$ rpki-client -vvf rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/TK4677Gsir3bmbzO5PpakW0VezQ.mft File: TK4677Gsir3bmbzO5PpakW0VezQ.mft (raw, json) Hash identifier: UQkwJG1PhLBCblD9YJOMc2gvv9V1f/ULKBEfv29+nwo= Subject key identifier: 11:3B:E3:A5:94:8A:14:FC:D3:5D:B5:32:EE:9F:23:AC:2B:8F:6E:0C Authority key identifier: 4C:AE:3A:EF:B1:AC:8A:BD:DB:99:BC:CE:E4:FA:5A:91:6D:15:7B:34 Certificate issuer: /CN=A91B5D7E/serialNumber=4CAE3AEFB1AC8ABDDB99BCCEE4FA5A916D157B34 Certificate serial: 35EF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TK4677Gsir3bmbzO5PpakW0VezQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/TK4677Gsir3bmbzO5PpakW0VezQ.mft Manifest number: 3518 Signing time: Wed 12 Mar 2025 14:28:37 +0000 Manifest this update: Wed 12 Mar 2025 14:28:37 +0000 Manifest next update: Wed 19 Mar 2025 14:28:37 +0000 Files and hashes: 1: TK4677Gsir3bmbzO5PpakW0VezQ.crl (hash: fcBf72p+69p5lj4GeiJ5/N91HiTbSIJWzPgf+Hvowno=) 2: D166652A072211EF9AC24D5BC4F9AE02.roa (hash: RL1lTbOt6Av5nEYA4DHBlIKK0hqxvZRiBkpLy29xghs=) 3: 945922AECEBA11EDBBFD9E28C4F9AE02.roa (hash: 2rH+VWOcuPOah5bNHP9sMT7gm/W2BD5Lz0whslurntk=) 4: 24D7D74C978011EE87BB7D53C4F9AE02.roa (hash: CuyEAz/Z+ba3st2KGZYRh65vVcO9Be9AbPEfcjuGd9k=) 5: 31D56A8E06C711EF9A0E1D0AC4F9AE02.roa (hash: Yqwo5M588Yfv+JXGuvZtKg0Gtdf+iGVakUUN+3KDHdo=) 6: CE997E2EEA9B11EFA6A3D730C4F9AE02.roa (hash: Zv/QuBKzPbKfIhV+4TTsi45sEN87FlwglLt716XTvaM=) 7: D630A6B206D511EFB6CFDF2DC4F9AE02.roa (hash: oGdV623K9DaOonzZkenCae7aE6BqwAo6RdH7Y25n0b4=) 8: 4DC27210558111EF880A8679C4F9AE02.roa (hash: m1XRr2iAq+1TVgkspEslzx6eWsdA8L2B6700lAxn/d4=) 9: C6A44358F43111EFB70DAE63C4F9AE02.roa (hash: ktcmSqDTgXbj3lIVA2eR8cEJTJL4lajyKd+nAAjV9WI=) 10: 4B2AFD54ABA611EEA4B59A6AC4F9AE02.roa (hash: 92OU291hR0YIYqWJJIcvZXszn84NKrAjVspQkxjVbEI=) 11: 77D96D4A4F3411EFBA0A2659C4F9AE02.roa (hash: ol23eWYMbqFxa7AzTOzpz7Em2i4wKmL7cxMptLBFr00=) 12: 8FF00754732F11EE90078C13C4F9AE02.roa (hash: FvhGoDcJkl/uVyMeuA2e84lQ0fEQXKW9fiAoOj29wy4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/TK4677Gsir3bmbzO5PpakW0VezQ.crl rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/TK4677Gsir3bmbzO5PpakW0VezQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TK4677Gsir3bmbzO5PpakW0VezQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Mar 2025 14:28:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13807 (0x35ef) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B5D7E Validity Not Before: Mar 12 14:28:37 2025 GMT Not After : Mar 19 14:28:37 2025 GMT Subject: CN=67d19a15-505f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:de:40:f7:49:1b:35:fd:f8:71:b1:78:9d:c8: 28:41:d9:d1:4e:38:b4:4c:11:97:bb:8f:69:a8:9f: 5f:fb:f8:ed:61:d3:ab:87:2e:7f:c3:a0:3a:20:60: 4c:7c:83:6b:73:25:8c:b9:ed:46:ba:0a:60:90:af: bf:a8:8e:2f:13:f4:f7:80:68:c2:71:38:2d:1c:04: 77:91:59:07:f3:de:06:32:f3:c8:5b:2c:5f:7b:6f: 21:ba:99:4c:78:1c:9f:39:93:1d:09:f3:d7:c2:9b: 93:8d:f1:a1:dd:c3:64:1a:42:e8:33:51:61:95:c5: ce:b3:64:5b:2d:b3:27:4d:75:a6:7e:68:03:43:01: c0:b8:4c:57:f4:bd:b8:4b:0a:99:6e:06:01:7b:b7: d4:9b:b8:2c:05:e6:d6:b0:2e:6c:de:28:2d:91:74: d8:2a:1b:c2:19:c8:8d:d6:1a:01:58:98:a2:e6:8c: 7f:b8:33:6c:07:b1:ea:9c:6a:52:98:ac:d6:6d:60: 06:f6:fb:bd:e0:1a:f1:d1:94:4f:28:af:b0:e3:ad: 0b:56:85:e1:00:d6:c6:b6:cb:91:f6:24:7b:67:55: 8b:3b:86:4d:39:40:c9:66:cf:82:ec:5c:5b:1f:86: 49:07:23:e6:d5:b6:16:49:08:18:6d:74:ab:13:53: b7:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:3B:E3:A5:94:8A:14:FC:D3:5D:B5:32:EE:9F:23:AC:2B:8F:6E:0C X509v3 Authority Key Identifier: keyid:4C:AE:3A:EF:B1:AC:8A:BD:DB:99:BC:CE:E4:FA:5A:91:6D:15:7B:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/TK4677Gsir3bmbzO5PpakW0VezQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TK4677Gsir3bmbzO5PpakW0VezQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/TK4677Gsir3bmbzO5PpakW0VezQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:12:51:35:ce:25:ce:b7:82:66:ff:49:ff:77:df:22:d0:5d: 23:51:bf:5b:f7:a8:d8:1f:61:18:f9:4d:f4:d6:31:5d:34:f9: f9:11:17:5d:62:f8:9b:e0:b5:92:46:8c:61:8c:a3:be:44:34: b0:bf:e5:a1:20:d5:49:9f:b3:53:5f:80:36:3b:af:7c:98:bf: 7b:aa:ca:36:ad:62:62:b2:88:1f:0b:a8:af:94:be:50:15:c0: 68:43:c2:68:b6:77:68:62:d6:98:ff:74:e3:4d:7c:48:47:8e: 63:51:f3:0f:48:38:de:02:04:3b:07:8b:69:47:e3:5f:ec:13: ed:7d:99:3a:81:88:2a:bd:41:2e:6a:9d:37:9b:bb:6c:0c:f2: 3c:78:58:b7:ef:49:b9:67:35:9a:44:d7:dc:b5:78:92:93:68: 74:50:70:31:5d:95:b5:e0:6b:ef:db:e1:e0:ad:08:21:71:93: 50:8a:5a:1a:57:15:b4:e5:57:e4:18:40:69:5c:77:87:a6:33: bb:e3:6f:f5:e0:dd:cf:84:9a:6f:87:b4:7b:bb:94:ad:e4:61: 65:ad:43:d4:08:1a:3d:28:ce:53:ae:36:e5:1b:6b:48:6b:92: a1:02:35:c0:6b:94:54:8c:64:91:c4:8d:a5:f3:fc:e4:bc:65: 58:ad:06:10 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNe8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjVEN0UxMTAvBgNVBAUTKDRDQUUzQUVGQjFBQzhBQkREQjk5QkNDRUU0RkE1QTkx NkQxNTdCMzQwHhcNMjUwMzEyMTQyODM3WhcNMjUwMzE5MTQyODM3WjAYMRYwFAYD VQQDEw02N2QxOWExNS01MDVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0N5A90kbNf34cbF4ncgoQdnRTji0TBGXu49pqJ9f+/jtYdOrhy5/w6A6IGBM fINrcyWMue1GugpgkK+/qI4vE/T3gGjCcTgtHAR3kVkH894GMvPIWyxfe28huplM eByfOZMdCfPXwpuTjfGh3cNkGkLoM1FhlcXOs2RbLbMnTXWmfmgDQwHAuExX9L24 SwqZbgYBe7fUm7gsBebWsC5s3igtkXTYKhvCGciN1hoBWJii5ox/uDNsB7HqnGpS mKzWbWAG9vu94Brx0ZRPKK+w460LVoXhANbGtsuR9iR7Z1WLO4ZNOUDJZs+C7Fxb H4ZJByPm1bYWSQgYbXSrE1O32QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBE746WU ihT80121Mu6fI6wrj24MMB8GA1UdIwQYMBaAFEyuOu+xrIq925m8zuT6WpFtFXs0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNUQ3RS9FQ0E2ODIzNDFE ODcxMUUyOTgzMjJERTAwOEIwMkNEMi9USzQ2NzdHc2lyM2JtYnpPNVBwYWtXMFZl elEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RLNDY3N0dzaXIzYm1iek81UHBha1cwVmV6US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NUQ3RS9FQ0E2ODIzNDFEODcxMUUyOTgzMjJERTAwOEIwMkNEMi9USzQ2NzdHc2ly M2JtYnpPNVBwYWtXMFZlelEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCaElE1ziXOt4Jm/0n/d98i0F0jUb9b96jYH2EY+U301jFdNPn5ERdd Yvib4LWSRoxhjKO+RDSwv+WhINVJn7NTX4A2O698mL97qso2rWJisogfC6ivlL5Q FcBoQ8JotndoYtaY/3TjTXxIR45jUfMPSDjeAgQ7B4tpR+Nf7BPtfZk6gYgqvUEu ap03m7tsDPI8eFi370m5ZzWaRNfctXiSk2h0UHAxXZW14Gvv2+HgrQghcZNQiloa VxW05VfkGEBpXHeHpjO742/14N3PhJpvh7R7u5St5GFlrUPUCBo9KM5TrjblG2tI a5KhAjXAa5RUjGSRxI2l8/zkvGVYrQYQ -----END CERTIFICATE-----Generated at Thu Mar 13 21:31:07 2025 by rpki-client