$ rpki-client -vvf rpki.apnic.net/member_repository/A91B25F2/EF90CD4E03B011EA85F02934C4F9AE02/tsh7tYco929vkKCd_WuqGtTnO8o.mft File: tsh7tYco929vkKCd_WuqGtTnO8o.mft (raw, json) Hash identifier: mFPpfs7Hdw2dPJiPc3YiV94CoAYAD1WGt7Jp0F9Q09c= Subject key identifier: FD:6C:D7:53:DA:98:1E:F7:CC:1B:69:D0:7B:D3:5D:D8:98:78:64:52 Authority key identifier: B6:C8:7B:B5:87:28:F7:6F:6F:90:A0:9D:FD:6B:AA:1A:D4:E7:3B:CA Certificate issuer: /CN=A91B25F2/serialNumber=B6C87BB58728F76F6F90A09DFD6BAA1AD4E73BCA Certificate serial: 0CD4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tsh7tYco929vkKCd_WuqGtTnO8o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B25F2/EF90CD4E03B011EA85F02934C4F9AE02/tsh7tYco929vkKCd_WuqGtTnO8o.mft Manifest number: 0CB9 Signing time: Sun 02 Nov 2025 18:16:26 +0000 Manifest this update: Sun 02 Nov 2025 18:16:25 +0000 Manifest next update: Sun 09 Nov 2025 18:16:25 +0000 Files and hashes: 1: tsh7tYco929vkKCd_WuqGtTnO8o.crl (hash: k3fC0PwZ38MXpVgZbDKURmxP/moQZs5Em/Cxk47IeLw=) 2: E8F85ED4EC5811EFA9B9C618C4F9AE02.roa (hash: ykoz29uCG/11xDnxQBhHvrkmfn5Ejy8eSvfC/XRGcV0=) 3: 47DADED8EC5211EFBF551F6DC4F9AE02.roa (hash: Ns3EqlAuypXsdC/A5rNqIcQNoK/ntkU/96rQkctaiRc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B25F2/EF90CD4E03B011EA85F02934C4F9AE02/tsh7tYco929vkKCd_WuqGtTnO8o.crl rsync://rpki.apnic.net/member_repository/A91B25F2/EF90CD4E03B011EA85F02934C4F9AE02/tsh7tYco929vkKCd_WuqGtTnO8o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tsh7tYco929vkKCd_WuqGtTnO8o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 18:16:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3284 (0xcd4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B25F2, serialNumber=B6C87BB58728F76F6F90A09DFD6BAA1AD4E73BCA Validity Not Before: Nov 2 18:16:25 2025 GMT Not After : Nov 9 18:16:25 2025 GMT Subject: CN=69079ff9-e2b0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:17:98:4d:e1:65:1b:d8:db:b7:30:02:14:e4: 2e:ee:b9:6a:85:49:3c:b1:f2:36:83:57:8c:ba:d2: 69:23:df:32:05:88:2f:cd:ea:b7:70:04:a8:49:92: b8:79:6c:dc:1c:7b:9b:7b:5f:76:e7:3b:a5:71:46: e6:da:a8:86:2a:76:3a:cc:58:a0:eb:c9:89:2c:33: 71:12:96:1a:50:0d:14:a1:46:34:3e:85:9c:71:ce: 7a:e9:79:27:85:b5:b0:43:95:65:fa:c2:5b:79:e1: 14:41:a0:3b:86:21:d5:ab:5b:d2:1d:72:69:5b:6a: 03:81:ed:9c:fb:76:27:08:1b:ad:9c:88:68:04:cb: bc:70:29:99:71:3f:d7:49:e9:b4:0e:68:68:4d:88: f6:13:98:d6:1e:8c:a8:ea:11:38:9d:90:7a:0e:cd: 69:69:b3:20:f3:d7:d1:f8:85:df:4b:6c:b1:64:39: 1d:85:34:42:db:dc:87:86:84:27:82:4a:76:e7:62: 3e:23:78:ee:ad:28:28:fc:74:15:f9:76:09:17:70: bd:2d:f0:8a:a2:71:6d:bc:88:a9:57:38:5f:92:8c: 60:fa:d8:89:07:ce:7d:70:f3:68:56:4f:15:fb:37: f3:36:e2:e0:0f:35:d2:18:a4:3e:f7:d1:fc:bd:72: 19:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:6C:D7:53:DA:98:1E:F7:CC:1B:69:D0:7B:D3:5D:D8:98:78:64:52 X509v3 Authority Key Identifier: keyid:B6:C8:7B:B5:87:28:F7:6F:6F:90:A0:9D:FD:6B:AA:1A:D4:E7:3B:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B25F2/EF90CD4E03B011EA85F02934C4F9AE02/tsh7tYco929vkKCd_WuqGtTnO8o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tsh7tYco929vkKCd_WuqGtTnO8o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B25F2/EF90CD4E03B011EA85F02934C4F9AE02/tsh7tYco929vkKCd_WuqGtTnO8o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 47:3e:65:2b:08:be:9c:41:52:aa:32:ab:f1:27:de:a2:ae:fe: 6c:fd:78:51:64:ff:a1:19:ca:81:34:38:4a:88:0e:58:c3:5a: 70:5f:9f:08:5e:79:4b:03:51:90:fb:d7:7e:b4:f3:7a:ed:36: e4:63:29:ae:9b:44:24:67:84:8b:e9:5f:a0:2c:1e:1c:09:ba: 6c:b0:59:97:9a:ea:50:8c:c8:ea:a6:ce:cf:45:d8:5a:e7:91: e9:dd:6a:2f:7c:2a:a7:2f:c9:61:aa:cf:c2:4d:28:d4:63:e5: 53:7f:ca:c9:aa:00:f8:0f:52:fd:b5:12:35:c1:4f:59:cf:c9: 3a:fd:7b:c3:47:a0:69:08:44:11:ec:70:33:41:89:e1:75:c7: 81:c3:9e:5a:46:83:9e:bd:a5:f1:60:b1:3b:a8:5a:75:d1:e7: 85:a4:f8:e2:b0:e3:6a:b2:57:57:58:17:33:8b:e1:78:f2:aa: de:24:4e:d6:e3:26:34:a5:bf:34:1c:e1:12:14:93:c3:54:0e: 29:e9:c5:a0:ff:01:19:55:e2:1a:b9:46:b4:7d:49:80:0c:a3: e3:eb:fa:88:4c:30:95:fd:fd:17:c2:e6:52:4d:5a:56:c2:a8: 80:44:a8:e2:e4:2a:44:72:ba:b2:b5:1f:2f:e3:77:36:06:dc: 06:fc:16:27 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDNQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjI1RjIxMTAvBgNVBAUTKEI2Qzg3QkI1ODcyOEY3NkY2RjkwQTA5REZENkJBQTFB RDRFNzNCQ0EwHhcNMjUxMTAyMTgxNjI1WhcNMjUxMTA5MTgxNjI1WjAYMRYwFAYD VQQDEw02OTA3OWZmOS1lMmIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2heYTeFlG9jbtzACFOQu7rlqhUk8sfI2g1eMutJpI98yBYgvzeq3cASoSZK4 eWzcHHube1925zulcUbm2qiGKnY6zFig68mJLDNxEpYaUA0UoUY0PoWccc566Xkn hbWwQ5Vl+sJbeeEUQaA7hiHVq1vSHXJpW2oDge2c+3YnCButnIhoBMu8cCmZcT/X Sem0DmhoTYj2E5jWHoyo6hE4nZB6Ds1pabMg89fR+IXfS2yxZDkdhTRC29yHhoQn gkp252I+I3jurSgo/HQV+XYJF3C9LfCKonFtvIipVzhfkoxg+tiJB859cPNoVk8V +zfzNuLgDzXSGKQ+99H8vXIZhQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP1s11Pa mB73zBtp0HvTXdiYeGRSMB8GA1UdIwQYMBaAFLbIe7WHKPdvb5Cgnf1rqhrU5zvK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMjVGMi9FRjkwQ0Q0RTAz QjAxMUVBODVGMDI5MzRDNEY5QUUwMi90c2g3dFljbzkyOXZrS0NkX1d1cUd0VG5P OG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RzaDd0WWNvOTI5dmtLQ2RfV3VxR3RUbk84by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MjVGMi9FRjkwQ0Q0RTAzQjAxMUVBODVGMDI5MzRDNEY5QUUwMi90c2g3dFljbzky OXZrS0NkX1d1cUd0VG5POG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBHPmUrCL6cQVKqMqvxJ96irv5s/XhRZP+hGcqBNDhKiA5Yw1pwX58I XnlLA1GQ+9d+tPN67TbkYymum0QkZ4SL6V+gLB4cCbpssFmXmupQjMjqps7PRdha 55Hp3WovfCqnL8lhqs/CTSjUY+VTf8rJqgD4D1L9tRI1wU9Zz8k6/XvDR6BpCEQR 7HAzQYnhdceBw55aRoOevaXxYLE7qFp10eeFpPjisONqsldXWBczi+F48qreJE7W 4yY0pb80HOESFJPDVA4p6cWg/wEZVeIauUa0fUmADKPj6/qITDCV/f0XwuZSTVpW wqiARKji5CpEcrqytR8v43c2BtwG/BYn -----END CERTIFICATE-----Generated at Mon Nov 3 18:11:01 2025 by rpki-client