$ rpki-client -vvf rpki.apnic.net/member_repository/A91A6E4D/D3CC0D64FB4611EBA7661839C4F9AE02/tr-xkXvTGlViMihYRudjoUMyymg.mft File: tr-xkXvTGlViMihYRudjoUMyymg.mft (raw, json) Hash identifier: bY1hiUHt0/u0toB+1BThL1kaRziYhJpOGEyyKhQUJt4= Subject key identifier: 57:54:9E:9F:2C:45:3F:4A:37:BC:64:49:00:21:2B:E3:F0:9B:69:BC Authority key identifier: B6:BF:B1:91:7B:D3:1A:55:62:32:28:58:46:E7:63:A1:43:32:CA:68 Certificate issuer: /CN=A91A6E4D/serialNumber=B6BFB1917BD31A556232285846E763A14332CA68 Certificate serial: 0531 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tr-xkXvTGlViMihYRudjoUMyymg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A6E4D/D3CC0D64FB4611EBA7661839C4F9AE02/tr-xkXvTGlViMihYRudjoUMyymg.mft Manifest number: 0531 Signing time: Thu 12 Jun 2025 23:05:57 +0000 Manifest this update: Thu 12 Jun 2025 23:05:56 +0000 Manifest next update: Thu 19 Jun 2025 23:05:56 +0000 Files and hashes: 1: tr-xkXvTGlViMihYRudjoUMyymg.crl (hash: WIUUKhlOP9r41zQbMw2sHYP02GaJ18LKysUEzbe8pSw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A6E4D/D3CC0D64FB4611EBA7661839C4F9AE02/tr-xkXvTGlViMihYRudjoUMyymg.crl rsync://rpki.apnic.net/member_repository/A91A6E4D/D3CC0D64FB4611EBA7661839C4F9AE02/tr-xkXvTGlViMihYRudjoUMyymg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tr-xkXvTGlViMihYRudjoUMyymg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 23:05:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1329 (0x531) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A6E4D, serialNumber=B6BFB1917BD31A556232285846E763A14332CA68 Validity Not Before: Jun 12 23:05:56 2025 GMT Not After : Jun 19 23:05:56 2025 GMT Subject: CN=684b5d54-df82 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:5d:77:73:d2:b2:b7:7d:81:9b:7b:53:74:c5: 43:c5:0a:24:3e:a2:d2:e7:92:ee:76:b2:7d:f7:b6: 43:b9:17:b8:0b:ec:cc:77:35:a2:6c:b1:3c:83:fc: d1:f4:ab:49:91:1c:5f:e8:4d:ee:5b:e7:ef:55:9b: a1:b1:b0:72:74:de:42:97:9e:5f:9d:5d:59:c0:a7: 6c:66:fd:33:a7:80:49:1a:18:21:56:bf:9d:ba:d8: 5b:13:e7:13:c6:50:f0:7e:2c:4d:2f:db:e3:cd:f5: 78:31:fb:d8:54:23:dd:35:94:ee:4f:cb:57:bc:4e: c0:25:a1:62:97:79:dd:89:c3:e2:8a:b3:c3:9b:04: 45:63:aa:95:53:0f:c9:42:d0:9c:c7:84:d0:47:e4: 3b:90:bf:08:3e:9d:dd:0c:c5:fc:d3:e6:55:03:fb: 6d:1f:18:0b:2d:26:ac:45:7b:a2:2e:bc:af:d2:ac: d1:a0:f6:e6:73:11:71:82:42:a5:85:f0:d2:c8:09: 7b:8c:83:bd:da:02:fa:85:71:00:4c:cc:2a:c8:ec: 5e:f6:c6:db:b4:44:d2:c8:16:86:21:85:b4:4c:b2: 2d:ac:b1:9e:00:52:86:21:33:43:64:df:69:de:56: 97:e6:11:78:d7:46:71:3f:0e:55:a7:1f:a8:6b:8a: 12:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:54:9E:9F:2C:45:3F:4A:37:BC:64:49:00:21:2B:E3:F0:9B:69:BC X509v3 Authority Key Identifier: keyid:B6:BF:B1:91:7B:D3:1A:55:62:32:28:58:46:E7:63:A1:43:32:CA:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A6E4D/D3CC0D64FB4611EBA7661839C4F9AE02/tr-xkXvTGlViMihYRudjoUMyymg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tr-xkXvTGlViMihYRudjoUMyymg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A6E4D/D3CC0D64FB4611EBA7661839C4F9AE02/tr-xkXvTGlViMihYRudjoUMyymg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 97:94:4f:4f:97:f7:1a:72:e1:c1:85:0a:c3:39:81:8b:b5:41: cc:de:ca:0e:d4:e9:a6:79:ee:9c:9d:3d:e4:6f:a4:5b:c4:c8: c8:ef:90:aa:c1:95:d6:af:ca:98:0d:ea:3e:f4:58:e0:59:a1: 3f:c3:0e:e9:75:64:66:f2:3c:8b:5e:c1:2c:f0:1e:7b:67:d9: 5d:7b:3f:4f:6d:10:b2:11:3b:cf:9c:66:6c:73:a9:43:d9:56: 58:de:3e:ce:19:45:54:c5:56:09:19:e2:a7:11:55:53:36:d9: a5:2c:fc:89:e6:97:4f:87:5b:ab:ad:3b:f2:f3:ab:2b:be:b4: 72:4f:aa:d2:34:cd:51:49:11:b0:8d:e7:a0:0c:0d:1a:43:dd: d9:74:f7:a7:25:b0:ed:5a:2d:61:e2:0d:45:db:e5:ca:b5:b2: d4:f8:22:6b:75:38:84:a4:4d:06:e7:a7:09:72:f3:3b:f1:80: 0b:8e:be:5d:dc:71:57:36:39:05:1d:23:4f:1f:29:f8:7f:53: 29:79:f8:22:ac:74:59:ef:29:e5:2d:7e:a3:2c:e8:8a:97:3d: 62:f0:e6:1e:c7:d3:5d:f4:c5:81:fa:e4:11:98:c8:19:e2:cf: ed:4d:ce:49:78:88:f1:87:bb:d3:7e:7f:72:de:d1:8e:bf:3f: 49:36:00:6c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBTEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTZFNEQxMTAvBgNVBAUTKEI2QkZCMTkxN0JEMzFBNTU2MjMyMjg1ODQ2RTc2M0Ex NDMzMkNBNjgwHhcNMjUwNjEyMjMwNTU2WhcNMjUwNjE5MjMwNTU2WjAYMRYwFAYD VQQDEw02ODRiNWQ1NC1kZjgyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzF13c9Kyt32Bm3tTdMVDxQokPqLS55LudrJ997ZDuRe4C+zMdzWibLE8g/zR 9KtJkRxf6E3uW+fvVZuhsbBydN5Cl55fnV1ZwKdsZv0zp4BJGhghVr+duthbE+cT xlDwfixNL9vjzfV4MfvYVCPdNZTuT8tXvE7AJaFil3ndicPiirPDmwRFY6qVUw/J QtCcx4TQR+Q7kL8IPp3dDMX80+ZVA/ttHxgLLSasRXuiLryv0qzRoPbmcxFxgkKl hfDSyAl7jIO92gL6hXEATMwqyOxe9sbbtETSyBaGIYW0TLItrLGeAFKGITNDZN9p 3laX5hF410ZxPw5Vpx+oa4oSnQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFdUnp8s RT9KN7xkSQAhK+Pwm2m8MB8GA1UdIwQYMBaAFLa/sZF70xpVYjIoWEbnY6FDMspo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNkU0RC9EM0NDMEQ2NEZC NDYxMUVCQTc2NjE4MzlDNEY5QUUwMi90ci14a1h2VEdsVmlNaWhZUnVkam9VTXl5 bWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RyLXhrWHZUR2xWaU1paFlSdWRqb1VNeXltZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NkU0RC9EM0NDMEQ2NEZCNDYxMUVCQTc2NjE4MzlDNEY5QUUwMi90ci14a1h2VEds VmlNaWhZUnVkam9VTXl5bWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCXlE9Pl/cacuHBhQrDOYGLtUHM3soO1Ommee6cnT3kb6RbxMjI75Cq wZXWr8qYDeo+9FjgWaE/ww7pdWRm8jyLXsEs8B57Z9ldez9PbRCyETvPnGZsc6lD 2VZY3j7OGUVUxVYJGeKnEVVTNtmlLPyJ5pdPh1urrTvy86srvrRyT6rSNM1RSRGw jeegDA0aQ93ZdPenJbDtWi1h4g1F2+XKtbLU+CJrdTiEpE0G56cJcvM78YALjr5d 3HFXNjkFHSNPHyn4f1MpefgirHRZ7ynlLX6jLOiKlz1i8OYex9Nd9MWB+uQRmMgZ 4s/tTc5JeIjxh7vTfn9y3tGOvz9JNgBs -----END CERTIFICATE-----Generated at Sat Jun 14 18:52:15 2025 by rpki-client