$ rpki-client -vvf rpki.apnic.net/member_repository/A91FC765/E5C74BAA7F8111E6898E5F45C4F9AE02/TihN8oxlIKdxEwQV85PINH1ubek.mft File: TihN8oxlIKdxEwQV85PINH1ubek.mft (raw, json) Hash identifier: zG4DNPudkLI/0BiXq6cjeZUcRV18rDx8K0gXYvb8TqQ= Subject key identifier: 6B:DE:B6:DE:4E:D7:20:DD:24:38:C5:A7:CC:90:BB:3C:C2:70:E1:4C Authority key identifier: 4E:28:4D:F2:8C:65:20:A7:71:13:04:15:F3:93:C8:34:7D:6E:6D:E9 Certificate issuer: /CN=A91FC765/serialNumber=4E284DF28C6520A771130415F393C8347D6E6DE9 Certificate serial: 1E79 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TihN8oxlIKdxEwQV85PINH1ubek.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FC765/E5C74BAA7F8111E6898E5F45C4F9AE02/TihN8oxlIKdxEwQV85PINH1ubek.mft Manifest number: 1E70 Signing time: Thu 18 Sep 2025 16:09:30 +0000 Manifest this update: Thu 18 Sep 2025 16:09:30 +0000 Manifest next update: Thu 25 Sep 2025 16:09:29 +0000 Files and hashes: 1: TihN8oxlIKdxEwQV85PINH1ubek.crl (hash: fVtVYHznOZ9Rxyw6w0i0+Ye1FsLaF/SmqGM762gGWcs=) 2: 9071A5E690CB11E6A804EF84C4F9AE02.roa (hash: KE/U/8wUAW1falY4CgDPXTNiOOjIqQ1zJL90tHiSQS8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FC765/E5C74BAA7F8111E6898E5F45C4F9AE02/TihN8oxlIKdxEwQV85PINH1ubek.crl rsync://rpki.apnic.net/member_repository/A91FC765/E5C74BAA7F8111E6898E5F45C4F9AE02/TihN8oxlIKdxEwQV85PINH1ubek.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TihN8oxlIKdxEwQV85PINH1ubek.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 16:09:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7801 (0x1e79) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FC765, serialNumber=4E284DF28C6520A771130415F393C8347D6E6DE9 Validity Not Before: Sep 18 16:09:30 2025 GMT Not After : Sep 25 16:09:29 2025 GMT Subject: CN=68cc2eba-95ee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:9a:18:74:c9:54:09:7b:2e:df:14:f1:f8:56: ed:bd:0f:be:e2:d5:9c:b3:c4:89:84:53:91:91:8d: c3:dc:c1:70:28:e4:5e:58:a0:a8:f0:6a:42:22:21: 58:d7:85:ce:3c:1f:23:ce:5f:74:1f:fe:db:2d:aa: 66:f4:b2:59:2a:5e:5b:83:0d:81:be:d9:a2:f5:60: 94:13:62:c8:ae:d1:3f:01:79:8a:44:ed:53:0b:6c: fc:18:3e:83:75:35:1b:de:50:06:51:6a:ec:76:78: 48:79:bc:3d:44:c5:51:6f:7e:48:c2:92:e8:7e:5b: 0c:5f:b7:36:b9:45:27:a3:24:5d:92:4b:f4:66:f6: 74:88:20:52:b4:e2:58:d8:af:32:da:cf:9d:df:d3: 2f:43:bb:66:0a:c8:57:df:24:17:b7:18:d7:fc:37: 5f:c0:cd:c7:e6:18:18:8a:94:2c:a9:11:6e:49:6a: 5d:83:8a:c0:8b:2f:83:60:02:0c:63:80:a6:1f:db: 13:53:93:14:6f:bc:4a:56:e5:8e:cc:87:8e:d1:d8: 99:82:a2:49:35:26:1d:bf:ea:6b:a2:e8:ae:29:ef: 32:18:07:cd:b6:be:ba:30:0b:9a:7c:9f:a1:30:0d: 78:22:e0:a2:65:38:c4:ff:57:25:25:dc:56:fc:58: df:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:DE:B6:DE:4E:D7:20:DD:24:38:C5:A7:CC:90:BB:3C:C2:70:E1:4C X509v3 Authority Key Identifier: keyid:4E:28:4D:F2:8C:65:20:A7:71:13:04:15:F3:93:C8:34:7D:6E:6D:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FC765/E5C74BAA7F8111E6898E5F45C4F9AE02/TihN8oxlIKdxEwQV85PINH1ubek.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TihN8oxlIKdxEwQV85PINH1ubek.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FC765/E5C74BAA7F8111E6898E5F45C4F9AE02/TihN8oxlIKdxEwQV85PINH1ubek.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 21:2f:0b:65:8e:b7:e2:b6:dd:7f:cb:9c:41:2a:06:d5:70:b6: de:69:60:bb:51:9f:b5:79:9c:25:4e:26:83:ab:f5:0e:7c:03: 02:41:75:9a:2d:35:f9:e0:06:54:88:86:91:b3:d6:6b:b7:f2: 56:b0:07:29:5e:d0:10:93:ca:75:10:fa:50:77:5b:17:34:8a: 96:26:5a:9c:5d:73:3e:12:14:6e:58:4d:50:a2:71:7d:00:18: ed:6c:b8:08:ae:a1:74:6c:96:f1:ff:0d:8c:be:83:93:08:57: 21:5a:56:35:b4:0c:b1:54:72:3b:23:dd:a9:d4:8d:80:1f:78: c1:45:77:1f:58:cc:89:b1:18:44:07:32:02:2c:20:fe:e8:bf: 8e:8f:e7:49:7c:93:73:c0:b2:4f:e0:8a:49:6e:b0:4a:e5:32: a8:ac:13:0f:18:82:1e:01:26:89:d5:d0:70:cc:6d:ef:58:5b: 8f:19:8e:6f:71:a1:8e:53:31:b9:b9:56:0f:2b:b9:4c:7c:61: 09:52:9f:5c:32:3c:c1:44:04:be:f5:d0:f7:4b:53:f0:82:8c: b7:22:38:61:68:2a:dd:bd:3d:2f:a6:00:0d:82:c2:b2:b1:80: d6:f0:2e:b5:91:fe:d4:94:47:56:ba:27:44:df:13:ba:25:16: 7f:a8:a3:18 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHnkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkM3NjUxMTAvBgNVBAUTKDRFMjg0REYyOEM2NTIwQTc3MTEzMDQxNUYzOTNDODM0 N0Q2RTZERTkwHhcNMjUwOTE4MTYwOTMwWhcNMjUwOTI1MTYwOTI5WjAYMRYwFAYD VQQDEw02OGNjMmViYS05NWVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvpoYdMlUCXsu3xTx+FbtvQ++4tWcs8SJhFORkY3D3MFwKOReWKCo8GpCIiFY 14XOPB8jzl90H/7bLapm9LJZKl5bgw2Bvtmi9WCUE2LIrtE/AXmKRO1TC2z8GD6D dTUb3lAGUWrsdnhIebw9RMVRb35IwpLoflsMX7c2uUUnoyRdkkv0ZvZ0iCBStOJY 2K8y2s+d39MvQ7tmCshX3yQXtxjX/DdfwM3H5hgYipQsqRFuSWpdg4rAiy+DYAIM Y4CmH9sTU5MUb7xKVuWOzIeO0diZgqJJNSYdv+prouiuKe8yGAfNtr66MAuafJ+h MA14IuCiZTjE/1clJdxW/Fjf3QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGvett5O 1yDdJDjFp8yQuzzCcOFMMB8GA1UdIwQYMBaAFE4oTfKMZSCncRMEFfOTyDR9bm3p MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQzc2NS9FNUM3NEJBQTdG ODExMUU2ODk4RTVGNDVDNEY5QUUwMi9UaWhOOG94bElLZHhFd1FWODVQSU5IMXVi ZWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RpaE44b3hsSUtkeEV3UVY4NVBJTkgxdWJlay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG Qzc2NS9FNUM3NEJBQTdGODExMUU2ODk4RTVGNDVDNEY5QUUwMi9UaWhOOG94bElL ZHhFd1FWODVQSU5IMXViZWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAhLwtljrfitt1/y5xBKgbVcLbeaWC7UZ+1eZwlTiaDq/UOfAMCQXWa LTX54AZUiIaRs9Zrt/JWsAcpXtAQk8p1EPpQd1sXNIqWJlqcXXM+EhRuWE1QonF9 ABjtbLgIrqF0bJbx/w2MvoOTCFchWlY1tAyxVHI7I92p1I2AH3jBRXcfWMyJsRhE BzICLCD+6L+Oj+dJfJNzwLJP4IpJbrBK5TKorBMPGIIeASaJ1dBwzG3vWFuPGY5v caGOUzG5uVYPK7lMfGEJUp9cMjzBRAS+9dD3S1Pwgoy3IjhhaCrdvT0vpgANgsKy sYDW8C61kf7UlEdWuidE3xO6JRZ/qKMY -----END CERTIFICATE-----Generated at Thu Sep 18 20:32:29 2025 by rpki-client