$ rpki-client -vvf rpki.apnic.net/member_repository/A91BAE17/445EE09458BD11E49383AB76C4F9AE02/tksRCOmO7If7awwovgFkXHCLSsU.mft File: tksRCOmO7If7awwovgFkXHCLSsU.mft (raw, json) Hash identifier: QS87fm0gj+75szirCI94NXg6w/QprUCDljw/rAC0UT8= Subject key identifier: 23:B0:DD:5D:AA:5D:70:D2:95:58:96:3E:D6:22:2C:E7:73:F1:5C:FC Authority key identifier: B6:4B:11:08:E9:8E:EC:87:FB:6B:0C:28:BE:01:64:5C:70:8B:4A:C5 Certificate issuer: /CN=A91BAE17/serialNumber=B64B1108E98EEC87FB6B0C28BE01645C708B4AC5 Certificate serial: 2971 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tksRCOmO7If7awwovgFkXHCLSsU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BAE17/445EE09458BD11E49383AB76C4F9AE02/tksRCOmO7If7awwovgFkXHCLSsU.mft Manifest number: 295C Signing time: Fri 18 Jul 2025 15:41:59 +0000 Manifest this update: Fri 18 Jul 2025 15:41:59 +0000 Manifest next update: Fri 25 Jul 2025 15:41:59 +0000 Files and hashes: 1: tksRCOmO7If7awwovgFkXHCLSsU.crl (hash: oJqZRonhlZSXp3m0ehN5AC/BAGasYrNgbGzu0ejHGeM=) 2: 98845C5C54EC11E791C3F825C4F9AE02.roa (hash: XWmzI2yeMf3apt5DHsKgv60jONcTAI6E+TZgl5OMpW8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BAE17/445EE09458BD11E49383AB76C4F9AE02/tksRCOmO7If7awwovgFkXHCLSsU.crl rsync://rpki.apnic.net/member_repository/A91BAE17/445EE09458BD11E49383AB76C4F9AE02/tksRCOmO7If7awwovgFkXHCLSsU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tksRCOmO7If7awwovgFkXHCLSsU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 15:41:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10609 (0x2971) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BAE17, serialNumber=B64B1108E98EEC87FB6B0C28BE01645C708B4AC5 Validity Not Before: Jul 18 15:41:59 2025 GMT Not After : Jul 25 15:41:59 2025 GMT Subject: CN=687a6b47-3af9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:bf:6e:9e:dc:90:82:60:68:ad:05:11:e8:24: f0:ea:31:98:7d:75:5b:99:7c:c2:27:87:86:f6:16: cd:64:b3:56:3a:7e:3d:cc:e8:e2:65:15:52:fb:1b: bb:f6:79:08:4e:57:00:77:ed:2e:e1:ba:87:68:49: ce:dc:6c:e6:4c:01:34:08:4d:b7:8b:ea:de:01:76: 22:93:34:ee:9d:6d:40:d6:23:a2:31:33:ef:49:92: f7:31:a1:f6:c5:fc:94:4d:81:70:2a:14:b9:c7:df: 68:a6:6e:41:5c:38:fb:4a:1b:7d:a0:d0:39:ce:99: 42:1c:94:1e:82:c8:5d:ee:44:ff:88:4d:34:11:ea: c7:85:b4:a4:51:af:a1:38:66:c1:bc:50:77:a1:2a: ae:48:22:c4:8a:cc:1c:f3:e0:70:10:5b:24:39:e9: 1f:9d:eb:cb:33:2f:83:83:c1:b2:93:99:ab:f7:5a: 55:25:2d:f0:f6:09:40:ad:7f:bd:aa:dd:89:20:bb: ef:dd:6e:97:47:b3:9c:4e:f5:e2:f3:1c:72:6d:51: e7:56:d8:5d:4b:81:33:b4:9d:ec:92:ee:5b:db:39: bc:ad:28:9d:42:97:50:4a:40:39:d3:e9:01:88:62: 4f:56:44:04:ef:2a:3b:0e:8e:ca:20:5d:c1:52:8e: 18:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:B0:DD:5D:AA:5D:70:D2:95:58:96:3E:D6:22:2C:E7:73:F1:5C:FC X509v3 Authority Key Identifier: keyid:B6:4B:11:08:E9:8E:EC:87:FB:6B:0C:28:BE:01:64:5C:70:8B:4A:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BAE17/445EE09458BD11E49383AB76C4F9AE02/tksRCOmO7If7awwovgFkXHCLSsU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tksRCOmO7If7awwovgFkXHCLSsU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BAE17/445EE09458BD11E49383AB76C4F9AE02/tksRCOmO7If7awwovgFkXHCLSsU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 55:d8:e8:03:29:dc:0d:95:4c:4f:4d:7a:b9:a4:45:b9:27:69: da:dc:22:0b:05:ca:01:26:87:79:de:af:0e:8b:eb:50:65:f8: 97:75:b1:1d:f3:69:82:de:45:7a:53:25:15:8f:bb:41:df:23: 5a:a2:45:39:48:04:e4:02:0e:a9:ac:1e:b8:7e:c3:7c:ea:1d: dc:8e:b7:56:55:1f:4e:45:34:fd:6c:11:ac:0a:cb:25:36:54: 81:5b:4e:c4:a5:fa:79:1f:84:49:f9:62:8a:56:ee:fa:a4:42: 01:2d:f6:71:a1:3c:10:3c:ec:09:0b:8c:11:6c:6b:ef:2f:63: 80:f8:ab:3f:98:74:60:5f:5a:6d:ff:85:96:43:ed:83:7c:b9: 90:2d:76:fe:26:48:a2:92:ca:c3:86:50:f1:4c:32:7e:3e:af: e0:b5:2b:d8:65:2f:11:b0:55:8f:8e:38:6c:1e:b7:de:12:42: fe:6b:a6:74:b9:14:36:f1:b0:0d:25:d6:5e:a5:53:ab:02:00: a7:7f:4d:1f:f4:0e:52:fc:a6:d1:03:15:e8:54:03:e4:25:61: 6c:dd:2f:02:f4:08:fd:3e:6c:a6:8a:be:55:a4:c7:b5:18:9e: e5:0a:94:b6:c4:a3:41:d5:da:78:d0:01:0d:b1:b7:e2:26:43: ed:49:23:54 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICKXEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkFFMTcxMTAvBgNVBAUTKEI2NEIxMTA4RTk4RUVDODdGQjZCMEMyOEJFMDE2NDVD NzA4QjRBQzUwHhcNMjUwNzE4MTU0MTU5WhcNMjUwNzI1MTU0MTU5WjAYMRYwFAYD VQQDEw02ODdhNmI0Ny0zYWY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA779untyQgmBorQUR6CTw6jGYfXVbmXzCJ4eG9hbNZLNWOn49zOjiZRVS+xu7 9nkITlcAd+0u4bqHaEnO3GzmTAE0CE23i+reAXYikzTunW1A1iOiMTPvSZL3MaH2 xfyUTYFwKhS5x99opm5BXDj7Sht9oNA5zplCHJQegshd7kT/iE00EerHhbSkUa+h OGbBvFB3oSquSCLEiswc8+BwEFskOekfnevLMy+Dg8Gyk5mr91pVJS3w9glArX+9 qt2JILvv3W6XR7OcTvXi8xxybVHnVthdS4EztJ3sku5b2zm8rSidQpdQSkA50+kB iGJPVkQE7yo7Do7KIF3BUo4YawIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCOw3V2q XXDSlViWPtYiLOdz8Vz8MB8GA1UdIwQYMBaAFLZLEQjpjuyH+2sMKL4BZFxwi0rF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQUUxNy80NDVFRTA5NDU4 QkQxMUU0OTM4M0FCNzZDNEY5QUUwMi90a3NSQ09tTzdJZjdhd3dvdmdGa1hIQ0xT c1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Rrc1JDT21PN0lmN2F3d292Z0ZrWEhDTFNzVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QUUxNy80NDVFRTA5NDU4QkQxMUU0OTM4M0FCNzZDNEY5QUUwMi90a3NSQ09tTzdJ Zjdhd3dvdmdGa1hIQ0xTc1UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBV2OgDKdwNlUxPTXq5pEW5J2na3CILBcoBJod53q8Oi+tQZfiXdbEd 82mC3kV6UyUVj7tB3yNaokU5SATkAg6prB64fsN86h3cjrdWVR9ORTT9bBGsCssl NlSBW07Epfp5H4RJ+WKKVu76pEIBLfZxoTwQPOwJC4wRbGvvL2OA+Ks/mHRgX1pt /4WWQ+2DfLmQLXb+JkiiksrDhlDxTDJ+Pq/gtSvYZS8RsFWPjjhsHrfeEkL+a6Z0 uRQ28bANJdZepVOrAgCnf00f9A5S/KbRAxXoVAPkJWFs3S8C9Aj9Pmymir5VpMe1 GJ7lCpS2xKNB1dp40AENsbfiJkPtSSNU -----END CERTIFICATE-----Generated at Sun Jul 20 12:08:06 2025 by rpki-client