$ rpki-client -vvf rpki.apnic.net/member_repository/A9172B46/088701B8ABB411F0ABF20940C4F9AE02/tU4IRltUXO7x4uEAl3XZG6QStj0.mft File: tU4IRltUXO7x4uEAl3XZG6QStj0.mft (raw, json) Hash identifier: 6izjJk35qVuQhzJkizB1dv1GOUkORxrA8FdUA555ucw= Subject key identifier: 2A:18:19:D6:49:29:C1:82:73:53:B9:33:B8:48:10:B9:4F:DB:78:83 Authority key identifier: B5:4E:08:46:5B:54:5C:EE:F1:E2:E1:00:97:75:D9:1B:A4:12:B6:3D Certificate issuer: /CN=A9172B46/serialNumber=B54E08465B545CEEF1E2E1009775D91BA412B63D Certificate serial: 13 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tU4IRltUXO7x4uEAl3XZG6QStj0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9172B46/088701B8ABB411F0ABF20940C4F9AE02/tU4IRltUXO7x4uEAl3XZG6QStj0.mft Manifest number: 0F Signing time: Mon 03 Nov 2025 08:00:20 +0000 Manifest this update: Mon 03 Nov 2025 08:00:20 +0000 Manifest next update: Mon 10 Nov 2025 08:00:20 +0000 Files and hashes: 1: tU4IRltUXO7x4uEAl3XZG6QStj0.crl (hash: wVawJ1AVc1Vx8FYq0gvQMqXZlriysK2clnaB3yWhaQU=) 2: 5493E832AF1511F09DB9CB78C4F9AE02.roa (hash: TkA4esTL9Exwr+47F2RMHuvhHZl+fNcFsQRPqVn17vg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9172B46/088701B8ABB411F0ABF20940C4F9AE02/tU4IRltUXO7x4uEAl3XZG6QStj0.crl rsync://rpki.apnic.net/member_repository/A9172B46/088701B8ABB411F0ABF20940C4F9AE02/tU4IRltUXO7x4uEAl3XZG6QStj0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tU4IRltUXO7x4uEAl3XZG6QStj0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 08:00:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19 (0x13) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9172B46, serialNumber=B54E08465B545CEEF1E2E1009775D91BA412B63D Validity Not Before: Nov 3 08:00:20 2025 GMT Not After : Nov 10 08:00:20 2025 GMT Subject: CN=69086114-1942 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:ed:48:4f:b6:97:3a:e3:1f:79:40:aa:ca:c3: 1f:ab:2f:83:30:b9:19:a9:aa:b8:fc:04:92:9b:4f: ee:b2:af:86:c4:be:d9:13:88:44:d9:63:86:a0:22: 33:2b:e4:d3:24:38:5e:44:28:ff:08:9b:65:ad:c8: 21:03:2d:87:47:fd:b2:3f:b2:6f:64:a0:8e:17:e1: c2:a4:dc:d6:2a:75:e3:ec:da:0b:60:39:9a:e7:99: d8:96:1d:0a:6b:11:27:d6:00:e8:73:f2:af:3b:42: a4:43:28:45:95:fb:ba:8d:33:90:57:2c:20:32:36: c7:9c:aa:ef:c0:45:95:18:2b:66:03:f4:43:fd:e8: 61:48:67:0d:30:a3:41:f0:8c:77:63:b0:ef:8a:f8: 03:65:92:e6:ce:75:e1:14:ce:c1:93:87:ea:ee:bc: bd:3d:b5:2c:a1:74:0a:13:fa:b6:3b:dc:99:ad:36: 2f:52:3d:85:47:b3:80:9b:0d:f3:60:aa:17:80:f3: 87:16:61:6e:fb:f5:94:ab:88:ec:31:39:28:aa:b5: f1:77:17:8a:e3:a6:4c:6d:f7:1b:44:a7:49:8e:6e: 24:a6:cc:e5:c0:ff:f9:75:0f:01:98:16:44:fe:aa: 57:7c:a2:53:00:06:5b:5f:27:ed:c6:4e:b6:d5:c7: e2:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:18:19:D6:49:29:C1:82:73:53:B9:33:B8:48:10:B9:4F:DB:78:83 X509v3 Authority Key Identifier: keyid:B5:4E:08:46:5B:54:5C:EE:F1:E2:E1:00:97:75:D9:1B:A4:12:B6:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9172B46/088701B8ABB411F0ABF20940C4F9AE02/tU4IRltUXO7x4uEAl3XZG6QStj0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tU4IRltUXO7x4uEAl3XZG6QStj0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9172B46/088701B8ABB411F0ABF20940C4F9AE02/tU4IRltUXO7x4uEAl3XZG6QStj0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 32:e0:66:58:48:a9:e5:28:9e:67:21:9e:55:b8:d4:c8:ce:fa: ef:b6:b7:22:ae:7c:82:93:14:c6:97:00:a3:75:48:3b:08:5f: d0:db:92:ea:04:62:ea:30:94:c2:1d:53:05:74:75:e6:3b:20: ca:d5:04:8a:c7:4e:b2:00:e9:7d:42:c7:1c:f2:23:d0:0c:a1: 6a:e7:e7:89:8b:0f:1d:6e:bc:22:ef:8e:be:06:61:5a:9f:42: 3f:a5:6e:32:b7:a3:33:8f:3b:a7:6c:6e:40:23:2e:a9:a4:d0: 79:bb:27:7e:ea:0f:01:2c:54:ab:51:9f:72:45:2d:be:50:07: a0:8c:27:81:ba:db:bc:d1:b3:b5:b4:7b:72:8f:8d:93:3b:08: 8a:68:38:b9:a3:56:35:b8:5f:3e:49:41:14:82:76:8c:19:79: c4:2c:57:20:62:55:ba:33:db:38:3a:3f:9e:6e:62:db:c2:f4: ae:df:cb:b8:ce:6d:1b:b7:0a:5c:2b:e0:7a:cd:46:d1:88:10: 41:48:dc:2a:b4:84:99:1e:ea:da:38:3e:18:dc:c8:b4:14:70: 1e:45:54:24:6b:6a:d7:a8:78:3c:21:f0:00:b7:02:4e:cf:ea: b7:8b:db:dc:e8:fd:65:f3:88:3a:59:0a:58:05:ea:ee:3a:6a: 04:1f:90:b6 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBEzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 MkI0NjExMC8GA1UEBRMoQjU0RTA4NDY1QjU0NUNFRUYxRTJFMTAwOTc3NUQ5MUJB NDEyQjYzRDAeFw0yNTExMDMwODAwMjBaFw0yNTExMTAwODAwMjBaMBgxFjAUBgNV BAMTDTY5MDg2MTE0LTE5NDIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC47UhPtpc64x95QKrKwx+rL4MwuRmpqrj8BJKbT+6yr4bEvtkTiETZY4agIjMr 5NMkOF5EKP8Im2WtyCEDLYdH/bI/sm9koI4X4cKk3NYqdePs2gtgOZrnmdiWHQpr ESfWAOhz8q87QqRDKEWV+7qNM5BXLCAyNsecqu/ARZUYK2YD9EP96GFIZw0wo0Hw jHdjsO+K+ANlkubOdeEUzsGTh+ruvL09tSyhdAoT+rY73JmtNi9SPYVHs4CbDfNg qheA84cWYW779ZSriOwxOSiqtfF3F4rjpkxt9xtEp0mObiSmzOXA//l1DwGYFkT+ qld8olMABltfJ+3GTrbVx+JVAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUKhgZ1kkp wYJzU7kzuEgQuU/beIMwHwYDVR0jBBgwFoAUtU4IRltUXO7x4uEAl3XZG6QStj0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcyQjQ2LzA4ODcwMUI4QUJC NDExRjBBQkYyMDk0MEM0RjlBRTAyL3RVNElSbHRVWE83eDR1RUFsM1haRzZRU3Rq MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvdFU0SVJsdFVYTzd4NHVFQWwzWFpHNlFTdGowLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcy QjQ2LzA4ODcwMUI4QUJCNDExRjBBQkYyMDk0MEM0RjlBRTAyL3RVNElSbHRVWE83 eDR1RUFsM1haRzZRU3RqMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADLgZlhIqeUonmchnlW41MjO+u+2tyKufIKTFMaXAKN1SDsIX9DbkuoE YuowlMIdUwV0deY7IMrVBIrHTrIA6X1CxxzyI9AMoWrn54mLDx1uvCLvjr4GYVqf Qj+lbjK3ozOPO6dsbkAjLqmk0Hm7J37qDwEsVKtRn3JFLb5QB6CMJ4G627zRs7W0 e3KPjZM7CIpoOLmjVjW4Xz5JQRSCdowZecQsVyBiVboz2zg6P55uYtvC9K7fy7jO bRu3Clwr4HrNRtGIEEFI3Cq0hJke6to4PhjcyLQUcB5FVCRrateoeDwh8AC3Ak7P 6reL29zo/WXziDpZClgF6u46agQfkLY= -----END CERTIFICATE-----Generated at Mon Nov 3 18:09:55 2025 by rpki-client