$ rpki-client -vvf rpki.apnic.net/member_repository/A917C34D/F4F049186B4211EB9D2C192CC4F9AE02/TAV55XydHpSk4-TgZlZmIOww4qc.mft File: TAV55XydHpSk4-TgZlZmIOww4qc.mft (raw, json) Hash identifier: r2irdPBzTpOne0Cmvqcyv52ALEhlEc3urlMzCZUYJHE= Subject key identifier: 75:04:25:C1:16:51:54:62:86:33:C2:1A:C8:D3:FF:E8:49:31:9C:89 Authority key identifier: 4C:05:79:E5:7C:9D:1E:94:A4:E3:E4:E0:66:56:66:20:EC:30:E2:A7 Certificate issuer: /CN=A917C34D/serialNumber=4C0579E57C9D1E94A4E3E4E066566620EC30E2A7 Certificate serial: 06F2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TAV55XydHpSk4-TgZlZmIOww4qc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C34D/F4F049186B4211EB9D2C192CC4F9AE02/TAV55XydHpSk4-TgZlZmIOww4qc.mft Manifest number: 06EC Signing time: Tue 04 Nov 2025 22:02:58 +0000 Manifest this update: Tue 04 Nov 2025 22:02:57 +0000 Manifest next update: Tue 11 Nov 2025 22:02:57 +0000 Files and hashes: 1: TAV55XydHpSk4-TgZlZmIOww4qc.crl (hash: BRsvOuODs2oRS6RnlG2E8jZJzpryaax23BUacxYpmbw=) 2: 00F7933C6F3B11EBA740F268C4F9AE02.roa (hash: XuD/dJtjIFCcLvDlNEI5r0Ri7UyViz+739sGCWSc5XQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C34D/F4F049186B4211EB9D2C192CC4F9AE02/TAV55XydHpSk4-TgZlZmIOww4qc.crl rsync://rpki.apnic.net/member_repository/A917C34D/F4F049186B4211EB9D2C192CC4F9AE02/TAV55XydHpSk4-TgZlZmIOww4qc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TAV55XydHpSk4-TgZlZmIOww4qc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 22:02:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1778 (0x6f2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C34D, serialNumber=4C0579E57C9D1E94A4E3E4E066566620EC30E2A7 Validity Not Before: Nov 4 22:02:57 2025 GMT Not After : Nov 11 22:02:57 2025 GMT Subject: CN=690a7811-fea8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:51:54:64:ef:4f:b6:b7:73:57:07:92:37:35: 2b:15:6e:a4:1d:89:6d:a7:fe:d1:ba:5e:4a:18:0a: eb:be:2e:b4:6a:58:15:a9:98:fb:cf:a2:1c:9f:ad: 3e:8a:78:50:78:1c:1a:69:6c:54:51:2e:fd:6e:99: f2:da:38:d0:42:07:16:e3:c0:63:c2:a1:47:b5:2b: 1b:c7:0d:0d:9d:f9:29:b7:40:ed:b1:54:69:a8:37: 96:46:75:30:59:e8:52:45:84:b0:38:a2:6b:ec:49: 77:db:4b:f6:ff:00:b5:e0:b0:5e:82:1d:15:bd:e8: 6b:d5:70:f4:b7:56:a7:ff:ba:60:55:b3:38:15:99: c1:49:53:cc:c4:06:07:6c:7a:44:48:aa:65:7c:e2: e9:b6:cb:17:b7:7a:69:43:88:7b:a1:b5:ec:1f:16: c3:fc:8b:6b:6f:9c:55:0d:49:87:88:f8:aa:7d:32: 98:ff:c4:6c:80:ba:9a:e5:10:cb:55:cb:cb:e3:37: 62:98:3f:10:dc:09:3d:09:c1:30:08:59:7c:dc:56: 6b:f4:81:a3:df:fe:08:1a:dc:c1:2e:72:8b:8e:57: 9c:6a:7f:ae:57:b8:60:d6:6e:0f:8e:dc:5f:6f:50: c0:9b:53:d8:37:4e:0e:7a:ff:7d:39:6c:a7:09:e8: bd:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:04:25:C1:16:51:54:62:86:33:C2:1A:C8:D3:FF:E8:49:31:9C:89 X509v3 Authority Key Identifier: keyid:4C:05:79:E5:7C:9D:1E:94:A4:E3:E4:E0:66:56:66:20:EC:30:E2:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C34D/F4F049186B4211EB9D2C192CC4F9AE02/TAV55XydHpSk4-TgZlZmIOww4qc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TAV55XydHpSk4-TgZlZmIOww4qc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C34D/F4F049186B4211EB9D2C192CC4F9AE02/TAV55XydHpSk4-TgZlZmIOww4qc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a2:09:59:95:56:33:3f:1c:16:b8:c3:a8:42:9e:7d:27:58:75: d9:55:1f:ef:d3:02:98:fa:56:2f:eb:5b:3d:68:78:6c:bf:df: 54:b6:0b:08:47:83:81:7e:2a:f6:be:6d:24:9b:f3:41:b6:c6: cd:5c:8f:3e:b6:f6:bb:13:cb:85:d0:b6:41:54:30:73:41:17: e9:4a:56:b7:fa:5d:5c:1c:85:3b:fa:62:95:8f:88:10:bb:56: 0a:f6:77:bc:d6:b9:45:48:30:e8:cc:db:27:d0:34:d3:7f:69: 0a:1c:94:e7:fa:e0:f6:d7:89:2e:29:0d:9e:b6:e3:65:21:9a: cc:0a:a5:75:d2:94:9b:51:1d:2e:f5:e7:d7:2c:4a:86:bc:2e: 4a:06:76:3a:50:aa:6c:a5:d8:ba:b2:f9:4b:9f:86:1c:cc:fe: 46:60:dc:69:66:34:a7:bd:33:ce:e3:e8:96:da:cf:be:9d:77: 40:30:0d:39:6e:e8:01:27:e7:d2:12:14:5a:3e:4c:aa:3a:60: 6b:10:8a:41:8a:bb:21:0a:66:9d:b3:3d:d0:5b:28:09:1c:ff: 03:eb:a3:48:34:5c:8b:34:d1:86:75:eb:3c:fa:35:19:84:1c: 41:2c:81:09:b4:00:a1:43:f1:5b:7d:4c:7c:01:f5:a9:74:6f: 68:7b:e6:11 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBvIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0MzNEQxMTAvBgNVBAUTKDRDMDU3OUU1N0M5RDFFOTRBNEUzRTRFMDY2NTY2NjIw RUMzMEUyQTcwHhcNMjUxMTA0MjIwMjU3WhcNMjUxMTExMjIwMjU3WjAYMRYwFAYD VQQDEw02OTBhNzgxMS1mZWE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsFFUZO9PtrdzVweSNzUrFW6kHYltp/7Rul5KGArrvi60algVqZj7z6Icn60+ inhQeBwaaWxUUS79bpny2jjQQgcW48BjwqFHtSsbxw0Nnfkpt0DtsVRpqDeWRnUw WehSRYSwOKJr7El320v2/wC14LBegh0Vvehr1XD0t1an/7pgVbM4FZnBSVPMxAYH bHpESKplfOLptssXt3ppQ4h7obXsHxbD/Itrb5xVDUmHiPiqfTKY/8RsgLqa5RDL VcvL4zdimD8Q3Ak9CcEwCFl83FZr9IGj3/4IGtzBLnKLjlecan+uV7hg1m4Pjtxf b1DAm1PYN04Oev99OWynCei9rQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHUEJcEW UVRihjPCGsjT/+hJMZyJMB8GA1UdIwQYMBaAFEwFeeV8nR6UpOPk4GZWZiDsMOKn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzM0RC9GNEYwNDkxODZC NDIxMUVCOUQyQzE5MkNDNEY5QUUwMi9UQVY1NVh5ZEhwU2s0LVRnWmxabUlPd3c0 cWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RBVjU1WHlkSHBTazQtVGdabFptSU93dzRxYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QzM0RC9GNEYwNDkxODZCNDIxMUVCOUQyQzE5MkNDNEY5QUUwMi9UQVY1NVh5ZEhw U2s0LVRnWmxabUlPd3c0cWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCiCVmVVjM/HBa4w6hCnn0nWHXZVR/v0wKY+lYv61s9aHhsv99UtgsI R4OBfir2vm0km/NBtsbNXI8+tva7E8uF0LZBVDBzQRfpSla3+l1cHIU7+mKVj4gQ u1YK9ne81rlFSDDozNsn0DTTf2kKHJTn+uD214kuKQ2etuNlIZrMCqV10pSbUR0u 9efXLEqGvC5KBnY6UKpspdi6svlLn4YczP5GYNxpZjSnvTPO4+iW2s++nXdAMA05 bugBJ+fSEhRaPkyqOmBrEIpBirshCmadsz3QWygJHP8D66NINFyLNNGGdes8+jUZ hBxBLIEJtAChQ/FbfUx8AfWpdG9oe+YR -----END CERTIFICATE-----Generated at Wed Nov 5 15:43:34 2025 by rpki-client