$ rpki-client -vvf rpki.apnic.net/member_repository/A91C2B6D/86DF6C7E710511F0854F5A14C4F9AE02/TU86rMc5WhPWQgB_mRDfiAQOS6s.mft File: TU86rMc5WhPWQgB_mRDfiAQOS6s.mft (raw, json) Hash identifier: aN22ar4Rbj1RqwU1I0/mEFe9eqvAKTqTlWg2Db/MsrA= Subject key identifier: 2E:36:FD:1B:22:2A:C9:9F:67:1D:FA:30:7D:CB:74:B3:A4:AF:32:78 Authority key identifier: 4D:4F:3A:AC:C7:39:5A:13:D6:42:00:7F:99:10:DF:88:04:0E:4B:AB Certificate issuer: /CN=A91C2B6D/serialNumber=4D4F3AACC7395A13D642007F9910DF88040E4BAB Certificate serial: 32 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TU86rMc5WhPWQgB_mRDfiAQOS6s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C2B6D/86DF6C7E710511F0854F5A14C4F9AE02/TU86rMc5WhPWQgB_mRDfiAQOS6s.mft Manifest number: 31 Signing time: Mon 03 Nov 2025 07:37:33 +0000 Manifest this update: Mon 03 Nov 2025 07:37:32 +0000 Manifest next update: Mon 10 Nov 2025 07:37:32 +0000 Files and hashes: 1: TU86rMc5WhPWQgB_mRDfiAQOS6s.crl (hash: EQhPxGGvy+O1K7Hl88q6VDW44omr54MYXa25JdIRKMw=) 2: 47F872C4768911F0AC56AE5AC4F9AE02.roa (hash: FVLynhifvDV8KPyOIjr7ThKejT3Wh2GtJVJ/0rkPagg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C2B6D/86DF6C7E710511F0854F5A14C4F9AE02/TU86rMc5WhPWQgB_mRDfiAQOS6s.crl rsync://rpki.apnic.net/member_repository/A91C2B6D/86DF6C7E710511F0854F5A14C4F9AE02/TU86rMc5WhPWQgB_mRDfiAQOS6s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TU86rMc5WhPWQgB_mRDfiAQOS6s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 07:37:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50 (0x32) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C2B6D, serialNumber=4D4F3AACC7395A13D642007F9910DF88040E4BAB Validity Not Before: Nov 3 07:37:32 2025 GMT Not After : Nov 10 07:37:32 2025 GMT Subject: CN=69085bbd-bfa9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:b0:79:78:d8:bb:1e:cc:9b:c4:49:58:7a:7d: 15:97:df:bc:3d:57:9b:f3:8b:8b:8c:33:92:6c:ef: 04:b2:18:b7:0a:a4:d7:4a:d8:08:c3:b5:4b:51:9c: 32:6a:cb:46:62:42:10:61:b1:12:99:e1:09:83:62: a3:40:31:80:f8:6a:48:b5:ef:bd:8d:a0:b0:27:3c: d1:df:7d:66:93:87:5d:66:92:21:b4:2e:a7:ba:03: 56:1f:23:47:f3:89:42:a9:9e:8d:ac:6a:89:81:fd: 6d:3c:c7:c9:ff:80:23:98:3b:d1:84:e2:f3:ca:12: 05:b5:fd:19:47:ec:e1:39:0a:a1:cd:d1:76:38:15: 87:b0:2d:7c:3a:a8:61:f9:b6:43:6b:0e:9a:d1:1c: dd:b0:a0:c0:ff:60:93:d3:75:da:3c:d2:ee:9c:06: a2:ae:f6:a4:eb:9f:6d:83:87:7e:88:ad:91:3b:37: da:cd:3a:f4:ae:d2:b9:c8:5b:c2:ea:ea:91:1e:b4: ca:3b:ec:af:06:23:2f:35:70:53:6e:d6:49:ed:3c: ee:9d:4d:c7:35:4a:98:70:ff:fc:d4:97:bf:3d:07: ce:49:f4:1e:0c:b7:e5:e3:96:02:82:a3:69:9b:cd: af:c7:d2:55:1b:62:6c:3c:82:09:3d:42:a6:01:d2: 46:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:36:FD:1B:22:2A:C9:9F:67:1D:FA:30:7D:CB:74:B3:A4:AF:32:78 X509v3 Authority Key Identifier: keyid:4D:4F:3A:AC:C7:39:5A:13:D6:42:00:7F:99:10:DF:88:04:0E:4B:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C2B6D/86DF6C7E710511F0854F5A14C4F9AE02/TU86rMc5WhPWQgB_mRDfiAQOS6s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TU86rMc5WhPWQgB_mRDfiAQOS6s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C2B6D/86DF6C7E710511F0854F5A14C4F9AE02/TU86rMc5WhPWQgB_mRDfiAQOS6s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 99:75:9f:2f:c4:a7:87:60:07:15:91:ef:29:9b:4b:80:45:2e: f0:f6:5b:ff:4b:c1:31:a7:c5:27:cf:57:03:fc:cb:9f:b5:4f: 78:7c:18:ad:9a:0e:2e:97:a3:cc:18:6a:f8:f9:1b:40:84:c0: a4:44:c6:91:82:f0:7c:0e:2e:f1:81:c9:19:a2:6b:78:25:a8: 10:8c:1c:f0:6f:54:13:87:6c:d5:9e:06:6d:69:f8:5d:f6:9e: 41:e8:90:4c:30:54:e7:25:7b:3d:3d:01:ec:27:a5:23:68:e1: 4b:62:77:db:64:64:f0:a2:31:98:df:7c:87:0b:fc:5d:ed:82: 41:f0:e2:02:13:25:42:99:27:53:55:2c:ec:52:e5:37:80:6e: d9:6f:80:73:af:4b:99:c5:b4:70:30:38:d1:f1:b9:e1:1d:b6: 58:ff:ae:2e:75:04:9f:3c:44:90:84:d6:4a:b8:ad:d7:7d:08: cb:1f:4a:b0:9b:7f:27:80:0d:5c:93:54:01:3e:1b:66:53:6e: 31:61:92:25:ee:18:e9:c4:de:87:95:a0:7b:a3:48:a6:68:4f: 11:a2:8b:76:13:5a:61:8b:18:de:1a:a0:8e:a9:92:02:ff:aa: e4:e9:39:e6:d8:a4:24:a8:36:4e:84:5b:90:8a:7e:80:c6:8f: 86:66:f6:aa -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBMjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD MkI2RDExMC8GA1UEBRMoNEQ0RjNBQUNDNzM5NUExM0Q2NDIwMDdGOTkxMERGODgw NDBFNEJBQjAeFw0yNTExMDMwNzM3MzJaFw0yNTExMTAwNzM3MzJaMBgxFjAUBgNV BAMTDTY5MDg1YmJkLWJmYTkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDKsHl42LsezJvESVh6fRWX37w9V5vzi4uMM5Js7wSyGLcKpNdK2AjDtUtRnDJq y0ZiQhBhsRKZ4QmDYqNAMYD4aki1772NoLAnPNHffWaTh11mkiG0Lqe6A1YfI0fz iUKpno2saomB/W08x8n/gCOYO9GE4vPKEgW1/RlH7OE5CqHN0XY4FYewLXw6qGH5 tkNrDprRHN2woMD/YJPTddo80u6cBqKu9qTrn22Dh36IrZE7N9rNOvSu0rnIW8Lq 6pEetMo77K8GIy81cFNu1kntPO6dTcc1Sphw//zUl789B85J9B4Mt+XjlgKCo2mb za/H0lUbYmw8ggk9QqYB0kZvAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQULjb9GyIq yZ9nHfowfct0s6SvMngwHwYDVR0jBBgwFoAUTU86rMc5WhPWQgB/mRDfiAQOS6sw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUMyQjZELzg2REY2QzdFNzEw NTExRjA4NTRGNUExNEM0RjlBRTAyL1RVODZyTWM1V2hQV1FnQl9tUkRmaUFRT1M2 cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvVFU4NnJNYzVXaFBXUWdCX21SRGZpQVFPUzZzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUMy QjZELzg2REY2QzdFNzEwNTExRjA4NTRGNUExNEM0RjlBRTAyL1RVODZyTWM1V2hQ V1FnQl9tUkRmaUFRT1M2cy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJl1ny/Ep4dgBxWR7ymbS4BFLvD2W/9LwTGnxSfPVwP8y5+1T3h8GK2a Di6Xo8wYavj5G0CEwKRExpGC8HwOLvGByRmia3glqBCMHPBvVBOHbNWeBm1p+F32 nkHokEwwVOclez09AewnpSNo4Utid9tkZPCiMZjffIcL/F3tgkHw4gITJUKZJ1NV LOxS5TeAbtlvgHOvS5nFtHAwONHxueEdtlj/ri51BJ88RJCE1kq4rdd9CMsfSrCb fyeADVyTVAE+G2ZTbjFhkiXuGOnE3oeVoHujSKZoTxGii3YTWmGLGN4aoI6pkgL/ quTpOebYpCSoNk6EW5CKfoDGj4Zm9qo= -----END CERTIFICATE-----Generated at Wed Nov 5 05:38:05 2025 by rpki-client