$ rpki-client -vvf rpki.apnic.net/member_repository/A9188D2D/A0682A048FF911EDABEC2537C4F9AE02/tYgfusqd6_Rspghj0pd8U_3WwZA.mft File: tYgfusqd6_Rspghj0pd8U_3WwZA.mft (raw, json) Hash identifier: rqtPTVFrDeFEbJkLyShfuglz9DlXSFlh+hJCSJ+NqY4= Subject key identifier: 25:04:7D:2F:3E:1C:65:5E:83:AF:2F:60:B9:01:2F:64:D7:57:54:E7 Authority key identifier: B5:88:1F:BA:CA:9D:EB:F4:6C:A6:08:63:D2:97:7C:53:FD:D6:C1:90 Certificate issuer: /CN=A9188D2D/serialNumber=B5881FBACA9DEBF46CA60863D2977C53FDD6C190 Certificate serial: 0212 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tYgfusqd6_Rspghj0pd8U_3WwZA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9188D2D/A0682A048FF911EDABEC2537C4F9AE02/tYgfusqd6_Rspghj0pd8U_3WwZA.mft Manifest number: 020C Signing time: Mon 03 Nov 2025 02:14:36 +0000 Manifest this update: Mon 03 Nov 2025 02:14:36 +0000 Manifest next update: Mon 10 Nov 2025 02:14:35 +0000 Files and hashes: 1: tYgfusqd6_Rspghj0pd8U_3WwZA.crl (hash: 3yXufjmpURkqYcP1eE/vozNh3UW153NEKf4MjRXQsH0=) 2: D9D943568FFC11ED9776CB38C4F9AE02.roa (hash: CAQTwJ95TZU81HKb4Y7lVQbfnRcyYnVzCOwyM749MwA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9188D2D/A0682A048FF911EDABEC2537C4F9AE02/tYgfusqd6_Rspghj0pd8U_3WwZA.crl rsync://rpki.apnic.net/member_repository/A9188D2D/A0682A048FF911EDABEC2537C4F9AE02/tYgfusqd6_Rspghj0pd8U_3WwZA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tYgfusqd6_Rspghj0pd8U_3WwZA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 02:14:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 530 (0x212) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9188D2D, serialNumber=B5881FBACA9DEBF46CA60863D2977C53FDD6C190 Validity Not Before: Nov 3 02:14:36 2025 GMT Not After : Nov 10 02:14:35 2025 GMT Subject: CN=6908100c-9360 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:72:b1:1a:73:17:1f:f3:6c:35:ea:8b:61:7b: 4d:c1:5b:39:b9:00:c6:9a:07:30:f2:ef:9d:f5:ca: 81:32:8a:80:63:13:00:56:21:de:35:d1:eb:7a:bd: 43:74:d5:2c:0c:a0:30:5c:71:82:07:b2:6e:a1:71: db:b2:34:da:eb:5b:3f:d4:7d:5e:9d:0e:2d:47:ce: 59:c9:35:04:68:6a:c2:07:8c:0a:2a:7b:f8:37:1c: b2:40:43:ad:1c:58:b4:63:b0:88:ff:4e:ad:74:74: 98:c3:5a:fb:64:2f:42:e9:6b:08:b2:75:ae:aa:32: c8:5a:4d:a6:dd:38:22:12:c7:16:71:9f:56:e2:2d: cb:a3:f9:d6:7d:26:6a:ee:63:a2:b9:c5:69:df:73: 70:5e:26:af:d1:14:cc:16:fc:bd:80:71:45:59:f9: 9a:c6:cb:57:a8:ba:86:98:d0:b2:5f:c0:2a:e6:52: 13:f7:fd:46:b7:a8:04:60:a6:6c:b2:cb:8d:e1:df: 10:d5:4f:dd:77:72:a8:33:38:eb:13:5a:8a:c0:c2: b3:2c:83:8b:fc:6b:68:d0:54:81:85:61:1c:89:3e: 66:b8:92:64:32:fc:fd:a2:62:f4:16:58:a1:c9:ef: f2:2d:09:c2:50:13:7e:9b:f6:75:ce:9d:d4:9f:ec: 95:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:04:7D:2F:3E:1C:65:5E:83:AF:2F:60:B9:01:2F:64:D7:57:54:E7 X509v3 Authority Key Identifier: keyid:B5:88:1F:BA:CA:9D:EB:F4:6C:A6:08:63:D2:97:7C:53:FD:D6:C1:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9188D2D/A0682A048FF911EDABEC2537C4F9AE02/tYgfusqd6_Rspghj0pd8U_3WwZA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tYgfusqd6_Rspghj0pd8U_3WwZA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9188D2D/A0682A048FF911EDABEC2537C4F9AE02/tYgfusqd6_Rspghj0pd8U_3WwZA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:21:c4:13:73:ed:1a:64:92:00:4a:6c:d5:e2:eb:5c:93:bc: f4:5c:9b:c4:46:8e:99:91:7d:ae:41:71:f0:0c:fd:5c:14:9c: fe:44:8e:dc:25:7e:f9:0a:40:8c:80:f7:c8:1a:60:39:d6:b1: d9:de:0b:e9:5a:17:49:35:7a:e2:a9:3f:18:fa:c6:ce:ea:82: 38:62:75:9c:c5:e0:b4:bc:81:46:9b:d6:c1:23:63:1f:90:c6: 63:66:fa:af:e2:93:1f:ab:1f:1a:31:00:7f:2b:23:71:24:42: 31:19:35:be:c8:26:63:1c:09:1d:63:c5:a9:30:d0:50:e7:63: ca:bc:42:9d:bc:43:e2:2a:aa:49:db:e2:b9:81:1f:69:cb:b5: 42:fd:85:08:cc:da:d4:af:35:da:74:4a:8f:f9:0e:6c:cd:1e: a3:b5:d5:4e:d8:c0:dc:fe:16:58:f8:53:97:97:98:10:52:0f: 7d:fa:79:c4:34:1c:14:1f:bd:d9:10:83:a3:9d:81:d9:e8:ed: d6:d1:7c:0e:1b:ae:a9:ea:57:e4:d3:e4:f0:39:48:bd:77:f2: d7:c7:26:f4:cb:1c:ba:cc:d1:4e:3e:3f:d8:cd:06:52:e9:57: 57:e0:e9:af:82:c4:bc:3b:cc:ff:dc:4c:91:19:86:24:37:c3: a9:d8:e2:a3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAhIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODhEMkQxMTAvBgNVBAUTKEI1ODgxRkJBQ0E5REVCRjQ2Q0E2MDg2M0QyOTc3QzUz RkRENkMxOTAwHhcNMjUxMTAzMDIxNDM2WhcNMjUxMTEwMDIxNDM1WjAYMRYwFAYD VQQDEw02OTA4MTAwYy05MzYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw3KxGnMXH/NsNeqLYXtNwVs5uQDGmgcw8u+d9cqBMoqAYxMAViHeNdHrer1D dNUsDKAwXHGCB7JuoXHbsjTa61s/1H1enQ4tR85ZyTUEaGrCB4wKKnv4NxyyQEOt HFi0Y7CI/06tdHSYw1r7ZC9C6WsIsnWuqjLIWk2m3TgiEscWcZ9W4i3Lo/nWfSZq 7mOiucVp33NwXiav0RTMFvy9gHFFWfmaxstXqLqGmNCyX8Aq5lIT9/1Gt6gEYKZs ssuN4d8Q1U/dd3KoMzjrE1qKwMKzLIOL/Gto0FSBhWEciT5muJJkMvz9omL0Flih ye/yLQnCUBN+m/Z1zp3Un+yVnQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCUEfS8+ HGVeg68vYLkBL2TXV1TnMB8GA1UdIwQYMBaAFLWIH7rKnev0bKYIY9KXfFP91sGQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4OEQyRC9BMDY4MkEwNDhG RjkxMUVEQUJFQzI1MzdDNEY5QUUwMi90WWdmdXNxZDZfUnNwZ2hqMHBkOFVfM1d3 WkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RZZ2Z1c3FkNl9Sc3BnaGowcGQ4VV8zV3daQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 OEQyRC9BMDY4MkEwNDhGRjkxMUVEQUJFQzI1MzdDNEY5QUUwMi90WWdmdXNxZDZf UnNwZ2hqMHBkOFVfM1d3WkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAjIcQTc+0aZJIASmzV4utck7z0XJvERo6ZkX2uQXHwDP1cFJz+RI7c JX75CkCMgPfIGmA51rHZ3gvpWhdJNXriqT8Y+sbO6oI4YnWcxeC0vIFGm9bBI2Mf kMZjZvqv4pMfqx8aMQB/KyNxJEIxGTW+yCZjHAkdY8WpMNBQ52PKvEKdvEPiKqpJ 2+K5gR9py7VC/YUIzNrUrzXadEqP+Q5szR6jtdVO2MDc/hZY+FOXl5gQUg99+nnE NBwUH73ZEIOjnYHZ6O3W0XwOG66p6lfk0+TwOUi9d/LXxyb0yxy6zNFOPj/YzQZS 6VdX4OmvgsS8O8z/3EyRGYYkN8Op2OKj -----END CERTIFICATE-----Generated at Mon Nov 3 18:17:23 2025 by rpki-client