$ rpki-client -vvf rpki.apnic.net/member_repository/A916A0AF/FD65B4D8E4A611EBB94AA54CC4F9AE02/tmRR-XGIyvgYTQfBMKJdlXb4wQU.mft File: tmRR-XGIyvgYTQfBMKJdlXb4wQU.mft (raw, json) Hash identifier: gsxgNkcRFZptofuKklbgAwXpaUowGRd1kOjOkUSu6zw= Subject key identifier: 56:C8:15:7A:AA:29:29:3A:58:0E:48:47:2F:13:46:76:E0:2A:CE:FE Authority key identifier: B6:64:51:F9:71:88:CA:F8:18:4D:07:C1:30:A2:5D:95:76:F8:C1:05 Certificate issuer: /CN=A916A0AF/serialNumber=B66451F97188CAF8184D07C130A25D9576F8C105 Certificate serial: 05C1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tmRR-XGIyvgYTQfBMKJdlXb4wQU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916A0AF/FD65B4D8E4A611EBB94AA54CC4F9AE02/tmRR-XGIyvgYTQfBMKJdlXb4wQU.mft Manifest number: 05DB Signing time: Sun 02 Nov 2025 23:06:21 +0000 Manifest this update: Sun 02 Nov 2025 23:06:20 +0000 Manifest next update: Sun 09 Nov 2025 23:06:20 +0000 Files and hashes: 1: tmRR-XGIyvgYTQfBMKJdlXb4wQU.crl (hash: r4fxp5vhS9G8U3/unQ0V+EvI7b8Hui+oRU7UUBsiY90=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916A0AF/FD65B4D8E4A611EBB94AA54CC4F9AE02/tmRR-XGIyvgYTQfBMKJdlXb4wQU.crl rsync://rpki.apnic.net/member_repository/A916A0AF/FD65B4D8E4A611EBB94AA54CC4F9AE02/tmRR-XGIyvgYTQfBMKJdlXb4wQU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tmRR-XGIyvgYTQfBMKJdlXb4wQU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 23:06:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1473 (0x5c1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916A0AF, serialNumber=B66451F97188CAF8184D07C130A25D9576F8C105 Validity Not Before: Nov 2 23:06:20 2025 GMT Not After : Nov 9 23:06:20 2025 GMT Subject: CN=6907e3ed-05ca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:0e:86:4a:66:22:63:03:3a:64:d6:de:19:de: 03:2c:a7:96:73:f5:51:f0:13:1c:89:38:83:6f:7d: ca:47:df:fc:5f:3b:5d:06:69:84:a9:7a:b1:2b:c2: 5e:48:a0:70:5a:d4:4b:73:61:c7:16:68:7a:39:f3: c8:6c:d0:23:ca:75:30:44:04:bc:ce:62:6d:79:90: 42:50:2b:fd:e7:86:f1:a7:dc:31:cd:f2:85:05:d8: 03:5a:51:e8:82:52:cd:c1:97:55:19:0e:a5:12:2a: 9e:76:5e:f7:93:f8:e6:9f:3f:0e:d0:0d:25:51:32: f6:cc:5e:50:bd:7b:93:c4:46:4b:be:96:9f:da:56: 35:04:31:a3:7c:ad:d4:9b:e6:79:df:bd:c3:0d:41: d1:09:77:50:33:4a:ab:83:f9:6d:a4:e4:29:c5:03: 67:78:8f:ce:a8:6a:97:93:04:71:9b:a2:e9:f6:ca: bc:49:ac:d1:3b:a9:6e:9b:4e:2e:9f:fa:dd:03:f9: f6:2e:b8:72:ac:83:cc:a8:b1:e9:46:f9:ba:0d:b8: 3e:66:02:c4:f7:7d:46:a0:df:d3:ed:f0:91:6d:e0: a4:1c:ce:1c:c8:cf:85:02:6b:76:08:7c:c2:08:5d: d5:f2:7d:6a:fa:31:ff:ab:69:56:13:5f:80:94:f0: 70:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:C8:15:7A:AA:29:29:3A:58:0E:48:47:2F:13:46:76:E0:2A:CE:FE X509v3 Authority Key Identifier: keyid:B6:64:51:F9:71:88:CA:F8:18:4D:07:C1:30:A2:5D:95:76:F8:C1:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916A0AF/FD65B4D8E4A611EBB94AA54CC4F9AE02/tmRR-XGIyvgYTQfBMKJdlXb4wQU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tmRR-XGIyvgYTQfBMKJdlXb4wQU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916A0AF/FD65B4D8E4A611EBB94AA54CC4F9AE02/tmRR-XGIyvgYTQfBMKJdlXb4wQU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2c:29:1d:3d:2f:fb:4d:b6:1c:c7:b8:79:7c:d5:b4:29:fc:3f: 8f:0a:e9:d5:8f:50:7f:8a:43:e9:e6:f6:1e:b6:5e:a0:e1:11: ed:21:93:3d:fd:bf:98:c2:cc:3c:14:16:12:09:39:64:67:e8: 82:c2:94:4a:17:a4:55:54:d3:7a:e4:43:00:66:1c:40:dd:0c: 47:65:a0:9f:d5:e4:8b:98:3b:c0:26:7a:c0:d5:2e:2d:ce:f0: ef:e4:0b:c8:da:ed:91:0e:7e:35:4d:10:2c:ba:9d:80:2c:6e: 89:f8:9b:59:14:80:67:cc:6d:b0:cc:03:4e:60:c8:4a:ff:36: de:56:5d:48:68:6c:e7:a8:18:c1:5d:25:3c:4c:af:74:57:e8: 09:60:9d:13:30:01:15:52:c3:2c:43:b2:79:d6:89:d4:11:b2: d1:de:97:b1:a9:c6:88:31:70:5a:95:3c:c9:4d:d2:00:c7:df: 32:80:3d:16:a7:f6:62:9f:6d:29:e9:cb:ef:1b:85:07:ac:9f: 21:b5:55:68:b2:61:6d:b3:b1:0b:35:d2:0a:db:79:97:40:6a: 06:e3:8c:1a:40:71:1b:71:6c:f8:8f:29:7c:af:a5:4e:da:32: 63:d7:50:81:58:88:78:17:8b:24:e4:d8:4f:d3:57:5c:e7:b4: c1:0c:33:56 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBcEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkEwQUYxMTAvBgNVBAUTKEI2NjQ1MUY5NzE4OENBRjgxODREMDdDMTMwQTI1RDk1 NzZGOEMxMDUwHhcNMjUxMTAyMjMwNjIwWhcNMjUxMTA5MjMwNjIwWjAYMRYwFAYD VQQDEw02OTA3ZTNlZC0wNWNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyg6GSmYiYwM6ZNbeGd4DLKeWc/VR8BMciTiDb33KR9/8XztdBmmEqXqxK8Je SKBwWtRLc2HHFmh6OfPIbNAjynUwRAS8zmJteZBCUCv954bxp9wxzfKFBdgDWlHo glLNwZdVGQ6lEiqedl73k/jmnz8O0A0lUTL2zF5QvXuTxEZLvpaf2lY1BDGjfK3U m+Z5373DDUHRCXdQM0qrg/ltpOQpxQNneI/OqGqXkwRxm6Lp9sq8SazRO6lum04u n/rdA/n2LrhyrIPMqLHpRvm6Dbg+ZgLE931GoN/T7fCRbeCkHM4cyM+FAmt2CHzC CF3V8n1q+jH/q2lWE1+AlPBwxQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFbIFXqq KSk6WA5IRy8TRnbgKs7+MB8GA1UdIwQYMBaAFLZkUflxiMr4GE0HwTCiXZV2+MEF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QTBBRi9GRDY1QjREOEU0 QTYxMUVCQjk0QUE1NENDNEY5QUUwMi90bVJSLVhHSXl2Z1lUUWZCTUtKZGxYYjR3 UVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RtUlItWEdJeXZnWVRRZkJNS0pkbFhiNHdRVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QTBBRi9GRDY1QjREOEU0QTYxMUVCQjk0QUE1NENDNEY5QUUwMi90bVJSLVhHSXl2 Z1lUUWZCTUtKZGxYYjR3UVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAsKR09L/tNthzHuHl81bQp/D+PCunVj1B/ikPp5vYetl6g4RHtIZM9 /b+Ywsw8FBYSCTlkZ+iCwpRKF6RVVNN65EMAZhxA3QxHZaCf1eSLmDvAJnrA1S4t zvDv5AvI2u2RDn41TRAsup2ALG6J+JtZFIBnzG2wzANOYMhK/zbeVl1IaGznqBjB XSU8TK90V+gJYJ0TMAEVUsMsQ7J51onUEbLR3pexqcaIMXBalTzJTdIAx98ygD0W p/Zin20p6cvvG4UHrJ8htVVosmFts7ELNdIK23mXQGoG44waQHEbcWz4jyl8r6VO 2jJj11CBWIh4F4sk5NhP01dc57TBDDNW -----END CERTIFICATE-----Generated at Mon Nov 3 18:20:12 2025 by rpki-client