$ rpki-client -vvf rpki.apnic.net/member_repository/A91CA8EA/D8CA13C2404911EC9B6EFE7BC4F9AE02/tii4qSXEXjrDpxvkEUZimYv0s-A.mft File: tii4qSXEXjrDpxvkEUZimYv0s-A.mft (raw, json) Hash identifier: xwlMDysz3DDakQsmdSE/wQtV0vZvngc6xyPueJjiqFY= Subject key identifier: CA:5F:2E:3F:3F:1E:CE:AF:1F:F5:A3:14:81:3E:23:FF:42:14:1D:FC Authority key identifier: B6:28:B8:A9:25:C4:5E:3A:C3:A7:1B:E4:11:46:62:99:8B:F4:B3:E0 Certificate issuer: /CN=A91CA8EA/serialNumber=B628B8A925C45E3AC3A71BE4114662998BF4B3E0 Certificate serial: 04E8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tii4qSXEXjrDpxvkEUZimYv0s-A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CA8EA/D8CA13C2404911EC9B6EFE7BC4F9AE02/tii4qSXEXjrDpxvkEUZimYv0s-A.mft Manifest number: 04DC Signing time: Tue 04 Nov 2025 23:53:06 +0000 Manifest this update: Tue 04 Nov 2025 23:53:06 +0000 Manifest next update: Tue 11 Nov 2025 23:53:06 +0000 Files and hashes: 1: tii4qSXEXjrDpxvkEUZimYv0s-A.crl (hash: dsWsZowgZ3UL7Z33Uu56X+3EV5OmcMQJpFW0ucq6U/U=) 2: 14A07422D45E11EEB37CB639C4F9AE02.roa (hash: jYyif5XzvidlG1gkLHEZCka6sLKHMVLL3uaZPQUQSWU=) 3: 207388F2D45E11EE8D29793EC4F9AE02.roa (hash: aIqnIQInPJrCMj5K0+1zGOgCOM0xLmrh4KbjkSzgqVY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CA8EA/D8CA13C2404911EC9B6EFE7BC4F9AE02/tii4qSXEXjrDpxvkEUZimYv0s-A.crl rsync://rpki.apnic.net/member_repository/A91CA8EA/D8CA13C2404911EC9B6EFE7BC4F9AE02/tii4qSXEXjrDpxvkEUZimYv0s-A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tii4qSXEXjrDpxvkEUZimYv0s-A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 23:53:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1256 (0x4e8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CA8EA, serialNumber=B628B8A925C45E3AC3A71BE4114662998BF4B3E0 Validity Not Before: Nov 4 23:53:06 2025 GMT Not After : Nov 11 23:53:06 2025 GMT Subject: CN=690a91e2-ba14 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:6c:d5:0c:c3:0a:03:af:3f:a8:66:1c:07:9d: 10:21:5f:b8:74:1d:81:e4:f7:1d:ac:18:1f:4c:08: 21:74:82:ed:03:0c:14:7f:b3:23:de:53:29:ef:d0: 7c:6e:9b:b9:ff:d8:c4:52:f4:d1:e4:fc:8e:71:a3: cf:dc:6f:55:b1:75:fb:75:fb:f9:0a:45:4c:7c:be: e0:c1:1e:23:c6:49:29:6b:29:8d:b4:40:ce:c9:da: 56:d9:76:81:36:31:2f:fe:39:8f:2e:c1:b9:79:36: 1e:6f:53:52:41:1e:ca:bf:c7:4f:67:2b:cb:a8:a3: a6:68:8d:d7:b3:66:b8:fb:2c:67:37:32:28:0f:bb: f5:9b:4f:26:8b:52:0d:ee:3f:2e:24:19:bd:4c:9f: 86:fd:0b:f5:b8:06:6a:70:f9:bd:4a:cc:4f:43:f7: 1f:5e:05:a3:d9:8d:8e:e0:6c:39:f3:55:01:0e:80: 7c:83:e8:7b:e3:44:b7:82:98:e0:45:36:ce:a3:ea: 57:b9:46:03:f4:39:b5:0a:6b:9c:69:61:a6:13:5b: 36:45:2c:bf:e7:37:67:79:85:0f:6d:a8:74:b9:83: 51:e4:6f:cf:d9:bb:a9:ba:df:a8:72:45:f1:47:45: 58:bb:76:63:c9:1d:ed:f9:6c:3f:f6:d7:9e:7a:f1: a9:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:5F:2E:3F:3F:1E:CE:AF:1F:F5:A3:14:81:3E:23:FF:42:14:1D:FC X509v3 Authority Key Identifier: keyid:B6:28:B8:A9:25:C4:5E:3A:C3:A7:1B:E4:11:46:62:99:8B:F4:B3:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CA8EA/D8CA13C2404911EC9B6EFE7BC4F9AE02/tii4qSXEXjrDpxvkEUZimYv0s-A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tii4qSXEXjrDpxvkEUZimYv0s-A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CA8EA/D8CA13C2404911EC9B6EFE7BC4F9AE02/tii4qSXEXjrDpxvkEUZimYv0s-A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 54:ff:e1:82:79:b6:7e:4b:7e:f0:c2:a7:ae:a5:08:a4:f3:b1: 82:f8:85:d6:7d:69:5b:7f:a7:ed:be:c9:25:af:06:27:0f:25: ca:56:18:f1:f7:f2:43:a4:dc:cd:da:41:bb:ae:69:f8:ce:ba: 69:dd:44:51:26:0f:1f:28:12:b3:2b:03:67:12:ff:7e:03:29: 53:61:87:45:7f:2c:4e:bb:05:48:7a:1f:1c:97:db:b6:59:64: 9f:f3:3e:45:29:b2:40:9f:2e:d1:0d:c9:71:34:e8:af:80:e0: bd:4a:65:dd:56:4b:e1:49:e7:fe:53:69:d2:cf:8b:d3:a0:9c: 19:8b:f7:ab:d7:9b:87:d4:fb:40:5b:06:6d:90:e0:c2:7e:5e: 2f:8c:1c:93:d9:91:d7:19:cc:56:b4:19:69:3e:63:85:b1:48: 4a:9d:59:cd:c2:db:ed:e0:3c:ee:c4:fe:f0:7c:51:61:ab:f9: 00:8e:de:c0:2e:fe:4b:f1:dc:5b:88:84:12:2e:c5:2c:0a:e0: 22:d5:de:f5:73:ed:0e:2d:07:9c:22:42:b4:68:b3:7a:ec:f5: 74:38:2b:32:a8:d8:97:e5:54:6c:c1:d5:da:66:dd:ce:62:c6: 82:72:7a:79:d4:4a:5c:91:03:b8:f8:e6:dc:dc:fb:82:48:82: 5e:48:13:29 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBOgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0E4RUExMTAvBgNVBAUTKEI2MjhCOEE5MjVDNDVFM0FDM0E3MUJFNDExNDY2Mjk5 OEJGNEIzRTAwHhcNMjUxMTA0MjM1MzA2WhcNMjUxMTExMjM1MzA2WjAYMRYwFAYD VQQDEw02OTBhOTFlMi1iYTE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr2zVDMMKA68/qGYcB50QIV+4dB2B5PcdrBgfTAghdILtAwwUf7Mj3lMp79B8 bpu5/9jEUvTR5PyOcaPP3G9VsXX7dfv5CkVMfL7gwR4jxkkpaymNtEDOydpW2XaB NjEv/jmPLsG5eTYeb1NSQR7Kv8dPZyvLqKOmaI3Xs2a4+yxnNzIoD7v1m08mi1IN 7j8uJBm9TJ+G/Qv1uAZqcPm9SsxPQ/cfXgWj2Y2O4Gw581UBDoB8g+h740S3gpjg RTbOo+pXuUYD9Dm1CmucaWGmE1s2RSy/5zdneYUPbah0uYNR5G/P2buput+ockXx R0VYu3ZjyR3t+Ww/9teeevGpOQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMpfLj8/ Hs6vH/WjFIE+I/9CFB38MB8GA1UdIwQYMBaAFLYouKklxF46w6cb5BFGYpmL9LPg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQThFQS9EOENBMTNDMjQw NDkxMUVDOUI2RUZFN0JDNEY5QUUwMi90aWk0cVNYRVhqckRweHZrRVVaaW1ZdjBz LUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RpaTRxU1hFWGpyRHB4dmtFVVppbVl2MHMtQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QThFQS9EOENBMTNDMjQwNDkxMUVDOUI2RUZFN0JDNEY5QUUwMi90aWk0cVNYRVhq ckRweHZrRVVaaW1ZdjBzLUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBU/+GCebZ+S37wwqeupQik87GC+IXWfWlbf6ftvsklrwYnDyXKVhjx 9/JDpNzN2kG7rmn4zrpp3URRJg8fKBKzKwNnEv9+AylTYYdFfyxOuwVIeh8cl9u2 WWSf8z5FKbJAny7RDclxNOivgOC9SmXdVkvhSef+U2nSz4vToJwZi/er15uH1PtA WwZtkODCfl4vjByT2ZHXGcxWtBlpPmOFsUhKnVnNwtvt4DzuxP7wfFFhq/kAjt7A Lv5L8dxbiIQSLsUsCuAi1d71c+0OLQecIkK0aLN67PV0OCsyqNiX5VRswdXaZt3O YsaCcnp51EpckQO4+Obc3PuCSIJeSBMp -----END CERTIFICATE-----Generated at Wed Nov 5 11:37:37 2025 by rpki-client