$ rpki-client -vvf rpki.apnic.net/member_repository/A91116C7/C856D6C4C6C611E882A41260C4F9AE02/tnwkXksr7q0jwfBd0w_5B32HuOY.mft File: tnwkXksr7q0jwfBd0w_5B32HuOY.mft (raw, json) Hash identifier: v2tE9ozPAaVIaQNRMG8gUkQEl2Hmx5wuldMglAwU7dQ= Subject key identifier: A8:35:71:1B:E4:2C:47:9B:FA:C7:7D:0F:EB:4B:3F:16:19:B8:EE:34 Authority key identifier: B6:7C:24:5E:4B:2B:EE:AD:23:C1:F0:5D:D3:0F:F9:07:7D:87:B8:E6 Certificate issuer: /CN=A91116C7/serialNumber=B67C245E4B2BEEAD23C1F05DD30FF9077D87B8E6 Certificate serial: 12ED Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tnwkXksr7q0jwfBd0w_5B32HuOY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91116C7/C856D6C4C6C611E882A41260C4F9AE02/tnwkXksr7q0jwfBd0w_5B32HuOY.mft Manifest number: 12E5 Signing time: Tue 04 Nov 2025 17:08:19 +0000 Manifest this update: Tue 04 Nov 2025 17:08:18 +0000 Manifest next update: Tue 11 Nov 2025 17:08:18 +0000 Files and hashes: 1: tnwkXksr7q0jwfBd0w_5B32HuOY.crl (hash: qDMt04BU4kUWM5VxTI10KhXGYT8yii3VeHyRwfFmiRs=) 2: 0CAF01A6C6C811E8AECD6165C4F9AE02.roa (hash: OXXzoi8LLX55gX/DfWbkzrbLh+Han7QgMUGkYSwbpGo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91116C7/C856D6C4C6C611E882A41260C4F9AE02/tnwkXksr7q0jwfBd0w_5B32HuOY.crl rsync://rpki.apnic.net/member_repository/A91116C7/C856D6C4C6C611E882A41260C4F9AE02/tnwkXksr7q0jwfBd0w_5B32HuOY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tnwkXksr7q0jwfBd0w_5B32HuOY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 17:08:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4845 (0x12ed) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91116C7, serialNumber=B67C245E4B2BEEAD23C1F05DD30FF9077D87B8E6 Validity Not Before: Nov 4 17:08:18 2025 GMT Not After : Nov 11 17:08:18 2025 GMT Subject: CN=690a3303-d3f1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:4f:ea:a4:1f:70:c8:02:00:62:60:6f:0f:e8: 89:23:ee:a2:d8:87:71:cc:fa:73:57:af:57:c4:12: c1:3e:03:9e:a0:b5:66:61:29:cd:1a:d8:fb:73:28: 79:ca:c1:da:9c:e4:9e:ec:8c:e2:f4:eb:f6:29:c5: a1:ac:61:43:a8:3c:f3:79:b1:fa:8c:e1:49:ed:bd: df:c3:de:f8:d3:14:a8:60:93:0d:d3:e1:53:46:47: b4:1c:3a:ed:fd:74:24:ed:db:56:b5:aa:8d:00:2c: ed:9b:9a:34:2c:b3:cd:6c:d6:b9:fe:4e:a7:a9:c6: 0a:d1:93:06:5e:90:94:6c:2b:da:cf:20:99:b3:28: 2b:73:82:79:cc:4e:92:b0:d7:32:6b:76:31:b7:0e: 42:55:56:bc:5c:bc:e8:ac:1f:02:7c:aa:50:cc:8d: 06:ec:b3:be:a5:ac:5a:80:ec:da:47:74:55:23:14: ff:77:51:46:e5:e6:25:be:a9:08:73:1b:31:b1:b5: 41:b8:e8:5a:34:b1:5e:4c:1a:92:f5:b7:f3:ee:d5: 69:00:72:18:c1:60:ca:1a:ea:bd:f2:0c:c4:5b:c0: 42:7d:d9:c3:98:e4:1e:f5:4b:24:14:21:bf:21:bb: 48:13:7a:3b:13:ab:ec:1d:a0:8a:76:fc:60:23:8b: 8c:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:35:71:1B:E4:2C:47:9B:FA:C7:7D:0F:EB:4B:3F:16:19:B8:EE:34 X509v3 Authority Key Identifier: keyid:B6:7C:24:5E:4B:2B:EE:AD:23:C1:F0:5D:D3:0F:F9:07:7D:87:B8:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91116C7/C856D6C4C6C611E882A41260C4F9AE02/tnwkXksr7q0jwfBd0w_5B32HuOY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tnwkXksr7q0jwfBd0w_5B32HuOY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91116C7/C856D6C4C6C611E882A41260C4F9AE02/tnwkXksr7q0jwfBd0w_5B32HuOY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ac:2a:d5:d9:c5:8e:56:86:2c:9c:9e:cc:5a:68:eb:fc:9b:e2: 74:23:3f:3e:7e:73:db:f7:d3:79:9d:8d:e3:73:9c:8a:bd:9d: a3:77:58:f0:18:bc:9c:5d:df:31:49:07:e2:56:b5:72:8b:bd: 69:20:f3:ee:d4:a7:27:1a:16:8b:b9:eb:e6:02:f9:8e:80:33: ae:b0:6c:3c:23:ab:df:68:43:72:4d:fa:4b:9c:62:dd:00:15: 0f:e0:38:b1:cd:32:63:92:fa:30:8f:12:7c:56:0e:dc:93:31: 7c:fa:5b:c0:78:48:0f:3a:15:fd:4d:27:9e:32:42:7f:a2:2e: 26:44:9a:73:e8:8a:e1:95:5e:65:02:51:16:b8:66:4a:54:75: 5d:6d:6e:65:23:d6:34:ef:96:8d:32:86:de:e2:bb:29:e8:da: 4a:6d:dd:28:33:cd:c5:1f:d0:7a:3d:76:f1:b7:43:d6:39:aa: 1b:bc:ec:65:57:0c:01:46:1e:87:61:34:97:bb:41:4a:b5:fa: 52:9d:c6:77:40:d7:a8:20:fc:24:88:89:b6:c1:c5:cd:e8:3b: 30:b0:7b:eb:a8:1b:d7:89:3c:db:82:7d:d1:d6:c8:50:31:04: 48:f9:d8:c8:63:1b:c4:e0:4d:66:57:a6:a4:c1:74:de:da:a7: 58:91:26:ba -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEu0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTE2QzcxMTAvBgNVBAUTKEI2N0MyNDVFNEIyQkVFQUQyM0MxRjA1REQzMEZGOTA3 N0Q4N0I4RTYwHhcNMjUxMTA0MTcwODE4WhcNMjUxMTExMTcwODE4WjAYMRYwFAYD VQQDEw02OTBhMzMwMy1kM2YxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2U/qpB9wyAIAYmBvD+iJI+6i2IdxzPpzV69XxBLBPgOeoLVmYSnNGtj7cyh5 ysHanOSe7Izi9Ov2KcWhrGFDqDzzebH6jOFJ7b3fw9740xSoYJMN0+FTRke0HDrt /XQk7dtWtaqNACztm5o0LLPNbNa5/k6nqcYK0ZMGXpCUbCvazyCZsygrc4J5zE6S sNcya3Yxtw5CVVa8XLzorB8CfKpQzI0G7LO+paxagOzaR3RVIxT/d1FG5eYlvqkI cxsxsbVBuOhaNLFeTBqS9bfz7tVpAHIYwWDKGuq98gzEW8BCfdnDmOQe9UskFCG/ IbtIE3o7E6vsHaCKdvxgI4uM1QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKg1cRvk LEeb+sd9D+tLPxYZuO40MB8GA1UdIwQYMBaAFLZ8JF5LK+6tI8HwXdMP+Qd9h7jm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMTZDNy9DODU2RDZDNEM2 QzYxMUU4ODJBNDEyNjBDNEY5QUUwMi90bndrWGtzcjdxMGp3ZkJkMHdfNUIzMkh1 T1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Rud2tYa3NyN3EwandmQmQwd181QjMySHVPWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MTZDNy9DODU2RDZDNEM2QzYxMUU4ODJBNDEyNjBDNEY5QUUwMi90bndrWGtzcjdx MGp3ZkJkMHdfNUIzMkh1T1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCsKtXZxY5WhiycnsxaaOv8m+J0Iz8+fnPb99N5nY3jc5yKvZ2jd1jw GLycXd8xSQfiVrVyi71pIPPu1KcnGhaLuevmAvmOgDOusGw8I6vfaENyTfpLnGLd ABUP4DixzTJjkvowjxJ8Vg7ckzF8+lvAeEgPOhX9TSeeMkJ/oi4mRJpz6IrhlV5l AlEWuGZKVHVdbW5lI9Y075aNMobe4rsp6NpKbd0oM83FH9B6PXbxt0PWOaobvOxl VwwBRh6HYTSXu0FKtfpSncZ3QNeoIPwkiIm2wcXN6DswsHvrqBvXiTzbgn3R1shQ MQRI+djIYxvE4E1mV6akwXTe2qdYkSa6 -----END CERTIFICATE-----Generated at Wed Nov 5 20:07:13 2025 by rpki-client