$ rpki-client -vvf rpki.apnic.net/member_repository/A915203C/46C88C82747711EA83654F4DC4F9AE02/TkRgz2OyS3w1ue2uyX5jpyxL3iM.mft File: TkRgz2OyS3w1ue2uyX5jpyxL3iM.mft (raw, json) Hash identifier: RoLLSp4/88177y6TPH9iLTWEhMYjd0BHYE1xE4B78aM= Subject key identifier: EE:43:21:EF:31:AA:88:48:EE:98:70:33:47:40:E6:FA:57:6F:B8:6A Authority key identifier: 4E:44:60:CF:63:B2:4B:7C:35:B9:ED:AE:C9:7E:63:A7:2C:4B:DE:23 Certificate issuer: /CN=A915203C/serialNumber=4E4460CF63B24B7C35B9EDAEC97E63A72C4BDE23 Certificate serial: 0A37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TkRgz2OyS3w1ue2uyX5jpyxL3iM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915203C/46C88C82747711EA83654F4DC4F9AE02/TkRgz2OyS3w1ue2uyX5jpyxL3iM.mft Manifest number: 0A30 Signing time: Mon 18 Aug 2025 20:05:24 +0000 Manifest this update: Mon 18 Aug 2025 20:05:24 +0000 Manifest next update: Mon 25 Aug 2025 20:05:24 +0000 Files and hashes: 1: TkRgz2OyS3w1ue2uyX5jpyxL3iM.crl (hash: A2uvXTArxxJIoGMITg9/FDaGQK4jggYsofDyEhp086Y=) 2: 4A7F0102747811EAB3C2634EC4F9AE02.roa (hash: 1nP7wgiAU6ogCq9MB/uivojHlNVu46xfBAf9/7vfcJE=) 3: 039A4408614511F0B95C3C38C4F9AE02.roa (hash: oDjyKM5SNuLjv6Hcd551F4doAQus0w8X4mHseINWIyM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915203C/46C88C82747711EA83654F4DC4F9AE02/TkRgz2OyS3w1ue2uyX5jpyxL3iM.crl rsync://rpki.apnic.net/member_repository/A915203C/46C88C82747711EA83654F4DC4F9AE02/TkRgz2OyS3w1ue2uyX5jpyxL3iM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TkRgz2OyS3w1ue2uyX5jpyxL3iM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Aug 2025 20:05:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2615 (0xa37) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915203C, serialNumber=4E4460CF63B24B7C35B9EDAEC97E63A72C4BDE23 Validity Not Before: Aug 18 20:05:24 2025 GMT Not After : Aug 25 20:05:24 2025 GMT Subject: CN=68a38784-1121 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:09:95:6f:53:47:89:00:08:37:e7:dd:ca:7d: 91:04:27:3d:ea:aa:c5:35:6f:54:32:2e:81:8f:db: 92:52:5a:9d:53:1a:37:f6:b8:bd:df:cd:3a:d3:bb: 79:4b:64:87:f2:fa:a1:9b:9e:aa:07:ee:8c:17:5e: 27:95:51:1d:4a:ae:4b:cf:b8:b7:f7:40:54:08:82: 3c:06:b7:2f:85:ac:42:ff:db:b0:1a:cf:f9:f5:fc: fb:c4:76:db:66:f2:f2:f7:61:f7:64:5b:53:41:f7: 44:f1:e1:10:44:3e:08:a3:8b:46:7d:11:10:db:a6: 1f:a5:49:e0:fa:a4:a9:99:74:eb:d7:af:a3:63:cd: ae:39:f1:42:a7:72:58:c5:47:84:c7:9a:8e:31:51: 24:81:a6:d3:f5:29:9e:49:f0:a8:c8:fd:68:37:5c: b8:f7:28:e1:71:0b:17:c4:a0:9b:9d:ec:d1:82:7f: c8:1a:c4:5f:dc:40:e0:8b:f2:c7:e8:45:7c:ef:67: e9:62:b8:f2:cb:5a:6b:22:6f:57:21:ad:45:63:c3: 3f:39:59:3b:59:56:05:c1:49:24:ea:d4:c5:e0:91: 9d:8e:cf:ab:11:8f:a6:6a:8d:fe:b6:c2:6e:56:55: 7d:4e:1e:aa:ad:38:f7:fb:fb:32:1f:21:d6:15:5c: 7d:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:43:21:EF:31:AA:88:48:EE:98:70:33:47:40:E6:FA:57:6F:B8:6A X509v3 Authority Key Identifier: keyid:4E:44:60:CF:63:B2:4B:7C:35:B9:ED:AE:C9:7E:63:A7:2C:4B:DE:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915203C/46C88C82747711EA83654F4DC4F9AE02/TkRgz2OyS3w1ue2uyX5jpyxL3iM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TkRgz2OyS3w1ue2uyX5jpyxL3iM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915203C/46C88C82747711EA83654F4DC4F9AE02/TkRgz2OyS3w1ue2uyX5jpyxL3iM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 80:3a:41:24:ff:20:ca:41:0e:67:27:b5:30:dc:91:f3:90:4d: fa:fc:5c:2e:bc:d7:04:f1:76:88:69:a8:8e:b0:73:d0:07:2b: 94:65:82:d2:a5:32:fa:24:40:a7:df:be:59:1b:d3:ee:e4:ad: 82:e5:6c:2e:87:9a:30:28:ea:c5:a8:f5:5a:51:df:93:fc:ed: f8:6b:a0:bb:66:26:1a:73:07:bf:a3:73:72:34:d3:58:af:0a: eb:6a:6d:3f:e1:25:38:99:cb:c6:dc:93:76:d7:7f:dd:d5:e4: b8:2f:bd:29:84:98:f7:9d:ee:c1:cb:0e:f8:a0:33:b3:1e:75: ec:97:c3:19:c4:0a:f8:b5:2d:bf:0c:3b:58:5d:8b:9b:56:7a: a0:72:6b:76:c7:3a:6d:ef:10:51:26:9d:9e:66:c1:3b:d4:e9: a9:a4:a3:05:42:22:b1:63:d3:e9:dc:7a:08:fe:ad:7b:a3:40: 65:7f:59:e7:b4:a1:f5:de:84:80:5e:ca:84:f0:d6:ef:2d:5b: 17:80:da:dd:20:97:8a:52:5e:70:37:7a:c8:4f:82:5d:b8:38: 6b:2b:bd:74:96:36:28:a6:72:c9:2d:82:3d:d8:dd:0c:23:a4: f3:88:38:08:45:6d:ce:7b:73:ea:c6:20:71:39:b1:94:ae:72: 3b:64:62:9e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCjcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTIwM0MxMTAvBgNVBAUTKDRFNDQ2MENGNjNCMjRCN0MzNUI5RURBRUM5N0U2M0E3 MkM0QkRFMjMwHhcNMjUwODE4MjAwNTI0WhcNMjUwODI1MjAwNTI0WjAYMRYwFAYD VQQDEw02OGEzODc4NC0xMTIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsgmVb1NHiQAIN+fdyn2RBCc96qrFNW9UMi6Bj9uSUlqdUxo39ri9380607t5 S2SH8vqhm56qB+6MF14nlVEdSq5Lz7i390BUCII8BrcvhaxC/9uwGs/59fz7xHbb ZvLy92H3ZFtTQfdE8eEQRD4Io4tGfREQ26YfpUng+qSpmXTr16+jY82uOfFCp3JY xUeEx5qOMVEkgabT9SmeSfCoyP1oN1y49yjhcQsXxKCbnezRgn/IGsRf3EDgi/LH 6EV872fpYrjyy1prIm9XIa1FY8M/OVk7WVYFwUkk6tTF4JGdjs+rEY+mao3+tsJu VlV9Th6qrTj3+/syHyHWFVx94QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO5DIe8x qohI7phwM0dA5vpXb7hqMB8GA1UdIwQYMBaAFE5EYM9jskt8Nbntrsl+Y6csS94j MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MjAzQy80NkM4OEM4Mjc0 NzcxMUVBODM2NTRGNERDNEY5QUUwMi9Ua1JnejJPeVMzdzF1ZTJ1eVg1anB5eEwz aU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RrUmd6Mk95UzN3MXVlMnV5WDVqcHl4TDNpTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MjAzQy80NkM4OEM4Mjc0NzcxMUVBODM2NTRGNERDNEY5QUUwMi9Ua1JnejJPeVMz dzF1ZTJ1eVg1anB5eEwzaU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCAOkEk/yDKQQ5nJ7Uw3JHzkE36/FwuvNcE8XaIaaiOsHPQByuUZYLS pTL6JECn375ZG9Pu5K2C5Wwuh5owKOrFqPVaUd+T/O34a6C7ZiYacwe/o3NyNNNY rwrram0/4SU4mcvG3JN213/d1eS4L70phJj3ne7Byw74oDOzHnXsl8MZxAr4tS2/ DDtYXYubVnqgcmt2xzpt7xBRJp2eZsE71OmppKMFQiKxY9Pp3HoI/q17o0Blf1nn tKH13oSAXsqE8NbvLVsXgNrdIJeKUl5wN3rIT4JduDhrK710ljYopnLJLYI92N0M I6TziDgIRW3Oe3PqxiBxObGUrnI7ZGKe -----END CERTIFICATE-----Generated at Wed Aug 20 15:38:56 2025 by rpki-client