$ rpki-client -vvf rpki.apnic.net/member_repository/A915825D/DD71D568A44611EF8D58A624C4F9AE02/TKAuwRGHSuDn0FVaJf8zAvkS64w.mft File: TKAuwRGHSuDn0FVaJf8zAvkS64w.mft (raw, json) Hash identifier: DvdwXoOVLALNi5rCxopACIyhGvIveneLmGYD7JIhVaA= Subject key identifier: F2:14:B5:A1:31:D8:01:F9:CD:17:7E:37:6A:98:30:C6:0A:DA:7C:66 Authority key identifier: 4C:A0:2E:C1:11:87:4A:E0:E7:D0:55:5A:25:FF:33:02:F9:12:EB:8C Certificate issuer: /CN=A915825D/serialNumber=4CA02EC111874AE0E7D0555A25FF3302F912EB8C Certificate serial: 5F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TKAuwRGHSuDn0FVaJf8zAvkS64w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915825D/DD71D568A44611EF8D58A624C4F9AE02/TKAuwRGHSuDn0FVaJf8zAvkS64w.mft Manifest number: 5A Signing time: Fri 25 Apr 2025 06:13:17 +0000 Manifest this update: Fri 25 Apr 2025 06:13:16 +0000 Manifest next update: Fri 02 May 2025 06:13:16 +0000 Files and hashes: 1: TKAuwRGHSuDn0FVaJf8zAvkS64w.crl (hash: 8sTRj3O2+kNqMsw8Ros4VW71exI5q67LGaU3CmgQ2ew=) 2: 109B1A6AC14F11EFAE8F4B0BC4F9AE02.roa (hash: m6Ln5a7ZSeIX81Tm2886H7n9SlKXj8hnsIcbsYsTN7o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915825D/DD71D568A44611EF8D58A624C4F9AE02/TKAuwRGHSuDn0FVaJf8zAvkS64w.crl rsync://rpki.apnic.net/member_repository/A915825D/DD71D568A44611EF8D58A624C4F9AE02/TKAuwRGHSuDn0FVaJf8zAvkS64w.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TKAuwRGHSuDn0FVaJf8zAvkS64w.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 06:13:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 95 (0x5f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915825D, serialNumber=4CA02EC111874AE0E7D0555A25FF3302F912EB8C Validity Not Before: Apr 25 06:13:16 2025 GMT Not After : May 2 06:13:16 2025 GMT Subject: CN=680b27fd-5969 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:37:8d:30:70:42:c3:3a:67:0c:47:f7:1f:d9: b2:e0:22:9c:72:cc:8d:63:4a:18:49:73:2c:a3:71: 2b:65:82:85:89:af:57:7c:54:e1:94:c0:a5:e0:e5: 83:01:dc:20:1e:7e:36:43:4d:e0:bb:6a:a4:e9:9a: 46:be:13:c7:45:76:b9:6e:1e:37:35:54:90:91:4c: cc:e5:24:ae:43:46:0a:54:79:26:d2:bd:43:f6:dc: 16:8a:90:70:1b:4f:18:7d:0c:cc:21:b0:c1:f8:b4: b4:78:38:14:11:ed:3c:61:07:dd:03:c9:93:65:0e: a1:b8:04:ea:bd:75:d2:32:da:16:03:61:0c:40:11: f1:8a:f7:45:a4:d0:f1:12:09:00:b9:76:df:e7:f9: 1a:c7:bb:65:a4:35:5b:ce:e8:bb:92:46:89:1e:b7: de:59:bf:c3:ca:21:73:45:e9:fa:38:c3:56:96:e7: fe:4d:c3:aa:dc:71:9c:3f:69:2a:36:c1:88:0d:72: a8:0d:a3:c7:72:57:7b:6f:ab:3c:fe:70:67:d4:42: dc:d5:bb:32:b5:cd:5b:f8:c5:5d:6b:b3:4a:fd:71: 1f:89:03:bc:c9:57:7e:33:f4:55:01:4e:40:ea:e4: aa:96:ca:83:99:6d:cc:cd:6e:62:13:f9:64:c6:06: 46:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:14:B5:A1:31:D8:01:F9:CD:17:7E:37:6A:98:30:C6:0A:DA:7C:66 X509v3 Authority Key Identifier: keyid:4C:A0:2E:C1:11:87:4A:E0:E7:D0:55:5A:25:FF:33:02:F9:12:EB:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915825D/DD71D568A44611EF8D58A624C4F9AE02/TKAuwRGHSuDn0FVaJf8zAvkS64w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TKAuwRGHSuDn0FVaJf8zAvkS64w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915825D/DD71D568A44611EF8D58A624C4F9AE02/TKAuwRGHSuDn0FVaJf8zAvkS64w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 09:ca:79:a3:90:28:9f:27:12:ea:b7:10:a8:d7:7c:8d:67:80: f1:2d:07:7c:2c:a2:d8:2a:cf:eb:a9:a4:96:2b:69:c0:35:81: a0:32:08:1d:94:76:a7:fd:a6:35:43:c8:07:8a:87:06:c9:fe: 62:d4:91:f9:04:41:4e:fa:15:e2:e2:4d:51:b7:0c:9e:4e:a1: 3b:aa:b1:ae:20:97:8d:a4:04:9d:17:df:5e:a2:de:fb:06:32: a7:51:ea:6d:37:e5:e9:15:bf:86:e7:7e:f9:a6:98:98:3b:8a: 40:04:7c:ca:da:45:65:22:ee:6a:9b:75:ae:c9:46:6a:d0:7f: 2f:2f:54:71:2d:6c:6c:c1:b5:14:22:33:06:22:09:de:65:dd: 3c:37:b9:09:d0:29:33:11:8b:37:d8:eb:0b:c7:97:1b:30:87: ff:b7:0f:29:93:3e:14:41:69:2d:a4:7c:04:9d:31:ab:35:ad: dc:77:7b:e7:4a:9d:04:df:8c:29:9f:2a:8c:c8:80:33:4e:72: 80:63:ed:4e:9f:da:95:1f:f4:78:b3:03:31:57:b0:21:1a:ee: ff:71:f9:99:20:82:c8:19:93:cf:1e:90:10:ea:27:69:a6:cb: 6e:2c:4c:52:48:ed:0f:d3:cc:36:f5:26:6a:fc:5a:74:a6:5e: ce:3d:d9:72 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBXzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 ODI1RDExMC8GA1UEBRMoNENBMDJFQzExMTg3NEFFMEU3RDA1NTVBMjVGRjMzMDJG OTEyRUI4QzAeFw0yNTA0MjUwNjEzMTZaFw0yNTA1MDIwNjEzMTZaMBgxFjAUBgNV BAMTDTY4MGIyN2ZkLTU5NjkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCmN40wcELDOmcMR/cf2bLgIpxyzI1jShhJcyyjcStlgoWJr1d8VOGUwKXg5YMB 3CAefjZDTeC7aqTpmka+E8dFdrluHjc1VJCRTMzlJK5DRgpUeSbSvUP23BaKkHAb Txh9DMwhsMH4tLR4OBQR7TxhB90DyZNlDqG4BOq9ddIy2hYDYQxAEfGK90Wk0PES CQC5dt/n+RrHu2WkNVvO6LuSRoket95Zv8PKIXNF6fo4w1aW5/5Nw6rccZw/aSo2 wYgNcqgNo8dyV3tvqzz+cGfUQtzVuzK1zVv4xV1rs0r9cR+JA7zJV34z9FUBTkDq 5KqWyoOZbczNbmIT+WTGBkaJAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU8hS1oTHY AfnNF343apgwxgrafGYwHwYDVR0jBBgwFoAUTKAuwRGHSuDn0FVaJf8zAvkS64ww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU4MjVEL0RENzFENTY4QTQ0 NjExRUY4RDU4QTYyNEM0RjlBRTAyL1RLQXV3UkdIU3VEbjBGVmFKZjh6QXZrUzY0 dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvVEtBdXdSR0hTdURuMEZWYUpmOHpBdmtTNjR3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU4 MjVEL0RENzFENTY4QTQ0NjExRUY4RDU4QTYyNEM0RjlBRTAyL1RLQXV3UkdIU3VE bjBGVmFKZjh6QXZrUzY0dy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAAnKeaOQKJ8nEuq3EKjXfI1ngPEtB3wsotgqz+uppJYracA1gaAyCB2U dqf9pjVDyAeKhwbJ/mLUkfkEQU76FeLiTVG3DJ5OoTuqsa4gl42kBJ0X316i3vsG MqdR6m035ekVv4bnfvmmmJg7ikAEfMraRWUi7mqbda7JRmrQfy8vVHEtbGzBtRQi MwYiCd5l3Tw3uQnQKTMRizfY6wvHlxswh/+3DymTPhRBaS2kfASdMas1rdx3e+dK nQTfjCmfKozIgDNOcoBj7U6f2pUf9HizAzFXsCEa7v9x+ZkggsgZk88ekBDqJ2mm y24sTFJI7Q/TzDb1Jmr8WnSmXs492XI= -----END CERTIFICATE-----Generated at Sat Apr 26 13:00:16 2025 by rpki-client