$ rpki-client -vvf rpki.apnic.net/member_repository/A91C0CD5/CD2B4B441D0B11EE87048A4CC4F9AE02/TH2sISA9rkFsH87q_FVlcgIiCKE.mft File: TH2sISA9rkFsH87q_FVlcgIiCKE.mft (raw, json) Hash identifier: p0hyPdNxAqbmWEVkc264Yc86CKn7KhcCXAC0hhLlbF0= Subject key identifier: D7:87:B0:CB:83:63:A9:B1:87:14:14:1D:5B:AF:01:2E:D4:60:F4:38 Authority key identifier: 4C:7D:AC:21:20:3D:AE:41:6C:1F:CE:EA:FC:55:65:72:02:22:08:A1 Certificate issuer: /CN=A91C0CD5/serialNumber=4C7DAC21203DAE416C1FCEEAFC556572022208A1 Certificate serial: 01CA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TH2sISA9rkFsH87q_FVlcgIiCKE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C0CD5/CD2B4B441D0B11EE87048A4CC4F9AE02/TH2sISA9rkFsH87q_FVlcgIiCKE.mft Manifest number: 01C1 Signing time: Wed 05 Nov 2025 03:13:32 +0000 Manifest this update: Wed 05 Nov 2025 03:13:32 +0000 Manifest next update: Wed 12 Nov 2025 03:13:32 +0000 Files and hashes: 1: TH2sISA9rkFsH87q_FVlcgIiCKE.crl (hash: eNdD82lTgcLCUarGcpkMvb3E1sk0EnGoVYDsDoZnPpo=) 2: 6EB972341D6011EEB28A4323C4F9AE02.roa (hash: V7+xw0Oh19sCCsRJ/3dn3BE03yFJdR1cttirX6vRQc4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C0CD5/CD2B4B441D0B11EE87048A4CC4F9AE02/TH2sISA9rkFsH87q_FVlcgIiCKE.crl rsync://rpki.apnic.net/member_repository/A91C0CD5/CD2B4B441D0B11EE87048A4CC4F9AE02/TH2sISA9rkFsH87q_FVlcgIiCKE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TH2sISA9rkFsH87q_FVlcgIiCKE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 03:13:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 458 (0x1ca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C0CD5, serialNumber=4C7DAC21203DAE416C1FCEEAFC556572022208A1 Validity Not Before: Nov 5 03:13:32 2025 GMT Not After : Nov 12 03:13:32 2025 GMT Subject: CN=690ac0dc-9849 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:53:76:08:5f:3a:31:70:f8:ae:9e:82:c6:a1: f0:0c:06:b5:9c:16:7f:66:e1:a6:ff:bf:cd:64:fb: b8:be:14:57:4e:49:ac:ad:fc:c9:69:0d:53:f6:a5: 71:19:48:91:a2:85:a4:8c:83:45:3b:3c:93:0e:56: ce:b8:b7:8d:76:7a:36:89:34:c3:72:ad:6c:1d:97: 69:6b:64:79:81:ef:c4:77:cc:d7:a9:1a:36:0d:7a: d1:fb:d1:7c:3a:43:c5:63:b7:d7:92:d8:90:2a:d2: b5:15:81:57:42:55:a0:b6:48:e1:58:5d:ad:79:41: c9:19:37:a2:03:a2:4d:86:08:94:92:9e:0c:de:f8: 0a:40:2f:49:b0:8d:81:f4:89:8b:6c:a7:b8:52:aa: b1:c0:c0:ba:1f:16:f4:4e:e5:15:e0:34:5e:52:08: 18:c5:46:94:61:0f:6c:b1:ee:e5:3e:27:5c:da:c1: 8d:89:fd:77:6c:f9:53:fd:c8:e0:f1:7f:6a:14:ea: 49:97:10:3f:04:9e:f5:a1:0a:12:6f:f3:70:d4:93: 65:de:b1:7a:bf:88:e6:1d:72:5c:bf:81:b0:82:3d: f6:c7:33:6d:f1:65:63:cb:53:25:3c:6e:68:9f:fb: 4c:b8:0b:e9:3b:b5:48:ba:9f:a4:28:b4:85:f7:28: a9:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:87:B0:CB:83:63:A9:B1:87:14:14:1D:5B:AF:01:2E:D4:60:F4:38 X509v3 Authority Key Identifier: keyid:4C:7D:AC:21:20:3D:AE:41:6C:1F:CE:EA:FC:55:65:72:02:22:08:A1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C0CD5/CD2B4B441D0B11EE87048A4CC4F9AE02/TH2sISA9rkFsH87q_FVlcgIiCKE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TH2sISA9rkFsH87q_FVlcgIiCKE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C0CD5/CD2B4B441D0B11EE87048A4CC4F9AE02/TH2sISA9rkFsH87q_FVlcgIiCKE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a8:28:d5:f9:eb:2b:0e:5d:5e:43:22:19:90:8b:6a:ac:b2:c3: 25:75:d6:7c:7f:0d:1d:f3:99:68:54:61:5e:f7:64:50:a8:f5: 66:24:89:f2:a2:db:80:03:e2:21:d1:a7:b0:b9:3a:37:bf:46: a4:fd:f8:4b:b9:fb:f3:06:8d:83:76:86:07:8c:2f:de:8b:c7: 05:a7:8e:dc:89:a7:c6:60:10:b4:ba:45:79:ec:7f:e9:34:ab: dd:30:a0:2d:9e:c6:7b:bc:55:8e:0c:10:28:08:1a:6f:50:78: 76:74:0d:b0:58:51:e5:3f:ef:9d:a1:9f:b4:71:b7:f9:68:a4: f7:3e:91:69:1a:b9:fa:1c:16:5e:c6:8c:ee:81:0f:a3:ca:bd: d7:5f:a6:ec:8e:da:76:c3:53:bc:61:aa:d8:08:5b:34:3f:3a: a5:9e:c4:09:10:b5:65:73:e4:26:c4:48:e8:5d:ed:62:42:0c: 40:b2:cc:18:3f:9c:fe:f2:3a:4a:0f:4a:cb:1c:b8:be:f0:a8: 78:1f:ba:e6:41:07:88:7f:e5:f0:e0:76:51:a5:9f:a4:95:67: 7f:8c:fa:11:e9:bf:f3:d5:ca:70:89:56:fc:2c:36:3d:50:18: 08:9a:b5:73:51:20:82:f8:a3:10:46:84:93:c9:13:5c:81:7f: db:12:79:e6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAcowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzBDRDUxMTAvBgNVBAUTKDRDN0RBQzIxMjAzREFFNDE2QzFGQ0VFQUZDNTU2NTcy MDIyMjA4QTEwHhcNMjUxMTA1MDMxMzMyWhcNMjUxMTEyMDMxMzMyWjAYMRYwFAYD VQQDEw02OTBhYzBkYy05ODQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2FN2CF86MXD4rp6CxqHwDAa1nBZ/ZuGm/7/NZPu4vhRXTkmsrfzJaQ1T9qVx GUiRooWkjINFOzyTDlbOuLeNdno2iTTDcq1sHZdpa2R5ge/Ed8zXqRo2DXrR+9F8 OkPFY7fXktiQKtK1FYFXQlWgtkjhWF2teUHJGTeiA6JNhgiUkp4M3vgKQC9JsI2B 9ImLbKe4UqqxwMC6Hxb0TuUV4DReUggYxUaUYQ9sse7lPidc2sGNif13bPlT/cjg 8X9qFOpJlxA/BJ71oQoSb/Nw1JNl3rF6v4jmHXJcv4Gwgj32xzNt8WVjy1MlPG5o n/tMuAvpO7VIup+kKLSF9yipIwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNeHsMuD Y6mxhxQUHVuvAS7UYPQ4MB8GA1UdIwQYMBaAFEx9rCEgPa5BbB/O6vxVZXICIgih MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMENENS9DRDJCNEI0NDFE MEIxMUVFODcwNDhBNENDNEY5QUUwMi9USDJzSVNBOXJrRnNIODdxX0ZWbGNnSWlD S0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RIMnNJU0E5cmtGc0g4N3FfRlZsY2dJaUNLRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MENENS9DRDJCNEI0NDFEMEIxMUVFODcwNDhBNENDNEY5QUUwMi9USDJzSVNBOXJr RnNIODdxX0ZWbGNnSWlDS0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCoKNX56ysOXV5DIhmQi2qsssMlddZ8fw0d85loVGFe92RQqPVmJIny otuAA+Ih0aewuTo3v0ak/fhLufvzBo2DdoYHjC/ei8cFp47ciafGYBC0ukV57H/p NKvdMKAtnsZ7vFWODBAoCBpvUHh2dA2wWFHlP++doZ+0cbf5aKT3PpFpGrn6HBZe xozugQ+jyr3XX6bsjtp2w1O8YarYCFs0PzqlnsQJELVlc+QmxEjoXe1iQgxAsswY P5z+8jpKD0rLHLi+8Kh4H7rmQQeIf+Xw4HZRpZ+klWd/jPoR6b/z1cpwiVb8LDY9 UBgImrVzUSCC+KMQRoSTyRNcgX/bEnnm -----END CERTIFICATE-----Generated at Wed Nov 5 19:27:57 2025 by rpki-client