$ rpki-client -vvf rpki.apnic.net/member_repository/A91D3037/8B8DE27E8EDC11F09880C478C4F9AE02/tkuBBCq0EWB9hgdv78nllia7iBY.mft File: tkuBBCq0EWB9hgdv78nllia7iBY.mft (raw, json) Hash identifier: jGG/YXbRHNw7XQ/BCdbkDwwng5TDsb1u4+9/KelkoCU= Subject key identifier: 8F:24:4A:91:BD:91:28:8C:25:4F:6F:87:8C:8D:6A:78:1D:37:0E:3D Authority key identifier: B6:4B:81:04:2A:B4:11:60:7D:86:07:6F:EF:C9:E5:96:26:BB:88:16 Certificate issuer: /CN=A91D3037/serialNumber=B64B81042AB411607D86076FEFC9E59626BB8816 Certificate serial: 27 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tkuBBCq0EWB9hgdv78nllia7iBY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D3037/8B8DE27E8EDC11F09880C478C4F9AE02/tkuBBCq0EWB9hgdv78nllia7iBY.mft Manifest number: 21 Signing time: Mon 03 Nov 2025 07:48:26 +0000 Manifest this update: Mon 03 Nov 2025 07:48:26 +0000 Manifest next update: Mon 10 Nov 2025 07:48:26 +0000 Files and hashes: 1: tkuBBCq0EWB9hgdv78nllia7iBY.crl (hash: qwM2UERTOlEON7V5NJNs+UEK0dTxzOm6zFYVZwU+Y7M=) 2: 0A16B10E8EE011F09A1AE72BC4F9AE02.roa (hash: 49rBi75NWLedbZFV/zCs/LhYwYBaC9SkJOjaSAzVrHk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D3037/8B8DE27E8EDC11F09880C478C4F9AE02/tkuBBCq0EWB9hgdv78nllia7iBY.crl rsync://rpki.apnic.net/member_repository/A91D3037/8B8DE27E8EDC11F09880C478C4F9AE02/tkuBBCq0EWB9hgdv78nllia7iBY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tkuBBCq0EWB9hgdv78nllia7iBY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 07:48:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39 (0x27) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D3037, serialNumber=B64B81042AB411607D86076FEFC9E59626BB8816 Validity Not Before: Nov 3 07:48:26 2025 GMT Not After : Nov 10 07:48:26 2025 GMT Subject: CN=69085e4a-8916 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:1e:13:52:2e:88:a3:75:41:6d:37:c9:f6:d2: 6a:02:af:d1:8a:cb:79:87:f8:3c:e2:25:31:ca:10: ff:5c:61:5d:1f:af:96:02:6a:1f:a7:9a:35:2d:bb: e6:d1:d5:91:51:ba:06:ad:a7:ea:a0:e2:05:11:81: d3:58:60:b5:e0:1f:5f:4d:54:bd:3e:0b:9d:b1:67: b3:c9:3f:6a:2c:83:31:ac:6a:ca:20:93:4a:83:d9: 68:46:d5:4d:86:48:8d:54:a6:2f:1b:6b:50:21:a4: e8:6a:2e:51:90:ec:51:44:f9:7c:99:f6:c4:5a:34: 5e:88:6b:8e:fe:6c:14:8d:24:8f:67:37:3f:03:68: 40:90:d9:19:1c:9f:d6:da:d1:01:14:a2:69:cf:11: 5e:88:e5:4c:44:23:83:3d:99:3a:5d:11:60:25:3f: 09:16:71:d9:56:32:18:9b:22:a5:56:1a:45:77:9e: 46:98:26:56:9f:40:13:48:8b:6c:9b:23:3e:47:54: af:87:ab:83:8e:14:a6:f1:3d:6e:77:36:09:79:33: d3:81:fe:d1:17:b1:35:33:f6:31:7f:08:96:ca:9f: e7:70:75:07:85:27:d8:77:4e:b2:a0:ae:59:07:a6: 5e:ae:dd:db:68:20:2a:42:89:bf:50:18:80:c7:78: a4:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:24:4A:91:BD:91:28:8C:25:4F:6F:87:8C:8D:6A:78:1D:37:0E:3D X509v3 Authority Key Identifier: keyid:B6:4B:81:04:2A:B4:11:60:7D:86:07:6F:EF:C9:E5:96:26:BB:88:16 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D3037/8B8DE27E8EDC11F09880C478C4F9AE02/tkuBBCq0EWB9hgdv78nllia7iBY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tkuBBCq0EWB9hgdv78nllia7iBY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D3037/8B8DE27E8EDC11F09880C478C4F9AE02/tkuBBCq0EWB9hgdv78nllia7iBY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0c:7a:16:4a:77:78:63:06:56:98:01:70:0a:6a:a4:25:01:91: 9e:b8:ef:c8:0d:47:e3:dd:27:29:75:f7:65:81:17:ff:38:56: 1e:63:82:3f:c3:3f:7b:0f:83:be:1d:98:c1:98:b9:dd:31:e3: eb:26:55:8b:bf:4b:3f:84:c3:14:c1:85:3b:d3:a8:a9:0e:08: 7b:d2:d9:31:a5:5b:70:28:40:25:31:1d:fe:40:75:79:ea:82: 04:89:52:26:01:c6:94:6e:e4:76:e8:ec:8e:53:da:59:08:38: 7e:ad:6f:bb:1f:b4:ba:de:54:a7:03:7e:d1:d1:eb:c9:13:16: e5:e1:c8:0d:af:4b:64:51:4d:08:d0:fa:14:23:bd:eb:a9:e7: ce:69:a7:b8:4b:eb:94:d1:9c:35:cf:83:43:0d:09:f9:f1:e3: 03:33:c0:78:24:78:a7:fc:67:20:34:3b:53:b0:3c:81:19:1e: 01:6d:c4:01:5c:2a:7c:5c:e3:e5:18:6c:ba:bb:50:97:cf:b8: 74:5c:96:0e:b8:ce:f9:d1:12:fa:07:ca:02:5a:6a:62:ab:47: 37:57:ad:cc:e1:20:a4:4a:b1:eb:f3:b9:2f:59:d4:95:be:7e: 55:17:f3:b7:52:4d:42:de:35:46:5e:58:e4:ce:e1:18:19:a1: 3a:68:95:c6 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBJzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE MzAzNzExMC8GA1UEBRMoQjY0QjgxMDQyQUI0MTE2MDdEODYwNzZGRUZDOUU1OTYy NkJCODgxNjAeFw0yNTExMDMwNzQ4MjZaFw0yNTExMTAwNzQ4MjZaMBgxFjAUBgNV BAMTDTY5MDg1ZTRhLTg5MTYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCYHhNSLoijdUFtN8n20moCr9GKy3mH+DziJTHKEP9cYV0fr5YCah+nmjUtu+bR 1ZFRugatp+qg4gURgdNYYLXgH19NVL0+C52xZ7PJP2osgzGsasogk0qD2WhG1U2G SI1Upi8ba1AhpOhqLlGQ7FFE+XyZ9sRaNF6Ia47+bBSNJI9nNz8DaECQ2Rkcn9ba 0QEUomnPEV6I5UxEI4M9mTpdEWAlPwkWcdlWMhibIqVWGkV3nkaYJlafQBNIi2yb Iz5HVK+Hq4OOFKbxPW53Ngl5M9OB/tEXsTUz9jF/CJbKn+dwdQeFJ9h3TrKgrlkH pl6u3dtoICpCib9QGIDHeKSvAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUjyRKkb2R KIwlT2+HjI1qeB03Dj0wHwYDVR0jBBgwFoAUtkuBBCq0EWB9hgdv78nllia7iBYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQzMDM3LzhCOERFMjdFOEVE QzExRjA5ODgwQzQ3OEM0RjlBRTAyL3RrdUJCQ3EwRVdCOWhnZHY3OG5sbGlhN2lC WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvdGt1QkJDcTBFV0I5aGdkdjc4bmxsaWE3aUJZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQz MDM3LzhCOERFMjdFOEVEQzExRjA5ODgwQzQ3OEM0RjlBRTAyL3RrdUJCQ3EwRVdC OWhnZHY3OG5sbGlhN2lCWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAAx6Fkp3eGMGVpgBcApqpCUBkZ6478gNR+PdJyl192WBF/84Vh5jgj/D P3sPg74dmMGYud0x4+smVYu/Sz+EwxTBhTvTqKkOCHvS2TGlW3AoQCUxHf5AdXnq ggSJUiYBxpRu5Hbo7I5T2lkIOH6tb7sftLreVKcDftHR68kTFuXhyA2vS2RRTQjQ +hQjveup585pp7hL65TRnDXPg0MNCfnx4wMzwHgkeKf8ZyA0O1OwPIEZHgFtxAFc Knxc4+UYbLq7UJfPuHRclg64zvnREvoHygJaamKrRzdXrczhIKRKsevzuS9Z1JW+ flUX87dSTULeNUZeWOTO4RgZoTpolcY= -----END CERTIFICATE-----Generated at Wed Nov 5 05:37:37 2025 by rpki-client