$ rpki-client -vvf rpki.apnic.net/member_repository/A91698EC/3A8F8410214911EFBE88CF29C4F9AE02/TbOy41mbZG6fMK90pYxmePrx0rc.mft File: TbOy41mbZG6fMK90pYxmePrx0rc.mft (raw, json) Hash identifier: ZcU++VnA5tTf4Nt36KmBIJFR2FPAi6kDBo0qp+5Im7M= Subject key identifier: 65:1F:D9:42:D7:CE:33:7D:A0:75:B2:91:DA:50:84:5D:4C:69:39:9D Authority key identifier: 4D:B3:B2:E3:59:9B:64:6E:9F:30:AF:74:A5:8C:66:78:FA:F1:D2:B7 Certificate issuer: /CN=A91698EC/serialNumber=4DB3B2E3599B646E9F30AF74A58C6678FAF1D2B7 Certificate serial: 0113 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TbOy41mbZG6fMK90pYxmePrx0rc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91698EC/3A8F8410214911EFBE88CF29C4F9AE02/TbOy41mbZG6fMK90pYxmePrx0rc.mft Manifest number: 010E Signing time: Mon 03 Nov 2025 04:56:43 +0000 Manifest this update: Mon 03 Nov 2025 04:56:42 +0000 Manifest next update: Mon 10 Nov 2025 04:56:42 +0000 Files and hashes: 1: TbOy41mbZG6fMK90pYxmePrx0rc.crl (hash: aKsCOfh9wcxnCUQSipaP1iJ3AovjImN31XXMves35qk=) 2: 206DB948214F11EFAB245D49C4F9AE02.roa (hash: Eb8AfFxkY2lunIzmPfp9ZyHAYk+RBb0a8BG4v3YCxDc=) 3: F2A90F6A86AE11EF999DAD2FC4F9AE02.roa (hash: Bg47WQyQqPO6vhS9f39oGO32kv0x8D/332r6YxTMVPI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91698EC/3A8F8410214911EFBE88CF29C4F9AE02/TbOy41mbZG6fMK90pYxmePrx0rc.crl rsync://rpki.apnic.net/member_repository/A91698EC/3A8F8410214911EFBE88CF29C4F9AE02/TbOy41mbZG6fMK90pYxmePrx0rc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TbOy41mbZG6fMK90pYxmePrx0rc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 04:56:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 275 (0x113) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91698EC, serialNumber=4DB3B2E3599B646E9F30AF74A58C6678FAF1D2B7 Validity Not Before: Nov 3 04:56:42 2025 GMT Not After : Nov 10 04:56:42 2025 GMT Subject: CN=6908360a-4fcc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:5d:59:a9:c2:a2:50:99:e6:6c:ca:92:da:d7: c0:99:c2:24:29:7a:40:cd:50:9c:0a:ff:b6:ea:4e: d6:32:e2:84:58:d6:6e:ec:88:51:e0:44:72:1f:63: 17:a7:08:36:c0:fa:61:2f:df:8a:08:d7:9d:6d:21: 77:33:1c:5d:a2:4a:a4:a4:de:ed:79:d2:47:71:0f: 3b:9e:e9:93:13:17:76:b3:5c:ad:00:a4:76:0b:8f: c1:85:90:d7:5b:b0:c2:38:87:76:77:9d:94:9b:1a: c3:c5:bc:25:67:80:5e:e4:af:30:cf:07:65:51:49: 7f:1e:79:d2:88:95:f4:e1:f1:69:e1:b0:75:e0:95: 75:53:fd:0b:a8:6c:05:fc:92:91:60:fd:21:72:6f: 62:bf:26:a1:ce:f4:e3:8c:78:d3:53:39:ae:09:e4: 29:03:07:76:36:34:24:5c:56:d8:b4:24:fa:85:85: 44:ac:92:ac:0e:ff:a9:b9:1a:ab:bd:4a:1a:e9:98: 2d:a2:22:53:1b:f5:07:7b:da:39:26:77:60:a2:94: 92:c5:a2:d8:a5:33:63:c7:1e:0b:2f:3e:ab:27:02: 4b:a9:ee:53:77:60:bf:da:38:a8:6c:29:9a:5a:c0: 27:b5:51:fe:f5:b2:27:49:5c:e0:19:88:bf:25:e8: bd:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:1F:D9:42:D7:CE:33:7D:A0:75:B2:91:DA:50:84:5D:4C:69:39:9D X509v3 Authority Key Identifier: keyid:4D:B3:B2:E3:59:9B:64:6E:9F:30:AF:74:A5:8C:66:78:FA:F1:D2:B7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91698EC/3A8F8410214911EFBE88CF29C4F9AE02/TbOy41mbZG6fMK90pYxmePrx0rc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TbOy41mbZG6fMK90pYxmePrx0rc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91698EC/3A8F8410214911EFBE88CF29C4F9AE02/TbOy41mbZG6fMK90pYxmePrx0rc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6a:a3:4f:1d:bd:3d:5a:f0:6d:78:47:8c:e5:32:e6:98:ba:de: 88:7f:71:49:1e:c9:8e:22:a8:2d:72:56:6c:49:4b:a8:ac:99: 86:10:bb:ce:a3:1d:ef:6b:a1:4a:63:a0:e8:05:55:dd:dd:96: 76:8f:95:6f:09:c7:f0:59:68:27:04:ca:e0:46:63:59:1d:56: 5c:db:b3:bc:7b:6a:bc:34:a4:36:bf:e8:bc:b5:4b:2c:c0:73: da:49:99:02:82:43:f2:0f:87:bf:9e:d5:91:03:f7:c1:fb:57: d1:21:01:e5:2f:e1:34:5b:ea:35:d0:86:91:3a:f9:71:d2:02: f0:e7:66:9b:f3:14:a7:04:b4:7a:5b:a3:4e:04:1f:8d:0e:f4: 1e:70:1c:6f:c9:75:05:7a:d7:d0:af:e5:b6:10:ed:b5:95:a3: 2d:82:9f:26:e5:71:34:da:e2:83:66:b1:aa:37:0f:f1:68:84: 28:48:9e:b0:30:2f:74:61:b2:fe:bb:a2:c4:67:7c:af:c5:45: a0:24:07:ba:58:86:e2:79:64:ec:97:57:24:fd:a5:3c:1c:72: 77:7c:79:cb:1f:4d:79:7f:c5:5b:1d:21:69:1f:88:d3:e9:e5: e4:fe:f9:29:4b:fe:ba:f3:68:35:78:59:96:aa:eb:d8:75:30: 8a:da:98:48 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Njk4RUMxMTAvBgNVBAUTKDREQjNCMkUzNTk5QjY0NkU5RjMwQUY3NEE1OEM2Njc4 RkFGMUQyQjcwHhcNMjUxMTAzMDQ1NjQyWhcNMjUxMTEwMDQ1NjQyWjAYMRYwFAYD VQQDEw02OTA4MzYwYS00ZmNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA211ZqcKiUJnmbMqS2tfAmcIkKXpAzVCcCv+26k7WMuKEWNZu7IhR4ERyH2MX pwg2wPphL9+KCNedbSF3MxxdokqkpN7tedJHcQ87numTExd2s1ytAKR2C4/BhZDX W7DCOId2d52UmxrDxbwlZ4Be5K8wzwdlUUl/HnnSiJX04fFp4bB14JV1U/0LqGwF /JKRYP0hcm9ivyahzvTjjHjTUzmuCeQpAwd2NjQkXFbYtCT6hYVErJKsDv+puRqr vUoa6ZgtoiJTG/UHe9o5JndgopSSxaLYpTNjxx4LLz6rJwJLqe5Td2C/2jiobCma WsAntVH+9bInSVzgGYi/Jei9KQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGUf2ULX zjN9oHWykdpQhF1MaTmdMB8GA1UdIwQYMBaAFE2zsuNZm2RunzCvdKWMZnj68dK3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OThFQy8zQThGODQxMDIx NDkxMUVGQkU4OENGMjlDNEY5QUUwMi9UYk95NDFtYlpHNmZNSzkwcFl4bWVQcngw cmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1RiT3k0MW1iWkc2Zk1LOTBwWXhtZVByeDByYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 OThFQy8zQThGODQxMDIxNDkxMUVGQkU4OENGMjlDNEY5QUUwMi9UYk95NDFtYlpH NmZNSzkwcFl4bWVQcngwcmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBqo08dvT1a8G14R4zlMuaYut6If3FJHsmOIqgtclZsSUuorJmGELvO ox3va6FKY6DoBVXd3ZZ2j5VvCcfwWWgnBMrgRmNZHVZc27O8e2q8NKQ2v+i8tUss wHPaSZkCgkPyD4e/ntWRA/fB+1fRIQHlL+E0W+o10IaROvlx0gLw52ab8xSnBLR6 W6NOBB+NDvQecBxvyXUFetfQr+W2EO21laMtgp8m5XE02uKDZrGqNw/xaIQoSJ6w MC90YbL+u6LEZ3yvxUWgJAe6WIbieWTsl1ck/aU8HHJ3fHnLH015f8VbHSFpH4jT 6eXk/vkpS/6682g1eFmWquvYdTCK2phI -----END CERTIFICATE-----Generated at Tue Nov 4 22:49:22 2025 by rpki-client