$ rpki-client -vvf rpki.apnic.net/member_repository/A9131711/9FDD2DA0C99111EE891BA419C4F9AE02/tXsgfw4cG6hzoHk1gseoE0CYZ0w.mft File: tXsgfw4cG6hzoHk1gseoE0CYZ0w.mft (raw, json) Hash identifier: loSIDoMWkXRnpqcWQlyAPowCSlA0Im/KADvhtzA7/u8= Subject key identifier: 0A:F9:25:08:28:52:DB:4C:60:69:5C:23:B7:7E:6A:3D:02:D1:DA:0D Authority key identifier: B5:7B:20:7F:0E:1C:1B:A8:73:A0:79:35:82:C7:A8:13:40:98:67:4C Certificate issuer: /CN=A9131711/serialNumber=B57B207F0E1C1BA873A0793582C7A8134098674C Certificate serial: 0144 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tXsgfw4cG6hzoHk1gseoE0CYZ0w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9131711/9FDD2DA0C99111EE891BA419C4F9AE02/tXsgfw4cG6hzoHk1gseoE0CYZ0w.mft Manifest number: 013F Signing time: Sun 19 Oct 2025 07:13:25 +0000 Manifest this update: Sun 19 Oct 2025 07:13:24 +0000 Manifest next update: Sun 26 Oct 2025 07:13:24 +0000 Files and hashes: 1: tXsgfw4cG6hzoHk1gseoE0CYZ0w.crl (hash: iUYXueqYucxm9FBCqm53Tga8Nf6kB7LQKoU52pvTBTE=) 2: B2B006BAE3E911EEB845B268C4F9AE02.roa (hash: fj5an6uMsWFMPTZr6PrKep91XRX3rQER6UmH0deptJM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9131711/9FDD2DA0C99111EE891BA419C4F9AE02/tXsgfw4cG6hzoHk1gseoE0CYZ0w.crl rsync://rpki.apnic.net/member_repository/A9131711/9FDD2DA0C99111EE891BA419C4F9AE02/tXsgfw4cG6hzoHk1gseoE0CYZ0w.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tXsgfw4cG6hzoHk1gseoE0CYZ0w.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 07:13:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 324 (0x144) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9131711, serialNumber=B57B207F0E1C1BA873A0793582C7A8134098674C Validity Not Before: Oct 19 07:13:24 2025 GMT Not After : Oct 26 07:13:24 2025 GMT Subject: CN=68f48f95-d65c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:3c:1f:c4:68:bd:d7:56:5a:76:f0:09:4c:82: e7:df:78:7f:0a:ed:36:8c:80:63:ba:69:83:6c:eb: 51:5f:81:30:72:32:e3:1a:85:85:bd:7c:07:6d:23: 92:44:b1:a4:f8:82:53:34:d3:e0:45:71:44:ed:d6: 70:6a:24:76:5b:96:83:86:ac:cb:bb:01:6a:f9:d3: 31:10:c1:0a:98:c2:20:d2:17:fe:b0:2e:12:3c:ca: 22:dc:e5:58:dc:41:0a:c4:ab:7f:bd:13:31:ca:59: 29:3e:22:46:a1:86:e7:9f:c0:74:e9:60:68:66:0c: 19:dc:66:8d:f9:da:84:f7:52:d0:e1:30:21:cc:05: 17:c3:80:b8:d1:0f:55:81:67:ad:f5:00:ab:db:a8: 33:9d:9f:23:5e:93:2c:80:80:bd:9f:ca:7f:87:28: 29:49:e2:14:c2:92:ca:d0:aa:cb:dc:b5:d7:72:a2: 60:2e:29:9e:79:9b:bc:57:e5:d3:22:c8:b5:09:29: 4d:00:7a:2c:85:67:2f:66:38:24:dd:c2:2a:2e:30: 5d:95:f5:78:f7:ea:f5:d8:91:01:87:ba:27:1e:39: c6:5c:21:b7:06:84:5b:23:57:a9:17:ab:e0:f8:d5: 48:f9:62:60:a2:98:eb:ae:88:11:e7:57:6f:84:1b: d5:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:F9:25:08:28:52:DB:4C:60:69:5C:23:B7:7E:6A:3D:02:D1:DA:0D X509v3 Authority Key Identifier: keyid:B5:7B:20:7F:0E:1C:1B:A8:73:A0:79:35:82:C7:A8:13:40:98:67:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9131711/9FDD2DA0C99111EE891BA419C4F9AE02/tXsgfw4cG6hzoHk1gseoE0CYZ0w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tXsgfw4cG6hzoHk1gseoE0CYZ0w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9131711/9FDD2DA0C99111EE891BA419C4F9AE02/tXsgfw4cG6hzoHk1gseoE0CYZ0w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 99:05:c1:9f:44:1e:69:93:9a:35:09:4c:ff:e8:fd:42:f5:e7: 2b:ae:4c:fa:fa:46:43:da:ad:2d:26:33:b1:9d:4e:48:5e:5f: 6d:00:50:38:bd:da:ae:23:5d:ac:73:ab:2e:c5:46:5d:92:be: 5a:61:be:bd:e3:6e:89:5a:ff:67:49:53:58:da:93:96:f2:fd: 94:f5:f7:84:4f:6e:ce:b1:e6:9c:82:15:23:b5:be:10:81:36: 3d:18:0f:76:29:63:b6:94:75:75:dd:a5:d2:1e:71:42:04:69: 8c:84:4a:91:3c:c2:cf:5c:1c:6d:4c:55:89:03:3c:1a:9f:18: 10:43:d1:d8:0d:bd:f2:b2:7f:de:bf:02:78:4a:ca:27:10:dc: ec:e0:9a:c1:ec:06:5a:6c:74:2d:cd:d7:b5:46:fb:1f:c9:3d: 39:90:05:7f:a1:d9:da:4e:ba:b7:96:fb:12:18:5f:8b:95:67: 2b:e6:34:f4:61:67:55:ed:00:79:a1:6d:c6:0b:87:c2:2b:d4: bc:f2:06:c1:64:7a:12:8c:2d:3f:4c:62:14:dd:f5:51:36:4a: 09:77:0e:5e:78:80:f3:0b:a8:31:ab:14:40:be:08:ad:f8:59: 2c:f3:1e:9d:80:10:24:d1:5b:46:5a:52:1f:ea:84:8e:b6:36: 7e:38:b2:e0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzE3MTExMTAvBgNVBAUTKEI1N0IyMDdGMEUxQzFCQTg3M0EwNzkzNTgyQzdBODEz NDA5ODY3NEMwHhcNMjUxMDE5MDcxMzI0WhcNMjUxMDI2MDcxMzI0WjAYMRYwFAYD VQQDEw02OGY0OGY5NS1kNjVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzzwfxGi911ZadvAJTILn33h/Cu02jIBjummDbOtRX4EwcjLjGoWFvXwHbSOS RLGk+IJTNNPgRXFE7dZwaiR2W5aDhqzLuwFq+dMxEMEKmMIg0hf+sC4SPMoi3OVY 3EEKxKt/vRMxylkpPiJGoYbnn8B06WBoZgwZ3GaN+dqE91LQ4TAhzAUXw4C40Q9V gWet9QCr26gznZ8jXpMsgIC9n8p/hygpSeIUwpLK0KrL3LXXcqJgLimeeZu8V+XT Isi1CSlNAHoshWcvZjgk3cIqLjBdlfV49+r12JEBh7onHjnGXCG3BoRbI1epF6vg +NVI+WJgopjrrogR51dvhBvVLwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAr5JQgo UttMYGlcI7d+aj0C0doNMB8GA1UdIwQYMBaAFLV7IH8OHBuoc6B5NYLHqBNAmGdM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMTcxMS85RkREMkRBMEM5 OTExMUVFODkxQkE0MTlDNEY5QUUwMi90WHNnZnc0Y0c2aHpvSGsxZ3Nlb0UwQ1la MHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3RYc2dmdzRjRzZoem9IazFnc2VvRTBDWVowdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MTcxMS85RkREMkRBMEM5OTExMUVFODkxQkE0MTlDNEY5QUUwMi90WHNnZnc0Y0c2 aHpvSGsxZ3Nlb0UwQ1laMHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCZBcGfRB5pk5o1CUz/6P1C9ecrrkz6+kZD2q0tJjOxnU5IXl9tAFA4 vdquI12sc6suxUZdkr5aYb69426JWv9nSVNY2pOW8v2U9feET27OseacghUjtb4Q gTY9GA92KWO2lHV13aXSHnFCBGmMhEqRPMLPXBxtTFWJAzwanxgQQ9HYDb3ysn/e vwJ4SsonENzs4JrB7AZabHQtzde1RvsfyT05kAV/odnaTrq3lvsSGF+LlWcr5jT0 YWdV7QB5oW3GC4fCK9S88gbBZHoSjC0/TGIU3fVRNkoJdw5eeIDzC6gxqxRAvgit +Fks8x6dgBAk0VtGWlIf6oSOtjZ+OLLg -----END CERTIFICATE-----Generated at Tue Oct 21 02:15:16 2025 by rpki-client