$ rpki-client -vvf rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/TK4677Gsir3bmbzO5PpakW0VezQ.mft File: TK4677Gsir3bmbzO5PpakW0VezQ.mft (raw, json) Hash identifier: MdvS3bFfPd+kAkRJjfta1gRsC+EyVWr2L1lqujKRusE= Subject key identifier: C8:3E:C0:C8:59:BC:2E:E6:31:E9:19:72:99:D5:F0:18:86:04:FD:2F Authority key identifier: 4C:AE:3A:EF:B1:AC:8A:BD:DB:99:BC:CE:E4:FA:5A:91:6D:15:7B:34 Certificate issuer: /CN=A91B5D7E/serialNumber=4CAE3AEFB1AC8ABDDB99BCCEE4FA5A916D157B34 Certificate serial: 3647 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TK4677Gsir3bmbzO5PpakW0VezQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/TK4677Gsir3bmbzO5PpakW0VezQ.mft Manifest number: 356A Signing time: Fri 08 Aug 2025 14:30:25 +0000 Manifest this update: Fri 08 Aug 2025 14:30:25 +0000 Manifest next update: Fri 15 Aug 2025 14:30:25 +0000 Files and hashes: 1: TK4677Gsir3bmbzO5PpakW0VezQ.crl (hash: S6vedBWZHE+lkSvuGMSls495UqH9w/FXNrsPXNwHzKg=) 2: D166652A072211EF9AC24D5BC4F9AE02.roa (hash: RL1lTbOt6Av5nEYA4DHBlIKK0hqxvZRiBkpLy29xghs=) 3: 8FD552C071F111F0AE49323FC4F9AE02.roa (hash: k0XECPDgxEsPxo1hnPOQ8t+HVImApkPuGWwQ5OUwJvs=) 4: 945922AECEBA11EDBBFD9E28C4F9AE02.roa (hash: 2rH+VWOcuPOah5bNHP9sMT7gm/W2BD5Lz0whslurntk=) 5: 24D7D74C978011EE87BB7D53C4F9AE02.roa (hash: CuyEAz/Z+ba3st2KGZYRh65vVcO9Be9AbPEfcjuGd9k=) 6: 31D56A8E06C711EF9A0E1D0AC4F9AE02.roa (hash: Yqwo5M588Yfv+JXGuvZtKg0Gtdf+iGVakUUN+3KDHdo=) 7: CE997E2EEA9B11EFA6A3D730C4F9AE02.roa (hash: uN0e+cUzXR0q+zRv9FKfvDWSlrjYXQb/CNzmut03rlU=) 8: D630A6B206D511EFB6CFDF2DC4F9AE02.roa (hash: oGdV623K9DaOonzZkenCae7aE6BqwAo6RdH7Y25n0b4=) 9: 4DC27210558111EF880A8679C4F9AE02.roa (hash: m1XRr2iAq+1TVgkspEslzx6eWsdA8L2B6700lAxn/d4=) 10: 4DFF14DE71F211F08D45AC42C4F9AE02.roa (hash: gBF3Jk34am1InKRIBH9CrloJz67l7rFKCD8FkbkPjyM=) 11: E83E047071F111F0BBD1B63FC4F9AE02.roa (hash: vqgqViMpJQbvpRF0eRLHvKsvOmM8OQ5c7Ho2iOiRHUM=) 12: 4B2AFD54ABA611EEA4B59A6AC4F9AE02.roa (hash: 92OU291hR0YIYqWJJIcvZXszn84NKrAjVspQkxjVbEI=) 13: 77D96D4A4F3411EFBA0A2659C4F9AE02.roa (hash: ol23eWYMbqFxa7AzTOzpz7Em2i4wKmL7cxMptLBFr00=) 14: 8FF00754732F11EE90078C13C4F9AE02.roa (hash: FvhGoDcJkl/uVyMeuA2e84lQ0fEQXKW9fiAoOj29wy4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/TK4677Gsir3bmbzO5PpakW0VezQ.crl rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/TK4677Gsir3bmbzO5PpakW0VezQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TK4677Gsir3bmbzO5PpakW0VezQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13895 (0x3647) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B5D7E, serialNumber=4CAE3AEFB1AC8ABDDB99BCCEE4FA5A916D157B34 Validity Not Before: Aug 8 14:30:25 2025 GMT Not After : Aug 15 14:30:25 2025 GMT Subject: CN=68960a01-08ec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:7b:aa:7e:bc:cb:b9:1b:95:46:a4:d6:3d:e9: 40:14:f1:0c:eb:82:9d:88:8a:62:f9:0b:a9:a6:ac: 2c:ca:9b:ea:e8:7a:08:3a:c5:ad:bf:6a:b0:8a:b5: 10:e3:ae:c1:db:a2:60:ea:04:4d:11:6d:61:18:a8: 59:b2:d3:33:58:61:b0:70:1e:91:a8:a4:0a:34:47: 38:22:b6:a8:df:3d:1a:a6:10:9c:44:7a:3e:26:d7: c1:4d:b5:0e:b7:da:63:37:e2:15:ab:5f:d2:0d:85: 22:d1:d0:c5:32:fc:4a:5e:e6:49:ee:05:37:3d:e8: 90:7d:bd:6c:a8:f1:5b:52:ae:99:4c:38:5f:e8:ca: 8a:5e:e5:76:be:2f:cc:f7:e1:0d:90:4a:75:5a:04: b8:19:d9:f5:1b:9c:34:4b:48:1c:16:29:08:6f:a8: 5f:06:5e:89:2b:96:b4:89:8e:59:0e:e6:05:76:02: 8c:cf:dc:33:d9:ba:d6:13:e9:e0:e5:8f:78:d1:74: 76:3d:2c:68:ba:9d:d6:16:32:f2:eb:90:5a:00:20: 8a:44:53:d5:1a:44:cf:89:0a:c5:6b:6f:25:b2:5b: 3f:98:60:40:5e:b3:72:2b:b5:00:be:7f:21:20:93: 2c:74:71:d4:d3:24:75:3c:de:ee:2e:b4:cd:78:38: b7:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:3E:C0:C8:59:BC:2E:E6:31:E9:19:72:99:D5:F0:18:86:04:FD:2F X509v3 Authority Key Identifier: keyid:4C:AE:3A:EF:B1:AC:8A:BD:DB:99:BC:CE:E4:FA:5A:91:6D:15:7B:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/TK4677Gsir3bmbzO5PpakW0VezQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TK4677Gsir3bmbzO5PpakW0VezQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/TK4677Gsir3bmbzO5PpakW0VezQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 64:d6:12:d7:ae:99:54:3e:9f:e0:88:c9:3c:ab:59:66:4e:e6: c2:c1:56:3d:ed:1d:8f:15:a0:c3:91:0a:6e:86:dc:7c:52:3e: 21:a0:05:61:f1:41:21:a8:61:d5:5e:a0:cb:ce:67:9a:07:1d: 5c:ad:6c:5a:a1:2d:44:3e:22:35:33:3d:b6:51:79:5d:9d:31: 64:fc:44:5c:a8:82:b9:63:c7:22:b2:58:3b:d7:73:05:1a:a6: 91:66:c8:e5:85:f9:bb:84:22:a7:8d:17:fe:cd:fc:99:43:16: b9:6f:83:5a:f0:63:f6:7c:ad:6d:c7:33:8a:b0:4a:03:ac:a6: fa:ee:aa:1d:c1:8c:9e:99:36:f0:90:c1:04:a6:d3:48:4d:b2: 97:2c:5b:4a:bb:bd:2a:f1:e0:1f:3b:c7:15:34:50:3f:d4:ff: f7:5b:3b:c8:73:dd:21:88:86:d6:41:91:3f:9b:5b:a7:2c:93: 0c:c0:8e:93:d9:d1:67:93:f2:76:7c:52:37:38:b5:39:b2:cb: 42:ae:f8:34:06:fd:dc:22:35:4d:89:78:6d:59:95:c8:c9:79: 04:c4:55:c4:2e:a3:c1:ff:49:da:f8:c7:a3:6c:ea:69:6d:61: fe:e6:19:7e:63:cb:b0:07:08:ca:a7:fa:46:aa:03:6b:60:f2: fb:e6:d9:35 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNkcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjVEN0UxMTAvBgNVBAUTKDRDQUUzQUVGQjFBQzhBQkREQjk5QkNDRUU0RkE1QTkx NkQxNTdCMzQwHhcNMjUwODA4MTQzMDI1WhcNMjUwODE1MTQzMDI1WjAYMRYwFAYD VQQDEw02ODk2MGEwMS0wOGVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA33uqfrzLuRuVRqTWPelAFPEM64KdiIpi+Quppqwsypvq6HoIOsWtv2qwirUQ 467B26Jg6gRNEW1hGKhZstMzWGGwcB6RqKQKNEc4Irao3z0aphCcRHo+JtfBTbUO t9pjN+IVq1/SDYUi0dDFMvxKXuZJ7gU3PeiQfb1sqPFbUq6ZTDhf6MqKXuV2vi/M 9+ENkEp1WgS4Gdn1G5w0S0gcFikIb6hfBl6JK5a0iY5ZDuYFdgKMz9wz2brWE+ng 5Y940XR2PSxoup3WFjLy65BaACCKRFPVGkTPiQrFa28lsls/mGBAXrNyK7UAvn8h IJMsdHHU0yR1PN7uLrTNeDi37QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMg+wMhZ vC7mMekZcpnV8BiGBP0vMB8GA1UdIwQYMBaAFEyuOu+xrIq925m8zuT6WpFtFXs0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNUQ3RS9FQ0E2ODIzNDFE ODcxMUUyOTgzMjJERTAwOEIwMkNEMi9USzQ2NzdHc2lyM2JtYnpPNVBwYWtXMFZl elEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RLNDY3N0dzaXIzYm1iek81UHBha1cwVmV6US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NUQ3RS9FQ0E2ODIzNDFEODcxMUUyOTgzMjJERTAwOEIwMkNEMi9USzQ2NzdHc2ly M2JtYnpPNVBwYWtXMFZlelEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBk1hLXrplUPp/giMk8q1lmTubCwVY97R2PFaDDkQpuhtx8Uj4hoAVh 8UEhqGHVXqDLzmeaBx1crWxaoS1EPiI1Mz22UXldnTFk/ERcqIK5Y8cislg713MF GqaRZsjlhfm7hCKnjRf+zfyZQxa5b4Na8GP2fK1txzOKsEoDrKb67qodwYyemTbw kMEEptNITbKXLFtKu70q8eAfO8cVNFA/1P/3WzvIc90hiIbWQZE/m1unLJMMwI6T 2dFnk/J2fFI3OLU5sstCrvg0Bv3cIjVNiXhtWZXIyXkExFXELqPB/0na+MejbOpp bWH+5hl+Y8uwBwjKp/pGqgNrYPL75tk1 -----END CERTIFICATE-----Generated at Sat Aug 9 02:45:26 2025 by rpki-client