$ rpki-client -vvf rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/TK4677Gsir3bmbzO5PpakW0VezQ.mft File: TK4677Gsir3bmbzO5PpakW0VezQ.mft (raw, json) Hash identifier: t670duZCJnhTdTlyjL8AUEA/wU5ksw14SULBSzYKzC8= Subject key identifier: C8:B7:63:6A:28:F1:07:E9:37:50:2A:A1:81:7C:54:53:70:48:BD:BC Authority key identifier: 4C:AE:3A:EF:B1:AC:8A:BD:DB:99:BC:CE:E4:FA:5A:91:6D:15:7B:34 Certificate issuer: /CN=A91B5D7E/serialNumber=4CAE3AEFB1AC8ABDDB99BCCEE4FA5A916D157B34 Certificate serial: 361D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TK4677Gsir3bmbzO5PpakW0VezQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/TK4677Gsir3bmbzO5PpakW0VezQ.mft Manifest number: 3544 Signing time: Sat 31 May 2025 14:29:07 +0000 Manifest this update: Sat 31 May 2025 14:29:06 +0000 Manifest next update: Sat 07 Jun 2025 14:29:06 +0000 Files and hashes: 1: TK4677Gsir3bmbzO5PpakW0VezQ.crl (hash: WEZH2neT/lXwjbWA0A7hjkxJVCQ8ByecwIz8rFLm2QU=) 2: D166652A072211EF9AC24D5BC4F9AE02.roa (hash: RL1lTbOt6Av5nEYA4DHBlIKK0hqxvZRiBkpLy29xghs=) 3: 945922AECEBA11EDBBFD9E28C4F9AE02.roa (hash: 2rH+VWOcuPOah5bNHP9sMT7gm/W2BD5Lz0whslurntk=) 4: 24D7D74C978011EE87BB7D53C4F9AE02.roa (hash: CuyEAz/Z+ba3st2KGZYRh65vVcO9Be9AbPEfcjuGd9k=) 5: 31D56A8E06C711EF9A0E1D0AC4F9AE02.roa (hash: Yqwo5M588Yfv+JXGuvZtKg0Gtdf+iGVakUUN+3KDHdo=) 6: CE997E2EEA9B11EFA6A3D730C4F9AE02.roa (hash: uN0e+cUzXR0q+zRv9FKfvDWSlrjYXQb/CNzmut03rlU=) 7: DCD7F756048411F095177229C4F9AE02.roa (hash: PJnt80PstBsPu+Je/uk2L+eWT12a7ahlhHYmODLLA84=) 8: D630A6B206D511EFB6CFDF2DC4F9AE02.roa (hash: oGdV623K9DaOonzZkenCae7aE6BqwAo6RdH7Y25n0b4=) 9: 4DC27210558111EF880A8679C4F9AE02.roa (hash: m1XRr2iAq+1TVgkspEslzx6eWsdA8L2B6700lAxn/d4=) 10: C6A44358F43111EFB70DAE63C4F9AE02.roa (hash: ktcmSqDTgXbj3lIVA2eR8cEJTJL4lajyKd+nAAjV9WI=) 11: 4B2AFD54ABA611EEA4B59A6AC4F9AE02.roa (hash: 92OU291hR0YIYqWJJIcvZXszn84NKrAjVspQkxjVbEI=) 12: 77D96D4A4F3411EFBA0A2659C4F9AE02.roa (hash: ol23eWYMbqFxa7AzTOzpz7Em2i4wKmL7cxMptLBFr00=) 13: 8FF00754732F11EE90078C13C4F9AE02.roa (hash: FvhGoDcJkl/uVyMeuA2e84lQ0fEQXKW9fiAoOj29wy4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/TK4677Gsir3bmbzO5PpakW0VezQ.crl rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/TK4677Gsir3bmbzO5PpakW0VezQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TK4677Gsir3bmbzO5PpakW0VezQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 14:29:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13853 (0x361d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B5D7E, serialNumber=4CAE3AEFB1AC8ABDDB99BCCEE4FA5A916D157B34 Validity Not Before: May 31 14:29:06 2025 GMT Not After : Jun 7 14:29:06 2025 GMT Subject: CN=683b1233-da7b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:74:d7:81:6d:27:62:02:b9:ab:24:9f:a7:c9: cc:2a:9b:bd:91:22:26:8a:89:65:df:47:5d:a3:21: fd:8f:e1:b1:c5:d4:6c:99:5a:3c:b4:c8:00:95:b3: 4c:e9:81:95:9f:71:ba:e8:af:2c:8e:96:0f:a6:cf: 72:f7:71:7d:77:7f:66:f5:d8:62:0d:b1:af:5d:b7: 00:e6:79:d7:74:81:d8:d3:81:e9:10:e3:5e:20:ff: f3:02:da:97:da:76:ec:47:e0:16:0a:3d:33:0d:58: 00:18:f5:46:a7:dd:f7:01:bb:33:b7:b2:2e:35:77: ba:2b:4c:37:f3:7b:e0:58:29:72:58:39:47:de:e0: b6:c3:c4:d4:20:95:08:5a:c0:48:89:01:b7:53:2d: aa:21:04:fe:55:81:77:f1:a5:7d:c8:60:33:d6:b0: 0d:da:f8:8e:7c:05:76:58:e3:86:b9:fd:73:cc:8b: a3:40:28:65:d9:b2:a6:ff:29:36:2c:4b:a0:47:0d: 57:eb:ad:d1:7f:a7:ec:62:4a:39:71:45:25:27:fe: 75:ec:5f:8f:13:28:18:fd:d1:aa:6d:3b:d8:86:04: f6:7f:d5:01:64:e2:66:3b:ad:07:41:4c:6f:b2:75: 8f:aa:93:75:d7:56:97:7d:ee:da:e9:26:f7:b0:7e: 54:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:B7:63:6A:28:F1:07:E9:37:50:2A:A1:81:7C:54:53:70:48:BD:BC X509v3 Authority Key Identifier: keyid:4C:AE:3A:EF:B1:AC:8A:BD:DB:99:BC:CE:E4:FA:5A:91:6D:15:7B:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/TK4677Gsir3bmbzO5PpakW0VezQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TK4677Gsir3bmbzO5PpakW0VezQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/TK4677Gsir3bmbzO5PpakW0VezQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 85:d6:3d:98:bc:ba:78:24:85:7e:72:27:b9:c6:88:fa:84:4a: f4:30:d0:86:2f:f2:6e:bf:3e:e3:f0:56:3a:b4:9d:04:c6:1e: e5:62:26:2e:3a:7e:f7:1d:d6:59:d7:e6:ac:03:c8:5a:4e:71: c2:6f:56:21:78:54:15:dd:75:e3:b6:95:8a:77:98:38:4f:39: d0:11:d7:b3:9a:13:95:7e:0d:a8:15:53:a7:d6:6b:8c:a7:43: fb:af:6f:65:13:bb:7d:77:fa:fd:28:c6:c9:04:2b:f9:01:fd: fa:ad:53:8d:e8:e8:0e:e7:92:d4:20:49:a9:57:fe:6f:02:a7: b6:85:66:ac:f8:a0:ca:fa:4a:75:e5:e7:90:fb:9c:2e:e2:f0: 69:34:e8:b1:b5:7f:70:33:17:59:05:35:4d:87:c8:fa:70:56: 63:d7:42:ef:54:1f:ed:b6:aa:ab:f7:ad:5e:6b:6b:6f:ac:01: 79:89:6b:a8:1b:c0:e1:97:c5:00:8d:a7:7a:ce:35:48:76:f3: 47:39:b3:43:95:a4:c5:f7:93:cf:26:7e:be:1a:98:8d:ed:fe: 04:4b:8b:94:3c:6e:49:16:d4:a0:a4:b5:4f:d6:d6:dd:b4:24: f2:26:8c:89:75:e4:69:03:28:52:17:96:f8:04:d7:20:0a:73: ed:a9:66:b9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNh0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjVEN0UxMTAvBgNVBAUTKDRDQUUzQUVGQjFBQzhBQkREQjk5QkNDRUU0RkE1QTkx NkQxNTdCMzQwHhcNMjUwNTMxMTQyOTA2WhcNMjUwNjA3MTQyOTA2WjAYMRYwFAYD VQQDEw02ODNiMTIzMy1kYTdiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxXTXgW0nYgK5qySfp8nMKpu9kSImioll30ddoyH9j+GxxdRsmVo8tMgAlbNM 6YGVn3G66K8sjpYPps9y93F9d39m9dhiDbGvXbcA5nnXdIHY04HpEONeIP/zAtqX 2nbsR+AWCj0zDVgAGPVGp933Abszt7IuNXe6K0w383vgWClyWDlH3uC2w8TUIJUI WsBIiQG3Uy2qIQT+VYF38aV9yGAz1rAN2viOfAV2WOOGuf1zzIujQChl2bKm/yk2 LEugRw1X663Rf6fsYko5cUUlJ/517F+PEygY/dGqbTvYhgT2f9UBZOJmO60HQUxv snWPqpN111aXfe7a6Sb3sH5UlwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMi3Y2oo 8QfpN1AqoYF8VFNwSL28MB8GA1UdIwQYMBaAFEyuOu+xrIq925m8zuT6WpFtFXs0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNUQ3RS9FQ0E2ODIzNDFE ODcxMUUyOTgzMjJERTAwOEIwMkNEMi9USzQ2NzdHc2lyM2JtYnpPNVBwYWtXMFZl elEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RLNDY3N0dzaXIzYm1iek81UHBha1cwVmV6US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NUQ3RS9FQ0E2ODIzNDFEODcxMUUyOTgzMjJERTAwOEIwMkNEMi9USzQ2NzdHc2ly M2JtYnpPNVBwYWtXMFZlelEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCF1j2YvLp4JIV+cie5xoj6hEr0MNCGL/Juvz7j8FY6tJ0Exh7lYiYu On73HdZZ1+asA8haTnHCb1YheFQV3XXjtpWKd5g4TznQEdezmhOVfg2oFVOn1muM p0P7r29lE7t9d/r9KMbJBCv5Af36rVON6OgO55LUIEmpV/5vAqe2hWas+KDK+kp1 5eeQ+5wu4vBpNOixtX9wMxdZBTVNh8j6cFZj10LvVB/ttqqr961ea2tvrAF5iWuo G8Dhl8UAjad6zjVIdvNHObNDlaTF95PPJn6+GpiN7f4ES4uUPG5JFtSgpLVP1tbd tCTyJoyJdeRpAyhSF5b4BNcgCnPtqWa5 -----END CERTIFICATE-----Generated at Sat May 31 16:53:45 2025 by rpki-client