$ rpki-client -vvf rpki.apnic.net/member_repository/A91D4636/2C9BC33C979911ECBE725A3CC4F9AE02/tGhODWIsua_RLLX6PkiF382FAE0.mft File: tGhODWIsua_RLLX6PkiF382FAE0.mft (raw, json) Hash identifier: wiUPj2u1KajLR1Lo+oqlBFz0f2AmpDrE2QvvawocTrs= Subject key identifier: A4:5C:D9:57:7F:75:29:52:B5:62:7B:96:80:41:09:C8:38:27:AB:17 Authority key identifier: B4:68:4E:0D:62:2C:B9:AF:D1:2C:B5:FA:3E:48:85:DF:CD:85:00:4D Certificate issuer: /CN=A91D4636/serialNumber=B4684E0D622CB9AFD12CB5FA3E4885DFCD85004D Certificate serial: 03FE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tGhODWIsua_RLLX6PkiF382FAE0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D4636/2C9BC33C979911ECBE725A3CC4F9AE02/tGhODWIsua_RLLX6PkiF382FAE0.mft Manifest number: 03F5 Signing time: Mon 27 Oct 2025 01:42:23 +0000 Manifest this update: Mon 27 Oct 2025 01:42:23 +0000 Manifest next update: Mon 03 Nov 2025 01:42:23 +0000 Files and hashes: 1: tGhODWIsua_RLLX6PkiF382FAE0.crl (hash: LG5F3e6a0ZolnX43xHmtHFsM08HMbqFpO6vjemd2KlE=) 2: C458350E979C11EC8E769C43C4F9AE02.roa (hash: D0wo+x5/eI47vVGDL5twz0n4up2ZDNjTCVO1Xyw3jxg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D4636/2C9BC33C979911ECBE725A3CC4F9AE02/tGhODWIsua_RLLX6PkiF382FAE0.crl rsync://rpki.apnic.net/member_repository/A91D4636/2C9BC33C979911ECBE725A3CC4F9AE02/tGhODWIsua_RLLX6PkiF382FAE0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tGhODWIsua_RLLX6PkiF382FAE0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Nov 2025 01:42:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1022 (0x3fe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D4636, serialNumber=B4684E0D622CB9AFD12CB5FA3E4885DFCD85004D Validity Not Before: Oct 27 01:42:23 2025 GMT Not After : Nov 3 01:42:23 2025 GMT Subject: CN=68fecdff-8919 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:f4:79:db:74:25:c8:63:c0:9a:73:84:6a:60: 8c:b8:67:e0:67:7f:ef:6e:f8:6e:6a:e8:f2:ef:4b: fe:6f:c2:eb:02:9e:1b:1e:2d:4c:5d:b0:d4:e7:be: cf:5e:2a:c3:52:02:8c:f0:cb:dc:b2:50:90:fe:75: 91:b9:82:94:e0:6d:85:6e:3f:ff:b0:2c:b5:0e:70: bb:00:6f:0e:93:37:db:e5:6c:4b:92:73:47:b7:28: 7d:bd:d2:b0:5e:b2:b7:c1:b5:cb:71:f6:57:a4:51: 32:df:e5:a4:63:7e:7d:b9:33:ab:10:c3:0d:48:eb: 09:c4:9e:ef:db:47:dd:dd:05:0b:f6:cb:df:1d:92: 81:e9:dc:24:d8:5e:be:e7:4b:c3:e4:62:2c:61:3e: 23:35:e8:e9:16:50:2f:3b:27:05:e3:72:33:48:66: c6:84:b2:93:0f:2e:12:1c:3f:39:0a:f2:2f:2b:f9: 2b:d5:e2:70:87:93:a4:80:08:0a:a8:a3:30:8e:b5: 54:f6:4f:fa:27:64:7e:47:2c:c2:d5:14:16:a1:23: 56:cb:98:b1:10:d5:9c:04:bb:24:da:d6:c0:16:bf: f9:d1:94:ab:bd:95:ea:72:5b:0a:7b:69:14:f9:ba: 9c:b8:85:21:61:56:6f:92:c9:06:43:8e:60:80:6a: 38:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:5C:D9:57:7F:75:29:52:B5:62:7B:96:80:41:09:C8:38:27:AB:17 X509v3 Authority Key Identifier: keyid:B4:68:4E:0D:62:2C:B9:AF:D1:2C:B5:FA:3E:48:85:DF:CD:85:00:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D4636/2C9BC33C979911ECBE725A3CC4F9AE02/tGhODWIsua_RLLX6PkiF382FAE0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tGhODWIsua_RLLX6PkiF382FAE0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D4636/2C9BC33C979911ECBE725A3CC4F9AE02/tGhODWIsua_RLLX6PkiF382FAE0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3b:4a:a9:a1:e8:ac:6a:04:97:c7:06:49:8d:84:d5:73:73:75: af:3c:76:c4:72:ca:48:eb:0f:bf:2c:6b:07:00:f3:c2:71:e4: 50:00:fd:69:70:18:9c:2f:8e:79:50:70:b6:e1:8d:9c:ee:56: 1c:25:33:0e:44:f0:dd:77:d4:38:45:80:fb:e5:5f:92:37:6a: 43:a2:d8:10:b7:2e:95:a7:5b:d5:65:fc:9d:c0:e2:fe:7b:89: 15:2b:15:93:ea:30:af:4f:1a:29:69:66:2a:e1:e8:59:8f:b2: e3:90:64:a1:99:b3:76:30:14:41:81:60:b5:3e:d5:76:6d:56: 45:81:cf:f7:2c:8b:69:b4:b6:ae:8e:45:6d:cf:5b:37:69:2b: be:7c:fc:58:2b:45:80:25:87:92:59:b6:6c:d9:2f:a5:25:f3: 09:1e:ab:da:ad:4f:5c:31:46:76:01:fc:ad:c5:30:6b:32:ff: 3b:09:c5:8b:5d:e5:39:c7:8f:2f:0d:a9:9d:68:dd:b0:e6:17: c8:36:7a:61:64:21:50:e6:6a:6c:d1:65:d9:20:f5:e7:58:b6: 90:69:e6:37:88:f5:bc:56:85:ff:e8:79:a7:6d:cc:6c:0e:f6: 5a:d7:59:70:ac:18:90:43:b4:8e:f9:82:ae:6b:3b:06:3d:b0: d2:21:ad:9d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA/4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDQ2MzYxMTAvBgNVBAUTKEI0Njg0RTBENjIyQ0I5QUZEMTJDQjVGQTNFNDg4NURG Q0Q4NTAwNEQwHhcNMjUxMDI3MDE0MjIzWhcNMjUxMTAzMDE0MjIzWjAYMRYwFAYD VQQDEw02OGZlY2RmZi04OTE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy/R523QlyGPAmnOEamCMuGfgZ3/vbvhuaujy70v+b8LrAp4bHi1MXbDU577P XirDUgKM8MvcslCQ/nWRuYKU4G2Fbj//sCy1DnC7AG8Okzfb5WxLknNHtyh9vdKw XrK3wbXLcfZXpFEy3+WkY359uTOrEMMNSOsJxJ7v20fd3QUL9svfHZKB6dwk2F6+ 50vD5GIsYT4jNejpFlAvOycF43IzSGbGhLKTDy4SHD85CvIvK/kr1eJwh5OkgAgK qKMwjrVU9k/6J2R+RyzC1RQWoSNWy5ixENWcBLsk2tbAFr/50ZSrvZXqclsKe2kU +bqcuIUhYVZvkskGQ45ggGo4QQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKRc2Vd/ dSlStWJ7loBBCcg4J6sXMB8GA1UdIwQYMBaAFLRoTg1iLLmv0Sy1+j5Ihd/NhQBN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENDYzNi8yQzlCQzMzQzk3 OTkxMUVDQkU3MjVBM0NDNEY5QUUwMi90R2hPRFdJc3VhX1JMTFg2UGtpRjM4MkZB RTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RHaE9EV0lzdWFfUkxMWDZQa2lGMzgyRkFFMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NDYzNi8yQzlCQzMzQzk3OTkxMUVDQkU3MjVBM0NDNEY5QUUwMi90R2hPRFdJc3Vh X1JMTFg2UGtpRjM4MkZBRTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA7Sqmh6KxqBJfHBkmNhNVzc3WvPHbEcspI6w+/LGsHAPPCceRQAP1p cBicL455UHC24Y2c7lYcJTMORPDdd9Q4RYD75V+SN2pDotgQty6Vp1vVZfydwOL+ e4kVKxWT6jCvTxopaWYq4ehZj7LjkGShmbN2MBRBgWC1PtV2bVZFgc/3LItptLau jkVtz1s3aSu+fPxYK0WAJYeSWbZs2S+lJfMJHqvarU9cMUZ2AfytxTBrMv87CcWL XeU5x48vDamdaN2w5hfINnphZCFQ5mps0WXZIPXnWLaQaeY3iPW8VoX/6Hmnbcxs DvZa11lwrBiQQ7SO+YKuazsGPbDSIa2d -----END CERTIFICATE-----Generated at Tue Oct 28 07:36:09 2025 by rpki-client