$ rpki-client -vvf rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/TK4677Gsir3bmbzO5PpakW0VezQ.mft File: TK4677Gsir3bmbzO5PpakW0VezQ.mft (raw, json) Hash identifier: RKLcwrOsPguG6fXkQr1LFulMdzdDtfV1jkbCg2rxY0Y= Subject key identifier: 0E:10:31:BA:CE:B0:16:54:11:F6:67:75:99:D5:F0:DE:AC:27:5C:1B Authority key identifier: 4C:AE:3A:EF:B1:AC:8A:BD:DB:99:BC:CE:E4:FA:5A:91:6D:15:7B:34 Certificate issuer: /CN=A91B5D7E/serialNumber=4CAE3AEFB1AC8ABDDB99BCCEE4FA5A916D157B34 Certificate serial: 3656 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TK4677Gsir3bmbzO5PpakW0VezQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/TK4677Gsir3bmbzO5PpakW0VezQ.mft Manifest number: 3579 Signing time: Sat 06 Sep 2025 14:29:33 +0000 Manifest this update: Sat 06 Sep 2025 14:29:33 +0000 Manifest next update: Sat 13 Sep 2025 14:29:33 +0000 Files and hashes: 1: TK4677Gsir3bmbzO5PpakW0VezQ.crl (hash: iL0/WBd6gbSkLDkx9+TgGwp65F6V8DmX6anwRC1WY50=) 2: D166652A072211EF9AC24D5BC4F9AE02.roa (hash: RL1lTbOt6Av5nEYA4DHBlIKK0hqxvZRiBkpLy29xghs=) 3: 8FD552C071F111F0AE49323FC4F9AE02.roa (hash: k0XECPDgxEsPxo1hnPOQ8t+HVImApkPuGWwQ5OUwJvs=) 4: 945922AECEBA11EDBBFD9E28C4F9AE02.roa (hash: 2rH+VWOcuPOah5bNHP9sMT7gm/W2BD5Lz0whslurntk=) 5: 24D7D74C978011EE87BB7D53C4F9AE02.roa (hash: CuyEAz/Z+ba3st2KGZYRh65vVcO9Be9AbPEfcjuGd9k=) 6: 31D56A8E06C711EF9A0E1D0AC4F9AE02.roa (hash: Yqwo5M588Yfv+JXGuvZtKg0Gtdf+iGVakUUN+3KDHdo=) 7: CE997E2EEA9B11EFA6A3D730C4F9AE02.roa (hash: uN0e+cUzXR0q+zRv9FKfvDWSlrjYXQb/CNzmut03rlU=) 8: D630A6B206D511EFB6CFDF2DC4F9AE02.roa (hash: oGdV623K9DaOonzZkenCae7aE6BqwAo6RdH7Y25n0b4=) 9: 4DC27210558111EF880A8679C4F9AE02.roa (hash: m1XRr2iAq+1TVgkspEslzx6eWsdA8L2B6700lAxn/d4=) 10: 4DFF14DE71F211F08D45AC42C4F9AE02.roa (hash: gBF3Jk34am1InKRIBH9CrloJz67l7rFKCD8FkbkPjyM=) 11: E83E047071F111F0BBD1B63FC4F9AE02.roa (hash: vqgqViMpJQbvpRF0eRLHvKsvOmM8OQ5c7Ho2iOiRHUM=) 12: 4B2AFD54ABA611EEA4B59A6AC4F9AE02.roa (hash: 92OU291hR0YIYqWJJIcvZXszn84NKrAjVspQkxjVbEI=) 13: 77D96D4A4F3411EFBA0A2659C4F9AE02.roa (hash: ol23eWYMbqFxa7AzTOzpz7Em2i4wKmL7cxMptLBFr00=) 14: 8FF00754732F11EE90078C13C4F9AE02.roa (hash: FvhGoDcJkl/uVyMeuA2e84lQ0fEQXKW9fiAoOj29wy4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/TK4677Gsir3bmbzO5PpakW0VezQ.crl rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/TK4677Gsir3bmbzO5PpakW0VezQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TK4677Gsir3bmbzO5PpakW0VezQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Sep 2025 14:29:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13910 (0x3656) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B5D7E, serialNumber=4CAE3AEFB1AC8ABDDB99BCCEE4FA5A916D157B34 Validity Not Before: Sep 6 14:29:33 2025 GMT Not After : Sep 13 14:29:33 2025 GMT Subject: CN=68bc454d-a2c7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:80:e5:84:a1:a9:c2:bb:e0:44:26:08:f6:fa: c1:5e:6a:ed:77:bc:4d:82:fe:ec:e1:f7:5b:8c:64: e5:27:0c:9f:7e:bf:74:b6:7d:77:c1:63:03:df:d0: 15:99:96:c2:fd:55:ac:cb:7c:12:9d:cb:bf:1a:ab: 8f:d8:2e:a2:35:a5:f4:9f:89:4a:e8:16:92:4b:b5: 04:31:73:e6:d4:6c:5f:e6:0e:95:a0:d4:12:41:6c: 42:f7:81:ab:57:67:e5:4b:bf:03:7b:c2:e2:5e:25: e2:32:45:cb:ec:db:09:4c:2f:b7:c4:ca:3a:a0:c7: 16:9d:59:77:67:1a:bb:0d:23:ca:44:c2:ef:81:85: 56:5e:9c:c4:cd:29:88:6b:66:dc:8f:de:d5:dc:1a: dd:74:12:86:b2:d6:aa:43:ec:d2:87:88:e8:ee:bd: eb:6c:dc:ad:06:57:05:fb:89:e5:7d:05:a0:fe:41: b8:b5:c3:83:9b:59:25:ed:aa:6b:85:6f:df:14:09: 63:87:7f:d3:19:c4:91:0f:37:c6:ac:67:f9:74:d0: 86:c4:fc:1b:0d:5c:1d:5a:69:0e:58:e1:ce:94:94: c0:59:0c:fc:4e:73:e9:b7:f9:19:9e:bd:e3:58:8d: 19:69:6e:78:bd:d5:2a:25:a4:0e:b8:e0:28:93:39: b2:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:10:31:BA:CE:B0:16:54:11:F6:67:75:99:D5:F0:DE:AC:27:5C:1B X509v3 Authority Key Identifier: keyid:4C:AE:3A:EF:B1:AC:8A:BD:DB:99:BC:CE:E4:FA:5A:91:6D:15:7B:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/TK4677Gsir3bmbzO5PpakW0VezQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TK4677Gsir3bmbzO5PpakW0VezQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/TK4677Gsir3bmbzO5PpakW0VezQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 97:38:c6:c5:83:69:05:6f:42:b9:84:24:9b:d0:59:b3:59:c9: 97:43:3e:d4:e1:a7:1b:e1:8a:cc:05:ba:69:69:32:65:8f:b7: db:99:c1:0d:55:13:fc:4b:86:f8:a1:95:ab:08:b4:fa:e6:b8: 53:8a:74:33:d5:9c:63:a7:75:86:a9:a0:a8:4e:de:64:96:b2: 52:ed:13:cb:fe:7b:3a:b0:a0:c8:79:c6:4a:40:b6:19:f9:18: 05:bb:08:1a:92:64:70:ca:e7:10:d3:2b:14:e9:0c:a7:74:12: 05:aa:bd:d0:62:67:45:52:47:10:8f:a0:34:fa:be:eb:d5:45: cd:0e:6f:0e:3a:08:47:48:0d:82:33:0c:85:d7:32:ed:b3:bd: 5f:75:aa:fa:48:da:1e:0f:59:9d:33:1d:50:69:85:a6:6d:27: d8:01:58:da:9d:4f:67:0c:32:6a:ab:fb:6a:30:bc:5c:0a:d2: e7:32:ef:1b:4a:ee:b5:01:d1:41:d5:db:f7:2a:26:3f:55:59: f3:07:1e:69:3a:9f:b2:a7:3a:9a:e6:ed:99:91:f1:2e:52:df: 08:89:da:61:f0:04:b5:98:d2:a6:af:e8:9d:55:b5:e8:e5:2f: 02:36:97:17:b0:41:6c:32:96:0d:25:59:b9:2c:f1:a0:a0:9a: 14:58:ca:e6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNlYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjVEN0UxMTAvBgNVBAUTKDRDQUUzQUVGQjFBQzhBQkREQjk5QkNDRUU0RkE1QTkx NkQxNTdCMzQwHhcNMjUwOTA2MTQyOTMzWhcNMjUwOTEzMTQyOTMzWjAYMRYwFAYD VQQDEw02OGJjNDU0ZC1hMmM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0IDlhKGpwrvgRCYI9vrBXmrtd7xNgv7s4fdbjGTlJwyffr90tn13wWMD39AV mZbC/VWsy3wSncu/GquP2C6iNaX0n4lK6BaSS7UEMXPm1Gxf5g6VoNQSQWxC94Gr V2flS78De8LiXiXiMkXL7NsJTC+3xMo6oMcWnVl3Zxq7DSPKRMLvgYVWXpzEzSmI a2bcj97V3BrddBKGstaqQ+zSh4jo7r3rbNytBlcF+4nlfQWg/kG4tcODm1kl7apr hW/fFAljh3/TGcSRDzfGrGf5dNCGxPwbDVwdWmkOWOHOlJTAWQz8TnPpt/kZnr3j WI0ZaW54vdUqJaQOuOAokzmyAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA4QMbrO sBZUEfZndZnV8N6sJ1wbMB8GA1UdIwQYMBaAFEyuOu+xrIq925m8zuT6WpFtFXs0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNUQ3RS9FQ0E2ODIzNDFE ODcxMUUyOTgzMjJERTAwOEIwMkNEMi9USzQ2NzdHc2lyM2JtYnpPNVBwYWtXMFZl elEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RLNDY3N0dzaXIzYm1iek81UHBha1cwVmV6US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NUQ3RS9FQ0E2ODIzNDFEODcxMUUyOTgzMjJERTAwOEIwMkNEMi9USzQ2NzdHc2ly M2JtYnpPNVBwYWtXMFZlelEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCXOMbFg2kFb0K5hCSb0FmzWcmXQz7U4acb4YrMBbppaTJlj7fbmcEN VRP8S4b4oZWrCLT65rhTinQz1Zxjp3WGqaCoTt5klrJS7RPL/ns6sKDIecZKQLYZ +RgFuwgakmRwyucQ0ysU6QyndBIFqr3QYmdFUkcQj6A0+r7r1UXNDm8OOghHSA2C MwyF1zLts71fdar6SNoeD1mdMx1QaYWmbSfYAVjanU9nDDJqq/tqMLxcCtLnMu8b Su61AdFB1dv3KiY/VVnzBx5pOp+ypzqa5u2ZkfEuUt8Iidph8AS1mNKmr+idVbXo 5S8CNpcXsEFsMpYNJVm5LPGgoJoUWMrm -----END CERTIFICATE-----Generated at Mon Sep 8 02:17:51 2025 by rpki-client