$ rpki-client -vvf rpki.apnic.net/member_repository/A915203C/46C88C82747711EA83654F4DC4F9AE02/TkRgz2OyS3w1ue2uyX5jpyxL3iM.mft File: TkRgz2OyS3w1ue2uyX5jpyxL3iM.mft (raw, json) Hash identifier: CE+cZEGNpKtP3f06F9Gbaj6nZXPL2jvoFtwBfnDdy4M= Subject key identifier: 46:3F:69:83:4B:59:43:D2:23:5A:29:47:EB:37:16:31:59:FA:53:0F Authority key identifier: 4E:44:60:CF:63:B2:4B:7C:35:B9:ED:AE:C9:7E:63:A7:2C:4B:DE:23 Certificate issuer: /CN=A915203C/serialNumber=4E4460CF63B24B7C35B9EDAEC97E63A72C4BDE23 Certificate serial: 0A0C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TkRgz2OyS3w1ue2uyX5jpyxL3iM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915203C/46C88C82747711EA83654F4DC4F9AE02/TkRgz2OyS3w1ue2uyX5jpyxL3iM.mft Manifest number: 0A06 Signing time: Fri 30 May 2025 20:01:52 +0000 Manifest this update: Fri 30 May 2025 20:01:52 +0000 Manifest next update: Fri 06 Jun 2025 20:01:52 +0000 Files and hashes: 1: TkRgz2OyS3w1ue2uyX5jpyxL3iM.crl (hash: 0Twy86R2Oye6pkjR/fhRo6CuXaZz/6oaeIxypKAitR4=) 2: 4A7F0102747811EAB3C2634EC4F9AE02.roa (hash: 1nP7wgiAU6ogCq9MB/uivojHlNVu46xfBAf9/7vfcJE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915203C/46C88C82747711EA83654F4DC4F9AE02/TkRgz2OyS3w1ue2uyX5jpyxL3iM.crl rsync://rpki.apnic.net/member_repository/A915203C/46C88C82747711EA83654F4DC4F9AE02/TkRgz2OyS3w1ue2uyX5jpyxL3iM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TkRgz2OyS3w1ue2uyX5jpyxL3iM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 20:01:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2572 (0xa0c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915203C, serialNumber=4E4460CF63B24B7C35B9EDAEC97E63A72C4BDE23 Validity Not Before: May 30 20:01:52 2025 GMT Not After : Jun 6 20:01:52 2025 GMT Subject: CN=683a0eb0-5beb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:74:14:e1:b3:a0:47:2f:66:e4:6d:2a:be:3f: 33:dd:63:f6:0b:fc:c6:6e:be:79:b0:ee:f0:4c:34: c4:2d:0a:b6:ca:2b:65:cf:be:68:5a:19:cf:23:2a: 2e:d9:15:48:a4:cf:2c:43:09:75:80:a9:09:35:87: 04:99:a9:80:f7:f0:6f:e1:bd:b6:b6:9f:08:1a:d6: e1:f2:8e:39:1c:a2:7e:23:77:03:5b:9e:f4:a9:42: cd:97:0c:55:93:e4:c3:93:50:e2:77:4d:1e:8f:60: b2:95:47:ae:7c:47:4d:49:ed:2f:ee:25:45:7b:f6: 2d:03:31:44:88:b0:b6:5a:1e:dd:6f:71:96:71:48: 39:29:26:15:c4:75:4b:24:e0:f7:29:75:01:2d:08: b9:9e:9d:53:7c:5e:99:66:ec:0e:37:d8:2e:16:09: 00:06:fb:d0:7b:db:38:17:09:6e:56:c3:21:30:75: 9a:ea:e0:76:24:a7:1a:58:a4:1c:f0:e8:9e:25:88: 67:8e:4c:9a:f6:67:f3:c6:09:22:ff:12:aa:2c:f3: ab:6d:18:f5:85:dc:00:5e:c0:46:c5:47:ac:ff:90: 87:20:31:b7:f5:6d:15:6c:ac:36:8c:79:cb:26:66: 5d:1d:9d:ae:6a:ce:8a:1f:51:ff:c7:da:12:a7:47: b8:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:3F:69:83:4B:59:43:D2:23:5A:29:47:EB:37:16:31:59:FA:53:0F X509v3 Authority Key Identifier: keyid:4E:44:60:CF:63:B2:4B:7C:35:B9:ED:AE:C9:7E:63:A7:2C:4B:DE:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915203C/46C88C82747711EA83654F4DC4F9AE02/TkRgz2OyS3w1ue2uyX5jpyxL3iM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TkRgz2OyS3w1ue2uyX5jpyxL3iM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915203C/46C88C82747711EA83654F4DC4F9AE02/TkRgz2OyS3w1ue2uyX5jpyxL3iM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 20:9f:b9:dd:6a:e2:a8:9f:42:e3:64:91:55:85:4f:8c:90:23: c4:3e:72:2c:bf:ee:41:e1:6e:17:cb:6b:19:7a:01:3d:56:8c: 3a:63:dc:40:fa:9c:2b:d9:a0:89:46:28:3f:24:8d:80:96:44: f3:12:f7:5a:44:a8:94:06:c0:ae:1a:38:2f:33:3a:0f:a2:32: b1:52:a3:e7:d6:d2:ed:3c:7f:b9:8d:59:d8:76:4f:1a:d4:e7: af:58:81:59:92:1a:19:03:04:f6:af:0f:a4:33:3b:47:ca:e7: 91:79:90:25:83:58:38:04:b7:0a:4d:89:f1:98:cd:be:9c:ab: 6e:a7:5b:88:e4:cb:74:b9:98:95:6a:16:9c:93:ab:7b:e4:62: 88:ff:61:72:0c:ee:34:c8:69:7f:10:35:8c:15:02:ac:f4:e1: 3c:0d:20:3c:5d:d5:1f:ff:a7:90:8d:d4:5e:e4:ee:c4:66:dd: 5a:73:1f:d1:75:59:aa:79:f5:aa:33:95:c9:1e:c2:79:b9:0d: ac:90:a2:0f:2a:12:68:7d:a3:a4:d1:4d:d2:2a:8f:f4:29:a0: 07:f5:23:1c:8e:f3:57:94:cf:ce:65:8e:50:a0:30:99:d0:46: 93:8c:5f:4b:0b:39:d6:a8:2d:24:31:60:36:25:9b:71:11:f4: bc:cd:14:2c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCgwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTIwM0MxMTAvBgNVBAUTKDRFNDQ2MENGNjNCMjRCN0MzNUI5RURBRUM5N0U2M0E3 MkM0QkRFMjMwHhcNMjUwNTMwMjAwMTUyWhcNMjUwNjA2MjAwMTUyWjAYMRYwFAYD VQQDEw02ODNhMGViMC01YmViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu3QU4bOgRy9m5G0qvj8z3WP2C/zGbr55sO7wTDTELQq2yitlz75oWhnPIyou 2RVIpM8sQwl1gKkJNYcEmamA9/Bv4b22tp8IGtbh8o45HKJ+I3cDW570qULNlwxV k+TDk1Did00ej2CylUeufEdNSe0v7iVFe/YtAzFEiLC2Wh7db3GWcUg5KSYVxHVL JOD3KXUBLQi5np1TfF6ZZuwON9guFgkABvvQe9s4FwluVsMhMHWa6uB2JKcaWKQc 8OieJYhnjkya9mfzxgki/xKqLPOrbRj1hdwAXsBGxUes/5CHIDG39W0VbKw2jHnL JmZdHZ2uas6KH1H/x9oSp0e4jQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEY/aYNL WUPSI1opR+s3FjFZ+lMPMB8GA1UdIwQYMBaAFE5EYM9jskt8Nbntrsl+Y6csS94j MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MjAzQy80NkM4OEM4Mjc0 NzcxMUVBODM2NTRGNERDNEY5QUUwMi9Ua1JnejJPeVMzdzF1ZTJ1eVg1anB5eEwz aU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RrUmd6Mk95UzN3MXVlMnV5WDVqcHl4TDNpTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MjAzQy80NkM4OEM4Mjc0NzcxMUVBODM2NTRGNERDNEY5QUUwMi9Ua1JnejJPeVMz dzF1ZTJ1eVg1anB5eEwzaU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAgn7ndauKon0LjZJFVhU+MkCPEPnIsv+5B4W4Xy2sZegE9Vow6Y9xA +pwr2aCJRig/JI2AlkTzEvdaRKiUBsCuGjgvMzoPojKxUqPn1tLtPH+5jVnYdk8a 1OevWIFZkhoZAwT2rw+kMztHyueReZAlg1g4BLcKTYnxmM2+nKtup1uI5Mt0uZiV ahack6t75GKI/2FyDO40yGl/EDWMFQKs9OE8DSA8XdUf/6eQjdRe5O7EZt1acx/R dVmqefWqM5XJHsJ5uQ2skKIPKhJofaOk0U3SKo/0KaAH9SMcjvNXlM/OZY5QoDCZ 0EaTjF9LCznWqC0kMWA2JZtxEfS8zRQs -----END CERTIFICATE-----Generated at Sat May 31 17:50:42 2025 by rpki-client