$ rpki-client -vvf rpki.apnic.net/member_repository/A918ABAC/649BC3B250C911F0B4730246C4F9AE02/tAOKtkA58xRWIqIP9w7Xvh1Of5E.mft File: tAOKtkA58xRWIqIP9w7Xvh1Of5E.mft (raw, json) Hash identifier: VxpEsyegAExvZgtwP0cyXBoUgeLuFa+0VNp6kUYlNBA= Subject key identifier: F4:42:88:59:30:B2:1A:51:86:52:5B:BC:27:62:9F:33:2F:09:B4:EB Authority key identifier: B4:03:8A:B6:40:39:F3:14:56:22:A2:0F:F7:0E:D7:BE:1D:4E:7F:91 Certificate issuer: /CN=A918ABAC/serialNumber=B4038AB64039F3145622A20FF70ED7BE1D4E7F91 Certificate serial: 55 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tAOKtkA58xRWIqIP9w7Xvh1Of5E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918ABAC/649BC3B250C911F0B4730246C4F9AE02/tAOKtkA58xRWIqIP9w7Xvh1Of5E.mft Manifest number: 4A Signing time: Fri 17 Oct 2025 11:11:20 +0000 Manifest this update: Fri 17 Oct 2025 11:11:19 +0000 Manifest next update: Fri 24 Oct 2025 11:11:19 +0000 Files and hashes: 1: tAOKtkA58xRWIqIP9w7Xvh1Of5E.crl (hash: +/fL59YDUJ9ZVuGFIs8s5yW7ap75hU+ixrw2wu9HQyo=) 2: E641780E535211F0A795A950C4F9AE02.roa (hash: /6fZjzm6zMKlJavcLCHUvZwJwnYnVUAiwPFKfA2za2E=) 3: ACE7F9985DF711F084BC8A50C4F9AE02.roa (hash: JnKzQUCZZIkzk+PTJ2yOthp2jewtbhpdupguptGlDRA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918ABAC/649BC3B250C911F0B4730246C4F9AE02/tAOKtkA58xRWIqIP9w7Xvh1Of5E.crl rsync://rpki.apnic.net/member_repository/A918ABAC/649BC3B250C911F0B4730246C4F9AE02/tAOKtkA58xRWIqIP9w7Xvh1Of5E.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tAOKtkA58xRWIqIP9w7Xvh1Of5E.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Oct 2025 11:11:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 85 (0x55) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918ABAC, serialNumber=B4038AB64039F3145622A20FF70ED7BE1D4E7F91 Validity Not Before: Oct 17 11:11:19 2025 GMT Not After : Oct 24 11:11:19 2025 GMT Subject: CN=68f22458-4d45 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:f4:46:7b:12:c2:d9:51:8a:96:4e:f9:85:2f: 6f:2f:53:bf:f5:db:db:5e:04:4c:dc:d8:d0:ab:36: 50:f2:bd:f1:a1:01:81:98:43:72:c3:f4:fc:43:e4: fb:00:37:b1:f0:0e:56:a5:83:49:79:91:70:ba:d7: 81:f7:ab:f5:77:04:50:58:a6:24:8f:0e:08:0b:73: 6b:eb:32:56:6b:8a:c7:4c:74:a7:70:8a:36:03:ca: 15:03:39:c9:8f:0c:ca:94:2e:49:59:d2:a5:e8:fa: 54:da:0e:0e:25:50:97:ec:ac:a4:bd:e2:6c:32:27: 28:43:9e:23:ce:af:f5:2b:52:7b:78:30:d7:62:ca: a9:f7:98:2a:de:cf:b8:95:8b:af:7e:ff:7b:34:6f: ed:39:97:82:9d:85:13:62:b3:a1:0a:e5:a5:95:67: 66:47:0a:46:84:5a:a1:c2:8f:b9:a2:77:89:f1:b6: f3:88:cc:6c:ef:29:83:29:4b:0a:d1:ee:09:02:ab: 79:ca:32:47:17:76:c3:33:80:e3:49:f9:6f:57:31: 04:a7:e2:c6:54:27:0a:1b:d8:d7:b2:f8:8c:31:4b: b6:a7:1a:3c:e8:52:a5:95:12:3c:18:c8:a3:5a:a6: 94:a6:58:40:2e:0d:87:da:70:f1:58:80:50:ce:02: f0:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:42:88:59:30:B2:1A:51:86:52:5B:BC:27:62:9F:33:2F:09:B4:EB X509v3 Authority Key Identifier: keyid:B4:03:8A:B6:40:39:F3:14:56:22:A2:0F:F7:0E:D7:BE:1D:4E:7F:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918ABAC/649BC3B250C911F0B4730246C4F9AE02/tAOKtkA58xRWIqIP9w7Xvh1Of5E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tAOKtkA58xRWIqIP9w7Xvh1Of5E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918ABAC/649BC3B250C911F0B4730246C4F9AE02/tAOKtkA58xRWIqIP9w7Xvh1Of5E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 27:92:1e:d1:ff:b7:ce:47:70:aa:d4:ed:b1:1c:f3:59:17:e9: a9:1d:95:72:8c:f9:82:89:59:67:47:35:91:2b:44:00:28:d7: 98:da:31:49:d8:5c:d1:11:79:c0:10:fa:2a:b2:e3:4d:76:41: 11:9c:b8:6e:28:c4:e4:97:f6:e8:40:41:9e:f6:fe:f2:b5:7d: 70:6f:8e:2d:7b:48:3a:5e:11:8e:9b:1c:2f:4c:41:e8:da:58: ba:48:7d:4c:61:4a:10:e3:51:45:e1:f0:09:a0:8b:b1:06:25: 43:5f:1a:95:0c:ea:18:98:27:e9:4c:0f:56:e5:be:2c:f2:3f: 09:a6:63:8a:96:12:ac:a7:24:34:22:8c:0b:e5:3a:b6:f8:fb: 0d:95:84:0c:a2:f6:22:55:c4:41:aa:90:05:5a:cf:4d:d4:20: d2:cc:97:42:17:46:6e:62:f2:8e:96:e0:07:b2:8d:55:74:b2: 50:33:9d:62:7e:ed:5e:d3:5b:b7:99:8f:1c:78:6b:54:03:2a: 37:30:e3:ea:99:35:37:29:21:c5:ad:78:55:74:92:c3:bb:de: 6e:cc:b2:48:b5:d4:0c:f7:23:e5:d0:6a:d3:aa:6a:32:45:5a: 29:ec:a0:58:2a:46:cf:62:e3:b5:b5:9d:f7:26:b4:86:a7:0d: be:1d:39:e4 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBVTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 QUJBQzExMC8GA1UEBRMoQjQwMzhBQjY0MDM5RjMxNDU2MjJBMjBGRjcwRUQ3QkUx RDRFN0Y5MTAeFw0yNTEwMTcxMTExMTlaFw0yNTEwMjQxMTExMTlaMBgxFjAUBgNV BAMTDTY4ZjIyNDU4LTRkNDUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDQ9EZ7EsLZUYqWTvmFL28vU7/129teBEzc2NCrNlDyvfGhAYGYQ3LD9PxD5PsA N7HwDlalg0l5kXC614H3q/V3BFBYpiSPDggLc2vrMlZrisdMdKdwijYDyhUDOcmP DMqULklZ0qXo+lTaDg4lUJfsrKS94mwyJyhDniPOr/UrUnt4MNdiyqn3mCrez7iV i69+/3s0b+05l4KdhRNis6EK5aWVZ2ZHCkaEWqHCj7mid4nxtvOIzGzvKYMpSwrR 7gkCq3nKMkcXdsMzgONJ+W9XMQSn4sZUJwob2Ney+IwxS7anGjzoUqWVEjwYyKNa ppSmWEAuDYfacPFYgFDOAvDJAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU9EKIWTCy GlGGUlu8J2KfMy8JtOswHwYDVR0jBBgwFoAUtAOKtkA58xRWIqIP9w7Xvh1Of5Ew DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThBQkFDLzY0OUJDM0IyNTBD OTExRjBCNDczMDI0NkM0RjlBRTAyL3RBT0t0a0E1OHhSV0lxSVA5dzdYdmgxT2Y1 RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvdEFPS3RrQTU4eFJXSXFJUDl3N1h2aDFPZjVFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThB QkFDLzY0OUJDM0IyNTBDOTExRjBCNDczMDI0NkM0RjlBRTAyL3RBT0t0a0E1OHhS V0lxSVA5dzdYdmgxT2Y1RS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACeSHtH/t85HcKrU7bEc81kX6akdlXKM+YKJWWdHNZErRAAo15jaMUnY XNERecAQ+iqy4012QRGcuG4oxOSX9uhAQZ72/vK1fXBvji17SDpeEY6bHC9MQeja WLpIfUxhShDjUUXh8Amgi7EGJUNfGpUM6hiYJ+lMD1blvizyPwmmY4qWEqynJDQi jAvlOrb4+w2VhAyi9iJVxEGqkAVaz03UINLMl0IXRm5i8o6W4AeyjVV0slAznWJ+ 7V7TW7eZjxx4a1QDKjcw4+qZNTcpIcWteFV0ksO73m7Mski11Az3I+XQatOqajJF WinsoFgqRs9i47W1nfcmtIanDb4dOeQ= -----END CERTIFICATE-----Generated at Sat Oct 18 23:21:59 2025 by rpki-client