$ rpki-client -vvf rpki.apnic.net/member_repository/A91C7991/7C7B1F66C35A11EAA8ECB67FC4F9AE02/TCaZ0hPdXVmbDsDkY7lIT9si9Cc.mft File: TCaZ0hPdXVmbDsDkY7lIT9si9Cc.mft (raw, json) Hash identifier: JFdwVEySDxdaQCSGfdup417dNN1f59PdFEfVpCNfRRE= Subject key identifier: F7:7E:A6:4F:04:AE:AD:F4:A7:69:B6:EB:72:90:31:DD:48:98:14:02 Authority key identifier: 4C:26:99:D2:13:DD:5D:59:9B:0E:C0:E4:63:B9:48:4F:DB:22:F4:27 Certificate issuer: /CN=A91C7991/serialNumber=4C2699D213DD5D599B0EC0E463B9484FDB22F427 Certificate serial: 08C2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TCaZ0hPdXVmbDsDkY7lIT9si9Cc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C7991/7C7B1F66C35A11EAA8ECB67FC4F9AE02/TCaZ0hPdXVmbDsDkY7lIT9si9Cc.mft Manifest number: 08BA Signing time: Sat 18 Oct 2025 21:37:00 +0000 Manifest this update: Sat 18 Oct 2025 21:37:00 +0000 Manifest next update: Sat 25 Oct 2025 21:37:00 +0000 Files and hashes: 1: TCaZ0hPdXVmbDsDkY7lIT9si9Cc.crl (hash: f4hJZJy0761/FUcYvZCn1riS5sQq6BAEs9ifLjVwcCg=) 2: 456CD12E5F0111ECAE4F0286C4F9AE02.roa (hash: Yvl58W31jTaXrFpKwLiylkuL3NEb2f8QrSD0rbbSX2w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C7991/7C7B1F66C35A11EAA8ECB67FC4F9AE02/TCaZ0hPdXVmbDsDkY7lIT9si9Cc.crl rsync://rpki.apnic.net/member_repository/A91C7991/7C7B1F66C35A11EAA8ECB67FC4F9AE02/TCaZ0hPdXVmbDsDkY7lIT9si9Cc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TCaZ0hPdXVmbDsDkY7lIT9si9Cc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 21:36:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2242 (0x8c2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C7991, serialNumber=4C2699D213DD5D599B0EC0E463B9484FDB22F427 Validity Not Before: Oct 18 21:37:00 2025 GMT Not After : Oct 25 21:37:00 2025 GMT Subject: CN=68f4087c-dfdd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:4e:e3:9c:02:33:10:eb:1c:21:8d:87:76:7d: db:40:1e:63:05:37:76:e3:10:60:1b:1c:98:1b:14: dd:f6:4b:66:be:9a:77:68:1e:3f:8e:2b:99:26:77: db:be:9a:82:d9:85:7c:4a:0d:62:54:52:e5:36:70: ac:4c:06:74:48:37:88:c4:40:a4:17:62:b8:49:14: f8:cd:3d:3b:32:a3:7a:97:ed:04:49:31:7b:24:72: 83:58:d4:c1:ac:d0:49:41:83:c2:7f:88:80:66:83: 1b:a0:e7:e2:1f:e1:48:f1:db:61:43:5c:de:be:34: 25:8d:e5:30:42:e6:ca:c5:3e:e8:28:4a:f8:36:a8: 50:ff:45:3f:af:c3:26:39:f5:1a:53:d2:c9:d5:bf: 34:2b:32:43:2a:56:12:d4:cc:7e:73:88:63:6b:1e: d5:a8:d2:09:a0:97:c4:95:4a:be:b7:82:7d:36:41: 25:be:fc:33:a3:e3:86:57:6d:1e:e0:96:4c:13:45: 43:11:00:01:b1:c1:b0:07:24:e6:b5:25:e6:17:a9: c8:3e:0f:40:59:18:02:79:a1:34:d4:58:00:8c:26: d9:ca:99:2d:7b:8b:29:96:a2:02:42:d4:4a:82:68: 72:c1:94:cb:7f:3e:cf:04:44:a8:e6:8a:5a:1c:b2: 98:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:7E:A6:4F:04:AE:AD:F4:A7:69:B6:EB:72:90:31:DD:48:98:14:02 X509v3 Authority Key Identifier: keyid:4C:26:99:D2:13:DD:5D:59:9B:0E:C0:E4:63:B9:48:4F:DB:22:F4:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C7991/7C7B1F66C35A11EAA8ECB67FC4F9AE02/TCaZ0hPdXVmbDsDkY7lIT9si9Cc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TCaZ0hPdXVmbDsDkY7lIT9si9Cc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C7991/7C7B1F66C35A11EAA8ECB67FC4F9AE02/TCaZ0hPdXVmbDsDkY7lIT9si9Cc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c4:ae:01:54:a6:b8:be:ab:99:39:b6:a2:46:6b:6b:a1:10:86: 1f:cb:95:f3:c9:a7:3b:ae:d8:31:4a:7e:13:53:09:c2:ea:3e: eb:96:d7:5f:7e:41:38:22:1c:25:18:b6:aa:e6:85:22:18:f2: 10:7c:fb:75:c3:55:45:5d:36:c0:45:07:09:93:da:9b:05:cb: 69:97:a4:c8:31:82:02:8f:40:7f:84:a3:69:c0:57:4f:9d:4d: 23:86:be:03:b6:29:11:f6:c7:26:4e:33:08:e9:94:ea:fa:72: ad:64:31:b9:18:12:1c:72:7c:5c:9e:3b:53:6d:46:22:a9:43: 84:36:f5:61:0e:59:c3:41:cf:b2:50:54:c1:fa:33:aa:c8:45: b0:57:ca:fe:5a:fc:c9:f7:a7:fa:8d:9d:2c:9f:e1:1e:dc:ca: 32:4b:3f:4a:48:6e:e4:e9:8a:fd:4c:d3:8c:d1:aa:29:e9:57: fe:b2:70:4c:9a:ae:be:4c:91:e9:85:b4:c3:31:b7:d6:cf:40: 2f:2d:3b:5f:b6:ea:8c:11:18:60:2b:64:3a:69:f7:06:ca:4e: ea:29:29:22:10:3d:0d:e9:1a:e5:13:30:2a:46:40:a7:11:8f: 70:4f:5e:4e:2e:7b:d0:98:b4:13:9c:a5:7c:72:52:cc:56:d5: 71:f0:b6:a2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCMIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzc5OTExMTAvBgNVBAUTKDRDMjY5OUQyMTNERDVENTk5QjBFQzBFNDYzQjk0ODRG REIyMkY0MjcwHhcNMjUxMDE4MjEzNzAwWhcNMjUxMDI1MjEzNzAwWjAYMRYwFAYD VQQDEw02OGY0MDg3Yy1kZmRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvE7jnAIzEOscIY2Hdn3bQB5jBTd24xBgGxyYGxTd9ktmvpp3aB4/jiuZJnfb vpqC2YV8Sg1iVFLlNnCsTAZ0SDeIxECkF2K4SRT4zT07MqN6l+0ESTF7JHKDWNTB rNBJQYPCf4iAZoMboOfiH+FI8dthQ1zevjQljeUwQubKxT7oKEr4NqhQ/0U/r8Mm OfUaU9LJ1b80KzJDKlYS1Mx+c4hjax7VqNIJoJfElUq+t4J9NkElvvwzo+OGV20e 4JZME0VDEQABscGwByTmtSXmF6nIPg9AWRgCeaE01FgAjCbZypkte4splqICQtRK gmhywZTLfz7PBESo5opaHLKYsQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPd+pk8E rq30p2m263KQMd1ImBQCMB8GA1UdIwQYMBaAFEwmmdIT3V1Zmw7A5GO5SE/bIvQn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNzk5MS83QzdCMUY2NkMz NUExMUVBQThFQ0I2N0ZDNEY5QUUwMi9UQ2FaMGhQZFhWbWJEc0RrWTdsSVQ5c2k5 Q2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RDYVowaFBkWFZtYkRzRGtZN2xJVDlzaTlDYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD Nzk5MS83QzdCMUY2NkMzNUExMUVBQThFQ0I2N0ZDNEY5QUUwMi9UQ2FaMGhQZFhW bWJEc0RrWTdsSVQ5c2k5Q2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDErgFUpri+q5k5tqJGa2uhEIYfy5Xzyac7rtgxSn4TUwnC6j7rltdf fkE4IhwlGLaq5oUiGPIQfPt1w1VFXTbARQcJk9qbBctpl6TIMYICj0B/hKNpwFdP nU0jhr4DtikR9scmTjMI6ZTq+nKtZDG5GBIccnxcnjtTbUYiqUOENvVhDlnDQc+y UFTB+jOqyEWwV8r+WvzJ96f6jZ0sn+Ee3MoySz9KSG7k6Yr9TNOM0aop6Vf+snBM mq6+TJHphbTDMbfWz0AvLTtftuqMERhgK2Q6afcGyk7qKSkiED0N6RrlEzAqRkCn EY9wT15OLnvQmLQTnKV8clLMVtVx8Lai -----END CERTIFICATE-----Generated at Mon Oct 20 08:00:22 2025 by rpki-client