$ rpki-client -vvf rpki.apnic.net/member_repository/A9176C8F/F14EED986B5A11EFBC99925CC4F9AE02/Tn7ZUcT4nxHxlEaOqBVE1zNeT1k.mft File: Tn7ZUcT4nxHxlEaOqBVE1zNeT1k.mft (raw, json) Hash identifier: +4rGlH+BrcFHXaQDz0Z8uGa0yUJc2FB+ebm5TrqkMwI= Subject key identifier: C9:72:0E:86:66:43:8D:98:2B:0B:5B:AB:FF:9C:69:51:41:55:26:E3 Authority key identifier: 4E:7E:D9:51:C4:F8:9F:11:F1:94:46:8E:A8:15:44:D7:33:5E:4F:59 Certificate issuer: /CN=A9176C8F/serialNumber=4E7ED951C4F89F11F194468EA81544D7335E4F59 Certificate serial: E1 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Tn7ZUcT4nxHxlEaOqBVE1zNeT1k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9176C8F/F14EED986B5A11EFBC99925CC4F9AE02/Tn7ZUcT4nxHxlEaOqBVE1zNeT1k.mft Manifest number: DD Signing time: Sat 25 Oct 2025 09:22:17 +0000 Manifest this update: Sat 25 Oct 2025 09:22:16 +0000 Manifest next update: Sat 01 Nov 2025 09:22:16 +0000 Files and hashes: 1: Tn7ZUcT4nxHxlEaOqBVE1zNeT1k.crl (hash: JYvqt7fWgSSV2GFXi2AXULzFrZ8oTs88NoCfsAZ8aNI=) 2: 4E9597086B5C11EFABB11F60C4F9AE02.roa (hash: Co6tkDsI5HQErtzjpED6IOpErLBa9412vvEmJqPigVc=) 3: 43749A72824E11F0A1C4B018C4F9AE02.roa (hash: 4DEc0wbLK30W3YSB0WhzIpXuKeWb4EluJvYfPFr8RSQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9176C8F/F14EED986B5A11EFBC99925CC4F9AE02/Tn7ZUcT4nxHxlEaOqBVE1zNeT1k.crl rsync://rpki.apnic.net/member_repository/A9176C8F/F14EED986B5A11EFBC99925CC4F9AE02/Tn7ZUcT4nxHxlEaOqBVE1zNeT1k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Tn7ZUcT4nxHxlEaOqBVE1zNeT1k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 01 Nov 2025 09:19:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 225 (0xe1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9176C8F, serialNumber=4E7ED951C4F89F11F194468EA81544D7335E4F59 Validity Not Before: Oct 25 09:22:16 2025 GMT Not After : Nov 1 09:22:16 2025 GMT Subject: CN=68fc96c8-c4e4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:51:6d:30:e5:88:9b:10:dc:97:34:dd:91:92: 82:6e:e6:8a:2e:3c:cd:c0:3c:69:3e:45:be:4a:5c: 57:50:a7:8e:c2:08:30:61:72:c7:02:fa:52:76:f4: 8f:5b:7d:ec:fd:7e:71:4e:8c:66:2c:a6:7c:9e:93: 54:a7:c7:e8:9c:f7:84:e7:18:34:35:a0:1f:35:21: 49:62:7f:fe:af:19:a4:fc:87:d9:69:72:e2:32:d5: 07:9b:c6:d3:68:6e:61:8d:70:08:a2:31:f1:1b:2b: 91:46:78:02:cb:e3:bf:5a:ed:c1:5b:f0:50:7e:73: da:3e:6b:86:af:47:04:3a:53:53:97:bc:d8:76:39: 93:35:ce:29:e1:43:73:b6:ea:27:c6:0f:00:ef:16: df:a6:05:ab:28:45:07:19:51:52:4f:3e:75:47:54: 3b:19:f1:80:db:d1:6a:77:27:73:cf:0b:61:07:c2: 61:57:3d:72:1e:40:3e:bd:2d:b8:d9:cb:aa:51:1f: 91:64:91:ff:00:a6:a2:83:52:58:89:0e:aa:18:2b: 9a:5f:31:20:16:fa:61:01:97:f2:db:8e:0b:5f:31: 11:62:13:d2:fb:e1:b8:a1:bc:d3:7f:1d:bf:85:4e: 90:af:94:50:ab:dc:65:fd:b4:04:7e:b6:9a:5a:a9: 1b:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:72:0E:86:66:43:8D:98:2B:0B:5B:AB:FF:9C:69:51:41:55:26:E3 X509v3 Authority Key Identifier: keyid:4E:7E:D9:51:C4:F8:9F:11:F1:94:46:8E:A8:15:44:D7:33:5E:4F:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9176C8F/F14EED986B5A11EFBC99925CC4F9AE02/Tn7ZUcT4nxHxlEaOqBVE1zNeT1k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Tn7ZUcT4nxHxlEaOqBVE1zNeT1k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9176C8F/F14EED986B5A11EFBC99925CC4F9AE02/Tn7ZUcT4nxHxlEaOqBVE1zNeT1k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7f:22:68:2c:33:5c:d8:16:e7:a0:34:5f:60:0e:72:fc:28:42: 94:fb:58:d1:7d:ea:9e:19:5c:bc:10:21:bd:09:9d:10:d3:49: 5d:91:58:1d:cc:6b:a8:c8:ea:15:64:d1:21:58:e7:11:53:b2: ac:95:32:41:be:26:7b:cc:22:04:c1:1f:5f:05:2b:61:d3:4c: b6:d3:b6:94:bc:fe:22:92:33:5b:cb:87:ad:fe:b1:b8:76:22: 0c:c2:c6:a2:76:69:ff:6a:02:8e:27:1a:08:9a:98:65:a2:d5: 23:d1:64:c2:2a:99:80:bc:56:d8:a5:5e:ee:e4:a7:30:1b:60: 71:50:ee:34:74:b0:8a:a7:c6:16:4d:c3:06:24:f6:e6:07:31: 5d:63:e3:5c:4a:7e:25:66:97:8b:98:62:db:a0:e9:2e:47:0e: 46:2a:ab:4f:5e:cd:f1:eb:28:55:ec:ce:42:e1:b3:37:37:96: 47:33:8b:57:6c:c5:8b:f6:93:c1:ad:2f:1a:7f:d1:bb:dd:2f: ad:66:2d:89:7a:a8:ba:8d:68:40:a5:1d:3e:49:29:d4:eb:3e: 8c:90:8e:45:d4:22:1e:6a:30:43:eb:93:24:d6:57:0e:3a:3a: d0:7a:16:ca:fa:56:63:53:4c:fa:ce:82:38:1a:3f:06:a0:2d: bc:43:d1:e9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzZDOEYxMTAvBgNVBAUTKDRFN0VEOTUxQzRGODlGMTFGMTk0NDY4RUE4MTU0NEQ3 MzM1RTRGNTkwHhcNMjUxMDI1MDkyMjE2WhcNMjUxMTAxMDkyMjE2WjAYMRYwFAYD VQQDEw02OGZjOTZjOC1jNGU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxlFtMOWImxDclzTdkZKCbuaKLjzNwDxpPkW+SlxXUKeOwggwYXLHAvpSdvSP W33s/X5xToxmLKZ8npNUp8fonPeE5xg0NaAfNSFJYn/+rxmk/IfZaXLiMtUHm8bT aG5hjXAIojHxGyuRRngCy+O/Wu3BW/BQfnPaPmuGr0cEOlNTl7zYdjmTNc4p4UNz tuonxg8A7xbfpgWrKEUHGVFSTz51R1Q7GfGA29FqdydzzwthB8JhVz1yHkA+vS24 2cuqUR+RZJH/AKaig1JYiQ6qGCuaXzEgFvphAZfy244LXzERYhPS++G4obzTfx2/ hU6Qr5RQq9xl/bQEfraaWqkbXQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMlyDoZm Q42YKwtbq/+caVFBVSbjMB8GA1UdIwQYMBaAFE5+2VHE+J8R8ZRGjqgVRNczXk9Z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NkM4Ri9GMTRFRUQ5ODZC NUExMUVGQkM5OTkyNUNDNEY5QUUwMi9UbjdaVWNUNG54SHhsRWFPcUJWRTF6TmVU MWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1RuN1pVY1Q0bnhIeGxFYU9xQlZFMXpOZVQxay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NkM4Ri9GMTRFRUQ5ODZCNUExMUVGQkM5OTkyNUNDNEY5QUUwMi9UbjdaVWNUNG54 SHhsRWFPcUJWRTF6TmVUMWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB/ImgsM1zYFuegNF9gDnL8KEKU+1jRfeqeGVy8ECG9CZ0Q00ldkVgd zGuoyOoVZNEhWOcRU7KslTJBviZ7zCIEwR9fBSth00y207aUvP4ikjNby4et/rG4 diIMwsaidmn/agKOJxoImphlotUj0WTCKpmAvFbYpV7u5KcwG2BxUO40dLCKp8YW TcMGJPbmBzFdY+NcSn4lZpeLmGLboOkuRw5GKqtPXs3x6yhV7M5C4bM3N5ZHM4tX bMWL9pPBrS8af9G73S+tZi2Jeqi6jWhApR0+SSnU6z6MkI5F1CIeajBD65Mk1lcO OjrQehbK+lZjU0z6zoI4Gj8GoC28Q9Hp -----END CERTIFICATE-----Generated at Sat Oct 25 13:39:04 2025 by rpki-client