$ rpki-client -vvf rpki.apnic.net/member_repository/A914D271/2814F0DE11B111EE9047BF18C4F9AE02/TO7ubTZjwT_YLpMdrGnxcEb8mbM.mft File: TO7ubTZjwT_YLpMdrGnxcEb8mbM.mft (raw, json) Hash identifier: vmBTCKIdtgYODLjT6wWIkRz9UW3kGXuOWYBl38RsSRI= Subject key identifier: 69:BA:B7:91:A9:07:E1:B1:5D:89:7D:BE:54:09:49:69:E6:16:85:FD Authority key identifier: 4C:EE:EE:6D:36:63:C1:3F:D8:2E:93:1D:AC:69:F1:70:46:FC:99:B3 Certificate issuer: /CN=A914D271/serialNumber=4CEEEE6D3663C13FD82E931DAC69F17046FC99B3 Certificate serial: 01C0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TO7ubTZjwT_YLpMdrGnxcEb8mbM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914D271/2814F0DE11B111EE9047BF18C4F9AE02/TO7ubTZjwT_YLpMdrGnxcEb8mbM.mft Manifest number: 01BC Signing time: Mon 03 Nov 2025 03:02:05 +0000 Manifest this update: Mon 03 Nov 2025 03:02:05 +0000 Manifest next update: Mon 10 Nov 2025 03:02:05 +0000 Files and hashes: 1: TO7ubTZjwT_YLpMdrGnxcEb8mbM.crl (hash: xiNiRm/skPB4ajJSs/AdSu0VcxG1WB+dv6hhSTA1Gj8=) 2: 5EAB725014A211EEA889E832C4F9AE02.roa (hash: mX0oS42d4Afnuz1c6BL0lN1MWESAc87z/AqUedcAt4c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914D271/2814F0DE11B111EE9047BF18C4F9AE02/TO7ubTZjwT_YLpMdrGnxcEb8mbM.crl rsync://rpki.apnic.net/member_repository/A914D271/2814F0DE11B111EE9047BF18C4F9AE02/TO7ubTZjwT_YLpMdrGnxcEb8mbM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TO7ubTZjwT_YLpMdrGnxcEb8mbM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 03:02:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 448 (0x1c0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914D271, serialNumber=4CEEEE6D3663C13FD82E931DAC69F17046FC99B3 Validity Not Before: Nov 3 03:02:05 2025 GMT Not After : Nov 10 03:02:05 2025 GMT Subject: CN=69081b2d-0eee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:a6:53:da:5e:4e:60:0f:9a:62:f3:57:8f:8f: 62:2e:37:42:a3:a9:8a:d0:eb:13:e7:d9:e4:12:63: 2c:7a:5f:31:54:a5:9a:66:19:4f:b6:ec:91:c9:78: e7:2f:b5:a8:84:b5:a0:05:97:bc:c8:06:31:4f:b9: 09:d8:38:40:15:5e:86:8c:1d:cd:15:ad:b9:9f:f9: 23:e2:3a:96:09:45:84:03:e8:d8:ab:c0:34:1f:e0: 6d:84:8d:3e:ca:ad:74:87:f4:3e:da:7a:1f:49:6d: b3:6f:82:f5:07:ce:df:cd:b1:f9:43:7e:da:4a:31: 2f:85:e0:86:00:75:a9:9a:73:5b:e3:1d:44:87:15: ed:6f:6f:f5:bf:3d:0c:b4:eb:27:ea:e8:39:00:18: e8:e5:d9:c5:91:ae:b9:8f:3d:6f:b0:a3:44:af:8e: 37:57:73:ff:e0:2b:6c:96:77:60:eb:00:0c:35:ab: 5c:34:63:4b:4d:9f:21:72:2c:ef:0f:5a:79:56:bd: 32:73:af:87:29:0c:4c:44:61:fd:12:8b:3d:dd:24: c9:30:d8:2c:99:99:1e:75:ba:40:d1:94:a7:89:0d: 01:ec:60:fe:f7:af:9d:bd:21:41:8c:cb:24:de:ac: ca:56:c4:58:62:a3:64:b3:23:a6:88:32:2a:15:77: a0:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:BA:B7:91:A9:07:E1:B1:5D:89:7D:BE:54:09:49:69:E6:16:85:FD X509v3 Authority Key Identifier: keyid:4C:EE:EE:6D:36:63:C1:3F:D8:2E:93:1D:AC:69:F1:70:46:FC:99:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914D271/2814F0DE11B111EE9047BF18C4F9AE02/TO7ubTZjwT_YLpMdrGnxcEb8mbM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TO7ubTZjwT_YLpMdrGnxcEb8mbM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914D271/2814F0DE11B111EE9047BF18C4F9AE02/TO7ubTZjwT_YLpMdrGnxcEb8mbM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6a:0b:64:0f:29:3b:29:35:84:96:71:34:5c:64:59:4c:a7:6b: 9d:60:62:02:4f:4e:3b:7c:33:be:40:1c:1e:36:24:fe:23:bc: 36:63:0d:b3:23:aa:70:6f:a8:38:f7:de:d9:30:79:02:cb:96: e6:dd:ce:94:60:9d:a1:6f:23:b0:27:64:ac:f1:a1:8c:4c:2a: b2:6a:27:f4:26:3c:ef:ba:91:95:b4:02:2e:cf:07:a5:fd:0e: 80:a8:77:b4:5b:79:38:06:af:37:e4:50:91:b1:c8:c3:ac:e9: f6:98:dc:17:39:f2:09:11:ab:62:8f:ec:8f:2f:4c:35:d8:11: 57:eb:d1:0f:e7:e9:ca:39:43:e3:00:9e:4e:f5:6a:af:ca:5d: 63:aa:b0:03:5a:68:6b:d9:fa:71:ee:e2:d3:ec:c6:00:71:5d: 92:d0:f1:86:48:39:d4:22:9f:6b:41:b8:3c:f1:37:fb:d8:78: ad:5f:b5:22:32:06:10:ec:7c:c8:eb:ee:6a:79:0f:ba:ac:20: 84:64:c0:68:d8:24:71:45:81:42:cb:8a:d4:10:c0:09:8d:57: ad:b0:fc:10:08:3c:d8:ac:c2:bd:68:58:c3:09:d9:44:e5:c0: f7:b5:83:c4:dd:07:76:65:b4:d1:d4:92:d0:ee:cd:11:b7:55: e0:7a:dc:07 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAcAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEQyNzExMTAvBgNVBAUTKDRDRUVFRTZEMzY2M0MxM0ZEODJFOTMxREFDNjlGMTcw NDZGQzk5QjMwHhcNMjUxMTAzMDMwMjA1WhcNMjUxMTEwMDMwMjA1WjAYMRYwFAYD VQQDEw02OTA4MWIyZC0wZWVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoqZT2l5OYA+aYvNXj49iLjdCo6mK0OsT59nkEmMsel8xVKWaZhlPtuyRyXjn L7WohLWgBZe8yAYxT7kJ2DhAFV6GjB3NFa25n/kj4jqWCUWEA+jYq8A0H+BthI0+ yq10h/Q+2nofSW2zb4L1B87fzbH5Q37aSjEvheCGAHWpmnNb4x1EhxXtb2/1vz0M tOsn6ug5ABjo5dnFka65jz1vsKNEr443V3P/4Ctslndg6wAMNatcNGNLTZ8hcizv D1p5Vr0yc6+HKQxMRGH9Eos93STJMNgsmZkedbpA0ZSniQ0B7GD+96+dvSFBjMsk 3qzKVsRYYqNksyOmiDIqFXegEwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGm6t5Gp B+GxXYl9vlQJSWnmFoX9MB8GA1UdIwQYMBaAFEzu7m02Y8E/2C6THaxp8XBG/Jmz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RDI3MS8yODE0RjBERTEx QjExMUVFOTA0N0JGMThDNEY5QUUwMi9UTzd1YlRaandUX1lMcE1kckdueGNFYjht Yk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RPN3ViVFpqd1RfWUxwTWRyR254Y0ViOG1iTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RDI3MS8yODE0RjBERTExQjExMUVFOTA0N0JGMThDNEY5QUUwMi9UTzd1YlRaandU X1lMcE1kckdueGNFYjhtYk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBqC2QPKTspNYSWcTRcZFlMp2udYGICT047fDO+QBweNiT+I7w2Yw2z I6pwb6g4997ZMHkCy5bm3c6UYJ2hbyOwJ2Ss8aGMTCqyaif0JjzvupGVtAIuzwel /Q6AqHe0W3k4Bq835FCRscjDrOn2mNwXOfIJEatij+yPL0w12BFX69EP5+nKOUPj AJ5O9Wqvyl1jqrADWmhr2fpx7uLT7MYAcV2S0PGGSDnUIp9rQbg88Tf72HitX7Ui MgYQ7HzI6+5qeQ+6rCCEZMBo2CRxRYFCy4rUEMAJjVetsPwQCDzYrMK9aFjDCdlE 5cD3tYPE3Qd2ZbTR1JLQ7s0Rt1XgetwH -----END CERTIFICATE-----Generated at Tue Nov 4 08:19:52 2025 by rpki-client