$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3B25/7E892CC2F61511E7B830096DC4F9AE02/tlTdX1sVILMlvAnEv0yt88r7NCk.mft File: tlTdX1sVILMlvAnEv0yt88r7NCk.mft (raw, json) Hash identifier: pa4H272QFMSAxK8DrMsSsVsMOVOylKT7YlSs5qFp7qk= Subject key identifier: A7:CE:D0:DB:21:4F:8C:9B:DC:8E:EC:F3:B2:81:23:0E:A4:DE:64:97 Authority key identifier: B6:54:DD:5F:5B:15:20:B3:25:BC:09:C4:BF:4C:AD:F3:CA:FB:34:29 Certificate issuer: /CN=A91E3B25/serialNumber=B654DD5F5B1520B325BC09C4BF4CADF3CAFB3429 Certificate serial: 095A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tlTdX1sVILMlvAnEv0yt88r7NCk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3B25/7E892CC2F61511E7B830096DC4F9AE02/tlTdX1sVILMlvAnEv0yt88r7NCk.mft Manifest number: 2061 Signing time: Sun 02 Nov 2025 16:38:06 +0000 Manifest this update: Sun 02 Nov 2025 16:38:05 +0000 Manifest next update: Sun 09 Nov 2025 16:38:05 +0000 Files and hashes: 1: tlTdX1sVILMlvAnEv0yt88r7NCk.crl (hash: G5dcgQy90ifps/x8PKW1XvFFoahHxKx6YwXY0kvYxVM=) 2: 3D13A01EA9AB11EAA4DBEA5EC4F9AE02.roa (hash: Lmn08n30AiKaOdta7GpDKIWNdyU/iej42lU+unei0xc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3B25/7E892CC2F61511E7B830096DC4F9AE02/tlTdX1sVILMlvAnEv0yt88r7NCk.crl rsync://rpki.apnic.net/member_repository/A91E3B25/7E892CC2F61511E7B830096DC4F9AE02/tlTdX1sVILMlvAnEv0yt88r7NCk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tlTdX1sVILMlvAnEv0yt88r7NCk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 16:38:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2394 (0x95a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3B25, serialNumber=B654DD5F5B1520B325BC09C4BF4CADF3CAFB3429 Validity Not Before: Nov 2 16:38:05 2025 GMT Not After : Nov 9 16:38:05 2025 GMT Subject: CN=690788ed-c419 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:23:15:56:dc:6d:32:2c:0c:8d:de:f2:f8:9a: f9:c6:c2:d2:73:40:06:d1:56:3c:18:5e:46:cd:d5: 7a:d3:53:86:37:32:8d:d8:94:bf:3c:83:e4:8f:3f: 88:51:47:bb:25:ec:dc:2f:93:cd:80:0a:74:fa:8f: fe:88:59:57:9e:61:fe:53:65:42:6c:7c:09:bf:5c: 54:38:44:e7:d8:7d:de:57:d1:0d:29:a3:4e:de:8e: 15:0c:f7:6d:f5:b3:b5:a7:c3:eb:ae:80:46:1d:21: fa:66:87:03:23:c3:90:8a:29:5c:37:bb:f7:3e:24: 8b:62:ee:2f:66:d3:3e:53:58:b0:cd:71:6e:9f:78: f0:f0:f1:ee:1e:29:f1:60:bc:0c:68:44:c4:07:f7: 1c:51:41:f5:a1:1d:7c:46:fc:b2:dc:f6:b2:e8:f1: 02:c3:38:d0:a1:d2:44:63:2e:c8:2d:35:43:a0:95: b1:5e:50:b2:56:d0:9c:ff:1c:d0:a4:e1:68:c4:41: e0:fa:27:27:d9:76:41:2b:a3:08:a6:64:cf:d1:e8: db:19:d5:8d:59:98:5a:15:f7:c4:c6:05:a4:2c:76: 87:80:30:57:11:49:ea:56:a1:1d:b4:0e:cf:cb:71: ad:ec:fa:a0:89:c5:2a:5e:5f:61:98:c7:ea:e9:50: 41:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:CE:D0:DB:21:4F:8C:9B:DC:8E:EC:F3:B2:81:23:0E:A4:DE:64:97 X509v3 Authority Key Identifier: keyid:B6:54:DD:5F:5B:15:20:B3:25:BC:09:C4:BF:4C:AD:F3:CA:FB:34:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3B25/7E892CC2F61511E7B830096DC4F9AE02/tlTdX1sVILMlvAnEv0yt88r7NCk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tlTdX1sVILMlvAnEv0yt88r7NCk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3B25/7E892CC2F61511E7B830096DC4F9AE02/tlTdX1sVILMlvAnEv0yt88r7NCk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption be:e9:cb:fa:fe:df:93:20:20:8e:b9:e6:78:42:3e:64:aa:c6: 0b:f4:64:1d:98:29:f3:dd:16:b0:50:67:53:1d:7e:71:f4:c3: 46:ff:db:df:a1:43:33:93:8a:98:8e:0b:8b:de:47:dd:a8:4c: ac:cc:0a:b0:74:f6:a1:56:7b:ed:f2:1a:75:70:d9:d2:d4:c7: 0c:fe:65:8b:3c:a9:ee:e3:7a:0d:7b:b2:81:fa:f7:cc:66:e6: 83:bd:2f:07:bb:c1:73:78:1f:15:c4:45:95:79:6b:2b:98:db: d1:43:02:a5:7d:7d:19:fc:f1:fa:7a:20:7a:93:19:9b:9e:62: ad:7e:2e:5b:a5:14:61:71:c2:43:48:94:3b:f5:e8:4f:58:56: 69:cd:d4:30:8b:71:55:92:d9:a8:e7:d0:ef:5a:0e:11:76:f8: fe:f9:1f:f0:f1:d5:f2:32:65:9f:c0:85:6f:4a:da:2f:b4:b8: 5c:ac:4d:d6:59:ca:6c:82:d0:4a:78:bf:45:74:16:d2:88:7c: c5:af:f3:54:26:e5:2b:d6:c1:67:78:e0:de:e2:5c:0f:a5:bb: 99:ad:16:05:19:ce:26:25:27:61:ee:b6:9b:18:39:7c:de:f8: c4:5a:10:08:88:1d:b1:88:ff:46:2b:f9:9a:c5:69:f6:7f:03: d1:4e:26:4a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCVowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTNCMjUxMTAvBgNVBAUTKEI2NTRERDVGNUIxNTIwQjMyNUJDMDlDNEJGNENBREYz Q0FGQjM0MjkwHhcNMjUxMTAyMTYzODA1WhcNMjUxMTA5MTYzODA1WjAYMRYwFAYD VQQDEw02OTA3ODhlZC1jNDE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0CMVVtxtMiwMjd7y+Jr5xsLSc0AG0VY8GF5GzdV601OGNzKN2JS/PIPkjz+I UUe7JezcL5PNgAp0+o/+iFlXnmH+U2VCbHwJv1xUOETn2H3eV9ENKaNO3o4VDPdt 9bO1p8PrroBGHSH6ZocDI8OQiilcN7v3PiSLYu4vZtM+U1iwzXFun3jw8PHuHinx YLwMaETEB/ccUUH1oR18Rvyy3Pay6PECwzjQodJEYy7ILTVDoJWxXlCyVtCc/xzQ pOFoxEHg+icn2XZBK6MIpmTP0ejbGdWNWZhaFffExgWkLHaHgDBXEUnqVqEdtA7P y3Gt7PqgicUqXl9hmMfq6VBBvwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKfO0Nsh T4yb3I7s87KBIw6k3mSXMB8GA1UdIwQYMBaAFLZU3V9bFSCzJbwJxL9MrfPK+zQp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFM0IyNS83RTg5MkNDMkY2 MTUxMUU3QjgzMDA5NkRDNEY5QUUwMi90bFRkWDFzVklMTWx2QW5FdjB5dDg4cjdO Q2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RsVGRYMXNWSUxNbHZBbkV2MHl0ODhyN05Day5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF M0IyNS83RTg5MkNDMkY2MTUxMUU3QjgzMDA5NkRDNEY5QUUwMi90bFRkWDFzVklM TWx2QW5FdjB5dDg4cjdOQ2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC+6cv6/t+TICCOueZ4Qj5kqsYL9GQdmCnz3RawUGdTHX5x9MNG/9vf oUMzk4qYjguL3kfdqEyszAqwdPahVnvt8hp1cNnS1McM/mWLPKnu43oNe7KB+vfM ZuaDvS8Hu8FzeB8VxEWVeWsrmNvRQwKlfX0Z/PH6eiB6kxmbnmKtfi5bpRRhccJD SJQ79ehPWFZpzdQwi3FVktmo59DvWg4Rdvj++R/w8dXyMmWfwIVvStovtLhcrE3W WcpsgtBKeL9FdBbSiHzFr/NUJuUr1sFneODe4lwPpbuZrRYFGc4mJSdh7rabGDl8 3vjEWhAIiB2xiP9GK/maxWn2fwPRTiZK -----END CERTIFICATE-----Generated at Mon Nov 3 18:17:20 2025 by rpki-client