$ rpki-client -vvf rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/TK4677Gsir3bmbzO5PpakW0VezQ.mft File: TK4677Gsir3bmbzO5PpakW0VezQ.mft (raw, json) Hash identifier: sOfHeJHBA8DfZZP9MdVe+5eUaNtODcOWBS/LXT45AB8= Subject key identifier: 89:28:89:B9:FB:0D:15:BD:01:C7:5B:4F:24:F2:74:EE:03:05:B4:D7 Authority key identifier: 4C:AE:3A:EF:B1:AC:8A:BD:DB:99:BC:CE:E4:FA:5A:91:6D:15:7B:34 Certificate issuer: /CN=A91B5D7E/serialNumber=4CAE3AEFB1AC8ABDDB99BCCEE4FA5A916D157B34 Certificate serial: 3612 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TK4677Gsir3bmbzO5PpakW0VezQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/TK4677Gsir3bmbzO5PpakW0VezQ.mft Manifest number: 3539 Signing time: Sat 10 May 2025 14:28:42 +0000 Manifest this update: Sat 10 May 2025 14:28:42 +0000 Manifest next update: Sat 17 May 2025 14:28:42 +0000 Files and hashes: 1: TK4677Gsir3bmbzO5PpakW0VezQ.crl (hash: 9Btxvkve80O3KLlHZJgbhfNQZvTlgRB7eAh5NQJz/Yk=) 2: D166652A072211EF9AC24D5BC4F9AE02.roa (hash: RL1lTbOt6Av5nEYA4DHBlIKK0hqxvZRiBkpLy29xghs=) 3: 945922AECEBA11EDBBFD9E28C4F9AE02.roa (hash: 2rH+VWOcuPOah5bNHP9sMT7gm/W2BD5Lz0whslurntk=) 4: 24D7D74C978011EE87BB7D53C4F9AE02.roa (hash: CuyEAz/Z+ba3st2KGZYRh65vVcO9Be9AbPEfcjuGd9k=) 5: 31D56A8E06C711EF9A0E1D0AC4F9AE02.roa (hash: Yqwo5M588Yfv+JXGuvZtKg0Gtdf+iGVakUUN+3KDHdo=) 6: CE997E2EEA9B11EFA6A3D730C4F9AE02.roa (hash: uN0e+cUzXR0q+zRv9FKfvDWSlrjYXQb/CNzmut03rlU=) 7: DCD7F756048411F095177229C4F9AE02.roa (hash: PJnt80PstBsPu+Je/uk2L+eWT12a7ahlhHYmODLLA84=) 8: D630A6B206D511EFB6CFDF2DC4F9AE02.roa (hash: oGdV623K9DaOonzZkenCae7aE6BqwAo6RdH7Y25n0b4=) 9: 4DC27210558111EF880A8679C4F9AE02.roa (hash: m1XRr2iAq+1TVgkspEslzx6eWsdA8L2B6700lAxn/d4=) 10: C6A44358F43111EFB70DAE63C4F9AE02.roa (hash: ktcmSqDTgXbj3lIVA2eR8cEJTJL4lajyKd+nAAjV9WI=) 11: 4B2AFD54ABA611EEA4B59A6AC4F9AE02.roa (hash: 92OU291hR0YIYqWJJIcvZXszn84NKrAjVspQkxjVbEI=) 12: 77D96D4A4F3411EFBA0A2659C4F9AE02.roa (hash: ol23eWYMbqFxa7AzTOzpz7Em2i4wKmL7cxMptLBFr00=) 13: 8FF00754732F11EE90078C13C4F9AE02.roa (hash: FvhGoDcJkl/uVyMeuA2e84lQ0fEQXKW9fiAoOj29wy4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/TK4677Gsir3bmbzO5PpakW0VezQ.crl rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/TK4677Gsir3bmbzO5PpakW0VezQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TK4677Gsir3bmbzO5PpakW0VezQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 14:28:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13842 (0x3612) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B5D7E, serialNumber=4CAE3AEFB1AC8ABDDB99BCCEE4FA5A916D157B34 Validity Not Before: May 10 14:28:42 2025 GMT Not After : May 17 14:28:42 2025 GMT Subject: CN=681f629a-3480 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:b7:43:90:18:00:65:42:3b:36:3c:36:2a:95: 05:b5:7e:bd:53:92:b6:ee:d2:03:da:06:e7:f5:81: b8:73:85:e5:cb:b2:c0:33:a7:2e:12:5d:5a:4c:e3: af:37:6c:24:ec:ff:d9:b6:01:ed:e6:53:dd:ee:79: 49:7d:43:ec:38:e3:75:14:74:01:0f:b2:bb:04:f3: c8:37:e4:80:75:7d:e4:52:83:8f:42:af:3b:68:7e: a2:e6:39:f1:9c:79:e2:a3:78:cf:ca:32:a4:c1:70: 13:d0:10:92:25:a2:88:47:0f:05:95:f7:ec:9c:e9: 6a:de:0d:d9:96:44:95:a9:e5:6f:e3:4d:a0:b9:c1: 0b:d2:dd:f6:6f:07:93:f1:90:df:6b:33:e0:32:f5: 7c:61:51:ad:c8:d3:b6:f6:72:63:ed:e3:ec:29:b2: e5:64:79:6e:9b:b3:1a:6f:ca:f9:df:18:96:57:74: 03:a0:9d:d6:a8:98:5a:4a:49:e8:83:db:2a:ff:43: 23:72:39:a5:5b:90:bb:d9:c9:68:b0:80:65:93:6c: 43:74:9c:df:52:a8:73:bc:9d:0c:d7:83:c2:b0:66: 4e:07:67:fa:77:ce:72:34:a4:d7:5c:01:46:0a:2b: 07:20:bd:2b:48:a8:7e:a6:7a:fa:e7:01:8d:d3:55: 63:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:28:89:B9:FB:0D:15:BD:01:C7:5B:4F:24:F2:74:EE:03:05:B4:D7 X509v3 Authority Key Identifier: keyid:4C:AE:3A:EF:B1:AC:8A:BD:DB:99:BC:CE:E4:FA:5A:91:6D:15:7B:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/TK4677Gsir3bmbzO5PpakW0VezQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TK4677Gsir3bmbzO5PpakW0VezQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/TK4677Gsir3bmbzO5PpakW0VezQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 16:80:7a:05:e0:69:5a:23:1c:1e:b1:7a:fd:95:1a:70:8c:50: 44:cf:2e:f3:83:23:cd:87:8a:15:33:7a:3e:3b:8a:56:87:23: 9b:bb:3a:7f:51:e5:a7:ff:8a:6a:91:19:27:2e:b2:88:71:9f: bd:e3:06:ea:31:ca:7d:fa:5e:64:fa:3b:99:ee:d0:d1:b5:6d: b2:d1:53:4a:09:da:da:1a:c7:72:0b:13:a4:8c:72:d8:a6:13: 3e:81:47:53:6f:8c:65:6a:a8:95:7e:7b:be:ac:ff:92:f1:d3: 83:a3:84:73:74:c9:70:65:ed:c3:a3:28:87:a2:6f:ba:b0:a2: ea:b1:17:91:75:a2:35:cb:16:a1:36:3a:f5:10:70:09:2c:44: 07:14:81:eb:06:c4:28:1a:80:c7:ae:65:19:f1:35:31:52:6e: 05:f1:9a:91:f1:22:e7:75:8b:fe:b8:7c:da:78:20:95:9f:be: dc:b0:4b:90:fb:6e:ca:69:ec:0b:b4:7d:fa:fd:6a:b4:d7:d5: e3:a6:36:45:bc:34:98:e3:28:94:4e:e8:d1:70:5a:69:35:f5: 91:db:92:18:73:58:ea:da:5c:a4:25:18:b3:aa:91:e0:1e:72: 57:73:16:5f:83:09:5a:94:fb:88:5d:0c:b3:93:af:a6:c8:ac: 80:1c:70:2d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNhIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjVEN0UxMTAvBgNVBAUTKDRDQUUzQUVGQjFBQzhBQkREQjk5QkNDRUU0RkE1QTkx NkQxNTdCMzQwHhcNMjUwNTEwMTQyODQyWhcNMjUwNTE3MTQyODQyWjAYMRYwFAYD VQQDEw02ODFmNjI5YS0zNDgwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6LdDkBgAZUI7Njw2KpUFtX69U5K27tID2gbn9YG4c4Xly7LAM6cuEl1aTOOv N2wk7P/ZtgHt5lPd7nlJfUPsOON1FHQBD7K7BPPIN+SAdX3kUoOPQq87aH6i5jnx nHnio3jPyjKkwXAT0BCSJaKIRw8FlffsnOlq3g3ZlkSVqeVv402gucEL0t32bweT 8ZDfazPgMvV8YVGtyNO29nJj7ePsKbLlZHlum7Mab8r53xiWV3QDoJ3WqJhaSkno g9sq/0MjcjmlW5C72closIBlk2xDdJzfUqhzvJ0M14PCsGZOB2f6d85yNKTXXAFG CisHIL0rSKh+pnr65wGN01VjUwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIkoibn7 DRW9AcdbTyTydO4DBbTXMB8GA1UdIwQYMBaAFEyuOu+xrIq925m8zuT6WpFtFXs0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNUQ3RS9FQ0E2ODIzNDFE ODcxMUUyOTgzMjJERTAwOEIwMkNEMi9USzQ2NzdHc2lyM2JtYnpPNVBwYWtXMFZl elEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RLNDY3N0dzaXIzYm1iek81UHBha1cwVmV6US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NUQ3RS9FQ0E2ODIzNDFEODcxMUUyOTgzMjJERTAwOEIwMkNEMi9USzQ2NzdHc2ly M2JtYnpPNVBwYWtXMFZlelEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAWgHoF4GlaIxwesXr9lRpwjFBEzy7zgyPNh4oVM3o+O4pWhyObuzp/ UeWn/4pqkRknLrKIcZ+94wbqMcp9+l5k+juZ7tDRtW2y0VNKCdraGsdyCxOkjHLY phM+gUdTb4xlaqiVfnu+rP+S8dODo4RzdMlwZe3DoyiHom+6sKLqsReRdaI1yxah Njr1EHAJLEQHFIHrBsQoGoDHrmUZ8TUxUm4F8ZqR8SLndYv+uHzaeCCVn77csEuQ +27KaewLtH36/Wq019XjpjZFvDSY4yiUTujRcFppNfWR25IYc1jq2lykJRizqpHg HnJXcxZfgwlalPuIXQyzk6+myKyAHHAt -----END CERTIFICATE-----Generated at Mon May 12 13:35:21 2025 by rpki-client