 Certificate issuer: /CN=A91716DE/serialNumber=4CC904E94C5C9B93A44A4F65EFB20A800D6DD7E7 Certificate serial: 0418 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TMkE6Uxcm5OkSk9l77IKgA1t1-c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91716DE/8F340DD0752D11EC9C748D54C4F9AE02/TMkE6Uxcm5OkSk9l77IKgA1t1-c.mft Manifest number: 0410 Signing time: Thu 03 Jul 2025 00:44:24 +0000 Manifest this update: Thu 03 Jul 2025 00:44:24 +0000 Manifest next update: Thu 10 Jul 2025 00:44:24 +0000 Files and hashes: 1: TMkE6Uxcm5OkSk9l77IKgA1t1-c.crl (hash: Y0YvpigC1jtZH98Qel6IT58xi6sVIRnp/qpal/u1m5U=) 2: E2348176D54D11EF8A899250C4F9AE02.roa (hash: vU7fQooVaJk/8bmjfMJwzmIcKpCJVNxNvX0SFPwtzeQ=) 3: 75FC6CC2753711EC9091CB62C4F9AE02.roa (hash: GmAluyp1SMa2XHtQwLg3qsZiugrvAjRv/8qqPdWoOr4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91716DE/8F340DD0752D11EC9C748D54C4F9AE02/TMkE6Uxcm5OkSk9l77IKgA1t1-c.crl rsync://rpki.apnic.net/member_repository/A91716DE/8F340DD0752D11EC9C748D54C4F9AE02/TMkE6Uxcm5OkSk9l77IKgA1t1-c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TMkE6Uxcm5OkSk9l77IKgA1t1-c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 00:44:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1048 (0x418) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91716DE, serialNumber=4CC904E94C5C9B93A44A4F65EFB20A800D6DD7E7 Validity Not Before: Jul 3 00:44:24 2025 GMT Not After : Jul 10 00:44:24 2025 GMT Subject: CN=6865d268-6503 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:4d:59:40:ee:6e:19:6f:4f:b4:6f:42:39:ed: cf:5c:ec:82:c6:81:6a:4f:26:80:2e:d1:42:24:64: be:69:fa:5a:8d:84:be:91:d7:ad:0a:26:6e:bc:48: 39:e4:33:58:3c:f9:e5:38:7a:1b:bc:53:16:0a:c7: ec:0e:8c:9f:a5:fd:83:1f:3d:56:f7:b3:ff:bb:69: 3a:dd:6c:99:21:da:f1:7e:66:1e:b9:22:c7:07:69: 2a:9b:ba:10:ef:51:fb:3d:d6:71:74:32:ca:6b:2e: 68:a4:67:c1:34:86:65:51:6e:82:d5:e5:73:80:d2: 92:51:52:a5:03:38:8b:99:e8:08:87:94:25:30:5b: fe:db:af:ba:c6:2d:2f:74:3d:95:3e:d5:f0:f1:ec: 3e:e4:c2:1f:16:7b:6b:83:0d:3b:c6:31:30:28:5d: f3:fa:4f:9e:6b:08:e0:43:fd:17:77:8f:53:e5:5a: f0:3c:6a:4a:c7:ca:c8:e8:88:6d:71:b9:78:20:82: d6:f2:1e:9f:90:d1:a2:a4:90:11:a8:d9:95:d6:c2: b6:db:c0:af:e3:fd:e0:be:c7:cf:14:e4:6a:7a:9f: d7:16:4b:10:3b:73:31:a6:ce:7a:6e:12:50:82:51: c7:6d:08:44:05:08:f6:79:ce:e3:e9:fd:5d:a0:37: de:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:E7:92:19:99:5C:40:1D:68:CE:42:08:7F:79:DD:21:1E:D0:87:F3 X509v3 Authority Key Identifier: keyid:4C:C9:04:E9:4C:5C:9B:93:A4:4A:4F:65:EF:B2:0A:80:0D:6D:D7:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91716DE/8F340DD0752D11EC9C748D54C4F9AE02/TMkE6Uxcm5OkSk9l77IKgA1t1-c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TMkE6Uxcm5OkSk9l77IKgA1t1-c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91716DE/8F340DD0752D11EC9C748D54C4F9AE02/TMkE6Uxcm5OkSk9l77IKgA1t1-c.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 93:7f:46:41:78:b3:e0:d5:e4:2f:c4:12:13:2e:c8:15:d5:0d: 41:3c:b5:58:74:6c:70:d4:9e:73:60:19:e7:20:e1:36:ed:d6: da:9b:d1:88:32:75:39:5c:ad:bc:8d:af:0c:b1:a3:fa:3e:72: cb:7c:44:68:d7:53:41:8c:92:9f:83:9c:de:84:4e:55:ba:7b: 4b:44:96:c8:ab:40:30:d5:ee:b7:bf:70:ae:05:c3:18:c5:35: a2:a3:05:84:24:3d:6e:81:3e:29:d3:a9:24:28:c9:66:c0:5a: fd:15:2c:75:9f:0d:24:49:fa:48:2d:d6:7c:34:85:70:86:06: 50:1d:0e:95:a8:7d:11:3a:ff:38:bc:fe:7c:18:2d:ee:12:c3: ab:7f:f8:ec:6f:f1:61:d2:cc:2b:fa:83:b0:df:96:9d:e1:5e: 5b:dc:f0:8a:4b:cc:a8:f3:3a:68:0f:56:d7:2a:22:62:32:e6: 86:79:21:16:19:d9:09:5f:4f:fa:dd:66:e7:88:fe:f9:df:74: 4a:ae:50:f6:f8:26:15:46:b1:3f:e8:56:d0:c7:e8:a7:01:e3: 24:31:f7:2d:a4:2b:99:ba:57:dc:ee:6e:58:6f:46:1c:f6:c4: 54:88:1b:c9:92:34:1f:d7:1c:14:17:dd:51:a7:a1:06:76:7b: 7d:f7:80:85 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBBgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzE2REUxMTAvBgNVBAUTKDRDQzkwNEU5NEM1QzlCOTNBNDRBNEY2NUVGQjIwQTgw MEQ2REQ3RTcwHhcNMjUwNzAzMDA0NDI0WhcNMjUwNzEwMDA0NDI0WjAYMRYwFAYD VQQDEw02ODY1ZDI2OC02NTAzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAm01ZQO5uGW9PtG9COe3PXOyCxoFqTyaALtFCJGS+afpajYS+kdetCiZuvEg5 5DNYPPnlOHobvFMWCsfsDoyfpf2DHz1W97P/u2k63WyZIdrxfmYeuSLHB2kqm7oQ 71H7PdZxdDLKay5opGfBNIZlUW6C1eVzgNKSUVKlAziLmegIh5QlMFv+26+6xi0v dD2VPtXw8ew+5MIfFntrgw07xjEwKF3z+k+eawjgQ/0Xd49T5VrwPGpKx8rI6Iht cbl4IILW8h6fkNGipJARqNmV1sK228Cv4/3gvsfPFORqep/XFksQO3Mxps56bhJQ glHHbQhEBQj2ec7j6f1doDfezwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBXnkhmZ XEAdaM5CCH953SEe0IfzMB8GA1UdIwQYMBaAFEzJBOlMXJuTpEpPZe+yCoANbdfn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MTZERS84RjM0MEREMDc1 MkQxMUVDOUM3NDhENTRDNEY5QUUwMi9UTWtFNlV4Y201T2tTazlsNzdJS2dBMXQx LWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RNa0U2VXhjbTVPa1NrOWw3N0lLZ0ExdDEtYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MTZERS84RjM0MEREMDc1MkQxMUVDOUM3NDhENTRDNEY5QUUwMi9UTWtFNlV4Y201 T2tTazlsNzdJS2dBMXQxLWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCTf0ZBeLPg1eQvxBITLsgV1Q1BPLVYdGxw1J5zYBnnIOE27dbam9GI MnU5XK28ja8MsaP6PnLLfERo11NBjJKfg5zehE5VuntLRJbIq0Aw1e63v3CuBcMY xTWiowWEJD1ugT4p06kkKMlmwFr9FSx1nw0kSfpILdZ8NIVwhgZQHQ6VqH0ROv84 vP58GC3uEsOrf/jsb/Fh0swr+oOw35ad4V5b3PCKS8yo8zpoD1bXKiJiMuaGeSEW GdkJX0/63WbniP7533RKrlD2+CYVRrE/6FbQx+inAeMkMfctpCuZulfc7m5Yb0Yc 9sRUiBvJkjQf1xwUF91Rp6EGdnt994CF -----END CERTIFICATE-----Generated at Fri Jul 4 08:07:11 2025 by rpki-client