$ rpki-client -vvf rpki.apnic.net/member_repository/A91FC765/E5C74BAA7F8111E6898E5F45C4F9AE02/TihN8oxlIKdxEwQV85PINH1ubek.mft File: TihN8oxlIKdxEwQV85PINH1ubek.mft (raw, json) Hash identifier: ySSmN220XlBF8EUrj/BnUwqQcewD24UKYjX94vFkdpk= Subject key identifier: 97:7F:F8:C7:7A:13:6C:0C:F9:78:E9:8F:4C:1E:E6:B3:68:67:2E:75 Authority key identifier: 4E:28:4D:F2:8C:65:20:A7:71:13:04:15:F3:93:C8:34:7D:6E:6D:E9 Certificate issuer: /CN=A91FC765/serialNumber=4E284DF28C6520A771130415F393C8347D6E6DE9 Certificate serial: 1E93 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TihN8oxlIKdxEwQV85PINH1ubek.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FC765/E5C74BAA7F8111E6898E5F45C4F9AE02/TihN8oxlIKdxEwQV85PINH1ubek.mft Manifest number: 1E89 Signing time: Sun 02 Nov 2025 16:03:46 +0000 Manifest this update: Sun 02 Nov 2025 16:03:46 +0000 Manifest next update: Sun 09 Nov 2025 16:03:46 +0000 Files and hashes: 1: TihN8oxlIKdxEwQV85PINH1ubek.crl (hash: CrW41bu7x9G4nZGY8bkDi9sKLcOnpb4icsOQp12rQqk=) 2: 9071A5E690CB11E6A804EF84C4F9AE02.roa (hash: Lxohf2VrEq5kdMHODmRZ0pz5VX7gk6t5HOgofkIu3rQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FC765/E5C74BAA7F8111E6898E5F45C4F9AE02/TihN8oxlIKdxEwQV85PINH1ubek.crl rsync://rpki.apnic.net/member_repository/A91FC765/E5C74BAA7F8111E6898E5F45C4F9AE02/TihN8oxlIKdxEwQV85PINH1ubek.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TihN8oxlIKdxEwQV85PINH1ubek.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 16:03:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7827 (0x1e93) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FC765, serialNumber=4E284DF28C6520A771130415F393C8347D6E6DE9 Validity Not Before: Nov 2 16:03:46 2025 GMT Not After : Nov 9 16:03:46 2025 GMT Subject: CN=690780e2-4ca3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:25:bb:3c:27:f1:8a:4e:06:f0:12:78:bb:b9: 43:93:63:c4:9c:77:0c:23:a5:2f:d2:23:0f:09:89: e3:82:bc:b5:01:fc:1a:f1:99:69:16:c7:2c:a9:14: 9a:44:dd:d8:68:44:ba:18:82:71:c3:2f:6c:3b:7e: 55:9e:7f:93:da:a2:82:99:fd:85:5e:b3:10:8b:7f: 82:72:79:0c:1f:db:b8:c2:ce:0e:13:2c:64:c3:66: 6c:a6:18:38:ab:eb:46:9c:fb:78:a5:2f:27:b3:84: c6:dd:d8:34:93:88:95:7f:46:3e:98:ea:0c:83:28: 3b:91:ce:5c:56:f7:e4:7e:e0:37:d2:a6:0c:62:67: 4e:ae:78:32:4c:4d:87:f5:59:64:f6:74:c9:2d:72: 78:24:21:51:8e:04:ca:6e:6b:c4:31:01:af:8a:d6: 42:a3:99:62:73:1d:59:19:f6:28:0a:66:d0:55:c2: c5:5d:a5:92:19:35:f9:95:d1:97:47:47:bc:1e:22: f3:ce:93:ff:bf:27:ff:f5:b7:74:e8:cf:8e:fc:1f: de:b2:20:02:51:09:c5:74:e4:95:b3:e1:3c:50:2b: 8c:73:8e:38:31:19:07:4d:e3:b3:c4:ae:6e:eb:51: 56:c7:6d:94:b6:db:6e:3d:e6:18:c3:a9:c6:e0:27: 93:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:7F:F8:C7:7A:13:6C:0C:F9:78:E9:8F:4C:1E:E6:B3:68:67:2E:75 X509v3 Authority Key Identifier: keyid:4E:28:4D:F2:8C:65:20:A7:71:13:04:15:F3:93:C8:34:7D:6E:6D:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FC765/E5C74BAA7F8111E6898E5F45C4F9AE02/TihN8oxlIKdxEwQV85PINH1ubek.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TihN8oxlIKdxEwQV85PINH1ubek.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FC765/E5C74BAA7F8111E6898E5F45C4F9AE02/TihN8oxlIKdxEwQV85PINH1ubek.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 44:dc:97:17:dd:62:a2:e1:03:6f:53:3e:15:99:f9:68:68:91: a0:50:c4:08:d9:4a:a8:58:2a:21:48:32:de:be:17:d6:9c:cd: 78:4f:41:17:aa:12:27:57:20:6a:be:ea:db:80:c9:56:c0:47: b1:6d:32:08:86:f9:86:12:7e:db:e6:34:c9:fb:29:93:e9:77: ad:3c:df:6a:8a:5e:e9:7f:33:e8:07:37:8f:b5:57:f0:9f:3b: 9d:79:65:30:16:94:b4:2d:b8:c9:07:95:8d:34:a0:5b:da:45: ea:86:56:66:57:2e:19:3b:37:cb:52:4a:5f:74:0a:8c:54:a8: 96:43:92:a6:c7:46:3b:f6:04:ff:6c:97:ea:84:a6:26:b6:37: 8c:66:3d:9c:d0:9e:77:8f:61:91:56:a3:c8:4a:fa:42:69:56: 48:26:58:a4:18:3d:55:63:6e:4b:e6:48:cf:ce:f1:42:f9:35: 4f:59:72:ca:77:22:b1:ab:55:dd:94:e4:7b:c5:31:26:8d:e0: 1c:6d:8d:83:fd:52:11:12:84:e5:63:ac:35:38:51:ce:ff:03: 8c:a4:75:ec:3d:83:a0:83:04:44:38:ce:03:a9:13:f1:6a:0e: ca:89:1a:62:a0:4e:33:c7:78:99:9b:99:b1:81:43:5c:bb:83: b6:17:4a:58 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHpMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkM3NjUxMTAvBgNVBAUTKDRFMjg0REYyOEM2NTIwQTc3MTEzMDQxNUYzOTNDODM0 N0Q2RTZERTkwHhcNMjUxMTAyMTYwMzQ2WhcNMjUxMTA5MTYwMzQ2WjAYMRYwFAYD VQQDEw02OTA3ODBlMi00Y2EzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqiW7PCfxik4G8BJ4u7lDk2PEnHcMI6Uv0iMPCYnjgry1Afwa8ZlpFscsqRSa RN3YaES6GIJxwy9sO35Vnn+T2qKCmf2FXrMQi3+CcnkMH9u4ws4OEyxkw2Zsphg4 q+tGnPt4pS8ns4TG3dg0k4iVf0Y+mOoMgyg7kc5cVvfkfuA30qYMYmdOrngyTE2H 9Vlk9nTJLXJ4JCFRjgTKbmvEMQGvitZCo5licx1ZGfYoCmbQVcLFXaWSGTX5ldGX R0e8HiLzzpP/vyf/9bd06M+O/B/esiACUQnFdOSVs+E8UCuMc444MRkHTeOzxK5u 61FWx22UtttuPeYYw6nG4CeTSwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJd/+Md6 E2wM+Xjpj0we5rNoZy51MB8GA1UdIwQYMBaAFE4oTfKMZSCncRMEFfOTyDR9bm3p MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQzc2NS9FNUM3NEJBQTdG ODExMUU2ODk4RTVGNDVDNEY5QUUwMi9UaWhOOG94bElLZHhFd1FWODVQSU5IMXVi ZWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RpaE44b3hsSUtkeEV3UVY4NVBJTkgxdWJlay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG Qzc2NS9FNUM3NEJBQTdGODExMUU2ODk4RTVGNDVDNEY5QUUwMi9UaWhOOG94bElL ZHhFd1FWODVQSU5IMXViZWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBE3JcX3WKi4QNvUz4VmfloaJGgUMQI2UqoWCohSDLevhfWnM14T0EX qhInVyBqvurbgMlWwEexbTIIhvmGEn7b5jTJ+ymT6XetPN9qil7pfzPoBzePtVfw nzudeWUwFpS0LbjJB5WNNKBb2kXqhlZmVy4ZOzfLUkpfdAqMVKiWQ5Kmx0Y79gT/ bJfqhKYmtjeMZj2c0J53j2GRVqPISvpCaVZIJlikGD1VY25L5kjPzvFC+TVPWXLK dyKxq1XdlOR7xTEmjeAcbY2D/VIREoTlY6w1OFHO/wOMpHXsPYOggwREOM4DqRPx ag7KiRpioE4zx3iZm5mxgUNcu4O2F0pY -----END CERTIFICATE-----Generated at Tue Nov 4 01:07:23 2025 by rpki-client