$ rpki-client -vvf rpki.apnic.net/member_repository/A9169351/31A0D182940511EEA8687547C4F9AE02/tUdigfNZTThknMz_UvWLtJtHXwk.mft File: tUdigfNZTThknMz_UvWLtJtHXwk.mft (raw, json) Hash identifier: boSl2Z+Ada0C+ma4U9+saynjD5H6PZqHhKEX2r0YvJY= Subject key identifier: 76:1A:3B:EE:21:7D:F6:72:AE:2C:D5:4A:2C:D9:41:6E:2D:19:50:3A Authority key identifier: B5:47:62:81:F3:59:4D:38:64:9C:CC:FF:52:F5:8B:B4:9B:47:5F:09 Certificate issuer: /CN=A9169351/serialNumber=B5476281F3594D38649CCCFF52F58BB49B475F09 Certificate serial: 0173 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tUdigfNZTThknMz_UvWLtJtHXwk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9169351/31A0D182940511EEA8687547C4F9AE02/tUdigfNZTThknMz_UvWLtJtHXwk.mft Manifest number: 016D Signing time: Mon 03 Nov 2025 03:59:36 +0000 Manifest this update: Mon 03 Nov 2025 03:59:35 +0000 Manifest next update: Mon 10 Nov 2025 03:59:35 +0000 Files and hashes: 1: tUdigfNZTThknMz_UvWLtJtHXwk.crl (hash: 8NQQKaJBZJSe6Uapx2w4hE6wtnZDDFQV4pbcjKqvSuk=) 2: 86080D8A940511EE8A83F00DC4F9AE02.roa (hash: 6vLkVoo3xeixncmkuul2aavr7vLSk2WGgm6lp66mNlo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9169351/31A0D182940511EEA8687547C4F9AE02/tUdigfNZTThknMz_UvWLtJtHXwk.crl rsync://rpki.apnic.net/member_repository/A9169351/31A0D182940511EEA8687547C4F9AE02/tUdigfNZTThknMz_UvWLtJtHXwk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tUdigfNZTThknMz_UvWLtJtHXwk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 03:59:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 371 (0x173) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9169351, serialNumber=B5476281F3594D38649CCCFF52F58BB49B475F09 Validity Not Before: Nov 3 03:59:35 2025 GMT Not After : Nov 10 03:59:35 2025 GMT Subject: CN=690828a8-fcb9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:a8:65:b4:d0:ce:6c:d1:4b:57:be:e7:2b:bf: 1c:ff:fa:35:7a:75:5a:70:47:1b:79:37:8b:e5:88: 1d:4e:da:38:90:59:d5:ed:b6:c4:10:6e:a0:28:9e: f1:b7:c9:8e:ad:b6:8a:2b:d2:28:21:02:d6:9f:de: 23:91:d4:fd:7d:9b:b7:08:55:87:fd:ca:b4:f2:0b: 2f:cd:19:42:c9:c2:e3:5e:bb:f7:4d:ab:9d:ae:9b: 24:a8:09:25:ed:82:12:35:ff:49:d2:0e:96:a1:e5: 75:ce:c9:04:57:9b:40:07:c8:17:96:4d:a8:f1:d7: 10:9c:a8:52:a2:d3:70:3e:0e:ae:5c:c3:79:70:d9: 6b:48:6b:52:c5:11:da:78:64:9b:f1:53:82:58:91: ed:13:c1:8a:af:36:4f:a1:51:dd:e2:34:14:c6:11: c4:84:db:f9:cd:54:9e:e1:7f:bb:9a:66:17:99:37: a2:73:cb:d0:64:f1:67:7f:22:a2:5c:64:35:82:01: 82:c0:c2:5d:88:6e:ff:b5:75:b3:65:09:a9:22:9b: 82:b5:22:4e:fb:96:c4:aa:e6:4f:f8:e9:d2:d2:aa: a9:7e:2f:da:0b:26:fe:89:68:5b:cd:a7:ee:57:94: 01:37:1a:7a:f7:24:b7:99:25:19:a2:36:23:7f:e9: e8:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:1A:3B:EE:21:7D:F6:72:AE:2C:D5:4A:2C:D9:41:6E:2D:19:50:3A X509v3 Authority Key Identifier: keyid:B5:47:62:81:F3:59:4D:38:64:9C:CC:FF:52:F5:8B:B4:9B:47:5F:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9169351/31A0D182940511EEA8687547C4F9AE02/tUdigfNZTThknMz_UvWLtJtHXwk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tUdigfNZTThknMz_UvWLtJtHXwk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9169351/31A0D182940511EEA8687547C4F9AE02/tUdigfNZTThknMz_UvWLtJtHXwk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b8:6b:c2:7d:27:30:f1:56:21:7a:ea:b9:26:c3:f6:ca:0c:ea: 37:74:f3:c7:69:61:14:fb:45:21:74:d4:1a:72:2e:9e:33:05: 4a:87:3e:b3:7b:3d:60:23:6d:88:cf:07:74:1b:23:ad:31:95: 65:52:62:04:2a:ce:84:1d:4a:25:41:23:1c:8f:c9:54:09:cf: f0:26:b7:74:a1:d7:f7:ed:f2:c7:d1:8a:2e:92:68:e8:28:a6: 1c:eb:0a:c8:3c:d0:a5:06:de:2c:7a:df:36:93:b9:5b:20:d7: 79:3a:88:1a:85:31:9a:6a:69:87:d2:99:ce:84:19:fe:89:6f: 64:54:bb:b1:0b:62:e5:2b:77:d3:f4:eb:c3:4e:76:9e:63:c4: e4:8a:0e:ef:6a:6a:fa:6a:98:81:35:c9:65:8a:ce:c1:45:00: 0c:09:45:59:0c:dc:d9:61:ee:f2:26:37:54:3a:f5:c4:95:12: 95:11:3a:8b:9d:0b:00:85:3a:87:80:ca:e3:7a:30:89:0d:7b: 60:c1:50:8f:81:bc:33:c9:fa:8a:c1:80:f7:26:50:30:b1:5d: 63:eb:4e:c7:6e:1e:26:ae:84:e2:a3:b6:78:40:70:83:a2:e1: 3f:95:28:bb:cd:84:29:58:ee:79:06:90:04:55:32:00:85:c7: 5d:73:4d:e9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjkzNTExMTAvBgNVBAUTKEI1NDc2MjgxRjM1OTREMzg2NDlDQ0NGRjUyRjU4QkI0 OUI0NzVGMDkwHhcNMjUxMTAzMDM1OTM1WhcNMjUxMTEwMDM1OTM1WjAYMRYwFAYD VQQDEw02OTA4MjhhOC1mY2I5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApahltNDObNFLV77nK78c//o1enVacEcbeTeL5YgdTto4kFnV7bbEEG6gKJ7x t8mOrbaKK9IoIQLWn94jkdT9fZu3CFWH/cq08gsvzRlCycLjXrv3TaudrpskqAkl 7YISNf9J0g6WoeV1zskEV5tAB8gXlk2o8dcQnKhSotNwPg6uXMN5cNlrSGtSxRHa eGSb8VOCWJHtE8GKrzZPoVHd4jQUxhHEhNv5zVSe4X+7mmYXmTeic8vQZPFnfyKi XGQ1ggGCwMJdiG7/tXWzZQmpIpuCtSJO+5bEquZP+OnS0qqpfi/aCyb+iWhbzafu V5QBNxp69yS3mSUZojYjf+noqwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHYaO+4h ffZyrizVSizZQW4tGVA6MB8GA1UdIwQYMBaAFLVHYoHzWU04ZJzM/1L1i7SbR18J MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OTM1MS8zMUEwRDE4Mjk0 MDUxMUVFQTg2ODc1NDdDNEY5QUUwMi90VWRpZ2ZOWlRUaGtuTXpfVXZXTHRKdEhY d2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RVZGlnZk5aVFRoa25Nel9VdldMdEp0SFh3ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 OTM1MS8zMUEwRDE4Mjk0MDUxMUVFQTg2ODc1NDdDNEY5QUUwMi90VWRpZ2ZOWlRU aGtuTXpfVXZXTHRKdEhYd2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC4a8J9JzDxViF66rkmw/bKDOo3dPPHaWEU+0UhdNQaci6eMwVKhz6z ez1gI22Izwd0GyOtMZVlUmIEKs6EHUolQSMcj8lUCc/wJrd0odf37fLH0Youkmjo KKYc6wrIPNClBt4set82k7lbINd5OogahTGaammH0pnOhBn+iW9kVLuxC2LlK3fT 9OvDTnaeY8Tkig7vamr6apiBNcllis7BRQAMCUVZDNzZYe7yJjdUOvXElRKVETqL nQsAhTqHgMrjejCJDXtgwVCPgbwzyfqKwYD3JlAwsV1j607Hbh4mroTio7Z4QHCD ouE/lSi7zYQpWO55BpAEVTIAhcddc03p -----END CERTIFICATE-----Generated at Mon Nov 3 18:06:49 2025 by rpki-client