$ rpki-client -vvf rpki.apnic.net/member_repository/A91FC765/E5C74BAA7F8111E6898E5F45C4F9AE02/TihN8oxlIKdxEwQV85PINH1ubek.mft File: TihN8oxlIKdxEwQV85PINH1ubek.mft (raw, json) Hash identifier: hgdyjlQocGFLaBUc0jWeEYPgCi33Mr4UzS0rB/nbOfA= Subject key identifier: 57:82:32:87:75:20:27:3F:19:97:0E:DA:6C:2C:87:CF:6D:AB:9B:2C Authority key identifier: 4E:28:4D:F2:8C:65:20:A7:71:13:04:15:F3:93:C8:34:7D:6E:6D:E9 Certificate issuer: /CN=A91FC765/serialNumber=4E284DF28C6520A771130415F393C8347D6E6DE9 Certificate serial: 1E94 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TihN8oxlIKdxEwQV85PINH1ubek.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FC765/E5C74BAA7F8111E6898E5F45C4F9AE02/TihN8oxlIKdxEwQV85PINH1ubek.mft Manifest number: 1E8A Signing time: Tue 04 Nov 2025 16:08:57 +0000 Manifest this update: Tue 04 Nov 2025 16:08:57 +0000 Manifest next update: Tue 11 Nov 2025 16:08:57 +0000 Files and hashes: 1: TihN8oxlIKdxEwQV85PINH1ubek.crl (hash: ZXyhCjkNbxXLseyvdW7H2XJElaJkENeTOjgtnahb+Xg=) 2: 9071A5E690CB11E6A804EF84C4F9AE02.roa (hash: Lxohf2VrEq5kdMHODmRZ0pz5VX7gk6t5HOgofkIu3rQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FC765/E5C74BAA7F8111E6898E5F45C4F9AE02/TihN8oxlIKdxEwQV85PINH1ubek.crl rsync://rpki.apnic.net/member_repository/A91FC765/E5C74BAA7F8111E6898E5F45C4F9AE02/TihN8oxlIKdxEwQV85PINH1ubek.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TihN8oxlIKdxEwQV85PINH1ubek.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 16:08:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7828 (0x1e94) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FC765, serialNumber=4E284DF28C6520A771130415F393C8347D6E6DE9 Validity Not Before: Nov 4 16:08:57 2025 GMT Not After : Nov 11 16:08:57 2025 GMT Subject: CN=690a2519-57f4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:da:76:87:0c:82:f9:aa:16:32:fa:ba:d0:df: 8b:09:ae:c7:82:6b:5b:6f:e1:ce:5d:c2:b6:a7:04: 19:9d:41:0a:c2:8e:29:f9:b5:fd:d3:19:bf:c3:db: 08:e2:9b:ca:8c:da:af:c6:6e:d9:cd:7e:ae:d6:ba: f2:29:fb:64:52:69:7b:36:97:46:db:83:c4:11:44: e4:f4:00:73:4c:55:07:2f:02:1c:43:a2:8a:48:24: 2e:2a:b4:84:df:14:af:5d:4f:cf:92:90:f5:94:33: 22:44:e9:1a:6b:6e:c4:15:86:17:a5:c1:a5:e0:89: 0b:75:0f:0c:9b:36:8e:a4:bd:eb:72:78:a0:0c:86: df:00:a5:bd:ac:94:3c:6a:91:a0:0a:3c:6c:ae:74: ae:68:b2:cb:c9:1b:c5:a2:dc:aa:aa:dd:05:df:ae: eb:5c:69:4a:58:14:c1:a4:5f:48:8f:d7:57:ed:77: 5c:5a:e3:d4:d4:17:a5:a9:83:69:91:51:e0:48:ab: 40:31:8c:6f:76:f2:0e:c8:c2:d9:95:84:db:a9:a0: b4:c3:b4:de:4b:97:c4:25:2e:42:35:7c:18:9b:63: 34:28:bc:5f:ea:e1:b5:a4:01:7c:f3:b9:ac:3c:11: a9:69:57:f9:50:03:10:76:0f:7b:55:7c:d8:b1:60: be:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:82:32:87:75:20:27:3F:19:97:0E:DA:6C:2C:87:CF:6D:AB:9B:2C X509v3 Authority Key Identifier: keyid:4E:28:4D:F2:8C:65:20:A7:71:13:04:15:F3:93:C8:34:7D:6E:6D:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FC765/E5C74BAA7F8111E6898E5F45C4F9AE02/TihN8oxlIKdxEwQV85PINH1ubek.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TihN8oxlIKdxEwQV85PINH1ubek.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FC765/E5C74BAA7F8111E6898E5F45C4F9AE02/TihN8oxlIKdxEwQV85PINH1ubek.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 66:79:02:72:72:af:b2:bd:19:07:82:3f:da:dc:66:b6:5c:38: e1:25:e1:8c:32:69:02:f3:49:04:88:b3:6e:d0:4f:92:97:01: e8:4f:8b:04:83:39:67:ae:28:d5:4b:66:4d:dd:c5:82:d9:5e: e8:b1:21:ac:20:2a:9d:a9:35:c3:2f:0e:ac:16:f8:b6:d5:c2: c1:f2:4c:78:34:03:fc:04:d0:e2:9d:20:de:16:6e:c7:ca:14: f7:8f:f2:aa:4c:fc:a6:6f:53:92:e0:2b:49:22:24:5f:47:7d: 24:5c:ef:1d:84:6b:6c:c0:46:90:a6:14:0b:3c:f0:9f:e5:4e: 67:a0:b8:80:9b:f1:9e:9d:8e:c5:ee:13:d3:8d:0f:87:00:31: 19:94:e1:98:de:2a:a4:d4:ff:bd:ac:b9:50:58:d4:33:a9:b9: 40:b2:ff:5f:72:63:db:e1:00:d3:55:f2:ed:ec:f7:0b:42:55: 21:c4:8c:f8:b6:11:cd:c6:8a:01:62:95:48:3d:df:36:0e:db: fb:5c:24:46:e7:db:c1:7b:aa:53:54:0b:10:99:0f:ad:44:5a: 3f:b9:d5:e8:c3:8e:14:27:85:27:61:ab:71:d2:95:c6:59:b5: 79:19:d2:f1:11:9d:7c:4c:fe:a2:ba:31:2b:ce:f3:93:b5:b7: 80:46:d1:26 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHpQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkM3NjUxMTAvBgNVBAUTKDRFMjg0REYyOEM2NTIwQTc3MTEzMDQxNUYzOTNDODM0 N0Q2RTZERTkwHhcNMjUxMTA0MTYwODU3WhcNMjUxMTExMTYwODU3WjAYMRYwFAYD VQQDEw02OTBhMjUxOS01N2Y0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAztp2hwyC+aoWMvq60N+LCa7Hgmtbb+HOXcK2pwQZnUEKwo4p+bX90xm/w9sI 4pvKjNqvxm7ZzX6u1rryKftkUml7NpdG24PEEUTk9ABzTFUHLwIcQ6KKSCQuKrSE 3xSvXU/PkpD1lDMiROkaa27EFYYXpcGl4IkLdQ8MmzaOpL3rcnigDIbfAKW9rJQ8 apGgCjxsrnSuaLLLyRvFotyqqt0F367rXGlKWBTBpF9Ij9dX7XdcWuPU1BelqYNp kVHgSKtAMYxvdvIOyMLZlYTbqaC0w7TeS5fEJS5CNXwYm2M0KLxf6uG1pAF887ms PBGpaVf5UAMQdg97VXzYsWC+dQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFeCMod1 ICc/GZcO2mwsh89tq5ssMB8GA1UdIwQYMBaAFE4oTfKMZSCncRMEFfOTyDR9bm3p MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQzc2NS9FNUM3NEJBQTdG ODExMUU2ODk4RTVGNDVDNEY5QUUwMi9UaWhOOG94bElLZHhFd1FWODVQSU5IMXVi ZWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RpaE44b3hsSUtkeEV3UVY4NVBJTkgxdWJlay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG Qzc2NS9FNUM3NEJBQTdGODExMUU2ODk4RTVGNDVDNEY5QUUwMi9UaWhOOG94bElL ZHhFd1FWODVQSU5IMXViZWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBmeQJycq+yvRkHgj/a3Ga2XDjhJeGMMmkC80kEiLNu0E+SlwHoT4sE gzlnrijVS2ZN3cWC2V7osSGsICqdqTXDLw6sFvi21cLB8kx4NAP8BNDinSDeFm7H yhT3j/KqTPymb1OS4CtJIiRfR30kXO8dhGtswEaQphQLPPCf5U5noLiAm/GenY7F 7hPTjQ+HADEZlOGY3iqk1P+9rLlQWNQzqblAsv9fcmPb4QDTVfLt7PcLQlUhxIz4 thHNxooBYpVIPd82Dtv7XCRG59vBe6pTVAsQmQ+tRFo/udXow44UJ4UnYatx0pXG WbV5GdLxEZ18TP6iujErzvOTtbeARtEm -----END CERTIFICATE-----Generated at Wed Nov 5 00:05:30 2025 by rpki-client