$ rpki-client -vvf rpki.apnic.net/member_repository/A91957C9/C359E75EAC1911E983F2FC62C4F9AE02/TzFe71rLLtp6NynnnhNZkMAecHQ.mft File: TzFe71rLLtp6NynnnhNZkMAecHQ.mft (raw, json) Hash identifier: xnl++oPT3SdIKaNYe3XG4NuA0iI8H4Q6um8lRnGqSl8= Subject key identifier: AB:BF:F7:0E:C4:A1:88:8B:5C:81:F1:2E:9E:09:A5:25:C7:CB:74:FC Authority key identifier: 4F:31:5E:EF:5A:CB:2E:DA:7A:37:29:E7:9E:13:59:90:C0:1E:70:74 Certificate issuer: /CN=A91957C9/serialNumber=4F315EEF5ACB2EDA7A3729E79E135990C01E7074 Certificate serial: 0E66 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TzFe71rLLtp6NynnnhNZkMAecHQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91957C9/C359E75EAC1911E983F2FC62C4F9AE02/TzFe71rLLtp6NynnnhNZkMAecHQ.mft Manifest number: 0E5A Signing time: Sun 02 Nov 2025 17:45:55 +0000 Manifest this update: Sun 02 Nov 2025 17:45:54 +0000 Manifest next update: Sun 09 Nov 2025 17:45:54 +0000 Files and hashes: 1: TzFe71rLLtp6NynnnhNZkMAecHQ.crl (hash: BESXmKI/PYJanh4gby4/6aE1Fd38libh0ZLPIK+pR9U=) 2: B55EC19EAC2B11E996F6E511C4F9AE02.roa (hash: Kmbnqjt+FsbQjmxP1orKor9zYnpCPWPxfhoKQqbWYu0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91957C9/C359E75EAC1911E983F2FC62C4F9AE02/TzFe71rLLtp6NynnnhNZkMAecHQ.crl rsync://rpki.apnic.net/member_repository/A91957C9/C359E75EAC1911E983F2FC62C4F9AE02/TzFe71rLLtp6NynnnhNZkMAecHQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TzFe71rLLtp6NynnnhNZkMAecHQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 17:45:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3686 (0xe66) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91957C9, serialNumber=4F315EEF5ACB2EDA7A3729E79E135990C01E7074 Validity Not Before: Nov 2 17:45:54 2025 GMT Not After : Nov 9 17:45:54 2025 GMT Subject: CN=690798d2-be2a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:43:7a:94:66:69:2c:c5:8b:01:12:97:fa:b2: 10:90:47:64:b8:d0:ca:4e:14:61:0f:ad:9a:9b:50: 02:d0:6e:9f:f6:18:25:72:13:47:a5:a4:67:00:e6: 09:99:1a:64:3b:82:e3:d8:25:2c:6c:dc:9c:0e:e3: 0c:2c:cf:ac:05:cd:d0:80:9d:16:41:18:58:2b:c5: af:67:dd:6d:75:5f:5e:85:ef:7b:92:8d:d8:34:e3: 53:08:23:05:8b:d8:88:1a:7a:7e:1b:42:57:af:38: 7c:00:7d:02:dc:ba:47:a9:46:61:5e:ab:d1:6b:f2: 5d:0d:72:5b:a6:0f:b1:a2:7e:08:03:8f:cd:ca:3d: 65:94:bc:ad:1b:02:74:0d:31:6a:2a:5d:dc:bc:ab: cc:79:31:9a:4f:fd:bd:aa:8f:7f:c8:6d:1d:ee:f3: 3f:fc:32:85:e5:cc:12:8a:b3:24:34:eb:c8:d8:90: 8a:d8:c3:e2:a6:96:81:2f:b3:70:7c:a9:f0:4b:ef: af:d2:15:be:aa:33:77:e9:01:ae:48:8e:17:c9:76: 0b:42:58:bc:c0:7f:05:1f:3d:0e:62:89:e2:c3:6c: 9e:fb:ee:a9:e5:bf:89:4c:3e:b9:29:7d:a6:97:76: d9:f3:5f:cd:65:4b:6d:82:98:27:64:8d:75:fe:95: 45:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:BF:F7:0E:C4:A1:88:8B:5C:81:F1:2E:9E:09:A5:25:C7:CB:74:FC X509v3 Authority Key Identifier: keyid:4F:31:5E:EF:5A:CB:2E:DA:7A:37:29:E7:9E:13:59:90:C0:1E:70:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91957C9/C359E75EAC1911E983F2FC62C4F9AE02/TzFe71rLLtp6NynnnhNZkMAecHQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TzFe71rLLtp6NynnnhNZkMAecHQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91957C9/C359E75EAC1911E983F2FC62C4F9AE02/TzFe71rLLtp6NynnnhNZkMAecHQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 45:b8:19:45:14:83:2c:20:19:73:c5:e8:ba:d0:6b:8d:c7:7d: 4c:22:bf:5c:d0:20:59:ca:61:56:7f:08:36:ee:40:d6:12:29: 51:a3:0c:28:7c:3b:69:dc:21:96:9c:6d:2c:4c:dc:fa:ea:15: 66:19:17:6b:ee:85:be:39:65:6c:ad:07:54:1c:29:41:85:49: 67:30:31:2c:66:63:ab:da:5b:d9:35:7a:6a:1b:53:45:2b:62: 34:aa:74:2c:7b:b4:4e:11:80:26:fb:2f:47:16:52:90:53:f8: 2d:d3:d8:d4:b8:f3:22:05:68:cc:6b:ac:c9:20:ba:9f:7a:dc: 44:35:61:f8:e4:e8:c1:97:cf:4d:91:e8:70:ff:93:71:54:5a: 0a:99:0e:23:8d:1f:94:78:ab:a0:97:06:4c:0f:4f:08:f2:d7: ce:b2:3f:b9:79:75:e9:9e:16:87:1e:e1:19:83:03:2f:2c:06: 82:62:a3:30:61:f2:83:aa:9a:ec:30:b4:22:b5:ad:b5:70:1d: 1e:e8:fc:0f:ba:0b:a6:49:7d:63:b2:10:6b:a5:3b:39:74:24: 32:59:9a:04:e1:84:9a:8f:64:4a:1a:e2:21:15:52:41:c8:da: bd:26:d3:de:d4:fc:03:f5:e9:38:84:d6:4e:8f:24:79:e0:b6: e8:10:6d:9e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDmYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTU3QzkxMTAvBgNVBAUTKDRGMzE1RUVGNUFDQjJFREE3QTM3MjlFNzlFMTM1OTkw QzAxRTcwNzQwHhcNMjUxMTAyMTc0NTU0WhcNMjUxMTA5MTc0NTU0WjAYMRYwFAYD VQQDEw02OTA3OThkMi1iZTJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvkN6lGZpLMWLARKX+rIQkEdkuNDKThRhD62am1AC0G6f9hglchNHpaRnAOYJ mRpkO4Lj2CUsbNycDuMMLM+sBc3QgJ0WQRhYK8WvZ91tdV9ehe97ko3YNONTCCMF i9iIGnp+G0JXrzh8AH0C3LpHqUZhXqvRa/JdDXJbpg+xon4IA4/Nyj1llLytGwJ0 DTFqKl3cvKvMeTGaT/29qo9/yG0d7vM//DKF5cwSirMkNOvI2JCK2MPippaBL7Nw fKnwS++v0hW+qjN36QGuSI4XyXYLQli8wH8FHz0OYoniw2ye++6p5b+JTD65KX2m l3bZ81/NZUttgpgnZI11/pVFGQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKu/9w7E oYiLXIHxLp4JpSXHy3T8MB8GA1UdIwQYMBaAFE8xXu9ayy7aejcp554TWZDAHnB0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NTdDOS9DMzU5RTc1RUFD MTkxMUU5ODNGMkZDNjJDNEY5QUUwMi9UekZlNzFyTEx0cDZOeW5ubmhOWmtNQWVj SFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1R6RmU3MXJMTHRwNk55bm5uaE5aa01BZWNIUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NTdDOS9DMzU5RTc1RUFDMTkxMUU5ODNGMkZDNjJDNEY5QUUwMi9UekZlNzFyTEx0 cDZOeW5ubmhOWmtNQWVjSFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBFuBlFFIMsIBlzxei60GuNx31MIr9c0CBZymFWfwg27kDWEilRowwo fDtp3CGWnG0sTNz66hVmGRdr7oW+OWVsrQdUHClBhUlnMDEsZmOr2lvZNXpqG1NF K2I0qnQse7ROEYAm+y9HFlKQU/gt09jUuPMiBWjMa6zJILqfetxENWH45OjBl89N kehw/5NxVFoKmQ4jjR+UeKuglwZMD08I8tfOsj+5eXXpnhaHHuEZgwMvLAaCYqMw YfKDqprsMLQita21cB0e6PwPugumSX1jshBrpTs5dCQyWZoE4YSaj2RKGuIhFVJB yNq9JtPe1PwD9ek4hNZOjyR54LboEG2e -----END CERTIFICATE-----Generated at Tue Nov 4 07:22:39 2025 by rpki-client