$ rpki-client -vvf rpki.apnic.net/member_repository/A91A3F5D/10F94EF006AB11EF87BFA725C4F9AE02/tAgYFca67ZihzJUKxvoQvGAFiQI.mft File: tAgYFca67ZihzJUKxvoQvGAFiQI.mft (raw, json) Hash identifier: meZo0sB+sBQBUQABBGjGDmJD7hHKQQSfiiwl7VIt4wE= Subject key identifier: 0B:C4:1F:3D:83:44:FD:84:52:64:37:1A:2B:34:05:3E:64:7E:CB:68 Authority key identifier: B4:08:18:15:C6:BA:ED:98:A1:CC:95:0A:C6:FA:10:BC:60:05:89:02 Certificate issuer: /CN=A91A3F5D/serialNumber=B4081815C6BAED98A1CC950AC6FA10BC60058902 Certificate serial: 0127 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tAgYFca67ZihzJUKxvoQvGAFiQI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A3F5D/10F94EF006AB11EF87BFA725C4F9AE02/tAgYFca67ZihzJUKxvoQvGAFiQI.mft Manifest number: 011B Signing time: Thu 23 Oct 2025 06:45:45 +0000 Manifest this update: Thu 23 Oct 2025 06:45:44 +0000 Manifest next update: Thu 30 Oct 2025 06:45:44 +0000 Files and hashes: 1: tAgYFca67ZihzJUKxvoQvGAFiQI.crl (hash: 1tf2G7YLeaIDxJJkoXbliec3SNEm8aXR3SphCB8wPDg=) 2: C27BAE1E63B411EF9A87155DC4F9AE02.roa (hash: SSYQhoePXSEZdBWsz2dSUFdjtoPBSwBZmvZLvzmRmE0=) 3: 04B0D250076211EFB14D3B12C4F9AE02.roa (hash: P3/wZ7DQvbJJfKWvdajqCfHfPIC9vT8MvrKGyjWYukc=) 4: 052FFA76076211EFB14D3B12C4F9AE02.roa (hash: ZSCw86aRTNxpcp5h59Ua7FuiYhnQ7JZYo+fxXzI0qEo=) 5: 03DAC9E4076211EFB14D3B12C4F9AE02.roa (hash: 81XCmtMAkz8d5MFKkbARa3r3fmwCBxTjGKLV+BXxDFc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A3F5D/10F94EF006AB11EF87BFA725C4F9AE02/tAgYFca67ZihzJUKxvoQvGAFiQI.crl rsync://rpki.apnic.net/member_repository/A91A3F5D/10F94EF006AB11EF87BFA725C4F9AE02/tAgYFca67ZihzJUKxvoQvGAFiQI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tAgYFca67ZihzJUKxvoQvGAFiQI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 30 Oct 2025 06:45:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 295 (0x127) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A3F5D, serialNumber=B4081815C6BAED98A1CC950AC6FA10BC60058902 Validity Not Before: Oct 23 06:45:44 2025 GMT Not After : Oct 30 06:45:44 2025 GMT Subject: CN=68f9cf19-b4b4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:68:09:d4:ca:12:e0:89:53:40:97:5a:40:42: 15:5c:71:74:df:fc:30:d4:6a:da:f7:64:0d:a0:be: f5:c6:39:c4:6e:84:01:c2:41:7d:83:be:8c:50:cf: ea:ae:70:68:71:6e:2b:4b:d6:a9:c5:ab:0e:69:f6: 20:ab:85:43:b7:04:34:ed:16:41:87:b8:82:cf:cf: 05:23:4e:7c:ab:6a:40:e1:f7:49:83:5e:34:91:f2: 3c:03:1f:9e:b6:2b:c2:16:46:22:c4:50:9f:9d:34: 01:46:bb:69:ed:13:cb:32:95:0e:bd:1e:3f:b0:a6: 13:31:63:cd:00:c6:23:3e:9a:c6:f7:7a:0d:98:84: df:f3:28:d3:c2:fc:5c:1d:7f:f8:f1:2d:0b:88:8f: 9b:8c:cd:3f:1b:05:9b:d8:39:22:d7:cb:90:b5:44: 7b:6f:b9:2b:a4:66:a6:7e:60:df:2d:00:79:f6:73: f2:f5:aa:74:26:e9:c4:03:2e:c3:a3:37:03:d9:d6: 0f:e9:1a:f4:9f:4f:37:b1:4a:cc:35:b7:ac:a9:32: 87:e4:8f:5a:13:d7:ff:69:ff:83:22:4b:ba:5b:91: 5e:ae:22:af:06:01:14:dd:02:7e:2c:04:a3:bf:62: 29:86:75:91:8f:49:67:25:90:2c:0b:7b:ae:1a:42: d8:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:C4:1F:3D:83:44:FD:84:52:64:37:1A:2B:34:05:3E:64:7E:CB:68 X509v3 Authority Key Identifier: keyid:B4:08:18:15:C6:BA:ED:98:A1:CC:95:0A:C6:FA:10:BC:60:05:89:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A3F5D/10F94EF006AB11EF87BFA725C4F9AE02/tAgYFca67ZihzJUKxvoQvGAFiQI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tAgYFca67ZihzJUKxvoQvGAFiQI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A3F5D/10F94EF006AB11EF87BFA725C4F9AE02/tAgYFca67ZihzJUKxvoQvGAFiQI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 14:6a:36:e9:6e:09:e4:10:09:c6:6a:0d:d3:57:71:49:1e:0b: 8c:9a:74:96:c2:15:a5:9c:6f:c4:2e:b2:94:ce:5a:0c:55:93: 9f:6f:77:9e:9f:54:0e:06:ec:dd:c9:6b:b6:3c:70:a0:68:34: 53:3a:b4:97:e3:0f:3a:dc:50:d1:49:d7:37:7f:e4:1c:75:b6: e9:22:85:75:bd:63:c1:ae:5e:8c:da:53:fe:91:fa:b0:61:74: 07:b1:74:ab:8f:c3:80:7f:aa:d0:30:86:52:47:d2:07:2e:15: 38:07:55:da:f5:f2:02:ab:b4:01:5d:33:fd:85:04:86:b8:87: c9:83:4c:ae:e4:b3:d3:01:84:e1:44:78:b9:fa:8f:dd:9a:1c: 91:05:4f:a5:f8:46:df:20:35:33:3c:dd:96:56:a6:13:8a:43: 30:6f:7d:e8:b8:90:35:63:52:33:54:76:60:9e:42:24:88:3c: 84:56:b8:6f:c8:cf:c1:e6:4e:15:74:56:b0:b1:49:b0:54:78: 14:d0:8e:91:7a:5c:8e:66:93:ae:44:38:0b:1d:e7:8d:a8:31: 90:34:d0:01:a2:24:fc:1c:b4:7d:08:b4:ea:75:fd:9b:57:b4: 9b:9b:fc:4a:4a:06:09:f0:8a:ff:d9:30:f5:52:31:c4:27:d0: e3:f1:37:07 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAScwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTNGNUQxMTAvBgNVBAUTKEI0MDgxODE1QzZCQUVEOThBMUNDOTUwQUM2RkExMEJD NjAwNTg5MDIwHhcNMjUxMDIzMDY0NTQ0WhcNMjUxMDMwMDY0NTQ0WjAYMRYwFAYD VQQDEw02OGY5Y2YxOS1iNGI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx2gJ1MoS4IlTQJdaQEIVXHF03/ww1Gra92QNoL71xjnEboQBwkF9g76MUM/q rnBocW4rS9apxasOafYgq4VDtwQ07RZBh7iCz88FI058q2pA4fdJg140kfI8Ax+e tivCFkYixFCfnTQBRrtp7RPLMpUOvR4/sKYTMWPNAMYjPprG93oNmITf8yjTwvxc HX/48S0LiI+bjM0/GwWb2Dki18uQtUR7b7krpGamfmDfLQB59nPy9ap0JunEAy7D ozcD2dYP6Rr0n083sUrMNbesqTKH5I9aE9f/af+DIku6W5FeriKvBgEU3QJ+LASj v2IphnWRj0lnJZAsC3uuGkLYiwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAvEHz2D RP2EUmQ3Gis0BT5kfstoMB8GA1UdIwQYMBaAFLQIGBXGuu2YocyVCsb6ELxgBYkC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBM0Y1RC8xMEY5NEVGMDA2 QUIxMUVGODdCRkE3MjVDNEY5QUUwMi90QWdZRmNhNjdaaWh6SlVLeHZvUXZHQUZp UUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RBZ1lGY2E2N1ppaHpKVUt4dm9RdkdBRmlRSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB M0Y1RC8xMEY5NEVGMDA2QUIxMUVGODdCRkE3MjVDNEY5QUUwMi90QWdZRmNhNjda aWh6SlVLeHZvUXZHQUZpUUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAUajbpbgnkEAnGag3TV3FJHguMmnSWwhWlnG/ELrKUzloMVZOfb3ee n1QOBuzdyWu2PHCgaDRTOrSX4w863FDRSdc3f+QcdbbpIoV1vWPBrl6M2lP+kfqw YXQHsXSrj8OAf6rQMIZSR9IHLhU4B1Xa9fICq7QBXTP9hQSGuIfJg0yu5LPTAYTh RHi5+o/dmhyRBU+l+EbfIDUzPN2WVqYTikMwb33ouJA1Y1IzVHZgnkIkiDyEVrhv yM/B5k4VdFawsUmwVHgU0I6RelyOZpOuRDgLHeeNqDGQNNABoiT8HLR9CLTqdf2b V7Sbm/xKSgYJ8Ir/2TD1UjHEJ9Dj8TcH -----END CERTIFICATE-----Generated at Fri Oct 24 00:01:22 2025 by rpki-client