$ rpki-client -vvf rpki.apnic.net/member_repository/A915203C/46C88C82747711EA83654F4DC4F9AE02/TkRgz2OyS3w1ue2uyX5jpyxL3iM.mft File: TkRgz2OyS3w1ue2uyX5jpyxL3iM.mft (raw, json) Hash identifier: msKU/hbMbk5gScNVm5QO/47n9hJgboWtNxy1ubyX84s= Subject key identifier: B2:0C:39:43:F3:E8:00:4F:ED:1A:D2:84:E1:94:77:C1:2D:EF:A9:D4 Authority key identifier: 4E:44:60:CF:63:B2:4B:7C:35:B9:ED:AE:C9:7E:63:A7:2C:4B:DE:23 Certificate issuer: /CN=A915203C/serialNumber=4E4460CF63B24B7C35B9EDAEC97E63A72C4BDE23 Certificate serial: 0A56 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TkRgz2OyS3w1ue2uyX5jpyxL3iM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915203C/46C88C82747711EA83654F4DC4F9AE02/TkRgz2OyS3w1ue2uyX5jpyxL3iM.mft Manifest number: 0A4F Signing time: Sat 18 Oct 2025 20:40:26 +0000 Manifest this update: Sat 18 Oct 2025 20:40:25 +0000 Manifest next update: Sat 25 Oct 2025 20:40:25 +0000 Files and hashes: 1: TkRgz2OyS3w1ue2uyX5jpyxL3iM.crl (hash: GQjCtkgB6bs0LEBOx/5uYd4AiD0bxEtyq8r7jdn3AY0=) 2: 4A7F0102747811EAB3C2634EC4F9AE02.roa (hash: 1nP7wgiAU6ogCq9MB/uivojHlNVu46xfBAf9/7vfcJE=) 3: 039A4408614511F0B95C3C38C4F9AE02.roa (hash: oDjyKM5SNuLjv6Hcd551F4doAQus0w8X4mHseINWIyM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915203C/46C88C82747711EA83654F4DC4F9AE02/TkRgz2OyS3w1ue2uyX5jpyxL3iM.crl rsync://rpki.apnic.net/member_repository/A915203C/46C88C82747711EA83654F4DC4F9AE02/TkRgz2OyS3w1ue2uyX5jpyxL3iM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TkRgz2OyS3w1ue2uyX5jpyxL3iM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 20:40:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2646 (0xa56) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915203C, serialNumber=4E4460CF63B24B7C35B9EDAEC97E63A72C4BDE23 Validity Not Before: Oct 18 20:40:25 2025 GMT Not After : Oct 25 20:40:25 2025 GMT Subject: CN=68f3fb3a-0126 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:4f:85:3c:98:36:e5:57:f3:59:79:b8:3c:5b: ed:be:ca:6e:32:1b:a9:2d:2c:8d:b3:11:b6:5f:09: f7:81:00:8f:a2:78:fe:fa:78:0b:89:91:1a:ed:f2: a1:7f:56:5d:b9:f1:69:83:76:0b:fb:ca:83:da:3d: 21:f1:45:c1:cd:51:53:62:91:c2:c7:87:c5:01:4e: 4e:de:3f:06:25:8b:3b:6b:93:18:7c:d7:c9:fc:c6: fc:65:84:7a:1b:f9:cb:40:df:06:2e:dd:e6:e4:27: 90:f6:a2:fa:3c:b4:2b:5f:bb:81:17:d6:e2:4b:a1: 0a:1d:9d:15:52:8d:89:f7:b0:73:dc:eb:b6:98:69: fc:19:96:02:33:e0:17:f6:a1:64:2c:4c:29:d0:7a: 7e:dd:a4:d1:ca:6d:74:d5:e5:ae:82:93:20:27:2b: 38:e5:0f:4c:b9:2c:51:3e:53:88:06:3b:30:e7:43: 1c:d3:97:67:8f:e9:1f:aa:0c:6c:16:6d:d2:cf:ef: c3:de:59:b4:57:a5:53:34:54:3c:d0:35:d6:41:a0: 04:e1:fa:ac:93:32:a3:b1:9c:09:b9:71:4e:28:75: 54:a7:2b:8c:7b:ba:b2:99:8e:db:64:6f:a2:88:e1: 76:fd:09:6c:37:a7:21:5f:3f:ec:2c:51:00:d2:a5: 22:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:0C:39:43:F3:E8:00:4F:ED:1A:D2:84:E1:94:77:C1:2D:EF:A9:D4 X509v3 Authority Key Identifier: keyid:4E:44:60:CF:63:B2:4B:7C:35:B9:ED:AE:C9:7E:63:A7:2C:4B:DE:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915203C/46C88C82747711EA83654F4DC4F9AE02/TkRgz2OyS3w1ue2uyX5jpyxL3iM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TkRgz2OyS3w1ue2uyX5jpyxL3iM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915203C/46C88C82747711EA83654F4DC4F9AE02/TkRgz2OyS3w1ue2uyX5jpyxL3iM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3e:6d:d0:6d:b5:cd:e2:64:cf:21:12:01:ae:76:4a:76:d0:8c: 43:95:56:6e:bc:c3:31:c2:89:5a:9f:c0:35:2f:c5:25:21:92: 31:c1:2a:5c:a8:d4:46:3a:1e:06:5c:8b:4a:e4:01:64:83:a8: aa:0f:b6:ea:1b:7a:d0:6a:c3:fa:24:50:13:d3:cc:33:33:e2: d4:cb:d2:99:5b:ef:21:3d:46:01:cd:2b:ec:31:67:cd:91:18: bf:de:df:86:54:61:08:42:9c:06:c6:67:01:23:34:2f:57:f5: 0e:10:13:51:67:3d:64:a2:50:9c:63:c9:79:f5:ce:e9:1a:c1: ce:e1:54:2a:4d:85:cc:8a:a4:b7:83:27:7c:79:58:13:2f:a5: af:f4:6b:a0:9d:46:19:86:c0:2c:ef:2a:22:0c:1d:93:ee:47: 33:fb:ee:db:04:b9:c2:04:e8:62:9d:8b:bb:6e:03:e5:89:44: eb:eb:83:ff:c6:60:59:05:38:d9:da:de:e7:20:51:50:79:09: 19:48:3f:94:4b:07:ba:de:f0:7d:d9:32:19:33:b6:41:4b:8b: d7:b3:1c:f6:dd:73:9b:11:19:00:35:d8:0f:6a:7b:ec:33:6d: f9:2b:24:eb:8e:5e:79:15:ea:26:9e:05:ba:a0:d6:06:87:66: 3f:1b:3c:71 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICClYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTIwM0MxMTAvBgNVBAUTKDRFNDQ2MENGNjNCMjRCN0MzNUI5RURBRUM5N0U2M0E3 MkM0QkRFMjMwHhcNMjUxMDE4MjA0MDI1WhcNMjUxMDI1MjA0MDI1WjAYMRYwFAYD VQQDEw02OGYzZmIzYS0wMTI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmk+FPJg25VfzWXm4PFvtvspuMhupLSyNsxG2Xwn3gQCPonj++ngLiZEa7fKh f1ZdufFpg3YL+8qD2j0h8UXBzVFTYpHCx4fFAU5O3j8GJYs7a5MYfNfJ/Mb8ZYR6 G/nLQN8GLt3m5CeQ9qL6PLQrX7uBF9biS6EKHZ0VUo2J97Bz3Ou2mGn8GZYCM+AX 9qFkLEwp0Hp+3aTRym101eWugpMgJys45Q9MuSxRPlOIBjsw50Mc05dnj+kfqgxs Fm3Sz+/D3lm0V6VTNFQ80DXWQaAE4fqskzKjsZwJuXFOKHVUpyuMe7qymY7bZG+i iOF2/QlsN6chXz/sLFEA0qUi4wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLIMOUPz 6ABP7RrShOGUd8Et76nUMB8GA1UdIwQYMBaAFE5EYM9jskt8Nbntrsl+Y6csS94j MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MjAzQy80NkM4OEM4Mjc0 NzcxMUVBODM2NTRGNERDNEY5QUUwMi9Ua1JnejJPeVMzdzF1ZTJ1eVg1anB5eEwz aU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RrUmd6Mk95UzN3MXVlMnV5WDVqcHl4TDNpTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MjAzQy80NkM4OEM4Mjc0NzcxMUVBODM2NTRGNERDNEY5QUUwMi9Ua1JnejJPeVMz dzF1ZTJ1eVg1anB5eEwzaU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA+bdBttc3iZM8hEgGudkp20IxDlVZuvMMxwolan8A1L8UlIZIxwSpc qNRGOh4GXItK5AFkg6iqD7bqG3rQasP6JFAT08wzM+LUy9KZW+8hPUYBzSvsMWfN kRi/3t+GVGEIQpwGxmcBIzQvV/UOEBNRZz1kolCcY8l59c7pGsHO4VQqTYXMiqS3 gyd8eVgTL6Wv9GugnUYZhsAs7yoiDB2T7kcz++7bBLnCBOhinYu7bgPliUTr64P/ xmBZBTjZ2t7nIFFQeQkZSD+USwe63vB92TIZM7ZBS4vXsxz23XObERkANdgPanvs M235KyTrjl55FeomngW6oNYGh2Y/Gzxx -----END CERTIFICATE-----Generated at Mon Oct 20 10:15:45 2025 by rpki-client