$ rpki-client -vvf rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/TK4677Gsir3bmbzO5PpakW0VezQ.mft File: TK4677Gsir3bmbzO5PpakW0VezQ.mft (raw, json) Hash identifier: r4EdKEmDQq9VIDyteeVGs5glCYN+U6kntpiAoRUXOMM= Subject key identifier: 76:3F:88:9E:70:10:F3:D8:2F:D9:80:9A:90:E7:2F:D6:A1:D3:68:01 Authority key identifier: 4C:AE:3A:EF:B1:AC:8A:BD:DB:99:BC:CE:E4:FA:5A:91:6D:15:7B:34 Certificate issuer: /CN=A91B5D7E/serialNumber=4CAE3AEFB1AC8ABDDB99BCCEE4FA5A916D157B34 Certificate serial: 3624 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TK4677Gsir3bmbzO5PpakW0VezQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/TK4677Gsir3bmbzO5PpakW0VezQ.mft Manifest number: 354B Signing time: Sat 14 Jun 2025 14:28:55 +0000 Manifest this update: Sat 14 Jun 2025 14:28:55 +0000 Manifest next update: Sat 21 Jun 2025 14:28:55 +0000 Files and hashes: 1: TK4677Gsir3bmbzO5PpakW0VezQ.crl (hash: DwbmAc84HfoZQlCcs9TFFKliSWpblNZD8sDs9dYX7J8=) 2: D166652A072211EF9AC24D5BC4F9AE02.roa (hash: RL1lTbOt6Av5nEYA4DHBlIKK0hqxvZRiBkpLy29xghs=) 3: 945922AECEBA11EDBBFD9E28C4F9AE02.roa (hash: 2rH+VWOcuPOah5bNHP9sMT7gm/W2BD5Lz0whslurntk=) 4: 24D7D74C978011EE87BB7D53C4F9AE02.roa (hash: CuyEAz/Z+ba3st2KGZYRh65vVcO9Be9AbPEfcjuGd9k=) 5: 31D56A8E06C711EF9A0E1D0AC4F9AE02.roa (hash: Yqwo5M588Yfv+JXGuvZtKg0Gtdf+iGVakUUN+3KDHdo=) 6: CE997E2EEA9B11EFA6A3D730C4F9AE02.roa (hash: uN0e+cUzXR0q+zRv9FKfvDWSlrjYXQb/CNzmut03rlU=) 7: DCD7F756048411F095177229C4F9AE02.roa (hash: PJnt80PstBsPu+Je/uk2L+eWT12a7ahlhHYmODLLA84=) 8: D630A6B206D511EFB6CFDF2DC4F9AE02.roa (hash: oGdV623K9DaOonzZkenCae7aE6BqwAo6RdH7Y25n0b4=) 9: 4DC27210558111EF880A8679C4F9AE02.roa (hash: m1XRr2iAq+1TVgkspEslzx6eWsdA8L2B6700lAxn/d4=) 10: C6A44358F43111EFB70DAE63C4F9AE02.roa (hash: ktcmSqDTgXbj3lIVA2eR8cEJTJL4lajyKd+nAAjV9WI=) 11: 4B2AFD54ABA611EEA4B59A6AC4F9AE02.roa (hash: 92OU291hR0YIYqWJJIcvZXszn84NKrAjVspQkxjVbEI=) 12: 77D96D4A4F3411EFBA0A2659C4F9AE02.roa (hash: ol23eWYMbqFxa7AzTOzpz7Em2i4wKmL7cxMptLBFr00=) 13: 8FF00754732F11EE90078C13C4F9AE02.roa (hash: FvhGoDcJkl/uVyMeuA2e84lQ0fEQXKW9fiAoOj29wy4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/TK4677Gsir3bmbzO5PpakW0VezQ.crl rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/TK4677Gsir3bmbzO5PpakW0VezQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TK4677Gsir3bmbzO5PpakW0VezQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 14:28:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13860 (0x3624) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B5D7E, serialNumber=4CAE3AEFB1AC8ABDDB99BCCEE4FA5A916D157B34 Validity Not Before: Jun 14 14:28:55 2025 GMT Not After : Jun 21 14:28:55 2025 GMT Subject: CN=684d8727-5cac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:62:d5:22:f5:69:fb:06:cb:f3:4e:e6:6e:29: 64:6d:fd:5b:f6:b7:a4:0d:e1:59:f6:9b:ce:4c:9e: 11:b8:64:f2:80:7e:0b:54:41:9f:ca:c6:5c:a0:b6: 21:50:40:de:43:de:38:03:ce:0f:c9:b1:98:14:ff: e0:4d:dc:85:4a:6a:18:2d:27:9f:aa:19:b2:77:7e: 71:11:f7:03:f3:98:c0:c9:f1:bd:cc:c0:0a:10:2c: b6:db:4c:05:13:69:7d:46:ba:db:c9:81:3e:61:77: 65:78:1b:22:4e:46:d8:7f:bd:1e:03:63:21:04:72: 1c:26:2d:60:f3:bc:ba:39:1c:f8:c7:ed:e3:5a:78: eb:9f:eb:57:88:18:b4:2e:c8:23:be:75:e2:4f:0e: 3b:14:87:01:e0:01:1b:3b:a8:20:4d:b9:d9:03:f3: 0a:96:83:1a:b2:a2:13:11:1a:15:69:47:a0:04:7d: bb:12:e1:1f:e5:72:29:cc:0e:ce:d5:50:f5:45:e1: 9e:2d:44:ff:01:4c:4f:81:6b:30:f4:0a:0f:ae:8b: 03:4d:fe:e3:ce:4a:b0:46:5f:60:16:b5:05:8a:3c: 2f:c6:5a:b1:87:bc:b5:4c:f7:86:f6:50:2f:99:d5: 81:62:14:2d:ae:ff:68:48:93:f2:d4:af:6d:ba:dc: b5:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:3F:88:9E:70:10:F3:D8:2F:D9:80:9A:90:E7:2F:D6:A1:D3:68:01 X509v3 Authority Key Identifier: keyid:4C:AE:3A:EF:B1:AC:8A:BD:DB:99:BC:CE:E4:FA:5A:91:6D:15:7B:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/TK4677Gsir3bmbzO5PpakW0VezQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TK4677Gsir3bmbzO5PpakW0VezQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/TK4677Gsir3bmbzO5PpakW0VezQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0e:b2:03:8b:d9:b1:f0:2c:d5:f6:21:17:6a:da:87:7c:73:b5: cd:dd:09:ce:1a:8a:bb:02:3c:6f:d7:33:93:a6:fa:07:c8:29: 4c:ef:9f:ee:ee:33:56:2c:e5:65:8f:55:36:b7:eb:f2:6a:97: 68:87:0a:c3:5d:d9:de:c3:2b:40:25:c9:5f:56:98:59:f9:94: 9b:b5:59:53:a6:cb:1b:8a:1c:9d:dd:2b:4c:3f:d5:89:9a:b6: 57:4f:3f:66:8c:75:6b:27:40:cc:d2:de:9e:e8:f1:b2:2a:12: 69:a3:91:86:12:57:9a:35:5b:45:02:7d:f2:76:bc:d9:29:df: 9f:2e:e3:22:bf:e9:ca:60:26:79:6e:cb:3e:e8:4c:5b:e6:a1: 85:9f:70:bb:b9:04:ff:c2:f4:1b:4b:fe:b3:7b:96:5a:26:71: d1:fa:ab:73:0c:33:2d:67:d2:d7:5e:e0:e3:3a:52:b5:a3:b8: 0d:90:d5:73:38:cc:5e:fe:74:2b:de:51:2d:d4:09:2d:06:65: bf:cd:da:03:f7:02:45:11:c8:c8:e5:ea:e9:2c:5a:0e:3f:11: ba:10:fc:a5:3e:79:2e:06:d4:30:f2:93:8b:30:da:b2:31:0f: be:8b:c5:d9:ba:2f:a6:13:0f:69:81:28:91:db:c7:2d:2b:dd: 40:56:05:60 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNiQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjVEN0UxMTAvBgNVBAUTKDRDQUUzQUVGQjFBQzhBQkREQjk5QkNDRUU0RkE1QTkx NkQxNTdCMzQwHhcNMjUwNjE0MTQyODU1WhcNMjUwNjIxMTQyODU1WjAYMRYwFAYD VQQDEw02ODRkODcyNy01Y2FjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvWLVIvVp+wbL807mbilkbf1b9rekDeFZ9pvOTJ4RuGTygH4LVEGfysZcoLYh UEDeQ944A84PybGYFP/gTdyFSmoYLSefqhmyd35xEfcD85jAyfG9zMAKECy220wF E2l9RrrbyYE+YXdleBsiTkbYf70eA2MhBHIcJi1g87y6ORz4x+3jWnjrn+tXiBi0 LsgjvnXiTw47FIcB4AEbO6ggTbnZA/MKloMasqITERoVaUegBH27EuEf5XIpzA7O 1VD1ReGeLUT/AUxPgWsw9AoProsDTf7jzkqwRl9gFrUFijwvxlqxh7y1TPeG9lAv mdWBYhQtrv9oSJPy1K9tuty1SQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHY/iJ5w EPPYL9mAmpDnL9ah02gBMB8GA1UdIwQYMBaAFEyuOu+xrIq925m8zuT6WpFtFXs0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNUQ3RS9FQ0E2ODIzNDFE ODcxMUUyOTgzMjJERTAwOEIwMkNEMi9USzQ2NzdHc2lyM2JtYnpPNVBwYWtXMFZl elEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RLNDY3N0dzaXIzYm1iek81UHBha1cwVmV6US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NUQ3RS9FQ0E2ODIzNDFEODcxMUUyOTgzMjJERTAwOEIwMkNEMi9USzQ2NzdHc2ly M2JtYnpPNVBwYWtXMFZlelEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAOsgOL2bHwLNX2IRdq2od8c7XN3QnOGoq7Ajxv1zOTpvoHyClM75/u 7jNWLOVlj1U2t+vyapdohwrDXdnewytAJclfVphZ+ZSbtVlTpssbihyd3StMP9WJ mrZXTz9mjHVrJ0DM0t6e6PGyKhJpo5GGEleaNVtFAn3ydrzZKd+fLuMiv+nKYCZ5 bss+6Exb5qGFn3C7uQT/wvQbS/6ze5ZaJnHR+qtzDDMtZ9LXXuDjOlK1o7gNkNVz OMxe/nQr3lEt1AktBmW/zdoD9wJFEcjI5erpLFoOPxG6EPylPnkuBtQw8pOLMNqy MQ++i8XZui+mEw9pgSiR28ctK91AVgVg -----END CERTIFICATE-----Generated at Sat Jun 14 19:04:41 2025 by rpki-client