$ rpki-client -vvf rpki.apnic.net/member_repository/A91D0A62/1FA96DA0283111EC97A01316C4F9AE02/TN7H1CHxboUWcqgSOd0Y_IweOVY.mft File: TN7H1CHxboUWcqgSOd0Y_IweOVY.mft (raw, json) Hash identifier: HGipkGhNS1Xk7hVgUacCmY5ck82im2oftgl85htw5o8= Subject key identifier: 0A:A3:7F:F8:B2:BA:C4:D5:82:B8:9C:7D:AF:D6:E3:6E:20:98:1D:94 Authority key identifier: 4C:DE:C7:D4:21:F1:6E:85:16:72:A8:12:39:DD:18:FC:8C:1E:39:56 Certificate issuer: /CN=A91D0A62/serialNumber=4CDEC7D421F16E851672A81239DD18FC8C1E3956 Certificate serial: 0511 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TN7H1CHxboUWcqgSOd0Y_IweOVY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D0A62/1FA96DA0283111EC97A01316C4F9AE02/TN7H1CHxboUWcqgSOd0Y_IweOVY.mft Manifest number: 050C Signing time: Sun 19 Oct 2025 01:22:56 +0000 Manifest this update: Sun 19 Oct 2025 01:22:56 +0000 Manifest next update: Sun 26 Oct 2025 01:22:56 +0000 Files and hashes: 1: TN7H1CHxboUWcqgSOd0Y_IweOVY.crl (hash: ofsmVCS1nkmf1WzPJ2kcfw2o64FFDwu0yfvlPrawXFs=) 2: C54BA97E283311ECBE887F3BC4F9AE02.roa (hash: khCBRdWb426Yvsw+599qbEndOMTiul2nlL/4zC73sHk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D0A62/1FA96DA0283111EC97A01316C4F9AE02/TN7H1CHxboUWcqgSOd0Y_IweOVY.crl rsync://rpki.apnic.net/member_repository/A91D0A62/1FA96DA0283111EC97A01316C4F9AE02/TN7H1CHxboUWcqgSOd0Y_IweOVY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TN7H1CHxboUWcqgSOd0Y_IweOVY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 01:22:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1297 (0x511) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D0A62, serialNumber=4CDEC7D421F16E851672A81239DD18FC8C1E3956 Validity Not Before: Oct 19 01:22:56 2025 GMT Not After : Oct 26 01:22:56 2025 GMT Subject: CN=68f43d70-148e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:65:b1:58:6d:45:63:8c:62:89:fb:61:9d:c6: a4:27:77:db:a0:ce:79:bd:1f:c1:dc:89:c4:b1:44: 3e:b5:08:76:9e:fc:99:87:de:a8:e4:c3:12:c6:b6: fd:ae:ed:87:5e:71:f0:ba:ec:a6:fd:8a:31:78:b2: c3:6e:ed:66:3a:5a:49:89:18:7c:41:f7:6f:70:e1: b7:74:b4:fd:49:cf:73:7c:82:89:1e:98:78:83:b0: e9:9f:9f:73:76:be:c9:8c:55:dc:c7:f3:38:43:19: 7a:0d:ff:8d:e1:17:d8:2b:8f:6f:88:e3:14:25:06: b8:9b:f9:74:c1:b5:39:bc:56:4f:96:50:a5:fd:c2: e1:39:ca:4c:5c:9f:cf:b4:f3:36:2b:0d:9b:8c:e0: 57:d4:98:ef:d6:cf:e0:41:c1:a7:50:ed:ab:6a:cd: f4:a7:bc:f0:fa:46:3f:13:b7:9f:91:aa:66:72:d2: 5f:3a:cf:a2:47:8e:24:b3:97:17:e2:86:9d:cd:0c: 7c:b5:2d:ea:f8:38:3c:da:47:ba:00:2d:db:9c:e5: ca:b3:ad:5e:2d:ea:f6:fc:c7:61:0a:97:bd:c3:83: 17:f1:f3:85:0d:7c:68:77:22:11:c0:4d:7e:45:d2: 3f:0c:f0:85:9f:2d:0b:fa:1e:c2:e8:aa:94:8a:ae: 23:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:A3:7F:F8:B2:BA:C4:D5:82:B8:9C:7D:AF:D6:E3:6E:20:98:1D:94 X509v3 Authority Key Identifier: keyid:4C:DE:C7:D4:21:F1:6E:85:16:72:A8:12:39:DD:18:FC:8C:1E:39:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D0A62/1FA96DA0283111EC97A01316C4F9AE02/TN7H1CHxboUWcqgSOd0Y_IweOVY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TN7H1CHxboUWcqgSOd0Y_IweOVY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D0A62/1FA96DA0283111EC97A01316C4F9AE02/TN7H1CHxboUWcqgSOd0Y_IweOVY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 66:60:70:4d:1b:01:fd:90:90:81:02:6e:48:0d:c7:2a:bc:42: bf:f8:86:6b:d7:d0:81:79:9d:41:82:9e:58:5b:05:97:cd:81: 33:a7:31:31:35:12:75:50:51:64:66:11:04:7a:11:85:ce:56: 20:6a:a9:38:b4:1f:9f:d3:ed:81:98:83:c0:f0:8d:36:33:e4: d6:c1:ce:76:f9:cc:13:9b:00:d3:61:61:d2:88:21:fd:05:f0: 67:80:85:5b:47:ec:6f:3f:20:37:9b:4b:19:9b:82:26:2e:b6: 05:55:af:81:d8:42:57:32:42:b8:c6:17:b1:7e:ad:84:c2:46: a8:71:81:b9:50:fe:2c:a5:56:73:f4:07:c4:ff:20:a6:75:cd: ee:c6:bc:e3:51:6f:77:da:82:d5:3c:4c:33:11:cb:85:b0:b5: 13:3b:8b:0e:32:50:e0:e8:21:74:cb:e0:2f:a2:c5:5d:8c:5a: 89:bc:1e:2c:7a:24:db:1c:28:9f:dd:19:04:4c:82:9d:94:be: e6:62:67:81:0e:34:6e:d2:ad:65:39:10:6c:69:f4:3b:29:fe: fb:3c:9f:9c:5a:dd:2f:b8:3d:75:6f:42:a0:7c:59:83:90:53: 59:c4:8a:bf:3a:e5:26:5b:c3:97:23:f5:5b:ed:53:1b:b1:49: 6a:5d:72:1d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBREwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDBBNjIxMTAvBgNVBAUTKDRDREVDN0Q0MjFGMTZFODUxNjcyQTgxMjM5REQxOEZD OEMxRTM5NTYwHhcNMjUxMDE5MDEyMjU2WhcNMjUxMDI2MDEyMjU2WjAYMRYwFAYD VQQDEw02OGY0M2Q3MC0xNDhlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0GWxWG1FY4xiifthncakJ3fboM55vR/B3InEsUQ+tQh2nvyZh96o5MMSxrb9 ru2HXnHwuuym/YoxeLLDbu1mOlpJiRh8QfdvcOG3dLT9Sc9zfIKJHph4g7Dpn59z dr7JjFXcx/M4Qxl6Df+N4RfYK49viOMUJQa4m/l0wbU5vFZPllCl/cLhOcpMXJ/P tPM2Kw2bjOBX1Jjv1s/gQcGnUO2ras30p7zw+kY/E7efkapmctJfOs+iR44ks5cX 4oadzQx8tS3q+Dg82ke6AC3bnOXKs61eLer2/MdhCpe9w4MX8fOFDXxodyIRwE1+ RdI/DPCFny0L+h7C6KqUiq4jSwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAqjf/iy usTVgricfa/W424gmB2UMB8GA1UdIwQYMBaAFEzex9Qh8W6FFnKoEjndGPyMHjlW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMEE2Mi8xRkE5NkRBMDI4 MzExMUVDOTdBMDEzMTZDNEY5QUUwMi9UTjdIMUNIeGJvVVdjcWdTT2QwWV9Jd2VP VlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RON0gxQ0h4Ym9VV2NxZ1NPZDBZX0l3ZU9WWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MEE2Mi8xRkE5NkRBMDI4MzExMUVDOTdBMDEzMTZDNEY5QUUwMi9UTjdIMUNIeGJv VVdjcWdTT2QwWV9Jd2VPVlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBmYHBNGwH9kJCBAm5IDccqvEK/+IZr19CBeZ1Bgp5YWwWXzYEzpzEx NRJ1UFFkZhEEehGFzlYgaqk4tB+f0+2BmIPA8I02M+TWwc52+cwTmwDTYWHSiCH9 BfBngIVbR+xvPyA3m0sZm4ImLrYFVa+B2EJXMkK4xhexfq2EwkaocYG5UP4spVZz 9AfE/yCmdc3uxrzjUW932oLVPEwzEcuFsLUTO4sOMlDg6CF0y+AvosVdjFqJvB4s eiTbHCif3RkETIKdlL7mYmeBDjRu0q1lORBsafQ7Kf77PJ+cWt0vuD11b0KgfFmD kFNZxIq/OuUmW8OXI/Vb7VMbsUlqXXId -----END CERTIFICATE-----Generated at Mon Oct 20 01:47:20 2025 by rpki-client