$ rpki-client -vvf rpki.apnic.net/member_repository/A91FD64D/370786C8999411ED8567311FC4F9AE02/tLGKJT-2KTQ3EWY13d0ZlCi2jVs.mft File: tLGKJT-2KTQ3EWY13d0ZlCi2jVs.mft (raw, json) Hash identifier: qJjI3sZkU98ivgC1tJNtQqmCXQqN9XXa2TBGkFLEtqs= Subject key identifier: F1:E9:3E:F5:69:95:40:60:E9:36:03:D9:76:22:6B:A4:9A:78:D4:47 Authority key identifier: B4:B1:8A:25:3F:B6:29:34:37:11:66:35:DD:DD:19:94:28:B6:8D:5B Certificate issuer: /CN=A91FD64D/serialNumber=B4B18A253FB6293437116635DDDD199428B68D5B Certificate serial: 0212 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tLGKJT-2KTQ3EWY13d0ZlCi2jVs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FD64D/370786C8999411ED8567311FC4F9AE02/tLGKJT-2KTQ3EWY13d0ZlCi2jVs.mft Manifest number: 020A Signing time: Mon 03 Nov 2025 02:18:03 +0000 Manifest this update: Mon 03 Nov 2025 02:18:03 +0000 Manifest next update: Mon 10 Nov 2025 02:18:03 +0000 Files and hashes: 1: tLGKJT-2KTQ3EWY13d0ZlCi2jVs.crl (hash: BclH5PAnSfdoJs1L4hJLN3JFkKGz6HJTSmzCx2l/uQk=) 2: 66D00EB2449C11EE86105C41C4F9AE02.roa (hash: sFUlSAs686BHpBPHFZ6jJXEM4AvroBrl/QL/VRc6YMo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FD64D/370786C8999411ED8567311FC4F9AE02/tLGKJT-2KTQ3EWY13d0ZlCi2jVs.crl rsync://rpki.apnic.net/member_repository/A91FD64D/370786C8999411ED8567311FC4F9AE02/tLGKJT-2KTQ3EWY13d0ZlCi2jVs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tLGKJT-2KTQ3EWY13d0ZlCi2jVs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 02:18:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 530 (0x212) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FD64D, serialNumber=B4B18A253FB6293437116635DDDD199428B68D5B Validity Not Before: Nov 3 02:18:03 2025 GMT Not After : Nov 10 02:18:03 2025 GMT Subject: CN=690810db-f7c2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:63:3b:63:fa:53:f8:b1:53:70:61:0e:41:99: d0:83:74:e6:ae:b1:ae:a4:b0:d4:76:56:01:21:a1: 6e:58:8f:81:42:a3:c4:dd:5e:c0:91:8f:ef:cb:41: 3e:b3:bb:b1:6c:d5:52:85:41:45:4f:e5:ea:9c:ad: af:d0:0b:48:62:5c:f0:e6:d1:30:32:a9:ea:6c:5a: 5f:81:b8:d8:54:65:23:85:86:ef:f8:3c:f1:a3:de: 7d:36:ef:45:18:7e:4b:2f:ec:44:6d:60:fc:ea:4c: fa:48:64:d7:25:42:f8:b3:f2:29:84:d9:85:60:75: 51:a7:22:99:f9:25:d7:ad:f9:fe:b4:96:20:d0:a2: c0:95:67:8e:9b:79:df:49:88:3c:88:56:b4:f3:ea: 62:4f:d5:08:f5:e1:9a:61:19:91:93:c6:ca:ab:1c: 1e:c0:67:04:c4:55:52:9c:4b:77:37:a5:5a:90:c2: 7d:e5:60:0b:0f:93:77:a2:f8:43:89:49:57:01:a6: e0:e6:95:2d:86:cf:d0:74:69:5e:fb:7a:10:ad:c6: e0:50:b5:f3:f0:8a:a6:ac:76:5d:0e:ff:3f:e8:f7: e3:63:f7:e4:06:6a:3b:20:bc:fd:c6:f3:5d:ef:e4: 6b:0e:c5:1a:a6:e2:5f:cc:f3:27:27:48:41:17:52: f4:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:E9:3E:F5:69:95:40:60:E9:36:03:D9:76:22:6B:A4:9A:78:D4:47 X509v3 Authority Key Identifier: keyid:B4:B1:8A:25:3F:B6:29:34:37:11:66:35:DD:DD:19:94:28:B6:8D:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FD64D/370786C8999411ED8567311FC4F9AE02/tLGKJT-2KTQ3EWY13d0ZlCi2jVs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tLGKJT-2KTQ3EWY13d0ZlCi2jVs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FD64D/370786C8999411ED8567311FC4F9AE02/tLGKJT-2KTQ3EWY13d0ZlCi2jVs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 29:6e:7d:58:5b:c4:bf:62:62:91:5e:e6:9e:90:1f:26:04:dc: 5c:3f:79:89:07:67:b1:2f:7c:21:f3:69:80:67:e9:96:63:10: b3:4e:27:6b:9f:35:e2:cb:c7:0d:01:f0:f7:e5:8a:38:65:e3: 04:f4:a9:18:6f:6f:79:2c:5c:51:83:c9:c0:30:88:11:7c:8d: 2f:ba:a8:cd:01:d1:4d:18:50:6b:aa:31:b3:be:55:e0:fa:97: bc:38:4e:88:44:12:73:92:9a:65:53:3b:de:26:85:6e:19:17: f1:5a:0f:62:13:60:5f:10:7a:dc:f7:0a:46:85:3e:b9:7f:fe: 64:95:c0:ce:77:9c:28:44:d8:a1:7f:dc:49:e8:f0:42:4e:9e: c3:a5:66:4f:3c:a8:63:38:fa:6e:83:13:4e:a3:dd:10:28:54: f5:f1:0c:5d:ef:08:3e:ec:1c:80:5b:36:aa:d8:c8:da:c0:73: c4:dd:0b:ad:5c:26:85:10:8e:1d:cd:68:b0:87:af:76:19:cd: c8:25:df:cc:81:d6:be:8e:1f:70:b0:26:21:a8:dd:16:c0:c3: 4e:31:08:dc:0a:bb:e6:f8:a4:73:3e:93:73:bd:3a:e0:a5:8f: b5:72:8c:7c:0a:06:d3:1d:e4:e0:e5:3c:e0:ab:b2:65:14:cc: 9a:05:57:ec -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAhIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkQ2NEQxMTAvBgNVBAUTKEI0QjE4QTI1M0ZCNjI5MzQzNzExNjYzNUREREQxOTk0 MjhCNjhENUIwHhcNMjUxMTAzMDIxODAzWhcNMjUxMTEwMDIxODAzWjAYMRYwFAYD VQQDEw02OTA4MTBkYi1mN2MyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA02M7Y/pT+LFTcGEOQZnQg3TmrrGupLDUdlYBIaFuWI+BQqPE3V7AkY/vy0E+ s7uxbNVShUFFT+XqnK2v0AtIYlzw5tEwMqnqbFpfgbjYVGUjhYbv+Dzxo959Nu9F GH5LL+xEbWD86kz6SGTXJUL4s/IphNmFYHVRpyKZ+SXXrfn+tJYg0KLAlWeOm3nf SYg8iFa08+piT9UI9eGaYRmRk8bKqxwewGcExFVSnEt3N6VakMJ95WALD5N3ovhD iUlXAabg5pUths/QdGle+3oQrcbgULXz8IqmrHZdDv8/6PfjY/fkBmo7ILz9xvNd 7+RrDsUapuJfzPMnJ0hBF1L0oQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPHpPvVp lUBg6TYD2XYia6SaeNRHMB8GA1UdIwQYMBaAFLSxiiU/tik0NxFmNd3dGZQoto1b MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRDY0RC8zNzA3ODZDODk5 OTQxMUVEODU2NzMxMUZDNEY5QUUwMi90TEdLSlQtMktUUTNFV1kxM2QwWmxDaTJq VnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RMR0tKVC0yS1RRM0VXWTEzZDBabENpMmpWcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RDY0RC8zNzA3ODZDODk5OTQxMUVEODU2NzMxMUZDNEY5QUUwMi90TEdLSlQtMktU UTNFV1kxM2QwWmxDaTJqVnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQApbn1YW8S/YmKRXuaekB8mBNxcP3mJB2exL3wh82mAZ+mWYxCzTidr nzXiy8cNAfD35Yo4ZeME9KkYb295LFxRg8nAMIgRfI0vuqjNAdFNGFBrqjGzvlXg +pe8OE6IRBJzkpplUzveJoVuGRfxWg9iE2BfEHrc9wpGhT65f/5klcDOd5woRNih f9xJ6PBCTp7DpWZPPKhjOPpugxNOo90QKFT18Qxd7wg+7ByAWzaq2MjawHPE3Qut XCaFEI4dzWiwh692Gc3IJd/Mgda+jh9wsCYhqN0WwMNOMQjcCrvm+KRzPpNzvTrg pY+1cox8CgbTHeTg5Tzgq7JlFMyaBVfs -----END CERTIFICATE-----Generated at Mon Nov 3 18:06:37 2025 by rpki-client