$ rpki-client -vvf rpki.apnic.net/member_repository/A911BDA9/36A530F644BD11EFB73DB77BC4F9AE02/tOfjRK3ONthPHzq8zRSyTBUSu6o.mft File: tOfjRK3ONthPHzq8zRSyTBUSu6o.mft (raw, json) Hash identifier: ot6KM7qD1Log5SN+IZsAonZ+g9KRNi9a7cT1plqqcJQ= Subject key identifier: FD:39:CC:E6:16:8D:39:E8:B2:D6:7F:71:7A:A9:C9:29:A5:62:A2:81 Authority key identifier: B4:E7:E3:44:AD:CE:36:D8:4F:1F:3A:BC:CD:14:B2:4C:15:12:BB:AA Certificate issuer: /CN=A911BDA9/serialNumber=B4E7E344ADCE36D84F1F3ABCCD14B24C1512BBAA Certificate serial: EF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tOfjRK3ONthPHzq8zRSyTBUSu6o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911BDA9/36A530F644BD11EFB73DB77BC4F9AE02/tOfjRK3ONthPHzq8zRSyTBUSu6o.mft Manifest number: ED Signing time: Sun 19 Oct 2025 08:18:20 +0000 Manifest this update: Sun 19 Oct 2025 08:18:19 +0000 Manifest next update: Sun 26 Oct 2025 08:18:19 +0000 Files and hashes: 1: tOfjRK3ONthPHzq8zRSyTBUSu6o.crl (hash: Mn4ANUn/8YsKfY+Si1uk2nwm8D1tyUXTd7OaBPjFTOU=) 2: 723720464ABE11EFA87EE85BC4F9AE02.roa (hash: piBG26jjxocqk1EfDzKmzUArtL5VT+oZB8alGAtK9pg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911BDA9/36A530F644BD11EFB73DB77BC4F9AE02/tOfjRK3ONthPHzq8zRSyTBUSu6o.crl rsync://rpki.apnic.net/member_repository/A911BDA9/36A530F644BD11EFB73DB77BC4F9AE02/tOfjRK3ONthPHzq8zRSyTBUSu6o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tOfjRK3ONthPHzq8zRSyTBUSu6o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 08:18:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 239 (0xef) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911BDA9, serialNumber=B4E7E344ADCE36D84F1F3ABCCD14B24C1512BBAA Validity Not Before: Oct 19 08:18:19 2025 GMT Not After : Oct 26 08:18:19 2025 GMT Subject: CN=68f49ecc-21da Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:9a:af:3a:6a:0f:7f:f3:6a:40:53:f8:95:3c: f4:fd:08:ba:23:3e:ce:64:b5:9f:d9:18:cd:f9:69: 8c:a2:ff:aa:52:92:16:55:ac:da:db:f1:89:3d:16: 1b:b7:75:e4:9d:9b:37:0b:ae:49:02:f7:2c:0f:23: d8:4a:94:37:69:53:ad:ad:14:1e:ed:33:2e:75:6b: ab:fa:e0:1a:d0:c2:66:9c:39:27:10:89:80:21:4a: 0b:82:cd:32:2e:1d:d6:e6:b0:d7:63:20:10:2f:ab: 85:28:58:43:48:99:04:1a:ce:b0:99:89:f6:85:ca: 72:d0:0c:37:f3:62:f7:ca:22:e1:ca:28:60:cc:ad: 95:ef:46:c8:77:67:67:0e:52:8f:75:59:71:1b:e7: 37:2c:54:82:5c:f1:b7:3d:58:ac:44:20:c5:19:f2: 88:4e:dc:5c:00:9f:46:9f:24:9d:04:29:a5:1b:c8: e3:00:bd:14:bd:41:df:0f:35:ed:5e:df:b3:e1:d4: 22:51:17:9b:84:62:c8:fe:6f:dd:8c:7c:2b:b8:45: 27:65:3c:7d:ce:72:87:5e:a3:98:37:8f:00:9e:f5: af:c6:de:59:61:35:2d:3e:e7:b7:24:55:69:7b:2d: bb:72:41:9e:1e:e8:b9:47:39:a5:d3:cc:7c:c5:ee: 03:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:39:CC:E6:16:8D:39:E8:B2:D6:7F:71:7A:A9:C9:29:A5:62:A2:81 X509v3 Authority Key Identifier: keyid:B4:E7:E3:44:AD:CE:36:D8:4F:1F:3A:BC:CD:14:B2:4C:15:12:BB:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911BDA9/36A530F644BD11EFB73DB77BC4F9AE02/tOfjRK3ONthPHzq8zRSyTBUSu6o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tOfjRK3ONthPHzq8zRSyTBUSu6o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911BDA9/36A530F644BD11EFB73DB77BC4F9AE02/tOfjRK3ONthPHzq8zRSyTBUSu6o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3d:93:5d:ea:3e:79:17:f2:27:d2:1c:30:25:ad:db:1a:a7:7a: b8:dd:db:85:f7:d8:e4:fc:9c:2a:09:06:4d:3e:3b:5e:1f:1a: b4:0c:86:b6:40:7a:79:20:95:22:46:35:43:8d:45:19:4d:e8: 0e:f9:25:4a:40:e3:83:00:25:a3:e7:ac:be:d7:5f:97:9a:6e: e1:2a:e0:47:bb:c5:c6:f9:be:e6:8d:1f:ef:ee:6c:70:a8:f5: 35:a5:47:fd:78:86:d7:40:ef:1b:f6:11:b3:d0:92:0c:5c:1c: 5b:4b:d7:9c:ba:a1:d7:32:2b:0c:31:76:9b:e3:36:4b:50:cf: 37:b2:0b:62:e6:f9:be:8c:cc:03:f0:73:0f:e8:0b:28:8a:7e: 74:7b:c2:ff:5e:ce:43:b7:bb:ea:da:68:24:8e:4b:c4:6e:c5: 28:1a:23:10:52:f8:4f:27:a3:39:fa:a9:07:31:ec:3a:b0:92: 77:a6:f1:4b:20:75:ce:65:de:1b:db:86:53:33:10:37:54:51: 63:4b:63:e8:8d:d6:43:2e:9d:23:a0:21:12:6b:e4:00:24:3c: ac:fa:02:7f:9b:37:1f:66:c9:1b:8a:8d:b6:1b:f8:00:ad:71: 52:e1:7c:0b:a8:90:b6:01:01:99:0b:1b:d8:cb:60:40:52:06: bb:f3:ee:33 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAO8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUJEQTkxMTAvBgNVBAUTKEI0RTdFMzQ0QURDRTM2RDg0RjFGM0FCQ0NEMTRCMjRD MTUxMkJCQUEwHhcNMjUxMDE5MDgxODE5WhcNMjUxMDI2MDgxODE5WjAYMRYwFAYD VQQDEw02OGY0OWVjYy0yMWRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1JqvOmoPf/NqQFP4lTz0/Qi6Iz7OZLWf2RjN+WmMov+qUpIWVaza2/GJPRYb t3XknZs3C65JAvcsDyPYSpQ3aVOtrRQe7TMudWur+uAa0MJmnDknEImAIUoLgs0y Lh3W5rDXYyAQL6uFKFhDSJkEGs6wmYn2hcpy0Aw382L3yiLhyihgzK2V70bId2dn DlKPdVlxG+c3LFSCXPG3PVisRCDFGfKITtxcAJ9GnySdBCmlG8jjAL0UvUHfDzXt Xt+z4dQiURebhGLI/m/djHwruEUnZTx9znKHXqOYN48AnvWvxt5ZYTUtPue3JFVp ey27ckGeHui5Rzml08x8xe4D9wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP05zOYW jTnostZ/cXqpySmlYqKBMB8GA1UdIwQYMBaAFLTn40StzjbYTx86vM0UskwVEruq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQkRBOS8zNkE1MzBGNjQ0 QkQxMUVGQjczREI3N0JDNEY5QUUwMi90T2ZqUkszT050aFBIenE4elJTeVRCVVN1 Nm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RPZmpSSzNPTnRoUEh6cTh6UlN5VEJVU3U2by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QkRBOS8zNkE1MzBGNjQ0QkQxMUVGQjczREI3N0JDNEY5QUUwMi90T2ZqUkszT050 aFBIenE4elJTeVRCVVN1Nm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA9k13qPnkX8ifSHDAlrdsap3q43duF99jk/JwqCQZNPjteHxq0DIa2 QHp5IJUiRjVDjUUZTegO+SVKQOODACWj56y+11+Xmm7hKuBHu8XG+b7mjR/v7mxw qPU1pUf9eIbXQO8b9hGz0JIMXBxbS9ecuqHXMisMMXab4zZLUM83sgti5vm+jMwD 8HMP6Asoin50e8L/Xs5Dt7vq2mgkjkvEbsUoGiMQUvhPJ6M5+qkHMew6sJJ3pvFL IHXOZd4b24ZTMxA3VFFjS2PojdZDLp0joCESa+QAJDys+gJ/mzcfZskbio22G/gA rXFS4XwLqJC2AQGZCxvYy2BAUga78+4z -----END CERTIFICATE-----Generated at Mon Oct 20 13:49:13 2025 by rpki-client