$ rpki-client -vvf rpki.apnic.net/member_repository/A91F4B3F/1CDF87E4516011EEB0A5826AC4F9AE02/TnVPewjIAAZ84HEJetOUaJDao2U.mft File: TnVPewjIAAZ84HEJetOUaJDao2U.mft (raw, json) Hash identifier: xuRVdbJ8M/IZadpOagkJFQcjHTCtRGwzFENnP6TMxj0= Subject key identifier: 28:3D:C5:53:B2:42:AF:50:02:C1:BC:5E:EB:A3:6A:06:59:A4:EF:B3 Authority key identifier: 4E:75:4F:7B:08:C8:00:06:7C:E0:71:09:7A:D3:94:68:90:DA:A3:65 Certificate issuer: /CN=A91F4B3F/serialNumber=4E754F7B08C800067CE071097AD3946890DAA365 Certificate serial: 0198 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TnVPewjIAAZ84HEJetOUaJDao2U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F4B3F/1CDF87E4516011EEB0A5826AC4F9AE02/TnVPewjIAAZ84HEJetOUaJDao2U.mft Manifest number: 0194 Signing time: Wed 05 Nov 2025 03:34:47 +0000 Manifest this update: Wed 05 Nov 2025 03:34:46 +0000 Manifest next update: Wed 12 Nov 2025 03:34:46 +0000 Files and hashes: 1: TnVPewjIAAZ84HEJetOUaJDao2U.crl (hash: Un8/fo0Unz604/SYptqrYDL1bsnCSmczlQ/vvZEZXSg=) 2: D875D57EF30611EEAFFC0C66C4F9AE02.roa (hash: qatvyS4SyJTNURVM2FsClClDPfP+4FEBMIeJZ8wIqMA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F4B3F/1CDF87E4516011EEB0A5826AC4F9AE02/TnVPewjIAAZ84HEJetOUaJDao2U.crl rsync://rpki.apnic.net/member_repository/A91F4B3F/1CDF87E4516011EEB0A5826AC4F9AE02/TnVPewjIAAZ84HEJetOUaJDao2U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TnVPewjIAAZ84HEJetOUaJDao2U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 03:34:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 408 (0x198) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F4B3F, serialNumber=4E754F7B08C800067CE071097AD3946890DAA365 Validity Not Before: Nov 5 03:34:46 2025 GMT Not After : Nov 12 03:34:46 2025 GMT Subject: CN=690ac5d7-2c1a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:a3:a6:3f:0f:73:2b:59:f8:df:29:5c:8a:bf: 5d:dc:79:fa:73:7d:0d:97:a3:a8:32:f4:6a:ae:76: a2:5f:5c:02:10:e0:9e:b3:9e:0e:74:b7:8d:cc:cf: b8:ec:51:e8:9b:00:29:0c:11:81:54:08:2a:b3:af: d9:47:a3:e8:32:f2:19:e1:a7:7c:8b:11:c6:c4:3e: ac:89:40:95:4b:16:38:4e:0b:3d:b9:7b:8f:ae:9c: 0e:70:1d:2e:88:fe:45:04:91:a6:19:ac:f3:b6:d4: 44:18:64:8e:7e:b3:b2:64:02:29:3e:3d:a7:a2:c5: 16:9b:76:cf:de:70:ad:f2:39:f4:13:bb:4c:6a:02: 05:88:51:3a:3d:ad:3b:5f:9d:bc:7f:bb:a6:84:5a: 56:22:60:cc:fa:15:ce:2b:53:1c:49:de:cd:cf:3b: e6:e9:5d:e2:43:bc:62:d2:8b:bc:a5:04:3e:4c:43: a6:4a:b1:dd:4b:a4:6e:7f:de:8b:b5:8f:ce:82:8d: 75:62:b0:d7:6b:24:c6:c1:48:e3:34:49:18:26:87: 35:03:71:05:3c:2e:bc:11:4c:6c:00:9a:a8:28:1c: 49:df:a6:80:99:68:17:a1:6a:3e:6e:07:70:7f:36: f1:30:91:01:02:58:60:84:36:78:e6:b1:4e:77:02: 5d:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:3D:C5:53:B2:42:AF:50:02:C1:BC:5E:EB:A3:6A:06:59:A4:EF:B3 X509v3 Authority Key Identifier: keyid:4E:75:4F:7B:08:C8:00:06:7C:E0:71:09:7A:D3:94:68:90:DA:A3:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F4B3F/1CDF87E4516011EEB0A5826AC4F9AE02/TnVPewjIAAZ84HEJetOUaJDao2U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TnVPewjIAAZ84HEJetOUaJDao2U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F4B3F/1CDF87E4516011EEB0A5826AC4F9AE02/TnVPewjIAAZ84HEJetOUaJDao2U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 83:d1:ba:63:a8:a0:bd:db:e5:9c:42:3d:99:76:8f:8a:a8:1d: 0c:7e:a3:11:63:c6:34:87:10:aa:d8:72:6c:2c:ee:e6:a8:6b: ba:d0:81:f6:2e:42:bd:7c:47:79:fb:dd:c9:01:63:d1:f6:3c: 60:64:bb:3f:b6:48:a1:32:ec:2c:d7:0a:57:cf:be:33:48:9b: 62:a6:58:b6:bc:e5:c4:bf:02:c8:e3:94:66:4c:93:38:6b:7a: d8:0d:7f:e2:ef:72:bd:96:26:16:2c:bc:78:12:1b:35:19:c0: 59:a5:7e:f3:e6:a8:6f:85:0b:7c:77:22:2f:86:0d:5e:97:46: aa:03:be:ff:1f:bd:ff:05:16:64:1e:83:e2:ce:47:9b:0f:cb: e1:d7:f8:45:35:8d:92:23:4e:33:eb:e2:5b:2b:6e:fa:8e:99: 51:1a:6d:3c:0f:dd:64:7f:60:28:fd:7d:63:ae:0f:c4:34:74: 7d:97:3c:f9:11:be:a5:63:8e:23:c2:6a:df:f5:c9:a0:4b:db: 87:be:a6:a4:20:f5:73:f1:32:02:2f:e1:1b:2f:2b:84:bc:e2: ea:1f:87:33:f8:ec:83:e8:8e:47:2b:90:43:08:97:6e:3c:a1: 90:96:69:f6:32:64:bf:60:ce:ff:71:06:90:a6:44:d1:95:ec: 8f:c6:71:b7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjRCM0YxMTAvBgNVBAUTKDRFNzU0RjdCMDhDODAwMDY3Q0UwNzEwOTdBRDM5NDY4 OTBEQUEzNjUwHhcNMjUxMTA1MDMzNDQ2WhcNMjUxMTEyMDMzNDQ2WjAYMRYwFAYD VQQDEw02OTBhYzVkNy0yYzFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu6OmPw9zK1n43ylcir9d3Hn6c30Nl6OoMvRqrnaiX1wCEOCes54OdLeNzM+4 7FHomwApDBGBVAgqs6/ZR6PoMvIZ4ad8ixHGxD6siUCVSxY4Tgs9uXuPrpwOcB0u iP5FBJGmGazzttREGGSOfrOyZAIpPj2nosUWm3bP3nCt8jn0E7tMagIFiFE6Pa07 X528f7umhFpWImDM+hXOK1McSd7Nzzvm6V3iQ7xi0ou8pQQ+TEOmSrHdS6Ruf96L tY/Ogo11YrDXayTGwUjjNEkYJoc1A3EFPC68EUxsAJqoKBxJ36aAmWgXoWo+bgdw fzbxMJEBAlhghDZ45rFOdwJd6wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCg9xVOy Qq9QAsG8XuujagZZpO+zMB8GA1UdIwQYMBaAFE51T3sIyAAGfOBxCXrTlGiQ2qNl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNEIzRi8xQ0RGODdFNDUx NjAxMUVFQjBBNTgyNkFDNEY5QUUwMi9UblZQZXdqSUFBWjg0SEVKZXRPVWFKRGFv MlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RuVlBld2pJQUFaODRIRUpldE9VYUpEYW8yVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NEIzRi8xQ0RGODdFNDUxNjAxMUVFQjBBNTgyNkFDNEY5QUUwMi9UblZQZXdqSUFB Wjg0SEVKZXRPVWFKRGFvMlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCD0bpjqKC92+WcQj2Zdo+KqB0MfqMRY8Y0hxCq2HJsLO7mqGu60IH2 LkK9fEd5+93JAWPR9jxgZLs/tkihMuws1wpXz74zSJtipli2vOXEvwLI45RmTJM4 a3rYDX/i73K9liYWLLx4Ehs1GcBZpX7z5qhvhQt8dyIvhg1el0aqA77/H73/BRZk HoPizkebD8vh1/hFNY2SI04z6+JbK276jplRGm08D91kf2Ao/X1jrg/ENHR9lzz5 Eb6lY44jwmrf9cmgS9uHvqakIPVz8TICL+EbLyuEvOLqH4cz+OyD6I5HK5BDCJdu PKGQlmn2MmS/YM7/cQaQpkTRleyPxnG3 -----END CERTIFICATE-----Generated at Wed Nov 5 20:55:04 2025 by rpki-client