$ rpki-client -vvf rpki.apnic.net/member_repository/A9148F50/A1E1F79C411E11EBA0B8FA56C4F9AE02/TPa6KUJsvCB032LFH683jELTuK8.mft File: TPa6KUJsvCB032LFH683jELTuK8.mft (raw, json) Hash identifier: Xh3wZc5fBDGchMADfaF1CEHK6JK7p3IfiUub2rDNCBI= Subject key identifier: 1F:1F:E4:7F:B2:59:50:6F:B1:BD:7D:09:5E:1F:3E:4B:A9:1B:7B:83 Authority key identifier: 4C:F6:BA:29:42:6C:BC:20:74:DF:62:C5:1F:AF:37:8C:42:D3:B8:AF Certificate issuer: /CN=A9148F50/serialNumber=4CF6BA29426CBC2074DF62C51FAF378C42D3B8AF Certificate serial: 075B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TPa6KUJsvCB032LFH683jELTuK8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9148F50/A1E1F79C411E11EBA0B8FA56C4F9AE02/TPa6KUJsvCB032LFH683jELTuK8.mft Manifest number: 0753 Signing time: Sat 18 Oct 2025 23:04:42 +0000 Manifest this update: Sat 18 Oct 2025 23:04:41 +0000 Manifest next update: Sat 25 Oct 2025 23:04:41 +0000 Files and hashes: 1: TPa6KUJsvCB032LFH683jELTuK8.crl (hash: F7STNj0AhsOSF2DjjwuLMSgHSljIlvlySuKz8Qtvlqs=) 2: B6A436A8411F11EBA45D5857C4F9AE02.roa (hash: 8umaFtJV5TgBXJUzmNOXuQWmgpWLTZbpyNtna3LX4IY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9148F50/A1E1F79C411E11EBA0B8FA56C4F9AE02/TPa6KUJsvCB032LFH683jELTuK8.crl rsync://rpki.apnic.net/member_repository/A9148F50/A1E1F79C411E11EBA0B8FA56C4F9AE02/TPa6KUJsvCB032LFH683jELTuK8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TPa6KUJsvCB032LFH683jELTuK8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 23:04:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1883 (0x75b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9148F50, serialNumber=4CF6BA29426CBC2074DF62C51FAF378C42D3B8AF Validity Not Before: Oct 18 23:04:41 2025 GMT Not After : Oct 25 23:04:41 2025 GMT Subject: CN=68f41d09-20cf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:71:5c:a2:d8:f1:9e:df:0a:2f:ee:fc:55:99: 2d:4c:d0:f9:5d:63:8c:b3:ee:2f:52:48:53:74:08: d5:a2:f3:a4:23:4d:78:3b:2e:63:78:64:36:4c:dc: bd:1b:17:52:04:8c:76:21:b8:2e:42:56:26:10:b7: 77:d2:f9:2a:83:98:0e:7e:a1:d0:06:a2:5c:de:3c: 68:0a:e6:a9:01:05:70:a8:48:02:4a:6b:12:1e:54: 3e:fe:54:88:72:26:1f:2e:af:7f:d7:69:7d:1e:cd: 84:08:c5:d8:46:5f:95:8b:a8:db:ba:64:e3:88:4d: 55:7e:1a:46:b5:3c:f1:c5:c5:b1:9c:fe:fb:3f:40: 48:10:b2:22:45:2d:d6:a4:9b:d2:7c:77:96:b4:30: d6:4f:cd:7e:10:6a:63:de:e3:67:81:0b:bd:ef:b6: 5e:76:8c:50:91:ca:63:4e:63:80:02:9e:48:72:cf: ca:0d:33:63:9b:0f:c0:77:b4:60:b5:55:3b:4e:93: 0d:a1:d5:b4:18:52:e0:ec:f2:9b:b0:3b:0e:d0:d8: 20:3b:a7:ac:10:35:01:59:fc:1a:94:04:77:e7:29: 83:bb:ab:b4:69:3e:30:08:87:5b:fd:d8:94:7e:7e: 37:84:a7:5a:86:42:07:d9:37:f1:df:b2:a1:fe:9b: a4:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:1F:E4:7F:B2:59:50:6F:B1:BD:7D:09:5E:1F:3E:4B:A9:1B:7B:83 X509v3 Authority Key Identifier: keyid:4C:F6:BA:29:42:6C:BC:20:74:DF:62:C5:1F:AF:37:8C:42:D3:B8:AF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9148F50/A1E1F79C411E11EBA0B8FA56C4F9AE02/TPa6KUJsvCB032LFH683jELTuK8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TPa6KUJsvCB032LFH683jELTuK8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148F50/A1E1F79C411E11EBA0B8FA56C4F9AE02/TPa6KUJsvCB032LFH683jELTuK8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3c:d7:ec:69:1d:c3:48:b2:0b:d9:54:3f:f3:d0:a7:81:be:af: 5e:a6:37:d5:69:87:06:13:4c:37:ea:bb:d1:d0:a0:dc:ec:a9: e9:ab:8e:53:36:eb:6a:72:78:0b:26:30:e7:20:77:95:26:94: d5:65:57:e9:21:b9:b7:65:f5:07:65:02:cf:70:03:12:e6:fc: 23:62:78:75:ae:22:e7:80:94:70:6c:59:44:e3:2a:bb:13:b9: 39:41:cd:17:53:78:7c:a5:4a:92:4c:64:3e:55:d7:6d:d0:c9: 85:5c:6c:a3:46:f3:4f:09:dc:3c:79:85:09:38:f0:96:2f:28: 22:ce:ba:ec:54:5b:9e:c9:1b:6c:ca:c6:c1:f3:76:4e:4e:17: b3:fc:4a:85:5c:d4:f8:68:97:d0:97:72:62:d7:ab:46:c6:1d: 3e:f6:c7:84:c2:5b:35:34:d2:d9:36:c4:fb:bb:bc:4d:b3:c2: b3:7e:4a:d5:ab:c3:4d:db:ae:ca:18:1a:6f:f8:3f:df:e8:62: 7a:fe:f5:1c:9d:c9:4e:88:77:f8:d7:7d:79:79:74:df:3c:26: 89:2e:3f:fb:18:59:a5:3d:c8:a8:63:9e:67:b0:58:1a:89:f1: 22:2c:5d:b7:d5:10:de:18:26:ea:d2:e4:fb:5b:e9:67:4d:59: 0f:65:49:b6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB1swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDhGNTAxMTAvBgNVBAUTKDRDRjZCQTI5NDI2Q0JDMjA3NERGNjJDNTFGQUYzNzhD NDJEM0I4QUYwHhcNMjUxMDE4MjMwNDQxWhcNMjUxMDI1MjMwNDQxWjAYMRYwFAYD VQQDEw02OGY0MWQwOS0yMGNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtXFcotjxnt8KL+78VZktTND5XWOMs+4vUkhTdAjVovOkI014Oy5jeGQ2TNy9 GxdSBIx2IbguQlYmELd30vkqg5gOfqHQBqJc3jxoCuapAQVwqEgCSmsSHlQ+/lSI ciYfLq9/12l9Hs2ECMXYRl+Vi6jbumTjiE1VfhpGtTzxxcWxnP77P0BIELIiRS3W pJvSfHeWtDDWT81+EGpj3uNngQu977ZedoxQkcpjTmOAAp5Ics/KDTNjmw/Ad7Rg tVU7TpMNodW0GFLg7PKbsDsO0NggO6esEDUBWfwalAR35ymDu6u0aT4wCIdb/diU fn43hKdahkIH2Tfx37Kh/pukXQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB8f5H+y WVBvsb19CV4fPkupG3uDMB8GA1UdIwQYMBaAFEz2uilCbLwgdN9ixR+vN4xC07iv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OEY1MC9BMUUxRjc5QzQx MUUxMUVCQTBCOEZBNTZDNEY5QUUwMi9UUGE2S1VKc3ZDQjAzMkxGSDY4M2pFTFR1 SzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RQYTZLVUpzdkNCMDMyTEZINjgzakVMVHVLOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OEY1MC9BMUUxRjc5QzQxMUUxMUVCQTBCOEZBNTZDNEY5QUUwMi9UUGE2S1VKc3ZD QjAzMkxGSDY4M2pFTFR1SzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA81+xpHcNIsgvZVD/z0KeBvq9epjfVaYcGE0w36rvR0KDc7Knpq45T NutqcngLJjDnIHeVJpTVZVfpIbm3ZfUHZQLPcAMS5vwjYnh1riLngJRwbFlE4yq7 E7k5Qc0XU3h8pUqSTGQ+Vddt0MmFXGyjRvNPCdw8eYUJOPCWLygizrrsVFueyRts ysbB83ZOThez/EqFXNT4aJfQl3Ji16tGxh0+9seEwls1NNLZNsT7u7xNs8KzfkrV q8NN267KGBpv+D/f6GJ6/vUcnclOiHf41315eXTfPCaJLj/7GFmlPcioY55nsFga ifEiLF231RDeGCbq0uT7W+lnTVkPZUm2 -----END CERTIFICATE-----Generated at Mon Oct 20 01:44:29 2025 by rpki-client