$ rpki-client -vvf rpki.apnic.net/member_repository/A91466E8/D8388D34F3FC11EF926CE630C4F9AE02/TCISGt-uP1dSgBZRUcP9MOOq_QE.mft File: TCISGt-uP1dSgBZRUcP9MOOq_QE.mft (raw, json) Hash identifier: fbjABzLDwCcqdWHlSSqiNzhN9XQ2NnQQ49Mk39IW+NY= Subject key identifier: F8:64:2E:64:25:F4:66:93:A4:91:27:95:03:29:65:D1:3F:ED:65:E4 Authority key identifier: 4C:22:12:1A:DF:AE:3F:57:52:80:16:51:51:C3:FD:30:E3:AA:FD:01 Certificate issuer: /CN=A91466E8/serialNumber=4C22121ADFAE3F575280165151C3FD30E3AAFD01 Certificate serial: 88 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TCISGt-uP1dSgBZRUcP9MOOq_QE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91466E8/D8388D34F3FC11EF926CE630C4F9AE02/TCISGt-uP1dSgBZRUcP9MOOq_QE.mft Manifest number: 84 Signing time: Mon 03 Nov 2025 06:40:54 +0000 Manifest this update: Mon 03 Nov 2025 06:40:54 +0000 Manifest next update: Mon 10 Nov 2025 06:40:53 +0000 Files and hashes: 1: TCISGt-uP1dSgBZRUcP9MOOq_QE.crl (hash: HE6R7PG/YdMTl3gkIycnT/ecOkO+QVqtqc3cimBTzu0=) 2: 02640B0CF97911EF99F9BE80C4F9AE02.roa (hash: NYtoABq9iaZ7RDTNr8tHyhssdbHGRtrQu/5JhSbINm0=) 3: 67CB5FC0629411F0B7FA070FC4F9AE02.roa (hash: ezXoOJmaQ+T0/SBG+83qcx+7CgpMAs0wB76/qo16lME=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91466E8/D8388D34F3FC11EF926CE630C4F9AE02/TCISGt-uP1dSgBZRUcP9MOOq_QE.crl rsync://rpki.apnic.net/member_repository/A91466E8/D8388D34F3FC11EF926CE630C4F9AE02/TCISGt-uP1dSgBZRUcP9MOOq_QE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TCISGt-uP1dSgBZRUcP9MOOq_QE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 06:40:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 136 (0x88) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91466E8, serialNumber=4C22121ADFAE3F575280165151C3FD30E3AAFD01 Validity Not Before: Nov 3 06:40:54 2025 GMT Not After : Nov 10 06:40:53 2025 GMT Subject: CN=69084e76-ed3a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:14:c3:ea:7c:61:0f:68:8f:0e:ea:74:1b:0c: 87:70:ce:75:f9:79:e5:bc:fb:96:f6:28:ee:9c:43: 59:72:ea:8f:fa:4e:b4:7e:23:f3:3a:1e:32:11:5b: 81:5f:4a:41:8f:fa:31:fd:18:44:98:da:32:dd:d4: 02:1c:73:88:fe:65:c9:e6:cb:57:8e:a6:f8:68:0c: 44:fc:be:01:5d:da:5c:52:e2:84:bd:d0:b2:23:1b: ce:f2:12:65:13:08:9b:12:a9:e4:b3:60:28:4d:7c: da:44:30:63:09:61:43:4d:7d:bf:0c:36:ac:d8:c0: 86:17:2d:f3:1c:9f:0e:c6:91:9d:a3:9b:89:9e:e6: 3a:79:1a:37:c5:e2:b2:f9:d2:bc:f4:d1:66:ff:4b: 1a:b5:26:a0:92:a2:5d:81:b5:83:3d:01:5c:93:a1: 3b:02:54:4d:5a:78:d0:16:eb:85:fe:0b:be:26:17: e7:d9:a3:c2:77:2b:59:de:1b:e7:e7:3d:7a:82:fc: c5:e1:97:ae:98:c2:0c:37:a0:46:4f:49:20:c6:ef: 18:fe:eb:f2:3d:47:e7:d5:02:da:d1:d0:cd:64:dc: 0b:75:70:62:db:f8:47:7f:bf:a5:6b:1c:36:ea:2b: 50:79:d0:fd:fa:95:76:f9:b4:ae:c0:e5:7f:ad:cb: ed:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:64:2E:64:25:F4:66:93:A4:91:27:95:03:29:65:D1:3F:ED:65:E4 X509v3 Authority Key Identifier: keyid:4C:22:12:1A:DF:AE:3F:57:52:80:16:51:51:C3:FD:30:E3:AA:FD:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91466E8/D8388D34F3FC11EF926CE630C4F9AE02/TCISGt-uP1dSgBZRUcP9MOOq_QE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TCISGt-uP1dSgBZRUcP9MOOq_QE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91466E8/D8388D34F3FC11EF926CE630C4F9AE02/TCISGt-uP1dSgBZRUcP9MOOq_QE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 46:b5:f9:b1:da:63:00:06:e8:fb:a5:5d:77:91:ad:bc:39:42: b8:46:ac:eb:6f:7e:0e:76:69:30:b5:b1:7a:fc:a6:e5:67:d1: 94:8a:71:70:a0:2b:6e:50:b8:9d:fc:c1:d4:00:27:57:76:32: 06:bb:77:02:f3:4f:27:90:13:89:3f:6e:32:7e:b9:6f:46:c6: 68:c8:1d:4f:0e:5e:67:e9:0d:4e:14:31:fb:7c:e4:48:92:85: 59:51:63:e4:b5:15:9a:f2:fb:a8:6d:c4:ab:90:bd:c2:a2:f5: 6d:b7:11:5a:33:6b:13:ed:de:d2:e4:5e:ef:06:8e:c6:be:94: 5b:f2:e7:4f:92:ae:f7:7a:a4:69:12:41:1f:f2:6b:65:28:b7: 20:21:d5:5d:51:db:b3:52:63:94:44:f5:ab:c1:d0:f5:96:be: 0d:0e:95:86:84:aa:dd:d1:bb:b2:49:70:07:e9:af:3a:73:77: 6e:7f:92:02:ae:90:5c:cd:48:00:17:1e:2a:f9:3d:5c:11:12: e0:c9:32:9f:10:d9:4c:07:c3:07:eb:46:ba:87:89:a3:46:8a: 2a:d1:38:19:5d:86:ee:b9:a8:59:98:24:e6:02:a7:12:1e:d1: 9a:94:15:a7:5f:cc:80:15:0c:fe:52:c0:d0:7a:ed:4c:8b:85: 88:3b:58:38 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDY2RTgxMTAvBgNVBAUTKDRDMjIxMjFBREZBRTNGNTc1MjgwMTY1MTUxQzNGRDMw RTNBQUZEMDEwHhcNMjUxMTAzMDY0MDU0WhcNMjUxMTEwMDY0MDUzWjAYMRYwFAYD VQQDEw02OTA4NGU3Ni1lZDNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3xTD6nxhD2iPDup0GwyHcM51+XnlvPuW9ijunENZcuqP+k60fiPzOh4yEVuB X0pBj/ox/RhEmNoy3dQCHHOI/mXJ5stXjqb4aAxE/L4BXdpcUuKEvdCyIxvO8hJl EwibEqnks2AoTXzaRDBjCWFDTX2/DDas2MCGFy3zHJ8OxpGdo5uJnuY6eRo3xeKy +dK89NFm/0satSagkqJdgbWDPQFck6E7AlRNWnjQFuuF/gu+Jhfn2aPCdytZ3hvn 5z16gvzF4ZeumMIMN6BGT0kgxu8Y/uvyPUfn1QLa0dDNZNwLdXBi2/hHf7+laxw2 6itQedD9+pV2+bSuwOV/rcvtnwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPhkLmQl 9GaTpJEnlQMpZdE/7WXkMB8GA1UdIwQYMBaAFEwiEhrfrj9XUoAWUVHD/TDjqv0B MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NjZFOC9EODM4OEQzNEYz RkMxMUVGOTI2Q0U2MzBDNEY5QUUwMi9UQ0lTR3QtdVAxZFNnQlpSVWNQOU1PT3Ff UUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RDSVNHdC11UDFkU2dCWlJVY1A5TU9PcV9RRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NjZFOC9EODM4OEQzNEYzRkMxMUVGOTI2Q0U2MzBDNEY5QUUwMi9UQ0lTR3QtdVAx ZFNnQlpSVWNQOU1PT3FfUUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBGtfmx2mMABuj7pV13ka28OUK4Rqzrb34OdmkwtbF6/KblZ9GUinFw oCtuULid/MHUACdXdjIGu3cC808nkBOJP24yfrlvRsZoyB1PDl5n6Q1OFDH7fORI koVZUWPktRWa8vuobcSrkL3CovVttxFaM2sT7d7S5F7vBo7GvpRb8udPkq73eqRp EkEf8mtlKLcgIdVdUduzUmOURPWrwdD1lr4NDpWGhKrd0buySXAH6a86c3duf5IC rpBczUgAFx4q+T1cERLgyTKfENlMB8MH60a6h4mjRooq0TgZXYbuuahZmCTmAqcS HtGalBWnX8yAFQz+UsDQeu1Mi4WIO1g4 -----END CERTIFICATE-----Generated at Mon Nov 3 18:19:54 2025 by rpki-client