$ rpki-client -vvf rpki.apnic.net/member_repository/A916D459/99EC89EC422011EAB5302016C4F9AE02/tRdNgmVknN0nQmySfRaHddeD1Tg.mft File: tRdNgmVknN0nQmySfRaHddeD1Tg.mft (raw, json) Hash identifier: KO6zXoE/VeZCLuZaSAtdz+nyeHK/nyJ9GM6bwfS7a58= Subject key identifier: 69:F8:B3:CD:73:D1:C5:88:C8:CD:B1:A1:22:D3:4F:A7:7D:33:1A:94 Authority key identifier: B5:17:4D:82:65:64:9C:DD:27:42:6C:92:7D:16:87:75:D7:83:D5:38 Certificate issuer: /CN=A916D459/serialNumber=B5174D8265649CDD27426C927D168775D783D538 Certificate serial: 0B60 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tRdNgmVknN0nQmySfRaHddeD1Tg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916D459/99EC89EC422011EAB5302016C4F9AE02/tRdNgmVknN0nQmySfRaHddeD1Tg.mft Manifest number: 0B58 Signing time: Wed 22 Oct 2025 19:46:00 +0000 Manifest this update: Wed 22 Oct 2025 19:45:59 +0000 Manifest next update: Wed 29 Oct 2025 19:45:59 +0000 Files and hashes: 1: tRdNgmVknN0nQmySfRaHddeD1Tg.crl (hash: 7h0n3l7bSpuyOJlLJm9GcpWUUqbz8LWD0Ss9FizpDpU=) 2: 61E12BD0CA0611EEB05EB92CC4F9AE02.roa (hash: o16pooFHIEBYiC/U+8swfJroVM1JsQPPQfuyHDWfNA4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916D459/99EC89EC422011EAB5302016C4F9AE02/tRdNgmVknN0nQmySfRaHddeD1Tg.crl rsync://rpki.apnic.net/member_repository/A916D459/99EC89EC422011EAB5302016C4F9AE02/tRdNgmVknN0nQmySfRaHddeD1Tg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tRdNgmVknN0nQmySfRaHddeD1Tg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 29 Oct 2025 19:45:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2912 (0xb60) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916D459, serialNumber=B5174D8265649CDD27426C927D168775D783D538 Validity Not Before: Oct 22 19:45:59 2025 GMT Not After : Oct 29 19:45:59 2025 GMT Subject: CN=68f93477-4b20 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:08:5d:44:77:93:bb:dd:d2:1b:23:4b:35:a7: f6:15:09:9c:31:74:8c:83:2a:f4:5b:84:6c:63:90: eb:ce:e8:e1:9f:1b:a4:08:97:59:80:28:e6:4a:9b: 46:15:b6:62:82:5e:8f:5c:ba:02:06:1a:a8:e7:4e: db:2a:cb:f2:f7:0a:9d:a5:ac:ee:67:f1:9f:eb:ba: 47:07:d8:57:87:b2:ff:ec:ea:8e:79:58:6e:7b:75: 5e:d3:83:7a:ae:0c:fa:1b:0c:0d:c6:a3:c5:12:fb: 8d:94:89:8d:48:88:4e:31:76:e5:67:66:ef:96:f3: bb:87:61:5e:0b:b7:8b:06:90:54:cb:21:b0:06:77: 6e:5d:71:21:f6:0a:23:54:96:f6:ea:90:e7:b3:54: 6b:1c:d0:45:1b:17:60:21:2b:a7:66:1a:bf:12:b0: 4b:93:82:7a:b2:f9:96:22:11:68:fc:31:d3:c3:46: 5f:9c:f6:61:51:23:e6:91:12:d2:8a:e7:1a:4d:2b: 3e:75:92:e8:1c:ca:59:15:a8:8c:2f:5b:ff:88:51: 75:94:5b:1b:1d:f4:f9:eb:29:22:bd:ca:69:0b:bc: 87:86:bf:28:5e:fb:b2:cc:b4:fa:ed:70:48:e2:d5: 30:6a:d0:91:17:87:53:d8:e4:22:b6:2b:be:b6:53: a9:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:F8:B3:CD:73:D1:C5:88:C8:CD:B1:A1:22:D3:4F:A7:7D:33:1A:94 X509v3 Authority Key Identifier: keyid:B5:17:4D:82:65:64:9C:DD:27:42:6C:92:7D:16:87:75:D7:83:D5:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916D459/99EC89EC422011EAB5302016C4F9AE02/tRdNgmVknN0nQmySfRaHddeD1Tg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tRdNgmVknN0nQmySfRaHddeD1Tg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916D459/99EC89EC422011EAB5302016C4F9AE02/tRdNgmVknN0nQmySfRaHddeD1Tg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 67:43:37:22:26:6a:50:df:30:1b:17:f6:65:c0:2c:31:45:e9: b3:fa:00:7e:8e:3c:35:d3:96:79:b6:3b:ff:9a:5d:e4:cc:a2: 6d:1a:8a:c7:50:bc:f7:4e:a4:f0:fa:f4:d3:84:6d:1d:eb:91: 56:22:bb:6b:31:00:ee:b6:7c:bd:ac:1e:8d:05:63:a9:dc:fa: cd:64:97:b3:b2:ca:5e:3c:1c:7a:ed:93:f5:c8:58:44:48:8e: 9a:05:31:00:f9:b0:02:71:a4:07:69:10:8c:dc:8c:22:e3:01: 7b:8e:ee:98:68:f3:7f:c9:fa:55:0e:00:91:f1:6a:9b:4f:3d: f2:54:65:7c:6c:8e:c7:1a:4e:c0:e5:ff:ca:e9:15:ea:28:25: ab:7a:a6:fb:89:9b:65:83:09:76:de:78:6a:34:1e:8b:99:c1: 56:a7:25:9b:d9:9d:e1:fc:02:7e:b1:6c:27:ac:1f:31:95:3b: 3e:ff:ec:7c:43:3c:9c:62:39:8e:2d:58:fb:f0:f1:0b:66:24: 4d:70:ce:e1:9e:f8:46:2d:db:6d:e7:28:49:34:32:7f:f3:86: 2a:c8:be:cd:26:02:43:5b:2c:31:7b:5a:8b:39:b1:99:ce:35: b8:d6:dd:dc:0d:50:db:84:af:05:45:e0:f4:8b:36:68:81:3a: c3:25:16:d8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC2AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkQ0NTkxMTAvBgNVBAUTKEI1MTc0RDgyNjU2NDlDREQyNzQyNkM5MjdEMTY4Nzc1 RDc4M0Q1MzgwHhcNMjUxMDIyMTk0NTU5WhcNMjUxMDI5MTk0NTU5WjAYMRYwFAYD VQQDEw02OGY5MzQ3Ny00YjIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApghdRHeTu93SGyNLNaf2FQmcMXSMgyr0W4RsY5DrzujhnxukCJdZgCjmSptG FbZigl6PXLoCBhqo507bKsvy9wqdpazuZ/Gf67pHB9hXh7L/7OqOeVhue3Ve04N6 rgz6GwwNxqPFEvuNlImNSIhOMXblZ2bvlvO7h2FeC7eLBpBUyyGwBnduXXEh9goj VJb26pDns1RrHNBFGxdgISunZhq/ErBLk4J6svmWIhFo/DHTw0ZfnPZhUSPmkRLS iucaTSs+dZLoHMpZFaiML1v/iFF1lFsbHfT56ykivcppC7yHhr8oXvuyzLT67XBI 4tUwatCRF4dT2OQitiu+tlOp5QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGn4s81z 0cWIyM2xoSLTT6d9MxqUMB8GA1UdIwQYMBaAFLUXTYJlZJzdJ0Jskn0Wh3XXg9U4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RDQ1OS85OUVDODlFQzQy MjAxMUVBQjUzMDIwMTZDNEY5QUUwMi90UmROZ21Wa25OMG5RbXlTZlJhSGRkZUQx VGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RSZE5nbVZrbk4wblFteVNmUmFIZGRlRDFUZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 RDQ1OS85OUVDODlFQzQyMjAxMUVBQjUzMDIwMTZDNEY5QUUwMi90UmROZ21Wa25O MG5RbXlTZlJhSGRkZUQxVGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBnQzciJmpQ3zAbF/ZlwCwxRemz+gB+jjw105Z5tjv/ml3kzKJtGorH ULz3TqTw+vTThG0d65FWIrtrMQDutny9rB6NBWOp3PrNZJezsspePBx67ZP1yFhE SI6aBTEA+bACcaQHaRCM3Iwi4wF7ju6YaPN/yfpVDgCR8WqbTz3yVGV8bI7HGk7A 5f/K6RXqKCWreqb7iZtlgwl23nhqNB6LmcFWpyWb2Z3h/AJ+sWwnrB8xlTs+/+x8 QzycYjmOLVj78PELZiRNcM7hnvhGLdtt5yhJNDJ/84YqyL7NJgJDWywxe1qLObGZ zjW41t3cDVDbhK8FReD0izZogTrDJRbY -----END CERTIFICATE-----Generated at Wed Oct 22 21:55:19 2025 by rpki-client