$ rpki-client -vvf rpki.apnic.net/member_repository/A91116C7/C856D6C4C6C611E882A41260C4F9AE02/tnwkXksr7q0jwfBd0w_5B32HuOY.mft File: tnwkXksr7q0jwfBd0w_5B32HuOY.mft (raw, json) Hash identifier: tFn1mEJAtW0TaEG5VYemctZNk3WjWazhBrvIGksfyzw= Subject key identifier: 46:43:4E:CE:F6:9C:7C:9B:02:EC:13:AF:8A:D6:9D:54:1E:EA:FF:00 Authority key identifier: B6:7C:24:5E:4B:2B:EE:AD:23:C1:F0:5D:D3:0F:F9:07:7D:87:B8:E6 Certificate issuer: /CN=A91116C7/serialNumber=B67C245E4B2BEEAD23C1F05DD30FF9077D87B8E6 Certificate serial: 12EC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tnwkXksr7q0jwfBd0w_5B32HuOY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91116C7/C856D6C4C6C611E882A41260C4F9AE02/tnwkXksr7q0jwfBd0w_5B32HuOY.mft Manifest number: 12E4 Signing time: Sun 02 Nov 2025 17:02:35 +0000 Manifest this update: Sun 02 Nov 2025 17:02:34 +0000 Manifest next update: Sun 09 Nov 2025 17:02:34 +0000 Files and hashes: 1: tnwkXksr7q0jwfBd0w_5B32HuOY.crl (hash: Yj+zhh/0iid+SytKuog8nM1s8ujWYRIcEy2mxDp8XN4=) 2: 0CAF01A6C6C811E8AECD6165C4F9AE02.roa (hash: OXXzoi8LLX55gX/DfWbkzrbLh+Han7QgMUGkYSwbpGo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91116C7/C856D6C4C6C611E882A41260C4F9AE02/tnwkXksr7q0jwfBd0w_5B32HuOY.crl rsync://rpki.apnic.net/member_repository/A91116C7/C856D6C4C6C611E882A41260C4F9AE02/tnwkXksr7q0jwfBd0w_5B32HuOY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tnwkXksr7q0jwfBd0w_5B32HuOY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 17:02:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4844 (0x12ec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91116C7, serialNumber=B67C245E4B2BEEAD23C1F05DD30FF9077D87B8E6 Validity Not Before: Nov 2 17:02:34 2025 GMT Not After : Nov 9 17:02:34 2025 GMT Subject: CN=69078eab-ed25 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:73:01:1c:fb:5d:70:6f:58:f0:ef:03:40:3a: 21:03:e5:e8:86:95:b8:9d:53:e8:ab:a0:8b:af:1c: 4b:94:89:6e:a3:c6:f7:e7:59:84:33:8d:04:9d:4e: ca:e2:ef:fc:d7:a4:75:37:ad:26:ba:e9:86:e0:54: bc:e0:e9:d5:4f:f6:c5:9c:2d:00:db:62:54:d1:5c: cb:05:b4:4f:f8:27:93:e1:6e:e0:eb:26:79:ec:bb: 78:18:d0:dd:27:11:16:4a:00:f6:af:62:ec:46:37: a1:cb:d6:fe:e3:38:74:d1:96:10:04:f2:f1:f0:41: 77:c3:63:11:cd:b0:87:76:90:c8:9b:28:67:82:2d: 61:7a:3b:4a:ee:8f:34:cc:9d:12:85:10:c6:dd:b6: c6:0d:c5:6f:0b:af:80:ca:d3:4b:4b:1a:13:93:33: ed:95:0d:7b:e8:ac:54:5d:26:01:82:30:7f:fd:e7: bc:cd:d0:e5:74:7b:75:2e:42:5e:aa:0a:f4:62:24: 1b:ae:da:51:64:a2:fd:88:a3:ce:b5:0a:c6:cd:fa: c2:62:2d:a3:39:f3:33:a5:77:4d:70:82:a5:fe:d7: 3f:60:51:60:ea:72:3e:3d:bb:fd:27:57:6e:82:5c: 95:71:da:97:90:1e:cb:fd:65:63:ce:37:be:26:29: 9c:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:43:4E:CE:F6:9C:7C:9B:02:EC:13:AF:8A:D6:9D:54:1E:EA:FF:00 X509v3 Authority Key Identifier: keyid:B6:7C:24:5E:4B:2B:EE:AD:23:C1:F0:5D:D3:0F:F9:07:7D:87:B8:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91116C7/C856D6C4C6C611E882A41260C4F9AE02/tnwkXksr7q0jwfBd0w_5B32HuOY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tnwkXksr7q0jwfBd0w_5B32HuOY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91116C7/C856D6C4C6C611E882A41260C4F9AE02/tnwkXksr7q0jwfBd0w_5B32HuOY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b9:1c:99:72:5a:1c:f3:d1:f4:72:24:7f:f3:d4:0a:48:c5:ee: ab:09:d0:32:a9:b3:a3:67:60:68:02:76:59:24:e9:66:7d:89: e1:c7:41:a7:ae:da:79:d3:01:08:56:92:93:f1:7c:18:c9:9e: f8:e1:a1:a4:f2:23:cf:2e:c9:63:4a:1a:ed:13:08:5b:29:4b: 96:5a:fb:12:2f:a1:36:dc:49:6d:02:41:7a:09:1c:04:57:30: fb:63:97:bb:96:81:9a:d1:7f:9f:35:cc:bc:64:c1:76:44:a0: 79:b0:7e:bb:12:4f:3b:d8:11:6b:f0:c4:ad:d2:fa:0a:8a:24: 82:37:d7:fd:c8:23:b4:12:43:58:75:27:11:27:f6:ae:0a:86: 0b:ba:54:c1:cc:b8:f9:37:99:24:69:84:eb:09:59:4a:2a:1e: 6f:ac:de:e6:1a:90:dd:4b:9a:ee:a7:54:1d:33:17:02:c8:8b: 71:35:f0:99:f3:79:79:e3:d8:bf:f0:99:cf:80:59:00:0d:33: 6d:4d:f6:3f:c5:2f:fc:3c:b9:c2:bc:b4:29:54:4b:7b:b5:52: 65:38:c9:7d:20:59:03:43:d9:f2:1e:71:9f:67:42:bd:00:b6: d3:2d:04:aa:3d:16:7b:f1:25:c2:97:fe:bb:c3:98:b6:e6:d0: 00:71:d3:9e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEuwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTE2QzcxMTAvBgNVBAUTKEI2N0MyNDVFNEIyQkVFQUQyM0MxRjA1REQzMEZGOTA3 N0Q4N0I4RTYwHhcNMjUxMTAyMTcwMjM0WhcNMjUxMTA5MTcwMjM0WjAYMRYwFAYD VQQDEw02OTA3OGVhYi1lZDI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu3MBHPtdcG9Y8O8DQDohA+XohpW4nVPoq6CLrxxLlIluo8b351mEM40EnU7K 4u/816R1N60muumG4FS84OnVT/bFnC0A22JU0VzLBbRP+CeT4W7g6yZ57Lt4GNDd JxEWSgD2r2LsRjehy9b+4zh00ZYQBPLx8EF3w2MRzbCHdpDImyhngi1hejtK7o80 zJ0ShRDG3bbGDcVvC6+AytNLSxoTkzPtlQ176KxUXSYBgjB//ee8zdDldHt1LkJe qgr0YiQbrtpRZKL9iKPOtQrGzfrCYi2jOfMzpXdNcIKl/tc/YFFg6nI+Pbv9J1du glyVcdqXkB7L/WVjzje+JimctwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEZDTs72 nHybAuwTr4rWnVQe6v8AMB8GA1UdIwQYMBaAFLZ8JF5LK+6tI8HwXdMP+Qd9h7jm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMTZDNy9DODU2RDZDNEM2 QzYxMUU4ODJBNDEyNjBDNEY5QUUwMi90bndrWGtzcjdxMGp3ZkJkMHdfNUIzMkh1 T1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Rud2tYa3NyN3EwandmQmQwd181QjMySHVPWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MTZDNy9DODU2RDZDNEM2QzYxMUU4ODJBNDEyNjBDNEY5QUUwMi90bndrWGtzcjdx MGp3ZkJkMHdfNUIzMkh1T1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC5HJlyWhzz0fRyJH/z1ApIxe6rCdAyqbOjZ2BoAnZZJOlmfYnhx0Gn rtp50wEIVpKT8XwYyZ744aGk8iPPLsljShrtEwhbKUuWWvsSL6E23EltAkF6CRwE VzD7Y5e7loGa0X+fNcy8ZMF2RKB5sH67Ek872BFr8MSt0voKiiSCN9f9yCO0EkNY dScRJ/auCoYLulTBzLj5N5kkaYTrCVlKKh5vrN7mGpDdS5rup1QdMxcCyItxNfCZ 83l549i/8JnPgFkADTNtTfY/xS/8PLnCvLQpVEt7tVJlOMl9IFkDQ9nyHnGfZ0K9 ALbTLQSqPRZ78SXCl/67w5i25tAAcdOe -----END CERTIFICATE-----Generated at Mon Nov 3 18:11:04 2025 by rpki-client