$ rpki-client -vvf rpki.apnic.net/member_repository/A91FC765/E5C74BAA7F8111E6898E5F45C4F9AE02/TihN8oxlIKdxEwQV85PINH1ubek.mft File: TihN8oxlIKdxEwQV85PINH1ubek.mft (raw, json) Hash identifier: 97ECG84DhvHUP104pRTsOQjJdybz9NCgTEc6auQ6jvg= Subject key identifier: 25:1B:9D:1A:D0:C3:00:DB:C7:5F:F5:2C:37:5B:43:AA:BA:28:5C:F3 Authority key identifier: 4E:28:4D:F2:8C:65:20:A7:71:13:04:15:F3:93:C8:34:7D:6E:6D:E9 Certificate issuer: /CN=A91FC765/serialNumber=4E284DF28C6520A771130415F393C8347D6E6DE9 Certificate serial: 1E2E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TihN8oxlIKdxEwQV85PINH1ubek.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FC765/E5C74BAA7F8111E6898E5F45C4F9AE02/TihN8oxlIKdxEwQV85PINH1ubek.mft Manifest number: 1E25 Signing time: Thu 24 Apr 2025 16:05:18 +0000 Manifest this update: Thu 24 Apr 2025 16:05:17 +0000 Manifest next update: Thu 01 May 2025 16:05:17 +0000 Files and hashes: 1: TihN8oxlIKdxEwQV85PINH1ubek.crl (hash: S0vmF4vZWyFVD3tPrHNJ4hfbxlxMxkLiZVhu/fEfae8=) 2: 9071A5E690CB11E6A804EF84C4F9AE02.roa (hash: KE/U/8wUAW1falY4CgDPXTNiOOjIqQ1zJL90tHiSQS8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FC765/E5C74BAA7F8111E6898E5F45C4F9AE02/TihN8oxlIKdxEwQV85PINH1ubek.crl rsync://rpki.apnic.net/member_repository/A91FC765/E5C74BAA7F8111E6898E5F45C4F9AE02/TihN8oxlIKdxEwQV85PINH1ubek.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TihN8oxlIKdxEwQV85PINH1ubek.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 16:05:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7726 (0x1e2e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FC765, serialNumber=4E284DF28C6520A771130415F393C8347D6E6DE9 Validity Not Before: Apr 24 16:05:17 2025 GMT Not After : May 1 16:05:17 2025 GMT Subject: CN=680a613d-9126 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:31:37:8f:55:f2:2e:80:68:63:ec:58:df:2b: ef:04:a8:3e:13:95:8a:d9:8c:e3:3f:ad:8c:b0:56: fd:d1:c4:3e:2b:13:9d:79:af:8c:85:5a:e7:6e:b7: 68:4d:8a:bc:77:2f:72:98:a6:22:a5:7b:5a:48:18: ca:6c:a9:6a:53:68:d6:c2:d3:bb:72:f4:09:3a:d9: b6:36:f1:36:4d:68:52:0d:63:43:b8:51:ef:52:6e: 33:cc:ca:1c:99:57:53:e8:f6:b8:ec:98:6a:83:1c: e5:34:a3:c9:2f:ea:a1:eb:a3:13:3c:73:2d:20:f0: ae:fc:31:a0:98:3a:ee:36:df:06:6f:cc:05:56:de: f6:6a:03:f3:0f:7d:99:46:9d:d1:0e:05:bf:74:1b: a1:17:f1:b7:9b:5e:0e:ab:b5:95:a3:bd:5c:0f:ff: 70:31:a3:2b:2d:68:25:74:bd:da:aa:e4:ff:2b:71: 26:81:c2:3c:ff:50:20:6f:90:31:b0:21:d8:49:3c: 59:4f:7d:da:22:59:ee:78:17:31:a0:cd:36:56:d6: 99:24:13:d0:de:35:02:ed:ed:28:18:38:19:35:09: 53:f9:d8:f9:50:01:f2:e8:ea:dd:75:48:67:fa:c7: 92:9f:95:5b:d9:3b:10:e7:83:61:e4:b1:d5:79:21: 82:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:1B:9D:1A:D0:C3:00:DB:C7:5F:F5:2C:37:5B:43:AA:BA:28:5C:F3 X509v3 Authority Key Identifier: keyid:4E:28:4D:F2:8C:65:20:A7:71:13:04:15:F3:93:C8:34:7D:6E:6D:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FC765/E5C74BAA7F8111E6898E5F45C4F9AE02/TihN8oxlIKdxEwQV85PINH1ubek.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TihN8oxlIKdxEwQV85PINH1ubek.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FC765/E5C74BAA7F8111E6898E5F45C4F9AE02/TihN8oxlIKdxEwQV85PINH1ubek.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 07:e7:7c:8a:b5:90:02:47:75:83:bc:7a:4e:84:1b:f8:7a:b9: b5:77:b0:3f:ce:9b:fd:4e:0c:ea:50:1d:5f:fe:1a:61:14:91: 31:22:2e:f8:3c:c1:0f:8b:e1:30:5d:62:24:47:6f:f5:05:8a: b9:b9:03:bf:4d:19:76:2b:cb:c7:4d:c1:ef:f5:5f:cf:93:6d: d2:e0:d3:db:4d:78:81:e4:58:f9:36:86:75:26:c4:74:ef:cf: b7:de:23:8a:87:fd:a6:2a:3f:2a:65:2b:5a:a4:a8:f0:ab:aa: 7c:9b:f1:86:44:9e:99:3a:cb:21:df:fe:e0:cb:f4:e6:e6:dc: 56:34:bf:c2:ed:93:df:25:c5:10:28:ae:95:15:61:a3:5f:97: 16:ee:cb:5f:eb:1c:fa:45:d9:82:91:08:7d:e5:b2:2d:33:da: ac:f8:45:35:c6:5e:cb:ce:6e:20:25:84:13:32:79:7f:d8:54: 1e:5e:e7:5d:ce:15:77:bc:c6:c8:4f:eb:bb:a5:5a:32:54:83: 8f:8d:3a:e7:cd:53:b9:78:f8:98:25:b1:ea:e2:1a:d5:42:45: 47:b8:58:86:8e:d6:41:d6:2a:e8:5c:ae:96:12:0e:a9:90:8a: 65:0a:88:0a:88:14:a5:87:7d:8c:d1:e7:26:e6:1f:9f:03:38: 79:89:25:a7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHi4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkM3NjUxMTAvBgNVBAUTKDRFMjg0REYyOEM2NTIwQTc3MTEzMDQxNUYzOTNDODM0 N0Q2RTZERTkwHhcNMjUwNDI0MTYwNTE3WhcNMjUwNTAxMTYwNTE3WjAYMRYwFAYD VQQDEw02ODBhNjEzZC05MTI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsTE3j1XyLoBoY+xY3yvvBKg+E5WK2YzjP62MsFb90cQ+KxOdea+MhVrnbrdo TYq8dy9ymKYipXtaSBjKbKlqU2jWwtO7cvQJOtm2NvE2TWhSDWNDuFHvUm4zzMoc mVdT6Pa47JhqgxzlNKPJL+qh66MTPHMtIPCu/DGgmDruNt8Gb8wFVt72agPzD32Z Rp3RDgW/dBuhF/G3m14Oq7WVo71cD/9wMaMrLWgldL3aquT/K3EmgcI8/1Agb5Ax sCHYSTxZT33aIlnueBcxoM02VtaZJBPQ3jUC7e0oGDgZNQlT+dj5UAHy6OrddUhn +seSn5Vb2TsQ54Nh5LHVeSGCdwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCUbnRrQ wwDbx1/1LDdbQ6q6KFzzMB8GA1UdIwQYMBaAFE4oTfKMZSCncRMEFfOTyDR9bm3p MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQzc2NS9FNUM3NEJBQTdG ODExMUU2ODk4RTVGNDVDNEY5QUUwMi9UaWhOOG94bElLZHhFd1FWODVQSU5IMXVi ZWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RpaE44b3hsSUtkeEV3UVY4NVBJTkgxdWJlay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG Qzc2NS9FNUM3NEJBQTdGODExMUU2ODk4RTVGNDVDNEY5QUUwMi9UaWhOOG94bElL ZHhFd1FWODVQSU5IMXViZWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAH53yKtZACR3WDvHpOhBv4erm1d7A/zpv9TgzqUB1f/hphFJExIi74 PMEPi+EwXWIkR2/1BYq5uQO/TRl2K8vHTcHv9V/Pk23S4NPbTXiB5Fj5NoZ1JsR0 78+33iOKh/2mKj8qZStapKjwq6p8m/GGRJ6ZOssh3/7gy/Tm5txWNL/C7ZPfJcUQ KK6VFWGjX5cW7stf6xz6RdmCkQh95bItM9qs+EU1xl7Lzm4gJYQTMnl/2FQeXudd zhV3vMbIT+u7pVoyVIOPjTrnzVO5ePiYJbHq4hrVQkVHuFiGjtZB1iroXK6WEg6p kIplCogKiBSlh32M0ecm5h+fAzh5iSWn -----END CERTIFICATE-----Generated at Sat Apr 26 16:39:44 2025 by rpki-client