$ rpki-client -vvf rpki.apnic.net/member_repository/A91DE43E/CC03FBB82AFB11EA8DF37D55C4F9AE02/tpVKYo70-TShCnBay8uQbtYQSAw.mft File: tpVKYo70-TShCnBay8uQbtYQSAw.mft (raw, json) Hash identifier: ThSloHzciTv1qmkEUkZP2tWXg9Gc4HY3SJHaRcdXd7w= Subject key identifier: B0:0B:F6:92:94:39:F8:45:F4:70:E7:4C:C0:F6:11:CE:6C:7A:C6:B9 Authority key identifier: B6:95:4A:62:8E:F4:F9:34:A1:0A:70:5A:CB:CB:90:6E:D6:10:48:0C Certificate issuer: /CN=A91DE43E/serialNumber=B6954A628EF4F934A10A705ACBCB906ED610480C Certificate serial: 0BCC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tpVKYo70-TShCnBay8uQbtYQSAw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DE43E/CC03FBB82AFB11EA8DF37D55C4F9AE02/tpVKYo70-TShCnBay8uQbtYQSAw.mft Manifest number: 0BC6 Signing time: Sat 18 Oct 2025 19:45:29 +0000 Manifest this update: Sat 18 Oct 2025 19:45:29 +0000 Manifest next update: Sat 25 Oct 2025 19:45:29 +0000 Files and hashes: 1: tpVKYo70-TShCnBay8uQbtYQSAw.crl (hash: U0jq+z7AH8QfMBeBWtaWiH3fI2fi4KaS0jUd4UTcVQo=) 2: 5E117DC82AFC11EAB5FEC955C4F9AE02.roa (hash: FLXDHzghX+xgCtsrZgeGezVp6qrYExOvwRgCUG3oquw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DE43E/CC03FBB82AFB11EA8DF37D55C4F9AE02/tpVKYo70-TShCnBay8uQbtYQSAw.crl rsync://rpki.apnic.net/member_repository/A91DE43E/CC03FBB82AFB11EA8DF37D55C4F9AE02/tpVKYo70-TShCnBay8uQbtYQSAw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tpVKYo70-TShCnBay8uQbtYQSAw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 19:45:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3020 (0xbcc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DE43E, serialNumber=B6954A628EF4F934A10A705ACBCB906ED610480C Validity Not Before: Oct 18 19:45:29 2025 GMT Not After : Oct 25 19:45:29 2025 GMT Subject: CN=68f3ee59-0616 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:5a:10:70:5e:1a:3a:37:ac:02:7f:3e:c6:bd: 17:d2:77:b8:f3:2c:46:23:67:a2:c6:70:46:73:cb: ad:dd:37:b8:99:d4:43:98:47:5d:a8:5b:3a:ad:e8: fd:b7:5e:64:75:06:d3:a1:f1:9f:c9:58:12:d5:0a: bb:46:54:f0:1e:fd:a5:a5:8e:b3:f2:33:12:ff:5a: 52:37:ac:4b:4d:03:24:39:1c:6e:0d:d3:aa:3f:96: 20:70:9e:df:07:16:61:c3:e6:41:1a:4c:16:1b:9a: 0e:36:9a:00:40:33:d3:7e:48:73:eb:04:64:8c:e8: f8:a1:10:66:ce:56:46:a6:f9:5c:a7:ec:b3:04:5a: d6:b8:83:a6:29:37:d6:cc:07:3e:13:3a:2e:42:4c: fa:94:00:70:d0:58:10:5a:99:55:d8:2e:95:5c:10: 8e:a8:72:c0:2a:3e:95:ad:d1:36:d1:88:6a:a7:65: a7:4f:30:8a:93:7d:ed:47:97:56:b8:8c:91:3e:1b: bf:ff:21:29:7f:1f:b1:d8:43:39:f8:73:d6:60:b7: 8d:2e:7e:ea:9c:a8:fc:4a:34:83:81:68:34:b4:b7: 5f:ce:10:e0:59:0b:77:f6:52:76:4e:a0:02:16:e9: dd:28:7d:bf:8e:02:b1:a3:47:7f:30:f0:90:17:a4: 8a:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:0B:F6:92:94:39:F8:45:F4:70:E7:4C:C0:F6:11:CE:6C:7A:C6:B9 X509v3 Authority Key Identifier: keyid:B6:95:4A:62:8E:F4:F9:34:A1:0A:70:5A:CB:CB:90:6E:D6:10:48:0C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DE43E/CC03FBB82AFB11EA8DF37D55C4F9AE02/tpVKYo70-TShCnBay8uQbtYQSAw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tpVKYo70-TShCnBay8uQbtYQSAw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DE43E/CC03FBB82AFB11EA8DF37D55C4F9AE02/tpVKYo70-TShCnBay8uQbtYQSAw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 39:cb:46:60:c0:9d:24:a3:8c:6e:c5:4c:2d:cf:29:f9:1f:8e: 69:56:65:c0:b6:df:47:7c:eb:89:97:0f:f8:27:36:13:6c:19: 29:0a:19:ca:f7:d5:e5:6e:98:14:fb:2d:79:44:5c:72:92:e4: 68:19:90:47:da:1d:c8:7c:7e:6b:07:a4:ca:d9:6e:7b:82:8b: 28:02:71:b0:ce:e4:e8:6f:60:90:6d:c5:2d:bd:62:ee:29:96: 0e:16:c5:22:28:8f:6e:ff:c8:7f:48:2d:14:93:2a:fe:4a:29: 27:18:20:b7:8a:dc:25:5a:be:75:2d:12:3e:c2:9e:e8:23:d2: bb:f9:a6:d0:0f:de:ea:86:81:74:2a:27:c3:7a:8f:e2:d3:b7: b6:7e:ad:bd:0c:bc:9b:a0:6f:d5:a5:7d:eb:e7:43:08:6b:6f: ac:a3:44:46:1d:59:bd:58:fa:f8:d7:4f:d7:2a:41:66:c6:47: fa:63:77:b9:d5:ec:97:11:d3:56:e1:1c:e7:a8:8d:ce:71:fa: b1:57:22:66:1a:3d:f9:4d:13:1d:d9:17:47:1a:e8:73:f0:37: 84:b1:e7:dc:8d:8a:3a:2d:33:2c:4f:6a:aa:22:bd:bc:cf:89: 0c:59:11:71:b2:e4:ba:69:15:d0:8b:93:a7:81:28:18:29:a0: c6:1c:b8:27 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC8wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REU0M0UxMTAvBgNVBAUTKEI2OTU0QTYyOEVGNEY5MzRBMTBBNzA1QUNCQ0I5MDZF RDYxMDQ4MEMwHhcNMjUxMDE4MTk0NTI5WhcNMjUxMDI1MTk0NTI5WjAYMRYwFAYD VQQDEw02OGYzZWU1OS0wNjE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo1oQcF4aOjesAn8+xr0X0ne48yxGI2eixnBGc8ut3Te4mdRDmEddqFs6rej9 t15kdQbTofGfyVgS1Qq7RlTwHv2lpY6z8jMS/1pSN6xLTQMkORxuDdOqP5YgcJ7f BxZhw+ZBGkwWG5oONpoAQDPTfkhz6wRkjOj4oRBmzlZGpvlcp+yzBFrWuIOmKTfW zAc+EzouQkz6lABw0FgQWplV2C6VXBCOqHLAKj6VrdE20Yhqp2WnTzCKk33tR5dW uIyRPhu//yEpfx+x2EM5+HPWYLeNLn7qnKj8SjSDgWg0tLdfzhDgWQt39lJ2TqAC FundKH2/jgKxo0d/MPCQF6SKgwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLAL9pKU OfhF9HDnTMD2Ec5sesa5MB8GA1UdIwQYMBaAFLaVSmKO9Pk0oQpwWsvLkG7WEEgM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERTQzRS9DQzAzRkJCODJB RkIxMUVBOERGMzdENTVDNEY5QUUwMi90cFZLWW83MC1UU2hDbkJheTh1UWJ0WVFT QXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RwVktZbzcwLVRTaENuQmF5OHVRYnRZUVNBdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RTQzRS9DQzAzRkJCODJBRkIxMUVBOERGMzdENTVDNEY5QUUwMi90cFZLWW83MC1U U2hDbkJheTh1UWJ0WVFTQXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA5y0ZgwJ0ko4xuxUwtzyn5H45pVmXAtt9HfOuJlw/4JzYTbBkpChnK 99XlbpgU+y15RFxykuRoGZBH2h3IfH5rB6TK2W57gosoAnGwzuTob2CQbcUtvWLu KZYOFsUiKI9u/8h/SC0Ukyr+SiknGCC3itwlWr51LRI+wp7oI9K7+abQD97qhoF0 KifDeo/i07e2fq29DLyboG/VpX3r50MIa2+so0RGHVm9WPr410/XKkFmxkf6Y3e5 1eyXEdNW4RznqI3OcfqxVyJmGj35TRMd2RdHGuhz8DeEsefcjYo6LTMsT2qqIr28 z4kMWRFxsuS6aRXQi5OngSgYKaDGHLgn -----END CERTIFICATE-----Generated at Mon Oct 20 01:48:09 2025 by rpki-client