$ rpki-client -vvf rpki.apnic.net/member_repository/A91F4B3F/1CDF87E4516011EEB0A5826AC4F9AE02/TnVPewjIAAZ84HEJetOUaJDao2U.mft File: TnVPewjIAAZ84HEJetOUaJDao2U.mft (raw, json) Hash identifier: Vge22EyED1lWHi9l/bsV3kghItm/1u1YHHT3oJsx3Z8= Subject key identifier: F6:4B:7A:C5:C3:9D:EC:1C:55:3D:72:0B:16:0F:AF:B0:FA:83:95:65 Authority key identifier: 4E:75:4F:7B:08:C8:00:06:7C:E0:71:09:7A:D3:94:68:90:DA:A3:65 Certificate issuer: /CN=A91F4B3F/serialNumber=4E754F7B08C800067CE071097AD3946890DAA365 Certificate serial: 0190 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TnVPewjIAAZ84HEJetOUaJDao2U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F4B3F/1CDF87E4516011EEB0A5826AC4F9AE02/TnVPewjIAAZ84HEJetOUaJDao2U.mft Manifest number: 018C Signing time: Sun 19 Oct 2025 06:07:34 +0000 Manifest this update: Sun 19 Oct 2025 06:07:34 +0000 Manifest next update: Sun 26 Oct 2025 06:07:34 +0000 Files and hashes: 1: TnVPewjIAAZ84HEJetOUaJDao2U.crl (hash: G/16KkMwmR/RY9/AMWPyP2ipDgUqG+mVz8xqEfMjzpw=) 2: D875D57EF30611EEAFFC0C66C4F9AE02.roa (hash: qatvyS4SyJTNURVM2FsClClDPfP+4FEBMIeJZ8wIqMA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F4B3F/1CDF87E4516011EEB0A5826AC4F9AE02/TnVPewjIAAZ84HEJetOUaJDao2U.crl rsync://rpki.apnic.net/member_repository/A91F4B3F/1CDF87E4516011EEB0A5826AC4F9AE02/TnVPewjIAAZ84HEJetOUaJDao2U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TnVPewjIAAZ84HEJetOUaJDao2U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 06:07:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 400 (0x190) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F4B3F, serialNumber=4E754F7B08C800067CE071097AD3946890DAA365 Validity Not Before: Oct 19 06:07:34 2025 GMT Not After : Oct 26 06:07:34 2025 GMT Subject: CN=68f48026-c3d1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:ad:74:d2:b8:c9:72:0a:5c:19:89:08:e8:19: 79:a8:5d:04:f7:5e:68:5b:8e:e2:65:9a:44:59:93: c0:8a:cf:c9:b4:ba:55:55:03:a7:a3:3a:6e:cb:25: 1c:3b:1c:ca:e4:db:42:07:58:c5:dd:62:bb:3e:b1: 47:07:8a:41:74:71:c3:3e:de:0f:d6:c4:09:b4:3d: a3:41:a2:31:03:a7:d2:a3:8e:27:74:cf:f0:22:90: 33:49:1b:60:4c:0b:26:ab:e3:66:87:81:44:16:fa: bf:c6:9c:3a:0d:5f:ae:9f:a5:33:fe:a9:96:ee:d6: eb:13:1e:bc:49:af:f8:5b:68:29:c3:04:4c:d8:39: 54:4f:b6:27:46:76:5a:0a:59:bb:93:4b:6f:ed:64: 42:e9:e8:17:16:8d:36:bf:bb:1e:c6:ee:eb:21:0a: c6:77:c0:e8:3c:74:a5:37:e9:54:dd:64:54:df:75: 19:02:4e:79:5c:02:31:24:79:a1:41:43:2d:14:db: a0:2a:12:e7:47:33:96:d5:3a:d0:01:97:fe:30:bd: e4:29:0b:fa:03:9c:47:ec:ca:5d:e7:25:22:d9:5a: cf:a8:17:a5:ae:f2:7a:94:27:49:89:31:92:d6:21: ca:31:88:23:06:f0:de:9a:d7:75:20:55:ed:96:ba: e4:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:4B:7A:C5:C3:9D:EC:1C:55:3D:72:0B:16:0F:AF:B0:FA:83:95:65 X509v3 Authority Key Identifier: keyid:4E:75:4F:7B:08:C8:00:06:7C:E0:71:09:7A:D3:94:68:90:DA:A3:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F4B3F/1CDF87E4516011EEB0A5826AC4F9AE02/TnVPewjIAAZ84HEJetOUaJDao2U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TnVPewjIAAZ84HEJetOUaJDao2U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F4B3F/1CDF87E4516011EEB0A5826AC4F9AE02/TnVPewjIAAZ84HEJetOUaJDao2U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b2:d4:da:f6:44:f8:37:2d:b6:02:da:79:dc:34:a9:0a:50:2a: 96:c7:41:f6:67:e2:45:c3:21:f9:cf:fe:4d:cd:ac:82:30:cb: ca:0e:1f:d8:52:0a:41:de:49:e0:7c:39:c4:a8:8d:e3:a3:1c: bc:28:9a:e8:23:e9:39:82:d7:fd:ae:9b:f5:a0:82:cd:04:7a: fe:7e:ef:22:38:91:9b:03:73:5b:c3:ef:76:a1:bf:0b:a4:19: e2:75:1d:16:02:7a:97:72:ab:59:b7:53:65:39:b0:c9:48:27: 9f:51:1d:f0:86:9f:d1:42:54:22:7a:ba:a7:5a:4f:01:55:dd: 6a:14:0b:6b:29:9e:5d:9c:26:6e:46:6a:53:c8:f4:bc:1e:7d: 3f:e7:91:62:41:e5:df:3d:38:7c:4c:37:b0:5e:68:83:1d:1b: 5a:65:aa:3d:92:01:df:0b:ac:d0:b4:6a:75:c9:f3:7c:95:23: 56:05:6d:31:87:43:be:87:9c:f0:5d:e3:90:cc:59:c9:c0:c5: a8:c0:7e:dd:75:23:fa:48:6e:ec:1b:9c:9e:df:4d:15:3d:e4: 70:28:97:c7:7e:fa:1d:0b:8c:f9:6a:93:a7:e4:47:af:b4:0f: 33:b5:02:e4:d5:6a:07:03:c6:4c:89:eb:93:fa:53:bc:79:79: e0:e4:d0:72 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjRCM0YxMTAvBgNVBAUTKDRFNzU0RjdCMDhDODAwMDY3Q0UwNzEwOTdBRDM5NDY4 OTBEQUEzNjUwHhcNMjUxMDE5MDYwNzM0WhcNMjUxMDI2MDYwNzM0WjAYMRYwFAYD VQQDEw02OGY0ODAyNi1jM2QxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvq100rjJcgpcGYkI6Bl5qF0E915oW47iZZpEWZPAis/JtLpVVQOnozpuyyUc OxzK5NtCB1jF3WK7PrFHB4pBdHHDPt4P1sQJtD2jQaIxA6fSo44ndM/wIpAzSRtg TAsmq+Nmh4FEFvq/xpw6DV+un6Uz/qmW7tbrEx68Sa/4W2gpwwRM2DlUT7YnRnZa Clm7k0tv7WRC6egXFo02v7sexu7rIQrGd8DoPHSlN+lU3WRU33UZAk55XAIxJHmh QUMtFNugKhLnRzOW1TrQAZf+ML3kKQv6A5xH7Mpd5yUi2VrPqBelrvJ6lCdJiTGS 1iHKMYgjBvDemtd1IFXtlrrkaQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPZLesXD newcVT1yCxYPr7D6g5VlMB8GA1UdIwQYMBaAFE51T3sIyAAGfOBxCXrTlGiQ2qNl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNEIzRi8xQ0RGODdFNDUx NjAxMUVFQjBBNTgyNkFDNEY5QUUwMi9UblZQZXdqSUFBWjg0SEVKZXRPVWFKRGFv MlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RuVlBld2pJQUFaODRIRUpldE9VYUpEYW8yVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NEIzRi8xQ0RGODdFNDUxNjAxMUVFQjBBNTgyNkFDNEY5QUUwMi9UblZQZXdqSUFB Wjg0SEVKZXRPVWFKRGFvMlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCy1Nr2RPg3LbYC2nncNKkKUCqWx0H2Z+JFwyH5z/5NzayCMMvKDh/Y UgpB3kngfDnEqI3joxy8KJroI+k5gtf9rpv1oILNBHr+fu8iOJGbA3Nbw+92ob8L pBnidR0WAnqXcqtZt1NlObDJSCefUR3whp/RQlQierqnWk8BVd1qFAtrKZ5dnCZu RmpTyPS8Hn0/55FiQeXfPTh8TDewXmiDHRtaZao9kgHfC6zQtGp1yfN8lSNWBW0x h0O+h5zwXeOQzFnJwMWowH7ddSP6SG7sG5ye300VPeRwKJfHfvodC4z5apOn5Eev tA8ztQLk1WoHA8ZMieuT+lO8eXng5NBy -----END CERTIFICATE-----Generated at Mon Oct 20 11:07:48 2025 by rpki-client