$ rpki-client -vvf rpki.apnic.net/member_repository/A916C128/664A9BCAFA6D11E3B6AC23505911EA32/tWQnMiZdQL91ypSp7IEZIRwbmzI.mft File: tWQnMiZdQL91ypSp7IEZIRwbmzI.mft (raw, json) Hash identifier: T5E5wbzWNR+58DoP3QbiN8NVBk6pa1eHDxuDMRBAbSw= Subject key identifier: DC:A0:65:E0:38:99:1A:F9:AD:A9:86:04:28:EE:CF:28:62:87:68:57 Authority key identifier: B5:64:27:32:26:5D:40:BF:75:CA:94:A9:EC:81:19:21:1C:1B:9B:32 Certificate issuer: /CN=A916C128/serialNumber=B5642732265D40BF75CA94A9EC8119211C1B9B32 Certificate serial: 2C78 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tWQnMiZdQL91ypSp7IEZIRwbmzI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916C128/664A9BCAFA6D11E3B6AC23505911EA32/tWQnMiZdQL91ypSp7IEZIRwbmzI.mft Manifest number: 2BCF Signing time: Mon 20 Oct 2025 15:41:24 +0000 Manifest this update: Mon 20 Oct 2025 15:41:23 +0000 Manifest next update: Mon 27 Oct 2025 15:41:23 +0000 Files and hashes: 1: tWQnMiZdQL91ypSp7IEZIRwbmzI.crl (hash: NAEiSl5IJKzSAnsF+GlzlJVpnwBwflqXT1mEaoP/YhE=) 2: 13461F60ABDC11EDAE837666C4F9AE02.roa (hash: NyqTZQOkUqWoaM40ZktUlOiopL6FbxfHLQstlqudq2c=) 3: E0CC928CABDE11ED954F5C84C4F9AE02.roa (hash: LZsU00B4/gx6lo+GhGlRRaLNP1lXi+x7ZDLzlvJoUls=) 4: DF821D20ABDE11ED954F5C84C4F9AE02.roa (hash: je3auOg70+6cT16YOal/ttbSxW+A5XuODnJlOPCEZSc=) 5: 4462F034F0EC11EB9D0B176AC4F9AE02.roa (hash: aSO9wjURcYGva8bAjVzZpymdiAuS5bByHQh+Eq4/Ung=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916C128/664A9BCAFA6D11E3B6AC23505911EA32/tWQnMiZdQL91ypSp7IEZIRwbmzI.crl rsync://rpki.apnic.net/member_repository/A916C128/664A9BCAFA6D11E3B6AC23505911EA32/tWQnMiZdQL91ypSp7IEZIRwbmzI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tWQnMiZdQL91ypSp7IEZIRwbmzI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Oct 2025 15:41:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11384 (0x2c78) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916C128, serialNumber=B5642732265D40BF75CA94A9EC8119211C1B9B32 Validity Not Before: Oct 20 15:41:23 2025 GMT Not After : Oct 27 15:41:23 2025 GMT Subject: CN=68f65824-6117 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:88:a5:8c:94:ce:e5:de:9a:53:91:aa:73:4c: d0:8e:06:a8:09:c2:48:46:ba:de:5a:e2:01:81:7c: 7f:8e:87:ea:b1:03:bc:47:b5:3e:ac:82:04:4e:3d: ed:4c:a0:15:44:f2:f7:db:ac:28:cd:16:0c:92:f5: bf:0f:02:df:7f:23:c1:9c:c1:2b:9a:45:62:a0:b2: 5f:f7:13:da:41:47:dd:a4:bf:29:9d:7d:4b:11:95: 08:64:a7:47:b6:e9:68:53:f7:61:ac:ab:96:2a:1e: b6:71:fb:b9:c3:c9:62:f5:c3:73:84:16:a0:25:33: 73:a7:7f:5c:fa:0f:ad:b6:04:82:b6:e6:7b:8f:ce: da:57:8d:9a:eb:36:09:25:ea:be:4c:4d:6d:95:07: d6:41:7f:3b:66:ba:ee:45:a2:50:d7:05:ec:eb:0b: 19:7a:e3:d6:f8:9d:39:a4:c0:c1:d2:7b:e1:b6:19: e3:ea:d8:a0:2e:70:fd:7e:1f:56:02:5a:1e:19:99: a5:b9:92:4a:7e:98:be:64:9f:3e:20:f0:42:b8:dd: 9a:eb:02:e8:dc:b0:e0:3f:cb:3d:c5:90:10:2f:79: c2:c8:e1:f7:9f:80:ca:f4:02:ae:a2:e2:ce:68:e5: 0b:68:89:cd:f9:30:49:92:65:e9:a9:09:49:e6:8b: 93:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:A0:65:E0:38:99:1A:F9:AD:A9:86:04:28:EE:CF:28:62:87:68:57 X509v3 Authority Key Identifier: keyid:B5:64:27:32:26:5D:40:BF:75:CA:94:A9:EC:81:19:21:1C:1B:9B:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916C128/664A9BCAFA6D11E3B6AC23505911EA32/tWQnMiZdQL91ypSp7IEZIRwbmzI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tWQnMiZdQL91ypSp7IEZIRwbmzI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916C128/664A9BCAFA6D11E3B6AC23505911EA32/tWQnMiZdQL91ypSp7IEZIRwbmzI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6a:38:15:2e:5b:50:7a:29:08:cb:f1:4e:bf:ca:19:93:c4:6c: 24:81:a5:5d:03:46:b0:4c:a7:88:3c:2c:e6:67:57:bf:ba:f0: 43:63:57:61:4b:ba:0c:05:97:e2:df:ec:40:61:c9:5c:12:d3: 26:95:8f:e4:b0:bc:4b:23:7d:39:92:de:a6:81:a4:3b:20:f7: 47:80:6f:f2:43:ec:2e:ae:0d:4c:1a:2e:a3:91:8e:34:14:96: a4:31:3c:6a:2b:0a:9f:57:f6:87:cd:c0:e3:96:81:34:40:88: 40:62:bb:a0:75:6b:ce:60:54:82:f7:a4:35:53:ea:5a:40:bd: c3:98:40:b1:24:0b:1b:fa:86:3e:ee:c5:2d:b8:9b:09:ed:3f: 99:5d:40:e6:4d:d3:bb:4e:01:12:47:46:d6:2d:d7:0b:a8:4d: 67:da:2b:95:c1:27:4e:9f:c7:46:95:98:42:63:39:81:8e:a1: a8:ed:1d:d4:4b:e2:91:cb:30:60:08:19:73:0e:0a:3b:99:16: d5:0d:31:83:cf:42:d7:00:60:98:6a:ee:f0:f7:07:ad:47:18: b1:01:56:11:4c:b6:5f:40:34:51:32:1e:c4:09:57:fe:18:39: 24:52:06:65:f7:3e:a9:4c:2f:65:99:18:3a:60:ef:d4:b4:6d: 26:d0:36:2b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICLHgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkMxMjgxMTAvBgNVBAUTKEI1NjQyNzMyMjY1RDQwQkY3NUNBOTRBOUVDODExOTIx MUMxQjlCMzIwHhcNMjUxMDIwMTU0MTIzWhcNMjUxMDI3MTU0MTIzWjAYMRYwFAYD VQQDEw02OGY2NTgyNC02MTE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8IiljJTO5d6aU5Gqc0zQjgaoCcJIRrreWuIBgXx/jofqsQO8R7U+rIIETj3t TKAVRPL326wozRYMkvW/DwLffyPBnMErmkVioLJf9xPaQUfdpL8pnX1LEZUIZKdH tuloU/dhrKuWKh62cfu5w8li9cNzhBagJTNzp39c+g+ttgSCtuZ7j87aV42a6zYJ Jeq+TE1tlQfWQX87ZrruRaJQ1wXs6wsZeuPW+J05pMDB0nvhthnj6tigLnD9fh9W AloeGZmluZJKfpi+ZJ8+IPBCuN2a6wLo3LDgP8s9xZAQL3nCyOH3n4DK9AKuouLO aOULaInN+TBJkmXpqQlJ5ouTkwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNygZeA4 mRr5ramGBCjuzyhih2hXMB8GA1UdIwQYMBaAFLVkJzImXUC/dcqUqeyBGSEcG5sy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QzEyOC82NjRBOUJDQUZB NkQxMUUzQjZBQzIzNTA1OTExRUEzMi90V1FuTWlaZFFMOTF5cFNwN0lFWklSd2Jt ekkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RXUW5NaVpkUUw5MXlwU3A3SUVaSVJ3Ym16SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QzEyOC82NjRBOUJDQUZBNkQxMUUzQjZBQzIzNTA1OTExRUEzMi90V1FuTWlaZFFM OTF5cFNwN0lFWklSd2JtekkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBqOBUuW1B6KQjL8U6/yhmTxGwkgaVdA0awTKeIPCzmZ1e/uvBDY1dh S7oMBZfi3+xAYclcEtMmlY/ksLxLI305kt6mgaQ7IPdHgG/yQ+wurg1MGi6jkY40 FJakMTxqKwqfV/aHzcDjloE0QIhAYrugdWvOYFSC96Q1U+paQL3DmECxJAsb+oY+ 7sUtuJsJ7T+ZXUDmTdO7TgESR0bWLdcLqE1n2iuVwSdOn8dGlZhCYzmBjqGo7R3U S+KRyzBgCBlzDgo7mRbVDTGDz0LXAGCYau7w9wetRxixAVYRTLZfQDRRMh7ECVf+ GDkkUgZl9z6pTC9lmRg6YO/UtG0m0DYr -----END CERTIFICATE-----Generated at Tue Oct 21 23:02:38 2025 by rpki-client