$ rpki-client -vvf rpki.apnic.net/member_repository/A91FC765/E5C74BAA7F8111E6898E5F45C4F9AE02/TihN8oxlIKdxEwQV85PINH1ubek.mft File: TihN8oxlIKdxEwQV85PINH1ubek.mft (raw, json) Hash identifier: 5f8bk9zRI85dn0CAqwqQqImJsH0gU8DGleYXi1cEEU8= Subject key identifier: 4E:DE:34:CA:37:FC:A4:F6:1E:46:6A:CA:F8:51:AE:D1:2C:16:99:25 Authority key identifier: 4E:28:4D:F2:8C:65:20:A7:71:13:04:15:F3:93:C8:34:7D:6E:6D:E9 Certificate issuer: /CN=A91FC765/serialNumber=4E284DF28C6520A771130415F393C8347D6E6DE9 Certificate serial: 1E63 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TihN8oxlIKdxEwQV85PINH1ubek.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FC765/E5C74BAA7F8111E6898E5F45C4F9AE02/TihN8oxlIKdxEwQV85PINH1ubek.mft Manifest number: 1E5A Signing time: Wed 06 Aug 2025 16:08:55 +0000 Manifest this update: Wed 06 Aug 2025 16:08:54 +0000 Manifest next update: Wed 13 Aug 2025 16:08:54 +0000 Files and hashes: 1: TihN8oxlIKdxEwQV85PINH1ubek.crl (hash: Lj0f8JULQ8yeQX3E4mCZp9b2uOSNzVtJ/6jD3kgfH9k=) 2: 9071A5E690CB11E6A804EF84C4F9AE02.roa (hash: KE/U/8wUAW1falY4CgDPXTNiOOjIqQ1zJL90tHiSQS8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FC765/E5C74BAA7F8111E6898E5F45C4F9AE02/TihN8oxlIKdxEwQV85PINH1ubek.crl rsync://rpki.apnic.net/member_repository/A91FC765/E5C74BAA7F8111E6898E5F45C4F9AE02/TihN8oxlIKdxEwQV85PINH1ubek.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TihN8oxlIKdxEwQV85PINH1ubek.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 Aug 2025 16:08:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7779 (0x1e63) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FC765, serialNumber=4E284DF28C6520A771130415F393C8347D6E6DE9 Validity Not Before: Aug 6 16:08:54 2025 GMT Not After : Aug 13 16:08:54 2025 GMT Subject: CN=68937e16-2d30 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:d8:94:69:ef:e0:58:e7:32:e6:bb:14:05:4e: 63:19:b2:20:70:cb:0b:fc:47:ed:08:0c:f1:df:3e: 01:d8:47:7d:78:55:b0:ec:c8:91:5e:0d:a8:ef:59: 7a:e0:cf:9f:45:f9:36:15:6b:7f:41:91:dc:72:7a: d6:3b:b1:1d:47:6e:04:da:b6:93:92:a9:2a:b7:02: b8:be:8e:cf:5a:12:6b:0a:61:be:45:59:6b:42:88: 08:7b:be:85:d7:33:b9:ae:04:c9:e5:fb:65:03:6f: c0:09:b6:12:2f:f5:78:72:d1:30:67:38:c5:ea:45: da:e8:03:b4:88:72:66:20:ca:24:33:33:35:b3:c8: 80:0a:64:d8:b9:a2:5c:6c:5b:a8:25:20:f3:82:ed: 23:a4:51:2b:89:8d:05:83:dc:4a:e8:ec:8f:6b:1d: 59:9c:91:1c:36:b6:ff:54:2a:54:74:0a:e1:d0:e8: 3e:c3:d1:01:3c:d7:e3:40:4a:5d:c0:35:11:13:2e: 81:0c:99:c9:bc:11:02:1c:7a:ef:f7:db:06:53:3b: d2:f8:1d:e2:d1:be:b7:c3:89:1b:ec:8d:cb:f9:7b: 6a:11:4d:a9:00:d5:cf:1b:ef:8b:ea:b3:7e:83:7d: 87:ec:31:29:a8:4f:79:7d:8a:3e:c4:2c:0f:2d:80: 0b:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:DE:34:CA:37:FC:A4:F6:1E:46:6A:CA:F8:51:AE:D1:2C:16:99:25 X509v3 Authority Key Identifier: keyid:4E:28:4D:F2:8C:65:20:A7:71:13:04:15:F3:93:C8:34:7D:6E:6D:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FC765/E5C74BAA7F8111E6898E5F45C4F9AE02/TihN8oxlIKdxEwQV85PINH1ubek.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TihN8oxlIKdxEwQV85PINH1ubek.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FC765/E5C74BAA7F8111E6898E5F45C4F9AE02/TihN8oxlIKdxEwQV85PINH1ubek.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 66:4b:4b:a0:46:c8:bf:86:f7:ef:8b:e6:49:de:85:57:23:d9: da:b4:a0:3b:a8:dd:91:df:a4:fc:55:1b:ef:15:6b:ca:bc:3a: b5:74:f4:7e:25:fb:19:ec:b1:ad:ac:06:74:ce:b2:9a:dc:c5: 46:ca:0d:42:07:63:f7:88:36:2d:9a:b1:d7:c9:45:cb:9c:1d: f9:ef:31:df:f5:d5:12:c4:45:08:05:cf:ef:b0:8a:7d:49:6c: 4e:ba:2c:9b:16:69:c3:e6:a1:db:17:0e:39:29:79:00:a6:1a: 87:59:51:8f:b4:34:f5:2f:5a:3e:e9:ab:6e:d5:7d:29:85:7f: 99:1d:d2:31:bf:1b:96:da:0a:3b:ff:3e:57:48:2a:3f:b9:a4: 8d:19:b3:8d:75:69:b1:23:a3:5a:3a:57:1a:0b:c4:d7:18:dc: c6:73:86:3f:63:b7:bb:4a:6a:98:43:82:cc:41:49:36:71:5b: f5:b5:1b:e5:97:f6:17:49:f8:9a:ee:07:a5:cb:f5:31:6c:b6: 69:a3:5e:4c:39:93:aa:88:f4:22:43:df:40:49:75:4e:a5:f6: 59:a5:6a:a7:3b:e9:1f:e2:ca:b0:71:09:1d:a3:78:e8:f7:af: 84:24:09:84:8c:e4:6a:ce:75:ee:bd:92:95:54:80:ba:bf:02: 80:2c:9e:60 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHmMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkM3NjUxMTAvBgNVBAUTKDRFMjg0REYyOEM2NTIwQTc3MTEzMDQxNUYzOTNDODM0 N0Q2RTZERTkwHhcNMjUwODA2MTYwODU0WhcNMjUwODEzMTYwODU0WjAYMRYwFAYD VQQDEw02ODkzN2UxNi0yZDMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsdiUae/gWOcy5rsUBU5jGbIgcMsL/EftCAzx3z4B2Ed9eFWw7MiRXg2o71l6 4M+fRfk2FWt/QZHccnrWO7EdR24E2raTkqkqtwK4vo7PWhJrCmG+RVlrQogIe76F 1zO5rgTJ5ftlA2/ACbYSL/V4ctEwZzjF6kXa6AO0iHJmIMokMzM1s8iACmTYuaJc bFuoJSDzgu0jpFEriY0Fg9xK6OyPax1ZnJEcNrb/VCpUdArh0Og+w9EBPNfjQEpd wDUREy6BDJnJvBECHHrv99sGUzvS+B3i0b63w4kb7I3L+XtqEU2pANXPG++L6rN+ g32H7DEpqE95fYo+xCwPLYALWwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE7eNMo3 /KT2HkZqyvhRrtEsFpklMB8GA1UdIwQYMBaAFE4oTfKMZSCncRMEFfOTyDR9bm3p MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQzc2NS9FNUM3NEJBQTdG ODExMUU2ODk4RTVGNDVDNEY5QUUwMi9UaWhOOG94bElLZHhFd1FWODVQSU5IMXVi ZWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RpaE44b3hsSUtkeEV3UVY4NVBJTkgxdWJlay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG Qzc2NS9FNUM3NEJBQTdGODExMUU2ODk4RTVGNDVDNEY5QUUwMi9UaWhOOG94bElL ZHhFd1FWODVQSU5IMXViZWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBmS0ugRsi/hvfvi+ZJ3oVXI9natKA7qN2R36T8VRvvFWvKvDq1dPR+ JfsZ7LGtrAZ0zrKa3MVGyg1CB2P3iDYtmrHXyUXLnB357zHf9dUSxEUIBc/vsIp9 SWxOuiybFmnD5qHbFw45KXkAphqHWVGPtDT1L1o+6atu1X0phX+ZHdIxvxuW2go7 /z5XSCo/uaSNGbONdWmxI6NaOlcaC8TXGNzGc4Y/Y7e7SmqYQ4LMQUk2cVv1tRvl l/YXSfia7gely/UxbLZpo15MOZOqiPQiQ99ASXVOpfZZpWqnO+kf4sqwcQkdo3jo 96+EJAmEjORqznXuvZKVVIC6vwKALJ5g -----END CERTIFICATE-----Generated at Fri Aug 8 13:09:52 2025 by rpki-client