$ rpki-client -vvf rpki.apnic.net/member_repository/A9198D95/48ED296AE06511EEB35F421EC4F9AE02/_tgXL4qVo1IC1RxvdfqUfehE9M0.mft File: _tgXL4qVo1IC1RxvdfqUfehE9M0.mft (raw, json) Hash identifier: DPaAdyDgOcCmG/xUCESEP2hojjz6Uam0LRIzc/hkWP0= Subject key identifier: 09:D7:B5:A8:EB:4A:58:3C:7E:B9:E3:11:B2:90:37:62:B2:DB:26:BB Authority key identifier: FE:D8:17:2F:8A:95:A3:52:02:D5:1C:6F:75:FA:94:7D:E8:44:F4:CD Certificate issuer: /CN=A9198D95/serialNumber=FED8172F8A95A35202D51C6F75FA947DE844F4CD Certificate serial: 0131 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_tgXL4qVo1IC1RxvdfqUfehE9M0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9198D95/48ED296AE06511EEB35F421EC4F9AE02/_tgXL4qVo1IC1RxvdfqUfehE9M0.mft Manifest number: 012E Signing time: Thu 23 Oct 2025 06:27:19 +0000 Manifest this update: Thu 23 Oct 2025 06:27:18 +0000 Manifest next update: Thu 30 Oct 2025 06:27:18 +0000 Files and hashes: 1: _tgXL4qVo1IC1RxvdfqUfehE9M0.crl (hash: sghbFIUd8GKzHjPhSUjYmL05lGYVUoOAyj1qfoZm+1g=) 2: 994A883AE06511EEA8CEC61EC4F9AE02.roa (hash: VIkL73Ao9GMOlF5higO2xRTxCND3iZkpVBfNLk5tPMM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9198D95/48ED296AE06511EEB35F421EC4F9AE02/_tgXL4qVo1IC1RxvdfqUfehE9M0.crl rsync://rpki.apnic.net/member_repository/A9198D95/48ED296AE06511EEB35F421EC4F9AE02/_tgXL4qVo1IC1RxvdfqUfehE9M0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_tgXL4qVo1IC1RxvdfqUfehE9M0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 30 Oct 2025 06:27:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 305 (0x131) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9198D95, serialNumber=FED8172F8A95A35202D51C6F75FA947DE844F4CD Validity Not Before: Oct 23 06:27:18 2025 GMT Not After : Oct 30 06:27:18 2025 GMT Subject: CN=68f9cac6-c3bb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:de:00:b1:e8:3e:20:2f:3e:8e:9d:2d:14:8b: 6b:54:6d:c2:64:31:eb:fc:11:32:48:88:c1:a4:87: 88:f4:8c:7f:22:7b:ee:de:95:ad:3c:1a:40:11:d3: 1c:5d:33:8b:fa:f6:87:20:62:da:49:0d:de:ba:92: d1:73:c0:54:27:1b:de:e5:50:03:01:72:78:4f:f0: 94:da:f2:99:36:2e:35:75:13:29:fe:8e:3e:7d:75: 18:11:a9:1c:3f:2d:39:a5:49:c9:31:80:7c:7c:35: 23:e8:24:d4:02:5e:cb:70:3c:7b:08:0c:60:e0:43: b0:22:bb:3b:ce:4f:fa:d8:c9:58:36:55:44:ab:64: 2d:87:5e:0d:e3:f0:48:4a:10:a8:79:31:c6:fd:c5: 4e:b9:95:7e:62:50:e6:5b:a3:fa:17:bc:c0:c1:ff: 00:a5:8e:8b:c1:df:10:99:48:20:87:20:85:de:0d: 04:32:96:8b:cb:20:3d:43:c3:f3:56:a2:d0:c1:99: 62:70:a6:28:af:1b:f9:a0:60:11:fd:40:67:4e:ce: 0b:7b:26:01:97:7a:0e:b0:89:98:7e:c7:18:0b:5e: ed:07:94:e2:14:35:46:a5:eb:77:26:aa:07:dc:a2: e2:a9:eb:63:f1:f6:00:d9:72:b8:8a:22:c1:6f:61: d1:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:D7:B5:A8:EB:4A:58:3C:7E:B9:E3:11:B2:90:37:62:B2:DB:26:BB X509v3 Authority Key Identifier: keyid:FE:D8:17:2F:8A:95:A3:52:02:D5:1C:6F:75:FA:94:7D:E8:44:F4:CD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9198D95/48ED296AE06511EEB35F421EC4F9AE02/_tgXL4qVo1IC1RxvdfqUfehE9M0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_tgXL4qVo1IC1RxvdfqUfehE9M0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9198D95/48ED296AE06511EEB35F421EC4F9AE02/_tgXL4qVo1IC1RxvdfqUfehE9M0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2d:38:70:e1:09:79:48:eb:b4:58:bd:75:0e:66:46:77:c7:4f: 7f:18:24:f5:f4:18:06:3b:bf:9a:5b:a1:7d:8a:48:99:0b:87: ca:a0:3d:a9:47:6a:b6:80:be:b5:9b:4c:f1:ea:02:4b:50:0c: 90:cb:91:99:94:6d:ab:e0:b5:21:d1:24:09:46:6a:5f:39:03: dd:cf:8c:7c:db:85:0a:4d:78:8a:14:3c:37:c2:8d:7e:83:6f: 53:c9:8e:d9:35:38:43:f6:f9:98:e4:16:4a:b3:23:07:9f:a3: bb:c0:6d:3e:e8:af:b0:34:87:9a:12:10:af:5b:b3:64:74:41: d3:83:8e:66:0b:ca:ad:10:15:6e:2d:fc:ff:34:d9:01:1e:d9: 4b:59:49:65:db:2c:3d:80:4f:1c:25:a2:cc:f1:73:a4:e3:3c: 8e:7c:3c:0c:f4:51:87:3f:5f:09:a5:91:7f:fc:41:05:fe:ef: e0:f3:08:73:28:16:32:27:89:02:09:a5:21:57:c3:a7:93:4d: dd:4f:40:69:68:f8:59:07:b1:88:d6:41:67:ec:ef:d0:97:85: 13:2c:e4:a4:1e:ea:f4:83:9e:27:ed:d6:51:dd:63:de:7a:e1: a9:3b:ff:d1:ae:a9:f7:28:f9:65:cd:e2:9e:21:b3:bc:19:67: 98:de:c0:86 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OThEOTUxMTAvBgNVBAUTKEZFRDgxNzJGOEE5NUEzNTIwMkQ1MUM2Rjc1RkE5NDdE RTg0NEY0Q0QwHhcNMjUxMDIzMDYyNzE4WhcNMjUxMDMwMDYyNzE4WjAYMRYwFAYD VQQDEw02OGY5Y2FjNi1jM2JiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsN4Aseg+IC8+jp0tFItrVG3CZDHr/BEySIjBpIeI9Ix/Invu3pWtPBpAEdMc XTOL+vaHIGLaSQ3eupLRc8BUJxve5VADAXJ4T/CU2vKZNi41dRMp/o4+fXUYEakc Py05pUnJMYB8fDUj6CTUAl7LcDx7CAxg4EOwIrs7zk/62MlYNlVEq2Qth14N4/BI ShCoeTHG/cVOuZV+YlDmW6P6F7zAwf8ApY6Lwd8QmUgghyCF3g0EMpaLyyA9Q8Pz VqLQwZlicKYorxv5oGAR/UBnTs4LeyYBl3oOsImYfscYC17tB5TiFDVGpet3JqoH 3KLiqetj8fYA2XK4iiLBb2HREQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAnXtajr Slg8frnjEbKQN2Ky2ya7MB8GA1UdIwQYMBaAFP7YFy+KlaNSAtUcb3X6lH3oRPTN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OEQ5NS80OEVEMjk2QUUw NjUxMUVFQjM1RjQyMUVDNEY5QUUwMi9fdGdYTDRxVm8xSUMxUnh2ZGZxVWZlaEU5 TTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL190Z1hMNHFWbzFJQzFSeHZkZnFVZmVoRTlNMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OEQ5NS80OEVEMjk2QUUwNjUxMUVFQjM1RjQyMUVDNEY5QUUwMi9fdGdYTDRxVm8x SUMxUnh2ZGZxVWZlaEU5TTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAtOHDhCXlI67RYvXUOZkZ3x09/GCT19BgGO7+aW6F9ikiZC4fKoD2p R2q2gL61m0zx6gJLUAyQy5GZlG2r4LUh0SQJRmpfOQPdz4x824UKTXiKFDw3wo1+ g29TyY7ZNThD9vmY5BZKsyMHn6O7wG0+6K+wNIeaEhCvW7NkdEHTg45mC8qtEBVu Lfz/NNkBHtlLWUll2yw9gE8cJaLM8XOk4zyOfDwM9FGHP18JpZF//EEF/u/g8whz KBYyJ4kCCaUhV8Onk03dT0BpaPhZB7GI1kFn7O/Ql4UTLOSkHur0g54n7dZR3WPe euGpO//Rrqn3KPllzeKeIbO8GWeY3sCG -----END CERTIFICATE-----Generated at Fri Oct 24 00:47:24 2025 by rpki-client