$ rpki-client -vvf rpki.apnic.net/member_repository/A91D4636/2C9BC33C979911ECBE725A3CC4F9AE02/tGhODWIsua_RLLX6PkiF382FAE0.mft File: tGhODWIsua_RLLX6PkiF382FAE0.mft (raw, json) Hash identifier: TuXhueROSWkbbW2y5PU6NKM0H5JUmKVaxIZ6FpVQOac= Subject key identifier: DB:34:2F:D2:F9:94:0B:69:17:42:3C:DE:6A:7A:C6:90:C7:17:7D:34 Authority key identifier: B4:68:4E:0D:62:2C:B9:AF:D1:2C:B5:FA:3E:48:85:DF:CD:85:00:4D Certificate issuer: /CN=A91D4636/serialNumber=B4684E0D622CB9AFD12CB5FA3E4885DFCD85004D Certificate serial: 03FB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tGhODWIsua_RLLX6PkiF382FAE0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D4636/2C9BC33C979911ECBE725A3CC4F9AE02/tGhODWIsua_RLLX6PkiF382FAE0.mft Manifest number: 03F2 Signing time: Sun 19 Oct 2025 02:27:34 +0000 Manifest this update: Sun 19 Oct 2025 02:27:34 +0000 Manifest next update: Sun 26 Oct 2025 02:27:34 +0000 Files and hashes: 1: tGhODWIsua_RLLX6PkiF382FAE0.crl (hash: /kkKQrXaVnSUe74BYS2iUaRX8eS++pg0H69rsVNIjj4=) 2: C458350E979C11EC8E769C43C4F9AE02.roa (hash: D0wo+x5/eI47vVGDL5twz0n4up2ZDNjTCVO1Xyw3jxg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D4636/2C9BC33C979911ECBE725A3CC4F9AE02/tGhODWIsua_RLLX6PkiF382FAE0.crl rsync://rpki.apnic.net/member_repository/A91D4636/2C9BC33C979911ECBE725A3CC4F9AE02/tGhODWIsua_RLLX6PkiF382FAE0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tGhODWIsua_RLLX6PkiF382FAE0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 02:27:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1019 (0x3fb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D4636, serialNumber=B4684E0D622CB9AFD12CB5FA3E4885DFCD85004D Validity Not Before: Oct 19 02:27:34 2025 GMT Not After : Oct 26 02:27:34 2025 GMT Subject: CN=68f44c96-638f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:9d:1f:8e:2d:44:b6:60:ea:fd:53:84:2f:54: 06:ee:c3:0a:ae:3d:85:0b:91:8f:b7:5f:3a:1c:18: 05:45:49:54:0b:0d:64:7c:48:ab:65:18:00:a6:41: 59:77:45:19:5f:1b:5e:9d:87:c8:28:b6:ce:5f:cd: 10:fb:ff:58:30:aa:2d:91:e0:9c:fe:e9:e7:ab:a4: 26:19:fc:7e:68:f8:b3:f0:be:7d:d8:6a:06:e2:b6: a8:03:ca:db:bf:43:7b:e0:10:33:4b:60:5a:26:0e: c4:db:f6:22:91:c7:f3:fe:ca:f7:88:4b:da:58:1b: f5:b3:8d:af:c7:6e:1d:ef:9e:97:2b:33:13:04:70: b0:83:88:74:42:0a:82:f9:84:84:09:e4:0a:9e:3f: 1b:0a:9d:e8:da:fe:52:e9:65:8e:89:22:60:4f:a6: 09:62:d6:76:fe:5e:73:20:db:8b:dd:b4:9f:55:2b: 26:87:c9:d6:f0:16:7f:cd:dc:41:1c:22:7c:0f:c0: 43:0e:70:96:e8:65:bb:12:64:12:3e:c4:73:59:4c: 0b:74:93:57:3a:a2:35:47:92:b1:49:f5:a2:80:50: a7:0c:c0:62:df:b1:40:f8:1a:8b:b9:bc:97:89:7d: c6:f9:d6:02:56:d4:dd:bd:64:4f:26:5c:17:45:bd: 1c:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:34:2F:D2:F9:94:0B:69:17:42:3C:DE:6A:7A:C6:90:C7:17:7D:34 X509v3 Authority Key Identifier: keyid:B4:68:4E:0D:62:2C:B9:AF:D1:2C:B5:FA:3E:48:85:DF:CD:85:00:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D4636/2C9BC33C979911ECBE725A3CC4F9AE02/tGhODWIsua_RLLX6PkiF382FAE0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tGhODWIsua_RLLX6PkiF382FAE0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D4636/2C9BC33C979911ECBE725A3CC4F9AE02/tGhODWIsua_RLLX6PkiF382FAE0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b1:ff:cf:d3:f8:cd:30:46:c4:c2:22:c2:a3:af:f7:6b:93:4b: 7a:d0:a8:b0:6d:3c:e2:f9:e1:6a:6b:31:5b:dc:60:b6:0c:c6: 61:ab:61:c6:02:88:f8:91:7a:5f:65:f2:59:ca:63:25:87:60: d9:d5:34:58:65:b3:30:5f:ee:96:cf:66:e3:52:cd:1d:51:3e: fc:b8:76:27:1e:43:3c:cc:f3:02:bd:26:8e:50:a3:95:bd:d7: 4c:6f:f4:56:ca:37:13:2e:d0:68:5b:02:8f:4a:98:ba:0c:af: a2:9e:cc:ec:16:ae:28:c0:b5:8c:0a:de:f9:4b:b7:1d:a5:7d: 68:b1:16:48:0a:cb:b7:0e:5e:4c:0b:a9:2b:92:ca:f7:98:d5: e2:62:58:d2:53:e5:c7:a4:10:c3:1b:91:dc:d6:65:27:6f:bb: 91:07:6a:60:43:54:c9:d3:e7:a7:55:63:55:0b:e4:d8:41:20: ea:20:ff:ca:bc:bc:6a:96:73:ae:e9:50:78:19:ff:85:de:68: 80:2e:b9:01:ea:94:4f:13:ee:fb:14:bd:2c:fc:b0:3e:65:97: f9:26:13:ba:49:67:90:13:c9:9f:b5:64:dc:e1:9a:e8:55:93: c2:ab:5d:21:d8:d8:ea:e5:bc:e4:0a:45:98:1b:5f:f2:03:db: a5:c5:3b:11 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA/swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDQ2MzYxMTAvBgNVBAUTKEI0Njg0RTBENjIyQ0I5QUZEMTJDQjVGQTNFNDg4NURG Q0Q4NTAwNEQwHhcNMjUxMDE5MDIyNzM0WhcNMjUxMDI2MDIyNzM0WjAYMRYwFAYD VQQDEw02OGY0NGM5Ni02MzhmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6p0fji1EtmDq/VOEL1QG7sMKrj2FC5GPt186HBgFRUlUCw1kfEirZRgApkFZ d0UZXxtenYfIKLbOX80Q+/9YMKotkeCc/unnq6QmGfx+aPiz8L592GoG4raoA8rb v0N74BAzS2BaJg7E2/Yikcfz/sr3iEvaWBv1s42vx24d756XKzMTBHCwg4h0QgqC +YSECeQKnj8bCp3o2v5S6WWOiSJgT6YJYtZ2/l5zINuL3bSfVSsmh8nW8BZ/zdxB HCJ8D8BDDnCW6GW7EmQSPsRzWUwLdJNXOqI1R5KxSfWigFCnDMBi37FA+BqLubyX iX3G+dYCVtTdvWRPJlwXRb0cDwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNs0L9L5 lAtpF0I83mp6xpDHF300MB8GA1UdIwQYMBaAFLRoTg1iLLmv0Sy1+j5Ihd/NhQBN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENDYzNi8yQzlCQzMzQzk3 OTkxMUVDQkU3MjVBM0NDNEY5QUUwMi90R2hPRFdJc3VhX1JMTFg2UGtpRjM4MkZB RTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RHaE9EV0lzdWFfUkxMWDZQa2lGMzgyRkFFMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NDYzNi8yQzlCQzMzQzk3OTkxMUVDQkU3MjVBM0NDNEY5QUUwMi90R2hPRFdJc3Vh X1JMTFg2UGtpRjM4MkZBRTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCx/8/T+M0wRsTCIsKjr/drk0t60KiwbTzi+eFqazFb3GC2DMZhq2HG Aoj4kXpfZfJZymMlh2DZ1TRYZbMwX+6Wz2bjUs0dUT78uHYnHkM8zPMCvSaOUKOV vddMb/RWyjcTLtBoWwKPSpi6DK+inszsFq4owLWMCt75S7cdpX1osRZICsu3Dl5M C6krksr3mNXiYljSU+XHpBDDG5Hc1mUnb7uRB2pgQ1TJ0+enVWNVC+TYQSDqIP/K vLxqlnOu6VB4Gf+F3miALrkB6pRPE+77FL0s/LA+ZZf5JhO6SWeQE8mftWTc4Zro VZPCq10h2Njq5bzkCkWYG1/yA9ulxTsR -----END CERTIFICATE-----Generated at Mon Oct 20 01:44:55 2025 by rpki-client