$ rpki-client -vvf rpki.apnic.net/member_repository/A91C0CD5/CD2B4B441D0B11EE87048A4CC4F9AE02/TH2sISA9rkFsH87q_FVlcgIiCKE.mft File: TH2sISA9rkFsH87q_FVlcgIiCKE.mft (raw, json) Hash identifier: ZP9wuk7jghO3wMCzKhIlsqLM7LI3WX/dht8vXI8wabU= Subject key identifier: 40:5F:B0:3D:24:5C:8C:4B:B7:4A:CF:9D:DF:32:9C:FA:0B:B3:8B:70 Authority key identifier: 4C:7D:AC:21:20:3D:AE:41:6C:1F:CE:EA:FC:55:65:72:02:22:08:A1 Certificate issuer: /CN=A91C0CD5/serialNumber=4C7DAC21203DAE416C1FCEEAFC556572022208A1 Certificate serial: 01C9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TH2sISA9rkFsH87q_FVlcgIiCKE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C0CD5/CD2B4B441D0B11EE87048A4CC4F9AE02/TH2sISA9rkFsH87q_FVlcgIiCKE.mft Manifest number: 01C0 Signing time: Mon 03 Nov 2025 03:06:10 +0000 Manifest this update: Mon 03 Nov 2025 03:06:10 +0000 Manifest next update: Mon 10 Nov 2025 03:06:10 +0000 Files and hashes: 1: TH2sISA9rkFsH87q_FVlcgIiCKE.crl (hash: 7um8pXQu6GOe+rlRmg0FQW8qfgnBJCEysYFC8fSoXiM=) 2: 6EB972341D6011EEB28A4323C4F9AE02.roa (hash: V7+xw0Oh19sCCsRJ/3dn3BE03yFJdR1cttirX6vRQc4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C0CD5/CD2B4B441D0B11EE87048A4CC4F9AE02/TH2sISA9rkFsH87q_FVlcgIiCKE.crl rsync://rpki.apnic.net/member_repository/A91C0CD5/CD2B4B441D0B11EE87048A4CC4F9AE02/TH2sISA9rkFsH87q_FVlcgIiCKE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TH2sISA9rkFsH87q_FVlcgIiCKE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 03:06:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 457 (0x1c9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C0CD5, serialNumber=4C7DAC21203DAE416C1FCEEAFC556572022208A1 Validity Not Before: Nov 3 03:06:10 2025 GMT Not After : Nov 10 03:06:10 2025 GMT Subject: CN=69081c22-f2d8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:70:3b:a5:26:37:c4:71:b0:4e:3c:fa:3c:29: b5:da:ef:b5:20:39:4d:c2:82:d6:95:4e:e8:54:33: a2:e3:4a:8c:01:99:69:c4:2a:3c:19:cd:85:55:6a: fd:1e:6b:29:f3:40:b8:c9:36:27:4c:2c:23:82:4a: 7d:f9:96:f7:c6:d6:99:88:f6:df:9e:82:e5:7e:a8: 67:9b:b6:fa:c5:dd:c6:67:4b:6e:24:f1:8f:2c:cd: fb:57:0d:54:76:01:f4:e9:b6:ce:c2:84:73:c4:b4: f8:53:ae:f8:55:2d:30:4a:dc:d3:bc:be:bb:91:5b: be:86:55:8b:0c:d4:49:1e:61:a0:74:99:16:ec:cd: f6:b1:15:82:e3:c6:f9:8e:ad:92:c8:6f:dc:9e:54: 25:38:17:34:f7:40:45:5f:54:f5:10:2c:fe:56:a3: 0d:17:fa:c8:91:90:e7:0f:ca:e5:37:7b:65:5a:b3: 7c:1f:6b:e8:a3:40:e4:49:94:58:60:d7:fa:b2:1b: 8b:ed:3b:88:db:84:00:ba:44:3e:8b:ff:30:77:ec: a4:63:45:24:dc:47:89:1c:34:37:d8:b5:38:3c:66: bf:7b:d5:09:22:40:9e:0f:e5:a9:8f:de:07:54:32: 25:44:c1:a5:c4:fd:a1:8d:1e:24:58:c5:4c:9c:99: 42:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:5F:B0:3D:24:5C:8C:4B:B7:4A:CF:9D:DF:32:9C:FA:0B:B3:8B:70 X509v3 Authority Key Identifier: keyid:4C:7D:AC:21:20:3D:AE:41:6C:1F:CE:EA:FC:55:65:72:02:22:08:A1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C0CD5/CD2B4B441D0B11EE87048A4CC4F9AE02/TH2sISA9rkFsH87q_FVlcgIiCKE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TH2sISA9rkFsH87q_FVlcgIiCKE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C0CD5/CD2B4B441D0B11EE87048A4CC4F9AE02/TH2sISA9rkFsH87q_FVlcgIiCKE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8b:75:49:93:3d:d5:1b:40:13:20:9b:b5:6a:8a:c7:0a:ec:74: 21:f8:c6:9e:6b:11:e3:24:ef:39:20:e6:a0:dc:07:0d:db:49: 27:31:9a:42:2c:26:97:29:4e:d9:31:2d:45:72:4b:53:f4:99: 63:d4:e6:d8:d7:24:75:b6:4f:65:42:18:09:c9:a6:3a:a3:49: ec:71:95:b1:df:9d:c8:d5:5a:c1:3f:64:18:09:73:25:05:30: ca:2e:b7:44:7a:fc:c1:f5:33:eb:4b:b1:3d:ee:67:3d:49:b9: c4:da:88:9c:f0:61:f9:f3:ba:cb:8e:2a:59:31:fe:a4:30:1b: 38:22:aa:32:32:b9:96:f0:0f:ef:b5:08:f9:65:b9:be:03:f8: ca:d3:af:9f:f7:5b:15:8d:74:df:6c:71:70:85:2d:ff:89:e0: eb:4d:7d:15:f0:c2:67:1d:e9:15:7d:7c:3b:67:1f:82:dc:c8: 23:b3:9b:7c:01:a2:e5:1e:71:b4:f1:8b:13:23:5f:5c:00:86: 16:14:07:8d:0a:ee:1c:47:2f:13:99:40:24:8a:db:1f:bd:b7: 3b:1a:36:8f:7d:8d:ff:e6:e5:3f:dc:b0:15:77:7d:c7:5f:7a: ec:23:26:dd:1d:f9:df:dc:ce:1b:61:90:26:5f:17:af:3c:79: f2:1a:43:9a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAckwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzBDRDUxMTAvBgNVBAUTKDRDN0RBQzIxMjAzREFFNDE2QzFGQ0VFQUZDNTU2NTcy MDIyMjA4QTEwHhcNMjUxMTAzMDMwNjEwWhcNMjUxMTEwMDMwNjEwWjAYMRYwFAYD VQQDEw02OTA4MWMyMi1mMmQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmXA7pSY3xHGwTjz6PCm12u+1IDlNwoLWlU7oVDOi40qMAZlpxCo8Gc2FVWr9 Hmsp80C4yTYnTCwjgkp9+Zb3xtaZiPbfnoLlfqhnm7b6xd3GZ0tuJPGPLM37Vw1U dgH06bbOwoRzxLT4U674VS0wStzTvL67kVu+hlWLDNRJHmGgdJkW7M32sRWC48b5 jq2SyG/cnlQlOBc090BFX1T1ECz+VqMNF/rIkZDnD8rlN3tlWrN8H2voo0DkSZRY YNf6shuL7TuI24QAukQ+i/8wd+ykY0Uk3EeJHDQ32LU4PGa/e9UJIkCeD+Wpj94H VDIlRMGlxP2hjR4kWMVMnJlCiwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEBfsD0k XIxLt0rPnd8ynPoLs4twMB8GA1UdIwQYMBaAFEx9rCEgPa5BbB/O6vxVZXICIgih MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMENENS9DRDJCNEI0NDFE MEIxMUVFODcwNDhBNENDNEY5QUUwMi9USDJzSVNBOXJrRnNIODdxX0ZWbGNnSWlD S0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RIMnNJU0E5cmtGc0g4N3FfRlZsY2dJaUNLRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MENENS9DRDJCNEI0NDFEMEIxMUVFODcwNDhBNENDNEY5QUUwMi9USDJzSVNBOXJr RnNIODdxX0ZWbGNnSWlDS0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCLdUmTPdUbQBMgm7VqiscK7HQh+MaeaxHjJO85IOag3AcN20knMZpC LCaXKU7ZMS1FcktT9Jlj1ObY1yR1tk9lQhgJyaY6o0nscZWx353I1VrBP2QYCXMl BTDKLrdEevzB9TPrS7E97mc9SbnE2oic8GH587rLjipZMf6kMBs4IqoyMrmW8A/v tQj5Zbm+A/jK06+f91sVjXTfbHFwhS3/ieDrTX0V8MJnHekVfXw7Zx+C3Mgjs5t8 AaLlHnG08YsTI19cAIYWFAeNCu4cRy8TmUAkitsfvbc7GjaPfY3/5uU/3LAVd33H X3rsIybdHfnf3M4bYZAmXxevPHnyGkOa -----END CERTIFICATE-----Generated at Tue Nov 4 08:27:59 2025 by rpki-client