$ rpki-client -vvf rpki.apnic.net/member_repository/A91342C5/16637C2EA4E911ECAF3FB152C4F9AE02/TSeJUeK9itKFuUCo6p5X43lxHms.mft File: TSeJUeK9itKFuUCo6p5X43lxHms.mft (raw, json) Hash identifier: bKILhHtqoma729a0DYYWqYEyKPtp+KcFTvThal8KxoY= Subject key identifier: 8F:48:8F:F9:AA:D4:6A:22:FF:11:C9:2A:8A:51:62:FC:5C:1F:21:9E Authority key identifier: 4D:27:89:51:E2:BD:8A:D2:85:B9:40:A8:EA:9E:57:E3:79:71:1E:6B Certificate issuer: /CN=A91342C5/serialNumber=4D278951E2BD8AD285B940A8EA9E57E379711E6B Certificate serial: 03DD Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/TSeJUeK9itKFuUCo6p5X43lxHms.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91342C5/16637C2EA4E911ECAF3FB152C4F9AE02/TSeJUeK9itKFuUCo6p5X43lxHms.mft Manifest number: 03D8 Signing time: Wed 05 Nov 2025 00:42:32 +0000 Manifest this update: Wed 05 Nov 2025 00:42:32 +0000 Manifest next update: Wed 12 Nov 2025 00:42:32 +0000 Files and hashes: 1: TSeJUeK9itKFuUCo6p5X43lxHms.crl (hash: scIclnDzpZi5tSqc7cpaYPfis/EZl5iCJdT1U+78bQc=) 2: E8E194B8A5CC11EC85A86A1FC4F9AE02.roa (hash: ypQGr8fcGrxnVWfQ2RrFsZZ4R7tmsDgEITmj6bx0ScA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91342C5/16637C2EA4E911ECAF3FB152C4F9AE02/TSeJUeK9itKFuUCo6p5X43lxHms.crl rsync://rpki.apnic.net/member_repository/A91342C5/16637C2EA4E911ECAF3FB152C4F9AE02/TSeJUeK9itKFuUCo6p5X43lxHms.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/TSeJUeK9itKFuUCo6p5X43lxHms.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 00:42:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 989 (0x3dd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91342C5, serialNumber=4D278951E2BD8AD285B940A8EA9E57E379711E6B Validity Not Before: Nov 5 00:42:32 2025 GMT Not After : Nov 12 00:42:32 2025 GMT Subject: CN=690a9d78-f530 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:dc:19:2b:c9:4d:21:88:da:9c:29:bd:95:fc: 52:36:1c:54:f6:31:9d:cf:30:01:89:38:ea:3b:f5: 17:92:f5:bb:b6:33:33:08:7c:cf:05:3f:82:f4:7d: 0f:6e:6e:81:01:7b:11:9e:16:d9:d8:93:f6:ee:79: e7:87:f1:05:ac:9c:57:fd:b8:2a:d9:d0:3c:9d:12: e0:42:6a:cb:b3:dc:05:95:16:9f:ba:91:9a:54:58: 57:9a:55:7c:8b:fe:77:6b:7c:67:b8:d3:79:be:d8: 01:35:76:ac:96:6d:a0:a1:8a:de:a9:f4:7f:39:67: 88:b4:29:f2:fc:fd:53:86:b2:2e:cc:fe:f5:a2:14: a5:1e:b6:69:f1:16:5b:ed:9a:4b:d0:e2:3d:37:73: 93:7f:95:93:2b:cd:e1:bc:b3:40:d7:f6:cb:2a:fe: 5b:4c:ed:e3:1f:41:41:1f:7f:19:e4:a9:85:92:14: d0:5f:2b:08:f5:68:1b:15:3f:1f:a1:37:e3:b1:6e: e8:c7:c3:f5:6e:0e:2f:71:2a:47:b1:dc:ce:93:83: 65:13:10:f8:3d:a0:8a:04:2e:ab:08:88:27:6e:74: 52:07:be:f0:75:25:c3:70:07:e9:1c:52:cf:cd:9e: 39:87:b4:31:0f:9c:31:2e:5b:ac:c8:39:33:0d:b5: 08:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:48:8F:F9:AA:D4:6A:22:FF:11:C9:2A:8A:51:62:FC:5C:1F:21:9E X509v3 Authority Key Identifier: keyid:4D:27:89:51:E2:BD:8A:D2:85:B9:40:A8:EA:9E:57:E3:79:71:1E:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91342C5/16637C2EA4E911ECAF3FB152C4F9AE02/TSeJUeK9itKFuUCo6p5X43lxHms.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/TSeJUeK9itKFuUCo6p5X43lxHms.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91342C5/16637C2EA4E911ECAF3FB152C4F9AE02/TSeJUeK9itKFuUCo6p5X43lxHms.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 07:bd:a7:9d:82:b6:b4:1c:75:1b:e2:1f:06:1e:25:03:51:c8: 4f:27:78:e2:62:25:c6:b2:82:2b:ea:65:f3:79:4b:57:94:6e: e0:54:a8:2b:c9:5c:e9:ef:2f:a2:bb:17:02:7d:07:27:c0:02: d8:db:24:6d:52:70:23:7d:05:a6:c1:aa:8a:3b:0c:9e:23:29: 2c:08:c5:f6:d8:e9:b8:87:81:b4:83:ca:55:0a:f9:5e:d0:f4: 19:29:34:28:0f:54:35:86:d1:80:76:d3:e3:53:7b:b8:0b:bf: e0:0e:1c:33:c5:5d:dc:29:52:e6:38:22:6a:3f:2a:70:25:e1: 91:ab:ac:25:5e:1e:3b:83:03:ac:1e:f8:58:6b:54:d3:d5:4f: af:b2:01:f9:0f:81:ef:46:8f:7e:28:cb:4e:a9:f2:cb:7e:4f: d2:13:2c:3f:80:25:c5:03:6a:88:b9:56:73:83:8a:e4:d3:19: 22:00:7e:3d:d9:92:ea:d4:1d:43:fc:4e:3f:c3:2f:43:ec:1e: 7b:ad:d7:72:c9:1c:08:ae:e1:3f:87:ae:2e:65:16:3f:ea:64: 6d:e8:80:ed:fe:aa:90:49:cd:d0:ec:60:99:3b:33:1e:38:79: f6:24:a6:46:9f:3a:c3:ba:16:9a:a9:d2:41:38:81:d2:35:bb: 65:86:92:60 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA90wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzQyQzUxMTAvBgNVBAUTKDREMjc4OTUxRTJCRDhBRDI4NUI5NDBBOEVBOUU1N0Uz Nzk3MTFFNkIwHhcNMjUxMTA1MDA0MjMyWhcNMjUxMTEyMDA0MjMyWjAYMRYwFAYD VQQDEw02OTBhOWQ3OC1mNTMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApNwZK8lNIYjanCm9lfxSNhxU9jGdzzABiTjqO/UXkvW7tjMzCHzPBT+C9H0P bm6BAXsRnhbZ2JP27nnnh/EFrJxX/bgq2dA8nRLgQmrLs9wFlRafupGaVFhXmlV8 i/53a3xnuNN5vtgBNXaslm2goYreqfR/OWeItCny/P1ThrIuzP71ohSlHrZp8RZb 7ZpL0OI9N3OTf5WTK83hvLNA1/bLKv5bTO3jH0FBH38Z5KmFkhTQXysI9WgbFT8f oTfjsW7ox8P1bg4vcSpHsdzOk4NlExD4PaCKBC6rCIgnbnRSB77wdSXDcAfpHFLP zZ45h7QxD5wxLlusyDkzDbUIOQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI9Ij/mq 1Goi/xHJKopRYvxcHyGeMB8GA1UdIwQYMBaAFE0niVHivYrShblAqOqeV+N5cR5r MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNDJDNS8xNjYzN0MyRUE0 RTkxMUVDQUYzRkIxNTJDNEY5QUUwMi9UU2VKVWVLOWl0S0Z1VUNvNnA1WDQzbHhI bXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL1RTZUpVZUs5aXRLRnVVQ282cDVYNDNseEhtcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NDJDNS8xNjYzN0MyRUE0RTkxMUVDQUYzRkIxNTJDNEY5QUUwMi9UU2VKVWVLOWl0 S0Z1VUNvNnA1WDQzbHhIbXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAHvaedgra0HHUb4h8GHiUDUchPJ3jiYiXGsoIr6mXzeUtXlG7gVKgr yVzp7y+iuxcCfQcnwALY2yRtUnAjfQWmwaqKOwyeIyksCMX22Om4h4G0g8pVCvle 0PQZKTQoD1Q1htGAdtPjU3u4C7/gDhwzxV3cKVLmOCJqPypwJeGRq6wlXh47gwOs HvhYa1TT1U+vsgH5D4HvRo9+KMtOqfLLfk/SEyw/gCXFA2qIuVZzg4rk0xkiAH49 2ZLq1B1D/E4/wy9D7B57rddyyRwIruE/h64uZRY/6mRt6IDt/qqQSc3Q7GCZOzMe OHn2JKZGnzrDuhaaqdJBOIHSNbtlhpJg -----END CERTIFICATE-----Generated at Wed Nov 5 22:02:40 2025 by rpki-client