$ rpki-client -vvf rpki.apnic.net/member_repository/A9118309/1A48DC866FFC11EA88F3D22BC4F9AE02/tg1afDY_D02TL-MXuQzmz4DSg8k.mft File: tg1afDY_D02TL-MXuQzmz4DSg8k.mft (raw, json) Hash identifier: ms2RG8ie0BgCi+7NVZjdKrygRvK+rxay1Ph/ZX1+BVQ= Subject key identifier: 77:50:60:13:AE:1C:D5:F4:8C:BE:B9:F6:43:1B:4D:AF:2C:27:99:9C Authority key identifier: B6:0D:5A:7C:36:3F:0F:4D:93:2F:E3:17:B9:0C:E6:CF:80:D2:83:C9 Certificate issuer: /CN=A9118309/serialNumber=B60D5A7C363F0F4D932FE317B90CE6CF80D283C9 Certificate serial: 0A73 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tg1afDY_D02TL-MXuQzmz4DSg8k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9118309/1A48DC866FFC11EA88F3D22BC4F9AE02/tg1afDY_D02TL-MXuQzmz4DSg8k.mft Manifest number: 0A6B Signing time: Sat 18 Oct 2025 20:37:17 +0000 Manifest this update: Sat 18 Oct 2025 20:37:16 +0000 Manifest next update: Sat 25 Oct 2025 20:37:16 +0000 Files and hashes: 1: tg1afDY_D02TL-MXuQzmz4DSg8k.crl (hash: sUaFHOLwMwrXiSkHSAGsFG1xbijtbU8/L1s0/zp8yCk=) 2: 59AA22D06FFD11EA9160902DC4F9AE02.roa (hash: 3RxABu3KC/9hSKHYQMzVVe4gdoAQgiDaudG41V9QJ3s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9118309/1A48DC866FFC11EA88F3D22BC4F9AE02/tg1afDY_D02TL-MXuQzmz4DSg8k.crl rsync://rpki.apnic.net/member_repository/A9118309/1A48DC866FFC11EA88F3D22BC4F9AE02/tg1afDY_D02TL-MXuQzmz4DSg8k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tg1afDY_D02TL-MXuQzmz4DSg8k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 20:37:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2675 (0xa73) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9118309, serialNumber=B60D5A7C363F0F4D932FE317B90CE6CF80D283C9 Validity Not Before: Oct 18 20:37:16 2025 GMT Not After : Oct 25 20:37:16 2025 GMT Subject: CN=68f3fa7d-d12a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:aa:5b:bc:c9:8d:ed:8c:a9:a6:f9:c7:f2:59: 65:ae:db:ef:3e:31:3e:42:ff:8e:0e:a4:31:06:2a: 97:fb:f9:c3:a9:bf:c6:8f:10:01:4f:ce:c8:e2:b0: 82:c7:df:ea:da:96:c9:da:76:0a:41:04:48:f1:8e: f0:d9:6a:47:8a:ea:b4:21:68:ec:b6:aa:e0:6f:cc: 36:7a:bc:5e:4e:5d:f0:04:87:17:cf:85:50:f9:da: 39:b4:7f:bf:43:95:cd:b9:95:fd:7c:b7:0f:a4:b8: 93:a6:07:1b:fb:9e:b4:a5:f6:99:08:24:83:e0:78: 2b:fb:47:b6:72:84:6b:bd:6b:08:dc:d1:1e:3d:f1: 0a:b3:a4:be:2e:4e:3b:b1:3e:77:81:02:8c:8e:be: 70:67:a1:be:af:50:50:0e:e0:53:05:9f:bc:c1:a0: dc:79:9f:37:62:f1:a7:3a:1a:fb:bf:9a:a6:f0:d0: 69:1d:ef:a8:ff:1f:81:de:28:fe:bd:a1:c7:0c:fc: c1:10:cc:9f:19:d6:f0:03:26:5d:ae:fa:a6:35:7f: 90:e9:35:88:05:21:0e:ab:6f:d8:00:f6:4d:31:1f: 08:5f:71:37:af:a8:a0:9c:67:35:02:11:16:61:c5: 20:a1:72:e5:7a:2d:47:4e:e3:6d:7c:80:9f:c8:dd: 42:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:50:60:13:AE:1C:D5:F4:8C:BE:B9:F6:43:1B:4D:AF:2C:27:99:9C X509v3 Authority Key Identifier: keyid:B6:0D:5A:7C:36:3F:0F:4D:93:2F:E3:17:B9:0C:E6:CF:80:D2:83:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9118309/1A48DC866FFC11EA88F3D22BC4F9AE02/tg1afDY_D02TL-MXuQzmz4DSg8k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tg1afDY_D02TL-MXuQzmz4DSg8k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9118309/1A48DC866FFC11EA88F3D22BC4F9AE02/tg1afDY_D02TL-MXuQzmz4DSg8k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 05:34:a2:5e:ca:5a:12:96:bd:40:cb:8c:bb:76:29:0e:aa:bb: 18:66:cd:e9:2e:87:d4:60:65:17:b6:19:da:dd:bf:eb:6c:86: 52:a9:d2:21:b4:59:a5:55:a4:33:d3:12:7f:ab:ff:15:4d:5d: 44:b9:0e:4a:ac:00:01:d7:e2:43:f2:47:0d:ea:a5:56:93:a4: 84:03:04:46:24:98:b9:5a:f5:03:fc:dd:0a:ab:4f:fa:96:43: 88:f9:f5:df:dc:91:1a:85:40:ff:43:60:17:7a:3e:31:e6:e9: d0:19:8c:97:2a:33:14:d7:88:a2:68:81:5e:36:11:d9:e5:cb: 5e:fa:27:88:7b:27:4e:7d:a4:08:76:76:b1:61:ba:b6:a6:db: 60:89:45:73:a9:35:4d:ec:57:31:97:59:fd:c2:c1:bd:77:c3: 8b:16:61:f5:b3:95:0e:77:ba:c7:47:ce:35:78:71:4d:58:98: d8:05:28:3d:1e:2b:84:73:8a:0d:f4:86:ea:85:95:3c:34:05: 01:bd:fb:3a:b7:f3:3f:55:3b:8c:08:81:ae:85:15:9c:53:99: 7b:c5:e1:51:fa:fb:75:ec:08:11:37:ae:cf:9a:0b:f2:68:3b: 31:0e:e7:8b:06:6b:4e:d8:dd:0b:b1:ee:8c:bb:82:9a:41:e8: c4:df:8f:7b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCnMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTgzMDkxMTAvBgNVBAUTKEI2MEQ1QTdDMzYzRjBGNEQ5MzJGRTMxN0I5MENFNkNG ODBEMjgzQzkwHhcNMjUxMDE4MjAzNzE2WhcNMjUxMDI1MjAzNzE2WjAYMRYwFAYD VQQDEw02OGYzZmE3ZC1kMTJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0apbvMmN7YyppvnH8lllrtvvPjE+Qv+ODqQxBiqX+/nDqb/GjxABT87I4rCC x9/q2pbJ2nYKQQRI8Y7w2WpHiuq0IWjstqrgb8w2erxeTl3wBIcXz4VQ+do5tH+/ Q5XNuZX9fLcPpLiTpgcb+560pfaZCCSD4Hgr+0e2coRrvWsI3NEePfEKs6S+Lk47 sT53gQKMjr5wZ6G+r1BQDuBTBZ+8waDceZ83YvGnOhr7v5qm8NBpHe+o/x+B3ij+ vaHHDPzBEMyfGdbwAyZdrvqmNX+Q6TWIBSEOq2/YAPZNMR8IX3E3r6ignGc1AhEW YcUgoXLlei1HTuNtfICfyN1CQQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHdQYBOu HNX0jL659kMbTa8sJ5mcMB8GA1UdIwQYMBaAFLYNWnw2Pw9Nky/jF7kM5s+A0oPJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExODMwOS8xQTQ4REM4NjZG RkMxMUVBODhGM0QyMkJDNEY5QUUwMi90ZzFhZkRZX0QwMlRMLU1YdVF6bXo0RFNn OGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RnMWFmRFlfRDAyVEwtTVh1UXptejREU2c4ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx ODMwOS8xQTQ4REM4NjZGRkMxMUVBODhGM0QyMkJDNEY5QUUwMi90ZzFhZkRZX0Qw MlRMLU1YdVF6bXo0RFNnOGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAFNKJeyloSlr1Ay4y7dikOqrsYZs3pLofUYGUXthna3b/rbIZSqdIh tFmlVaQz0xJ/q/8VTV1EuQ5KrAAB1+JD8kcN6qVWk6SEAwRGJJi5WvUD/N0Kq0/6 lkOI+fXf3JEahUD/Q2AXej4x5unQGYyXKjMU14iiaIFeNhHZ5cte+ieIeydOfaQI dnaxYbq2pttgiUVzqTVN7Fcxl1n9wsG9d8OLFmH1s5UOd7rHR841eHFNWJjYBSg9 HiuEc4oN9IbqhZU8NAUBvfs6t/M/VTuMCIGuhRWcU5l7xeFR+vt17AgRN67Pmgvy aDsxDueLBmtO2N0Lse6Mu4KaQejE3497 -----END CERTIFICATE-----Generated at Mon Oct 20 01:44:15 2025 by rpki-client