$ rpki-client -vvf rpki.apnic.net/member_repository/A915825D/DD71D568A44611EF8D58A624C4F9AE02/TKAuwRGHSuDn0FVaJf8zAvkS64w.mft File: TKAuwRGHSuDn0FVaJf8zAvkS64w.mft (raw, json) Hash identifier: 75/AARi17Y/7sGoZP9DtL4lwX4CiBRjRAvLIrhlE0X8= Subject key identifier: B6:D3:32:73:D3:E3:44:32:0B:1E:4A:7F:F5:4A:A2:03:69:9E:87:19 Authority key identifier: 4C:A0:2E:C1:11:87:4A:E0:E7:D0:55:5A:25:FF:33:02:F9:12:EB:8C Certificate issuer: /CN=A915825D/serialNumber=4CA02EC111874AE0E7D0555A25FF3302F912EB8C Certificate serial: 79 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TKAuwRGHSuDn0FVaJf8zAvkS64w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915825D/DD71D568A44611EF8D58A624C4F9AE02/TKAuwRGHSuDn0FVaJf8zAvkS64w.mft Manifest number: 74 Signing time: Tue 17 Jun 2025 05:48:30 +0000 Manifest this update: Tue 17 Jun 2025 05:48:30 +0000 Manifest next update: Tue 24 Jun 2025 05:48:30 +0000 Files and hashes: 1: TKAuwRGHSuDn0FVaJf8zAvkS64w.crl (hash: l4sEnCO/biShlksgPdFfSvPAvvfmPtLQ419AZNnJSgY=) 2: 109B1A6AC14F11EFAE8F4B0BC4F9AE02.roa (hash: m6Ln5a7ZSeIX81Tm2886H7n9SlKXj8hnsIcbsYsTN7o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915825D/DD71D568A44611EF8D58A624C4F9AE02/TKAuwRGHSuDn0FVaJf8zAvkS64w.crl rsync://rpki.apnic.net/member_repository/A915825D/DD71D568A44611EF8D58A624C4F9AE02/TKAuwRGHSuDn0FVaJf8zAvkS64w.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TKAuwRGHSuDn0FVaJf8zAvkS64w.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 24 Jun 2025 02:57:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 121 (0x79) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915825D, serialNumber=4CA02EC111874AE0E7D0555A25FF3302F912EB8C Validity Not Before: Jun 17 05:48:30 2025 GMT Not After : Jun 24 05:48:30 2025 GMT Subject: CN=685101ae-2f8d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:51:e1:22:47:b9:ac:be:40:5c:cc:80:1b:32: 3f:0e:46:5b:23:4d:54:70:c8:eb:9b:11:cf:97:e4: d4:e0:2a:0e:e3:3a:38:e3:cc:6c:fd:09:ff:ee:fa: 4a:64:52:27:0a:c9:57:a8:fb:7d:c0:76:61:7e:03: 51:cc:16:1c:62:1f:f0:ba:f1:da:24:cf:20:d4:5d: 8b:e5:02:4b:e1:33:56:0b:95:6c:ed:89:b9:a4:6d: 34:8d:72:35:1c:cd:02:e1:ed:17:7f:ad:79:c2:d6: 50:05:e7:50:09:d2:41:c2:82:19:a1:28:84:0b:9c: 08:89:aa:2e:25:3e:da:2a:2a:14:65:d3:e7:6f:d7: 0f:58:4b:51:cf:4c:49:44:7f:73:84:4e:83:eb:2b: 98:72:a0:ae:54:51:1d:16:3e:ca:95:68:75:89:e8: 9b:2d:54:86:05:ac:fd:2c:44:19:68:60:b9:92:50: de:26:71:51:98:e7:7d:65:ef:b0:94:af:38:11:16: 0f:43:7a:12:04:f8:c4:28:6e:b0:5c:82:0a:a7:f7: 4b:13:b3:46:44:8d:a6:2d:a8:5f:01:d9:2f:9c:5e: 17:d8:83:b1:c3:3d:0e:33:46:d5:b6:22:83:96:e3: f2:6c:a5:43:64:a4:3e:47:67:39:99:ae:21:3a:2b: 99:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:D3:32:73:D3:E3:44:32:0B:1E:4A:7F:F5:4A:A2:03:69:9E:87:19 X509v3 Authority Key Identifier: keyid:4C:A0:2E:C1:11:87:4A:E0:E7:D0:55:5A:25:FF:33:02:F9:12:EB:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915825D/DD71D568A44611EF8D58A624C4F9AE02/TKAuwRGHSuDn0FVaJf8zAvkS64w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TKAuwRGHSuDn0FVaJf8zAvkS64w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915825D/DD71D568A44611EF8D58A624C4F9AE02/TKAuwRGHSuDn0FVaJf8zAvkS64w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b1:dc:db:ff:03:51:c7:df:7f:5c:66:24:e4:81:d6:1a:b4:d4: 21:f4:9b:04:ce:a8:49:95:a3:40:09:be:e3:f6:41:28:4e:4f: 7c:38:ef:3a:82:f7:f5:15:77:22:eb:ef:91:a6:c3:8f:ab:cb: 39:71:16:9c:79:9c:31:23:03:50:48:07:92:16:11:66:9b:62: 8a:b7:b6:bd:bf:cf:56:dc:2c:84:0b:e5:c6:ee:49:2a:80:28: 50:26:a6:b6:4f:8a:24:81:b5:20:4f:ba:17:e1:16:f7:ba:45: d4:39:5d:d0:e9:c2:eb:2f:c4:e5:2b:ef:b0:c1:f7:3d:cb:fe: f8:42:3f:e1:79:53:07:00:b7:80:a2:45:54:93:60:c2:58:ad: d7:9e:f2:ec:44:f8:a9:c4:6f:87:2b:b1:62:b8:66:3c:f5:09: 00:3d:46:38:04:78:b8:e4:36:f3:5f:a1:c7:11:4c:6e:39:e9: 84:aa:06:d3:1e:5e:9c:68:db:d3:2d:96:3e:18:be:51:3e:a0: ce:9d:72:b6:bd:70:ae:f5:b1:f2:6c:09:68:29:ac:e3:a1:02: c5:df:e1:98:cc:80:ea:8e:3c:e4:5b:88:e0:d8:5a:f8:b9:8c: 4e:2c:ba:d6:f4:5b:d3:e9:41:75:cb:d7:9c:7f:8a:de:69:46: 3d:8e:1c:b8 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBeTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 ODI1RDExMC8GA1UEBRMoNENBMDJFQzExMTg3NEFFMEU3RDA1NTVBMjVGRjMzMDJG OTEyRUI4QzAeFw0yNTA2MTcwNTQ4MzBaFw0yNTA2MjQwNTQ4MzBaMBgxFjAUBgNV BAMTDTY4NTEwMWFlLTJmOGQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCvUeEiR7msvkBczIAbMj8ORlsjTVRwyOubEc+X5NTgKg7jOjjjzGz9Cf/u+kpk UicKyVeo+33AdmF+A1HMFhxiH/C68dokzyDUXYvlAkvhM1YLlWztibmkbTSNcjUc zQLh7Rd/rXnC1lAF51AJ0kHCghmhKIQLnAiJqi4lPtoqKhRl0+dv1w9YS1HPTElE f3OEToPrK5hyoK5UUR0WPsqVaHWJ6JstVIYFrP0sRBloYLmSUN4mcVGY531l77CU rzgRFg9DehIE+MQobrBcggqn90sTs0ZEjaYtqF8B2S+cXhfYg7HDPQ4zRtW2IoOW 4/JspUNkpD5HZzmZriE6K5nrAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUttMyc9Pj RDILHkp/9UqiA2mehxkwHwYDVR0jBBgwFoAUTKAuwRGHSuDn0FVaJf8zAvkS64ww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU4MjVEL0RENzFENTY4QTQ0 NjExRUY4RDU4QTYyNEM0RjlBRTAyL1RLQXV3UkdIU3VEbjBGVmFKZjh6QXZrUzY0 dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvVEtBdXdSR0hTdURuMEZWYUpmOHpBdmtTNjR3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU4 MjVEL0RENzFENTY4QTQ0NjExRUY4RDU4QTYyNEM0RjlBRTAyL1RLQXV3UkdIU3VE bjBGVmFKZjh6QXZrUzY0dy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBALHc2/8DUcfff1xmJOSB1hq01CH0mwTOqEmVo0AJvuP2QShOT3w47zqC 9/UVdyLr75Gmw4+ryzlxFpx5nDEjA1BIB5IWEWabYoq3tr2/z1bcLIQL5cbuSSqA KFAmprZPiiSBtSBPuhfhFve6RdQ5XdDpwusvxOUr77DB9z3L/vhCP+F5UwcAt4Ci RVSTYMJYrdee8uxE+KnEb4crsWK4Zjz1CQA9RjgEeLjkNvNfoccRTG456YSqBtMe Xpxo29Mtlj4YvlE+oM6dcra9cK71sfJsCWgprOOhAsXf4ZjMgOqOPORbiODYWvi5 jE4sutb0W9PpQXXL15x/it5pRj2OHLg= -----END CERTIFICATE-----Generated at Tue Jun 17 08:05:09 2025 by rpki-client