$ rpki-client -vvf rpki.apnic.net/member_repository/A91B1E8B/6B38B81645B611EF8AB30A31C4F9AE02/TKAS9bToBGfvDuxPjAJEoj1WmbU.mft File: TKAS9bToBGfvDuxPjAJEoj1WmbU.mft (raw, json) Hash identifier: mwAtpXufTSv7smod8mhtwjeLzQeuxoQqR1bVND7Z1j4= Subject key identifier: 11:1B:49:18:42:2D:37:C0:77:CE:C1:00:C1:DF:EE:7D:64:82:10:00 Authority key identifier: 4C:A0:12:F5:B4:E8:04:67:EF:0E:EC:4F:8C:02:44:A2:3D:56:99:B5 Certificate issuer: /CN=A91B1E8B/serialNumber=4CA012F5B4E80467EF0EEC4F8C0244A23D5699B5 Certificate serial: F1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TKAS9bToBGfvDuxPjAJEoj1WmbU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B1E8B/6B38B81645B611EF8AB30A31C4F9AE02/TKAS9bToBGfvDuxPjAJEoj1WmbU.mft Manifest number: F1 Signing time: Mon 03 Nov 2025 05:15:46 +0000 Manifest this update: Mon 03 Nov 2025 05:15:46 +0000 Manifest next update: Mon 10 Nov 2025 05:15:46 +0000 Files and hashes: 1: TKAS9bToBGfvDuxPjAJEoj1WmbU.crl (hash: gA25GusfT1ntjWVPTaFoPwt1dFZw5yU/eaEYVu6c3qk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B1E8B/6B38B81645B611EF8AB30A31C4F9AE02/TKAS9bToBGfvDuxPjAJEoj1WmbU.crl rsync://rpki.apnic.net/member_repository/A91B1E8B/6B38B81645B611EF8AB30A31C4F9AE02/TKAS9bToBGfvDuxPjAJEoj1WmbU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TKAS9bToBGfvDuxPjAJEoj1WmbU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 05:15:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 241 (0xf1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B1E8B, serialNumber=4CA012F5B4E80467EF0EEC4F8C0244A23D5699B5 Validity Not Before: Nov 3 05:15:46 2025 GMT Not After : Nov 10 05:15:46 2025 GMT Subject: CN=69083a82-de5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:31:24:fa:e8:c9:78:b0:80:ff:ed:2f:30:f8: 9f:e1:d4:f0:19:d1:bb:c3:42:3f:8f:a9:3c:c1:01: f5:97:1a:6c:ad:63:1e:5e:20:7a:77:c3:04:dc:fb: 44:fe:30:3a:cb:39:11:b3:ea:6f:73:20:51:dd:83: bb:9e:43:95:81:cc:fd:85:a0:b3:f2:01:48:a7:5f: 6f:fb:9a:97:48:d0:89:df:ae:9a:b8:84:ed:cc:eb: 1e:9f:d2:a5:95:50:04:d7:f2:7a:e8:99:d9:3d:7f: 6a:b8:2e:c9:cc:a0:1f:0f:a1:91:77:d5:1e:4b:ad: 4a:b5:d5:0e:69:8e:fd:99:0e:67:24:da:54:df:e9: 3a:a9:fa:5c:2c:87:5c:dc:81:33:af:a3:3b:11:9c: f7:92:50:59:3b:84:88:ce:69:ed:80:ec:56:43:e3: 48:9e:a1:f5:89:14:2b:a3:86:46:5a:f2:c4:1c:d5: bd:44:ac:33:f2:b0:2c:51:09:f4:81:08:8b:7e:e1: 08:ed:e6:51:f5:57:de:02:e9:5f:f0:bd:14:45:3e: 77:33:c0:d4:c2:3f:b0:fe:04:d2:26:fc:44:f6:9a: 06:76:27:40:a6:2c:c8:3d:42:7e:be:b6:6b:4e:0b: 41:6a:39:39:5e:ab:f8:61:2d:cc:47:8d:c2:69:d2: e4:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:1B:49:18:42:2D:37:C0:77:CE:C1:00:C1:DF:EE:7D:64:82:10:00 X509v3 Authority Key Identifier: keyid:4C:A0:12:F5:B4:E8:04:67:EF:0E:EC:4F:8C:02:44:A2:3D:56:99:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B1E8B/6B38B81645B611EF8AB30A31C4F9AE02/TKAS9bToBGfvDuxPjAJEoj1WmbU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TKAS9bToBGfvDuxPjAJEoj1WmbU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B1E8B/6B38B81645B611EF8AB30A31C4F9AE02/TKAS9bToBGfvDuxPjAJEoj1WmbU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cd:b0:0b:61:4d:0b:ac:3c:bb:4d:dc:b6:49:9b:38:27:02:ed: 78:b0:02:a2:2c:ae:8d:4a:4f:e8:de:23:70:41:51:94:9a:89: 5f:a7:17:d6:b9:18:a4:81:e1:fa:1e:ab:73:25:c2:6d:40:4b: 57:e5:c7:21:8a:cf:a7:39:40:6c:cc:be:d4:0e:bd:14:b9:2f: a1:30:bb:8a:f8:3d:91:61:f9:cd:2e:0e:83:25:af:b5:de:8b: 62:e4:71:6c:81:4e:fc:c1:cf:48:c2:05:58:fa:31:69:82:ff: 10:69:7b:e3:ca:3d:a4:b1:64:be:33:a1:6b:da:14:f7:aa:8d: a2:0d:0f:fb:6a:cd:ac:2f:20:fa:6d:22:6f:af:7a:77:21:00: 44:72:bd:ea:32:66:8e:f0:fb:5c:c3:b7:5a:18:0c:a0:b8:43: 37:df:35:3f:66:bc:1a:58:09:df:f4:d3:3e:92:fd:63:8c:1e: 05:2c:5d:21:89:e0:e8:99:19:65:88:b3:e3:9f:5f:6e:b0:de: 1f:ae:23:8b:bf:90:f3:82:28:45:45:69:3a:c6:65:ec:27:5c: 74:35:f8:a8:97:cc:a0:e9:9c:3a:77:32:3c:01:29:cd:a6:36: 09:44:de:1c:62:6b:50:18:f1:95:10:36:0e:c3:e5:30:61:81: 94:54:c4:2c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjFFOEIxMTAvBgNVBAUTKDRDQTAxMkY1QjRFODA0NjdFRjBFRUM0RjhDMDI0NEEy M0Q1Njk5QjUwHhcNMjUxMTAzMDUxNTQ2WhcNMjUxMTEwMDUxNTQ2WjAYMRYwFAYD VQQDEw02OTA4M2E4Mi1kZTVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3zEk+ujJeLCA/+0vMPif4dTwGdG7w0I/j6k8wQH1lxpsrWMeXiB6d8ME3PtE /jA6yzkRs+pvcyBR3YO7nkOVgcz9haCz8gFIp19v+5qXSNCJ366auITtzOsen9Kl lVAE1/J66JnZPX9quC7JzKAfD6GRd9UeS61KtdUOaY79mQ5nJNpU3+k6qfpcLIdc 3IEzr6M7EZz3klBZO4SIzmntgOxWQ+NInqH1iRQro4ZGWvLEHNW9RKwz8rAsUQn0 gQiLfuEI7eZR9VfeAulf8L0URT53M8DUwj+w/gTSJvxE9poGdidApizIPUJ+vrZr TgtBajk5Xqv4YS3MR43CadLkFwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBEbSRhC LTfAd87BAMHf7n1kghAAMB8GA1UdIwQYMBaAFEygEvW06ARn7w7sT4wCRKI9Vpm1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMUU4Qi82QjM4QjgxNjQ1 QjYxMUVGOEFCMzBBMzFDNEY5QUUwMi9US0FTOWJUb0JHZnZEdXhQakFKRW9qMVdt YlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RLQVM5YlRvQkdmdkR1eFBqQUpFb2oxV21iVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MUU4Qi82QjM4QjgxNjQ1QjYxMUVGOEFCMzBBMzFDNEY5QUUwMi9US0FTOWJUb0JH ZnZEdXhQakFKRW9qMVdtYlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDNsAthTQusPLtN3LZJmzgnAu14sAKiLK6NSk/o3iNwQVGUmolfpxfW uRikgeH6HqtzJcJtQEtX5cchis+nOUBszL7UDr0UuS+hMLuK+D2RYfnNLg6DJa+1 3oti5HFsgU78wc9IwgVY+jFpgv8QaXvjyj2ksWS+M6Fr2hT3qo2iDQ/7as2sLyD6 bSJvr3p3IQBEcr3qMmaO8Ptcw7daGAyguEM33zU/ZrwaWAnf9NM+kv1jjB4FLF0h ieDomRlliLPjn19usN4friOLv5DzgihFRWk6xmXsJ1x0Nfiol8yg6Zw6dzI8ASnN pjYJRN4cYmtQGPGVEDYOw+UwYYGUVMQs -----END CERTIFICATE-----Generated at Mon Nov 3 18:06:52 2025 by rpki-client