$ rpki-client -vvf rpki.apnic.net/member_repository/A916A0AF/FD65B4D8E4A611EBB94AA54CC4F9AE02/tmRR-XGIyvgYTQfBMKJdlXb4wQU.mft File: tmRR-XGIyvgYTQfBMKJdlXb4wQU.mft (raw, json) Hash identifier: RjsXl78ulm9x5h5wEVe0q0E/oeGzi3Sd/jec/pdduk0= Subject key identifier: 0F:5C:46:09:EA:BD:E9:3F:47:BA:C6:71:6E:3E:8E:E0:91:FD:15:7B Authority key identifier: B6:64:51:F9:71:88:CA:F8:18:4D:07:C1:30:A2:5D:95:76:F8:C1:05 Certificate issuer: /CN=A916A0AF/serialNumber=B66451F97188CAF8184D07C130A25D9576F8C105 Certificate serial: 0575 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tmRR-XGIyvgYTQfBMKJdlXb4wQU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916A0AF/FD65B4D8E4A611EBB94AA54CC4F9AE02/tmRR-XGIyvgYTQfBMKJdlXb4wQU.mft Manifest number: 056F Signing time: Thu 12 Jun 2025 22:56:48 +0000 Manifest this update: Thu 12 Jun 2025 22:56:47 +0000 Manifest next update: Thu 19 Jun 2025 22:56:47 +0000 Files and hashes: 1: tmRR-XGIyvgYTQfBMKJdlXb4wQU.crl (hash: RbE9N7MWg3OjKJC21ZO5BZ/2zLPJIVt7ZSNiyMmD7Gc=) 2: 529F69FCE5CA11EBB98C5577C4F9AE02.roa (hash: yEoo0/2ZbdS1AKMgT4F4l5jk6+ByUwD65kyD3NyUV9k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916A0AF/FD65B4D8E4A611EBB94AA54CC4F9AE02/tmRR-XGIyvgYTQfBMKJdlXb4wQU.crl rsync://rpki.apnic.net/member_repository/A916A0AF/FD65B4D8E4A611EBB94AA54CC4F9AE02/tmRR-XGIyvgYTQfBMKJdlXb4wQU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tmRR-XGIyvgYTQfBMKJdlXb4wQU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 22:56:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1397 (0x575) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916A0AF, serialNumber=B66451F97188CAF8184D07C130A25D9576F8C105 Validity Not Before: Jun 12 22:56:47 2025 GMT Not After : Jun 19 22:56:47 2025 GMT Subject: CN=684b5b2f-f2d9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:7f:75:18:e7:d4:c3:ba:41:4a:b2:e7:74:3a: aa:3c:7c:ab:a0:15:f5:6d:6d:09:2d:b7:5e:23:a0: d3:71:3a:0e:68:62:89:1a:bb:0e:7d:0c:cd:f9:b6: 2a:e5:b9:e6:d8:00:47:5c:4d:bd:4a:cd:a5:72:0b: b9:f2:75:af:69:36:74:03:81:d6:04:63:9b:d0:84: 97:68:ea:40:26:6d:59:77:d7:e8:a3:b3:2e:39:c2: 24:0b:a4:47:97:57:ac:ad:6d:39:b5:c7:c1:11:08: d0:2c:a5:3c:3a:10:aa:61:d9:56:c7:c3:12:9e:33: c5:bb:3b:24:a2:8c:37:ab:04:ae:12:b2:06:b1:c3: 83:71:41:e3:5e:d7:b5:75:70:45:25:fb:8d:04:31: 91:f4:96:25:7f:8c:13:3b:6f:e4:a4:fd:97:22:58: 45:e3:e5:39:9d:86:09:ea:ff:64:f9:c1:38:16:e0: 41:66:9c:6c:b1:eb:b4:ed:56:4b:a9:40:69:9b:79: e5:ef:8e:87:47:34:a3:98:73:7a:8d:26:e0:ab:c2: 68:fe:a5:80:91:79:4d:0d:1e:49:13:2a:50:e3:a6: 20:fe:d4:80:df:3e:87:1f:2a:a0:7a:55:85:d4:94: 0f:b6:ab:7e:43:e8:06:07:82:02:f7:4d:f2:91:db: 76:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:5C:46:09:EA:BD:E9:3F:47:BA:C6:71:6E:3E:8E:E0:91:FD:15:7B X509v3 Authority Key Identifier: keyid:B6:64:51:F9:71:88:CA:F8:18:4D:07:C1:30:A2:5D:95:76:F8:C1:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916A0AF/FD65B4D8E4A611EBB94AA54CC4F9AE02/tmRR-XGIyvgYTQfBMKJdlXb4wQU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tmRR-XGIyvgYTQfBMKJdlXb4wQU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916A0AF/FD65B4D8E4A611EBB94AA54CC4F9AE02/tmRR-XGIyvgYTQfBMKJdlXb4wQU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 06:98:08:5a:64:bb:09:24:e4:49:17:5a:a5:59:c0:4f:b7:f0: 30:e5:de:53:1d:b4:25:d3:a8:52:7b:cb:d7:f1:56:5e:04:1f: 26:08:99:31:47:43:9b:94:3b:16:65:d7:a6:f8:7c:46:41:fb: 1c:ff:26:6c:0b:c1:92:67:e7:af:b1:29:84:53:48:77:c6:b4: bd:1a:9e:64:4e:0c:0c:c2:fc:ac:1a:a1:21:06:e8:eb:3f:34: c4:21:e5:89:e7:49:15:d2:d2:7c:d7:1c:23:69:fa:7e:54:d1: 57:ba:db:33:3b:2a:d9:18:01:db:89:3b:1d:8d:46:65:68:24: ee:86:fe:49:49:60:2f:d6:92:f7:05:4e:e5:a6:b7:bb:75:26: f0:81:02:f0:92:64:88:47:fc:da:ef:70:5d:44:71:7e:f9:f2: 6c:46:e9:7e:36:d0:d8:70:d6:ac:a7:ec:eb:6b:c9:2c:c9:49: 56:31:c5:e7:51:dc:97:fe:a3:fc:eb:03:05:0d:44:3f:b9:e3: 6f:88:68:5f:d0:60:40:54:c2:52:82:d5:c6:62:8c:6d:82:48: 78:a4:b2:df:e6:1c:c3:22:fb:2d:0d:b6:59:47:01:a1:a8:43: b9:77:59:76:09:44:3a:f9:eb:78:8e:f6:7c:a8:8c:17:d8:17: 29:5c:2b:05 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBXUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkEwQUYxMTAvBgNVBAUTKEI2NjQ1MUY5NzE4OENBRjgxODREMDdDMTMwQTI1RDk1 NzZGOEMxMDUwHhcNMjUwNjEyMjI1NjQ3WhcNMjUwNjE5MjI1NjQ3WjAYMRYwFAYD VQQDEw02ODRiNWIyZi1mMmQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApX91GOfUw7pBSrLndDqqPHyroBX1bW0JLbdeI6DTcToOaGKJGrsOfQzN+bYq 5bnm2ABHXE29Ss2lcgu58nWvaTZ0A4HWBGOb0ISXaOpAJm1Zd9foo7MuOcIkC6RH l1esrW05tcfBEQjQLKU8OhCqYdlWx8MSnjPFuzskoow3qwSuErIGscODcUHjXte1 dXBFJfuNBDGR9JYlf4wTO2/kpP2XIlhF4+U5nYYJ6v9k+cE4FuBBZpxsseu07VZL qUBpm3nl746HRzSjmHN6jSbgq8Jo/qWAkXlNDR5JEypQ46Yg/tSA3z6HHyqgelWF 1JQPtqt+Q+gGB4IC903ykdt2LwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA9cRgnq vek/R7rGcW4+juCR/RV7MB8GA1UdIwQYMBaAFLZkUflxiMr4GE0HwTCiXZV2+MEF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QTBBRi9GRDY1QjREOEU0 QTYxMUVCQjk0QUE1NENDNEY5QUUwMi90bVJSLVhHSXl2Z1lUUWZCTUtKZGxYYjR3 UVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RtUlItWEdJeXZnWVRRZkJNS0pkbFhiNHdRVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QTBBRi9GRDY1QjREOEU0QTYxMUVCQjk0QUE1NENDNEY5QUUwMi90bVJSLVhHSXl2 Z1lUUWZCTUtKZGxYYjR3UVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAGmAhaZLsJJORJF1qlWcBPt/Aw5d5THbQl06hSe8vX8VZeBB8mCJkx R0OblDsWZdem+HxGQfsc/yZsC8GSZ+evsSmEU0h3xrS9Gp5kTgwMwvysGqEhBujr PzTEIeWJ50kV0tJ81xwjafp+VNFXutszOyrZGAHbiTsdjUZlaCTuhv5JSWAv1pL3 BU7lpre7dSbwgQLwkmSIR/za73BdRHF++fJsRul+NtDYcNasp+zra8ksyUlWMcXn UdyX/qP86wMFDUQ/ueNviGhf0GBAVMJSgtXGYoxtgkh4pLLf5hzDIvstDbZZRwGh qEO5d1l2CUQ6+et4jvZ8qIwX2BcpXCsF -----END CERTIFICATE-----Generated at Fri Jun 13 08:00:12 2025 by rpki-client