$ rpki-client -vvf rpki.apnic.net/member_repository/A91BAE17/445EE09458BD11E49383AB76C4F9AE02/tksRCOmO7If7awwovgFkXHCLSsU.mft File: tksRCOmO7If7awwovgFkXHCLSsU.mft (raw, json) Hash identifier: jIiIPW1VJB+r9tdeHLeb1OO1NM9OAp1Au03U2l+5VoE= Subject key identifier: FA:49:0B:8F:71:51:7E:62:19:05:6E:D7:5A:3A:82:14:7F:9C:E7:EC Authority key identifier: B6:4B:11:08:E9:8E:EC:87:FB:6B:0C:28:BE:01:64:5C:70:8B:4A:C5 Certificate issuer: /CN=A91BAE17/serialNumber=B64B1108E98EEC87FB6B0C28BE01645C708B4AC5 Certificate serial: 2960 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tksRCOmO7If7awwovgFkXHCLSsU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BAE17/445EE09458BD11E49383AB76C4F9AE02/tksRCOmO7If7awwovgFkXHCLSsU.mft Manifest number: 294B Signing time: Sat 14 Jun 2025 15:34:49 +0000 Manifest this update: Sat 14 Jun 2025 15:34:49 +0000 Manifest next update: Sat 21 Jun 2025 15:34:49 +0000 Files and hashes: 1: tksRCOmO7If7awwovgFkXHCLSsU.crl (hash: pi8heZ4v1frunAdHbnDkycp0pN66wytkDVdRCYXL+KU=) 2: 98845C5C54EC11E791C3F825C4F9AE02.roa (hash: XWmzI2yeMf3apt5DHsKgv60jONcTAI6E+TZgl5OMpW8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BAE17/445EE09458BD11E49383AB76C4F9AE02/tksRCOmO7If7awwovgFkXHCLSsU.crl rsync://rpki.apnic.net/member_repository/A91BAE17/445EE09458BD11E49383AB76C4F9AE02/tksRCOmO7If7awwovgFkXHCLSsU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tksRCOmO7If7awwovgFkXHCLSsU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 15:34:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10592 (0x2960) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BAE17, serialNumber=B64B1108E98EEC87FB6B0C28BE01645C708B4AC5 Validity Not Before: Jun 14 15:34:49 2025 GMT Not After : Jun 21 15:34:49 2025 GMT Subject: CN=684d9699-dd3e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:a5:6b:88:69:e9:de:be:6e:e8:b3:ff:38:28: fb:1b:46:7e:29:67:95:d1:5c:46:3b:7c:8f:c1:9b: d0:ca:64:d6:39:14:9c:84:e7:26:2f:ab:9b:1c:58: f9:94:d6:f0:6e:14:b9:b2:70:d9:31:f8:24:2f:f0: 65:69:ce:b4:1b:33:ba:04:6d:54:ed:58:f4:1b:2c: d6:78:a8:28:c8:86:a8:6e:49:ce:49:b5:0e:91:c2: d7:43:e4:66:c9:21:44:4d:7c:82:ed:7c:f5:31:1c: fe:00:41:b1:a6:90:f5:55:af:4b:76:cb:4e:eb:95: 08:63:4a:48:a4:63:0f:6c:29:ef:22:05:f9:bf:23: 38:16:84:cb:80:99:21:26:21:38:c6:b5:b0:c2:ba: c1:7e:87:f5:ba:67:f0:f4:a7:e9:17:79:bb:41:26: 84:85:73:f1:72:35:1b:9c:63:52:0c:fe:1b:c6:e4: 96:eb:52:41:af:c1:9f:6a:2c:74:13:a3:ff:e6:33: 7d:88:a2:ca:60:f7:6f:7b:89:b5:b0:4d:cb:a8:a6: ce:6e:c5:51:3b:b3:82:28:cc:ed:38:ea:e6:84:50: 20:40:19:4f:ac:6e:27:07:be:e7:68:98:2d:dd:bc: 5d:c0:e6:8d:2f:5b:b4:d8:f9:88:09:50:fb:9e:0f: d2:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:49:0B:8F:71:51:7E:62:19:05:6E:D7:5A:3A:82:14:7F:9C:E7:EC X509v3 Authority Key Identifier: keyid:B6:4B:11:08:E9:8E:EC:87:FB:6B:0C:28:BE:01:64:5C:70:8B:4A:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BAE17/445EE09458BD11E49383AB76C4F9AE02/tksRCOmO7If7awwovgFkXHCLSsU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tksRCOmO7If7awwovgFkXHCLSsU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BAE17/445EE09458BD11E49383AB76C4F9AE02/tksRCOmO7If7awwovgFkXHCLSsU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9b:ca:2f:2d:54:51:c6:d1:2a:61:4a:50:34:02:4c:83:0b:50: 50:ef:b7:0f:c8:1b:0b:8f:d2:ed:6e:e6:33:d8:19:58:7c:41: 4b:05:d0:67:da:f0:74:d9:1b:7a:0f:c0:72:b8:55:f9:e6:2b: d2:fc:94:b0:da:a1:0a:ed:0a:54:7d:00:bf:c2:bf:73:bb:19: 4d:34:b4:35:69:b8:34:c4:47:e6:86:ca:39:3f:a4:f8:f2:0d: 31:7e:a5:ba:72:17:a7:d0:30:89:c7:f6:29:50:42:e6:1d:a5: 93:19:9c:92:5d:5f:ac:7f:d4:c3:e1:91:a2:aa:df:2a:0e:95: 3b:16:a1:51:14:1e:34:c6:d4:ab:31:6f:b7:5c:c1:57:dd:bf: 65:7d:46:c9:a6:cd:d3:c7:0b:06:33:a6:41:ff:02:5d:35:c1: e6:c6:b8:4c:8a:9e:e5:3e:ad:34:3d:b7:40:33:0b:4b:64:97: 66:2c:56:5a:10:18:dc:e3:b2:4b:ee:3e:9d:04:8b:40:e6:25: d9:b1:ee:43:a6:d7:7f:28:b6:01:3e:6c:9a:0c:b5:89:b3:52: a2:7a:70:bf:2c:03:26:3c:e3:26:0f:fa:c3:12:52:cd:9b:21: b6:bd:1e:f9:40:6c:6e:85:51:40:d2:9f:05:93:b9:4a:9a:de: 7d:34:d0:cd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICKWAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkFFMTcxMTAvBgNVBAUTKEI2NEIxMTA4RTk4RUVDODdGQjZCMEMyOEJFMDE2NDVD NzA4QjRBQzUwHhcNMjUwNjE0MTUzNDQ5WhcNMjUwNjIxMTUzNDQ5WjAYMRYwFAYD VQQDEw02ODRkOTY5OS1kZDNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqqVriGnp3r5u6LP/OCj7G0Z+KWeV0VxGO3yPwZvQymTWORSchOcmL6ubHFj5 lNbwbhS5snDZMfgkL/Blac60GzO6BG1U7Vj0GyzWeKgoyIaobknOSbUOkcLXQ+Rm ySFETXyC7Xz1MRz+AEGxppD1Va9LdstO65UIY0pIpGMPbCnvIgX5vyM4FoTLgJkh JiE4xrWwwrrBfof1umfw9KfpF3m7QSaEhXPxcjUbnGNSDP4bxuSW61JBr8Gfaix0 E6P/5jN9iKLKYPdve4m1sE3LqKbObsVRO7OCKMztOOrmhFAgQBlPrG4nB77naJgt 3bxdwOaNL1u02PmICVD7ng/STQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPpJC49x UX5iGQVu11o6ghR/nOfsMB8GA1UdIwQYMBaAFLZLEQjpjuyH+2sMKL4BZFxwi0rF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQUUxNy80NDVFRTA5NDU4 QkQxMUU0OTM4M0FCNzZDNEY5QUUwMi90a3NSQ09tTzdJZjdhd3dvdmdGa1hIQ0xT c1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Rrc1JDT21PN0lmN2F3d292Z0ZrWEhDTFNzVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QUUxNy80NDVFRTA5NDU4QkQxMUU0OTM4M0FCNzZDNEY5QUUwMi90a3NSQ09tTzdJ Zjdhd3dvdmdGa1hIQ0xTc1UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCbyi8tVFHG0SphSlA0AkyDC1BQ77cPyBsLj9LtbuYz2BlYfEFLBdBn 2vB02Rt6D8ByuFX55ivS/JSw2qEK7QpUfQC/wr9zuxlNNLQ1abg0xEfmhso5P6T4 8g0xfqW6chen0DCJx/YpUELmHaWTGZySXV+sf9TD4ZGiqt8qDpU7FqFRFB40xtSr MW+3XMFX3b9lfUbJps3TxwsGM6ZB/wJdNcHmxrhMip7lPq00PbdAMwtLZJdmLFZa EBjc47JL7j6dBItA5iXZse5Dptd/KLYBPmyaDLWJs1KienC/LAMmPOMmD/rDElLN myG2vR75QGxuhVFA0p8Fk7lKmt59NNDN -----END CERTIFICATE-----Generated at Sat Jun 14 19:23:42 2025 by rpki-client