$ rpki-client -vvf rpki.apnic.net/member_repository/A91D9928/57DFBEBC984F11F085402975C4F9AE02/tbNfkk61wy-7QYZ9OhZuSpa77KI.mft File: tbNfkk61wy-7QYZ9OhZuSpa77KI.mft (raw, json) Hash identifier: CPYaUmLEqy+egG4flxmYxwkG6Tr9EvoqKjKPF2AwBOI= Subject key identifier: 52:F0:2E:86:AA:0F:04:D5:2C:6C:67:60:D4:77:8F:04:5F:7A:2E:1A Authority key identifier: B5:B3:5F:92:4E:B5:C3:2F:BB:41:86:7D:3A:16:6E:4A:96:BB:EC:A2 Certificate issuer: /CN=A91D9928/serialNumber=B5B35F924EB5C32FBB41867D3A166E4A96BBECA2 Certificate serial: 10 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tbNfkk61wy-7QYZ9OhZuSpa77KI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D9928/57DFBEBC984F11F085402975C4F9AE02/tbNfkk61wy-7QYZ9OhZuSpa77KI.mft Manifest number: 0F Signing time: Sun 19 Oct 2025 11:32:46 +0000 Manifest this update: Sun 19 Oct 2025 11:32:45 +0000 Manifest next update: Sun 26 Oct 2025 11:32:45 +0000 Files and hashes: 1: tbNfkk61wy-7QYZ9OhZuSpa77KI.crl (hash: 1pFCTt2xnnkVkYSIi5jTTR9mDZUc5tkrEHAO/71X8tc=) 2: A71814CA984F11F0B7A01E76C4F9AE02.roa (hash: 3U7vBnQl/Kdt2pXpdCyuzs/qAnaveVs4aYr8QCEMg6M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D9928/57DFBEBC984F11F085402975C4F9AE02/tbNfkk61wy-7QYZ9OhZuSpa77KI.crl rsync://rpki.apnic.net/member_repository/A91D9928/57DFBEBC984F11F085402975C4F9AE02/tbNfkk61wy-7QYZ9OhZuSpa77KI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tbNfkk61wy-7QYZ9OhZuSpa77KI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 11:32:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16 (0x10) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D9928, serialNumber=B5B35F924EB5C32FBB41867D3A166E4A96BBECA2 Validity Not Before: Oct 19 11:32:45 2025 GMT Not After : Oct 26 11:32:45 2025 GMT Subject: CN=68f4cc5e-39f2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:43:d3:99:41:bc:18:e4:89:77:b8:28:6d:97: 33:ae:c2:9e:1f:e7:ed:a7:81:42:b8:dc:2f:f6:66: 19:ba:f2:d8:b1:aa:37:74:b1:d6:0b:9b:80:70:e9: 89:a8:00:cc:86:f0:26:32:10:9d:fb:22:97:19:ce: b5:3f:64:05:58:b0:ea:dd:db:02:c8:35:51:0a:5a: 50:b0:97:56:0c:9d:4d:fc:26:19:9d:43:ba:5a:f7: 7f:18:5b:6c:9f:ad:d1:b1:54:3b:10:ba:71:ce:ce: f0:b9:ec:7e:0b:b6:f6:78:6e:41:0f:82:8a:83:e3: e2:a8:63:56:1f:e2:c0:6b:d9:1a:7b:c9:a5:7a:74: dd:94:cb:28:48:48:c4:3d:ae:13:48:e1:37:fe:83: 55:1b:5f:39:63:ca:ec:ec:7a:d0:de:cf:ee:65:ef: 8b:52:6c:c8:8e:0e:ca:39:e3:b5:1c:51:81:12:bf: 2d:83:94:89:c6:d5:a5:35:d8:af:4e:1a:23:0c:e8: cf:ff:60:16:10:d2:56:fa:eb:e1:9e:e0:b0:14:a5: a8:db:ed:6e:e8:5b:0d:2d:91:cd:6a:4e:e1:0b:35: ca:14:c5:68:c7:6f:07:25:6e:2f:c5:9c:c4:5e:af: 59:fc:2d:7e:5c:aa:81:09:6c:a1:ac:b3:39:88:af: 1a:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:F0:2E:86:AA:0F:04:D5:2C:6C:67:60:D4:77:8F:04:5F:7A:2E:1A X509v3 Authority Key Identifier: keyid:B5:B3:5F:92:4E:B5:C3:2F:BB:41:86:7D:3A:16:6E:4A:96:BB:EC:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D9928/57DFBEBC984F11F085402975C4F9AE02/tbNfkk61wy-7QYZ9OhZuSpa77KI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tbNfkk61wy-7QYZ9OhZuSpa77KI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D9928/57DFBEBC984F11F085402975C4F9AE02/tbNfkk61wy-7QYZ9OhZuSpa77KI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 75:62:ec:58:90:40:06:0c:58:7f:ab:26:64:e6:2e:a6:f5:2e: 7b:5a:bd:fa:f0:c9:e9:78:75:f8:05:7f:d2:c2:a4:13:e9:d3: 21:9c:12:6f:e2:96:e1:c0:d8:75:d0:6a:a9:e4:c2:90:36:86: 18:24:60:e9:17:98:02:c1:a5:59:ae:84:a7:53:a4:53:03:de: da:03:e3:61:ff:b1:f7:06:7a:e5:01:73:18:20:a9:f9:ce:c6: 18:2b:98:f2:42:18:68:1c:ca:56:b7:bb:a0:8f:bb:ef:83:37: 86:e6:0d:8b:a3:28:eb:34:aa:c6:f5:61:ee:8c:1e:8a:71:8e: 1f:de:e2:d9:a0:f4:a8:c2:b7:be:26:87:a1:ad:26:9b:3e:0e: 6f:f2:51:4f:1b:22:11:15:bf:ad:87:4f:c1:a0:82:57:83:54: 3c:54:4f:0d:7c:a4:a8:60:b4:e3:d9:00:5d:2a:e1:61:f4:01: 36:dc:97:04:f5:d3:0c:07:47:62:ec:88:02:b1:0f:37:37:e4: 6a:fa:9e:2a:eb:e4:1e:e1:b0:62:7c:a2:2e:95:14:0c:28:70: 0a:e4:d1:04:e6:6d:e7:ad:90:f5:72:56:16:1a:72:68:7a:84: 10:eb:11:e5:c3:b8:af:46:82:80:0e:dc:26:03:0b:13:1e:16: 42:85:78:3b -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBEDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE OTkyODExMC8GA1UEBRMoQjVCMzVGOTI0RUI1QzMyRkJCNDE4NjdEM0ExNjZFNEE5 NkJCRUNBMjAeFw0yNTEwMTkxMTMyNDVaFw0yNTEwMjYxMTMyNDVaMBgxFjAUBgNV BAMTDTY4ZjRjYzVlLTM5ZjIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC7Q9OZQbwY5Il3uChtlzOuwp4f5+2ngUK43C/2Zhm68tixqjd0sdYLm4Bw6Ymo AMyG8CYyEJ37IpcZzrU/ZAVYsOrd2wLINVEKWlCwl1YMnU38JhmdQ7pa938YW2yf rdGxVDsQunHOzvC57H4LtvZ4bkEPgoqD4+KoY1Yf4sBr2Rp7yaV6dN2UyyhISMQ9 rhNI4Tf+g1UbXzljyuzsetDez+5l74tSbMiODso547UcUYESvy2DlInG1aU12K9O GiMM6M//YBYQ0lb66+Ge4LAUpajb7W7oWw0tkc1qTuELNcoUxWjHbwclbi/FnMRe r1n8LX5cqoEJbKGsszmIrxqNAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUUvAuhqoP BNUsbGdg1HePBF96LhowHwYDVR0jBBgwFoAUtbNfkk61wy+7QYZ9OhZuSpa77KIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ5OTI4LzU3REZCRUJDOTg0 RjExRjA4NTQwMjk3NUM0RjlBRTAyL3RiTmZrazYxd3ktN1FZWjlPaFp1U3BhNzdL SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvdGJOZmtrNjF3eS03UVlaOU9oWnVTcGE3N0tJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ5 OTI4LzU3REZCRUJDOTg0RjExRjA4NTQwMjk3NUM0RjlBRTAyL3RiTmZrazYxd3kt N1FZWjlPaFp1U3BhNzdLSS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHVi7FiQQAYMWH+rJmTmLqb1Lntavfrwyel4dfgFf9LCpBPp0yGcEm/i luHA2HXQaqnkwpA2hhgkYOkXmALBpVmuhKdTpFMD3toD42H/sfcGeuUBcxggqfnO xhgrmPJCGGgcyla3u6CPu++DN4bmDYujKOs0qsb1Ye6MHopxjh/e4tmg9KjCt74m h6GtJps+Dm/yUU8bIhEVv62HT8GggleDVDxUTw18pKhgtOPZAF0q4WH0ATbclwT1 0wwHR2LsiAKxDzc35Gr6nirr5B7hsGJ8oi6VFAwocArk0QTmbeetkPVyVhYacmh6 hBDrEeXDuK9GgoAO3CYDCxMeFkKFeDs= -----END CERTIFICATE-----Generated at Sun Oct 19 22:56:21 2025 by rpki-client