$ rpki-client -vvf rpki.apnic.net/member_repository/A91CD0DE/4F769D58A98F11F0B1FA5066C4F9AE02/tkP-swMnQhSPOvnDU5M41VSTcig.mft File: tkP-swMnQhSPOvnDU5M41VSTcig.mft (raw, json) Hash identifier: UGnI/sFhthgDO2JkOZlmMIwTYraucx0ww8ne1f8hO7g= Subject key identifier: 13:86:BF:07:E7:7D:06:08:3B:78:A5:52:CB:F5:5A:2A:38:E7:56:2E Authority key identifier: B6:43:FE:B3:03:27:42:14:8F:3A:F9:C3:53:93:38:D5:54:93:72:28 Certificate issuer: /CN=A91CD0DE/serialNumber=B643FEB3032742148F3AF9C3539338D554937228 Certificate serial: 0D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tkP-swMnQhSPOvnDU5M41VSTcig.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CD0DE/4F769D58A98F11F0B1FA5066C4F9AE02/tkP-swMnQhSPOvnDU5M41VSTcig.mft Manifest number: 0C Signing time: Wed 05 Nov 2025 08:10:25 +0000 Manifest this update: Wed 05 Nov 2025 08:10:25 +0000 Manifest next update: Wed 12 Nov 2025 08:10:25 +0000 Files and hashes: 1: tkP-swMnQhSPOvnDU5M41VSTcig.crl (hash: Oo8eLMmwsHEEQ3jfeJBerP89KailmjHlvhfATNp7eic=) 2: 341BBBECA99411F093BBAA15C4F9AE02.roa (hash: TNOMyUTzIQDmtZMNg4RAepXI8EHziIAFioU9/cJC+ek=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CD0DE/4F769D58A98F11F0B1FA5066C4F9AE02/tkP-swMnQhSPOvnDU5M41VSTcig.crl rsync://rpki.apnic.net/member_repository/A91CD0DE/4F769D58A98F11F0B1FA5066C4F9AE02/tkP-swMnQhSPOvnDU5M41VSTcig.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tkP-swMnQhSPOvnDU5M41VSTcig.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 08:09:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13 (0xd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD0DE, serialNumber=B643FEB3032742148F3AF9C3539338D554937228 Validity Not Before: Nov 5 08:10:25 2025 GMT Not After : Nov 12 08:10:25 2025 GMT Subject: CN=690b0671-ae7b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:59:0e:81:c8:02:f3:9a:27:fe:f6:7f:51:5a: 8e:0e:3f:a8:28:8d:6f:ec:e1:51:ac:ba:60:0e:b7: 71:f3:3d:d7:ee:95:0e:11:c2:ea:fe:f4:35:a5:c2: 97:97:70:61:28:6f:28:5d:5b:98:6a:da:1c:b7:b5: aa:b6:ee:0e:c3:3a:85:02:c3:39:48:08:22:4c:a5: f5:9c:12:a4:54:19:b8:44:a8:0d:c2:14:86:2b:b5: 90:81:27:54:7d:49:2d:ec:d3:dd:85:ed:06:0b:92: 45:88:10:f2:7f:5d:a9:50:db:2e:02:98:b9:f1:96: d7:56:31:05:80:83:03:9c:fc:ac:03:c9:c4:ba:32: ee:2e:e6:8b:b5:19:58:31:67:88:0a:d9:bb:ed:25: 07:2e:00:3e:9c:c4:1b:5a:87:e4:fb:2b:78:86:7e: ab:c5:6c:d8:ce:47:e5:51:09:26:6a:92:26:cd:a1: 9a:7b:07:42:d4:26:69:92:fe:07:a7:09:9b:ad:14: 6c:9e:23:c9:c6:b2:6f:df:0b:a7:94:79:bc:e9:25: 13:fb:82:02:8d:c4:1e:8d:45:23:5d:f9:09:e0:e6: 11:0b:ff:44:db:1b:d6:6d:11:0d:45:7a:7d:66:78: bb:c0:06:4f:fc:8f:98:32:78:2e:5e:b0:54:f9:51: 46:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:86:BF:07:E7:7D:06:08:3B:78:A5:52:CB:F5:5A:2A:38:E7:56:2E X509v3 Authority Key Identifier: keyid:B6:43:FE:B3:03:27:42:14:8F:3A:F9:C3:53:93:38:D5:54:93:72:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CD0DE/4F769D58A98F11F0B1FA5066C4F9AE02/tkP-swMnQhSPOvnDU5M41VSTcig.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tkP-swMnQhSPOvnDU5M41VSTcig.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CD0DE/4F769D58A98F11F0B1FA5066C4F9AE02/tkP-swMnQhSPOvnDU5M41VSTcig.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 18:34:27:02:bb:ee:f9:76:2b:57:4f:0b:36:42:f6:0e:3a:d7: bb:2f:dd:09:c9:1c:46:34:19:26:6b:10:09:70:ff:21:cc:dc: 87:b0:a0:98:4b:32:44:f2:7a:22:85:bf:c0:7b:60:1f:5f:0a: c3:ab:ba:58:ce:b2:79:85:37:41:3c:9e:e6:c9:09:6e:7c:14: a7:68:39:f3:5f:96:1a:5f:35:59:e9:54:13:0c:83:ea:e6:2b: 2a:f2:3e:23:e4:3d:72:a9:11:7c:59:ab:b5:8e:56:cc:76:ff: 24:73:d1:21:77:a3:3e:f6:42:34:94:c8:67:f5:cc:66:f0:8a: d7:00:fb:11:5a:91:9e:f7:6b:09:d3:5f:43:ca:4e:75:b0:84: ce:a8:97:15:0f:44:f0:c9:61:35:f8:2b:90:f9:23:fa:82:df: 01:ea:0e:7a:c6:3f:5f:e6:49:91:d2:b7:bf:8b:18:5a:7b:83: 8e:4c:f0:39:73:28:1b:65:d2:8f:77:be:27:5c:09:10:04:61: 25:31:d3:8b:2f:62:56:fa:17:8a:19:38:75:4a:b5:73:55:71: 82:5b:6e:ff:48:0e:96:a7:c8:6f:fb:77:d7:5b:1b:f7:80:2d: 24:6e:9e:28:76:90:35:58:55:ca:6c:2c:45:03:f4:93:7e:11: 4c:47:d8:c9 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBDTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD RDBERTExMC8GA1UEBRMoQjY0M0ZFQjMwMzI3NDIxNDhGM0FGOUMzNTM5MzM4RDU1 NDkzNzIyODAeFw0yNTExMDUwODEwMjVaFw0yNTExMTIwODEwMjVaMBgxFjAUBgNV BAMTDTY5MGIwNjcxLWFlN2IwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC2WQ6ByALzmif+9n9RWo4OP6gojW/s4VGsumAOt3HzPdfulQ4Rwur+9DWlwpeX cGEobyhdW5hq2hy3taq27g7DOoUCwzlICCJMpfWcEqRUGbhEqA3CFIYrtZCBJ1R9 SS3s092F7QYLkkWIEPJ/XalQ2y4CmLnxltdWMQWAgwOc/KwDycS6Mu4u5ou1GVgx Z4gK2bvtJQcuAD6cxBtah+T7K3iGfqvFbNjOR+VRCSZqkibNoZp7B0LUJmmS/gen CZutFGyeI8nGsm/fC6eUebzpJRP7ggKNxB6NRSNd+Qng5hEL/0TbG9ZtEQ1Fen1m eLvABk/8j5gyeC5esFT5UUalAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUE4a/B+d9 Bgg7eKVSy/VaKjjnVi4wHwYDVR0jBBgwFoAUtkP+swMnQhSPOvnDU5M41VSTcigw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNEMERFLzRGNzY5RDU4QTk4 RjExRjBCMUZBNTA2NkM0RjlBRTAyL3RrUC1zd01uUWhTUE92bkRVNU00MVZTVGNp Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvdGtQLXN3TW5RaFNQT3ZuRFU1TTQxVlNUY2lnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNE MERFLzRGNzY5RDU4QTk4RjExRjBCMUZBNTA2NkM0RjlBRTAyL3RrUC1zd01uUWhT UE92bkRVNU00MVZTVGNpZy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABg0JwK77vl2K1dPCzZC9g4617sv3QnJHEY0GSZrEAlw/yHM3IewoJhL MkTyeiKFv8B7YB9fCsOruljOsnmFN0E8nubJCW58FKdoOfNflhpfNVnpVBMMg+rm KyryPiPkPXKpEXxZq7WOVsx2/yRz0SF3oz72QjSUyGf1zGbwitcA+xFakZ73awnT X0PKTnWwhM6olxUPRPDJYTX4K5D5I/qC3wHqDnrGP1/mSZHSt7+LGFp7g45M8Dlz KBtl0o93vidcCRAEYSUx04svYlb6F4oZOHVKtXNVcYJbbv9IDpanyG/7d9dbG/eA LSRunih2kDVYVcpsLEUD9JN+EUxH2Mk= -----END CERTIFICATE-----Generated at Wed Nov 5 12:35:26 2025 by rpki-client