$ rpki-client -vvf rpki.apnic.net/member_repository/A91515BC/164D92B2C47111EDA9C5CB60C4F9AE02/TKiQNnsepJ68-UAshiANzXRGtsA.mft File: TKiQNnsepJ68-UAshiANzXRGtsA.mft (raw, json) Hash identifier: zDDIEENofO9069QDjGJlh3D5XjVAFAkDIMQtWxorD+g= Subject key identifier: 9A:3E:B9:FF:24:12:A5:D5:02:72:BC:84:BE:79:33:B9:6C:32:FF:31 Authority key identifier: 4C:A8:90:36:7B:1E:A4:9E:BC:F9:40:2C:86:20:0D:CD:74:46:B6:C0 Certificate issuer: /CN=A91515BC/serialNumber=4CA890367B1EA49EBCF9402C86200DCD7446B6C0 Certificate serial: 01EF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TKiQNnsepJ68-UAshiANzXRGtsA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91515BC/164D92B2C47111EDA9C5CB60C4F9AE02/TKiQNnsepJ68-UAshiANzXRGtsA.mft Manifest number: 01EC Signing time: Mon 03 Nov 2025 02:32:14 +0000 Manifest this update: Mon 03 Nov 2025 02:32:13 +0000 Manifest next update: Mon 10 Nov 2025 02:32:13 +0000 Files and hashes: 1: TKiQNnsepJ68-UAshiANzXRGtsA.crl (hash: yEzTtPfv3jNnTnnJkMRwAOZ96lq/aX+adjNh6H0q4bo=) 2: A87AAC50C47711EDA3EF8884C4F9AE02.roa (hash: qChpEQLnwvQfQt0g6Fvv38do/llT7ziZs8Oh2reiHWU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91515BC/164D92B2C47111EDA9C5CB60C4F9AE02/TKiQNnsepJ68-UAshiANzXRGtsA.crl rsync://rpki.apnic.net/member_repository/A91515BC/164D92B2C47111EDA9C5CB60C4F9AE02/TKiQNnsepJ68-UAshiANzXRGtsA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TKiQNnsepJ68-UAshiANzXRGtsA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 02:32:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 495 (0x1ef) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91515BC, serialNumber=4CA890367B1EA49EBCF9402C86200DCD7446B6C0 Validity Not Before: Nov 3 02:32:13 2025 GMT Not After : Nov 10 02:32:13 2025 GMT Subject: CN=6908142d-db1e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:1f:14:8f:ca:69:40:6c:fe:9e:bd:68:00:c7: 6b:41:cc:80:d0:c0:cf:a9:f7:ea:54:91:0d:0c:6e: 94:03:0a:3d:11:77:76:1d:55:2d:32:2f:5f:32:bf: b2:1a:8c:2d:97:0f:57:a6:34:3b:ce:71:c1:ff:10: 7a:a1:bd:a9:2f:c3:e3:b6:26:49:41:ae:aa:d0:a4: 7f:4d:2b:8a:4f:20:4f:54:d4:86:ed:4e:25:e8:d3: 45:07:31:90:c8:da:22:ce:41:6f:04:24:6c:d2:b5: 82:b6:3f:59:fd:e9:52:ae:53:a4:e3:23:24:04:00: 22:57:4a:b3:2e:fe:47:6b:cd:de:53:50:d2:11:0f: b9:0a:fc:b1:bb:27:58:a8:12:86:94:f5:7f:8b:eb: 4f:19:fc:fe:dc:aa:c3:55:fc:ba:ff:53:5f:73:31: 08:c6:02:7c:35:91:65:c9:33:59:51:04:25:84:b9: fc:ff:ad:5f:d2:85:de:07:01:2a:3e:07:83:4f:c8: 85:56:4b:9d:73:04:51:c9:a0:96:c0:20:7c:60:f9: ab:38:fe:69:84:ff:02:bf:fd:55:a8:57:b7:47:d6: c3:db:db:20:63:5d:d7:ce:08:25:58:9b:1c:4a:e7: 7d:8e:a0:48:9d:5e:27:4c:f3:5d:a9:31:65:13:56: c4:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:3E:B9:FF:24:12:A5:D5:02:72:BC:84:BE:79:33:B9:6C:32:FF:31 X509v3 Authority Key Identifier: keyid:4C:A8:90:36:7B:1E:A4:9E:BC:F9:40:2C:86:20:0D:CD:74:46:B6:C0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91515BC/164D92B2C47111EDA9C5CB60C4F9AE02/TKiQNnsepJ68-UAshiANzXRGtsA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TKiQNnsepJ68-UAshiANzXRGtsA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91515BC/164D92B2C47111EDA9C5CB60C4F9AE02/TKiQNnsepJ68-UAshiANzXRGtsA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 54:55:f5:1a:39:4a:cc:dc:d6:07:04:bd:87:2a:92:3b:d7:06: bd:c9:b1:dc:0d:2a:5b:2b:94:ed:45:b2:c0:fc:6e:b1:4c:a0: 1b:74:48:7a:27:22:a8:74:aa:ec:d0:7a:50:a0:8e:8f:93:ba: ae:0e:96:f6:6b:7f:41:0c:04:6f:a0:74:20:54:f7:b4:6f:3d: 63:e5:7d:87:df:a6:e1:7c:40:4f:36:15:0e:4f:5a:f0:29:6b: bc:b5:e1:50:61:34:59:1c:bf:98:a9:6c:72:f1:39:4a:4d:72: 16:61:8a:98:e9:26:ef:e0:42:19:79:d8:b5:fe:33:57:be:2b: e0:a9:67:87:31:81:6f:0e:15:f3:0f:4b:0a:40:e6:97:0b:45: a3:73:a4:0b:55:5b:d0:90:ef:d9:77:49:7c:ad:98:83:d9:0f: 2c:76:e8:da:35:7b:c0:e1:44:78:af:ff:48:de:2e:34:6a:d3: 40:d3:64:01:a7:fd:06:0f:cf:b5:d8:ac:de:00:2a:ce:33:ba: b8:b2:23:fc:ae:20:ea:da:42:6a:02:c2:73:c3:23:c2:6b:8b: 66:ee:20:61:0d:e6:52:51:f8:3d:03:c0:09:36:f1:8a:47:5a: f5:5d:84:88:43:25:49:67:ca:c8:c7:0d:0c:99:c0:74:8b:d3: e2:26:77:08 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAe8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTE1QkMxMTAvBgNVBAUTKDRDQTg5MDM2N0IxRUE0OUVCQ0Y5NDAyQzg2MjAwRENE NzQ0NkI2QzAwHhcNMjUxMTAzMDIzMjEzWhcNMjUxMTEwMDIzMjEzWjAYMRYwFAYD VQQDEw02OTA4MTQyZC1kYjFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyh8Uj8ppQGz+nr1oAMdrQcyA0MDPqffqVJENDG6UAwo9EXd2HVUtMi9fMr+y Gowtlw9XpjQ7znHB/xB6ob2pL8PjtiZJQa6q0KR/TSuKTyBPVNSG7U4l6NNFBzGQ yNoizkFvBCRs0rWCtj9Z/elSrlOk4yMkBAAiV0qzLv5Ha83eU1DSEQ+5CvyxuydY qBKGlPV/i+tPGfz+3KrDVfy6/1NfczEIxgJ8NZFlyTNZUQQlhLn8/61f0oXeBwEq PgeDT8iFVkudcwRRyaCWwCB8YPmrOP5phP8Cv/1VqFe3R9bD29sgY13XzgglWJsc Sud9jqBInV4nTPNdqTFlE1bE5wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJo+uf8k EqXVAnK8hL55M7lsMv8xMB8GA1UdIwQYMBaAFEyokDZ7HqSevPlALIYgDc10RrbA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MTVCQy8xNjREOTJCMkM0 NzExMUVEQTlDNUNCNjBDNEY5QUUwMi9US2lRTm5zZXBKNjgtVUFzaGlBTnpYUkd0 c0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RLaVFObnNlcEo2OC1VQXNoaUFOelhSR3RzQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MTVCQy8xNjREOTJCMkM0NzExMUVEQTlDNUNCNjBDNEY5QUUwMi9US2lRTm5zZXBK NjgtVUFzaGlBTnpYUkd0c0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBUVfUaOUrM3NYHBL2HKpI71wa9ybHcDSpbK5TtRbLA/G6xTKAbdEh6 JyKodKrs0HpQoI6Pk7quDpb2a39BDARvoHQgVPe0bz1j5X2H36bhfEBPNhUOT1rw KWu8teFQYTRZHL+YqWxy8TlKTXIWYYqY6Sbv4EIZedi1/jNXvivgqWeHMYFvDhXz D0sKQOaXC0Wjc6QLVVvQkO/Zd0l8rZiD2Q8sdujaNXvA4UR4r/9I3i40atNA02QB p/0GD8+12KzeACrOM7q4siP8riDq2kJqAsJzwyPCa4tm7iBhDeZSUfg9A8AJNvGK R1r1XYSIQyVJZ8rIxw0MmcB0i9PiJncI -----END CERTIFICATE-----Generated at Tue Nov 4 08:31:16 2025 by rpki-client