$ rpki-client -vvf rpki.apnic.net/member_repository/A91716DE/8F340DD0752D11EC9C748D54C4F9AE02/TMkE6Uxcm5OkSk9l77IKgA1t1-c.mft File: TMkE6Uxcm5OkSk9l77IKgA1t1-c.mft (raw, json) Hash identifier: 3CdMKdq9he3VwDj5+DirNbxZesnhxiazHBb73k8RDc0= Subject key identifier: 1D:16:EA:D4:93:47:00:E5:35:A7:4D:9D:EF:EF:4F:3A:85:13:54:CD Authority key identifier: 4C:C9:04:E9:4C:5C:9B:93:A4:4A:4F:65:EF:B2:0A:80:0D:6D:D7:E7 Certificate issuer: /CN=A91716DE/serialNumber=4CC904E94C5C9B93A44A4F65EFB20A800D6DD7E7 Certificate serial: 0453 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TMkE6Uxcm5OkSk9l77IKgA1t1-c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91716DE/8F340DD0752D11EC9C748D54C4F9AE02/TMkE6Uxcm5OkSk9l77IKgA1t1-c.mft Manifest number: 0449 Signing time: Sun 19 Oct 2025 02:07:39 +0000 Manifest this update: Sun 19 Oct 2025 02:07:38 +0000 Manifest next update: Sun 26 Oct 2025 02:07:38 +0000 Files and hashes: 1: TMkE6Uxcm5OkSk9l77IKgA1t1-c.crl (hash: rKSDjBUuRQqUeLkdNW1t6C+AR57VrYvu+XAnMvbfZnw=) 2: E2348176D54D11EF8A899250C4F9AE02.roa (hash: 306xxmMO0L8F4kDhDkLe1fwHAL2pRNtzpCEiuu3Fy6g=) 3: 75FC6CC2753711EC9091CB62C4F9AE02.roa (hash: 09H6WJNzMO6bY1CShsLhlCFgsX+1B/xNo5NQ+Cdhlps=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91716DE/8F340DD0752D11EC9C748D54C4F9AE02/TMkE6Uxcm5OkSk9l77IKgA1t1-c.crl rsync://rpki.apnic.net/member_repository/A91716DE/8F340DD0752D11EC9C748D54C4F9AE02/TMkE6Uxcm5OkSk9l77IKgA1t1-c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TMkE6Uxcm5OkSk9l77IKgA1t1-c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 02:07:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1107 (0x453) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91716DE, serialNumber=4CC904E94C5C9B93A44A4F65EFB20A800D6DD7E7 Validity Not Before: Oct 19 02:07:38 2025 GMT Not After : Oct 26 02:07:38 2025 GMT Subject: CN=68f447ea-e630 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:a0:16:59:43:09:d4:9e:c9:70:fe:b5:9a:af: fd:77:11:35:f0:dd:77:35:6e:73:6d:2f:3f:41:ca: 14:40:da:cb:28:6a:66:ef:18:73:04:55:c9:f8:d7: 94:13:f1:d4:46:a8:9b:ff:b5:d4:10:8b:e4:94:45: 1f:f7:35:b4:dc:ab:f8:52:5e:ba:4d:91:c5:80:07: d3:a3:d7:79:e5:94:ff:b5:b1:92:f5:5c:26:52:6d: f5:e5:a9:54:10:ca:ee:41:ed:da:d0:08:92:ce:cb: a6:d3:33:6f:04:a7:7a:83:6a:7e:9b:98:71:01:86: b7:45:d0:86:7d:a8:85:fc:64:86:b5:35:c6:2a:76: e3:8d:06:94:6e:b9:90:da:60:25:1e:2d:b3:18:ac: 04:b3:e3:4c:17:fb:34:a5:3b:63:08:d2:7d:28:f4: f3:06:e3:30:6b:3c:54:29:87:41:67:17:4c:df:57: 15:cf:2e:ad:7e:0c:01:40:25:a7:b3:59:d5:0f:57: fb:d0:43:45:49:ed:50:59:b4:66:a8:fd:fc:58:e4: 78:6b:0e:dc:14:bc:0b:99:5c:82:f7:16:40:f6:45: ea:e2:84:5c:cc:84:b6:b8:9c:7f:ec:d9:81:91:b9: ab:53:bc:6a:66:56:ea:33:6f:21:38:d3:ab:ae:c1: ae:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:16:EA:D4:93:47:00:E5:35:A7:4D:9D:EF:EF:4F:3A:85:13:54:CD X509v3 Authority Key Identifier: keyid:4C:C9:04:E9:4C:5C:9B:93:A4:4A:4F:65:EF:B2:0A:80:0D:6D:D7:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91716DE/8F340DD0752D11EC9C748D54C4F9AE02/TMkE6Uxcm5OkSk9l77IKgA1t1-c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TMkE6Uxcm5OkSk9l77IKgA1t1-c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91716DE/8F340DD0752D11EC9C748D54C4F9AE02/TMkE6Uxcm5OkSk9l77IKgA1t1-c.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 41:70:f8:b3:5a:a7:d0:5d:78:c9:9e:4f:8f:cc:84:57:3d:e4: 30:2f:52:85:9e:05:c2:9a:63:22:04:06:e8:bd:b3:1a:1b:fa: 43:2e:46:ac:4b:1d:a8:13:1a:5a:b9:b9:0e:fb:3c:09:95:2b: 3d:fa:2c:7a:3f:81:9a:1c:a0:be:d9:7b:24:6a:72:cd:b3:6a: ad:41:79:ff:fe:3f:c6:ac:6e:b4:05:1a:ee:01:e5:97:b8:66: a3:9e:56:b3:30:da:b1:2f:34:2a:db:06:00:3b:d1:d8:e8:3d: a2:bb:cf:2d:b6:f0:49:d8:0e:90:c1:c6:ac:af:f0:aa:60:2e: eb:79:fd:0e:70:58:d4:72:79:f6:6a:25:79:3b:c4:b8:e6:47: c4:41:2f:de:81:37:b2:2f:06:49:9a:02:85:8b:09:6a:d6:48: 59:01:ee:11:7d:55:c5:13:d6:d7:a2:95:35:97:ee:5d:c7:10: b1:22:b1:8f:9e:fa:ea:20:91:e3:db:02:dd:70:b2:1c:b2:07: d7:36:43:d0:af:12:30:ef:aa:04:49:f5:99:8b:a0:c7:5f:a7: ef:06:ac:2e:6b:d1:44:72:e9:eb:e6:08:6e:81:ba:af:36:94: 08:40:ad:84:00:02:36:9e:3a:5c:17:a1:15:5a:1c:f1:6e:eb: b3:cd:13:16 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBFMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzE2REUxMTAvBgNVBAUTKDRDQzkwNEU5NEM1QzlCOTNBNDRBNEY2NUVGQjIwQTgw MEQ2REQ3RTcwHhcNMjUxMDE5MDIwNzM4WhcNMjUxMDI2MDIwNzM4WjAYMRYwFAYD VQQDEw02OGY0NDdlYS1lNjMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzaAWWUMJ1J7JcP61mq/9dxE18N13NW5zbS8/QcoUQNrLKGpm7xhzBFXJ+NeU E/HURqib/7XUEIvklEUf9zW03Kv4Ul66TZHFgAfTo9d55ZT/tbGS9VwmUm315alU EMruQe3a0AiSzsum0zNvBKd6g2p+m5hxAYa3RdCGfaiF/GSGtTXGKnbjjQaUbrmQ 2mAlHi2zGKwEs+NMF/s0pTtjCNJ9KPTzBuMwazxUKYdBZxdM31cVzy6tfgwBQCWn s1nVD1f70ENFSe1QWbRmqP38WOR4aw7cFLwLmVyC9xZA9kXq4oRczIS2uJx/7NmB kbmrU7xqZlbqM28hONOrrsGu0QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB0W6tST RwDlNadNne/vTzqFE1TNMB8GA1UdIwQYMBaAFEzJBOlMXJuTpEpPZe+yCoANbdfn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MTZERS84RjM0MEREMDc1 MkQxMUVDOUM3NDhENTRDNEY5QUUwMi9UTWtFNlV4Y201T2tTazlsNzdJS2dBMXQx LWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RNa0U2VXhjbTVPa1NrOWw3N0lLZ0ExdDEtYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MTZERS84RjM0MEREMDc1MkQxMUVDOUM3NDhENTRDNEY5QUUwMi9UTWtFNlV4Y201 T2tTazlsNzdJS2dBMXQxLWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBBcPizWqfQXXjJnk+PzIRXPeQwL1KFngXCmmMiBAbovbMaG/pDLkas Sx2oExpaubkO+zwJlSs9+ix6P4GaHKC+2XskanLNs2qtQXn//j/GrG60BRruAeWX uGajnlazMNqxLzQq2wYAO9HY6D2iu88ttvBJ2A6Qwcasr/CqYC7ref0OcFjUcnn2 aiV5O8S45kfEQS/egTeyLwZJmgKFiwlq1khZAe4RfVXFE9bXopU1l+5dxxCxIrGP nvrqIJHj2wLdcLIcsgfXNkPQrxIw76oESfWZi6DHX6fvBqwua9FEcunr5ghugbqv NpQIQK2EAAI2njpcF6EVWhzxbuuzzRMW -----END CERTIFICATE-----Generated at Mon Oct 20 14:46:43 2025 by rpki-client