$ rpki-client -vvf rpki.apnic.net/member_repository/A91DE43E/CC03FBB82AFB11EA8DF37D55C4F9AE02/tpVKYo70-TShCnBay8uQbtYQSAw.mft File: tpVKYo70-TShCnBay8uQbtYQSAw.mft (raw, json) Hash identifier: HJr62Xqe8YYOG5U96nwylzPwYFThuBxI8ppuujKeYWo= Subject key identifier: 66:2B:8E:8C:33:09:6D:DF:8C:10:84:FD:F8:76:4D:D9:AC:70:B6:A6 Authority key identifier: B6:95:4A:62:8E:F4:F9:34:A1:0A:70:5A:CB:CB:90:6E:D6:10:48:0C Certificate issuer: /CN=A91DE43E/serialNumber=B6954A628EF4F934A10A705ACBCB906ED610480C Certificate serial: 0BD4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tpVKYo70-TShCnBay8uQbtYQSAw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DE43E/CC03FBB82AFB11EA8DF37D55C4F9AE02/tpVKYo70-TShCnBay8uQbtYQSAw.mft Manifest number: 0BCE Signing time: Sun 02 Nov 2025 18:53:04 +0000 Manifest this update: Sun 02 Nov 2025 18:53:03 +0000 Manifest next update: Sun 09 Nov 2025 18:53:03 +0000 Files and hashes: 1: tpVKYo70-TShCnBay8uQbtYQSAw.crl (hash: 30zoPuXQrZBs1KP7fX9NQjhfzaMOtJyAJUekbpCylEM=) 2: 5E117DC82AFC11EAB5FEC955C4F9AE02.roa (hash: FLXDHzghX+xgCtsrZgeGezVp6qrYExOvwRgCUG3oquw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DE43E/CC03FBB82AFB11EA8DF37D55C4F9AE02/tpVKYo70-TShCnBay8uQbtYQSAw.crl rsync://rpki.apnic.net/member_repository/A91DE43E/CC03FBB82AFB11EA8DF37D55C4F9AE02/tpVKYo70-TShCnBay8uQbtYQSAw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tpVKYo70-TShCnBay8uQbtYQSAw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 18:53:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3028 (0xbd4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DE43E, serialNumber=B6954A628EF4F934A10A705ACBCB906ED610480C Validity Not Before: Nov 2 18:53:03 2025 GMT Not After : Nov 9 18:53:03 2025 GMT Subject: CN=6907a890-a38f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:db:d4:96:8d:0c:a8:3e:9c:ea:d4:4d:d8:c1: 7f:03:a0:72:35:d8:38:49:d5:6a:f9:3b:d1:a3:9f: ef:34:21:39:09:bb:32:43:98:ad:e1:18:67:97:bc: 91:9c:eb:7d:6d:68:ed:e8:f5:4b:e1:b4:c2:bd:57: ac:1b:d1:58:b9:ca:2c:fb:4f:90:02:a8:25:d4:47: 8c:f1:f8:84:b1:b5:db:50:69:80:ad:1a:68:8d:f5: 83:9b:fc:a5:2d:65:db:a7:d0:98:64:e5:bd:cd:94: 45:fb:1a:f2:8b:f9:01:2a:3c:b9:b5:16:1a:ff:93: 0d:29:a7:a8:3d:28:bb:c8:6b:eb:da:4b:8d:60:45: da:8d:98:b8:04:0d:c6:7b:8d:ee:ec:42:13:a4:2c: b9:ed:d4:11:c2:94:26:24:cd:b5:90:d0:e7:37:db: fc:64:e4:b0:9f:11:90:28:19:da:20:d2:43:c4:fe: a6:10:bd:22:6b:11:8e:04:ff:e6:92:15:e1:ac:58: 79:19:5d:c4:b7:34:45:d9:bd:be:9e:c3:f3:5b:fd: 93:2d:44:2f:06:ec:4f:7a:6e:a7:ab:a2:30:e3:0c: d6:73:20:c9:58:cd:a4:d8:b9:b6:85:f4:cc:a5:0d: 47:74:a7:40:63:d3:bd:1d:16:d5:66:11:4c:c0:ed: 4d:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:2B:8E:8C:33:09:6D:DF:8C:10:84:FD:F8:76:4D:D9:AC:70:B6:A6 X509v3 Authority Key Identifier: keyid:B6:95:4A:62:8E:F4:F9:34:A1:0A:70:5A:CB:CB:90:6E:D6:10:48:0C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DE43E/CC03FBB82AFB11EA8DF37D55C4F9AE02/tpVKYo70-TShCnBay8uQbtYQSAw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tpVKYo70-TShCnBay8uQbtYQSAw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DE43E/CC03FBB82AFB11EA8DF37D55C4F9AE02/tpVKYo70-TShCnBay8uQbtYQSAw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d0:b9:25:4a:0c:aa:c6:85:8a:53:a8:9d:03:82:41:d3:bd:6c: ee:3e:c2:71:77:87:be:a6:3c:cf:03:d5:0e:f3:a3:6f:0a:f0: f4:d4:3f:e7:04:c7:c9:ae:fe:e8:54:5e:fd:46:3d:5e:a2:67: 15:ed:9c:6c:b6:da:c9:d4:6e:dc:7d:e2:e0:68:81:e8:f3:91: f0:d5:1f:b9:c2:c8:33:75:ae:21:c3:e8:8b:5a:eb:2e:9f:86: d1:11:dc:59:84:41:eb:33:50:b0:a4:8a:b3:d4:8e:e6:dc:d6: d3:89:b4:a6:d0:05:4f:ec:40:c0:a0:29:f2:7c:23:83:7d:4e: 5a:de:06:20:a6:d3:12:fb:a5:56:a5:86:a2:6d:39:ef:a4:36: 9c:6d:17:04:b5:ed:a7:1f:b7:d8:db:fc:7a:db:df:92:3e:80: 27:10:89:99:72:b7:15:1b:f6:b8:4f:0b:be:72:f8:65:7d:34: d7:ac:05:b4:87:cf:38:da:2c:b6:10:b8:f2:c3:2b:0f:d9:c0: de:2e:34:c5:49:20:05:1e:3b:32:9a:14:1c:24:4b:49:6e:51: 8e:bd:7e:6b:7f:8a:82:6f:a1:e5:ee:cf:f0:fc:a7:62:c7:59: 17:a4:c4:84:0f:29:5b:93:1d:6a:03:4d:1c:6a:aa:c3:d0:b2: 52:74:c3:52 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC9QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REU0M0UxMTAvBgNVBAUTKEI2OTU0QTYyOEVGNEY5MzRBMTBBNzA1QUNCQ0I5MDZF RDYxMDQ4MEMwHhcNMjUxMTAyMTg1MzAzWhcNMjUxMTA5MTg1MzAzWjAYMRYwFAYD VQQDEw02OTA3YTg5MC1hMzhmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwdvUlo0MqD6c6tRN2MF/A6ByNdg4SdVq+TvRo5/vNCE5CbsyQ5it4Rhnl7yR nOt9bWjt6PVL4bTCvVesG9FYucos+0+QAqgl1EeM8fiEsbXbUGmArRpojfWDm/yl LWXbp9CYZOW9zZRF+xryi/kBKjy5tRYa/5MNKaeoPSi7yGvr2kuNYEXajZi4BA3G e43u7EITpCy57dQRwpQmJM21kNDnN9v8ZOSwnxGQKBnaINJDxP6mEL0iaxGOBP/m khXhrFh5GV3EtzRF2b2+nsPzW/2TLUQvBuxPem6nq6Iw4wzWcyDJWM2k2Lm2hfTM pQ1HdKdAY9O9HRbVZhFMwO1NLQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGYrjowz CW3fjBCE/fh2TdmscLamMB8GA1UdIwQYMBaAFLaVSmKO9Pk0oQpwWsvLkG7WEEgM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERTQzRS9DQzAzRkJCODJB RkIxMUVBOERGMzdENTVDNEY5QUUwMi90cFZLWW83MC1UU2hDbkJheTh1UWJ0WVFT QXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RwVktZbzcwLVRTaENuQmF5OHVRYnRZUVNBdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RTQzRS9DQzAzRkJCODJBRkIxMUVBOERGMzdENTVDNEY5QUUwMi90cFZLWW83MC1U U2hDbkJheTh1UWJ0WVFTQXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDQuSVKDKrGhYpTqJ0DgkHTvWzuPsJxd4e+pjzPA9UO86NvCvD01D/n BMfJrv7oVF79Rj1eomcV7ZxsttrJ1G7cfeLgaIHo85Hw1R+5wsgzda4hw+iLWusu n4bREdxZhEHrM1CwpIqz1I7m3NbTibSm0AVP7EDAoCnyfCODfU5a3gYgptMS+6VW pYaibTnvpDacbRcEte2nH7fY2/x629+SPoAnEImZcrcVG/a4Twu+cvhlfTTXrAW0 h8842iy2ELjywysP2cDeLjTFSSAFHjsymhQcJEtJblGOvX5rf4qCb6Hl7s/w/Kdi x1kXpMSEDylbkx1qA00caqrD0LJSdMNS -----END CERTIFICATE-----Generated at Mon Nov 3 18:08:09 2025 by rpki-client