$ rpki-client -vvf rpki.apnic.net/member_repository/A91D6AB2/0AF2EAAACF7011EA8AE55D48C4F9AE02/TZAcNCU7ylsnTusQaZPe9yCiUqw.mft File: TZAcNCU7ylsnTusQaZPe9yCiUqw.mft (raw, json) Hash identifier: LI+GJnwRIIMzFHFkBNKFA4W70VlybzSHcGnL9plwrbE= Subject key identifier: 53:89:9A:FA:1C:35:75:CC:ED:B8:C5:12:08:2D:57:E7:47:32:32:47 Authority key identifier: 4D:90:1C:34:25:3B:CA:5B:27:4E:EB:10:69:93:DE:F7:20:A2:52:AC Certificate issuer: /CN=A91D6AB2/serialNumber=4D901C34253BCA5B274EEB106993DEF720A252AC Certificate serial: 0465 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TZAcNCU7ylsnTusQaZPe9yCiUqw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D6AB2/0AF2EAAACF7011EA8AE55D48C4F9AE02/TZAcNCU7ylsnTusQaZPe9yCiUqw.mft Manifest number: 0CD4 Signing time: Sat 18 Oct 2025 21:44:59 +0000 Manifest this update: Sat 18 Oct 2025 21:44:58 +0000 Manifest next update: Sat 25 Oct 2025 21:44:58 +0000 Files and hashes: 1: TZAcNCU7ylsnTusQaZPe9yCiUqw.crl (hash: es4dqudO/ZfArlXC33+7xLWfl1oKS1wM4DOZzCsAKhE=) 2: 8E4BBF50F5C511EF89110646C4F9AE02.roa (hash: khC3NWIbwkvutKI6Vqs7kfio6cgD4nvnuDwfjQlSlpw=) 3: A1B8D10EF5C511EF83B21246C4F9AE02.roa (hash: R9z8+TOIkB2HShaZE8kZf0+7pw9G6s/c+bvTwVe027E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D6AB2/0AF2EAAACF7011EA8AE55D48C4F9AE02/TZAcNCU7ylsnTusQaZPe9yCiUqw.crl rsync://rpki.apnic.net/member_repository/A91D6AB2/0AF2EAAACF7011EA8AE55D48C4F9AE02/TZAcNCU7ylsnTusQaZPe9yCiUqw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TZAcNCU7ylsnTusQaZPe9yCiUqw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 21:44:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1125 (0x465) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D6AB2, serialNumber=4D901C34253BCA5B274EEB106993DEF720A252AC Validity Not Before: Oct 18 21:44:58 2025 GMT Not After : Oct 25 21:44:58 2025 GMT Subject: CN=68f40a5b-82bb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:f9:00:26:b2:0c:17:a5:56:d4:ad:9e:2d:9d: 23:67:46:0f:0a:06:75:87:1e:57:41:72:8f:67:02: 8d:d1:cd:5d:cb:4b:9f:29:ca:b8:73:2b:ff:28:21: 0e:c1:90:c9:4b:8c:ae:89:92:ba:f5:76:63:3a:d0: 58:ca:38:78:6a:6d:0b:0e:ec:21:c1:97:96:df:ef: d9:b3:87:74:ad:27:94:3f:03:16:3e:b4:97:87:a9: 78:1f:14:6a:98:97:d0:8f:3d:0a:ae:2a:8a:8d:e2: f1:4d:4f:35:c8:68:1c:ef:f7:36:5e:1e:b8:ca:ad: 72:34:37:de:ed:8c:70:44:32:66:1f:20:61:2b:2a: 41:37:94:1e:9c:8f:2c:9a:a7:46:97:fe:6c:ba:ad: d6:c0:8a:08:89:1e:ae:2c:47:4f:46:3e:cf:f8:18: b5:c6:e5:9b:f4:7a:c5:74:c3:81:e9:04:75:c8:55: 29:af:46:e2:23:7d:4c:e5:91:fd:bd:c3:af:8a:b7: 6f:c7:61:69:d1:8b:4d:59:97:d3:91:b4:7f:bd:c2: 6d:a0:60:22:a7:40:06:cc:24:24:81:cd:ac:06:60: 77:9c:5e:92:84:27:df:5d:72:38:32:01:ff:51:a9: ef:97:8e:86:3c:d4:19:10:d8:db:4d:19:6e:b1:f9: a3:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:89:9A:FA:1C:35:75:CC:ED:B8:C5:12:08:2D:57:E7:47:32:32:47 X509v3 Authority Key Identifier: keyid:4D:90:1C:34:25:3B:CA:5B:27:4E:EB:10:69:93:DE:F7:20:A2:52:AC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D6AB2/0AF2EAAACF7011EA8AE55D48C4F9AE02/TZAcNCU7ylsnTusQaZPe9yCiUqw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TZAcNCU7ylsnTusQaZPe9yCiUqw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D6AB2/0AF2EAAACF7011EA8AE55D48C4F9AE02/TZAcNCU7ylsnTusQaZPe9yCiUqw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 17:4d:a3:8e:99:83:c0:30:4f:ab:18:0d:10:04:38:87:8d:6c: fd:40:7e:81:07:29:76:c5:0a:d2:2f:9a:f4:c8:a6:78:d4:d5: c5:9d:aa:42:8d:d2:4d:fe:10:f1:7f:dc:17:29:06:c4:6c:12: 8c:47:c1:11:c5:24:cc:8e:8c:4e:a4:1a:c4:14:b2:2b:17:08: 52:3d:28:67:c0:23:b7:82:05:ec:61:e0:ba:33:33:2a:43:cb: 69:ac:47:f4:a6:16:51:21:bd:fd:9c:5b:d0:78:bb:d9:9f:fb: 64:7c:65:90:4c:f5:6b:f7:25:2a:14:a8:ee:7d:5a:68:18:21: 08:b3:7a:b5:0f:7e:a6:6e:85:e6:3b:a0:8e:08:9d:9d:6d:cf: 00:cc:c0:f5:95:31:f5:40:c9:a0:e8:29:3c:52:be:ff:0c:21: 5d:79:75:0e:ac:f0:1b:f3:a1:d6:31:c3:6d:de:7c:de:29:95: 85:c0:dc:44:2a:30:14:78:79:64:6c:b7:8c:93:fe:93:3b:c5: 9d:5c:0d:74:50:60:c3:1a:27:86:e3:45:3d:ce:ec:49:73:af: 93:8e:80:f6:79:da:10:8f:9a:4b:fa:04:35:43:5b:c8:23:9c: 22:05:97:ff:25:d1:64:e3:64:f5:7c:5c:af:5f:26:06:c8:40: ca:60:8e:b6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBGUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDZBQjIxMTAvBgNVBAUTKDREOTAxQzM0MjUzQkNBNUIyNzRFRUIxMDY5OTNERUY3 MjBBMjUyQUMwHhcNMjUxMDE4MjE0NDU4WhcNMjUxMDI1MjE0NDU4WjAYMRYwFAYD VQQDEw02OGY0MGE1Yi04MmJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0PkAJrIMF6VW1K2eLZ0jZ0YPCgZ1hx5XQXKPZwKN0c1dy0ufKcq4cyv/KCEO wZDJS4yuiZK69XZjOtBYyjh4am0LDuwhwZeW3+/Zs4d0rSeUPwMWPrSXh6l4HxRq mJfQjz0KriqKjeLxTU81yGgc7/c2Xh64yq1yNDfe7YxwRDJmHyBhKypBN5QenI8s mqdGl/5suq3WwIoIiR6uLEdPRj7P+Bi1xuWb9HrFdMOB6QR1yFUpr0biI31M5ZH9 vcOvirdvx2Fp0YtNWZfTkbR/vcJtoGAip0AGzCQkgc2sBmB3nF6ShCffXXI4MgH/ Uanvl46GPNQZENjbTRlusfmjSQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFOJmvoc NXXM7bjFEggtV+dHMjJHMB8GA1UdIwQYMBaAFE2QHDQlO8pbJ07rEGmT3vcgolKs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENkFCMi8wQUYyRUFBQUNG NzAxMUVBOEFFNTVENDhDNEY5QUUwMi9UWkFjTkNVN3lsc25UdXNRYVpQZTl5Q2lV cXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RaQWNOQ1U3eWxzblR1c1FhWlBlOXlDaVVxdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NkFCMi8wQUYyRUFBQUNGNzAxMUVBOEFFNTVENDhDNEY5QUUwMi9UWkFjTkNVN3ls c25UdXNRYVpQZTl5Q2lVcXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAXTaOOmYPAME+rGA0QBDiHjWz9QH6BByl2xQrSL5r0yKZ41NXFnapC jdJN/hDxf9wXKQbEbBKMR8ERxSTMjoxOpBrEFLIrFwhSPShnwCO3ggXsYeC6MzMq Q8tprEf0phZRIb39nFvQeLvZn/tkfGWQTPVr9yUqFKjufVpoGCEIs3q1D36mboXm O6COCJ2dbc8AzMD1lTH1QMmg6Ck8Ur7/DCFdeXUOrPAb86HWMcNt3nzeKZWFwNxE KjAUeHlkbLeMk/6TO8WdXA10UGDDGieG40U9zuxJc6+TjoD2edoQj5pL+gQ1Q1vI I5wiBZf/JdFk42T1fFyvXyYGyEDKYI62 -----END CERTIFICATE-----Generated at Sun Oct 19 23:27:57 2025 by rpki-client