$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF233/08F05260B37811EF88322B0FC4F9AE02/TnWast4kVGn4MRuSc7VVOH51CpA.mft File: TnWast4kVGn4MRuSc7VVOH51CpA.mft (raw, json) Hash identifier: R2PKDPnrNfKbeyDnW8r9w0QExcIhDNPyPqdqxud7uck= Subject key identifier: 8B:68:53:86:9F:DA:65:CF:27:3D:73:77:A6:8F:97:CE:51:0F:ED:29 Authority key identifier: 4E:75:9A:B2:DE:24:54:69:F8:31:1B:92:73:B5:55:38:7E:75:0A:90 Certificate issuer: /CN=A91DF233/serialNumber=4E759AB2DE245469F8311B9273B555387E750A90 Certificate serial: AB Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TnWast4kVGn4MRuSc7VVOH51CpA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DF233/08F05260B37811EF88322B0FC4F9AE02/TnWast4kVGn4MRuSc7VVOH51CpA.mft Manifest number: AA Signing time: Mon 03 Nov 2025 06:11:12 +0000 Manifest this update: Mon 03 Nov 2025 06:11:12 +0000 Manifest next update: Mon 10 Nov 2025 06:11:11 +0000 Files and hashes: 1: TnWast4kVGn4MRuSc7VVOH51CpA.crl (hash: a+Z70eoVdv9XKkoFkyPCxEYn1WQoPaJ8+coLDxc7O2A=) 2: 1FE0E016B37D11EFBDE18263C4F9AE02.roa (hash: i4QqretrMrfllRlkSz0xUOac9qaskNbaHtNPO9MoQA0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DF233/08F05260B37811EF88322B0FC4F9AE02/TnWast4kVGn4MRuSc7VVOH51CpA.crl rsync://rpki.apnic.net/member_repository/A91DF233/08F05260B37811EF88322B0FC4F9AE02/TnWast4kVGn4MRuSc7VVOH51CpA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TnWast4kVGn4MRuSc7VVOH51CpA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 06:11:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 171 (0xab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DF233, serialNumber=4E759AB2DE245469F8311B9273B555387E750A90 Validity Not Before: Nov 3 06:11:12 2025 GMT Not After : Nov 10 06:11:11 2025 GMT Subject: CN=69084780-a465 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:a1:b7:da:d0:54:8e:6d:1a:06:e5:0b:f1:46: 0c:98:93:ce:e4:48:81:e0:f1:a7:13:65:0d:8c:00: 7c:cc:d8:0e:ec:f2:b9:7b:cb:b2:e0:3a:dd:c8:0b: 1c:4d:6f:74:b6:57:45:00:ea:ae:04:29:80:d1:1d: 7d:3d:72:33:a0:9e:56:af:c6:d3:ad:10:81:75:05: bb:0b:a6:4a:60:36:2c:95:6d:23:45:76:91:2f:04: 4f:92:ad:2f:c1:84:67:e4:f3:05:9b:f9:91:66:6a: d7:9c:3d:f5:6e:87:f8:26:d3:55:58:9b:ac:79:65: 88:64:c4:57:87:b2:66:ea:38:b3:e3:57:14:a3:cb: 02:59:d1:cd:34:a2:32:57:2a:67:6c:13:ac:34:c6: ce:ea:78:67:ea:a8:2c:50:4a:68:22:e0:00:01:09: 30:fa:83:0b:43:c3:e0:b7:83:4d:a0:99:e9:c4:69: 10:b3:c6:65:b9:9c:ea:3e:f9:23:d2:c9:26:fa:12: 13:52:fa:22:d1:a0:e4:49:55:17:db:10:c4:5d:cd: ab:c1:64:53:99:f8:ce:71:b8:7c:39:21:c4:f4:32: c7:a0:b3:54:4f:44:77:15:9d:0f:0b:2f:2a:51:41: e2:f3:4e:04:14:65:ab:59:02:cd:36:67:57:44:e3: 3a:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:68:53:86:9F:DA:65:CF:27:3D:73:77:A6:8F:97:CE:51:0F:ED:29 X509v3 Authority Key Identifier: keyid:4E:75:9A:B2:DE:24:54:69:F8:31:1B:92:73:B5:55:38:7E:75:0A:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DF233/08F05260B37811EF88322B0FC4F9AE02/TnWast4kVGn4MRuSc7VVOH51CpA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TnWast4kVGn4MRuSc7VVOH51CpA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF233/08F05260B37811EF88322B0FC4F9AE02/TnWast4kVGn4MRuSc7VVOH51CpA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 74:53:b2:31:98:7f:1c:31:4e:76:b6:f8:d9:2e:36:76:af:8a: 00:2c:ad:58:15:59:eb:b4:36:3a:2f:e0:78:8d:37:3d:d3:0d: c3:6c:99:83:ba:1f:3a:12:c8:22:90:02:d0:5b:e9:a8:01:5e: 6d:df:fa:3d:fd:75:af:6c:ab:5a:69:ba:ea:9f:ac:e1:9d:23: ae:a2:aa:88:95:72:28:a4:3b:6c:86:b6:31:8e:9d:96:04:5c: de:20:59:7a:52:77:b4:b6:53:a8:63:89:86:f9:94:3e:61:6f: dd:a1:4e:4e:72:b5:4c:22:29:34:01:17:11:77:42:2e:28:71: 1e:63:a4:15:d7:bd:a6:b9:b6:87:8a:00:ab:97:7f:f7:02:43: 8e:60:34:83:2d:e2:34:84:96:9c:c6:63:3a:6e:2c:48:7f:50: 5c:96:0c:1e:44:b1:cc:21:61:31:1a:77:10:8d:f1:bf:49:55: 8e:89:5c:ea:9e:62:dc:af:7d:11:c9:08:1b:d9:79:d6:99:16: b0:6f:fa:c0:6f:77:9e:b9:20:f8:1e:ba:f6:a4:d1:4d:60:24: eb:8d:16:5f:18:54:a0:b7:4e:8b:a1:59:6c:8c:91:3d:08:30: 23:bb:1f:a5:c4:0f:a3:4f:11:5c:f2:ed:c6:99:fd:89:80:85: 8e:1e:1d:02 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REYyMzMxMTAvBgNVBAUTKDRFNzU5QUIyREUyNDU0NjlGODMxMUI5MjczQjU1NTM4 N0U3NTBBOTAwHhcNMjUxMTAzMDYxMTEyWhcNMjUxMTEwMDYxMTExWjAYMRYwFAYD VQQDEw02OTA4NDc4MC1hNDY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxaG32tBUjm0aBuUL8UYMmJPO5EiB4PGnE2UNjAB8zNgO7PK5e8uy4DrdyAsc TW90tldFAOquBCmA0R19PXIzoJ5Wr8bTrRCBdQW7C6ZKYDYslW0jRXaRLwRPkq0v wYRn5PMFm/mRZmrXnD31bof4JtNVWJuseWWIZMRXh7Jm6jiz41cUo8sCWdHNNKIy VypnbBOsNMbO6nhn6qgsUEpoIuAAAQkw+oMLQ8Pgt4NNoJnpxGkQs8ZluZzqPvkj 0skm+hITUvoi0aDkSVUX2xDEXc2rwWRTmfjOcbh8OSHE9DLHoLNUT0R3FZ0PCy8q UUHi804EFGWrWQLNNmdXROM6HwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFItoU4af 2mXPJz1zd6aPl85RD+0pMB8GA1UdIwQYMBaAFE51mrLeJFRp+DEbknO1VTh+dQqQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERjIzMy8wOEYwNTI2MEIz NzgxMUVGODgzMjJCMEZDNEY5QUUwMi9Ubldhc3Q0a1ZHbjRNUnVTYzdWVk9INTFD cEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1RuV2FzdDRrVkduNE1SdVNjN1ZWT0g1MUNwQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RjIzMy8wOEYwNTI2MEIzNzgxMUVGODgzMjJCMEZDNEY5QUUwMi9Ubldhc3Q0a1ZH bjRNUnVTYzdWVk9INTFDcEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB0U7IxmH8cMU52tvjZLjZ2r4oALK1YFVnrtDY6L+B4jTc90w3DbJmD uh86EsgikALQW+moAV5t3/o9/XWvbKtaabrqn6zhnSOuoqqIlXIopDtshrYxjp2W BFzeIFl6Une0tlOoY4mG+ZQ+YW/doU5OcrVMIik0ARcRd0IuKHEeY6QV172mubaH igCrl3/3AkOOYDSDLeI0hJacxmM6bixIf1BclgweRLHMIWExGncQjfG/SVWOiVzq nmLcr30RyQgb2XnWmRawb/rAb3eeuSD4Hrr2pNFNYCTrjRZfGFSgt06LoVlsjJE9 CDAjux+lxA+jTxFc8u3Gmf2JgIWOHh0C -----END CERTIFICATE-----Generated at Tue Nov 4 18:55:53 2025 by rpki-client