$ rpki-client -vvf rpki.apnic.net/member_repository/A91E0EF2/B50546525EE211ECAFA64B44C4F9AE02/TAYxLToLHGP1R9TWRXxM1a9xQ80.mft File: TAYxLToLHGP1R9TWRXxM1a9xQ80.mft (raw, json) Hash identifier: ZHvk8sa99l2thRpg9akfmMZkoYqlr67lblGR4pJi+LY= Subject key identifier: CC:BD:94:FE:EC:82:99:F2:22:4B:63:A4:15:BE:1C:47:55:08:7E:CE Authority key identifier: 4C:06:31:2D:3A:0B:1C:63:F5:47:D4:D6:45:7C:4C:D5:AF:71:43:CD Certificate issuer: /CN=A91E0EF2/serialNumber=4C06312D3A0B1C63F547D4D6457C4CD5AF7143CD Certificate serial: 048B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TAYxLToLHGP1R9TWRXxM1a9xQ80.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E0EF2/B50546525EE211ECAFA64B44C4F9AE02/TAYxLToLHGP1R9TWRXxM1a9xQ80.mft Manifest number: 0487 Signing time: Wed 05 Nov 2025 00:10:08 +0000 Manifest this update: Wed 05 Nov 2025 00:10:07 +0000 Manifest next update: Wed 12 Nov 2025 00:10:07 +0000 Files and hashes: 1: TAYxLToLHGP1R9TWRXxM1a9xQ80.crl (hash: 7c3CMJPMv/17mT7gmTbtSmMxjeqFGVWuAUSOUQUs6QY=) 2: 09C2A1645A3511ED8F0A3087C4F9AE02.roa (hash: RiGNiFnNAoJRKUyYrUN1wLZV9I9idQnh7FmtgNq/Suc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E0EF2/B50546525EE211ECAFA64B44C4F9AE02/TAYxLToLHGP1R9TWRXxM1a9xQ80.crl rsync://rpki.apnic.net/member_repository/A91E0EF2/B50546525EE211ECAFA64B44C4F9AE02/TAYxLToLHGP1R9TWRXxM1a9xQ80.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TAYxLToLHGP1R9TWRXxM1a9xQ80.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 00:10:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1163 (0x48b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E0EF2, serialNumber=4C06312D3A0B1C63F547D4D6457C4CD5AF7143CD Validity Not Before: Nov 5 00:10:07 2025 GMT Not After : Nov 12 00:10:07 2025 GMT Subject: CN=690a95e0-06e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:cf:98:62:3a:fa:c2:a3:2b:69:fc:fb:a3:26: ae:9f:bc:0e:80:85:16:9b:95:0d:34:22:20:a8:3b: 27:d0:9c:5a:ad:83:c1:9b:4e:47:af:79:2d:71:74: 2c:16:42:bc:66:e1:a4:c2:43:d7:6c:75:39:f2:79: cc:6c:99:cf:a3:e0:50:9c:3d:35:f3:c1:a6:50:d6: 33:b4:9d:c9:1c:52:de:08:c6:50:67:8b:40:fa:47: 7f:60:f2:8e:f5:10:15:3a:68:81:ae:f0:12:8d:3c: 4f:e9:70:0f:43:e3:3d:05:4a:d3:86:00:e3:de:47: 00:84:6f:17:87:54:e4:60:7e:bc:20:34:80:51:ac: 7a:67:7a:36:16:8e:29:79:a3:de:c7:40:dc:b6:97: 77:e8:0e:46:36:5c:39:86:31:2b:4e:f0:67:f2:f4: fc:e8:29:e0:26:a4:50:38:6d:af:0d:56:79:4f:b8: e3:8e:87:f3:3e:28:54:fa:08:fd:bc:71:ee:a3:ff: b3:1d:b5:6a:d6:6a:d7:d8:74:89:75:3d:d8:f4:ff: ae:a5:07:4c:d3:c7:03:9c:c0:76:60:13:5c:bd:5b: 8e:37:f3:e4:0a:ac:49:53:ff:b7:85:29:e8:85:96: 50:0c:03:6b:5a:bd:7b:10:7c:69:b8:d3:e1:d6:e9: 62:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:BD:94:FE:EC:82:99:F2:22:4B:63:A4:15:BE:1C:47:55:08:7E:CE X509v3 Authority Key Identifier: keyid:4C:06:31:2D:3A:0B:1C:63:F5:47:D4:D6:45:7C:4C:D5:AF:71:43:CD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E0EF2/B50546525EE211ECAFA64B44C4F9AE02/TAYxLToLHGP1R9TWRXxM1a9xQ80.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TAYxLToLHGP1R9TWRXxM1a9xQ80.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E0EF2/B50546525EE211ECAFA64B44C4F9AE02/TAYxLToLHGP1R9TWRXxM1a9xQ80.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bc:4e:a8:97:25:98:ce:45:22:c6:b5:79:7f:97:ae:65:92:80: 58:bf:96:64:d7:e2:5a:16:f2:af:80:41:1f:f0:75:78:4e:69: f4:ab:a8:4e:9b:65:73:38:e6:99:57:98:0c:95:2d:04:5e:58: 7d:34:94:94:93:5c:45:6a:f2:a7:a1:cf:af:3a:39:2a:ff:88: cf:30:a2:e2:ee:fe:53:06:6d:db:74:b5:f5:b9:57:04:1f:9d: dc:78:21:c8:e9:db:72:35:64:7d:eb:ea:d8:fd:ef:fb:68:9a: 9f:e5:8b:d1:a2:84:92:0b:35:0d:95:17:fb:4b:5f:76:9d:23: a6:1b:1b:45:93:94:1e:20:c7:79:ff:71:18:09:ed:9a:36:39: ff:cc:8a:ba:fa:f9:84:6d:0d:e2:eb:2d:b9:ed:f3:b7:a9:f5: ba:bd:0b:a4:34:6e:62:e4:90:31:7d:6e:0a:b2:14:e9:2a:c5: ac:66:dc:1c:a3:26:ee:10:9d:24:8b:cc:3a:42:57:93:6c:4f: 63:e0:45:5c:94:5d:44:3c:03:1b:73:0c:db:22:e8:33:22:ae: 30:cf:b0:48:0c:74:59:bb:3c:d8:e1:32:13:0c:6a:35:69:71: a1:62:3c:d4:3e:bd:9b:cc:bd:ef:e8:7e:4d:a3:0b:d7:13:ce: 54:15:88:82 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBIswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTBFRjIxMTAvBgNVBAUTKDRDMDYzMTJEM0EwQjFDNjNGNTQ3RDRENjQ1N0M0Q0Q1 QUY3MTQzQ0QwHhcNMjUxMTA1MDAxMDA3WhcNMjUxMTEyMDAxMDA3WjAYMRYwFAYD VQQDEw02OTBhOTVlMC0wNmUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn8+YYjr6wqMrafz7oyaun7wOgIUWm5UNNCIgqDsn0JxarYPBm05Hr3ktcXQs FkK8ZuGkwkPXbHU58nnMbJnPo+BQnD0188GmUNYztJ3JHFLeCMZQZ4tA+kd/YPKO 9RAVOmiBrvASjTxP6XAPQ+M9BUrThgDj3kcAhG8Xh1TkYH68IDSAUax6Z3o2Fo4p eaPex0Dctpd36A5GNlw5hjErTvBn8vT86CngJqRQOG2vDVZ5T7jjjofzPihU+gj9 vHHuo/+zHbVq1mrX2HSJdT3Y9P+upQdM08cDnMB2YBNcvVuON/PkCqxJU/+3hSno hZZQDANrWr17EHxpuNPh1ulijQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMy9lP7s gpnyIktjpBW+HEdVCH7OMB8GA1UdIwQYMBaAFEwGMS06Cxxj9UfU1kV8TNWvcUPN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMEVGMi9CNTA1NDY1MjVF RTIxMUVDQUZBNjRCNDRDNEY5QUUwMi9UQVl4TFRvTEhHUDFSOVRXUlh4TTFhOXhR ODAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RBWXhMVG9MSEdQMVI5VFdSWHhNMWE5eFE4MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MEVGMi9CNTA1NDY1MjVFRTIxMUVDQUZBNjRCNDRDNEY5QUUwMi9UQVl4TFRvTEhH UDFSOVRXUlh4TTFhOXhRODAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC8TqiXJZjORSLGtXl/l65lkoBYv5Zk1+JaFvKvgEEf8HV4Tmn0q6hO m2VzOOaZV5gMlS0EXlh9NJSUk1xFavKnoc+vOjkq/4jPMKLi7v5TBm3bdLX1uVcE H53ceCHI6dtyNWR96+rY/e/7aJqf5YvRooSSCzUNlRf7S192nSOmGxtFk5QeIMd5 /3EYCe2aNjn/zIq6+vmEbQ3i6y257fO3qfW6vQukNG5i5JAxfW4KshTpKsWsZtwc oybuEJ0ki8w6QleTbE9j4EVclF1EPAMbcwzbIugzIq4wz7BIDHRZuzzY4TITDGo1 aXGhYjzUPr2bzL3v6H5NowvXE85UFYiC -----END CERTIFICATE-----Generated at Wed Nov 5 19:23:06 2025 by rpki-client