$ rpki-client -vvf rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft File: TbA103TIQSzmgNnaCtvsBkKdiLg.mft (raw, json) Hash identifier: kFbcmWrwKBW1Mo+gdWQp/iz4ZwMpm04pPtm+KGqEhWk= Subject key identifier: 83:E7:61:75:E9:BF:27:61:52:DC:0C:E1:79:BD:4C:FA:11:AF:EA:43 Authority key identifier: 4D:B0:35:D3:74:C8:41:2C:E6:80:D9:DA:0A:DB:EC:06:42:9D:88:B8 Certificate issuer: /CN=A917E678/serialNumber=4DB035D374C8412CE680D9DA0ADBEC06429D88B8 Certificate serial: 1893 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TbA103TIQSzmgNnaCtvsBkKdiLg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft Manifest number: 16FE Signing time: Fri 30 May 2025 17:05:12 +0000 Manifest this update: Fri 30 May 2025 17:05:11 +0000 Manifest next update: Fri 06 Jun 2025 17:05:11 +0000 Files and hashes: 1: TbA103TIQSzmgNnaCtvsBkKdiLg.crl (hash: PpXeiGHRQXO44jCaKv6wTNUiXONIyiizKyocbVuu6yo=) 2: 1F24033CDF7111EEB534147FC4F9AE02.roa (hash: F7+/UI/IdrG7UJylIwMQeWeh8x4KccRZsFSY0IMAJig=) 3: B62B9156280611ED8BEBC536C4F9AE02.roa (hash: G9R6UKF81vPpeZEj71HVNBUREkX7yk3WJ1Q6tTRHYYM=) 4: 820BE5609CEE11EF9001717EC4F9AE02.roa (hash: kIvT/50E2laNc1gLfjO5rKE/sWwcpe4nrifpeBT23BI=) 5: 0D08636C75D611EB920B5162C4F9AE02.roa (hash: j6prxSOt5QlgU/NV/soMWbDX95ZjTIwaOn33GpJLHDk=) 6: 6D8B68F2ED9A11EF9E539B3FC4F9AE02.roa (hash: ruR/ShQIv0dCG3FeCHomTrHYuPdOIn8lj4JNUtTPIFU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.crl rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TbA103TIQSzmgNnaCtvsBkKdiLg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 17:05:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6291 (0x1893) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E678, serialNumber=4DB035D374C8412CE680D9DA0ADBEC06429D88B8 Validity Not Before: May 30 17:05:11 2025 GMT Not After : Jun 6 17:05:11 2025 GMT Subject: CN=6839e547-8628 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:1f:e5:c7:24:5b:28:b3:c4:20:1c:98:83:aa: 3a:c8:9d:ec:dd:6c:5e:db:4e:dd:de:0d:e4:69:0c: 8b:c9:19:eb:e8:f4:1c:9a:32:fb:5e:44:1a:e2:51: e5:2f:c6:4d:28:c9:0c:fb:7e:1d:be:1d:c2:87:83: 64:86:ca:63:a6:90:aa:53:63:56:9b:4e:2b:3f:7d: d1:80:2d:60:c7:b3:56:16:08:c0:6b:c5:04:67:0b: 65:f8:9d:16:83:1b:1c:c7:d0:63:6e:fc:a2:9a:09: 7d:77:6c:d5:11:de:9f:94:07:4a:87:24:19:35:64: d7:c5:8c:58:5d:cf:4c:49:e9:34:08:9b:ba:00:0c: e8:00:9b:64:43:3c:2e:33:36:32:87:ba:c0:a3:ef: 2c:e7:36:bd:ef:99:12:16:35:6e:87:5b:59:0e:87: b5:f1:20:75:bf:23:0d:7e:5c:03:5a:06:09:7f:40: cf:c1:3f:6c:86:81:c2:8f:ad:d4:20:e0:69:d2:2d: 09:9f:da:53:17:79:57:a9:bb:b5:6e:be:27:db:c6: eb:47:2a:ce:61:b4:47:cc:0d:3f:a4:54:38:e4:c4: 3e:6f:c5:72:96:cf:45:fc:69:18:a5:45:bf:dc:d0: 67:58:51:b9:5b:48:c7:95:64:ca:d3:b7:eb:96:c7: a2:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:E7:61:75:E9:BF:27:61:52:DC:0C:E1:79:BD:4C:FA:11:AF:EA:43 X509v3 Authority Key Identifier: keyid:4D:B0:35:D3:74:C8:41:2C:E6:80:D9:DA:0A:DB:EC:06:42:9D:88:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TbA103TIQSzmgNnaCtvsBkKdiLg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d8:a4:c2:5a:31:b7:a2:10:a8:89:fe:91:69:cc:68:63:11:7a: 6b:94:6e:04:2d:a9:7f:0a:ff:2c:dc:57:90:9e:9b:aa:a3:12: 97:76:bd:67:a8:1a:14:c6:f8:63:b9:50:2b:11:51:81:b2:08: b8:1a:fa:6d:86:2b:85:3c:5c:51:cd:37:aa:67:e5:5d:b4:58: 4d:af:74:31:c9:67:b7:3b:8c:aa:42:40:e6:61:63:76:0c:ad: f2:47:68:e8:a9:11:cb:da:e3:0a:26:10:e3:8f:68:78:9e:bd: 33:65:43:a1:c8:72:f3:52:bd:54:8b:31:9b:a7:0f:00:b3:f3: 0d:24:ae:54:73:ab:29:51:d6:f3:98:87:f9:ed:15:14:15:94: e1:46:28:d3:2d:b0:47:9b:10:47:d1:74:9b:b4:3a:2b:6e:50: f9:63:a1:f9:0d:20:d4:3d:1b:f9:96:dd:f4:56:92:c6:23:68: de:cb:31:6f:a6:d6:20:76:a1:fa:b1:11:c8:4e:1d:6e:6a:a7: 60:c1:ab:b0:5a:b5:68:58:c4:85:f7:01:1d:43:b4:b0:de:8b: 30:ba:82:01:07:95:fa:85:d8:dc:d0:d6:d9:f4:73:29:7b:20: 82:f0:18:44:56:b4:47:81:75:9a:3d:56:ed:fd:89:5d:eb:fc: 7d:ab:1b:2a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGJMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U2NzgxMTAvBgNVBAUTKDREQjAzNUQzNzRDODQxMkNFNjgwRDlEQTBBREJFQzA2 NDI5RDg4QjgwHhcNMjUwNTMwMTcwNTExWhcNMjUwNjA2MTcwNTExWjAYMRYwFAYD VQQDEw02ODM5ZTU0Ny04NjI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsx/lxyRbKLPEIByYg6o6yJ3s3Wxe207d3g3kaQyLyRnr6PQcmjL7XkQa4lHl L8ZNKMkM+34dvh3Ch4NkhspjppCqU2NWm04rP33RgC1gx7NWFgjAa8UEZwtl+J0W gxscx9Bjbvyimgl9d2zVEd6flAdKhyQZNWTXxYxYXc9MSek0CJu6AAzoAJtkQzwu MzYyh7rAo+8s5za975kSFjVuh1tZDoe18SB1vyMNflwDWgYJf0DPwT9shoHCj63U IOBp0i0Jn9pTF3lXqbu1br4n28brRyrOYbRHzA0/pFQ45MQ+b8Vyls9F/GkYpUW/ 3NBnWFG5W0jHlWTK07frlseizQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIPnYXXp vydhUtwM4Xm9TPoRr+pDMB8GA1UdIwQYMBaAFE2wNdN0yEEs5oDZ2grb7AZCnYi4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTY3OC83MjU4M0FGQTY5 NTcxMUU4QTQyQkU2ODBDNEY5QUUwMi9UYkExMDNUSVFTem1nTm5hQ3R2c0JrS2Rp TGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RiQTEwM1RJUVN6bWdObmFDdHZzQmtLZGlMZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTY3OC83MjU4M0FGQTY5NTcxMUU4QTQyQkU2ODBDNEY5QUUwMi9UYkExMDNUSVFT em1nTm5hQ3R2c0JrS2RpTGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDYpMJaMbeiEKiJ/pFpzGhjEXprlG4ELal/Cv8s3FeQnpuqoxKXdr1n qBoUxvhjuVArEVGBsgi4GvpthiuFPFxRzTeqZ+VdtFhNr3QxyWe3O4yqQkDmYWN2 DK3yR2joqRHL2uMKJhDjj2h4nr0zZUOhyHLzUr1UizGbpw8As/MNJK5Uc6spUdbz mIf57RUUFZThRijTLbBHmxBH0XSbtDorblD5Y6H5DSDUPRv5lt30VpLGI2jeyzFv ptYgdqH6sRHITh1uaqdgwauwWrVoWMSF9wEdQ7Sw3oswuoIBB5X6hdjc0NbZ9HMp eyCC8BhEVrRHgXWaPVbt/Yld6/x9qxsq -----END CERTIFICATE-----Generated at Sat May 31 17:39:19 2025 by rpki-client