$ rpki-client -vvf rpki.apnic.net/member_repository/A9145B13/50BD230EB12811EFB750A52BC4F9AE02/tNIXk5onUZOOB2WaeUiFqciEGRk.mft File: tNIXk5onUZOOB2WaeUiFqciEGRk.mft (raw, json) Hash identifier: TgxVEwpsjjAhSB6dYsmkj2eVbwU0q3V/1ybeJGmyXLI= Subject key identifier: 95:05:6E:3C:FB:A7:B6:C7:F7:79:3A:FA:81:84:E0:A7:4C:47:D9:FC Authority key identifier: B4:D2:17:93:9A:27:51:93:8E:07:65:9A:79:48:85:A9:C8:84:19:19 Certificate issuer: /CN=A9145B13/serialNumber=B4D217939A2751938E07659A794885A9C8841919 Certificate serial: A6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tNIXk5onUZOOB2WaeUiFqciEGRk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9145B13/50BD230EB12811EFB750A52BC4F9AE02/tNIXk5onUZOOB2WaeUiFqciEGRk.mft Manifest number: A5 Signing time: Sun 19 Oct 2025 09:27:41 +0000 Manifest this update: Sun 19 Oct 2025 09:27:40 +0000 Manifest next update: Sun 26 Oct 2025 09:27:40 +0000 Files and hashes: 1: tNIXk5onUZOOB2WaeUiFqciEGRk.crl (hash: nCnteTIcyMWcaZcgrs9dbokHaLbX9L3/ezU3g0XgN8I=) 2: 793486E0C11A11EF99C19012C4F9AE02.roa (hash: pawwhpt8xl4Jm5tUlNLFvNNRwT1g8ks5JKIz2Wod4KM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9145B13/50BD230EB12811EFB750A52BC4F9AE02/tNIXk5onUZOOB2WaeUiFqciEGRk.crl rsync://rpki.apnic.net/member_repository/A9145B13/50BD230EB12811EFB750A52BC4F9AE02/tNIXk5onUZOOB2WaeUiFqciEGRk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tNIXk5onUZOOB2WaeUiFqciEGRk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 09:27:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 166 (0xa6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9145B13, serialNumber=B4D217939A2751938E07659A794885A9C8841919 Validity Not Before: Oct 19 09:27:40 2025 GMT Not After : Oct 26 09:27:40 2025 GMT Subject: CN=68f4af0d-81d1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:89:50:41:20:a8:09:3b:48:aa:ab:15:46:dd: 88:f5:9e:1a:cb:95:ac:58:cb:07:3c:9c:b6:a1:bc: 2e:98:27:aa:9a:97:c4:f2:a5:49:c4:0a:d3:f4:e4: 6e:cb:8b:a7:ee:e1:3e:8f:41:34:1e:94:67:2d:fa: 9f:92:26:60:6d:eb:89:2c:1e:d0:f0:71:10:19:e4: e2:b7:65:ad:5a:5a:1a:cf:9d:54:2b:bc:cf:b2:67: 39:e2:f4:d1:41:e7:e6:76:dd:f1:4a:cf:41:5a:b4: 51:58:fa:cf:9c:6e:08:b4:95:6f:88:3e:15:54:ce: 6d:c7:84:c2:b9:b6:4a:17:06:3b:03:46:f3:07:88: 3b:26:a5:fb:52:9a:e6:ad:56:2c:57:74:75:1f:dd: 23:b2:6d:a2:d5:7c:86:05:04:63:78:92:d3:f2:d5: 44:af:1b:8b:74:00:ff:d0:1f:8d:2e:d9:fe:62:c7: 99:67:f6:62:df:ac:cb:98:55:3b:ad:d2:56:ce:28: 00:2a:98:76:28:c3:30:bb:1f:ba:d5:05:23:90:43: 9c:9f:f8:9c:8b:90:36:00:a7:68:a4:84:85:74:bd: 93:58:64:3f:4e:37:8e:aa:e4:d3:f1:db:f0:c1:f6: db:45:ed:29:41:9c:a5:6c:3a:00:6e:e0:df:dd:bb: cf:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:05:6E:3C:FB:A7:B6:C7:F7:79:3A:FA:81:84:E0:A7:4C:47:D9:FC X509v3 Authority Key Identifier: keyid:B4:D2:17:93:9A:27:51:93:8E:07:65:9A:79:48:85:A9:C8:84:19:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9145B13/50BD230EB12811EFB750A52BC4F9AE02/tNIXk5onUZOOB2WaeUiFqciEGRk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tNIXk5onUZOOB2WaeUiFqciEGRk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9145B13/50BD230EB12811EFB750A52BC4F9AE02/tNIXk5onUZOOB2WaeUiFqciEGRk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 48:1f:68:da:93:56:8c:02:e6:49:f0:d9:9c:66:f0:a3:92:c9: 13:0c:a9:a3:0e:d2:0a:2b:a9:24:5f:31:b2:c5:3a:da:e0:00: dd:87:e0:a9:77:5d:dc:1d:3a:a6:73:e5:0d:2d:f3:60:c8:38: 77:52:b4:69:3e:72:e9:ce:8e:21:35:e0:ba:ea:a8:90:51:9e: 6d:69:3f:97:3a:49:52:d3:ec:3d:05:9f:5f:ef:dc:ae:a1:28: 1a:83:62:63:05:71:f5:d5:59:95:49:b6:26:e7:3e:19:cf:01: 35:ac:f2:b6:fe:72:e3:2b:14:f1:d6:dd:61:f9:6a:39:d3:59: a5:a9:5e:37:34:f6:ab:70:39:c7:d7:17:b7:c8:e2:ab:0f:18: 51:c7:2a:36:56:52:47:0f:4e:05:7b:d2:ba:00:5d:06:c4:17: e1:d4:2e:16:e9:0c:31:76:bb:0c:28:c9:f4:fe:90:2f:d6:5e: 0f:14:b6:a7:92:ff:19:0e:63:d1:1c:1d:60:c9:6a:23:9a:e8: 73:b5:04:df:6d:1f:79:db:ec:74:f1:78:4d:34:f9:35:b2:7a: cd:61:19:50:31:ac:ba:1b:7f:64:ce:72:0a:e7:02:32:51:2a: e8:25:47:8b:11:ca:83:ad:24:46:a0:e4:e4:ec:c7:2f:1d:b5: fa:91:db:44 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDVCMTMxMTAvBgNVBAUTKEI0RDIxNzkzOUEyNzUxOTM4RTA3NjU5QTc5NDg4NUE5 Qzg4NDE5MTkwHhcNMjUxMDE5MDkyNzQwWhcNMjUxMDI2MDkyNzQwWjAYMRYwFAYD VQQDEw02OGY0YWYwZC04MWQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuYlQQSCoCTtIqqsVRt2I9Z4ay5WsWMsHPJy2obwumCeqmpfE8qVJxArT9ORu y4un7uE+j0E0HpRnLfqfkiZgbeuJLB7Q8HEQGeTit2WtWloaz51UK7zPsmc54vTR Qefmdt3xSs9BWrRRWPrPnG4ItJVviD4VVM5tx4TCubZKFwY7A0bzB4g7JqX7Uprm rVYsV3R1H90jsm2i1XyGBQRjeJLT8tVErxuLdAD/0B+NLtn+YseZZ/Zi36zLmFU7 rdJWzigAKph2KMMwux+61QUjkEOcn/ici5A2AKdopISFdL2TWGQ/TjeOquTT8dvw wfbbRe0pQZylbDoAbuDf3bvPcwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJUFbjz7 p7bH93k6+oGE4KdMR9n8MB8GA1UdIwQYMBaAFLTSF5OaJ1GTjgdlmnlIhanIhBkZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NUIxMy81MEJEMjMwRUIx MjgxMUVGQjc1MEE1MkJDNEY5QUUwMi90TklYazVvblVaT09CMldhZVVpRnFjaUVH UmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ROSVhrNW9uVVpPT0IyV2FlVWlGcWNpRUdSay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NUIxMy81MEJEMjMwRUIxMjgxMUVGQjc1MEE1MkJDNEY5QUUwMi90TklYazVvblVa T09CMldhZVVpRnFjaUVHUmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBIH2jak1aMAuZJ8NmcZvCjkskTDKmjDtIKK6kkXzGyxTra4ADdh+Cp d13cHTqmc+UNLfNgyDh3UrRpPnLpzo4hNeC66qiQUZ5taT+XOklS0+w9BZ9f79yu oSgag2JjBXH11VmVSbYm5z4ZzwE1rPK2/nLjKxTx1t1h+Wo501mlqV43NParcDnH 1xe3yOKrDxhRxyo2VlJHD04Fe9K6AF0GxBfh1C4W6QwxdrsMKMn0/pAv1l4PFLan kv8ZDmPRHB1gyWojmuhztQTfbR952+x08XhNNPk1snrNYRlQMay6G39kznIK5wIy USroJUeLEcqDrSRGoOTk7McvHbX6kdtE -----END CERTIFICATE-----Generated at Mon Oct 20 04:17:51 2025 by rpki-client