$ rpki-client -vvf rpki.apnic.net/member_repository/A91B8070/AE364696138411F0BC5F4547C4F9AE02/TvuTtJvxulYAjfxgYItSFq7JmsY.mft File: TvuTtJvxulYAjfxgYItSFq7JmsY.mft (raw, json) Hash identifier: 6VJAu7g3Hmpwm3+cHgGuv+Y61MldXs5Chcb7U7Y0utI= Subject key identifier: F5:88:F8:95:7F:3A:B8:78:19:95:4A:71:FF:29:9E:B7:BE:1F:EE:A4 Authority key identifier: 4E:FB:93:B4:9B:F1:BA:56:00:8D:FC:60:60:8B:52:16:AE:C9:9A:C6 Certificate issuer: /CN=A91B8070/serialNumber=4EFB93B49BF1BA56008DFC60608B5216AEC99AC6 Certificate serial: 77 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TvuTtJvxulYAjfxgYItSFq7JmsY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B8070/AE364696138411F0BC5F4547C4F9AE02/TvuTtJvxulYAjfxgYItSFq7JmsY.mft Manifest number: 73 Signing time: Wed 05 Nov 2025 07:08:24 +0000 Manifest this update: Wed 05 Nov 2025 07:08:23 +0000 Manifest next update: Wed 12 Nov 2025 07:08:23 +0000 Files and hashes: 1: TvuTtJvxulYAjfxgYItSFq7JmsY.crl (hash: FXI6G9KH16VJFQXPYQoydbJGPYtANhryBEST4R5NeCA=) 2: AB942EE0607C11F0A8F5A261C4F9AE02.roa (hash: Ib7XrV2UdhfMc2uSkqN8sJc2pYT7HHMtYcCkEQkD9OY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B8070/AE364696138411F0BC5F4547C4F9AE02/TvuTtJvxulYAjfxgYItSFq7JmsY.crl rsync://rpki.apnic.net/member_repository/A91B8070/AE364696138411F0BC5F4547C4F9AE02/TvuTtJvxulYAjfxgYItSFq7JmsY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TvuTtJvxulYAjfxgYItSFq7JmsY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 07:08:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 119 (0x77) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B8070, serialNumber=4EFB93B49BF1BA56008DFC60608B5216AEC99AC6 Validity Not Before: Nov 5 07:08:23 2025 GMT Not After : Nov 12 07:08:23 2025 GMT Subject: CN=690af7e8-97e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:d9:ec:c6:58:b9:0f:72:06:90:49:49:6b:0d: 8d:ac:3d:24:5c:0b:03:01:ab:c2:1e:1c:a7:83:58: d7:7f:b5:2e:b8:50:1b:8a:c2:08:c9:d5:2e:c4:38: 0a:9c:25:c7:6e:83:1e:eb:64:0c:c7:b7:8c:e2:4f: ae:9c:2c:b5:a3:33:56:24:89:2d:71:6a:07:be:ed: 1b:a9:ef:64:68:12:9a:41:cd:84:ad:22:53:f4:96: aa:76:8d:e8:c3:78:d2:4b:fa:24:cd:c3:4b:f2:d6: 6b:a7:77:58:21:ac:65:bd:ad:9d:f2:4a:8d:03:98: c9:ca:95:6b:11:d6:a9:56:9b:ed:55:c6:f4:d3:aa: 05:12:a1:b7:56:64:e1:84:86:d5:3e:5b:62:ee:7f: 16:47:b8:b1:43:0f:41:58:c7:28:d7:84:37:81:12: ff:80:87:a0:8c:08:8c:32:f0:89:85:75:e0:f5:06: a6:6b:cf:d3:23:74:71:05:ac:1b:0e:5c:eb:34:46: 3d:e0:16:37:3c:ab:57:9e:59:36:8c:1d:41:50:4e: 07:08:6c:b6:09:de:fa:98:55:62:f9:80:b4:83:30: cb:ad:fb:dd:d4:c1:f3:36:7c:cf:01:07:38:fd:91: bd:b9:e3:45:6f:6b:4b:5a:42:44:64:70:e7:3e:9c: 0e:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:88:F8:95:7F:3A:B8:78:19:95:4A:71:FF:29:9E:B7:BE:1F:EE:A4 X509v3 Authority Key Identifier: keyid:4E:FB:93:B4:9B:F1:BA:56:00:8D:FC:60:60:8B:52:16:AE:C9:9A:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B8070/AE364696138411F0BC5F4547C4F9AE02/TvuTtJvxulYAjfxgYItSFq7JmsY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TvuTtJvxulYAjfxgYItSFq7JmsY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B8070/AE364696138411F0BC5F4547C4F9AE02/TvuTtJvxulYAjfxgYItSFq7JmsY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c3:2a:df:cc:c0:9f:0e:ad:f8:65:4e:f0:7e:b9:1d:ad:b4:39: 84:f6:78:80:1e:27:9d:a1:0a:2f:3a:56:99:55:45:a6:c4:46: a0:fa:61:67:d5:04:8c:c2:e1:fa:85:2c:8d:e2:13:e3:51:44: 54:52:37:fe:03:76:7a:b2:6e:37:31:15:17:60:6c:8e:70:62: 00:bc:a9:65:b6:1e:c8:f0:77:75:a4:21:03:ff:f6:f1:46:b6: e0:fb:dd:e5:ca:b8:89:5c:8b:00:bc:ad:c5:67:61:6b:18:97: 2f:7b:d4:a1:13:dd:c7:59:8e:2f:10:98:c2:5f:e6:00:92:36: 77:07:aa:d5:37:26:e3:0a:14:7b:fb:fb:b1:f7:cb:50:12:10: 22:e9:7f:ca:82:ea:14:2f:a7:83:05:5d:6b:0b:42:7e:c0:9a: 6c:6f:c4:ef:f4:2c:cf:60:f6:51:ef:c7:d1:5e:d4:9b:bd:a7: 7c:11:87:be:17:d2:cb:3a:43:03:96:3b:f2:b8:35:c0:47:0b: 0a:13:69:03:ba:31:fe:82:f2:8e:91:2f:ad:9f:ab:b1:18:1c: 9d:3c:59:5a:11:2d:c8:4c:7e:26:1f:7c:8d:5f:47:54:5a:74: 3e:94:6f:0b:31:10:9a:a3:69:1a:db:a0:7e:64:de:f6:ab:f3: 39:d8:a8:b6 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBdzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC ODA3MDExMC8GA1UEBRMoNEVGQjkzQjQ5QkYxQkE1NjAwOERGQzYwNjA4QjUyMTZB RUM5OUFDNjAeFw0yNTExMDUwNzA4MjNaFw0yNTExMTIwNzA4MjNaMBgxFjAUBgNV BAMTDTY5MGFmN2U4LTk3ZTIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCv2ezGWLkPcgaQSUlrDY2sPSRcCwMBq8IeHKeDWNd/tS64UBuKwgjJ1S7EOAqc Jcdugx7rZAzHt4ziT66cLLWjM1YkiS1xage+7Rup72RoEppBzYStIlP0lqp2jejD eNJL+iTNw0vy1mund1ghrGW9rZ3ySo0DmMnKlWsR1qlWm+1VxvTTqgUSobdWZOGE htU+W2LufxZHuLFDD0FYxyjXhDeBEv+Ah6CMCIwy8ImFdeD1BqZrz9MjdHEFrBsO XOs0Rj3gFjc8q1eeWTaMHUFQTgcIbLYJ3vqYVWL5gLSDMMut+93UwfM2fM8BBzj9 kb2540Vva0taQkRkcOc+nA6PAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU9Yj4lX86 uHgZlUpx/ymet74f7qQwHwYDVR0jBBgwFoAUTvuTtJvxulYAjfxgYItSFq7JmsYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI4MDcwL0FFMzY0Njk2MTM4 NDExRjBCQzVGNDU0N0M0RjlBRTAyL1R2dVR0SnZ4dWxZQWpmeGdZSXRTRnE3Sm1z WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvVHZ1VHRKdnh1bFlBamZ4Z1lJdFNGcTdKbXNZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI4 MDcwL0FFMzY0Njk2MTM4NDExRjBCQzVGNDU0N0M0RjlBRTAyL1R2dVR0SnZ4dWxZ QWpmeGdZSXRTRnE3Sm1zWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAMMq38zAnw6t+GVO8H65Ha20OYT2eIAeJ52hCi86VplVRabERqD6YWfV BIzC4fqFLI3iE+NRRFRSN/4DdnqybjcxFRdgbI5wYgC8qWW2Hsjwd3WkIQP/9vFG tuD73eXKuIlciwC8rcVnYWsYly971KET3cdZji8QmMJf5gCSNncHqtU3JuMKFHv7 +7H3y1ASECLpf8qC6hQvp4MFXWsLQn7AmmxvxO/0LM9g9lHvx9Fe1Ju9p3wRh74X 0ss6QwOWO/K4NcBHCwoTaQO6Mf6C8o6RL62fq7EYHJ08WVoRLchMfiYffI1fR1Ra dD6UbwsxEJqjaRrboH5k3var8znYqLY= -----END CERTIFICATE-----Generated at Wed Nov 5 21:40:13 2025 by rpki-client