$ rpki-client -vvf rpki.apnic.net/member_repository/A91847A4/F29EB20A07E011F0B6185162C4F9AE02/TN-Z5wf5AjOOFNUQJJqWJbyg_50.mft File: TN-Z5wf5AjOOFNUQJJqWJbyg_50.mft (raw, json) Hash identifier: 0YxwTatRmLRZrF2kpmgcAeGhJ06DEgugMckPAo+tfPI= Subject key identifier: 77:6D:0A:7C:F6:22:7D:94:FA:0E:C4:95:B3:07:7B:9D:8F:36:5B:35 Authority key identifier: 4C:DF:99:E7:07:F9:02:33:8E:14:D5:10:24:9A:96:25:BC:A0:FF:9D Certificate issuer: /CN=A91847A4/serialNumber=4CDF99E707F902338E14D510249A9625BCA0FF9D Certificate serial: 7C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TN-Z5wf5AjOOFNUQJJqWJbyg_50.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91847A4/F29EB20A07E011F0B6185162C4F9AE02/TN-Z5wf5AjOOFNUQJJqWJbyg_50.mft Manifest number: 79 Signing time: Wed 05 Nov 2025 07:03:14 +0000 Manifest this update: Wed 05 Nov 2025 07:03:13 +0000 Manifest next update: Wed 12 Nov 2025 07:03:13 +0000 Files and hashes: 1: TN-Z5wf5AjOOFNUQJJqWJbyg_50.crl (hash: YTztSpPn88YCmtDYRvHUYZ+fFV6QoE3JGMNZa5nhy30=) 2: 1201EAF6083911F0B43D9172C4F9AE02.roa (hash: J+SOazezAnnNxrhHdeWBnb2C7IQYkYVgwLiko+keJWM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91847A4/F29EB20A07E011F0B6185162C4F9AE02/TN-Z5wf5AjOOFNUQJJqWJbyg_50.crl rsync://rpki.apnic.net/member_repository/A91847A4/F29EB20A07E011F0B6185162C4F9AE02/TN-Z5wf5AjOOFNUQJJqWJbyg_50.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TN-Z5wf5AjOOFNUQJJqWJbyg_50.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 07:03:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 124 (0x7c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91847A4, serialNumber=4CDF99E707F902338E14D510249A9625BCA0FF9D Validity Not Before: Nov 5 07:03:13 2025 GMT Not After : Nov 12 07:03:13 2025 GMT Subject: CN=690af6b2-a4db Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:ff:21:03:95:36:df:f5:7a:1c:70:aa:91:2a: 55:f7:41:2d:10:86:38:0e:1c:34:42:ba:56:94:a6: 21:65:e6:e4:fa:7b:d3:ab:a1:92:83:e8:35:85:8f: a2:e0:05:d3:d9:2d:26:9f:56:29:22:63:b9:c4:e7: 17:17:ff:6d:f3:f6:05:2f:af:74:b5:19:0a:40:fa: 72:67:20:08:5b:57:d5:db:47:dc:90:38:01:3e:dc: a0:ad:de:e2:7e:84:55:f5:b8:cf:ce:3f:c0:87:fa: 70:ae:57:4f:26:e6:ed:36:72:67:c2:b1:b6:93:40: f3:9f:0e:9f:f5:13:5f:6a:27:94:49:da:e8:b3:7e: b5:c5:81:4a:99:68:4d:d7:66:0e:96:a6:1f:f7:54: d4:6a:b3:3d:20:51:bd:83:6d:e3:33:bf:df:99:30: c7:7f:a1:a6:96:9e:29:cd:8c:d2:06:12:7e:34:a5: 83:9c:26:99:0b:33:e7:9f:89:65:8d:25:84:7e:5b: 37:b8:64:b1:3f:19:26:c8:35:22:be:65:19:a2:cd: e4:69:b2:93:f9:29:9c:b0:03:32:89:46:b4:07:94: 12:a2:2b:f8:e8:7e:5c:53:b3:6c:c2:e8:be:2f:05: 69:0b:7b:5a:64:47:96:31:b9:f1:72:f8:8f:8d:eb: 0a:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:6D:0A:7C:F6:22:7D:94:FA:0E:C4:95:B3:07:7B:9D:8F:36:5B:35 X509v3 Authority Key Identifier: keyid:4C:DF:99:E7:07:F9:02:33:8E:14:D5:10:24:9A:96:25:BC:A0:FF:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91847A4/F29EB20A07E011F0B6185162C4F9AE02/TN-Z5wf5AjOOFNUQJJqWJbyg_50.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TN-Z5wf5AjOOFNUQJJqWJbyg_50.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91847A4/F29EB20A07E011F0B6185162C4F9AE02/TN-Z5wf5AjOOFNUQJJqWJbyg_50.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:4f:6a:18:d1:a9:32:09:62:47:51:de:e5:4e:bb:e9:d9:7c: 75:45:9b:99:38:e8:c3:73:cb:ab:76:8d:a3:20:1e:2c:5a:95: f5:c4:3d:95:3d:fe:73:85:5d:21:2f:a0:75:08:29:b3:b3:af: 05:52:e5:e7:d8:4a:18:9f:54:92:0a:39:f7:53:d3:ed:11:8c: a3:17:c5:f6:ca:fc:56:dd:09:a2:76:a7:9a:1a:4e:1b:90:bd: 0d:ec:75:06:73:a2:a7:17:28:c1:39:09:f1:42:fd:a8:f7:e2: 30:57:4c:13:48:50:7c:28:c6:bf:34:6b:15:26:67:7e:7c:83: 77:67:5d:a7:52:21:6d:12:25:5d:d6:91:6b:8c:dd:5e:02:68: 93:ac:6d:74:fa:04:00:be:85:f8:c0:58:c2:ad:9f:b9:33:3c: d9:fc:38:40:e6:24:f0:fa:8a:e5:ea:92:21:90:f8:58:e6:9f: fe:1d:29:d2:68:91:88:b9:cc:96:8f:41:99:e1:1d:a7:e4:43: 62:e9:8c:81:26:34:20:f4:60:fc:55:d1:cb:a8:5e:1c:c2:e7: a8:47:7b:1d:80:ae:68:d5:bd:6b:f0:98:89:a6:7d:7f:ca:ed: 98:b4:5b:da:be:c9:8f:b2:ba:0f:9e:c5:38:51:77:1f:bf:c0: a6:20:56:ad -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBfDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 NDdBNDExMC8GA1UEBRMoNENERjk5RTcwN0Y5MDIzMzhFMTRENTEwMjQ5QTk2MjVC Q0EwRkY5RDAeFw0yNTExMDUwNzAzMTNaFw0yNTExMTIwNzAzMTNaMBgxFjAUBgNV BAMTDTY5MGFmNmIyLWE0ZGIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCX/yEDlTbf9XoccKqRKlX3QS0QhjgOHDRCulaUpiFl5uT6e9OroZKD6DWFj6Lg BdPZLSafVikiY7nE5xcX/23z9gUvr3S1GQpA+nJnIAhbV9XbR9yQOAE+3KCt3uJ+ hFX1uM/OP8CH+nCuV08m5u02cmfCsbaTQPOfDp/1E19qJ5RJ2uizfrXFgUqZaE3X Zg6Wph/3VNRqsz0gUb2DbeMzv9+ZMMd/oaaWninNjNIGEn40pYOcJpkLM+efiWWN JYR+Wze4ZLE/GSbINSK+ZRmizeRpspP5KZywAzKJRrQHlBKiK/joflxTs2zC6L4v BWkLe1pkR5YxufFy+I+N6wqvAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUd20KfPYi fZT6DsSVswd7nY82WzUwHwYDVR0jBBgwFoAUTN+Z5wf5AjOOFNUQJJqWJbyg/50w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTg0N0E0L0YyOUVCMjBBMDdF MDExRjBCNjE4NTE2MkM0RjlBRTAyL1ROLVo1d2Y1QWpPT0ZOVVFKSnFXSmJ5Z181 MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvVE4tWjV3ZjVBak9PRk5VUUpKcVdKYnlnXzUwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTg0 N0E0L0YyOUVCMjBBMDdFMDExRjBCNjE4NTE2MkM0RjlBRTAyL1ROLVo1d2Y1QWpP T0ZOVVFKSnFXSmJ5Z181MC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABpPahjRqTIJYkdR3uVOu+nZfHVFm5k46MNzy6t2jaMgHixalfXEPZU9 /nOFXSEvoHUIKbOzrwVS5efYShifVJIKOfdT0+0RjKMXxfbK/FbdCaJ2p5oaThuQ vQ3sdQZzoqcXKME5CfFC/aj34jBXTBNIUHwoxr80axUmZ358g3dnXadSIW0SJV3W kWuM3V4CaJOsbXT6BAC+hfjAWMKtn7kzPNn8OEDmJPD6iuXqkiGQ+Fjmn/4dKdJo kYi5zJaPQZnhHafkQ2LpjIEmNCD0YPxV0cuoXhzC56hHex2ArmjVvWvwmImmfX/K 7Zi0W9q+yY+yug+exThRdx+/wKYgVq0= -----END CERTIFICATE-----Generated at Wed Nov 5 13:33:25 2025 by rpki-client