$ rpki-client -vvf rpki.apnic.net/member_repository/A91466E8/D8388D34F3FC11EF926CE630C4F9AE02/TCISGt-uP1dSgBZRUcP9MOOq_QE.mft File: TCISGt-uP1dSgBZRUcP9MOOq_QE.mft (raw, json) Hash identifier: wpJ7aXuUJg6+ODRfnGIhoOezjCdn37LEzqEFnn8i18I= Subject key identifier: 42:AC:8C:38:0C:42:B2:89:B2:21:D0:36:8F:45:92:1A:95:C4:6A:B6 Authority key identifier: 4C:22:12:1A:DF:AE:3F:57:52:80:16:51:51:C3:FD:30:E3:AA:FD:01 Certificate issuer: /CN=A91466E8/serialNumber=4C22121ADFAE3F575280165151C3FD30E3AAFD01 Certificate serial: 89 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TCISGt-uP1dSgBZRUcP9MOOq_QE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91466E8/D8388D34F3FC11EF926CE630C4F9AE02/TCISGt-uP1dSgBZRUcP9MOOq_QE.mft Manifest number: 85 Signing time: Wed 05 Nov 2025 06:52:13 +0000 Manifest this update: Wed 05 Nov 2025 06:52:13 +0000 Manifest next update: Wed 12 Nov 2025 06:52:13 +0000 Files and hashes: 1: TCISGt-uP1dSgBZRUcP9MOOq_QE.crl (hash: hGqg6SohxyePKsAcIhQiyaUI51WoHgTGM3s36wPo9I4=) 2: 02640B0CF97911EF99F9BE80C4F9AE02.roa (hash: NYtoABq9iaZ7RDTNr8tHyhssdbHGRtrQu/5JhSbINm0=) 3: 67CB5FC0629411F0B7FA070FC4F9AE02.roa (hash: ezXoOJmaQ+T0/SBG+83qcx+7CgpMAs0wB76/qo16lME=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91466E8/D8388D34F3FC11EF926CE630C4F9AE02/TCISGt-uP1dSgBZRUcP9MOOq_QE.crl rsync://rpki.apnic.net/member_repository/A91466E8/D8388D34F3FC11EF926CE630C4F9AE02/TCISGt-uP1dSgBZRUcP9MOOq_QE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TCISGt-uP1dSgBZRUcP9MOOq_QE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 06:52:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 137 (0x89) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91466E8, serialNumber=4C22121ADFAE3F575280165151C3FD30E3AAFD01 Validity Not Before: Nov 5 06:52:13 2025 GMT Not After : Nov 12 06:52:13 2025 GMT Subject: CN=690af41d-0ba2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:a1:0f:4e:e4:b4:61:ff:43:ad:ff:fb:7f:d4: bd:66:bd:be:6e:71:8b:31:d7:0b:6d:ea:15:4c:99: 51:79:12:4b:c0:0e:ee:49:b7:a6:0f:8e:2d:30:8a: 8f:1a:9b:cc:d0:1e:73:16:96:a2:fb:59:b0:de:53: 04:40:76:b2:77:bb:10:11:f0:b3:ac:2c:75:11:00: f5:8e:61:59:bd:67:b3:d2:a6:1d:38:69:8f:0f:a1: 4b:88:18:ab:26:90:78:5c:f1:d7:ef:c0:24:58:f6: b8:e6:57:7e:b4:f8:1d:7c:65:09:8d:51:33:e0:12: 29:7a:e4:1c:d9:fc:06:74:08:af:b3:39:eb:36:fb: 2f:b8:df:e4:ba:14:a2:e5:b8:47:8b:b2:58:6d:a9: 61:30:dd:8f:1f:80:f3:43:f2:8c:69:36:5f:84:db: c8:8b:dd:3d:21:00:2b:fd:d6:22:eb:a4:67:f0:d0: 6a:20:51:ce:1f:a1:22:36:fb:ba:a0:32:2f:2c:60: c0:d7:81:42:7f:60:63:79:11:f0:ef:d7:16:fe:b1: d3:bc:18:46:59:27:c3:83:4e:c4:a8:8c:ce:42:a3: 21:0f:36:00:50:9c:44:da:e3:3f:90:8c:06:c4:27: fa:f5:bd:2e:73:5f:b3:82:5a:fc:9a:7e:63:e3:2b: 48:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:AC:8C:38:0C:42:B2:89:B2:21:D0:36:8F:45:92:1A:95:C4:6A:B6 X509v3 Authority Key Identifier: keyid:4C:22:12:1A:DF:AE:3F:57:52:80:16:51:51:C3:FD:30:E3:AA:FD:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91466E8/D8388D34F3FC11EF926CE630C4F9AE02/TCISGt-uP1dSgBZRUcP9MOOq_QE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TCISGt-uP1dSgBZRUcP9MOOq_QE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91466E8/D8388D34F3FC11EF926CE630C4F9AE02/TCISGt-uP1dSgBZRUcP9MOOq_QE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 38:6b:91:c8:78:81:29:3f:e9:89:db:6f:31:bd:89:cc:77:78: 09:ea:2a:66:2e:f6:7a:54:20:bd:47:7a:43:22:9f:a5:01:35: 6c:d6:a3:4e:45:86:7a:06:1a:9e:4f:dc:54:e4:1a:9c:f6:2b: ac:e3:5e:22:dd:bf:e2:10:7d:56:e3:70:e8:58:0a:9b:94:a4: 05:f6:7f:37:38:e4:eb:9a:1d:62:3a:de:8c:06:1e:54:75:61: 52:f7:9b:63:1e:ff:3c:eb:65:93:47:b1:5f:b7:9c:c1:e7:a7: 34:29:db:fd:43:91:29:4b:cc:60:95:20:7e:f3:39:f0:59:10: 46:5a:d1:1b:9e:4f:0c:4c:03:96:aa:1f:7d:e2:43:b0:1e:a7: 3d:85:2c:3c:5d:54:ac:22:29:85:56:30:80:0f:8c:ac:5b:89: d9:42:1b:d2:27:59:76:ce:dd:ed:65:72:2f:c7:15:d0:72:e2: 7d:26:98:3f:c6:18:06:c3:7e:9f:9b:ba:89:ac:1b:23:38:10: 7d:f7:9e:d4:a1:11:6e:cf:12:87:4e:b9:11:f0:96:2c:ea:ad: a8:e3:21:25:2a:57:43:08:9d:4e:d8:e8:8e:9a:d3:6f:4e:50: 65:b4:09:7d:ab:5b:51:93:9d:24:f9:03:60:80:65:12:d6:56: 7e:8a:c4:be -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDY2RTgxMTAvBgNVBAUTKDRDMjIxMjFBREZBRTNGNTc1MjgwMTY1MTUxQzNGRDMw RTNBQUZEMDEwHhcNMjUxMTA1MDY1MjEzWhcNMjUxMTEyMDY1MjEzWjAYMRYwFAYD VQQDEw02OTBhZjQxZC0wYmEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx6EPTuS0Yf9Drf/7f9S9Zr2+bnGLMdcLbeoVTJlReRJLwA7uSbemD44tMIqP GpvM0B5zFpai+1mw3lMEQHayd7sQEfCzrCx1EQD1jmFZvWez0qYdOGmPD6FLiBir JpB4XPHX78AkWPa45ld+tPgdfGUJjVEz4BIpeuQc2fwGdAivsznrNvsvuN/kuhSi 5bhHi7JYbalhMN2PH4DzQ/KMaTZfhNvIi909IQAr/dYi66Rn8NBqIFHOH6EiNvu6 oDIvLGDA14FCf2BjeRHw79cW/rHTvBhGWSfDg07EqIzOQqMhDzYAUJxE2uM/kIwG xCf69b0uc1+zglr8mn5j4ytISwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEKsjDgM QrKJsiHQNo9FkhqVxGq2MB8GA1UdIwQYMBaAFEwiEhrfrj9XUoAWUVHD/TDjqv0B MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NjZFOC9EODM4OEQzNEYz RkMxMUVGOTI2Q0U2MzBDNEY5QUUwMi9UQ0lTR3QtdVAxZFNnQlpSVWNQOU1PT3Ff UUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RDSVNHdC11UDFkU2dCWlJVY1A5TU9PcV9RRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NjZFOC9EODM4OEQzNEYzRkMxMUVGOTI2Q0U2MzBDNEY5QUUwMi9UQ0lTR3QtdVAx ZFNnQlpSVWNQOU1PT3FfUUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA4a5HIeIEpP+mJ228xvYnMd3gJ6ipmLvZ6VCC9R3pDIp+lATVs1qNO RYZ6BhqeT9xU5Bqc9ius414i3b/iEH1W43DoWAqblKQF9n83OOTrmh1iOt6MBh5U dWFS95tjHv8862WTR7Fft5zB56c0Kdv9Q5EpS8xglSB+8znwWRBGWtEbnk8MTAOW qh994kOwHqc9hSw8XVSsIimFVjCAD4ysW4nZQhvSJ1l2zt3tZXIvxxXQcuJ9Jpg/ xhgGw36fm7qJrBsjOBB9957UoRFuzxKHTrkR8JYs6q2o4yElKldDCJ1O2OiOmtNv TlBltAl9q1tRk50k+QNggGUS1lZ+isS+ -----END CERTIFICATE-----Generated at Wed Nov 5 13:06:52 2025 by rpki-client