$ rpki-client -vvf rpki.apnic.net/member_repository/A919608D/81073A30287711E99421C84CC4F9AE02/0tgIBJpG7Xl8Ifn2AlI0VkYxs_k.mft File: 0tgIBJpG7Xl8Ifn2AlI0VkYxs_k.mft (raw, json) Hash identifier: JYSeVlNrdCG5B1guzaDm+c5k+8CdzsXEcedJ2PCSZS8= Subject key identifier: 2B:C9:24:D8:F5:FA:5A:D3:F2:93:2F:9D:5B:B0:CE:19:0B:40:EA:97 Authority key identifier: D2:D8:08:04:9A:46:ED:79:7C:21:F9:F6:02:52:34:56:46:31:B3:F9 Certificate issuer: /CN=A919608D/serialNumber=D2D808049A46ED797C21F9F6025234564631B3F9 Certificate serial: 1117 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0tgIBJpG7Xl8Ifn2AlI0VkYxs_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919608D/81073A30287711E99421C84CC4F9AE02/0tgIBJpG7Xl8Ifn2AlI0VkYxs_k.mft Manifest number: 10FC Signing time: Tue 04 Nov 2025 17:22:14 +0000 Manifest this update: Tue 04 Nov 2025 17:22:13 +0000 Manifest next update: Tue 11 Nov 2025 17:22:13 +0000 Files and hashes: 1: 0tgIBJpG7Xl8Ifn2AlI0VkYxs_k.crl (hash: UnsGR+zclpdYaLZHhCXx1TJhwK8WdlOhhBn2GjplJwU=) 2: 0E17B1AE78F511EC83E56014C4F9AE02.roa (hash: lCmO2moRnEyFjHn2T0RrSpJHfoRMsDo8flibJ/q1im8=) 3: 0D0B79E478F511EC83E56014C4F9AE02.roa (hash: tpKBG2KlXfT/Zt122B62y1RWSYubHmXeyHELnt2EtS4=) 4: 1ED5B13E30C111ECBB5A4116C4F9AE02.roa (hash: IHi+IFG70AY+pGCPcqa0F+qxqcr2LZY1LLXZfYW/jkU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919608D/81073A30287711E99421C84CC4F9AE02/0tgIBJpG7Xl8Ifn2AlI0VkYxs_k.crl rsync://rpki.apnic.net/member_repository/A919608D/81073A30287711E99421C84CC4F9AE02/0tgIBJpG7Xl8Ifn2AlI0VkYxs_k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0tgIBJpG7Xl8Ifn2AlI0VkYxs_k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 17:22:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4375 (0x1117) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919608D, serialNumber=D2D808049A46ED797C21F9F6025234564631B3F9 Validity Not Before: Nov 4 17:22:13 2025 GMT Not After : Nov 11 17:22:13 2025 GMT Subject: CN=690a3645-c1c3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:b1:a8:c2:cb:49:fd:55:91:55:d6:96:c3:d6: bc:8d:7c:7c:ea:4a:e3:fd:da:ae:0d:70:fe:fc:86: 72:2d:98:c5:f2:23:3d:3e:88:35:78:37:ad:21:2f: dd:92:97:76:03:16:6b:ef:74:7d:a2:d8:26:3c:00: d5:35:f1:bb:01:b9:8d:0f:ef:47:e1:d8:18:fd:b6: 4c:99:dc:50:a5:9f:22:af:6b:b9:b8:5a:2e:a4:97: 4b:3d:1c:8a:c2:73:0f:56:fc:f0:3b:72:d8:ed:0c: ba:24:bc:3b:49:51:13:45:81:71:5b:a1:fa:35:39: 95:b0:44:e6:af:24:74:c2:00:46:5b:9c:a7:8b:c5: 4c:a4:59:e0:ef:56:9b:0c:55:18:ae:b2:d7:c2:b5: 6f:94:16:8c:88:c8:02:57:f4:7f:e4:a9:7e:79:38: 7c:88:99:08:64:02:b8:91:1d:1a:4b:f7:c3:be:05: cf:0c:08:23:04:4f:a8:16:36:ef:7a:8e:44:4c:b0: cb:15:ce:62:31:3a:3e:e2:08:07:34:6d:19:e8:cd: 58:78:bd:27:77:1f:bb:19:93:5f:dc:88:26:21:43: fb:88:fb:f4:90:46:75:16:89:86:5e:8a:93:af:08: de:83:7a:fb:b9:34:f9:40:5b:97:b3:a2:a3:d1:dc: 81:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:C9:24:D8:F5:FA:5A:D3:F2:93:2F:9D:5B:B0:CE:19:0B:40:EA:97 X509v3 Authority Key Identifier: keyid:D2:D8:08:04:9A:46:ED:79:7C:21:F9:F6:02:52:34:56:46:31:B3:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919608D/81073A30287711E99421C84CC4F9AE02/0tgIBJpG7Xl8Ifn2AlI0VkYxs_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0tgIBJpG7Xl8Ifn2AlI0VkYxs_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919608D/81073A30287711E99421C84CC4F9AE02/0tgIBJpG7Xl8Ifn2AlI0VkYxs_k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 67:06:83:01:7e:c9:17:5d:3d:3f:30:ad:28:c3:15:93:9e:39: bf:0a:6a:10:ce:ae:2a:d0:97:35:54:29:9b:fd:9c:68:c4:8c: dc:25:23:d4:d4:e0:5a:76:75:d1:8a:7c:b7:53:db:7a:7e:af: 6b:5d:33:49:ef:40:34:92:39:5c:a8:82:79:45:4a:2b:6c:44: 1d:ee:42:7d:d2:38:b0:25:56:09:d4:1b:b1:d9:05:82:dd:ba: eb:8b:40:00:af:d5:9f:38:3c:14:55:bc:4a:e4:4f:80:c8:d9: ed:f1:fc:1d:05:a7:33:55:65:26:3b:41:43:14:4d:5e:a8:7e: f8:01:4a:ad:68:f4:79:08:b8:89:36:b4:69:43:e4:86:4f:29: 69:2e:a5:4a:78:b4:98:f3:ec:13:64:1b:fe:07:e0:b2:7e:e9: fb:d9:93:59:8f:c2:46:e8:9e:c5:7c:c9:86:3a:80:2b:8e:48: a6:45:0a:cd:cf:7e:4a:95:27:51:93:95:39:73:8f:0a:da:14: 0e:36:3e:8d:b2:c1:c0:7e:af:a8:4a:c3:99:15:98:36:cc:38: 3b:2b:a3:31:0a:ed:e8:ce:a4:61:4d:06:f2:05:51:90:93:76: 2c:6f:30:4a:ba:60:9f:ac:b3:a0:7e:d1:e6:a9:da:3c:0c:d4: a0:fb:28:0a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICERcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTYwOEQxMTAvBgNVBAUTKEQyRDgwODA0OUE0NkVENzk3QzIxRjlGNjAyNTIzNDU2 NDYzMUIzRjkwHhcNMjUxMTA0MTcyMjEzWhcNMjUxMTExMTcyMjEzWjAYMRYwFAYD VQQDEw02OTBhMzY0NS1jMWMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwrGowstJ/VWRVdaWw9a8jXx86krj/dquDXD+/IZyLZjF8iM9Pog1eDetIS/d kpd2AxZr73R9otgmPADVNfG7AbmND+9H4dgY/bZMmdxQpZ8ir2u5uFoupJdLPRyK wnMPVvzwO3LY7Qy6JLw7SVETRYFxW6H6NTmVsETmryR0wgBGW5yni8VMpFng71ab DFUYrrLXwrVvlBaMiMgCV/R/5Kl+eTh8iJkIZAK4kR0aS/fDvgXPDAgjBE+oFjbv eo5ETLDLFc5iMTo+4ggHNG0Z6M1YeL0ndx+7GZNf3IgmIUP7iPv0kEZ1FomGXoqT rwjeg3r7uTT5QFuXs6Kj0dyBcwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCvJJNj1 +lrT8pMvnVuwzhkLQOqXMB8GA1UdIwQYMBaAFNLYCASaRu15fCH59gJSNFZGMbP5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NjA4RC84MTA3M0EzMDI4 NzcxMUU5OTQyMUM4NENDNEY5QUUwMi8wdGdJQkpwRzdYbDhJZm4yQWxJMFZrWXhz X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzB0Z0lCSnBHN1hsOElmbjJBbEkwVmtZeHNfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NjA4RC84MTA3M0EzMDI4NzcxMUU5OTQyMUM4NENDNEY5QUUwMi8wdGdJQkpwRzdY bDhJZm4yQWxJMFZrWXhzX2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBnBoMBfskXXT0/MK0owxWTnjm/CmoQzq4q0Jc1VCmb/ZxoxIzcJSPU 1OBadnXRiny3U9t6fq9rXTNJ70A0kjlcqIJ5RUorbEQd7kJ90jiwJVYJ1Bux2QWC 3brri0AAr9WfODwUVbxK5E+AyNnt8fwdBaczVWUmO0FDFE1eqH74AUqtaPR5CLiJ NrRpQ+SGTylpLqVKeLSY8+wTZBv+B+Cyfun72ZNZj8JG6J7FfMmGOoArjkimRQrN z35KlSdRk5U5c48K2hQONj6NssHAfq+oSsOZFZg2zDg7K6MxCu3ozqRhTQbyBVGQ k3YsbzBKumCfrLOgftHmqdo8DNSg+ygK -----END CERTIFICATE-----Generated at Wed Nov 5 05:25:11 2025 by rpki-client