$ rpki-client -vvf rpki.apnic.net/member_repository/A9150CF3/028F9EFE2E8611ED9D2EDC4DC4F9AE02/tIyxgIJiuAmbhycqV2_-3Bmjlr0.mft File: tIyxgIJiuAmbhycqV2_-3Bmjlr0.mft (raw, json) Hash identifier: md1JqHGpvw1XOcUH7tyRNtEZLZ2znP5y9dPtXZTCGRI= Subject key identifier: 56:80:43:A9:C9:59:CB:90:1F:31:07:18:14:4E:9C:7D:87:8A:C9:F8 Authority key identifier: B4:8C:B1:80:82:62:B8:09:9B:87:27:2A:57:6F:FE:DC:19:A3:96:BD Certificate issuer: /CN=A9150CF3/serialNumber=B48CB1808262B8099B87272A576FFEDC19A396BD Certificate serial: 016F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tIyxgIJiuAmbhycqV2_-3Bmjlr0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9150CF3/028F9EFE2E8611ED9D2EDC4DC4F9AE02/tIyxgIJiuAmbhycqV2_-3Bmjlr0.mft Manifest number: 03DF Signing time: Wed 05 Nov 2025 01:45:01 +0000 Manifest this update: Wed 05 Nov 2025 01:45:00 +0000 Manifest next update: Wed 12 Nov 2025 01:45:00 +0000 Files and hashes: 1: tIyxgIJiuAmbhycqV2_-3Bmjlr0.crl (hash: P8BdcymSHBCYQ9nWACpsdti4wjMTttgMb1M+advNZWA=) 2: FDB4B8B4E85211EE83F9ED4BC4F9AE02.roa (hash: 9Glg+FZVnuYVbnpDUoXkmTWX1UGlCmh3veSk6hQSk2Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9150CF3/028F9EFE2E8611ED9D2EDC4DC4F9AE02/tIyxgIJiuAmbhycqV2_-3Bmjlr0.crl rsync://rpki.apnic.net/member_repository/A9150CF3/028F9EFE2E8611ED9D2EDC4DC4F9AE02/tIyxgIJiuAmbhycqV2_-3Bmjlr0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tIyxgIJiuAmbhycqV2_-3Bmjlr0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 01:45:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 367 (0x16f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9150CF3, serialNumber=B48CB1808262B8099B87272A576FFEDC19A396BD Validity Not Before: Nov 5 01:45:00 2025 GMT Not After : Nov 12 01:45:00 2025 GMT Subject: CN=690aac1d-bae4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:44:c3:b9:98:a3:bc:04:20:80:e0:ed:38:36: 8e:4a:73:fb:aa:a9:c3:1a:1b:aa:49:9f:c3:03:4b: 41:d0:57:c9:36:cf:f5:46:a6:79:f2:6c:e0:f2:c9: 97:7a:73:7a:51:70:44:f6:58:ed:99:ac:b8:82:30: 15:07:4d:69:4c:2d:4e:aa:24:f2:2a:a6:6c:e0:bb: 3b:5e:9e:1a:fd:c1:f3:41:9d:d0:12:d8:b7:e9:96: 4a:cc:c6:58:18:02:52:fb:f2:4d:b3:db:63:52:b3: ca:30:41:4a:48:3c:1e:32:12:2d:d1:7d:71:95:69: 58:07:99:e9:ca:71:5d:76:cf:4b:f3:d8:32:c1:ec: 05:81:9d:36:8b:34:6c:f7:f1:9d:63:54:6c:e7:30: 99:5f:cc:63:9a:94:29:2c:1e:cf:bb:c7:26:9a:fa: 26:fb:17:78:06:cc:9b:9a:f1:4a:c9:67:fb:8f:3e: 67:16:93:21:9e:c8:da:65:29:24:fe:fb:67:db:85: dc:cd:28:60:18:a6:16:06:57:76:10:15:43:19:59: 13:2e:35:4b:b7:be:65:32:55:3f:21:1e:34:31:e8: 3f:f5:7d:62:47:58:89:9b:de:01:02:b3:3b:78:f8: d9:9f:2c:ae:30:e2:b5:39:bf:f8:c5:56:f7:d3:65: cd:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:80:43:A9:C9:59:CB:90:1F:31:07:18:14:4E:9C:7D:87:8A:C9:F8 X509v3 Authority Key Identifier: keyid:B4:8C:B1:80:82:62:B8:09:9B:87:27:2A:57:6F:FE:DC:19:A3:96:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9150CF3/028F9EFE2E8611ED9D2EDC4DC4F9AE02/tIyxgIJiuAmbhycqV2_-3Bmjlr0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tIyxgIJiuAmbhycqV2_-3Bmjlr0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9150CF3/028F9EFE2E8611ED9D2EDC4DC4F9AE02/tIyxgIJiuAmbhycqV2_-3Bmjlr0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 94:aa:87:ea:b4:c6:a0:5e:22:43:2d:f1:bf:35:78:a6:be:d5: 32:30:35:08:de:cd:03:12:c7:97:4c:93:dd:e4:19:9c:fb:46: f4:31:a5:e0:01:48:8e:95:8f:da:72:8a:0f:5d:68:c7:ab:5d: e9:25:5e:b4:31:89:61:64:74:39:a4:f0:23:28:00:91:89:5b: aa:25:ff:3b:22:9b:8e:af:c4:67:63:55:0d:93:f7:0b:36:90: 7c:6a:d7:00:1d:19:6e:d3:bd:f3:74:24:36:0c:57:bb:3c:3a: fb:73:0b:c5:93:6f:2f:85:4a:76:1f:52:19:dd:41:3f:0a:4b: ba:87:01:f9:5d:7f:53:b6:35:ed:b0:d1:f3:3a:94:2d:fc:3d: ce:22:71:b8:c0:cd:2e:3b:d8:8a:8f:f8:09:29:fe:1d:f1:eb: dd:08:a5:8c:ac:4a:12:7c:4c:ce:d1:63:6a:cf:4a:b3:cc:ba: be:e5:a1:32:6d:fd:2d:5d:11:eb:8d:13:9c:d3:71:b5:0f:61: 6a:2c:98:20:8f:97:9a:86:bb:c3:87:99:80:93:76:70:3f:35: 98:c6:62:4f:eb:3a:50:46:24:61:ce:43:48:5a:23:6a:0f:93: e7:b5:83:87:57:fa:ff:fb:d8:7c:28:a1:d5:df:fc:f9:95:7f: 75:0a:93:a7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAW8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTBDRjMxMTAvBgNVBAUTKEI0OENCMTgwODI2MkI4MDk5Qjg3MjcyQTU3NkZGRURD MTlBMzk2QkQwHhcNMjUxMTA1MDE0NTAwWhcNMjUxMTEyMDE0NTAwWjAYMRYwFAYD VQQDEw02OTBhYWMxZC1iYWU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv0TDuZijvAQggODtODaOSnP7qqnDGhuqSZ/DA0tB0FfJNs/1RqZ58mzg8smX enN6UXBE9ljtmay4gjAVB01pTC1OqiTyKqZs4Ls7Xp4a/cHzQZ3QEti36ZZKzMZY GAJS+/JNs9tjUrPKMEFKSDweMhIt0X1xlWlYB5npynFdds9L89gywewFgZ02izRs 9/GdY1Rs5zCZX8xjmpQpLB7Pu8cmmvom+xd4BsybmvFKyWf7jz5nFpMhnsjaZSkk /vtn24XczShgGKYWBld2EBVDGVkTLjVLt75lMlU/IR40Meg/9X1iR1iJm94BArM7 ePjZnyyuMOK1Ob/4xVb302XN5wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFaAQ6nJ WcuQHzEHGBROnH2Hisn4MB8GA1UdIwQYMBaAFLSMsYCCYrgJm4cnKldv/twZo5a9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MENGMy8wMjhGOUVGRTJF ODYxMUVEOUQyRURDNERDNEY5QUUwMi90SXl4Z0lKaXVBbWJoeWNxVjJfLTNCbWps cjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RJeXhnSUppdUFtYmh5Y3FWMl8tM0JtamxyMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MENGMy8wMjhGOUVGRTJFODYxMUVEOUQyRURDNERDNEY5QUUwMi90SXl4Z0lKaXVB bWJoeWNxVjJfLTNCbWpscjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCUqofqtMagXiJDLfG/NXimvtUyMDUI3s0DEseXTJPd5Bmc+0b0MaXg AUiOlY/acooPXWjHq13pJV60MYlhZHQ5pPAjKACRiVuqJf87IpuOr8RnY1UNk/cL NpB8atcAHRlu073zdCQ2DFe7PDr7cwvFk28vhUp2H1IZ3UE/Cku6hwH5XX9TtjXt sNHzOpQt/D3OInG4wM0uO9iKj/gJKf4d8evdCKWMrEoSfEzO0WNqz0qzzLq+5aEy bf0tXRHrjROc03G1D2FqLJggj5eahrvDh5mAk3ZwPzWYxmJP6zpQRiRhzkNIWiNq D5PntYOHV/r/+9h8KKHV3/z5lX91CpOn -----END CERTIFICATE-----Generated at Wed Nov 5 15:04:59 2025 by rpki-client