$ rpki-client -vvf rpki.apnic.net/member_repository/A91D200F/25787402164F11EE9E73404EC4F9AE02/TZCQh73foVBeK7oD8gYRLq7_sRs.mft File: TZCQh73foVBeK7oD8gYRLq7_sRs.mft (raw, json) Hash identifier: f5zaNmFMhiMubKbPaAQBaXjoJajTYSKjfBeOyP/wjfY= Subject key identifier: 4E:83:4E:C6:83:81:52:2A:2A:8D:AE:6E:E9:39:DF:1F:B2:5D:AD:84 Authority key identifier: 4D:90:90:87:BD:DF:A1:50:5E:2B:BA:03:F2:06:11:2E:AE:FF:B1:1B Certificate issuer: /CN=A91D200F/serialNumber=4D909087BDDFA1505E2BBA03F206112EAEFFB11B Certificate serial: 01D1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TZCQh73foVBeK7oD8gYRLq7_sRs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D200F/25787402164F11EE9E73404EC4F9AE02/TZCQh73foVBeK7oD8gYRLq7_sRs.mft Manifest number: 01C4 Signing time: Mon 03 Nov 2025 03:03:33 +0000 Manifest this update: Mon 03 Nov 2025 03:03:32 +0000 Manifest next update: Mon 10 Nov 2025 03:03:32 +0000 Files and hashes: 1: TZCQh73foVBeK7oD8gYRLq7_sRs.crl (hash: ZwerW0Bq+hqCBOZdiRyYAKnc46sGID2oCBpkoVeNR7I=) 2: D71B60EC2B5911EE81C7542FC4F9AE02.roa (hash: wndMS9TntxEIvOO1y5ThBewHzkdYkTNV8U/orVegQT4=) 3: 039807B286B511EFAF868C6EC4F9AE02.roa (hash: mvlfednBP8hH+VJF+N7b5lj86+gAiaBFLJ6OGfwQefA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D200F/25787402164F11EE9E73404EC4F9AE02/TZCQh73foVBeK7oD8gYRLq7_sRs.crl rsync://rpki.apnic.net/member_repository/A91D200F/25787402164F11EE9E73404EC4F9AE02/TZCQh73foVBeK7oD8gYRLq7_sRs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TZCQh73foVBeK7oD8gYRLq7_sRs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 03:03:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 465 (0x1d1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D200F, serialNumber=4D909087BDDFA1505E2BBA03F206112EAEFFB11B Validity Not Before: Nov 3 03:03:32 2025 GMT Not After : Nov 10 03:03:32 2025 GMT Subject: CN=69081b84-cd56 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:4d:70:ef:89:4f:d9:e5:7e:ed:e7:0b:1d:e6: 27:80:7d:0d:ba:8e:3c:f3:4b:64:08:0e:45:86:ab: e4:94:5b:87:08:a4:de:51:48:77:cf:58:d6:45:25: 4e:70:f4:fe:8c:1c:2d:d0:cc:31:f6:dd:73:5c:93: 4a:54:2b:85:6d:11:93:31:9c:96:0f:cb:73:ff:53: dc:ee:ce:e1:2b:0e:ec:ae:c3:6e:e8:6e:01:cb:ed: a7:e9:10:36:f8:6a:c6:bb:b0:9c:c1:a2:ba:15:92: 02:68:2d:a7:cf:a0:2e:99:19:16:c0:5b:d4:ec:a5: 48:b2:d6:97:19:58:16:aa:14:58:ca:ef:5f:c3:01: e5:2b:77:a1:f0:46:35:6b:85:89:05:d9:ec:88:3a: 65:ea:9f:d4:db:77:71:3a:8b:6f:a5:56:41:c2:ee: ab:aa:95:0c:35:1e:a2:e1:5e:c5:73:cb:d9:98:24: 04:4f:46:30:8a:57:19:42:88:bc:e4:d5:a7:f6:3c: f6:67:8d:1c:13:8a:5d:20:40:a4:38:1a:7b:df:98: 4c:6b:3c:a3:e4:a9:a9:d1:bf:08:59:36:aa:5c:a3: 38:0e:c9:75:87:26:5f:b3:8b:74:c5:9e:2c:e4:e2: df:3a:44:be:e9:a6:8f:e0:b5:b8:8f:e8:22:5b:f5: 95:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:83:4E:C6:83:81:52:2A:2A:8D:AE:6E:E9:39:DF:1F:B2:5D:AD:84 X509v3 Authority Key Identifier: keyid:4D:90:90:87:BD:DF:A1:50:5E:2B:BA:03:F2:06:11:2E:AE:FF:B1:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D200F/25787402164F11EE9E73404EC4F9AE02/TZCQh73foVBeK7oD8gYRLq7_sRs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TZCQh73foVBeK7oD8gYRLq7_sRs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D200F/25787402164F11EE9E73404EC4F9AE02/TZCQh73foVBeK7oD8gYRLq7_sRs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0c:63:16:00:4e:bf:21:ac:a9:a0:32:76:6e:01:5a:16:0b:47: 79:b9:88:6c:b5:be:cb:55:20:38:40:20:2f:e5:5f:f5:b1:e7: 56:ba:18:f6:ae:5a:24:f9:ff:a8:b8:be:68:0e:2c:76:7a:0e: 19:30:3d:32:34:87:9d:9d:40:93:d4:7d:2c:26:06:82:bd:86: 3b:98:2e:15:a0:e2:40:2d:d3:ca:41:94:ab:ca:9f:a5:93:f2: 81:27:9b:ab:27:5d:08:ba:53:8d:fb:2e:4e:c2:c1:ce:ee:26: 31:5f:9e:78:42:a0:b2:47:27:d9:1a:1d:e7:d0:97:c1:fa:f5: d2:48:d3:26:59:0e:85:42:84:c2:92:51:2c:a9:93:16:3c:f5: 62:d1:e1:2c:e5:97:a8:05:d0:0a:18:d6:c8:85:23:af:b9:0e: db:01:73:2b:5f:d0:2e:31:ae:16:4e:75:a7:c6:90:04:01:6d: c0:df:83:73:fa:59:d1:35:bf:ce:9a:9e:49:72:e2:9c:57:da: 6f:11:27:f2:00:97:11:97:b3:f6:17:aa:ed:ea:33:51:d8:33: 14:f0:f0:d4:3e:5f:38:c4:28:b7:39:73:29:d5:a8:d2:a5:b9: 5d:44:c4:cf:ce:11:80:e2:b6:f1:c6:5b:2d:bc:4d:b9:c3:6c: bb:5e:ac:19 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDIwMEYxMTAvBgNVBAUTKDREOTA5MDg3QkRERkExNTA1RTJCQkEwM0YyMDYxMTJF QUVGRkIxMUIwHhcNMjUxMTAzMDMwMzMyWhcNMjUxMTEwMDMwMzMyWjAYMRYwFAYD VQQDEw02OTA4MWI4NC1jZDU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv01w74lP2eV+7ecLHeYngH0Nuo4880tkCA5FhqvklFuHCKTeUUh3z1jWRSVO cPT+jBwt0Mwx9t1zXJNKVCuFbRGTMZyWD8tz/1Pc7s7hKw7srsNu6G4By+2n6RA2 +GrGu7CcwaK6FZICaC2nz6AumRkWwFvU7KVIstaXGVgWqhRYyu9fwwHlK3eh8EY1 a4WJBdnsiDpl6p/U23dxOotvpVZBwu6rqpUMNR6i4V7Fc8vZmCQET0YwilcZQoi8 5NWn9jz2Z40cE4pdIECkOBp735hMazyj5Kmp0b8IWTaqXKM4Dsl1hyZfs4t0xZ4s 5OLfOkS+6aaP4LW4j+giW/WVjQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE6DTsaD gVIqKo2ubuk53x+yXa2EMB8GA1UdIwQYMBaAFE2QkIe936FQXiu6A/IGES6u/7Eb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMjAwRi8yNTc4NzQwMjE2 NEYxMUVFOUU3MzQwNEVDNEY5QUUwMi9UWkNRaDczZm9WQmVLN29EOGdZUkxxN19z UnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RaQ1FoNzNmb1ZCZUs3b0Q4Z1lSTHE3X3NScy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MjAwRi8yNTc4NzQwMjE2NEYxMUVFOUU3MzQwNEVDNEY5QUUwMi9UWkNRaDczZm9W QmVLN29EOGdZUkxxN19zUnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAMYxYATr8hrKmgMnZuAVoWC0d5uYhstb7LVSA4QCAv5V/1sedWuhj2 rlok+f+ouL5oDix2eg4ZMD0yNIednUCT1H0sJgaCvYY7mC4VoOJALdPKQZSryp+l k/KBJ5urJ10IulON+y5OwsHO7iYxX554QqCyRyfZGh3n0JfB+vXSSNMmWQ6FQoTC klEsqZMWPPVi0eEs5ZeoBdAKGNbIhSOvuQ7bAXMrX9AuMa4WTnWnxpAEAW3A34Nz +lnRNb/Omp5JcuKcV9pvESfyAJcRl7P2F6rt6jNR2DMU8PDUPl84xCi3OXMp1ajS pbldRMTPzhGA4rbxxlstvE25w2y7XqwZ -----END CERTIFICATE-----Generated at Wed Nov 5 03:17:18 2025 by rpki-client