$ rpki-client -vvf rpki.apnic.net/member_repository/A914D271/2814F0DE11B111EE9047BF18C4F9AE02/TO7ubTZjwT_YLpMdrGnxcEb8mbM.mft File: TO7ubTZjwT_YLpMdrGnxcEb8mbM.mft (raw, json) Hash identifier: cLIoxSZj7cFitFZWOuAEfk9hDdTs8uDpfV9y97FWqlQ= Subject key identifier: 2C:4E:B7:FC:DE:B2:11:48:CC:3A:1F:6B:18:B3:67:91:D1:F6:23:10 Authority key identifier: 4C:EE:EE:6D:36:63:C1:3F:D8:2E:93:1D:AC:69:F1:70:46:FC:99:B3 Certificate issuer: /CN=A914D271/serialNumber=4CEEEE6D3663C13FD82E931DAC69F17046FC99B3 Certificate serial: 01C1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TO7ubTZjwT_YLpMdrGnxcEb8mbM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914D271/2814F0DE11B111EE9047BF18C4F9AE02/TO7ubTZjwT_YLpMdrGnxcEb8mbM.mft Manifest number: 01BD Signing time: Wed 05 Nov 2025 03:09:23 +0000 Manifest this update: Wed 05 Nov 2025 03:09:22 +0000 Manifest next update: Wed 12 Nov 2025 03:09:22 +0000 Files and hashes: 1: TO7ubTZjwT_YLpMdrGnxcEb8mbM.crl (hash: lyqNqh5QNX52T8EAAl5fK6d7PsaGUI6GfKXFAXCL99Q=) 2: 5EAB725014A211EEA889E832C4F9AE02.roa (hash: mX0oS42d4Afnuz1c6BL0lN1MWESAc87z/AqUedcAt4c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914D271/2814F0DE11B111EE9047BF18C4F9AE02/TO7ubTZjwT_YLpMdrGnxcEb8mbM.crl rsync://rpki.apnic.net/member_repository/A914D271/2814F0DE11B111EE9047BF18C4F9AE02/TO7ubTZjwT_YLpMdrGnxcEb8mbM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TO7ubTZjwT_YLpMdrGnxcEb8mbM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 03:09:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 449 (0x1c1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914D271, serialNumber=4CEEEE6D3663C13FD82E931DAC69F17046FC99B3 Validity Not Before: Nov 5 03:09:22 2025 GMT Not After : Nov 12 03:09:22 2025 GMT Subject: CN=690abfe3-0d30 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:e9:98:fd:fb:3d:e4:f8:8e:b4:1b:e6:d6:de: b6:f2:5b:04:74:a7:8d:97:22:cc:b2:0c:cf:f2:86: 90:0b:93:40:87:fc:8e:51:4d:c5:30:13:0e:6f:2f: f9:f2:c0:a4:fa:e4:c6:ee:83:17:d5:f8:48:0e:e7: 72:c2:7c:92:5f:45:c5:bd:69:fa:f5:16:8a:6d:42: 3f:11:00:18:ba:a9:cf:c7:83:9a:cb:a5:41:c3:bf: eb:aa:cc:13:bd:00:38:f5:67:65:f8:e8:24:2c:4a: f4:e7:ba:91:88:ce:b4:07:5d:2c:b3:ca:90:61:9a: fe:64:c2:b3:b8:ac:b9:1e:e5:81:1b:7c:da:1d:7d: 49:30:21:f4:2c:69:4c:21:93:ea:f6:9e:22:76:37: 5a:d6:64:2c:8a:7d:c3:7e:54:d4:ec:99:1f:ec:46: 22:db:5e:65:17:06:37:ce:2b:9c:c1:28:b9:26:83: 24:e3:52:ed:c9:07:a4:13:b1:be:78:3b:a5:b2:fb: ab:51:a6:96:a2:28:57:4d:2b:cb:9a:33:d0:60:0a: c9:ca:c5:4a:85:fa:77:d3:84:0a:a9:bb:76:8b:8d: 9e:dd:f9:e6:d8:c3:ee:8f:ab:ca:6b:fb:2c:5f:a7: 1d:b1:81:ab:d5:f7:5f:40:92:9b:8a:5b:d1:a7:73: 8a:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:4E:B7:FC:DE:B2:11:48:CC:3A:1F:6B:18:B3:67:91:D1:F6:23:10 X509v3 Authority Key Identifier: keyid:4C:EE:EE:6D:36:63:C1:3F:D8:2E:93:1D:AC:69:F1:70:46:FC:99:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914D271/2814F0DE11B111EE9047BF18C4F9AE02/TO7ubTZjwT_YLpMdrGnxcEb8mbM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TO7ubTZjwT_YLpMdrGnxcEb8mbM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914D271/2814F0DE11B111EE9047BF18C4F9AE02/TO7ubTZjwT_YLpMdrGnxcEb8mbM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 06:85:1e:5a:ac:82:06:56:95:86:57:f1:de:ed:05:d6:38:10: e5:16:88:2c:11:3e:13:1b:1d:58:8a:0d:e4:90:b9:91:a5:66: dc:1b:f6:fb:93:fe:d6:11:5c:96:ab:99:dc:74:c4:53:aa:e7: 46:cb:6c:3b:40:64:d3:d1:3e:31:ce:3b:90:18:f8:dc:e3:ee: c4:f4:b4:24:55:32:89:48:2c:85:5d:e3:a1:71:44:e8:37:9e: 29:ab:fd:36:e5:6e:85:98:a4:4e:91:da:4b:37:9d:16:83:cd: 1e:ff:56:23:ef:ad:fa:38:2a:2c:53:9a:5c:5c:66:49:30:97: 07:b5:8f:fc:67:ab:03:83:77:46:7b:cc:79:c8:46:6a:fe:e6: 06:58:76:a6:39:23:b9:39:8b:8c:d5:95:20:e7:ce:a0:72:94: 4f:81:6b:fe:21:6f:ab:69:1a:74:39:5a:e5:b2:69:5a:ad:d2: f0:36:2e:5e:45:c9:c2:18:64:1e:a3:c0:42:c4:70:a7:2c:30: b6:b0:f8:04:87:ec:25:50:e4:74:4d:05:aa:21:8f:e1:cb:3f: 2f:8a:04:7e:96:74:1d:e5:0d:14:3c:e5:f2:6a:63:fc:47:3d: 3a:46:c1:5e:4c:ef:f6:ae:6c:a6:7b:e3:d8:87:6f:15:5e:4c: f6:9b:43:64 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAcEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEQyNzExMTAvBgNVBAUTKDRDRUVFRTZEMzY2M0MxM0ZEODJFOTMxREFDNjlGMTcw NDZGQzk5QjMwHhcNMjUxMTA1MDMwOTIyWhcNMjUxMTEyMDMwOTIyWjAYMRYwFAYD VQQDEw02OTBhYmZlMy0wZDMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwOmY/fs95PiOtBvm1t628lsEdKeNlyLMsgzP8oaQC5NAh/yOUU3FMBMOby/5 8sCk+uTG7oMX1fhIDudywnySX0XFvWn69RaKbUI/EQAYuqnPx4Oay6VBw7/rqswT vQA49Wdl+OgkLEr057qRiM60B10ss8qQYZr+ZMKzuKy5HuWBG3zaHX1JMCH0LGlM IZPq9p4idjda1mQsin3DflTU7Jkf7EYi215lFwY3ziucwSi5JoMk41LtyQekE7G+ eDulsvurUaaWoihXTSvLmjPQYArJysVKhfp304QKqbt2i42e3fnm2MPuj6vKa/ss X6cdsYGr1fdfQJKbilvRp3OKEQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCxOt/ze shFIzDofaxizZ5HR9iMQMB8GA1UdIwQYMBaAFEzu7m02Y8E/2C6THaxp8XBG/Jmz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RDI3MS8yODE0RjBERTEx QjExMUVFOTA0N0JGMThDNEY5QUUwMi9UTzd1YlRaandUX1lMcE1kckdueGNFYjht Yk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RPN3ViVFpqd1RfWUxwTWRyR254Y0ViOG1iTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RDI3MS8yODE0RjBERTExQjExMUVFOTA0N0JGMThDNEY5QUUwMi9UTzd1YlRaandU X1lMcE1kckdueGNFYjhtYk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAGhR5arIIGVpWGV/He7QXWOBDlFogsET4TGx1Yig3kkLmRpWbcG/b7 k/7WEVyWq5ncdMRTqudGy2w7QGTT0T4xzjuQGPjc4+7E9LQkVTKJSCyFXeOhcUTo N54pq/025W6FmKROkdpLN50Wg80e/1Yj7636OCosU5pcXGZJMJcHtY/8Z6sDg3dG e8x5yEZq/uYGWHamOSO5OYuM1ZUg586gcpRPgWv+IW+raRp0OVrlsmlardLwNi5e RcnCGGQeo8BCxHCnLDC2sPgEh+wlUOR0TQWqIY/hyz8vigR+lnQd5Q0UPOXyamP8 Rz06RsFeTO/2rmyme+PYh28VXkz2m0Nk -----END CERTIFICATE-----Generated at Wed Nov 5 08:10:30 2025 by rpki-client