$ rpki-client -vvf rpki.apnic.net/member_repository/A91F372C/6796D8E25ECE11EFA9A8B03EC4F9AE02/TGLx4QuIP11XhNY1dA_SMDTOv-I.mft File: TGLx4QuIP11XhNY1dA_SMDTOv-I.mft (raw, json) Hash identifier: czgZruWso3Wyb9i7FC9ZK58a2qYqSr3g4OiJgFeuXkg= Subject key identifier: 7B:19:5F:64:0C:C4:49:21:A9:1A:95:FD:0F:05:B6:76:1F:3E:7E:E9 Authority key identifier: 4C:62:F1:E1:0B:88:3F:5D:57:84:D6:35:74:0F:D2:30:34:CE:BF:E2 Certificate issuer: /CN=A91F372C/serialNumber=4C62F1E10B883F5D5784D635740FD23034CEBFE2 Certificate serial: EB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TGLx4QuIP11XhNY1dA_SMDTOv-I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F372C/6796D8E25ECE11EFA9A8B03EC4F9AE02/TGLx4QuIP11XhNY1dA_SMDTOv-I.mft Manifest number: E3 Signing time: Sun 19 Oct 2025 08:35:08 +0000 Manifest this update: Sun 19 Oct 2025 08:35:07 +0000 Manifest next update: Sun 26 Oct 2025 08:35:07 +0000 Files and hashes: 1: TGLx4QuIP11XhNY1dA_SMDTOv-I.crl (hash: SUgd1eqzS4bsN6qUcL4NeFQUfcos7CWXo8v244JGm0I=) 2: A98932365ED311EF9DE3E178C4F9AE02.roa (hash: yKRhd9URAtdD8ZNuj/dQF3lpNBMNfFXTujt18TvU+XY=) 3: DD015FDE639D11EFB9BDBE62C4F9AE02.roa (hash: SDxl8l5CQA8d0jF8r7Sa6q9ALS3hHi/3Jt4li1lWZ7Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F372C/6796D8E25ECE11EFA9A8B03EC4F9AE02/TGLx4QuIP11XhNY1dA_SMDTOv-I.crl rsync://rpki.apnic.net/member_repository/A91F372C/6796D8E25ECE11EFA9A8B03EC4F9AE02/TGLx4QuIP11XhNY1dA_SMDTOv-I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TGLx4QuIP11XhNY1dA_SMDTOv-I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 08:35:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 235 (0xeb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F372C, serialNumber=4C62F1E10B883F5D5784D635740FD23034CEBFE2 Validity Not Before: Oct 19 08:35:07 2025 GMT Not After : Oct 26 08:35:07 2025 GMT Subject: CN=68f4a2bc-e947 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:62:8f:45:ac:36:25:c5:49:74:13:75:c7:81: 07:3d:4b:91:0d:8b:08:a6:98:f1:2f:10:88:60:01: 5f:47:a3:5f:1c:04:a8:1f:4a:a0:62:35:6e:bd:e6: 08:0d:50:9b:8a:a8:22:82:24:e4:ee:3b:46:de:4e: 56:9d:0b:2f:94:0a:b0:2f:0a:a6:cc:22:b0:a1:ed: 40:d1:fe:ad:92:b6:6f:92:0a:e4:42:f2:c2:3e:e4: 61:dd:ec:c4:e5:81:a4:5d:f4:d6:30:76:44:5a:00: b9:94:f8:9c:2b:50:62:e9:03:e6:fb:fa:53:cb:99: df:cf:f5:39:84:02:8f:71:7a:19:1d:52:c7:af:e6: 1e:e9:04:91:c1:66:2d:00:6e:52:7b:8e:95:f3:2f: d7:1f:08:41:13:e0:6a:41:6d:05:24:c1:65:fe:78: bb:79:87:89:e5:0e:a5:4a:76:7b:2b:f0:ba:e6:ec: 9b:db:a3:39:a4:d0:93:dc:cb:bf:88:bd:e5:f9:9f: 4c:aa:e5:e0:e1:1d:39:e0:3d:47:0a:5b:55:01:37: 47:00:d7:31:0d:70:ab:8c:c5:7a:cf:04:62:87:e0: e5:99:5e:b6:55:50:5a:bb:bf:57:ce:fa:4e:2b:2a: 26:e2:84:a7:a8:92:07:94:38:c8:20:f8:f5:6f:5a: e7:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:19:5F:64:0C:C4:49:21:A9:1A:95:FD:0F:05:B6:76:1F:3E:7E:E9 X509v3 Authority Key Identifier: keyid:4C:62:F1:E1:0B:88:3F:5D:57:84:D6:35:74:0F:D2:30:34:CE:BF:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F372C/6796D8E25ECE11EFA9A8B03EC4F9AE02/TGLx4QuIP11XhNY1dA_SMDTOv-I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TGLx4QuIP11XhNY1dA_SMDTOv-I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F372C/6796D8E25ECE11EFA9A8B03EC4F9AE02/TGLx4QuIP11XhNY1dA_SMDTOv-I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0d:4a:a3:49:83:14:49:9b:4b:9c:0c:da:d3:54:bd:5e:a9:ee: c6:d4:64:42:c8:bc:bb:26:a9:3a:bf:58:3a:78:d9:a4:9d:4d: 1a:6e:17:7c:d4:43:26:b9:ec:a5:91:7e:10:d4:6e:ce:2b:7d: ea:91:31:88:d8:8e:0c:53:4e:9e:89:93:4a:4c:80:e1:ed:dc: 86:46:d0:18:86:a1:ca:63:b1:be:f9:17:60:55:72:87:05:12: fc:e1:d6:c3:57:59:a2:a7:fe:dd:bd:63:a4:1d:09:41:7f:91: bd:63:9d:7a:54:30:d5:cb:30:fa:1e:ad:17:9f:89:f8:a2:ab: b4:89:42:29:91:a7:ee:1f:09:c8:08:9f:56:13:20:35:ec:9c: b9:97:0e:e4:a3:49:46:a8:74:96:9c:dc:76:54:09:44:75:ac: 4e:94:cf:05:4b:89:d6:ce:10:a0:5e:9b:fb:03:59:ba:97:58: 56:36:36:d9:77:93:13:1a:ae:d9:e7:58:24:30:89:b7:36:63: 19:f2:a3:53:2a:f9:96:b6:0b:27:90:55:c5:bd:16:10:33:10: 96:52:26:1b:69:21:22:e7:e1:a7:9e:74:71:90:c4:03:f6:b9: 27:ee:11:8e:78:92:10:5a:bb:3e:8a:af:31:7f:86:c0:09:46: 0e:79:87:41 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjM3MkMxMTAvBgNVBAUTKDRDNjJGMUUxMEI4ODNGNUQ1Nzg0RDYzNTc0MEZEMjMw MzRDRUJGRTIwHhcNMjUxMDE5MDgzNTA3WhcNMjUxMDI2MDgzNTA3WjAYMRYwFAYD VQQDEw02OGY0YTJiYy1lOTQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxmKPRaw2JcVJdBN1x4EHPUuRDYsIppjxLxCIYAFfR6NfHASoH0qgYjVuveYI DVCbiqgigiTk7jtG3k5WnQsvlAqwLwqmzCKwoe1A0f6tkrZvkgrkQvLCPuRh3ezE 5YGkXfTWMHZEWgC5lPicK1Bi6QPm+/pTy5nfz/U5hAKPcXoZHVLHr+Ye6QSRwWYt AG5Se46V8y/XHwhBE+BqQW0FJMFl/ni7eYeJ5Q6lSnZ7K/C65uyb26M5pNCT3Mu/ iL3l+Z9MquXg4R054D1HCltVATdHANcxDXCrjMV6zwRih+DlmV62VVBau79XzvpO Kyom4oSnqJIHlDjIIPj1b1rnBwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHsZX2QM xEkhqRqV/Q8FtnYfPn7pMB8GA1UdIwQYMBaAFExi8eELiD9dV4TWNXQP0jA0zr/i MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMzcyQy82Nzk2RDhFMjVF Q0UxMUVGQTlBOEIwM0VDNEY5QUUwMi9UR0x4NFF1SVAxMVhoTlkxZEFfU01EVE92 LUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RHTHg0UXVJUDExWGhOWTFkQV9TTURUT3YtSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MzcyQy82Nzk2RDhFMjVFQ0UxMUVGQTlBOEIwM0VDNEY5QUUwMi9UR0x4NFF1SVAx MVhoTlkxZEFfU01EVE92LUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQANSqNJgxRJm0ucDNrTVL1eqe7G1GRCyLy7Jqk6v1g6eNmknU0abhd8 1EMmueylkX4Q1G7OK33qkTGI2I4MU06eiZNKTIDh7dyGRtAYhqHKY7G++RdgVXKH BRL84dbDV1mip/7dvWOkHQlBf5G9Y516VDDVyzD6Hq0Xn4n4oqu0iUIpkafuHwnI CJ9WEyA17Jy5lw7ko0lGqHSWnNx2VAlEdaxOlM8FS4nWzhCgXpv7A1m6l1hWNjbZ d5MTGq7Z51gkMIm3NmMZ8qNTKvmWtgsnkFXFvRYQMxCWUiYbaSEi5+GnnnRxkMQD 9rkn7hGOeJIQWrs+iq8xf4bACUYOeYdB -----END CERTIFICATE-----Generated at Mon Oct 20 10:03:14 2025 by rpki-client