$ rpki-client -vvf rpki.apnic.net/member_repository/A9130F4B/5772AA3054E411E98536F659C4F9AE02/mTDQ_-uHBwG06OtNs8CGYjP8W1A.mft File: mTDQ_-uHBwG06OtNs8CGYjP8W1A.mft (raw, json) Hash identifier: FV0o8OTBoTpCi0cgrPIY2c8qISSa8qUiG3cP//wYHIs= Subject key identifier: 44:13:B2:2F:34:4E:88:D3:96:F2:BC:F6:E9:59:5E:03:9D:34:EA:19 Authority key identifier: 99:30:D0:FF:EB:87:07:01:B4:E8:EB:4D:B3:C0:86:62:33:FC:5B:50 Certificate issuer: /CN=A9130F4B/serialNumber=9930D0FFEB870701B4E8EB4DB3C0866233FC5B50 Certificate serial: 1087 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mTDQ_-uHBwG06OtNs8CGYjP8W1A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9130F4B/5772AA3054E411E98536F659C4F9AE02/mTDQ_-uHBwG06OtNs8CGYjP8W1A.mft Manifest number: 104B Signing time: Sat 18 Oct 2025 18:01:57 +0000 Manifest this update: Sat 18 Oct 2025 18:01:57 +0000 Manifest next update: Sat 25 Oct 2025 18:01:57 +0000 Files and hashes: 1: mTDQ_-uHBwG06OtNs8CGYjP8W1A.crl (hash: z69CuGY2G9E87/A5I5iJfiwgSuqn7hYfIR1E9p/2QbY=) 2: 64BBCC50909D11ED9EA9867FC4F9AE02.roa (hash: JcjF+/6kCZJ48Z0DWV35F84UCZas+SRfWJwuoffcQww=) 3: EE63EB2A59A611F0959E0C63C4F9AE02.roa (hash: GsLnRLdogxstpaApcoyc6Zg1nnApMAJYYma2C41kKMY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9130F4B/5772AA3054E411E98536F659C4F9AE02/mTDQ_-uHBwG06OtNs8CGYjP8W1A.crl rsync://rpki.apnic.net/member_repository/A9130F4B/5772AA3054E411E98536F659C4F9AE02/mTDQ_-uHBwG06OtNs8CGYjP8W1A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mTDQ_-uHBwG06OtNs8CGYjP8W1A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 18:01:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4231 (0x1087) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9130F4B, serialNumber=9930D0FFEB870701B4E8EB4DB3C0866233FC5B50 Validity Not Before: Oct 18 18:01:57 2025 GMT Not After : Oct 25 18:01:57 2025 GMT Subject: CN=68f3d615-7e07 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:f6:3a:58:fb:df:5a:b8:04:07:8a:20:aa:53: ed:78:e2:05:ac:d8:a0:43:08:01:66:10:83:c4:6a: 27:3e:e2:4e:80:25:22:d4:fe:ac:d4:14:40:2e:2a: 8f:62:c1:30:94:47:ef:52:33:8c:cd:b3:38:4c:1b: 5c:ff:de:6e:80:20:70:ab:12:33:5e:67:2c:55:ea: 7f:f2:de:3a:a0:86:9a:ed:e3:f2:f5:d1:f6:94:82: 97:1d:e0:26:6e:a6:a1:37:a0:81:4c:7d:4f:70:e8: 97:8e:31:85:af:59:d0:6a:25:a5:17:b0:56:af:e4: 71:51:0a:5a:a1:b0:f9:8c:99:01:3f:a4:ef:e5:d3: 91:bf:67:12:f1:ba:ae:0f:1a:14:43:7b:09:31:78: bd:a6:98:29:3d:db:a5:68:07:5b:c0:f0:bc:f5:52: cc:73:ab:74:79:e7:59:35:ad:d8:8d:db:37:fd:46: cc:6d:f9:9c:6a:5a:d6:30:5a:11:48:33:53:0d:79: 85:3d:3f:9e:08:6b:dd:09:37:b1:50:f9:25:02:96: eb:02:0c:3d:ba:95:13:6f:b4:19:39:db:1f:0d:70: 13:69:5f:5c:3e:99:80:7c:d7:98:e4:cc:d0:13:29: 0a:73:2e:6e:25:30:33:20:8c:89:54:6b:db:f5:ef: b2:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:13:B2:2F:34:4E:88:D3:96:F2:BC:F6:E9:59:5E:03:9D:34:EA:19 X509v3 Authority Key Identifier: keyid:99:30:D0:FF:EB:87:07:01:B4:E8:EB:4D:B3:C0:86:62:33:FC:5B:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9130F4B/5772AA3054E411E98536F659C4F9AE02/mTDQ_-uHBwG06OtNs8CGYjP8W1A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mTDQ_-uHBwG06OtNs8CGYjP8W1A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9130F4B/5772AA3054E411E98536F659C4F9AE02/mTDQ_-uHBwG06OtNs8CGYjP8W1A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 50:b7:bd:dd:60:91:ef:7d:f3:31:dd:01:77:bd:08:dd:ca:7f: 84:f6:cc:56:42:cd:28:9a:e7:c6:2b:fe:5b:ea:7e:d8:1e:ed: 37:03:4e:cf:8f:41:3a:ab:64:eb:78:12:da:d4:b6:b6:45:d8: 8c:6e:58:15:50:f4:20:d9:39:b9:76:f7:e6:f0:b1:35:cc:cc: 0d:cf:2f:25:7d:d6:87:59:8e:38:6c:49:10:dd:59:fd:6a:38: 59:36:2b:1e:d9:db:da:60:b7:02:55:82:ec:1b:0b:bc:1e:1d: 8f:7b:36:2e:f3:ce:55:cd:24:e8:9c:71:f4:9c:c1:58:c7:c8: 81:7f:fa:dc:a4:d8:ab:51:a4:f3:28:34:c4:72:45:cd:5b:aa: 7b:05:b1:98:ce:74:0c:a0:36:0e:d6:0e:bc:8e:97:97:e3:6e: 2d:f0:90:14:f0:8a:09:3f:94:59:6a:8c:32:13:1a:c6:fb:60: ed:83:6d:0e:1e:d9:71:09:55:d7:a7:c3:fa:f5:a1:e3:f8:77: 3d:ac:43:44:12:11:b1:a2:3c:44:9c:d9:49:c7:7f:69:72:ad: 6e:91:2d:1d:5c:f2:87:a0:01:71:e9:15:74:70:5f:6c:c1:79: f9:c9:f7:04:59:4e:0c:40:96:e0:12:a8:e3:fa:12:59:42:aa: 6f:63:13:58 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEIcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzBGNEIxMTAvBgNVBAUTKDk5MzBEMEZGRUI4NzA3MDFCNEU4RUI0REIzQzA4NjYy MzNGQzVCNTAwHhcNMjUxMDE4MTgwMTU3WhcNMjUxMDI1MTgwMTU3WjAYMRYwFAYD VQQDEw02OGYzZDYxNS03ZTA3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtPY6WPvfWrgEB4ogqlPteOIFrNigQwgBZhCDxGonPuJOgCUi1P6s1BRALiqP YsEwlEfvUjOMzbM4TBtc/95ugCBwqxIzXmcsVep/8t46oIaa7ePy9dH2lIKXHeAm bqahN6CBTH1PcOiXjjGFr1nQaiWlF7BWr+RxUQpaobD5jJkBP6Tv5dORv2cS8bqu DxoUQ3sJMXi9ppgpPdulaAdbwPC89VLMc6t0eedZNa3Yjds3/UbMbfmcalrWMFoR SDNTDXmFPT+eCGvdCTexUPklApbrAgw9upUTb7QZOdsfDXATaV9cPpmAfNeY5MzQ EykKcy5uJTAzIIyJVGvb9e+yqwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEQTsi80 TojTlvK89ulZXgOdNOoZMB8GA1UdIwQYMBaAFJkw0P/rhwcBtOjrTbPAhmIz/FtQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMEY0Qi81NzcyQUEzMDU0 RTQxMUU5ODUzNkY2NTlDNEY5QUUwMi9tVERRXy11SEJ3RzA2T3ROczhDR1lqUDhX MUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21URFFfLXVIQndHMDZPdE5zOENHWWpQOFcxQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MEY0Qi81NzcyQUEzMDU0RTQxMUU5ODUzNkY2NTlDNEY5QUUwMi9tVERRXy11SEJ3 RzA2T3ROczhDR1lqUDhXMUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBQt73dYJHvffMx3QF3vQjdyn+E9sxWQs0omufGK/5b6n7YHu03A07P j0E6q2TreBLa1La2RdiMblgVUPQg2Tm5dvfm8LE1zMwNzy8lfdaHWY44bEkQ3Vn9 ajhZNise2dvaYLcCVYLsGwu8Hh2PezYu885VzSTonHH0nMFYx8iBf/rcpNirUaTz KDTEckXNW6p7BbGYznQMoDYO1g68jpeX424t8JAU8IoJP5RZaowyExrG+2Dtg20O HtlxCVXXp8P69aHj+Hc9rENEEhGxojxEnNlJx39pcq1ukS0dXPKHoAFx6RV0cF9s wXn5yfcEWU4MQJbgEqjj+hJZQqpvYxNY -----END CERTIFICATE-----Generated at Mon Oct 20 10:49:40 2025 by rpki-client