$ rpki-client -vvf rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/TK4677Gsir3bmbzO5PpakW0VezQ.mft File: TK4677Gsir3bmbzO5PpakW0VezQ.mft (raw, json) Hash identifier: 8r58qHstKAZyMhEYjOGZkgDLt3JA4qrNVOmHChAbi8o= Subject key identifier: 8E:64:11:94:C4:8B:17:35:F0:A9:A4:E4:DE:28:D3:6E:69:C9:62:10 Authority key identifier: 4C:AE:3A:EF:B1:AC:8A:BD:DB:99:BC:CE:E4:FA:5A:91:6D:15:7B:34 Certificate issuer: /CN=A91B5D7E/serialNumber=4CAE3AEFB1AC8ABDDB99BCCEE4FA5A916D157B34 Certificate serial: 362D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TK4677Gsir3bmbzO5PpakW0VezQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/TK4677Gsir3bmbzO5PpakW0VezQ.mft Manifest number: 3554 Signing time: Wed 02 Jul 2025 14:29:31 +0000 Manifest this update: Wed 02 Jul 2025 14:29:30 +0000 Manifest next update: Wed 09 Jul 2025 14:29:30 +0000 Files and hashes: 1: TK4677Gsir3bmbzO5PpakW0VezQ.crl (hash: 1lGv1vsVDHRVlQVuvIW9WPYwrSHbIgXR77KskV9511w=) 2: D166652A072211EF9AC24D5BC4F9AE02.roa (hash: RL1lTbOt6Av5nEYA4DHBlIKK0hqxvZRiBkpLy29xghs=) 3: 945922AECEBA11EDBBFD9E28C4F9AE02.roa (hash: 2rH+VWOcuPOah5bNHP9sMT7gm/W2BD5Lz0whslurntk=) 4: 24D7D74C978011EE87BB7D53C4F9AE02.roa (hash: CuyEAz/Z+ba3st2KGZYRh65vVcO9Be9AbPEfcjuGd9k=) 5: 31D56A8E06C711EF9A0E1D0AC4F9AE02.roa (hash: Yqwo5M588Yfv+JXGuvZtKg0Gtdf+iGVakUUN+3KDHdo=) 6: CE997E2EEA9B11EFA6A3D730C4F9AE02.roa (hash: uN0e+cUzXR0q+zRv9FKfvDWSlrjYXQb/CNzmut03rlU=) 7: DCD7F756048411F095177229C4F9AE02.roa (hash: PJnt80PstBsPu+Je/uk2L+eWT12a7ahlhHYmODLLA84=) 8: D630A6B206D511EFB6CFDF2DC4F9AE02.roa (hash: oGdV623K9DaOonzZkenCae7aE6BqwAo6RdH7Y25n0b4=) 9: 4DC27210558111EF880A8679C4F9AE02.roa (hash: m1XRr2iAq+1TVgkspEslzx6eWsdA8L2B6700lAxn/d4=) 10: C6A44358F43111EFB70DAE63C4F9AE02.roa (hash: ktcmSqDTgXbj3lIVA2eR8cEJTJL4lajyKd+nAAjV9WI=) 11: 4B2AFD54ABA611EEA4B59A6AC4F9AE02.roa (hash: 92OU291hR0YIYqWJJIcvZXszn84NKrAjVspQkxjVbEI=) 12: 77D96D4A4F3411EFBA0A2659C4F9AE02.roa (hash: ol23eWYMbqFxa7AzTOzpz7Em2i4wKmL7cxMptLBFr00=) 13: 8FF00754732F11EE90078C13C4F9AE02.roa (hash: FvhGoDcJkl/uVyMeuA2e84lQ0fEQXKW9fiAoOj29wy4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/TK4677Gsir3bmbzO5PpakW0VezQ.crl rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/TK4677Gsir3bmbzO5PpakW0VezQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TK4677Gsir3bmbzO5PpakW0VezQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 14:29:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13869 (0x362d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B5D7E, serialNumber=4CAE3AEFB1AC8ABDDB99BCCEE4FA5A916D157B34 Validity Not Before: Jul 2 14:29:30 2025 GMT Not After : Jul 9 14:29:30 2025 GMT Subject: CN=6865424a-6d74 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:3d:71:53:e6:3b:5a:27:64:e4:e2:db:90:3f: 83:83:40:1b:1a:5b:2a:b8:62:35:3a:07:9d:29:9d: 31:3c:b2:28:c9:d7:b3:65:49:1d:ee:1d:77:6e:1c: 49:34:a3:bb:d3:93:af:b4:00:01:a3:37:10:0b:dc: bc:17:54:93:d3:b2:c8:7c:46:a4:08:ee:0d:b4:c5: 97:c2:ab:5c:2a:cc:17:11:c1:9c:4b:1e:fd:ab:ac: 43:7a:9c:3f:87:67:4a:5b:7d:e4:12:92:16:5f:05: 0e:be:00:c7:ac:b2:db:03:c2:ae:20:93:73:c8:b6: a7:c7:5e:a8:45:64:c6:1d:4a:67:99:68:bb:24:d7: 82:82:f8:cc:b3:ae:03:69:8b:21:4d:ff:76:b0:c6: 36:9b:98:43:e4:1f:ab:b7:b1:0a:9e:13:7e:a9:cc: 96:f1:0a:88:8e:4b:43:37:aa:53:5c:06:e8:82:a4: a4:71:9d:d6:ff:66:a9:3b:21:85:28:7d:8b:99:af: e7:37:31:a3:3e:e5:6e:d6:65:b6:93:fe:1d:53:08: 91:8f:d0:8f:34:bf:ad:f7:6f:60:39:eb:38:26:68: cf:c0:77:4e:fb:51:78:69:33:8c:e3:cd:aa:31:c2: eb:e8:f5:65:b3:b8:75:df:2b:14:83:9b:e4:0d:f8: bc:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:64:11:94:C4:8B:17:35:F0:A9:A4:E4:DE:28:D3:6E:69:C9:62:10 X509v3 Authority Key Identifier: keyid:4C:AE:3A:EF:B1:AC:8A:BD:DB:99:BC:CE:E4:FA:5A:91:6D:15:7B:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/TK4677Gsir3bmbzO5PpakW0VezQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TK4677Gsir3bmbzO5PpakW0VezQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/TK4677Gsir3bmbzO5PpakW0VezQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 68:61:88:8e:51:43:b5:c4:98:a9:db:0a:21:93:b9:09:bf:76: d9:fb:11:33:aa:c4:28:05:f5:11:1b:2e:2e:d5:10:54:52:2f: 69:15:d9:de:47:cb:b8:c4:b6:23:50:da:76:e3:11:aa:38:0a: a5:fd:0f:65:37:e5:da:36:9d:3b:e8:9b:41:05:c4:3b:a3:48: d5:be:f7:27:fe:96:eb:29:08:97:c2:6c:4a:92:93:bf:7a:4b: 31:55:cf:ca:a3:ed:01:a9:30:a2:6d:1f:dd:4e:71:5f:42:b2: 61:4c:30:95:e7:98:dc:f1:79:23:79:bd:79:ec:b7:6b:19:48: 55:0a:1d:71:6c:56:74:f7:b1:c4:0c:5e:ec:44:27:55:3b:33: b7:d6:d9:c6:7b:10:cd:a2:69:df:df:0f:54:51:6e:78:3b:d5: 29:54:e3:8e:30:e3:22:7b:a4:6d:3b:e8:8b:91:3a:bc:03:21: 21:c8:31:ab:b1:23:4d:31:f1:fa:d0:3b:76:69:53:d9:26:aa: e6:b9:04:1c:85:c1:41:05:23:b3:a7:0e:5a:bb:93:6b:b6:9f: c8:82:cc:67:4c:38:4e:f7:04:8a:c4:f4:b7:ab:92:5c:be:40: 4a:be:bf:81:9a:c0:4a:68:b4:14:e8:cf:89:77:3a:c6:10:73: a6:ea:b6:d8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNi0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjVEN0UxMTAvBgNVBAUTKDRDQUUzQUVGQjFBQzhBQkREQjk5QkNDRUU0RkE1QTkx NkQxNTdCMzQwHhcNMjUwNzAyMTQyOTMwWhcNMjUwNzA5MTQyOTMwWjAYMRYwFAYD VQQDEw02ODY1NDI0YS02ZDc0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvD1xU+Y7Widk5OLbkD+Dg0AbGlsquGI1OgedKZ0xPLIoydezZUkd7h13bhxJ NKO705OvtAABozcQC9y8F1ST07LIfEakCO4NtMWXwqtcKswXEcGcSx79q6xDepw/ h2dKW33kEpIWXwUOvgDHrLLbA8KuIJNzyLanx16oRWTGHUpnmWi7JNeCgvjMs64D aYshTf92sMY2m5hD5B+rt7EKnhN+qcyW8QqIjktDN6pTXAbogqSkcZ3W/2apOyGF KH2Lma/nNzGjPuVu1mW2k/4dUwiRj9CPNL+t929gOes4JmjPwHdO+1F4aTOM482q McLr6PVls7h13ysUg5vkDfi8IQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI5kEZTE ixc18Kmk5N4o025pyWIQMB8GA1UdIwQYMBaAFEyuOu+xrIq925m8zuT6WpFtFXs0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNUQ3RS9FQ0E2ODIzNDFE ODcxMUUyOTgzMjJERTAwOEIwMkNEMi9USzQ2NzdHc2lyM2JtYnpPNVBwYWtXMFZl elEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RLNDY3N0dzaXIzYm1iek81UHBha1cwVmV6US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NUQ3RS9FQ0E2ODIzNDFEODcxMUUyOTgzMjJERTAwOEIwMkNEMi9USzQ2NzdHc2ly M2JtYnpPNVBwYWtXMFZlelEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBoYYiOUUO1xJip2wohk7kJv3bZ+xEzqsQoBfURGy4u1RBUUi9pFdne R8u4xLYjUNp24xGqOAql/Q9lN+XaNp076JtBBcQ7o0jVvvcn/pbrKQiXwmxKkpO/ eksxVc/Ko+0BqTCibR/dTnFfQrJhTDCV55jc8Xkjeb157LdrGUhVCh1xbFZ097HE DF7sRCdVOzO31tnGexDNomnf3w9UUW54O9UpVOOOMOMie6RtO+iLkTq8AyEhyDGr sSNNMfH60Dt2aVPZJqrmuQQchcFBBSOzpw5au5Nrtp/IgsxnTDhO9wSKxPS3q5Jc vkBKvr+BmsBKaLQU6M+JdzrGEHOm6rbY -----END CERTIFICATE-----Generated at Wed Jul 2 16:24:09 2025 by rpki-client