$ rpki-client -vvf rpki.apnic.net/member_repository/A9197CBD/3570DF2EB11411EE95E74365C4F9AE02/tIZeO-nFadK5Pyw1HKsk0VBqrA0.mft File: tIZeO-nFadK5Pyw1HKsk0VBqrA0.mft (raw, json) Hash identifier: jSiEt2e6gnnGJP1zgZqn9njzHcrea/22maL/+vdKqQs= Subject key identifier: 0B:7B:38:BF:6C:5E:5B:FC:D0:7B:B7:E1:33:60:16:FE:1D:E6:00:47 Authority key identifier: B4:86:5E:3B:E9:C5:69:D2:B9:3F:2C:35:1C:AB:24:D1:50:6A:AC:0D Certificate issuer: /CN=A9197CBD/serialNumber=B4865E3BE9C569D2B93F2C351CAB24D1506AAC0D Certificate serial: 015B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tIZeO-nFadK5Pyw1HKsk0VBqrA0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9197CBD/3570DF2EB11411EE95E74365C4F9AE02/tIZeO-nFadK5Pyw1HKsk0VBqrA0.mft Manifest number: 0156 Signing time: Mon 03 Nov 2025 04:10:01 +0000 Manifest this update: Mon 03 Nov 2025 04:10:00 +0000 Manifest next update: Mon 10 Nov 2025 04:10:00 +0000 Files and hashes: 1: tIZeO-nFadK5Pyw1HKsk0VBqrA0.crl (hash: lYdpWwHopvfIMDZBNbbOHriR/72K37TrkkaNK20Up80=) 2: DDFD7F92A36311F0BCF40B3CC4F9AE02.roa (hash: db0WobY2OuSvFKrtHPb4XtM1BwNHUwXNkFsg7pWHA3w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9197CBD/3570DF2EB11411EE95E74365C4F9AE02/tIZeO-nFadK5Pyw1HKsk0VBqrA0.crl rsync://rpki.apnic.net/member_repository/A9197CBD/3570DF2EB11411EE95E74365C4F9AE02/tIZeO-nFadK5Pyw1HKsk0VBqrA0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tIZeO-nFadK5Pyw1HKsk0VBqrA0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 04:10:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 347 (0x15b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9197CBD, serialNumber=B4865E3BE9C569D2B93F2C351CAB24D1506AAC0D Validity Not Before: Nov 3 04:10:00 2025 GMT Not After : Nov 10 04:10:00 2025 GMT Subject: CN=69082b19-0ed6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:db:3c:ff:b5:ab:b4:bc:45:3f:e1:ed:c6:2d: e1:d1:9c:51:4c:0d:29:b7:83:ec:a6:74:3b:ea:fb: 39:52:b8:cb:e6:93:52:f3:e0:4d:09:b2:ea:a3:c5: 56:46:99:ba:71:e2:db:47:b3:3c:d2:6f:b4:4a:e4: 8b:39:e3:0a:9a:b1:bf:33:ed:c9:0c:81:2a:f0:f9: fc:1e:13:e9:60:6f:55:a8:dd:ab:8e:1b:b7:e5:bf: 86:b6:5a:f0:4c:66:f8:19:47:ec:03:20:6f:a7:32: 43:15:81:3c:cd:55:49:53:22:43:0e:b0:8e:13:c1: a9:6f:d8:45:14:a6:f9:ec:e6:bc:4e:32:a9:23:76: 54:4e:17:23:29:02:d7:69:ca:3e:65:21:c0:6b:5d: 3d:50:8f:2a:33:9c:7a:20:17:f7:43:25:c6:3e:a7: bf:ea:00:00:a8:5d:fc:c8:ac:24:59:72:34:fd:d4: 88:01:bc:a0:1b:72:9c:08:39:58:03:9d:51:57:ce: fc:a8:96:e3:90:d1:17:1f:ee:55:69:80:fb:83:7f: a2:23:43:e1:66:d8:76:7c:0c:d3:32:e4:58:b0:24: 50:2d:72:ca:a4:b9:76:1d:ae:63:5a:fd:b4:ae:7c: 9c:09:15:48:b1:a4:c9:65:e4:95:1a:f7:b2:b2:05: f1:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:7B:38:BF:6C:5E:5B:FC:D0:7B:B7:E1:33:60:16:FE:1D:E6:00:47 X509v3 Authority Key Identifier: keyid:B4:86:5E:3B:E9:C5:69:D2:B9:3F:2C:35:1C:AB:24:D1:50:6A:AC:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9197CBD/3570DF2EB11411EE95E74365C4F9AE02/tIZeO-nFadK5Pyw1HKsk0VBqrA0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tIZeO-nFadK5Pyw1HKsk0VBqrA0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9197CBD/3570DF2EB11411EE95E74365C4F9AE02/tIZeO-nFadK5Pyw1HKsk0VBqrA0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 20:ec:99:90:11:30:e4:7d:7b:6c:7b:e8:e6:f6:1b:3f:b5:b0: a5:36:fb:ee:ff:d8:d2:66:6a:b1:41:9f:be:7c:95:00:73:02: 3b:c8:5a:5e:05:2a:ee:bb:17:b5:1f:a2:4d:24:91:9e:15:78: 0c:61:8c:1e:41:e9:7b:92:8a:d5:8c:66:3d:23:ea:2f:e4:2c: 8b:db:7d:5b:33:e2:f3:9b:8f:08:52:5d:19:34:64:47:b1:49: 5f:b3:3c:64:3a:93:37:ed:96:b0:61:43:8c:15:d6:00:b0:44: 94:e1:a6:b7:4a:ea:89:9f:c6:d0:43:9b:b5:8e:fc:7b:74:62: 33:32:6a:48:5a:ec:0f:7d:40:d3:82:42:f6:6c:d5:41:b3:62: a6:78:20:9c:e6:c8:d9:e0:67:bd:e5:5c:a6:e8:00:ec:9f:18: 72:25:92:29:4e:7e:45:5f:83:28:56:a8:ed:d3:c4:96:e2:8a: 2c:4e:9a:75:33:c6:97:5f:ea:34:00:32:de:34:14:94:4c:53: 9c:cd:cf:e4:5e:19:68:0b:47:eb:1e:75:2a:96:76:e4:c0:d5: 58:11:57:da:5a:c1:f7:21:b6:4b:2c:65:96:db:9c:28:97:8c: 78:75:66:6b:00:2e:fb:5a:3c:31:e1:89:9c:12:aa:16:fc:20: c9:9b:75:2d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTdDQkQxMTAvBgNVBAUTKEI0ODY1RTNCRTlDNTY5RDJCOTNGMkMzNTFDQUIyNEQx NTA2QUFDMEQwHhcNMjUxMTAzMDQxMDAwWhcNMjUxMTEwMDQxMDAwWjAYMRYwFAYD VQQDEw02OTA4MmIxOS0wZWQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv9s8/7WrtLxFP+Htxi3h0ZxRTA0pt4PspnQ76vs5UrjL5pNS8+BNCbLqo8VW Rpm6ceLbR7M80m+0SuSLOeMKmrG/M+3JDIEq8Pn8HhPpYG9VqN2rjhu35b+Gtlrw TGb4GUfsAyBvpzJDFYE8zVVJUyJDDrCOE8Gpb9hFFKb57Oa8TjKpI3ZUThcjKQLX aco+ZSHAa109UI8qM5x6IBf3QyXGPqe/6gAAqF38yKwkWXI0/dSIAbygG3KcCDlY A51RV878qJbjkNEXH+5VaYD7g3+iI0PhZth2fAzTMuRYsCRQLXLKpLl2Ha5jWv20 rnycCRVIsaTJZeSVGveysgXxuwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAt7OL9s Xlv80Hu34TNgFv4d5gBHMB8GA1UdIwQYMBaAFLSGXjvpxWnSuT8sNRyrJNFQaqwN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5N0NCRC8zNTcwREYyRUIx MTQxMUVFOTVFNzQzNjVDNEY5QUUwMi90SVplTy1uRmFkSzVQeXcxSEtzazBWQnFy QTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3RJWmVPLW5GYWRLNVB5dzFIS3NrMFZCcXJBMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 N0NCRC8zNTcwREYyRUIxMTQxMUVFOTVFNzQzNjVDNEY5QUUwMi90SVplTy1uRmFk SzVQeXcxSEtzazBWQnFyQTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAg7JmQETDkfXtse+jm9hs/tbClNvvu/9jSZmqxQZ++fJUAcwI7yFpe BSruuxe1H6JNJJGeFXgMYYweQel7korVjGY9I+ov5CyL231bM+Lzm48IUl0ZNGRH sUlfszxkOpM37ZawYUOMFdYAsESU4aa3SuqJn8bQQ5u1jvx7dGIzMmpIWuwPfUDT gkL2bNVBs2KmeCCc5sjZ4Ge95Vym6ADsnxhyJZIpTn5FX4MoVqjt08SW4oosTpp1 M8aXX+o0ADLeNBSUTFOczc/kXhloC0frHnUqlnbkwNVYEVfaWsH3IbZLLGWW25wo l4x4dWZrAC77Wjwx4YmcEqoW/CDJm3Ut -----END CERTIFICATE-----Generated at Wed Nov 5 00:20:15 2025 by rpki-client