$ rpki-client -vvf rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/TK4677Gsir3bmbzO5PpakW0VezQ.mft File: TK4677Gsir3bmbzO5PpakW0VezQ.mft (raw, json) Hash identifier: yBZy1SiDdu1mdAvf9WlXa+via3c0p7K44RYUKP/qdLg= Subject key identifier: 59:9F:D7:C8:DB:70:89:86:92:76:F9:71:BB:4C:A8:3F:A6:E9:E2:2E Authority key identifier: 4C:AE:3A:EF:B1:AC:8A:BD:DB:99:BC:CE:E4:FA:5A:91:6D:15:7B:34 Certificate issuer: /CN=A91B5D7E/serialNumber=4CAE3AEFB1AC8ABDDB99BCCEE4FA5A916D157B34 Certificate serial: 3673 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TK4677Gsir3bmbzO5PpakW0VezQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/TK4677Gsir3bmbzO5PpakW0VezQ.mft Manifest number: 3596 Signing time: Sun 02 Nov 2025 14:28:34 +0000 Manifest this update: Sun 02 Nov 2025 14:28:33 +0000 Manifest next update: Sun 09 Nov 2025 14:28:33 +0000 Files and hashes: 1: TK4677Gsir3bmbzO5PpakW0VezQ.crl (hash: CTV7/LVDNKkAv6FyBTpeByoq8SRQ4/DtwYXIWESe9kw=) 2: D166652A072211EF9AC24D5BC4F9AE02.roa (hash: RL1lTbOt6Av5nEYA4DHBlIKK0hqxvZRiBkpLy29xghs=) 3: 8FD552C071F111F0AE49323FC4F9AE02.roa (hash: k0XECPDgxEsPxo1hnPOQ8t+HVImApkPuGWwQ5OUwJvs=) 4: 945922AECEBA11EDBBFD9E28C4F9AE02.roa (hash: 2rH+VWOcuPOah5bNHP9sMT7gm/W2BD5Lz0whslurntk=) 5: 24D7D74C978011EE87BB7D53C4F9AE02.roa (hash: CuyEAz/Z+ba3st2KGZYRh65vVcO9Be9AbPEfcjuGd9k=) 6: 31D56A8E06C711EF9A0E1D0AC4F9AE02.roa (hash: Yqwo5M588Yfv+JXGuvZtKg0Gtdf+iGVakUUN+3KDHdo=) 7: CE997E2EEA9B11EFA6A3D730C4F9AE02.roa (hash: uN0e+cUzXR0q+zRv9FKfvDWSlrjYXQb/CNzmut03rlU=) 8: D630A6B206D511EFB6CFDF2DC4F9AE02.roa (hash: oGdV623K9DaOonzZkenCae7aE6BqwAo6RdH7Y25n0b4=) 9: 4DC27210558111EF880A8679C4F9AE02.roa (hash: m1XRr2iAq+1TVgkspEslzx6eWsdA8L2B6700lAxn/d4=) 10: 4DFF14DE71F211F08D45AC42C4F9AE02.roa (hash: gBF3Jk34am1InKRIBH9CrloJz67l7rFKCD8FkbkPjyM=) 11: E83E047071F111F0BBD1B63FC4F9AE02.roa (hash: vqgqViMpJQbvpRF0eRLHvKsvOmM8OQ5c7Ho2iOiRHUM=) 12: 4B2AFD54ABA611EEA4B59A6AC4F9AE02.roa (hash: 92OU291hR0YIYqWJJIcvZXszn84NKrAjVspQkxjVbEI=) 13: 77D96D4A4F3411EFBA0A2659C4F9AE02.roa (hash: ol23eWYMbqFxa7AzTOzpz7Em2i4wKmL7cxMptLBFr00=) 14: 8FF00754732F11EE90078C13C4F9AE02.roa (hash: FvhGoDcJkl/uVyMeuA2e84lQ0fEQXKW9fiAoOj29wy4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/TK4677Gsir3bmbzO5PpakW0VezQ.crl rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/TK4677Gsir3bmbzO5PpakW0VezQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TK4677Gsir3bmbzO5PpakW0VezQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 14:28:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13939 (0x3673) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B5D7E, serialNumber=4CAE3AEFB1AC8ABDDB99BCCEE4FA5A916D157B34 Validity Not Before: Nov 2 14:28:33 2025 GMT Not After : Nov 9 14:28:33 2025 GMT Subject: CN=69076a92-dbd4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:6e:5a:62:21:47:91:55:51:cd:5d:85:df:aa: f1:f2:8d:b4:90:1c:88:e6:c6:01:2d:b8:07:b0:bf: 06:1f:dc:56:ff:37:73:ce:d7:b5:8c:5e:46:cf:dd: 38:5e:31:47:f2:93:09:69:6b:45:45:98:7e:ec:e7: 60:12:41:71:86:67:58:1e:c1:ff:29:53:2b:6a:e9: c1:63:51:0d:62:6e:49:50:d0:55:fa:b9:e5:d2:98: 0e:d0:e6:08:eb:91:79:e8:ae:e6:8e:e1:da:f8:59: 24:32:1d:f0:d1:bd:e6:f1:f3:f8:bf:ee:1c:1c:c5: 30:be:15:0d:39:67:05:e8:98:6d:6c:53:71:93:1a: 25:09:89:2e:15:b1:2e:bc:86:20:27:f3:ae:46:1f: 12:3f:35:bb:b6:e5:b5:9f:0a:42:8d:ab:91:d5:7f: 6c:d5:dc:f6:89:f8:97:17:3f:95:a3:8d:80:41:7f: 29:c1:c8:c9:6f:51:8e:68:0b:f3:75:4d:2c:35:6c: 7e:f6:7e:dc:56:ad:54:9e:97:6f:63:43:ae:9c:6b: a3:f9:62:66:76:8a:6f:a2:24:da:1a:f5:61:cc:3d: 19:93:09:ab:1e:f1:5a:57:87:6b:f3:6d:d2:28:22: 5d:67:9d:0d:97:fc:ef:7e:07:6b:8b:fd:df:48:ae: 35:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:9F:D7:C8:DB:70:89:86:92:76:F9:71:BB:4C:A8:3F:A6:E9:E2:2E X509v3 Authority Key Identifier: keyid:4C:AE:3A:EF:B1:AC:8A:BD:DB:99:BC:CE:E4:FA:5A:91:6D:15:7B:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/TK4677Gsir3bmbzO5PpakW0VezQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TK4677Gsir3bmbzO5PpakW0VezQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/TK4677Gsir3bmbzO5PpakW0VezQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 65:d5:1a:46:cc:9c:99:f4:72:22:c7:35:ad:a5:1f:24:df:78: 61:d5:36:6a:b5:c0:c0:5d:39:08:5f:bd:55:d8:65:3c:b6:7b: 17:29:07:53:61:42:db:d0:d0:9f:35:8f:b3:ce:72:49:71:b0: 44:a9:19:40:95:31:c4:a0:4f:26:69:b7:d6:1c:8b:c8:72:1c: 60:ab:e4:9a:29:6f:fa:b0:74:01:0f:13:42:52:cf:1a:aa:3b: ec:ae:c7:bd:b2:60:b4:82:f0:81:52:9d:cb:98:a8:c3:19:21: e6:af:56:5d:48:64:00:da:58:e0:cf:d8:78:b5:f3:47:6d:c7: d8:cc:59:9d:a0:2f:ec:c7:c1:f5:fe:ab:17:6e:73:b4:77:25: 24:11:a9:28:e2:9e:ee:97:a5:f9:2e:b3:6b:b4:fe:23:af:42: 1d:f1:a1:4d:46:86:5a:af:36:8c:e0:ee:3e:2f:ca:7d:ca:69: 18:8b:ba:cf:43:48:da:7f:8d:97:aa:f2:fd:99:fa:d1:f7:44: 62:cb:a6:82:01:e5:74:7a:89:e0:55:02:77:38:25:8b:0e:ae: 16:42:ed:11:6e:74:19:f3:06:55:42:8c:f7:45:dc:c1:51:40: a9:61:08:2b:09:3e:66:99:69:b9:65:96:0e:29:84:45:46:a3: 78:eb:03:66 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNnMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjVEN0UxMTAvBgNVBAUTKDRDQUUzQUVGQjFBQzhBQkREQjk5QkNDRUU0RkE1QTkx NkQxNTdCMzQwHhcNMjUxMTAyMTQyODMzWhcNMjUxMTA5MTQyODMzWjAYMRYwFAYD VQQDEw02OTA3NmE5Mi1kYmQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq25aYiFHkVVRzV2F36rx8o20kByI5sYBLbgHsL8GH9xW/zdzzte1jF5Gz904 XjFH8pMJaWtFRZh+7OdgEkFxhmdYHsH/KVMraunBY1ENYm5JUNBV+rnl0pgO0OYI 65F56K7mjuHa+FkkMh3w0b3m8fP4v+4cHMUwvhUNOWcF6JhtbFNxkxolCYkuFbEu vIYgJ/OuRh8SPzW7tuW1nwpCjauR1X9s1dz2ifiXFz+Vo42AQX8pwcjJb1GOaAvz dU0sNWx+9n7cVq1UnpdvY0OunGuj+WJmdopvoiTaGvVhzD0ZkwmrHvFaV4dr823S KCJdZ50Nl/zvfgdri/3fSK41ewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFmf18jb cImGknb5cbtMqD+m6eIuMB8GA1UdIwQYMBaAFEyuOu+xrIq925m8zuT6WpFtFXs0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNUQ3RS9FQ0E2ODIzNDFE ODcxMUUyOTgzMjJERTAwOEIwMkNEMi9USzQ2NzdHc2lyM2JtYnpPNVBwYWtXMFZl elEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RLNDY3N0dzaXIzYm1iek81UHBha1cwVmV6US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NUQ3RS9FQ0E2ODIzNDFEODcxMUUyOTgzMjJERTAwOEIwMkNEMi9USzQ2NzdHc2ly M2JtYnpPNVBwYWtXMFZlelEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBl1RpGzJyZ9HIixzWtpR8k33hh1TZqtcDAXTkIX71V2GU8tnsXKQdT YULb0NCfNY+zznJJcbBEqRlAlTHEoE8mabfWHIvIchxgq+SaKW/6sHQBDxNCUs8a qjvsrse9smC0gvCBUp3LmKjDGSHmr1ZdSGQA2ljgz9h4tfNHbcfYzFmdoC/sx8H1 /qsXbnO0dyUkEako4p7ul6X5LrNrtP4jr0Id8aFNRoZarzaM4O4+L8p9ymkYi7rP Q0jaf42XqvL9mfrR90Riy6aCAeV0eongVQJ3OCWLDq4WQu0RbnQZ8wZVQoz3RdzB UUCpYQgrCT5mmWm5ZZYOKYRFRqN46wNm -----END CERTIFICATE-----Generated at Tue Nov 4 08:14:08 2025 by rpki-client