$ rpki-client -vvf rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/TK4677Gsir3bmbzO5PpakW0VezQ.mft File: TK4677Gsir3bmbzO5PpakW0VezQ.mft (raw, json) Hash identifier: VNIDRBkqDfdLgFhDCHqlLdbf91/6M2ldydIn213wCTA= Subject key identifier: FE:61:2E:78:3F:48:48:48:12:00:18:C1:66:6D:95:F9:7F:09:18:F2 Authority key identifier: 4C:AE:3A:EF:B1:AC:8A:BD:DB:99:BC:CE:E4:FA:5A:91:6D:15:7B:34 Certificate issuer: /CN=A91B5D7E/serialNumber=4CAE3AEFB1AC8ABDDB99BCCEE4FA5A916D157B34 Certificate serial: 35D4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TK4677Gsir3bmbzO5PpakW0VezQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/TK4677Gsir3bmbzO5PpakW0VezQ.mft Manifest number: 3502 Signing time: Sun 16 Feb 2025 14:31:22 +0000 Manifest this update: Sun 16 Feb 2025 14:31:22 +0000 Manifest next update: Sun 23 Feb 2025 14:31:22 +0000 Files and hashes: 1: TK4677Gsir3bmbzO5PpakW0VezQ.crl (hash: cTS7uzYz8MYYOBQMV2I6yNBf5mHfOlzsiYWZFwJTfGw=) 2: D166652A072211EF9AC24D5BC4F9AE02.roa (hash: RL1lTbOt6Av5nEYA4DHBlIKK0hqxvZRiBkpLy29xghs=) 3: AD20058AA15311EDB7EEA166C4F9AE02.roa (hash: pU+0ul6cimph3kXco3+ztGCMmqH9Grv+RMc0dWShHhE=) 4: 945922AECEBA11EDBBFD9E28C4F9AE02.roa (hash: 2rH+VWOcuPOah5bNHP9sMT7gm/W2BD5Lz0whslurntk=) 5: 04E7A654EA9C11EFAC422731C4F9AE02.roa (hash: wbMAPtpm4LAtpP/28TR/fe+u3lfRXvXNgn7BbegWoBs=) 6: 24D7D74C978011EE87BB7D53C4F9AE02.roa (hash: CuyEAz/Z+ba3st2KGZYRh65vVcO9Be9AbPEfcjuGd9k=) 7: 31D56A8E06C711EF9A0E1D0AC4F9AE02.roa (hash: Yqwo5M588Yfv+JXGuvZtKg0Gtdf+iGVakUUN+3KDHdo=) 8: CE997E2EEA9B11EFA6A3D730C4F9AE02.roa (hash: cZLX0Pt+P4Xy0YrdhvHY2O9B/7jQfWCrR8qzX9dWDLw=) 9: D630A6B206D511EFB6CFDF2DC4F9AE02.roa (hash: oGdV623K9DaOonzZkenCae7aE6BqwAo6RdH7Y25n0b4=) 10: 4DC27210558111EF880A8679C4F9AE02.roa (hash: m1XRr2iAq+1TVgkspEslzx6eWsdA8L2B6700lAxn/d4=) 11: 4B2AFD54ABA611EEA4B59A6AC4F9AE02.roa (hash: 92OU291hR0YIYqWJJIcvZXszn84NKrAjVspQkxjVbEI=) 12: 77D96D4A4F3411EFBA0A2659C4F9AE02.roa (hash: ol23eWYMbqFxa7AzTOzpz7Em2i4wKmL7cxMptLBFr00=) 13: 8FF00754732F11EE90078C13C4F9AE02.roa (hash: FvhGoDcJkl/uVyMeuA2e84lQ0fEQXKW9fiAoOj29wy4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/TK4677Gsir3bmbzO5PpakW0VezQ.crl rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/TK4677Gsir3bmbzO5PpakW0VezQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TK4677Gsir3bmbzO5PpakW0VezQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13780 (0x35d4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B5D7E Validity Not Before: Feb 16 14:31:22 2025 GMT Not After : Feb 23 14:31:22 2025 GMT Subject: CN=67b1f6ba-0e7d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:b7:dc:60:99:75:4e:ee:75:d1:51:12:aa:cf: a6:a6:c1:d0:ba:a3:5b:0e:7f:7d:f5:9c:dd:05:d0: f7:34:09:b8:5a:6a:9e:26:f2:40:dd:65:29:5e:24: af:6f:86:f7:41:4f:07:67:e1:df:ea:1a:b1:89:fa: f2:28:18:49:44:a9:2c:f8:23:c9:ed:a2:55:fc:99: 21:b7:5b:9d:c9:51:79:35:07:98:4e:88:d3:67:b2: b1:84:4a:77:a1:9d:15:d1:97:66:5e:4d:4d:a9:f2: 63:46:8d:03:b9:6f:4a:9c:d4:f0:58:8f:d6:e5:95: 29:d0:84:09:ac:02:22:0f:8f:f2:1a:86:fd:52:e8: cd:68:29:4c:92:5b:a4:0b:f4:6f:61:e3:a6:ae:b0: 81:c6:9c:f4:c6:13:94:5f:2c:47:e4:4c:de:e8:be: 66:b4:de:81:3e:f2:2a:ff:76:00:1c:05:a5:40:11: c9:cf:15:0f:1a:c5:f7:e2:08:8f:ff:91:4f:59:bf: d0:13:75:4a:98:ab:7c:42:96:ac:ef:6f:73:be:0d: e8:52:ef:7b:6d:16:b4:e8:8e:25:b5:e8:e2:50:72: b6:1a:68:9c:46:0c:19:22:fd:df:2f:4a:06:13:ff: 8e:8c:28:a6:04:a9:aa:81:67:13:e2:43:05:3c:94: a1:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:61:2E:78:3F:48:48:48:12:00:18:C1:66:6D:95:F9:7F:09:18:F2 X509v3 Authority Key Identifier: keyid:4C:AE:3A:EF:B1:AC:8A:BD:DB:99:BC:CE:E4:FA:5A:91:6D:15:7B:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/TK4677Gsir3bmbzO5PpakW0VezQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TK4677Gsir3bmbzO5PpakW0VezQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/TK4677Gsir3bmbzO5PpakW0VezQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 63:6d:e9:82:60:89:39:92:fd:bb:30:5b:1c:00:47:15:51:91: b4:94:79:e4:3e:a8:78:59:8c:2c:5b:58:59:10:63:b6:f2:05: cf:09:09:de:17:a3:27:29:fe:1c:d9:5e:70:85:3d:9e:75:55: f4:fc:b2:0a:81:a8:e1:c1:64:1d:53:6d:e5:0b:2b:41:6f:b5: c2:31:a8:dc:94:6b:0c:f9:66:1d:82:6a:be:c5:7a:de:ac:7d: 88:7f:6d:af:42:e9:11:98:70:96:db:78:e2:86:11:a7:b4:11: 59:a6:4a:d7:fd:b3:fe:9b:2f:36:a7:1d:e2:95:75:bd:90:35: a5:8d:51:15:88:09:eb:f0:fc:f2:66:4d:03:dd:da:ac:33:a0: 8c:61:59:0d:aa:66:cd:56:26:dd:53:da:4c:8d:9e:d3:3b:4f: 2d:8a:96:6d:17:b2:4f:18:1b:5b:a1:11:d3:37:70:e6:99:84: c4:02:cf:0f:ce:c8:90:a9:22:e0:f9:00:42:b5:02:81:47:52: 27:0a:5e:e9:a9:f6:a2:e8:4c:75:b9:18:3f:cd:22:b7:44:20: ed:25:65:25:61:33:81:37:f7:71:d1:13:08:6f:57:3a:87:fc: 4a:d0:29:45:38:ea:43:eb:9b:50:23:90:7e:64:8d:29:3c:23: 5a:05:29:05 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNdQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjVEN0UxMTAvBgNVBAUTKDRDQUUzQUVGQjFBQzhBQkREQjk5QkNDRUU0RkE1QTkx NkQxNTdCMzQwHhcNMjUwMjE2MTQzMTIyWhcNMjUwMjIzMTQzMTIyWjAYMRYwFAYD VQQDEw02N2IxZjZiYS0wZTdkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvLfcYJl1Tu510VESqs+mpsHQuqNbDn999ZzdBdD3NAm4WmqeJvJA3WUpXiSv b4b3QU8HZ+Hf6hqxifryKBhJRKks+CPJ7aJV/Jkht1udyVF5NQeYTojTZ7KxhEp3 oZ0V0ZdmXk1NqfJjRo0DuW9KnNTwWI/W5ZUp0IQJrAIiD4/yGob9UujNaClMkluk C/RvYeOmrrCBxpz0xhOUXyxH5Eze6L5mtN6BPvIq/3YAHAWlQBHJzxUPGsX34giP /5FPWb/QE3VKmKt8Qpas729zvg3oUu97bRa06I4ltejiUHK2GmicRgwZIv3fL0oG E/+OjCimBKmqgWcT4kMFPJShKwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP5hLng/ SEhIEgAYwWZtlfl/CRjyMB8GA1UdIwQYMBaAFEyuOu+xrIq925m8zuT6WpFtFXs0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNUQ3RS9FQ0E2ODIzNDFE ODcxMUUyOTgzMjJERTAwOEIwMkNEMi9USzQ2NzdHc2lyM2JtYnpPNVBwYWtXMFZl elEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RLNDY3N0dzaXIzYm1iek81UHBha1cwVmV6US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NUQ3RS9FQ0E2ODIzNDFEODcxMUUyOTgzMjJERTAwOEIwMkNEMi9USzQ2NzdHc2ly M2JtYnpPNVBwYWtXMFZlelEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBjbemCYIk5kv27MFscAEcVUZG0lHnkPqh4WYwsW1hZEGO28gXPCQne F6MnKf4c2V5whT2edVX0/LIKgajhwWQdU23lCytBb7XCMajclGsM+WYdgmq+xXre rH2If22vQukRmHCW23jihhGntBFZpkrX/bP+my82px3ilXW9kDWljVEViAnr8Pzy Zk0D3dqsM6CMYVkNqmbNVibdU9pMjZ7TO08tipZtF7JPGBtboRHTN3DmmYTEAs8P zsiQqSLg+QBCtQKBR1InCl7pqfai6Ex1uRg/zSK3RCDtJWUlYTOBN/dx0RMIb1c6 h/xK0ClFOOpD65tQI5B+ZI0pPCNaBSkF -----END CERTIFICATE-----Generated at Sun Feb 16 20:41:32 2025 by rpki-client