$ rpki-client -vvf rpki.apnic.net/member_repository/A91FC765/E5C74BAA7F8111E6898E5F45C4F9AE02/TihN8oxlIKdxEwQV85PINH1ubek.mft File: TihN8oxlIKdxEwQV85PINH1ubek.mft (raw, json) Hash identifier: qxHX8Zi70vSSAlA5+Tl8NWQLVuLKj04g1YyYdZn2bJs= Subject key identifier: 0F:57:8D:3D:C1:84:A4:5D:22:77:4D:A4:6F:B5:16:1B:24:1A:A8:DD Authority key identifier: 4E:28:4D:F2:8C:65:20:A7:71:13:04:15:F3:93:C8:34:7D:6E:6D:E9 Certificate issuer: /CN=A91FC765/serialNumber=4E284DF28C6520A771130415F393C8347D6E6DE9 Certificate serial: 1E36 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TihN8oxlIKdxEwQV85PINH1ubek.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FC765/E5C74BAA7F8111E6898E5F45C4F9AE02/TihN8oxlIKdxEwQV85PINH1ubek.mft Manifest number: 1E2D Signing time: Sat 10 May 2025 16:00:25 +0000 Manifest this update: Sat 10 May 2025 16:00:24 +0000 Manifest next update: Sat 17 May 2025 16:00:24 +0000 Files and hashes: 1: TihN8oxlIKdxEwQV85PINH1ubek.crl (hash: fLUvaag19+jEkVjrXqurHythPtyq4f1wWTmB48DK7fg=) 2: 9071A5E690CB11E6A804EF84C4F9AE02.roa (hash: KE/U/8wUAW1falY4CgDPXTNiOOjIqQ1zJL90tHiSQS8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FC765/E5C74BAA7F8111E6898E5F45C4F9AE02/TihN8oxlIKdxEwQV85PINH1ubek.crl rsync://rpki.apnic.net/member_repository/A91FC765/E5C74BAA7F8111E6898E5F45C4F9AE02/TihN8oxlIKdxEwQV85PINH1ubek.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TihN8oxlIKdxEwQV85PINH1ubek.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 16:00:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7734 (0x1e36) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FC765, serialNumber=4E284DF28C6520A771130415F393C8347D6E6DE9 Validity Not Before: May 10 16:00:24 2025 GMT Not After : May 17 16:00:24 2025 GMT Subject: CN=681f7819-1546 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:a7:57:33:02:da:d5:90:1e:6d:92:46:5b:21: f7:56:66:8b:34:0d:64:37:7c:35:e7:07:fa:ab:0b: 4e:ee:7f:fa:c7:23:3e:18:4e:ba:82:6d:bd:b2:b9: 07:39:58:c7:65:e8:21:7a:0c:e7:c1:0d:a7:c3:3a: 64:ec:f6:b5:fc:85:b3:a6:4c:4b:47:99:5b:7b:45: df:00:46:55:34:b8:a8:0a:12:96:af:f5:c8:42:6d: 79:a8:a1:16:92:23:ab:86:de:07:b8:ec:57:25:46: 25:94:d7:d6:17:52:27:11:1b:12:31:82:1e:41:c1: 89:29:f2:46:98:34:29:3d:d8:25:c9:bd:9b:00:b4: 9f:3a:46:de:4e:ab:ed:81:8c:29:2b:5d:5a:7a:0e: 16:75:b1:3b:07:4c:ed:82:c2:20:ae:dc:6a:2f:4e: d1:56:93:4e:e3:2a:7e:5f:49:7c:84:4e:f1:e2:d8: 05:13:33:60:04:38:60:d9:13:5c:67:49:97:7a:51: 63:dc:26:6a:a6:c1:a8:ae:4e:9e:d0:29:d4:71:6f: a0:79:a8:a0:63:f7:b3:67:e0:8c:25:67:72:61:e5: be:87:4b:91:22:05:31:f2:11:53:9a:94:ac:02:c5: 1c:30:49:ab:5b:b6:84:24:a6:e0:2e:55:38:4c:05: e1:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:57:8D:3D:C1:84:A4:5D:22:77:4D:A4:6F:B5:16:1B:24:1A:A8:DD X509v3 Authority Key Identifier: keyid:4E:28:4D:F2:8C:65:20:A7:71:13:04:15:F3:93:C8:34:7D:6E:6D:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FC765/E5C74BAA7F8111E6898E5F45C4F9AE02/TihN8oxlIKdxEwQV85PINH1ubek.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TihN8oxlIKdxEwQV85PINH1ubek.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FC765/E5C74BAA7F8111E6898E5F45C4F9AE02/TihN8oxlIKdxEwQV85PINH1ubek.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8a:19:b6:1c:a7:08:e0:d0:0b:cf:3f:45:aa:f8:87:5f:d1:68: 3d:5d:fd:84:82:d5:1f:0e:62:4b:93:8f:5d:39:6f:45:72:c7: a6:8d:77:a8:3f:66:c2:92:36:d7:78:01:9c:1a:99:29:b7:28: 7f:1a:70:fc:86:3d:da:cf:9c:e3:08:78:37:5d:cb:03:30:5e: 6a:88:cc:46:55:d4:75:58:f4:d3:cf:ce:a6:6d:0a:95:ed:81: 1b:de:9e:e2:39:25:77:37:93:43:c9:27:c6:d2:4f:23:63:e3: 1d:f0:f6:ab:6c:43:c5:68:c5:e2:e7:84:14:b7:e4:1c:45:60: b0:2d:87:5e:a2:3d:a2:ec:ef:29:0e:49:4c:0d:fe:4e:2c:28: e2:4e:83:0b:86:80:76:e4:99:e9:1d:8e:ac:07:dc:aa:d8:4e: f0:26:07:f5:93:a5:94:c5:8b:bc:e0:54:30:98:fe:c6:14:bc: 54:18:04:eb:7f:88:cc:20:73:e1:6a:d9:88:97:88:63:f3:36: 1d:78:af:e1:0e:63:b8:3d:ed:ae:7b:a5:2b:0d:07:32:d0:09: df:36:af:5b:49:c7:65:33:f3:02:ba:68:6f:6e:f0:12:03:f3: 0e:0c:2f:e5:0a:70:77:0e:73:2a:4d:29:0e:96:f8:79:95:f8: 63:7c:a2:24 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHjYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkM3NjUxMTAvBgNVBAUTKDRFMjg0REYyOEM2NTIwQTc3MTEzMDQxNUYzOTNDODM0 N0Q2RTZERTkwHhcNMjUwNTEwMTYwMDI0WhcNMjUwNTE3MTYwMDI0WjAYMRYwFAYD VQQDEw02ODFmNzgxOS0xNTQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA06dXMwLa1ZAebZJGWyH3VmaLNA1kN3w15wf6qwtO7n/6xyM+GE66gm29srkH OVjHZeghegznwQ2nwzpk7Pa1/IWzpkxLR5lbe0XfAEZVNLioChKWr/XIQm15qKEW kiOrht4HuOxXJUYllNfWF1InERsSMYIeQcGJKfJGmDQpPdglyb2bALSfOkbeTqvt gYwpK11aeg4WdbE7B0ztgsIgrtxqL07RVpNO4yp+X0l8hE7x4tgFEzNgBDhg2RNc Z0mXelFj3CZqpsGork6e0CnUcW+geaigY/ezZ+CMJWdyYeW+h0uRIgUx8hFTmpSs AsUcMEmrW7aEJKbgLlU4TAXhPQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA9XjT3B hKRdIndNpG+1FhskGqjdMB8GA1UdIwQYMBaAFE4oTfKMZSCncRMEFfOTyDR9bm3p MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQzc2NS9FNUM3NEJBQTdG ODExMUU2ODk4RTVGNDVDNEY5QUUwMi9UaWhOOG94bElLZHhFd1FWODVQSU5IMXVi ZWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RpaE44b3hsSUtkeEV3UVY4NVBJTkgxdWJlay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG Qzc2NS9FNUM3NEJBQTdGODExMUU2ODk4RTVGNDVDNEY5QUUwMi9UaWhOOG94bElL ZHhFd1FWODVQSU5IMXViZWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCKGbYcpwjg0AvPP0Wq+Idf0Wg9Xf2EgtUfDmJLk49dOW9FcsemjXeo P2bCkjbXeAGcGpkptyh/GnD8hj3az5zjCHg3XcsDMF5qiMxGVdR1WPTTz86mbQqV 7YEb3p7iOSV3N5NDySfG0k8jY+Md8ParbEPFaMXi54QUt+QcRWCwLYdeoj2i7O8p DklMDf5OLCjiToMLhoB25JnpHY6sB9yq2E7wJgf1k6WUxYu84FQwmP7GFLxUGATr f4jMIHPhatmIl4hj8zYdeK/hDmO4Pe2ue6UrDQcy0AnfNq9bScdlM/MCumhvbvAS A/MODC/lCnB3DnMqTSkOlvh5lfhjfKIk -----END CERTIFICATE-----Generated at Sun May 11 12:34:22 2025 by rpki-client