$ rpki-client -vvf rpki.apnic.net/member_repository/A916A0AF/FD65B4D8E4A611EBB94AA54CC4F9AE02/tmRR-XGIyvgYTQfBMKJdlXb4wQU.mft File: tmRR-XGIyvgYTQfBMKJdlXb4wQU.mft (raw, json) Hash identifier: 855hxqr8YblyNhZ93RZodmdCbYRRRl9wCQXVNvZSvZA= Subject key identifier: 38:D4:38:7F:A6:55:37:71:D6:EB:96:81:06:1F:EF:0C:FC:48:6F:C4 Authority key identifier: B6:64:51:F9:71:88:CA:F8:18:4D:07:C1:30:A2:5D:95:76:F8:C1:05 Certificate issuer: /CN=A916A0AF/serialNumber=B66451F97188CAF8184D07C130A25D9576F8C105 Certificate serial: 0573 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tmRR-XGIyvgYTQfBMKJdlXb4wQU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916A0AF/FD65B4D8E4A611EBB94AA54CC4F9AE02/tmRR-XGIyvgYTQfBMKJdlXb4wQU.mft Manifest number: 056D Signing time: Sun 08 Jun 2025 22:57:35 +0000 Manifest this update: Sun 08 Jun 2025 22:57:35 +0000 Manifest next update: Sun 15 Jun 2025 22:57:35 +0000 Files and hashes: 1: tmRR-XGIyvgYTQfBMKJdlXb4wQU.crl (hash: wzZejToznZNEoCyUsEYcWSBDMtZm7iH5KZXp/LbG2fs=) 2: 529F69FCE5CA11EBB98C5577C4F9AE02.roa (hash: yEoo0/2ZbdS1AKMgT4F4l5jk6+ByUwD65kyD3NyUV9k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916A0AF/FD65B4D8E4A611EBB94AA54CC4F9AE02/tmRR-XGIyvgYTQfBMKJdlXb4wQU.crl rsync://rpki.apnic.net/member_repository/A916A0AF/FD65B4D8E4A611EBB94AA54CC4F9AE02/tmRR-XGIyvgYTQfBMKJdlXb4wQU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tmRR-XGIyvgYTQfBMKJdlXb4wQU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 15 Jun 2025 22:57:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1395 (0x573) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916A0AF, serialNumber=B66451F97188CAF8184D07C130A25D9576F8C105 Validity Not Before: Jun 8 22:57:35 2025 GMT Not After : Jun 15 22:57:35 2025 GMT Subject: CN=6846155f-c112 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:70:24:08:4f:8b:6d:4d:95:72:62:9a:5a:e2: cd:17:fe:a1:0e:c4:d3:5d:9a:ec:36:24:d3:47:6b: 58:c6:6c:5a:ee:6a:66:4d:97:31:d4:fb:35:0e:0e: 5d:d8:58:c7:44:30:3a:d5:bb:8f:49:75:61:cc:62: 34:f2:36:1c:a6:29:49:f0:98:53:c5:23:2a:55:66: 98:40:72:c0:fa:1e:37:9d:ec:a8:54:26:d5:92:17: b2:c4:8b:13:df:90:e3:52:22:fe:d8:4f:a6:97:35: c0:05:fc:f7:ec:2f:91:f4:4c:3b:8d:f6:04:00:c7: 30:3d:85:32:0b:96:fa:3d:3c:46:93:98:16:ba:ff: 07:0f:4a:aa:df:c9:1e:74:d5:2d:23:3d:62:c9:27: 21:93:70:80:b1:1f:19:c3:f8:eb:91:55:7a:c3:27: aa:87:0c:77:bc:28:6b:03:11:27:c5:6f:85:5b:20: 5e:ba:4d:72:9b:36:aa:cf:98:d8:c8:d5:e7:46:07: 57:ad:30:0d:f9:62:3c:cb:56:14:86:56:9f:66:d2: c2:e5:9d:70:e6:73:3e:2b:40:d2:65:d3:30:31:00: 32:65:99:47:89:fa:96:86:3c:d4:a6:b4:ab:a0:0e: e6:dc:17:7e:24:dd:20:ab:c9:49:ff:6d:9d:44:ef: e8:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:D4:38:7F:A6:55:37:71:D6:EB:96:81:06:1F:EF:0C:FC:48:6F:C4 X509v3 Authority Key Identifier: keyid:B6:64:51:F9:71:88:CA:F8:18:4D:07:C1:30:A2:5D:95:76:F8:C1:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916A0AF/FD65B4D8E4A611EBB94AA54CC4F9AE02/tmRR-XGIyvgYTQfBMKJdlXb4wQU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tmRR-XGIyvgYTQfBMKJdlXb4wQU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916A0AF/FD65B4D8E4A611EBB94AA54CC4F9AE02/tmRR-XGIyvgYTQfBMKJdlXb4wQU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 02:09:29:2c:54:ef:59:a7:d2:fb:a2:92:73:0f:37:60:65:c2: bf:08:90:42:69:a4:d2:a9:2d:f0:b7:b5:2a:7d:35:b3:0b:ce: 58:ea:53:c5:66:77:3d:59:30:a5:d9:31:29:1a:ca:4b:e5:cb: f1:3a:a2:87:b1:06:01:3e:fa:4d:85:ad:51:3c:ec:33:2f:70: e2:94:75:66:04:f9:38:7b:2b:f3:72:9c:c4:08:5f:1f:38:39: 3e:cf:2a:46:13:f6:37:f1:1d:82:72:eb:3c:13:84:a2:b3:12: ff:65:14:a6:0d:1c:0d:2c:47:53:d0:4f:41:d7:08:4f:75:03: e3:d8:d3:71:49:44:1c:1c:83:86:51:83:7f:da:9f:bc:7c:9d: d5:e8:b6:27:b0:83:b9:7f:8c:e6:46:ef:3b:d9:75:b0:94:3d: 8b:2b:fc:a6:e3:49:1f:3a:2b:1a:7f:f4:66:f3:c0:50:67:2d: fd:23:a9:29:a7:e3:d1:91:d0:3a:44:84:be:55:86:a2:c9:a6: e8:b3:ef:19:cc:7c:d9:85:76:6c:17:6d:c2:36:95:fb:85:37: f2:ed:d0:ca:8e:22:aa:fe:5f:03:db:d7:8f:13:60:b8:3a:1e: f4:d7:d5:71:5a:be:15:01:81:ed:28:0d:4e:e7:f0:b0:5f:68: 7e:5e:8c:75 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBXMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkEwQUYxMTAvBgNVBAUTKEI2NjQ1MUY5NzE4OENBRjgxODREMDdDMTMwQTI1RDk1 NzZGOEMxMDUwHhcNMjUwNjA4MjI1NzM1WhcNMjUwNjE1MjI1NzM1WjAYMRYwFAYD VQQDEw02ODQ2MTU1Zi1jMTEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw3AkCE+LbU2VcmKaWuLNF/6hDsTTXZrsNiTTR2tYxmxa7mpmTZcx1Ps1Dg5d 2FjHRDA61buPSXVhzGI08jYcpilJ8JhTxSMqVWaYQHLA+h43neyoVCbVkheyxIsT 35DjUiL+2E+mlzXABfz37C+R9Ew7jfYEAMcwPYUyC5b6PTxGk5gWuv8HD0qq38ke dNUtIz1iySchk3CAsR8Zw/jrkVV6wyeqhwx3vChrAxEnxW+FWyBeuk1ymzaqz5jY yNXnRgdXrTAN+WI8y1YUhlafZtLC5Z1w5nM+K0DSZdMwMQAyZZlHifqWhjzUprSr oA7m3Bd+JN0gq8lJ/22dRO/oTwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDjUOH+m VTdx1uuWgQYf7wz8SG/EMB8GA1UdIwQYMBaAFLZkUflxiMr4GE0HwTCiXZV2+MEF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QTBBRi9GRDY1QjREOEU0 QTYxMUVCQjk0QUE1NENDNEY5QUUwMi90bVJSLVhHSXl2Z1lUUWZCTUtKZGxYYjR3 UVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RtUlItWEdJeXZnWVRRZkJNS0pkbFhiNHdRVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QTBBRi9GRDY1QjREOEU0QTYxMUVCQjk0QUE1NENDNEY5QUUwMi90bVJSLVhHSXl2 Z1lUUWZCTUtKZGxYYjR3UVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQACCSksVO9Zp9L7opJzDzdgZcK/CJBCaaTSqS3wt7UqfTWzC85Y6lPF Znc9WTCl2TEpGspL5cvxOqKHsQYBPvpNha1RPOwzL3DilHVmBPk4eyvzcpzECF8f ODk+zypGE/Y38R2Ccus8E4SisxL/ZRSmDRwNLEdT0E9B1whPdQPj2NNxSUQcHIOG UYN/2p+8fJ3V6LYnsIO5f4zmRu872XWwlD2LK/ym40kfOisaf/Rm88BQZy39I6kp p+PRkdA6RIS+VYaiyabos+8ZzHzZhXZsF23CNpX7hTfy7dDKjiKq/l8D29ePE2C4 Oh7019VxWr4VAYHtKA1O5/CwX2h+Xox1 -----END CERTIFICATE-----Generated at Mon Jun 9 23:39:56 2025 by rpki-client