$ rpki-client -vvf rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/TK4677Gsir3bmbzO5PpakW0VezQ.mft File: TK4677Gsir3bmbzO5PpakW0VezQ.mft (raw, json) Hash identifier: 12kqlWXRt/UYKCoh5cVOBpY6wMTp+n/TqkifpYjk/V0= Subject key identifier: B2:12:8A:49:B1:9A:BE:66:B8:38:EB:CE:33:44:30:6A:40:81:E7:95 Authority key identifier: 4C:AE:3A:EF:B1:AC:8A:BD:DB:99:BC:CE:E4:FA:5A:91:6D:15:7B:34 Certificate issuer: /CN=A91B5D7E/serialNumber=4CAE3AEFB1AC8ABDDB99BCCEE4FA5A916D157B34 Certificate serial: 360A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TK4677Gsir3bmbzO5PpakW0VezQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/TK4677Gsir3bmbzO5PpakW0VezQ.mft Manifest number: 3531 Signing time: Thu 24 Apr 2025 14:28:50 +0000 Manifest this update: Thu 24 Apr 2025 14:28:50 +0000 Manifest next update: Thu 01 May 2025 14:28:50 +0000 Files and hashes: 1: TK4677Gsir3bmbzO5PpakW0VezQ.crl (hash: megJN84m8I92zq4+kz4omjhywnXpB5FvBy/n8ugd9nU=) 2: D166652A072211EF9AC24D5BC4F9AE02.roa (hash: RL1lTbOt6Av5nEYA4DHBlIKK0hqxvZRiBkpLy29xghs=) 3: 945922AECEBA11EDBBFD9E28C4F9AE02.roa (hash: 2rH+VWOcuPOah5bNHP9sMT7gm/W2BD5Lz0whslurntk=) 4: 24D7D74C978011EE87BB7D53C4F9AE02.roa (hash: CuyEAz/Z+ba3st2KGZYRh65vVcO9Be9AbPEfcjuGd9k=) 5: 31D56A8E06C711EF9A0E1D0AC4F9AE02.roa (hash: Yqwo5M588Yfv+JXGuvZtKg0Gtdf+iGVakUUN+3KDHdo=) 6: CE997E2EEA9B11EFA6A3D730C4F9AE02.roa (hash: uN0e+cUzXR0q+zRv9FKfvDWSlrjYXQb/CNzmut03rlU=) 7: DCD7F756048411F095177229C4F9AE02.roa (hash: PJnt80PstBsPu+Je/uk2L+eWT12a7ahlhHYmODLLA84=) 8: D630A6B206D511EFB6CFDF2DC4F9AE02.roa (hash: oGdV623K9DaOonzZkenCae7aE6BqwAo6RdH7Y25n0b4=) 9: 4DC27210558111EF880A8679C4F9AE02.roa (hash: m1XRr2iAq+1TVgkspEslzx6eWsdA8L2B6700lAxn/d4=) 10: C6A44358F43111EFB70DAE63C4F9AE02.roa (hash: ktcmSqDTgXbj3lIVA2eR8cEJTJL4lajyKd+nAAjV9WI=) 11: 4B2AFD54ABA611EEA4B59A6AC4F9AE02.roa (hash: 92OU291hR0YIYqWJJIcvZXszn84NKrAjVspQkxjVbEI=) 12: 77D96D4A4F3411EFBA0A2659C4F9AE02.roa (hash: ol23eWYMbqFxa7AzTOzpz7Em2i4wKmL7cxMptLBFr00=) 13: 8FF00754732F11EE90078C13C4F9AE02.roa (hash: FvhGoDcJkl/uVyMeuA2e84lQ0fEQXKW9fiAoOj29wy4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/TK4677Gsir3bmbzO5PpakW0VezQ.crl rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/TK4677Gsir3bmbzO5PpakW0VezQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TK4677Gsir3bmbzO5PpakW0VezQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 14:28:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13834 (0x360a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B5D7E, serialNumber=4CAE3AEFB1AC8ABDDB99BCCEE4FA5A916D157B34 Validity Not Before: Apr 24 14:28:50 2025 GMT Not After : May 1 14:28:50 2025 GMT Subject: CN=680a4aa2-d780 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:2b:eb:b0:f3:73:50:e3:d5:bb:6f:61:9c:cc: f1:55:c6:86:23:3f:ec:d9:51:a1:1e:dd:b6:65:e8: a1:ef:c0:29:ef:1a:51:18:ef:4d:6e:1f:89:9f:b2: 50:95:1b:16:26:5d:d0:bf:db:8c:32:54:53:47:91: ec:51:f4:33:e7:6e:75:b0:89:e0:d3:ec:0e:af:e4: 95:ce:86:33:fd:99:66:18:e5:ed:f3:a3:0e:1f:fd: 96:5e:aa:33:b6:c8:26:fd:31:ca:23:4e:32:52:ea: b7:d3:32:b4:39:34:92:30:b6:63:dd:5f:a0:26:ec: 55:e9:df:70:cb:d3:43:ab:2b:03:40:18:57:fb:f5: 3b:54:af:3a:77:c7:75:83:f0:b1:f7:0d:ca:10:86: 38:3b:99:be:f2:7c:72:50:97:41:6b:cb:94:25:21: bc:22:10:11:3d:ab:01:79:16:95:17:90:da:55:4e: c9:1c:9a:29:25:9e:f4:a6:1b:3b:f4:6b:dd:7e:c4: b6:b5:87:da:1f:0a:34:63:4f:b3:66:87:0f:cf:b2: 6d:35:f8:a9:82:72:90:6f:ec:6f:67:44:bf:70:e2: e8:90:d3:90:e4:ac:78:57:1d:ef:bd:0b:21:3d:ca: 9a:20:e4:7d:bf:7c:f3:36:dd:6a:dd:3e:51:66:2c: 41:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:12:8A:49:B1:9A:BE:66:B8:38:EB:CE:33:44:30:6A:40:81:E7:95 X509v3 Authority Key Identifier: keyid:4C:AE:3A:EF:B1:AC:8A:BD:DB:99:BC:CE:E4:FA:5A:91:6D:15:7B:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/TK4677Gsir3bmbzO5PpakW0VezQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TK4677Gsir3bmbzO5PpakW0VezQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/TK4677Gsir3bmbzO5PpakW0VezQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 64:df:41:85:63:4b:d8:12:99:e3:ab:a3:2f:6a:8b:90:58:1e: 97:ef:9b:14:b7:74:7a:21:02:47:df:8d:29:fc:3d:b7:00:19: 81:7c:f1:61:ec:6c:a7:73:a6:97:73:82:af:47:c7:17:43:dc: ce:57:a7:f7:35:80:99:38:04:84:d8:9e:69:28:b8:c5:1a:3f: f6:b2:e8:ca:28:86:96:da:f7:66:c6:7d:d2:2d:4c:34:2c:8d: 42:f3:33:5e:8b:62:34:7d:98:47:b4:1b:c6:74:fc:13:e7:ff: eb:2f:de:9c:83:27:e1:2d:3e:fb:b7:64:fe:f5:2a:7e:83:84: 01:3c:8a:da:73:8d:88:2d:94:36:54:85:89:68:35:16:f7:ad: e8:ea:a3:2c:1a:e0:01:45:30:7c:e4:93:ba:96:f6:cc:34:25: 07:ba:4c:e3:94:d8:a8:af:39:aa:6e:ba:0d:23:f4:7b:13:31: 66:48:77:0a:62:76:08:9a:0c:ae:77:a6:ff:36:ea:63:e4:f8: 26:a2:5c:4e:7e:e9:ac:ca:b8:ff:11:7f:c9:c9:1e:31:99:37: 5d:81:67:b7:9b:71:f8:db:bd:00:50:06:7a:f8:18:1e:dd:df: 6c:91:40:a7:24:d5:f0:24:65:c2:1f:18:06:66:51:69:2e:01: d1:3e:ad:cc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNgowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjVEN0UxMTAvBgNVBAUTKDRDQUUzQUVGQjFBQzhBQkREQjk5QkNDRUU0RkE1QTkx NkQxNTdCMzQwHhcNMjUwNDI0MTQyODUwWhcNMjUwNTAxMTQyODUwWjAYMRYwFAYD VQQDEw02ODBhNGFhMi1kNzgwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApCvrsPNzUOPVu29hnMzxVcaGIz/s2VGhHt22Zeih78Ap7xpRGO9Nbh+Jn7JQ lRsWJl3Qv9uMMlRTR5HsUfQz5251sIng0+wOr+SVzoYz/ZlmGOXt86MOH/2WXqoz tsgm/THKI04yUuq30zK0OTSSMLZj3V+gJuxV6d9wy9NDqysDQBhX+/U7VK86d8d1 g/Cx9w3KEIY4O5m+8nxyUJdBa8uUJSG8IhARPasBeRaVF5DaVU7JHJopJZ70phs7 9GvdfsS2tYfaHwo0Y0+zZocPz7JtNfipgnKQb+xvZ0S/cOLokNOQ5Kx4Vx3vvQsh PcqaIOR9v3zzNt1q3T5RZixBTQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLISikmx mr5muDjrzjNEMGpAgeeVMB8GA1UdIwQYMBaAFEyuOu+xrIq925m8zuT6WpFtFXs0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNUQ3RS9FQ0E2ODIzNDFE ODcxMUUyOTgzMjJERTAwOEIwMkNEMi9USzQ2NzdHc2lyM2JtYnpPNVBwYWtXMFZl elEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RLNDY3N0dzaXIzYm1iek81UHBha1cwVmV6US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NUQ3RS9FQ0E2ODIzNDFEODcxMUUyOTgzMjJERTAwOEIwMkNEMi9USzQ2NzdHc2ly M2JtYnpPNVBwYWtXMFZlelEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBk30GFY0vYEpnjq6MvaouQWB6X75sUt3R6IQJH340p/D23ABmBfPFh 7Gync6aXc4KvR8cXQ9zOV6f3NYCZOASE2J5pKLjFGj/2sujKKIaW2vdmxn3SLUw0 LI1C8zNei2I0fZhHtBvGdPwT5//rL96cgyfhLT77t2T+9Sp+g4QBPIrac42ILZQ2 VIWJaDUW963o6qMsGuABRTB85JO6lvbMNCUHukzjlNiorzmqbroNI/R7EzFmSHcK YnYImgyud6b/Nupj5PgmolxOfumsyrj/EX/JyR4xmTddgWe3m3H4270AUAZ6+Bge 3d9skUCnJNXwJGXCHxgGZlFpLgHRPq3M -----END CERTIFICATE-----Generated at Sat Apr 26 04:25:29 2025 by rpki-client