$ rpki-client -vvf rpki.apnic.net/member_repository/A9161F73/6DF0E1083D0711EFB5C9EC24C4F9AE02/tDxOPTL5W1BV0E_cAfhRljfImm8.mft File: tDxOPTL5W1BV0E_cAfhRljfImm8.mft (raw, json) Hash identifier: 1CcyHmMfhYkFGR0hLWAovYeoY3+ytDD5KjnfdpIa0gM= Subject key identifier: 39:4E:CF:01:9E:02:9E:57:1F:44:5F:18:0C:94:C5:4A:67:C6:EC:69 Authority key identifier: B4:3C:4E:3D:32:F9:5B:50:55:D0:4F:DC:01:F8:51:96:37:C8:9A:6F Certificate issuer: /CN=A9161F73/serialNumber=B43C4E3D32F95B5055D04FDC01F8519637C89A6F Certificate serial: FB Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tDxOPTL5W1BV0E_cAfhRljfImm8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9161F73/6DF0E1083D0711EFB5C9EC24C4F9AE02/tDxOPTL5W1BV0E_cAfhRljfImm8.mft Manifest number: F7 Signing time: Wed 29 Oct 2025 04:59:42 +0000 Manifest this update: Wed 29 Oct 2025 04:59:41 +0000 Manifest next update: Wed 05 Nov 2025 04:59:41 +0000 Files and hashes: 1: tDxOPTL5W1BV0E_cAfhRljfImm8.crl (hash: 4P+153xnZrba5Nc2gSlvoQ0xkzcaVJ2DtMIJBaD4FP0=) 2: 858870583D0A11EF829DCE39C4F9AE02.roa (hash: RTDmiAUTa+6e7BNeD1q7cr5hG3t1MJJWblXaDUXHJew=) 3: 38BDA87E3D0A11EF9EEE4439C4F9AE02.roa (hash: ZlBqKGquKmDZSHNnRJSZITSYuAIz8r1LwmFTYmRFcj4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9161F73/6DF0E1083D0711EFB5C9EC24C4F9AE02/tDxOPTL5W1BV0E_cAfhRljfImm8.crl rsync://rpki.apnic.net/member_repository/A9161F73/6DF0E1083D0711EFB5C9EC24C4F9AE02/tDxOPTL5W1BV0E_cAfhRljfImm8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tDxOPTL5W1BV0E_cAfhRljfImm8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Nov 2025 04:59:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 251 (0xfb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9161F73, serialNumber=B43C4E3D32F95B5055D04FDC01F8519637C89A6F Validity Not Before: Oct 29 04:59:41 2025 GMT Not After : Nov 5 04:59:41 2025 GMT Subject: CN=69019f3d-f69c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:e9:5c:73:9c:05:fc:fc:09:f7:29:d6:5c:fe: 4b:71:e1:80:fb:a0:f5:e2:72:b8:39:5d:bd:86:a9: 76:b2:99:5b:7a:7c:ac:25:84:a1:e2:15:f2:43:6f: 93:68:f1:64:6c:68:36:e8:0e:44:31:df:bf:40:0f: bb:54:ce:7f:34:ad:69:88:75:35:e8:5b:1b:ee:ca: 7c:64:28:0c:ea:46:23:57:96:59:b5:16:22:2e:1f: 2f:b9:9f:87:dc:32:4b:e2:5e:db:38:b7:c6:63:79: 6f:f8:ef:6e:4e:d9:dc:99:0f:fb:7e:79:b9:92:32: 1d:49:a1:88:9c:a1:db:51:23:fc:36:b1:15:8f:5c: c4:c2:46:27:29:96:59:52:57:9b:69:68:c0:d0:44: 2f:9c:7c:a7:a0:ab:da:af:66:b5:81:19:89:67:02: d4:f2:0c:e8:cd:72:45:71:b2:2f:5b:28:c6:93:8b: cd:00:05:40:21:95:e1:24:27:f0:1e:b0:b1:d7:c9: 18:84:ef:a1:c4:de:22:4a:20:61:48:eb:8b:b3:ee: 54:63:49:e5:70:0b:5f:83:fd:cf:84:24:1a:28:8a: 8a:0b:17:89:82:41:b0:37:ad:d5:b8:22:8e:b9:4d: 0b:3b:26:b3:c0:2e:06:88:9c:b0:07:5d:c8:07:7e: e4:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:4E:CF:01:9E:02:9E:57:1F:44:5F:18:0C:94:C5:4A:67:C6:EC:69 X509v3 Authority Key Identifier: keyid:B4:3C:4E:3D:32:F9:5B:50:55:D0:4F:DC:01:F8:51:96:37:C8:9A:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9161F73/6DF0E1083D0711EFB5C9EC24C4F9AE02/tDxOPTL5W1BV0E_cAfhRljfImm8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tDxOPTL5W1BV0E_cAfhRljfImm8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9161F73/6DF0E1083D0711EFB5C9EC24C4F9AE02/tDxOPTL5W1BV0E_cAfhRljfImm8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 15:98:0a:6d:83:b2:43:16:be:c1:6d:4a:68:fc:05:93:c2:e4: fc:3c:8a:15:d8:a5:97:f7:75:aa:4a:05:8c:42:18:34:8d:19: 2e:48:19:25:30:51:ad:93:90:fc:c9:aa:f0:38:e2:39:85:a4: b8:1c:e4:f6:7e:c7:44:a0:4f:83:84:cc:ab:b4:2e:49:c3:3f: 6d:b0:17:ae:52:dc:ef:3f:eb:97:3d:95:99:10:b9:3e:09:ce: 76:86:c5:c1:94:0b:38:aa:7b:4c:ab:b7:30:4a:66:63:bd:73: c3:e5:37:bd:f8:ea:01:d4:12:4f:81:d1:6e:82:24:63:5d:d5: f3:86:51:77:47:bd:cd:e2:9a:1f:ed:e9:28:b1:5d:e2:ef:63: ed:d9:98:a2:69:77:46:77:9a:99:6d:23:50:71:53:5a:9d:3a: 76:5e:68:d5:29:d1:7d:5c:de:ca:0b:12:df:5a:5e:4a:16:bc: 48:9e:31:be:ba:8a:e8:63:35:c2:be:cd:20:58:b8:1c:31:3f: 25:cc:8a:53:2b:d8:4c:7a:be:0f:6d:e6:32:7f:e9:43:0f:f5: ad:3a:e2:68:f4:07:2a:9a:eb:e1:93:ee:a2:24:db:d7:38:a0: 4d:5e:26:87:c2:cc:5a:aa:e0:88:9e:a8:ba:60:b3:39:b3:ab: 33:40:f6:1c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjFGNzMxMTAvBgNVBAUTKEI0M0M0RTNEMzJGOTVCNTA1NUQwNEZEQzAxRjg1MTk2 MzdDODlBNkYwHhcNMjUxMDI5MDQ1OTQxWhcNMjUxMTA1MDQ1OTQxWjAYMRYwFAYD VQQDEw02OTAxOWYzZC1mNjljMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAselcc5wF/PwJ9ynWXP5LceGA+6D14nK4OV29hql2splbenysJYSh4hXyQ2+T aPFkbGg26A5EMd+/QA+7VM5/NK1piHU16Fsb7sp8ZCgM6kYjV5ZZtRYiLh8vuZ+H 3DJL4l7bOLfGY3lv+O9uTtncmQ/7fnm5kjIdSaGInKHbUSP8NrEVj1zEwkYnKZZZ UlebaWjA0EQvnHynoKvar2a1gRmJZwLU8gzozXJFcbIvWyjGk4vNAAVAIZXhJCfw HrCx18kYhO+hxN4iSiBhSOuLs+5UY0nlcAtfg/3PhCQaKIqKCxeJgkGwN63VuCKO uU0LOyazwC4GiJywB13IB37kCwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDlOzwGe Ap5XH0RfGAyUxUpnxuxpMB8GA1UdIwQYMBaAFLQ8Tj0y+VtQVdBP3AH4UZY3yJpv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MUY3My82REYwRTEwODNE MDcxMUVGQjVDOUVDMjRDNEY5QUUwMi90RHhPUFRMNVcxQlYwRV9jQWZoUmxqZklt bTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3REeE9QVEw1VzFCVjBFX2NBZmhSbGpmSW1tOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MUY3My82REYwRTEwODNEMDcxMUVGQjVDOUVDMjRDNEY5QUUwMi90RHhPUFRMNVcx QlYwRV9jQWZoUmxqZkltbTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAVmAptg7JDFr7BbUpo/AWTwuT8PIoV2KWX93WqSgWMQhg0jRkuSBkl MFGtk5D8yarwOOI5haS4HOT2fsdEoE+DhMyrtC5Jwz9tsBeuUtzvP+uXPZWZELk+ Cc52hsXBlAs4qntMq7cwSmZjvXPD5Te9+OoB1BJPgdFugiRjXdXzhlF3R73N4pof 7ekosV3i72Pt2ZiiaXdGd5qZbSNQcVNanTp2XmjVKdF9XN7KCxLfWl5KFrxInjG+ uoroYzXCvs0gWLgcMT8lzIpTK9hMer4PbeYyf+lDD/WtOuJo9Acqmuvhk+6iJNvX OKBNXiaHwsxaquCInqi6YLM5s6szQPYc -----END CERTIFICATE-----Generated at Thu Oct 30 14:51:17 2025 by rpki-client