$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5533/061151F21A4E11EA9E09CC82C4F9AE02/TIHwGTocVyRFf1LgThHyUnPm_uA.mft File: TIHwGTocVyRFf1LgThHyUnPm_uA.mft (raw, json) Hash identifier: YVBfZ+02q8rNZCzOjEVHvg34tcWTZpTu/ri6qtJctVE= Subject key identifier: FE:DF:2F:C8:3E:20:F6:85:17:EF:42:F2:F9:09:32:6F:2A:83:78:A9 Authority key identifier: 4C:81:F0:19:3A:1C:57:24:45:7F:52:E0:4E:11:F2:52:73:E6:FE:E0 Certificate issuer: /CN=A91A5533/serialNumber=4C81F0193A1C5724457F52E04E11F25273E6FEE0 Certificate serial: 0C2B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TIHwGTocVyRFf1LgThHyUnPm_uA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5533/061151F21A4E11EA9E09CC82C4F9AE02/TIHwGTocVyRFf1LgThHyUnPm_uA.mft Manifest number: 0C24 Signing time: Tue 04 Nov 2025 18:48:27 +0000 Manifest this update: Tue 04 Nov 2025 18:48:27 +0000 Manifest next update: Tue 11 Nov 2025 18:48:27 +0000 Files and hashes: 1: TIHwGTocVyRFf1LgThHyUnPm_uA.crl (hash: YqCKQll7MH4r8w/Yy5zOwB9bX9ihepefeUsjZS0SSWQ=) 2: 637A6FCC1AEE11EAAEFD5871C4F9AE02.roa (hash: fuEIOJZ2g7nFL90Iih/ZQree35PAM4VcWuWuu09soDc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5533/061151F21A4E11EA9E09CC82C4F9AE02/TIHwGTocVyRFf1LgThHyUnPm_uA.crl rsync://rpki.apnic.net/member_repository/A91A5533/061151F21A4E11EA9E09CC82C4F9AE02/TIHwGTocVyRFf1LgThHyUnPm_uA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TIHwGTocVyRFf1LgThHyUnPm_uA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 18:48:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3115 (0xc2b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5533, serialNumber=4C81F0193A1C5724457F52E04E11F25273E6FEE0 Validity Not Before: Nov 4 18:48:27 2025 GMT Not After : Nov 11 18:48:27 2025 GMT Subject: CN=690a4a7b-b3e5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:80:c3:e1:c6:c0:9b:ca:f8:15:19:6f:13:ed: 9c:96:ed:a0:49:5a:31:57:43:fa:24:27:be:28:eb: 6c:ed:8e:03:71:bf:65:4c:5e:aa:91:fc:12:e6:0c: 0b:3b:e4:f2:9b:57:0c:7f:40:09:b2:e8:e0:65:dc: 04:56:2a:f4:a9:be:12:9a:93:db:3e:a2:47:e9:c8: 21:14:76:43:df:19:59:ac:33:8e:9e:75:d3:fe:4b: f0:0c:44:bf:a4:3c:bd:97:49:c7:44:ab:1e:68:80: 31:ec:6d:d8:dd:63:b5:7b:2f:27:f3:8f:f4:93:4a: 58:b6:02:ff:64:e4:69:76:2c:f2:48:8e:b7:e8:9f: e2:32:b3:18:71:ad:e8:e8:80:2b:5e:7d:5d:6c:c1: b2:cf:54:08:87:95:c2:c2:ed:b2:c8:5e:e4:a4:56: f9:62:cb:0b:97:54:94:33:f6:4a:c6:35:49:30:32: ca:af:83:a6:e4:ba:b0:e8:52:41:c2:0f:15:9c:3e: 4c:f8:8f:ab:eb:57:f9:0d:28:dd:9a:bc:18:a3:43: f1:3c:0b:30:04:7b:c7:c0:da:ea:ba:31:07:40:5f: 49:07:2c:16:4d:10:cb:f2:dd:b4:9f:23:ae:da:7e: 28:bf:9b:33:96:88:3a:37:93:6a:2c:10:2b:57:f4: c9:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:DF:2F:C8:3E:20:F6:85:17:EF:42:F2:F9:09:32:6F:2A:83:78:A9 X509v3 Authority Key Identifier: keyid:4C:81:F0:19:3A:1C:57:24:45:7F:52:E0:4E:11:F2:52:73:E6:FE:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5533/061151F21A4E11EA9E09CC82C4F9AE02/TIHwGTocVyRFf1LgThHyUnPm_uA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TIHwGTocVyRFf1LgThHyUnPm_uA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5533/061151F21A4E11EA9E09CC82C4F9AE02/TIHwGTocVyRFf1LgThHyUnPm_uA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 86:1f:c6:a9:ac:a5:ca:ca:30:68:e4:d6:73:87:3c:3f:ef:9d: 5b:bb:30:0d:d5:56:d6:8e:d4:2b:a5:82:b6:78:05:3b:0a:a0: b7:71:c8:92:cf:65:de:a0:fc:af:71:13:1c:46:01:d1:e3:c1: 13:8d:f5:d7:c1:ed:d2:d5:e4:21:2a:b9:6d:ce:69:c8:a0:70: ae:f4:ee:34:2c:17:e9:e4:0b:da:b2:80:13:bc:5f:2c:84:4c: d0:4d:42:c3:4c:99:9c:21:83:47:e1:54:70:40:9d:70:c9:a1: bb:3f:52:79:78:59:d0:e2:84:7e:c2:8e:04:00:6a:f0:82:f6: df:e5:42:7c:3f:8d:2f:30:33:6a:85:16:70:c3:bb:56:6b:f5: ed:86:1c:26:18:03:2e:61:78:72:0c:dd:84:6d:f8:df:03:06: 2c:f2:1e:47:be:5f:f4:eb:6a:28:9c:0e:80:34:3d:b5:70:a4: 5a:d9:e9:82:c8:3b:26:62:da:72:ef:e9:31:2f:80:2f:87:11: 46:d6:ba:09:19:ae:db:81:d2:14:80:ef:8b:00:fc:3f:a9:b0: e7:73:0e:80:e7:d5:15:9b:b9:dc:ec:79:ce:e4:dc:05:4d:20: b6:21:40:01:97:3d:d2:7b:5d:cb:9e:06:fb:9f:53:18:3d:3e: 5f:51:ed:f6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDCswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU1MzMxMTAvBgNVBAUTKDRDODFGMDE5M0ExQzU3MjQ0NTdGNTJFMDRFMTFGMjUy NzNFNkZFRTAwHhcNMjUxMTA0MTg0ODI3WhcNMjUxMTExMTg0ODI3WjAYMRYwFAYD VQQDEw02OTBhNGE3Yi1iM2U1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwoDD4cbAm8r4FRlvE+2clu2gSVoxV0P6JCe+KOts7Y4Dcb9lTF6qkfwS5gwL O+Tym1cMf0AJsujgZdwEVir0qb4SmpPbPqJH6cghFHZD3xlZrDOOnnXT/kvwDES/ pDy9l0nHRKseaIAx7G3Y3WO1ey8n84/0k0pYtgL/ZORpdizySI636J/iMrMYca3o 6IArXn1dbMGyz1QIh5XCwu2yyF7kpFb5YssLl1SUM/ZKxjVJMDLKr4Om5Lqw6FJB wg8VnD5M+I+r61f5DSjdmrwYo0PxPAswBHvHwNrqujEHQF9JBywWTRDL8t20nyOu 2n4ov5szlog6N5NqLBArV/TJbQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP7fL8g+ IPaFF+9C8vkJMm8qg3ipMB8GA1UdIwQYMBaAFEyB8Bk6HFckRX9S4E4R8lJz5v7g MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTUzMy8wNjExNTFGMjFB NEUxMUVBOUUwOUNDODJDNEY5QUUwMi9USUh3R1RvY1Z5UkZmMUxnVGhIeVVuUG1f dUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RJSHdHVG9jVnlSRmYxTGdUaEh5VW5QbV91QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NTUzMy8wNjExNTFGMjFBNEUxMUVBOUUwOUNDODJDNEY5QUUwMi9USUh3R1RvY1Z5 UkZmMUxnVGhIeVVuUG1fdUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCGH8aprKXKyjBo5NZzhzw/751buzAN1VbWjtQrpYK2eAU7CqC3cciS z2XeoPyvcRMcRgHR48ETjfXXwe3S1eQhKrltzmnIoHCu9O40LBfp5AvasoATvF8s hEzQTULDTJmcIYNH4VRwQJ1wyaG7P1J5eFnQ4oR+wo4EAGrwgvbf5UJ8P40vMDNq hRZww7tWa/XthhwmGAMuYXhyDN2EbfjfAwYs8h5Hvl/062oonA6AND21cKRa2emC yDsmYtpy7+kxL4AvhxFG1roJGa7bgdIUgO+LAPw/qbDncw6A59UVm7nc7HnO5NwF TSC2IUABlz3Se13Lngb7n1MYPT5fUe32 -----END CERTIFICATE-----Generated at Thu Nov 6 02:38:03 2025 by rpki-client