$ rpki-client -vvf rpki.apnic.net/member_repository/A91FC765/E5C74BAA7F8111E6898E5F45C4F9AE02/TihN8oxlIKdxEwQV85PINH1ubek.mft File: TihN8oxlIKdxEwQV85PINH1ubek.mft (raw, json) Hash identifier: olmYIjMBuZaX7lcjvFbYBVWcyKHhZcyhMMsTdwOT+Fo= Subject key identifier: 07:34:84:E5:04:D2:14:57:70:91:FB:00:92:03:0C:C8:1F:C5:6E:17 Authority key identifier: 4E:28:4D:F2:8C:65:20:A7:71:13:04:15:F3:93:C8:34:7D:6E:6D:E9 Certificate issuer: /CN=A91FC765/serialNumber=4E284DF28C6520A771130415F393C8347D6E6DE9 Certificate serial: 1E50 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TihN8oxlIKdxEwQV85PINH1ubek.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FC765/E5C74BAA7F8111E6898E5F45C4F9AE02/TihN8oxlIKdxEwQV85PINH1ubek.mft Manifest number: 1E47 Signing time: Mon 30 Jun 2025 16:12:27 +0000 Manifest this update: Mon 30 Jun 2025 16:12:27 +0000 Manifest next update: Mon 07 Jul 2025 16:12:27 +0000 Files and hashes: 1: TihN8oxlIKdxEwQV85PINH1ubek.crl (hash: ZR4gUMa+aKB6Ul4k7wsjG2NBxJYPL/6Dxo+X5i3EDC4=) 2: 9071A5E690CB11E6A804EF84C4F9AE02.roa (hash: KE/U/8wUAW1falY4CgDPXTNiOOjIqQ1zJL90tHiSQS8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FC765/E5C74BAA7F8111E6898E5F45C4F9AE02/TihN8oxlIKdxEwQV85PINH1ubek.crl rsync://rpki.apnic.net/member_repository/A91FC765/E5C74BAA7F8111E6898E5F45C4F9AE02/TihN8oxlIKdxEwQV85PINH1ubek.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TihN8oxlIKdxEwQV85PINH1ubek.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Jul 2025 16:12:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7760 (0x1e50) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FC765, serialNumber=4E284DF28C6520A771130415F393C8347D6E6DE9 Validity Not Before: Jun 30 16:12:27 2025 GMT Not After : Jul 7 16:12:27 2025 GMT Subject: CN=6862b76b-a721 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:63:9b:09:b4:fc:00:e6:a4:f8:21:a3:12:e1: bd:c9:a2:fe:de:33:e7:3d:3c:35:02:37:3c:60:56: cb:a2:b9:dc:22:ff:d7:19:0c:38:1e:f7:66:1a:17: 23:0c:7c:47:69:f2:65:93:af:0b:ff:c2:68:04:28: ea:93:66:04:14:ef:f1:c6:0b:bf:96:b5:a0:b1:e0: f2:a4:86:13:5b:00:c6:ca:ee:ee:df:e8:98:94:a4: f8:dd:5e:85:85:2c:1f:b4:0d:f2:96:fa:49:1e:59: c6:d6:76:c1:7a:b4:d4:69:43:8b:3f:f1:66:52:f2: 8c:84:fe:5d:14:84:e9:53:3d:b5:50:95:6b:9b:f0: f1:62:28:91:0d:9b:f0:32:05:61:d6:4c:d3:4a:03: 7b:6f:86:17:6b:6b:f9:5e:b8:0f:14:8a:6c:88:9e: bf:4d:57:d8:62:1f:25:9f:dc:0c:2a:7a:cb:05:1d: 4b:fa:ea:02:8e:68:ce:08:8c:02:a2:7e:49:e9:51: ef:73:0d:7b:75:2e:44:19:74:58:92:a4:b8:72:fa: c9:78:25:de:f7:86:5c:4b:12:8b:75:86:81:47:03: 76:e7:13:fc:21:83:c7:10:82:59:34:4d:0b:4c:03: 35:06:74:ce:d2:05:9b:c2:a9:1c:ed:9e:a8:73:63: 09:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:34:84:E5:04:D2:14:57:70:91:FB:00:92:03:0C:C8:1F:C5:6E:17 X509v3 Authority Key Identifier: keyid:4E:28:4D:F2:8C:65:20:A7:71:13:04:15:F3:93:C8:34:7D:6E:6D:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FC765/E5C74BAA7F8111E6898E5F45C4F9AE02/TihN8oxlIKdxEwQV85PINH1ubek.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TihN8oxlIKdxEwQV85PINH1ubek.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FC765/E5C74BAA7F8111E6898E5F45C4F9AE02/TihN8oxlIKdxEwQV85PINH1ubek.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0e:42:b8:9d:b5:bf:74:b6:2b:2c:e1:f6:68:41:8b:cd:1f:77: 85:e8:4b:61:3f:1c:e5:c2:89:35:7c:f7:75:45:f8:23:25:35: 5f:85:91:79:a2:b1:93:52:db:fa:c6:d7:00:24:5e:da:89:74: e5:3a:3d:d2:e2:b3:cd:6b:5c:a1:39:14:69:ae:2f:f6:7d:b5: f3:3a:40:30:34:1e:ae:44:d5:72:f3:2e:0a:80:02:3a:27:e5: 5e:ab:70:32:88:6a:b4:a0:93:93:cb:19:b0:71:41:24:33:94: e5:fc:2d:48:d4:1f:de:28:65:68:71:d4:b0:31:97:cd:a8:cc: fa:e7:98:d8:da:b5:f3:6e:eb:0d:0d:bb:87:d3:f7:4d:4f:8f: 79:08:df:24:fc:82:23:62:e7:e7:8a:86:96:90:d4:af:0e:47: 71:9c:7d:b0:78:70:de:c1:88:62:5e:0e:fb:8e:f6:67:4b:d2: 24:be:be:f1:0f:38:df:54:61:63:b3:c1:97:cd:dc:c0:9f:22: 34:56:b5:86:5e:10:e9:22:46:f3:a6:fc:a1:e7:b7:e0:ec:fc: 2e:1a:b8:4f:2c:7f:6e:dd:2a:36:0e:62:bb:7d:d6:fc:b4:10: 2d:78:de:fa:15:1d:e7:48:b3:bf:e2:3c:64:3c:bc:dd:8a:a2: 91:79:d0:79 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHlAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkM3NjUxMTAvBgNVBAUTKDRFMjg0REYyOEM2NTIwQTc3MTEzMDQxNUYzOTNDODM0 N0Q2RTZERTkwHhcNMjUwNjMwMTYxMjI3WhcNMjUwNzA3MTYxMjI3WjAYMRYwFAYD VQQDEw02ODYyYjc2Yi1hNzIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5mObCbT8AOak+CGjEuG9yaL+3jPnPTw1Ajc8YFbLorncIv/XGQw4HvdmGhcj DHxHafJlk68L/8JoBCjqk2YEFO/xxgu/lrWgseDypIYTWwDGyu7u3+iYlKT43V6F hSwftA3ylvpJHlnG1nbBerTUaUOLP/FmUvKMhP5dFITpUz21UJVrm/DxYiiRDZvw MgVh1kzTSgN7b4YXa2v5XrgPFIpsiJ6/TVfYYh8ln9wMKnrLBR1L+uoCjmjOCIwC on5J6VHvcw17dS5EGXRYkqS4cvrJeCXe94ZcSxKLdYaBRwN25xP8IYPHEIJZNE0L TAM1BnTO0gWbwqkc7Z6oc2MJ/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAc0hOUE 0hRXcJH7AJIDDMgfxW4XMB8GA1UdIwQYMBaAFE4oTfKMZSCncRMEFfOTyDR9bm3p MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQzc2NS9FNUM3NEJBQTdG ODExMUU2ODk4RTVGNDVDNEY5QUUwMi9UaWhOOG94bElLZHhFd1FWODVQSU5IMXVi ZWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RpaE44b3hsSUtkeEV3UVY4NVBJTkgxdWJlay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG Qzc2NS9FNUM3NEJBQTdGODExMUU2ODk4RTVGNDVDNEY5QUUwMi9UaWhOOG94bElL ZHhFd1FWODVQSU5IMXViZWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAOQridtb90tiss4fZoQYvNH3eF6EthPxzlwok1fPd1RfgjJTVfhZF5 orGTUtv6xtcAJF7aiXTlOj3S4rPNa1yhORRpri/2fbXzOkAwNB6uRNVy8y4KgAI6 J+Veq3AyiGq0oJOTyxmwcUEkM5Tl/C1I1B/eKGVocdSwMZfNqMz655jY2rXzbusN DbuH0/dNT495CN8k/IIjYufnioaWkNSvDkdxnH2weHDewYhiXg77jvZnS9Ikvr7x DzjfVGFjs8GXzdzAnyI0VrWGXhDpIkbzpvyh57fg7PwuGrhPLH9u3So2DmK7fdb8 tBAteN76FR3nSLO/4jxkPLzdiqKRedB5 -----END CERTIFICATE-----Generated at Tue Jul 1 20:54:03 2025 by rpki-client