$ rpki-client -vvf rpki.apnic.net/member_repository/A9161A58/B389304EA7EC11EA80485864C4F9AE02/tGadMNIQ5JB80oiL50uJpt08tsg.mft File: tGadMNIQ5JB80oiL50uJpt08tsg.mft (raw, json) Hash identifier: e4oBbQieU2tgGvOuY6yRZJCwamXZYPcwTBRzskwNxKU= Subject key identifier: 45:B6:A7:22:BE:81:F9:AE:3B:D6:DA:A1:20:89:35:AD:80:09:27:07 Authority key identifier: B4:66:9D:30:D2:10:E4:90:7C:D2:88:8B:E7:4B:89:A6:DD:3C:B6:C8 Certificate issuer: /CN=A9161A58/serialNumber=B4669D30D210E4907CD2888BE74B89A6DD3CB6C8 Certificate serial: 0978 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tGadMNIQ5JB80oiL50uJpt08tsg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9161A58/B389304EA7EC11EA80485864C4F9AE02/tGadMNIQ5JB80oiL50uJpt08tsg.mft Manifest number: 0963 Signing time: Tue 04 Nov 2025 20:14:32 +0000 Manifest this update: Tue 04 Nov 2025 20:14:32 +0000 Manifest next update: Tue 11 Nov 2025 20:14:32 +0000 Files and hashes: 1: tGadMNIQ5JB80oiL50uJpt08tsg.crl (hash: klLrAi+VBRGlTj/Ba8vJXc5MmrqeLg8herctnzzdIf8=) 2: 6E6FFF6A92F911ED8A66E70CC4F9AE02.roa (hash: p54CFofowbUbktzQ5l2cM2w3M6idGp06vDW+Qt3EoTM=) 3: B350B67E964611EDA10D8777C4F9AE02.roa (hash: dqgw7Vjah1kgl1Eb2Qsi3T+K4Ggh+1iUdEI4VBpnCIA=) 4: D7120558A7ED11EA95BED565C4F9AE02.roa (hash: 69e6c/vHo1P1XZkYWN+UCZupbdC0oSmCyhIpttIVtDU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9161A58/B389304EA7EC11EA80485864C4F9AE02/tGadMNIQ5JB80oiL50uJpt08tsg.crl rsync://rpki.apnic.net/member_repository/A9161A58/B389304EA7EC11EA80485864C4F9AE02/tGadMNIQ5JB80oiL50uJpt08tsg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tGadMNIQ5JB80oiL50uJpt08tsg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 20:14:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2424 (0x978) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9161A58, serialNumber=B4669D30D210E4907CD2888BE74B89A6DD3CB6C8 Validity Not Before: Nov 4 20:14:32 2025 GMT Not After : Nov 11 20:14:32 2025 GMT Subject: CN=690a5ea8-01dd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:6d:56:61:31:4f:8a:ca:4f:a6:1a:8e:d5:64: 81:60:ad:3a:19:b9:fb:ea:d1:ff:9c:08:5b:d6:9a: e1:61:fc:d5:09:88:77:f4:be:3b:91:87:e0:be:83: 9a:58:b8:fb:99:c5:f0:b9:13:25:35:50:ff:27:20: eb:33:b6:2d:b6:dc:cb:f3:ee:8a:01:df:4e:4f:d1: 70:1a:22:51:b3:25:70:96:57:9c:1a:2f:1e:8e:8b: 6b:8f:b2:2d:87:15:3c:f9:ba:ed:1c:98:bf:07:be: b2:23:b1:0e:7b:67:e6:54:30:e0:27:e8:c3:f0:8c: c9:c4:2e:12:43:2b:d7:85:0b:6a:9b:3f:ea:68:a0: 72:b2:d5:0b:ab:43:fd:58:6e:7a:08:60:c5:6a:13: 4f:0c:33:b3:88:16:cd:99:2f:8a:98:9b:0c:75:88: a5:40:6a:82:f1:94:1a:1b:3c:42:a4:fe:5b:2b:a5: 32:19:b4:05:e1:42:5d:34:4c:6e:34:cc:8c:27:6d: f1:6f:e4:ce:d9:64:ff:3a:c0:9a:fe:bf:76:9f:60: 6c:f2:92:dc:8d:44:28:29:42:c1:f5:15:63:82:6b: 2a:7e:cc:5f:1c:2d:03:f1:5e:0d:d6:8d:9f:0f:f2: f8:e6:46:97:0b:e9:9b:d4:c5:ba:67:c3:78:6b:52: a5:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:B6:A7:22:BE:81:F9:AE:3B:D6:DA:A1:20:89:35:AD:80:09:27:07 X509v3 Authority Key Identifier: keyid:B4:66:9D:30:D2:10:E4:90:7C:D2:88:8B:E7:4B:89:A6:DD:3C:B6:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9161A58/B389304EA7EC11EA80485864C4F9AE02/tGadMNIQ5JB80oiL50uJpt08tsg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tGadMNIQ5JB80oiL50uJpt08tsg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9161A58/B389304EA7EC11EA80485864C4F9AE02/tGadMNIQ5JB80oiL50uJpt08tsg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ad:79:b1:cc:e9:3f:95:22:55:1b:57:c8:b8:7b:9a:d4:a9:0d: 84:96:de:d6:2d:90:a7:ab:62:f3:97:ef:f2:24:ed:61:b9:be: 96:d1:7a:f3:be:6b:b0:9c:fd:7f:86:3e:c4:78:a0:0f:51:0d: 2d:69:ed:5e:97:52:a7:ff:f7:91:ee:d8:a5:36:43:5f:df:11: b7:1f:16:ab:af:cc:71:c6:2a:af:ca:22:f3:2b:4a:07:29:82: 43:27:c0:0e:8d:89:94:f4:c0:05:d6:7a:e8:cd:a4:95:3d:6e: 96:ca:50:43:0b:95:ac:ff:cd:20:59:fe:4f:bb:9b:3f:8f:cb: 01:b7:cd:ba:25:56:04:77:7e:e1:8e:0d:f0:b0:63:4b:37:c8: ee:81:34:dc:7e:21:f2:a0:b1:ab:10:58:b5:b5:31:43:1a:c1: 8f:73:72:21:2b:b9:91:15:49:6d:a3:0d:3d:42:0a:b7:2a:5d: 70:aa:df:16:82:b9:6a:3c:e3:f9:4e:be:fa:19:d4:d2:db:38: 7b:07:87:e2:49:05:f8:0c:52:d6:d1:89:06:7d:3d:27:40:9e: 65:57:2f:17:8a:7b:6b:95:88:00:ef:a7:6a:75:31:1a:61:5e: 6f:a9:bc:00:a7:0c:c1:ef:95:b8:c0:6c:80:9d:ff:f1:7f:21: 1f:c9:9c:82 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCXgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjFBNTgxMTAvBgNVBAUTKEI0NjY5RDMwRDIxMEU0OTA3Q0QyODg4QkU3NEI4OUE2 REQzQ0I2QzgwHhcNMjUxMTA0MjAxNDMyWhcNMjUxMTExMjAxNDMyWjAYMRYwFAYD VQQDEw02OTBhNWVhOC0wMWRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp21WYTFPispPphqO1WSBYK06Gbn76tH/nAhb1prhYfzVCYh39L47kYfgvoOa WLj7mcXwuRMlNVD/JyDrM7YtttzL8+6KAd9OT9FwGiJRsyVwllecGi8ejotrj7It hxU8+brtHJi/B76yI7EOe2fmVDDgJ+jD8IzJxC4SQyvXhQtqmz/qaKBystULq0P9 WG56CGDFahNPDDOziBbNmS+KmJsMdYilQGqC8ZQaGzxCpP5bK6UyGbQF4UJdNExu NMyMJ23xb+TO2WT/OsCa/r92n2Bs8pLcjUQoKULB9RVjgmsqfsxfHC0D8V4N1o2f D/L45kaXC+mb1MW6Z8N4a1KlpQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEW2pyK+ gfmuO9baoSCJNa2ACScHMB8GA1UdIwQYMBaAFLRmnTDSEOSQfNKIi+dLiabdPLbI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MUE1OC9CMzg5MzA0RUE3 RUMxMUVBODA0ODU4NjRDNEY5QUUwMi90R2FkTU5JUTVKQjgwb2lMNTB1SnB0MDh0 c2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RHYWRNTklRNUpCODBvaUw1MHVKcHQwOHRzZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MUE1OC9CMzg5MzA0RUE3RUMxMUVBODA0ODU4NjRDNEY5QUUwMi90R2FkTU5JUTVK Qjgwb2lMNTB1SnB0MDh0c2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCtebHM6T+VIlUbV8i4e5rUqQ2Elt7WLZCnq2Lzl+/yJO1hub6W0Xrz vmuwnP1/hj7EeKAPUQ0tae1el1Kn//eR7tilNkNf3xG3Hxarr8xxxiqvyiLzK0oH KYJDJ8AOjYmU9MAF1nrozaSVPW6WylBDC5Ws/80gWf5Pu5s/j8sBt826JVYEd37h jg3wsGNLN8jugTTcfiHyoLGrEFi1tTFDGsGPc3IhK7mRFUltow09Qgq3Kl1wqt8W grlqPOP5Tr76GdTS2zh7B4fiSQX4DFLW0YkGfT0nQJ5lVy8XintrlYgA76dqdTEa YV5vqbwApwzB75W4wGyAnf/xfyEfyZyC -----END CERTIFICATE-----Generated at Wed Nov 5 19:29:52 2025 by rpki-client