$ rpki-client -vvf rpki.apnic.net/member_repository/A91FC765/E5C74BAA7F8111E6898E5F45C4F9AE02/TihN8oxlIKdxEwQV85PINH1ubek.mft File: TihN8oxlIKdxEwQV85PINH1ubek.mft (raw, json) Hash identifier: ccqG0/6wSdHLmtnRoJWaLo3nVtp1BgcPCDcx6QAKXc0= Subject key identifier: 32:5E:A1:F5:03:8E:CC:D3:CE:FA:14:1A:A6:2A:7C:7D:61:5F:41:18 Authority key identifier: 4E:28:4D:F2:8C:65:20:A7:71:13:04:15:F3:93:C8:34:7D:6E:6D:E9 Certificate issuer: /CN=A91FC765/serialNumber=4E284DF28C6520A771130415F393C8347D6E6DE9 Certificate serial: 1E48 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TihN8oxlIKdxEwQV85PINH1ubek.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FC765/E5C74BAA7F8111E6898E5F45C4F9AE02/TihN8oxlIKdxEwQV85PINH1ubek.mft Manifest number: 1E3F Signing time: Sat 14 Jun 2025 16:02:12 +0000 Manifest this update: Sat 14 Jun 2025 16:02:11 +0000 Manifest next update: Sat 21 Jun 2025 16:02:11 +0000 Files and hashes: 1: TihN8oxlIKdxEwQV85PINH1ubek.crl (hash: lSqaseDyLY/ZhcujrT9+BZoiNULS0aPJn7Ni3VKzO10=) 2: 9071A5E690CB11E6A804EF84C4F9AE02.roa (hash: KE/U/8wUAW1falY4CgDPXTNiOOjIqQ1zJL90tHiSQS8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FC765/E5C74BAA7F8111E6898E5F45C4F9AE02/TihN8oxlIKdxEwQV85PINH1ubek.crl rsync://rpki.apnic.net/member_repository/A91FC765/E5C74BAA7F8111E6898E5F45C4F9AE02/TihN8oxlIKdxEwQV85PINH1ubek.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TihN8oxlIKdxEwQV85PINH1ubek.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 16:02:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7752 (0x1e48) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FC765, serialNumber=4E284DF28C6520A771130415F393C8347D6E6DE9 Validity Not Before: Jun 14 16:02:11 2025 GMT Not After : Jun 21 16:02:11 2025 GMT Subject: CN=684d9d03-ae8b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:ed:95:d8:4b:e2:c8:9b:33:24:de:c3:21:a3: 21:4f:78:c3:16:a6:d3:06:c8:06:26:20:9c:77:f4: d2:72:92:07:8b:17:f8:d7:4e:c4:40:a6:03:07:8c: b2:c7:24:fc:08:40:1e:2f:6f:13:95:87:95:03:49: c4:3f:e1:28:f7:a5:48:e2:3c:af:a8:ba:94:51:1e: a2:7f:a8:b7:80:7b:0c:0b:e1:b4:5f:67:a3:01:d5: d6:d4:7e:e2:58:0d:fb:82:60:89:cb:93:bc:fc:ef: e8:8b:85:85:a2:21:88:26:eb:a2:55:29:05:86:27: 98:c8:59:2e:17:88:4a:c0:a3:1b:fb:71:39:1d:9f: 2e:71:2f:35:a5:fc:32:37:d5:d8:f6:12:86:8f:dc: bd:3d:85:86:ed:7d:8a:a5:a4:45:f9:16:0e:55:27: 8b:c1:8b:6b:c1:39:4a:03:96:3f:8d:38:64:72:d3: aa:6b:f0:d6:d2:0d:a2:68:cb:07:b1:4e:85:f7:cc: c1:19:0c:6a:88:a5:37:ac:8e:d2:75:31:b4:a0:36: 26:12:1d:16:c3:d5:9a:de:97:fe:1d:12:07:55:17: 46:83:1f:83:0b:3b:ed:d2:86:ef:40:7f:1c:55:d4: 70:d8:34:b9:42:7c:a4:f8:43:a3:aa:50:5a:a3:6e: 03:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:5E:A1:F5:03:8E:CC:D3:CE:FA:14:1A:A6:2A:7C:7D:61:5F:41:18 X509v3 Authority Key Identifier: keyid:4E:28:4D:F2:8C:65:20:A7:71:13:04:15:F3:93:C8:34:7D:6E:6D:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FC765/E5C74BAA7F8111E6898E5F45C4F9AE02/TihN8oxlIKdxEwQV85PINH1ubek.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TihN8oxlIKdxEwQV85PINH1ubek.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FC765/E5C74BAA7F8111E6898E5F45C4F9AE02/TihN8oxlIKdxEwQV85PINH1ubek.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4e:fb:e8:71:7d:6f:b6:62:2c:21:06:78:48:f4:e8:59:98:25: e1:2e:c2:d1:1e:73:90:44:b7:b0:7b:5f:e2:1f:7d:ca:c1:d5: 79:2c:35:6d:31:07:e3:98:e0:09:00:a7:89:9c:01:84:38:b5: 07:45:08:3c:ef:42:04:17:c2:a8:6f:af:b8:68:b0:f8:d9:1c: a0:fa:3f:4e:7e:f0:e0:b7:be:5c:6c:ae:53:97:19:56:85:5c: b2:7e:84:92:e8:ee:93:11:27:a3:6d:c2:19:f4:0f:9d:7f:27: df:28:41:7d:49:44:e9:a6:c8:03:c9:31:f9:ab:0b:23:dd:fa: e1:78:91:4e:3e:da:5a:e8:ba:5b:55:78:c8:c4:36:32:65:0a: 2e:0b:a1:79:8b:aa:ee:4e:ad:7f:22:f2:3e:ba:91:3c:cd:54: ca:5c:80:46:80:79:ee:29:40:59:1e:6b:30:16:b5:89:6e:7d: e4:2a:4e:e2:25:6e:53:d1:26:3a:20:6e:fd:1a:d3:7a:9a:42: 0f:e4:db:e6:8c:a9:65:5c:33:0f:81:e4:e6:3a:68:4d:03:75: 4e:51:30:b6:3c:fd:fd:6b:26:05:99:6a:40:f4:3b:9b:80:53: 82:58:39:5d:87:fe:76:39:9c:91:f2:e8:95:17:ab:62:9c:d4: a9:6f:fb:89 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHkgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkM3NjUxMTAvBgNVBAUTKDRFMjg0REYyOEM2NTIwQTc3MTEzMDQxNUYzOTNDODM0 N0Q2RTZERTkwHhcNMjUwNjE0MTYwMjExWhcNMjUwNjIxMTYwMjExWjAYMRYwFAYD VQQDEw02ODRkOWQwMy1hZThiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0u2V2EviyJszJN7DIaMhT3jDFqbTBsgGJiCcd/TScpIHixf4107EQKYDB4yy xyT8CEAeL28TlYeVA0nEP+Eo96VI4jyvqLqUUR6if6i3gHsMC+G0X2ejAdXW1H7i WA37gmCJy5O8/O/oi4WFoiGIJuuiVSkFhieYyFkuF4hKwKMb+3E5HZ8ucS81pfwy N9XY9hKGj9y9PYWG7X2KpaRF+RYOVSeLwYtrwTlKA5Y/jThkctOqa/DW0g2iaMsH sU6F98zBGQxqiKU3rI7SdTG0oDYmEh0Ww9Wa3pf+HRIHVRdGgx+DCzvt0obvQH8c VdRw2DS5Qnyk+EOjqlBao24DHwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDJeofUD jszTzvoUGqYqfH1hX0EYMB8GA1UdIwQYMBaAFE4oTfKMZSCncRMEFfOTyDR9bm3p MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQzc2NS9FNUM3NEJBQTdG ODExMUU2ODk4RTVGNDVDNEY5QUUwMi9UaWhOOG94bElLZHhFd1FWODVQSU5IMXVi ZWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RpaE44b3hsSUtkeEV3UVY4NVBJTkgxdWJlay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG Qzc2NS9FNUM3NEJBQTdGODExMUU2ODk4RTVGNDVDNEY5QUUwMi9UaWhOOG94bElL ZHhFd1FWODVQSU5IMXViZWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBO++hxfW+2YiwhBnhI9OhZmCXhLsLRHnOQRLewe1/iH33KwdV5LDVt MQfjmOAJAKeJnAGEOLUHRQg870IEF8Kob6+4aLD42Ryg+j9OfvDgt75cbK5TlxlW hVyyfoSS6O6TESejbcIZ9A+dfyffKEF9SUTppsgDyTH5qwsj3frheJFOPtpa6Lpb VXjIxDYyZQouC6F5i6ruTq1/IvI+upE8zVTKXIBGgHnuKUBZHmswFrWJbn3kKk7i JW5T0SY6IG79GtN6mkIP5NvmjKllXDMPgeTmOmhNA3VOUTC2PP39ayYFmWpA9Dub gFOCWDldh/52OZyR8uiVF6tinNSpb/uJ -----END CERTIFICATE-----Generated at Sat Jun 14 18:55:48 2025 by rpki-client