$ rpki-client -vvf rpki.apnic.net/member_repository/A91116C7/C856D6C4C6C611E882A41260C4F9AE02/tnwkXksr7q0jwfBd0w_5B32HuOY.mft File: tnwkXksr7q0jwfBd0w_5B32HuOY.mft (raw, json) Hash identifier: s0/kgJDb8WnE2g+x1RtDu/r0euRRhXY0c0ZwCaW6fcg= Subject key identifier: A1:81:96:F8:DF:61:89:EC:2A:BB:7F:7E:19:2F:2E:41:02:9B:4A:20 Authority key identifier: B6:7C:24:5E:4B:2B:EE:AD:23:C1:F0:5D:D3:0F:F9:07:7D:87:B8:E6 Certificate issuer: /CN=A91116C7/serialNumber=B67C245E4B2BEEAD23C1F05DD30FF9077D87B8E6 Certificate serial: 1299 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tnwkXksr7q0jwfBd0w_5B32HuOY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91116C7/C856D6C4C6C611E882A41260C4F9AE02/tnwkXksr7q0jwfBd0w_5B32HuOY.mft Manifest number: 1292 Signing time: Fri 30 May 2025 17:15:58 +0000 Manifest this update: Fri 30 May 2025 17:15:58 +0000 Manifest next update: Fri 06 Jun 2025 17:15:58 +0000 Files and hashes: 1: tnwkXksr7q0jwfBd0w_5B32HuOY.crl (hash: XkME9r1KgcWpPgSYEm9jyINlXHnTSUjVOp9GQVBZo5c=) 2: 0CAF01A6C6C811E8AECD6165C4F9AE02.roa (hash: n2FBgQHuh988fwkOcnAooQ/jXQmiLgbdWeucP9Cz7sg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91116C7/C856D6C4C6C611E882A41260C4F9AE02/tnwkXksr7q0jwfBd0w_5B32HuOY.crl rsync://rpki.apnic.net/member_repository/A91116C7/C856D6C4C6C611E882A41260C4F9AE02/tnwkXksr7q0jwfBd0w_5B32HuOY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tnwkXksr7q0jwfBd0w_5B32HuOY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 17:15:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4761 (0x1299) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91116C7, serialNumber=B67C245E4B2BEEAD23C1F05DD30FF9077D87B8E6 Validity Not Before: May 30 17:15:58 2025 GMT Not After : Jun 6 17:15:58 2025 GMT Subject: CN=6839e7ce-1e13 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:62:80:6a:44:f4:a6:c0:90:6e:5c:bc:60:f7: 0b:2c:a3:da:08:b7:d2:a8:32:44:20:df:8f:f5:3c: 4d:05:e1:a1:ad:0f:c6:91:de:f9:49:e2:8e:e9:6f: 6d:7d:a2:3e:2f:10:bf:dd:d2:5f:29:51:5d:4a:a8: 80:e4:b3:59:8d:89:e9:f5:1c:89:e1:73:be:90:65: 24:c8:b3:43:89:3c:57:10:71:80:f7:dd:6a:1a:bd: b0:6c:36:b5:b0:e2:db:94:8b:72:4d:a0:95:19:2d: db:ca:4a:00:5a:92:9a:9f:d9:83:c5:77:ed:3e:3b: 6a:c5:c0:92:65:f0:4a:b4:1f:6a:8d:bd:7e:bf:8c: 11:16:be:84:9a:f0:85:d2:fb:7f:24:d6:92:fd:09: c1:92:b1:f9:13:c8:15:1a:00:d9:bd:3a:31:56:67: a0:97:dd:68:74:6a:d8:16:71:31:9a:ca:cd:6a:e4: 36:53:1f:b4:e1:72:41:38:9f:4b:64:08:d5:d9:8f: 6c:d3:8d:b2:0e:20:85:e1:c0:a1:19:fc:3d:f0:65: 55:15:81:10:3b:e9:7f:89:3b:fa:bc:18:11:6e:91: 7e:e9:7d:90:ef:e7:37:4d:3c:bb:d4:44:15:e0:a3: 57:70:77:4a:38:38:62:15:45:71:7b:f5:2a:db:c7: 4b:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:81:96:F8:DF:61:89:EC:2A:BB:7F:7E:19:2F:2E:41:02:9B:4A:20 X509v3 Authority Key Identifier: keyid:B6:7C:24:5E:4B:2B:EE:AD:23:C1:F0:5D:D3:0F:F9:07:7D:87:B8:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91116C7/C856D6C4C6C611E882A41260C4F9AE02/tnwkXksr7q0jwfBd0w_5B32HuOY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tnwkXksr7q0jwfBd0w_5B32HuOY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91116C7/C856D6C4C6C611E882A41260C4F9AE02/tnwkXksr7q0jwfBd0w_5B32HuOY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b4:c2:22:b3:6a:02:20:9a:93:2e:3e:b6:61:f9:dc:59:89:11: 45:72:fd:fb:a0:6a:89:08:1d:7d:5f:dd:9e:23:e6:2f:29:50: 8a:bd:95:6b:3b:ad:7d:b4:2f:85:ef:2f:bc:e7:d7:a5:36:82: e4:4e:3d:d5:fb:05:f5:59:a5:6a:24:e9:a2:09:6c:7e:3a:8b: 2e:7a:e4:a7:cb:05:ea:60:a0:2e:88:cd:98:89:a3:bd:e1:dd: d7:a8:39:d8:c4:3a:dc:dd:16:35:bb:38:e6:0e:24:8c:c1:b7: 80:64:af:06:fc:31:38:f9:70:90:54:2a:5e:ef:13:c7:63:d6: 79:c7:76:a9:6b:98:31:9b:45:3c:64:f4:8a:5a:db:ae:72:2d: 2c:9c:96:5a:7a:cd:16:c4:28:5a:10:da:cc:fc:4b:84:5c:e9: b4:2e:84:b7:18:34:7c:ef:3b:3a:ff:bf:80:86:de:ba:db:7f: e6:9d:79:cd:ae:2d:0f:15:28:84:9b:58:b2:dd:b6:57:a6:90: 9c:94:dd:eb:5b:2a:59:e7:bb:17:eb:88:e8:a6:ca:30:bb:b8: 80:0b:80:c2:0a:a2:b9:42:27:3a:7f:df:18:07:9c:f2:29:a7: bb:78:23:e8:06:8c:ac:70:1e:57:f2:9a:d5:4c:5d:08:85:66: df:23:af:5d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEpkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTE2QzcxMTAvBgNVBAUTKEI2N0MyNDVFNEIyQkVFQUQyM0MxRjA1REQzMEZGOTA3 N0Q4N0I4RTYwHhcNMjUwNTMwMTcxNTU4WhcNMjUwNjA2MTcxNTU4WjAYMRYwFAYD VQQDEw02ODM5ZTdjZS0xZTEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA72KAakT0psCQbly8YPcLLKPaCLfSqDJEIN+P9TxNBeGhrQ/Gkd75SeKO6W9t faI+LxC/3dJfKVFdSqiA5LNZjYnp9RyJ4XO+kGUkyLNDiTxXEHGA991qGr2wbDa1 sOLblItyTaCVGS3bykoAWpKan9mDxXftPjtqxcCSZfBKtB9qjb1+v4wRFr6EmvCF 0vt/JNaS/QnBkrH5E8gVGgDZvToxVmegl91odGrYFnExmsrNauQ2Ux+04XJBOJ9L ZAjV2Y9s042yDiCF4cChGfw98GVVFYEQO+l/iTv6vBgRbpF+6X2Q7+c3TTy71EQV 4KNXcHdKODhiFUVxe/Uq28dLiQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKGBlvjf YYnsKrt/fhkvLkECm0ogMB8GA1UdIwQYMBaAFLZ8JF5LK+6tI8HwXdMP+Qd9h7jm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMTZDNy9DODU2RDZDNEM2 QzYxMUU4ODJBNDEyNjBDNEY5QUUwMi90bndrWGtzcjdxMGp3ZkJkMHdfNUIzMkh1 T1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Rud2tYa3NyN3EwandmQmQwd181QjMySHVPWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MTZDNy9DODU2RDZDNEM2QzYxMUU4ODJBNDEyNjBDNEY5QUUwMi90bndrWGtzcjdx MGp3ZkJkMHdfNUIzMkh1T1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC0wiKzagIgmpMuPrZh+dxZiRFFcv37oGqJCB19X92eI+YvKVCKvZVr O619tC+F7y+859elNoLkTj3V+wX1WaVqJOmiCWx+OosueuSnywXqYKAuiM2YiaO9 4d3XqDnYxDrc3RY1uzjmDiSMwbeAZK8G/DE4+XCQVCpe7xPHY9Z5x3apa5gxm0U8 ZPSKWtuuci0snJZaes0WxChaENrM/EuEXOm0LoS3GDR87zs6/7+Aht6623/mnXnN ri0PFSiEm1iy3bZXppCclN3rWypZ57sX64jopsowu7iAC4DCCqK5Qic6f98YB5zy Kae7eCPoBoyscB5X8prVTF0IhWbfI69d -----END CERTIFICATE-----Generated at Sat May 31 17:56:25 2025 by rpki-client