$ rpki-client -vvf rpki.apnic.net/member_repository/A91820CC/936B43320BD911F08C607F87C4F9AE02/t0ZCTjTomeFM0znQc7tfSRj9B4c.mft File: t0ZCTjTomeFM0znQc7tfSRj9B4c.mft (raw, json) Hash identifier: UEdKvES87yY0aq3nTD6G26QsJRXoeRvitIZdD4i3p5E= Subject key identifier: DE:88:B5:FC:D0:32:9E:C4:29:2E:CD:07:9D:E0:C3:93:D1:3F:18:74 Authority key identifier: B7:46:42:4E:34:E8:99:E1:4C:D3:39:D0:73:BB:5F:49:18:FD:07:87 Certificate issuer: /CN=A91820CC/serialNumber=B746424E34E899E14CD339D073BB5F4918FD0787 Certificate serial: 77 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t0ZCTjTomeFM0znQc7tfSRj9B4c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91820CC/936B43320BD911F08C607F87C4F9AE02/t0ZCTjTomeFM0znQc7tfSRj9B4c.mft Manifest number: 75 Signing time: Wed 05 Nov 2025 07:05:56 +0000 Manifest this update: Wed 05 Nov 2025 07:05:55 +0000 Manifest next update: Wed 12 Nov 2025 07:05:55 +0000 Files and hashes: 1: t0ZCTjTomeFM0znQc7tfSRj9B4c.crl (hash: teSll/y7QGAIo68Cy6ARyTcqyGNYsdaXrLIFuXrY5fo=) 2: 675707260BDA11F0A768300AC4F9AE02.roa (hash: LFQa37q/cBpLbTU9VfVNZw79cN64ozdrBS9Unjdq4XE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91820CC/936B43320BD911F08C607F87C4F9AE02/t0ZCTjTomeFM0znQc7tfSRj9B4c.crl rsync://rpki.apnic.net/member_repository/A91820CC/936B43320BD911F08C607F87C4F9AE02/t0ZCTjTomeFM0znQc7tfSRj9B4c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t0ZCTjTomeFM0znQc7tfSRj9B4c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 07:05:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 119 (0x77) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91820CC, serialNumber=B746424E34E899E14CD339D073BB5F4918FD0787 Validity Not Before: Nov 5 07:05:55 2025 GMT Not After : Nov 12 07:05:55 2025 GMT Subject: CN=690af754-64be Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:17:cf:a3:7f:4b:a7:4d:4c:b0:b2:f4:65:83: 7c:62:05:96:ba:00:78:aa:93:a4:06:07:d0:7d:80: 49:ca:d7:ad:db:6b:69:2f:64:e7:79:23:1a:1a:87: 27:e4:c3:64:73:c3:26:74:5f:b9:ae:b2:b7:92:f5: 81:0a:eb:45:bc:30:8c:b1:78:41:21:5b:11:3d:2d: cd:fd:a5:51:8c:4a:ba:e8:fd:01:5d:34:9e:50:e1: 2c:3b:ab:fc:83:35:4e:3c:30:c7:2d:43:ad:fe:eb: 10:06:22:11:f7:ed:fb:13:cf:7a:c0:97:48:cb:f5: 0a:ee:28:d6:b0:24:3c:c1:85:9b:ad:92:0a:fa:72: 3d:f5:28:96:96:39:0e:55:fc:6c:a2:0d:96:80:44: 65:0c:e3:fe:e1:54:a5:38:a4:e8:fd:4c:93:ae:9f: d6:83:f9:93:21:4c:24:90:b9:48:7f:d9:1c:ec:7d: 82:d1:ca:4b:f5:c8:10:3b:dd:1b:70:fa:91:b6:a2: d7:e5:87:60:62:db:ea:33:5a:5f:b8:cc:04:1e:e9: ea:21:26:ff:9f:f6:36:43:0f:08:ba:a9:b1:74:0d: 31:b8:ec:ea:8f:12:57:cb:59:89:7c:ef:e2:54:51: 21:b5:c2:6c:91:f6:5e:5c:ba:af:de:90:03:b4:46: 61:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:88:B5:FC:D0:32:9E:C4:29:2E:CD:07:9D:E0:C3:93:D1:3F:18:74 X509v3 Authority Key Identifier: keyid:B7:46:42:4E:34:E8:99:E1:4C:D3:39:D0:73:BB:5F:49:18:FD:07:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91820CC/936B43320BD911F08C607F87C4F9AE02/t0ZCTjTomeFM0znQc7tfSRj9B4c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t0ZCTjTomeFM0znQc7tfSRj9B4c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91820CC/936B43320BD911F08C607F87C4F9AE02/t0ZCTjTomeFM0znQc7tfSRj9B4c.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 34:64:11:ff:7b:a9:e2:21:c4:eb:c9:41:7b:e4:e0:6f:bb:75: c5:66:64:32:79:69:4d:6e:a5:f3:56:db:d7:e7:04:7d:39:f1: 62:2e:90:07:45:f4:c3:c6:f1:e9:53:e8:b4:96:03:7f:f8:81: 40:bf:6a:68:03:be:4b:76:4f:f5:0d:60:25:93:65:df:ce:57: f9:cf:47:3d:8c:33:0b:21:0f:ae:d4:32:e7:d4:65:dc:62:57: 26:e8:b1:96:f1:5d:6b:14:f1:b8:d2:0b:07:93:60:e7:c3:89: c3:22:a5:52:61:de:ac:98:6d:71:6a:86:94:58:4b:71:40:76: 75:8b:65:3f:27:d5:58:79:4a:4c:1a:b8:41:7b:76:b8:b9:8c: 49:cd:fe:ef:bd:84:22:b3:2c:92:46:d1:ab:42:ac:f0:c7:84: e3:48:11:6f:ab:58:ae:76:45:e1:d8:0e:8f:6e:9b:74:5e:a1: 03:e1:30:97:77:2e:80:a7:8d:56:9f:41:ec:aa:01:db:f2:02: ae:9f:64:e2:21:56:ce:37:35:20:6e:39:bc:6d:e4:82:1d:51: 2b:80:8b:7b:30:79:56:3b:a5:48:0f:c1:6e:f7:c3:05:9c:ed: bb:b7:4f:db:ba:fb:47:ea:ff:2a:43:95:c6:f2:a3:c8:ef:a5: c3:d2:cd:c8 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBdzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 MjBDQzExMC8GA1UEBRMoQjc0NjQyNEUzNEU4OTlFMTRDRDMzOUQwNzNCQjVGNDkx OEZEMDc4NzAeFw0yNTExMDUwNzA1NTVaFw0yNTExMTIwNzA1NTVaMBgxFjAUBgNV BAMTDTY5MGFmNzU0LTY0YmUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC3F8+jf0unTUywsvRlg3xiBZa6AHiqk6QGB9B9gEnK163ba2kvZOd5Ixoahyfk w2RzwyZ0X7musreS9YEK60W8MIyxeEEhWxE9Lc39pVGMSrro/QFdNJ5Q4Sw7q/yD NU48MMctQ63+6xAGIhH37fsTz3rAl0jL9QruKNawJDzBhZutkgr6cj31KJaWOQ5V /GyiDZaARGUM4/7hVKU4pOj9TJOun9aD+ZMhTCSQuUh/2RzsfYLRykv1yBA73Rtw +pG2otflh2Bi2+ozWl+4zAQe6eohJv+f9jZDDwi6qbF0DTG47OqPElfLWYl87+JU USG1wmyR9l5cuq/ekAO0RmFZAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU3oi1/NAy nsQpLs0HneDDk9E/GHQwHwYDVR0jBBgwFoAUt0ZCTjTomeFM0znQc7tfSRj9B4cw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTgyMENDLzkzNkI0MzMyMEJE OTExRjA4QzYwN0Y4N0M0RjlBRTAyL3QwWkNUalRvbWVGTTB6blFjN3RmU1JqOUI0 Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvdDBaQ1RqVG9tZUZNMHpuUWM3dGZTUmo5QjRjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTgy MENDLzkzNkI0MzMyMEJEOTExRjA4QzYwN0Y4N0M0RjlBRTAyL3QwWkNUalRvbWVG TTB6blFjN3RmU1JqOUI0Yy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADRkEf97qeIhxOvJQXvk4G+7dcVmZDJ5aU1upfNW29fnBH058WIukAdF 9MPG8elT6LSWA3/4gUC/amgDvkt2T/UNYCWTZd/OV/nPRz2MMwshD67UMufUZdxi VybosZbxXWsU8bjSCweTYOfDicMipVJh3qyYbXFqhpRYS3FAdnWLZT8n1Vh5Skwa uEF7dri5jEnN/u+9hCKzLJJG0atCrPDHhONIEW+rWK52ReHYDo9um3ReoQPhMJd3 LoCnjVafQeyqAdvyAq6fZOIhVs43NSBuObxt5IIdUSuAi3sweVY7pUgPwW73wwWc 7bu3T9u6+0fq/ypDlcbyo8jvpcPSzcg= -----END CERTIFICATE-----Generated at Wed Nov 5 13:06:46 2025 by rpki-client