$ rpki-client -vvf rpki.apnic.net/member_repository/A91FD64D/370786C8999411ED8567311FC4F9AE02/tLGKJT-2KTQ3EWY13d0ZlCi2jVs.mft File: tLGKJT-2KTQ3EWY13d0ZlCi2jVs.mft (raw, json) Hash identifier: s9qkJNxU1laoYyR8V+fGi91AoUOwmZPLMId+C/m4xh4= Subject key identifier: DD:2F:E9:D7:1F:53:2F:3E:B5:74:16:3A:D4:50:96:A9:8A:4B:7C:17 Authority key identifier: B4:B1:8A:25:3F:B6:29:34:37:11:66:35:DD:DD:19:94:28:B6:8D:5B Certificate issuer: /CN=A91FD64D/serialNumber=B4B18A253FB6293437116635DDDD199428B68D5B Certificate serial: 020B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tLGKJT-2KTQ3EWY13d0ZlCi2jVs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FD64D/370786C8999411ED8567311FC4F9AE02/tLGKJT-2KTQ3EWY13d0ZlCi2jVs.mft Manifest number: 0203 Signing time: Sun 19 Oct 2025 04:44:25 +0000 Manifest this update: Sun 19 Oct 2025 04:44:24 +0000 Manifest next update: Sun 26 Oct 2025 04:44:24 +0000 Files and hashes: 1: tLGKJT-2KTQ3EWY13d0ZlCi2jVs.crl (hash: xtkwo9WmxOzTvYxHNp8gFQFAu/ou+umCRJmvurP91Nw=) 2: 66D00EB2449C11EE86105C41C4F9AE02.roa (hash: sFUlSAs686BHpBPHFZ6jJXEM4AvroBrl/QL/VRc6YMo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FD64D/370786C8999411ED8567311FC4F9AE02/tLGKJT-2KTQ3EWY13d0ZlCi2jVs.crl rsync://rpki.apnic.net/member_repository/A91FD64D/370786C8999411ED8567311FC4F9AE02/tLGKJT-2KTQ3EWY13d0ZlCi2jVs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tLGKJT-2KTQ3EWY13d0ZlCi2jVs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 04:44:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 523 (0x20b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FD64D, serialNumber=B4B18A253FB6293437116635DDDD199428B68D5B Validity Not Before: Oct 19 04:44:24 2025 GMT Not After : Oct 26 04:44:24 2025 GMT Subject: CN=68f46ca9-1b8c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:51:4e:01:6d:af:bb:49:c4:64:d7:a9:30:5b: 19:60:00:bc:f6:35:fb:d6:21:06:1f:dd:25:10:40: 25:f2:5d:bd:89:59:f4:e4:d6:5b:31:0f:77:7b:9e: 3a:9f:52:25:6d:e3:86:85:76:84:de:0e:1e:f5:cb: c0:0a:4a:b0:ca:c0:f7:7e:ed:56:86:64:9a:e1:45: 65:62:4e:22:c5:dc:b6:3d:c1:46:34:ca:73:54:d7: a4:45:16:f5:c0:92:9f:7d:6c:0c:c6:be:98:81:96: 6c:20:c2:2f:ea:38:3c:93:5a:f2:ef:a0:e5:f9:ee: 25:d3:fd:fd:a6:a6:5c:96:b1:4f:55:b6:f8:90:21: cc:cf:58:e5:14:2b:28:a5:e8:c3:8b:96:bb:26:96: 0c:ab:b9:29:a8:c1:da:da:33:d8:98:a5:7c:95:ea: c2:44:b0:ef:13:81:b1:74:3d:29:7c:a2:60:33:ef: ff:42:26:12:fe:64:da:73:6c:63:13:ab:a6:9e:4f: e1:3f:e2:61:6d:c9:55:47:f1:7b:02:8a:dc:b1:de: 02:92:f0:dc:b0:2d:3a:67:e7:be:84:44:5a:2c:7c: ce:ae:7d:e5:36:5d:de:e4:97:fe:f3:07:8b:13:95: fa:de:04:5d:40:8f:95:a8:67:0e:66:17:3f:14:d4: 58:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:2F:E9:D7:1F:53:2F:3E:B5:74:16:3A:D4:50:96:A9:8A:4B:7C:17 X509v3 Authority Key Identifier: keyid:B4:B1:8A:25:3F:B6:29:34:37:11:66:35:DD:DD:19:94:28:B6:8D:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FD64D/370786C8999411ED8567311FC4F9AE02/tLGKJT-2KTQ3EWY13d0ZlCi2jVs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tLGKJT-2KTQ3EWY13d0ZlCi2jVs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FD64D/370786C8999411ED8567311FC4F9AE02/tLGKJT-2KTQ3EWY13d0ZlCi2jVs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 96:d3:cc:47:84:02:b8:e1:e5:13:ca:4c:d5:f9:41:ce:a5:c3: a7:16:e3:04:c5:5b:3c:7d:8d:a4:7f:0c:77:6a:70:06:99:8c: 41:0f:7c:4a:9a:32:dc:f4:9c:17:ee:2a:72:69:ad:37:46:ee: 95:81:e8:d7:76:ed:d8:e5:3a:90:1a:5d:f0:26:87:5f:4e:9f: 8d:50:03:bc:f0:e3:30:4b:ae:32:c4:93:be:19:e6:a6:f5:73: 63:43:61:70:4c:e6:76:5e:b1:66:00:36:b0:29:77:52:d1:dc: de:14:59:e8:9c:fb:87:22:d0:17:2a:ee:ae:ef:40:7b:fc:84: f8:b4:b1:c6:d4:f1:e4:21:00:7d:ee:55:1f:d5:36:ad:4e:27: 8d:da:57:b6:41:51:e2:d5:9b:9b:b1:34:1d:95:20:c3:88:50: 3d:2b:ef:0e:86:97:30:7d:62:37:f7:d6:00:44:49:b1:dd:6b: 16:db:80:06:e3:e7:0d:d1:46:1b:df:ae:b1:d7:00:dd:f5:b4: 93:22:d8:f6:53:e0:aa:16:d9:62:6d:3a:34:82:b8:77:99:21: c5:34:31:17:c0:4e:db:94:88:2e:fc:51:43:cc:86:00:01:42: 41:45:37:d8:d5:9f:a3:fc:34:f9:ec:3a:68:3e:5f:f5:58:1f: dc:c7:3c:08 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAgswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkQ2NEQxMTAvBgNVBAUTKEI0QjE4QTI1M0ZCNjI5MzQzNzExNjYzNUREREQxOTk0 MjhCNjhENUIwHhcNMjUxMDE5MDQ0NDI0WhcNMjUxMDI2MDQ0NDI0WjAYMRYwFAYD VQQDEw02OGY0NmNhOS0xYjhjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA51FOAW2vu0nEZNepMFsZYAC89jX71iEGH90lEEAl8l29iVn05NZbMQ93e546 n1IlbeOGhXaE3g4e9cvACkqwysD3fu1WhmSa4UVlYk4ixdy2PcFGNMpzVNekRRb1 wJKffWwMxr6YgZZsIMIv6jg8k1ry76Dl+e4l0/39pqZclrFPVbb4kCHMz1jlFCso pejDi5a7JpYMq7kpqMHa2jPYmKV8lerCRLDvE4GxdD0pfKJgM+//QiYS/mTac2xj E6umnk/hP+JhbclVR/F7Aorcsd4CkvDcsC06Z+e+hERaLHzOrn3lNl3e5Jf+8weL E5X63gRdQI+VqGcOZhc/FNRY8wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN0v6dcf Uy8+tXQWOtRQlqmKS3wXMB8GA1UdIwQYMBaAFLSxiiU/tik0NxFmNd3dGZQoto1b MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRDY0RC8zNzA3ODZDODk5 OTQxMUVEODU2NzMxMUZDNEY5QUUwMi90TEdLSlQtMktUUTNFV1kxM2QwWmxDaTJq VnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RMR0tKVC0yS1RRM0VXWTEzZDBabENpMmpWcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RDY0RC8zNzA3ODZDODk5OTQxMUVEODU2NzMxMUZDNEY5QUUwMi90TEdLSlQtMktU UTNFV1kxM2QwWmxDaTJqVnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCW08xHhAK44eUTykzV+UHOpcOnFuMExVs8fY2kfwx3anAGmYxBD3xK mjLc9JwX7ipyaa03Ru6VgejXdu3Y5TqQGl3wJodfTp+NUAO88OMwS64yxJO+Geam 9XNjQ2FwTOZ2XrFmADawKXdS0dzeFFnonPuHItAXKu6u70B7/IT4tLHG1PHkIQB9 7lUf1TatTieN2le2QVHi1ZubsTQdlSDDiFA9K+8OhpcwfWI399YAREmx3WsW24AG 4+cN0UYb366x1wDd9bSTItj2U+CqFtlibTo0grh3mSHFNDEXwE7blIgu/FFDzIYA AUJBRTfY1Z+j/DT57DpoPl/1WB/cxzwI -----END CERTIFICATE-----Generated at Mon Oct 20 10:36:50 2025 by rpki-client