$ rpki-client -vvf rpki.apnic.net/member_repository/A91FC765/E5C74BAA7F8111E6898E5F45C4F9AE02/TihN8oxlIKdxEwQV85PINH1ubek.mft File: TihN8oxlIKdxEwQV85PINH1ubek.mft (raw, json) Hash identifier: i8RN4159DA1L6AZX2aROVt+V09fgSfci/t5hDGQMe5U= Subject key identifier: 18:D6:A8:F9:AB:7B:9E:6F:5D:3A:17:E2:A3:14:07:79:3F:80:EA:53 Authority key identifier: 4E:28:4D:F2:8C:65:20:A7:71:13:04:15:F3:93:C8:34:7D:6E:6D:E9 Certificate issuer: /CN=A91FC765/serialNumber=4E284DF28C6520A771130415F393C8347D6E6DE9 Certificate serial: 1E40 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TihN8oxlIKdxEwQV85PINH1ubek.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FC765/E5C74BAA7F8111E6898E5F45C4F9AE02/TihN8oxlIKdxEwQV85PINH1ubek.mft Manifest number: 1E37 Signing time: Fri 30 May 2025 16:15:12 +0000 Manifest this update: Fri 30 May 2025 16:15:11 +0000 Manifest next update: Fri 06 Jun 2025 16:15:11 +0000 Files and hashes: 1: TihN8oxlIKdxEwQV85PINH1ubek.crl (hash: bfNOhiqb85A6uffsbLybfjVzSbn5hbg6lpgl8GRQ0o4=) 2: 9071A5E690CB11E6A804EF84C4F9AE02.roa (hash: KE/U/8wUAW1falY4CgDPXTNiOOjIqQ1zJL90tHiSQS8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FC765/E5C74BAA7F8111E6898E5F45C4F9AE02/TihN8oxlIKdxEwQV85PINH1ubek.crl rsync://rpki.apnic.net/member_repository/A91FC765/E5C74BAA7F8111E6898E5F45C4F9AE02/TihN8oxlIKdxEwQV85PINH1ubek.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TihN8oxlIKdxEwQV85PINH1ubek.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 16:15:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7744 (0x1e40) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FC765, serialNumber=4E284DF28C6520A771130415F393C8347D6E6DE9 Validity Not Before: May 30 16:15:11 2025 GMT Not After : Jun 6 16:15:11 2025 GMT Subject: CN=6839d98f-05fc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:9a:50:cb:ef:1d:f3:ed:75:80:27:67:d8:73: 86:63:ae:fe:79:ca:93:28:46:94:d4:82:46:1b:37: 7b:e3:e2:3f:59:de:ab:ad:d0:ec:ba:18:e4:8c:13: 0e:22:a5:ac:cd:60:23:1c:69:cb:e3:53:42:46:15: 85:0f:0d:cc:2e:43:03:d6:2e:d9:2e:37:c9:39:d2: 15:db:c3:e1:a7:0a:cb:e1:95:29:4a:b0:95:a1:89: 2f:7f:28:99:00:d0:a4:2e:47:b7:1d:b4:0d:b5:fa: aa:d2:20:72:f5:57:83:75:0a:63:a2:81:bf:18:4a: 23:d0:f9:5d:d9:d4:dd:ef:b5:66:22:ae:e5:4e:db: b4:62:8e:18:b4:e3:e1:1c:43:04:7c:25:d7:cf:a8: 45:01:c2:43:88:9e:b1:ff:98:7e:1a:a5:7e:e0:ef: a9:23:95:d6:88:55:cf:14:41:c5:8d:85:a8:35:90: 29:ce:36:d5:e0:17:ea:83:40:0c:b4:a4:6f:5b:81: bc:d5:6f:2a:3f:bb:58:08:24:cf:75:8a:89:72:e0: d6:ec:98:33:0e:7a:bc:91:f2:c5:e7:c5:32:0d:78: 22:0d:c7:1b:5a:b9:76:81:c0:4c:7b:c3:05:3e:30: 91:92:76:89:04:b5:47:35:c2:f8:e8:c6:96:ab:71: b5:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:D6:A8:F9:AB:7B:9E:6F:5D:3A:17:E2:A3:14:07:79:3F:80:EA:53 X509v3 Authority Key Identifier: keyid:4E:28:4D:F2:8C:65:20:A7:71:13:04:15:F3:93:C8:34:7D:6E:6D:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FC765/E5C74BAA7F8111E6898E5F45C4F9AE02/TihN8oxlIKdxEwQV85PINH1ubek.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TihN8oxlIKdxEwQV85PINH1ubek.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FC765/E5C74BAA7F8111E6898E5F45C4F9AE02/TihN8oxlIKdxEwQV85PINH1ubek.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:f4:85:3b:b9:51:0f:44:84:9e:ca:12:93:50:d6:cb:6c:9a: ac:ed:45:1f:0d:09:58:2f:ba:c9:4f:6b:ab:0b:59:9d:c7:58: c5:b9:85:d7:31:60:19:16:86:75:e2:21:cc:6c:92:7c:30:f8: d0:58:20:1e:a8:72:3d:89:f5:ef:71:d9:d1:01:7a:7d:8a:69: 45:a2:3b:08:87:b7:0a:b2:36:cc:c0:4e:7c:d1:d7:7c:72:71: d7:ed:a9:7e:f7:a4:36:c2:75:8b:0c:2e:d0:72:59:42:79:74: 11:ca:4f:6d:65:3a:70:bd:2f:6e:b9:7f:5f:a5:5e:6e:04:46: 3a:dd:bc:af:b7:80:96:56:82:33:81:04:04:a4:71:fb:79:63: 8c:f0:85:01:e2:5c:11:dc:0f:7e:c3:a9:83:bf:45:59:eb:2c: 66:7a:db:9a:9c:00:5e:f2:0d:25:0f:8a:e4:9f:3d:b1:1a:50: f1:f2:d4:7d:10:f6:8b:96:a3:c0:50:5a:63:42:3c:ea:e3:6e: 65:b9:c1:ef:fd:82:df:ab:2a:f4:f1:27:27:91:cb:7f:95:89: 3a:38:9d:81:c6:23:84:a7:44:1e:4b:de:0b:2c:00:9f:05:cd: 8f:08:29:24:85:8a:13:a8:83:b4:a0:c7:72:e1:53:21:c8:af: 4c:f7:01:56 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHkAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkM3NjUxMTAvBgNVBAUTKDRFMjg0REYyOEM2NTIwQTc3MTEzMDQxNUYzOTNDODM0 N0Q2RTZERTkwHhcNMjUwNTMwMTYxNTExWhcNMjUwNjA2MTYxNTExWjAYMRYwFAYD VQQDEw02ODM5ZDk4Zi0wNWZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyZpQy+8d8+11gCdn2HOGY67+ecqTKEaU1IJGGzd74+I/Wd6rrdDsuhjkjBMO IqWszWAjHGnL41NCRhWFDw3MLkMD1i7ZLjfJOdIV28PhpwrL4ZUpSrCVoYkvfyiZ ANCkLke3HbQNtfqq0iBy9VeDdQpjooG/GEoj0Pld2dTd77VmIq7lTtu0Yo4YtOPh HEMEfCXXz6hFAcJDiJ6x/5h+GqV+4O+pI5XWiFXPFEHFjYWoNZApzjbV4Bfqg0AM tKRvW4G81W8qP7tYCCTPdYqJcuDW7JgzDnq8kfLF58UyDXgiDccbWrl2gcBMe8MF PjCRknaJBLVHNcL46MaWq3G17QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBjWqPmr e55vXToX4qMUB3k/gOpTMB8GA1UdIwQYMBaAFE4oTfKMZSCncRMEFfOTyDR9bm3p MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQzc2NS9FNUM3NEJBQTdG ODExMUU2ODk4RTVGNDVDNEY5QUUwMi9UaWhOOG94bElLZHhFd1FWODVQSU5IMXVi ZWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RpaE44b3hsSUtkeEV3UVY4NVBJTkgxdWJlay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG Qzc2NS9FNUM3NEJBQTdGODExMUU2ODk4RTVGNDVDNEY5QUUwMi9UaWhOOG94bElL ZHhFd1FWODVQSU5IMXViZWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA69IU7uVEPRISeyhKTUNbLbJqs7UUfDQlYL7rJT2urC1mdx1jFuYXX MWAZFoZ14iHMbJJ8MPjQWCAeqHI9ifXvcdnRAXp9imlFojsIh7cKsjbMwE580dd8 cnHX7al+96Q2wnWLDC7QcllCeXQRyk9tZTpwvS9uuX9fpV5uBEY63byvt4CWVoIz gQQEpHH7eWOM8IUB4lwR3A9+w6mDv0VZ6yxmetuanABe8g0lD4rknz2xGlDx8tR9 EPaLlqPAUFpjQjzq425lucHv/YLfqyr08Scnkct/lYk6OJ2BxiOEp0QeS94LLACf Bc2PCCkkhYoTqIO0oMdy4VMhyK9M9wFW -----END CERTIFICATE-----Generated at Sat May 31 16:40:47 2025 by rpki-client