$ rpki-client -vvf rpki.apnic.net/member_repository/A91FC765/E5C74BAA7F8111E6898E5F45C4F9AE02/TihN8oxlIKdxEwQV85PINH1ubek.mft File: TihN8oxlIKdxEwQV85PINH1ubek.mft (raw, json) Hash identifier: LKSq2EkiN5DgNsN3GZDc6x5b6DimZPd+MLob0QCmJzw= Subject key identifier: 30:D9:07:14:80:DE:C9:D7:48:22:92:74:2E:C6:64:90:A5:97:75:3E Authority key identifier: 4E:28:4D:F2:8C:65:20:A7:71:13:04:15:F3:93:C8:34:7D:6E:6D:E9 Certificate issuer: /CN=A91FC765/serialNumber=4E284DF28C6520A771130415F393C8347D6E6DE9 Certificate serial: 1E6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TihN8oxlIKdxEwQV85PINH1ubek.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FC765/E5C74BAA7F8111E6898E5F45C4F9AE02/TihN8oxlIKdxEwQV85PINH1ubek.mft Manifest number: 1E62 Signing time: Fri 22 Aug 2025 16:06:58 +0000 Manifest this update: Fri 22 Aug 2025 16:06:58 +0000 Manifest next update: Fri 29 Aug 2025 16:06:58 +0000 Files and hashes: 1: TihN8oxlIKdxEwQV85PINH1ubek.crl (hash: xa5vBFNm7heto2w/jZ9cVR84XVEW5boEECRzlQz/xVc=) 2: 9071A5E690CB11E6A804EF84C4F9AE02.roa (hash: KE/U/8wUAW1falY4CgDPXTNiOOjIqQ1zJL90tHiSQS8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FC765/E5C74BAA7F8111E6898E5F45C4F9AE02/TihN8oxlIKdxEwQV85PINH1ubek.crl rsync://rpki.apnic.net/member_repository/A91FC765/E5C74BAA7F8111E6898E5F45C4F9AE02/TihN8oxlIKdxEwQV85PINH1ubek.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TihN8oxlIKdxEwQV85PINH1ubek.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 16:06:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7787 (0x1e6b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FC765, serialNumber=4E284DF28C6520A771130415F393C8347D6E6DE9 Validity Not Before: Aug 22 16:06:58 2025 GMT Not After : Aug 29 16:06:58 2025 GMT Subject: CN=68a895a2-79a0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:b0:c2:7e:41:7a:76:3f:95:43:61:19:e8:dd: f1:12:9e:e0:c1:7a:1d:e4:9a:9a:a2:17:04:60:a8: bb:b6:26:b2:c7:af:cd:d0:35:ce:9f:ed:9e:2b:0e: cf:f5:cc:75:8d:9c:20:4f:5e:b2:a6:a4:a9:84:7f: 2e:07:62:f8:2b:73:e2:23:ce:a3:6e:04:5e:88:c3: e7:af:51:ef:c6:c7:26:00:67:b2:74:56:13:50:ab: 35:a0:d6:6c:46:88:2c:24:72:7e:b3:30:17:8e:24: 77:25:85:50:ae:52:86:37:88:1e:13:d9:de:4c:9f: 75:4a:b7:f9:53:27:f3:3b:35:7f:03:0b:a3:c4:f9: 0a:c8:19:27:20:76:22:5d:b5:2f:92:ad:06:51:ca: 29:b2:98:b4:95:e8:71:a3:fa:07:5d:22:48:81:0b: ea:f2:f0:14:0c:07:5f:60:4f:1e:04:60:d5:ad:44: 2b:40:61:b7:e3:6f:04:a8:cf:8d:07:6c:9b:b4:35: 81:33:0a:ff:09:f6:9b:e8:b3:63:07:7f:d2:1b:2b: d1:13:70:57:f6:5d:e8:c3:c0:4f:29:5d:7b:17:e8: f4:8a:20:b1:05:bd:f0:20:2a:ca:96:23:1d:45:01: 2f:44:e6:95:c1:ec:e6:be:08:f2:15:94:c0:e2:59: 57:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:D9:07:14:80:DE:C9:D7:48:22:92:74:2E:C6:64:90:A5:97:75:3E X509v3 Authority Key Identifier: keyid:4E:28:4D:F2:8C:65:20:A7:71:13:04:15:F3:93:C8:34:7D:6E:6D:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FC765/E5C74BAA7F8111E6898E5F45C4F9AE02/TihN8oxlIKdxEwQV85PINH1ubek.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TihN8oxlIKdxEwQV85PINH1ubek.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FC765/E5C74BAA7F8111E6898E5F45C4F9AE02/TihN8oxlIKdxEwQV85PINH1ubek.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8b:f5:05:d8:1e:2c:19:cd:17:4b:ca:39:40:76:35:40:23:c9: 23:26:b9:9b:26:3e:e3:d5:99:a7:92:66:68:69:74:07:1d:51: 27:8f:ab:60:4c:3b:b6:8a:87:63:8e:57:18:63:3d:e0:48:52: 3d:11:d7:7e:df:a2:9e:f0:e4:a2:5a:c4:45:b5:52:58:06:12: 10:82:69:74:a7:ba:a7:0b:94:41:a5:ae:ac:89:48:5f:8b:80: aa:3b:46:4f:aa:d1:27:16:43:44:9a:78:00:5d:47:92:5d:df: 8e:99:ba:b5:6b:31:01:d2:8a:b4:68:43:d5:03:5d:ed:a0:a6: a0:59:8a:51:25:46:7a:1e:eb:08:a8:a9:87:f2:f0:ad:e6:b9: 02:2e:7b:cb:b4:ac:00:cf:68:5b:79:ea:c6:4f:f1:63:df:40: 15:c7:17:aa:41:9c:3c:b7:eb:6b:75:a7:c3:0f:0a:16:b5:94: cc:68:20:8b:b0:a8:82:71:ba:a8:53:4e:e9:59:30:5b:e9:09: 46:f8:0e:b4:75:fb:3f:66:90:76:b2:c6:73:5a:62:48:f4:06: cb:13:4d:7f:07:82:a7:82:db:dd:49:c4:35:dc:3e:73:25:7c: fb:2b:c2:67:ec:49:15:64:2e:9a:dc:23:37:6d:0c:e1:a8:45: d4:2e:3f:39 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHmswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkM3NjUxMTAvBgNVBAUTKDRFMjg0REYyOEM2NTIwQTc3MTEzMDQxNUYzOTNDODM0 N0Q2RTZERTkwHhcNMjUwODIyMTYwNjU4WhcNMjUwODI5MTYwNjU4WjAYMRYwFAYD VQQDEw02OGE4OTVhMi03OWEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0bDCfkF6dj+VQ2EZ6N3xEp7gwXod5JqaohcEYKi7tiayx6/N0DXOn+2eKw7P 9cx1jZwgT16ypqSphH8uB2L4K3PiI86jbgReiMPnr1HvxscmAGeydFYTUKs1oNZs RogsJHJ+szAXjiR3JYVQrlKGN4geE9neTJ91Srf5UyfzOzV/AwujxPkKyBknIHYi XbUvkq0GUcopspi0lehxo/oHXSJIgQvq8vAUDAdfYE8eBGDVrUQrQGG3428EqM+N B2ybtDWBMwr/Cfab6LNjB3/SGyvRE3BX9l3ow8BPKV17F+j0iiCxBb3wICrKliMd RQEvROaVwezmvgjyFZTA4llXMwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDDZBxSA 3snXSCKSdC7GZJCll3U+MB8GA1UdIwQYMBaAFE4oTfKMZSCncRMEFfOTyDR9bm3p MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQzc2NS9FNUM3NEJBQTdG ODExMUU2ODk4RTVGNDVDNEY5QUUwMi9UaWhOOG94bElLZHhFd1FWODVQSU5IMXVi ZWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RpaE44b3hsSUtkeEV3UVY4NVBJTkgxdWJlay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG Qzc2NS9FNUM3NEJBQTdGODExMUU2ODk4RTVGNDVDNEY5QUUwMi9UaWhOOG94bElL ZHhFd1FWODVQSU5IMXViZWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCL9QXYHiwZzRdLyjlAdjVAI8kjJrmbJj7j1ZmnkmZoaXQHHVEnj6tg TDu2iodjjlcYYz3gSFI9Edd+36Ke8OSiWsRFtVJYBhIQgml0p7qnC5RBpa6siUhf i4CqO0ZPqtEnFkNEmngAXUeSXd+Ombq1azEB0oq0aEPVA13toKagWYpRJUZ6HusI qKmH8vCt5rkCLnvLtKwAz2hbeerGT/Fj30AVxxeqQZw8t+trdafDDwoWtZTMaCCL sKiCcbqoU07pWTBb6QlG+A60dfs/ZpB2ssZzWmJI9AbLE01/B4KngtvdScQ13D5z JXz7K8Jn7EkVZC6a3CM3bQzhqEXULj85 -----END CERTIFICATE-----Generated at Sat Aug 23 14:27:04 2025 by rpki-client