$ rpki-client -vvf rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft File: TbA103TIQSzmgNnaCtvsBkKdiLg.mft (raw, json) Hash identifier: 2LYwE9+BhDtFf/WCM4h3UHKuvlL6gookQckK0YrMulg= Subject key identifier: 4D:B3:AF:1F:EC:3F:5E:CB:7E:87:E9:7F:3A:FC:4A:C4:33:84:5B:C8 Authority key identifier: 4D:B0:35:D3:74:C8:41:2C:E6:80:D9:DA:0A:DB:EC:06:42:9D:88:B8 Certificate issuer: /CN=A917E678/serialNumber=4DB035D374C8412CE680D9DA0ADBEC06429D88B8 Certificate serial: 18A9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TbA103TIQSzmgNnaCtvsBkKdiLg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft Manifest number: 1712 Signing time: Mon 30 Jun 2025 17:05:00 +0000 Manifest this update: Mon 30 Jun 2025 17:05:00 +0000 Manifest next update: Mon 07 Jul 2025 17:05:00 +0000 Files and hashes: 1: TbA103TIQSzmgNnaCtvsBkKdiLg.crl (hash: mLPYEVSLpTk9q+W0PkT+Md1FfaP8rFatvAhAAM7nZAk=) 2: 1F24033CDF7111EEB534147FC4F9AE02.roa (hash: F7+/UI/IdrG7UJylIwMQeWeh8x4KccRZsFSY0IMAJig=) 3: B62B9156280611ED8BEBC536C4F9AE02.roa (hash: G9R6UKF81vPpeZEj71HVNBUREkX7yk3WJ1Q6tTRHYYM=) 4: 820BE5609CEE11EF9001717EC4F9AE02.roa (hash: kIvT/50E2laNc1gLfjO5rKE/sWwcpe4nrifpeBT23BI=) 5: 0D08636C75D611EB920B5162C4F9AE02.roa (hash: j6prxSOt5QlgU/NV/soMWbDX95ZjTIwaOn33GpJLHDk=) 6: 6D8B68F2ED9A11EF9E539B3FC4F9AE02.roa (hash: yx4fiWkeXS2J98lhCqqoYpBguCgiCzXNzrG9TkgDJWo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.crl rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TbA103TIQSzmgNnaCtvsBkKdiLg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Jul 2025 17:04:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6313 (0x18a9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E678, serialNumber=4DB035D374C8412CE680D9DA0ADBEC06429D88B8 Validity Not Before: Jun 30 17:05:00 2025 GMT Not After : Jul 7 17:05:00 2025 GMT Subject: CN=6862c3bc-1b5c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:c6:7e:a8:55:fd:bd:22:6c:32:25:78:03:f3: 9f:79:cf:d3:11:ab:06:ef:06:bb:c9:8f:5e:d6:3d: 3b:bb:45:6d:54:1a:67:a6:a5:7b:70:a6:da:be:19: 1f:12:c4:4f:06:de:3c:0d:ff:bd:39:f7:2a:96:a4: c3:35:af:11:48:67:a9:e8:c3:e1:97:3b:1e:00:5a: ba:f9:32:45:38:a4:31:bc:c3:af:bb:21:52:e2:85: 9b:ff:bf:4e:25:90:80:93:d4:25:d5:e9:65:87:00: 9f:05:cd:9a:37:38:60:cd:67:b8:35:53:3d:45:3c: 78:97:db:80:ae:a4:33:46:52:aa:74:ed:26:32:51: 84:c6:77:28:27:ef:e0:0b:8e:57:e8:18:e8:37:82: d0:6d:67:9a:16:c7:e4:2d:95:74:45:b0:95:e7:33: fc:bc:6f:07:11:ac:ba:b7:10:82:8d:a8:5b:8f:88: 35:bb:79:e7:00:0f:bb:e6:fc:09:c5:87:c3:08:f6: b2:a2:1c:ad:a3:45:7f:e6:60:21:68:cb:6b:9e:fa: 31:92:24:e4:a7:dc:e3:16:1e:23:6e:f5:fa:be:fa: 1e:27:85:ff:a0:9f:f7:63:b4:cb:45:91:fb:3b:63: 57:4e:9b:98:43:4f:d6:cc:fd:e4:12:c8:71:a8:24: 68:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:B3:AF:1F:EC:3F:5E:CB:7E:87:E9:7F:3A:FC:4A:C4:33:84:5B:C8 X509v3 Authority Key Identifier: keyid:4D:B0:35:D3:74:C8:41:2C:E6:80:D9:DA:0A:DB:EC:06:42:9D:88:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TbA103TIQSzmgNnaCtvsBkKdiLg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c3:d2:dc:33:f6:3a:20:56:04:b2:c4:1f:52:4b:c4:cb:83:3c: 55:ee:d5:ba:9f:fe:9b:ab:db:28:af:36:ca:57:9d:d9:6b:45: f1:27:e7:a6:33:36:f0:11:0d:b1:90:ba:20:bd:e0:db:88:54: 9c:bb:d3:4e:78:8a:f4:c5:86:3c:cc:64:63:a8:e0:f3:03:35: 6f:21:6a:c7:8d:23:cd:fb:c6:03:d4:4e:d8:03:c1:cb:f8:f6: 8f:56:01:ac:5c:52:39:df:04:ec:7e:4a:58:91:ce:73:93:10: 16:af:61:52:b3:2f:bf:a4:ac:0f:9c:81:4c:0b:8f:c4:ce:ec: 3c:34:5b:f6:6b:40:27:41:c2:45:00:c4:53:5a:f1:65:ce:d2: 71:7c:c6:1b:65:6a:02:a2:e3:a5:1e:ad:21:ef:2c:28:b8:df: 3e:5d:1e:a8:09:ca:11:99:c2:57:cd:61:7b:90:4d:67:43:e6: 0c:7e:05:3c:3b:8f:eb:e4:4f:2f:3c:9e:64:cb:5b:3b:db:31: a4:32:3d:9a:3e:d6:01:86:80:7a:4a:88:a9:f6:7c:7f:5d:0e: 0b:6b:f1:de:0d:1a:48:6a:2d:95:e9:2a:14:5c:d9:5c:bb:a3: dd:8d:9a:99:64:af:0a:3e:a8:06:ff:67:84:c7:ce:68:ba:a7: 42:5e:b6:77 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGKkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U2NzgxMTAvBgNVBAUTKDREQjAzNUQzNzRDODQxMkNFNjgwRDlEQTBBREJFQzA2 NDI5RDg4QjgwHhcNMjUwNjMwMTcwNTAwWhcNMjUwNzA3MTcwNTAwWjAYMRYwFAYD VQQDEw02ODYyYzNiYy0xYjVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwcZ+qFX9vSJsMiV4A/Ofec/TEasG7wa7yY9e1j07u0VtVBpnpqV7cKbavhkf EsRPBt48Df+9OfcqlqTDNa8RSGep6MPhlzseAFq6+TJFOKQxvMOvuyFS4oWb/79O JZCAk9Ql1ellhwCfBc2aNzhgzWe4NVM9RTx4l9uArqQzRlKqdO0mMlGExncoJ+/g C45X6BjoN4LQbWeaFsfkLZV0RbCV5zP8vG8HEay6txCCjahbj4g1u3nnAA+75vwJ xYfDCPayohyto0V/5mAhaMtrnvoxkiTkp9zjFh4jbvX6vvoeJ4X/oJ/3Y7TLRZH7 O2NXTpuYQ0/WzP3kEshxqCRoNwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE2zrx/s P17Lfofpfzr8SsQzhFvIMB8GA1UdIwQYMBaAFE2wNdN0yEEs5oDZ2grb7AZCnYi4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTY3OC83MjU4M0FGQTY5 NTcxMUU4QTQyQkU2ODBDNEY5QUUwMi9UYkExMDNUSVFTem1nTm5hQ3R2c0JrS2Rp TGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RiQTEwM1RJUVN6bWdObmFDdHZzQmtLZGlMZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTY3OC83MjU4M0FGQTY5NTcxMUU4QTQyQkU2ODBDNEY5QUUwMi9UYkExMDNUSVFT em1nTm5hQ3R2c0JrS2RpTGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDD0twz9jogVgSyxB9SS8TLgzxV7tW6n/6bq9sorzbKV53Za0XxJ+em MzbwEQ2xkLogveDbiFScu9NOeIr0xYY8zGRjqODzAzVvIWrHjSPN+8YD1E7YA8HL +PaPVgGsXFI53wTsfkpYkc5zkxAWr2FSsy+/pKwPnIFMC4/Ezuw8NFv2a0AnQcJF AMRTWvFlztJxfMYbZWoCouOlHq0h7ywouN8+XR6oCcoRmcJXzWF7kE1nQ+YMfgU8 O4/r5E8vPJ5ky1s72zGkMj2aPtYBhoB6Soip9nx/XQ4La/HeDRpIai2V6SoUXNlc u6PdjZqZZK8KPqgG/2eEx85ouqdCXrZ3 -----END CERTIFICATE-----Generated at Wed Jul 2 02:06:58 2025 by rpki-client