$ rpki-client -vvf rpki.apnic.net/member_repository/A915825D/DD71D568A44611EF8D58A624C4F9AE02/TKAuwRGHSuDn0FVaJf8zAvkS64w.mft File: TKAuwRGHSuDn0FVaJf8zAvkS64w.mft (raw, json) Hash identifier: 4Qk6iJ1EA+stBCmgw5w+r9e2MF+11LQkVJK7HQdgN10= Subject key identifier: F4:67:61:C3:43:91:AF:B0:6E:2A:03:44:71:5F:8E:8E:AE:45:FE:A2 Authority key identifier: 4C:A0:2E:C1:11:87:4A:E0:E7:D0:55:5A:25:FF:33:02:F9:12:EB:8C Certificate issuer: /CN=A915825D/serialNumber=4CA02EC111874AE0E7D0555A25FF3302F912EB8C Certificate serial: B8 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TKAuwRGHSuDn0FVaJf8zAvkS64w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915825D/DD71D568A44611EF8D58A624C4F9AE02/TKAuwRGHSuDn0FVaJf8zAvkS64w.mft Manifest number: B3 Signing time: Sun 19 Oct 2025 09:19:07 +0000 Manifest this update: Sun 19 Oct 2025 09:19:06 +0000 Manifest next update: Sun 26 Oct 2025 09:19:06 +0000 Files and hashes: 1: TKAuwRGHSuDn0FVaJf8zAvkS64w.crl (hash: KIYUj+rwLQ/wl/XFn7+Tp1OuSF3YwkNrLhgbHfu5ZGI=) 2: 109B1A6AC14F11EFAE8F4B0BC4F9AE02.roa (hash: m6Ln5a7ZSeIX81Tm2886H7n9SlKXj8hnsIcbsYsTN7o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915825D/DD71D568A44611EF8D58A624C4F9AE02/TKAuwRGHSuDn0FVaJf8zAvkS64w.crl rsync://rpki.apnic.net/member_repository/A915825D/DD71D568A44611EF8D58A624C4F9AE02/TKAuwRGHSuDn0FVaJf8zAvkS64w.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TKAuwRGHSuDn0FVaJf8zAvkS64w.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 09:19:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 184 (0xb8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915825D, serialNumber=4CA02EC111874AE0E7D0555A25FF3302F912EB8C Validity Not Before: Oct 19 09:19:06 2025 GMT Not After : Oct 26 09:19:06 2025 GMT Subject: CN=68f4ad0b-d6ac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:94:fe:e1:d0:5f:4e:ff:e1:2f:fe:49:8e:fe: e7:b6:c5:51:04:d4:b5:66:ce:d1:15:f4:43:fc:6e: 31:7f:6b:61:3f:fe:20:23:6e:d9:75:cb:a0:8c:e2: 57:64:d9:2c:4c:1b:96:bc:7e:ba:b8:03:dd:90:88: 8a:54:e0:9b:a2:5e:4c:ca:16:16:23:74:7e:5a:2c: d7:1c:a2:a1:54:8f:5d:36:ef:28:ff:39:af:0f:72: 34:ac:36:e8:28:5d:3e:d2:9c:1d:92:10:e2:de:63: aa:0e:78:6a:45:f4:9a:82:c5:53:6a:fa:7e:50:13: 49:7b:68:7f:c3:02:a9:df:73:6e:30:ee:14:7e:68: 9b:dc:8a:c0:9c:aa:62:e0:67:a9:b3:1a:e0:d7:5a: 8d:e7:72:9b:f0:7d:72:c0:f5:9e:75:fb:db:b0:7f: 37:40:8c:22:61:00:e1:ed:d4:1e:6b:a2:05:6c:ab: 26:13:23:f5:db:52:17:f7:f4:41:70:3e:3c:c8:8c: a1:d3:dd:40:9b:1f:23:d8:d0:15:4d:1d:2e:cd:bc: d9:a0:16:63:06:81:25:aa:a2:b0:2a:06:6f:d2:ed: 3c:46:f8:36:4d:33:84:58:e6:b2:e2:b2:8d:1e:98: 0d:01:cd:08:bb:2f:02:51:b8:10:65:8e:c6:80:d8: 33:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:67:61:C3:43:91:AF:B0:6E:2A:03:44:71:5F:8E:8E:AE:45:FE:A2 X509v3 Authority Key Identifier: keyid:4C:A0:2E:C1:11:87:4A:E0:E7:D0:55:5A:25:FF:33:02:F9:12:EB:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915825D/DD71D568A44611EF8D58A624C4F9AE02/TKAuwRGHSuDn0FVaJf8zAvkS64w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TKAuwRGHSuDn0FVaJf8zAvkS64w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915825D/DD71D568A44611EF8D58A624C4F9AE02/TKAuwRGHSuDn0FVaJf8zAvkS64w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a6:c7:f7:c2:b8:4e:cf:07:df:09:d2:be:81:ed:dd:c9:73:8b: 84:a9:f1:65:b6:65:c2:c3:60:57:33:4e:b8:85:80:2f:1b:d6: 2e:0d:60:0c:ee:8a:12:6c:f5:40:bc:1c:b3:f0:60:57:2a:90: 5e:53:94:88:64:c6:09:13:92:a5:de:b3:ed:7c:27:8e:96:90: a9:a5:31:2a:2c:de:c9:7e:85:91:47:af:42:00:f3:98:b8:4d: db:0d:39:c8:31:78:e5:e8:60:24:0f:e7:c1:94:3e:27:45:d2: 1b:f3:43:d0:af:c7:ba:19:0d:26:8a:57:f4:f6:77:26:e3:ed: 5c:53:85:25:8e:dd:55:ec:b3:d2:f3:28:ff:fc:af:82:87:c6: 5e:82:db:7a:c5:05:ef:36:1f:49:04:43:8e:a1:3b:ff:f6:fc: de:30:83:3b:10:ed:20:01:34:bf:8b:e0:a5:b6:a9:56:27:88: 52:da:54:39:e8:a9:e2:dd:5f:7a:c6:c9:a8:e0:12:c6:ff:d2: 10:53:fb:be:72:77:71:2f:b2:5e:cb:d6:e5:66:92:1b:8c:76: 5a:77:c4:0a:74:99:8f:44:cf:27:cc:dd:f2:79:f3:d3:50:94: 56:94:30:42:6f:82:f2:e6:e8:e9:e4:9b:89:79:05:b3:28:e1: 9f:77:66:65 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTgyNUQxMTAvBgNVBAUTKDRDQTAyRUMxMTE4NzRBRTBFN0QwNTU1QTI1RkYzMzAy RjkxMkVCOEMwHhcNMjUxMDE5MDkxOTA2WhcNMjUxMDI2MDkxOTA2WjAYMRYwFAYD VQQDEw02OGY0YWQwYi1kNmFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA75T+4dBfTv/hL/5Jjv7ntsVRBNS1Zs7RFfRD/G4xf2thP/4gI27ZdcugjOJX ZNksTBuWvH66uAPdkIiKVOCbol5MyhYWI3R+WizXHKKhVI9dNu8o/zmvD3I0rDbo KF0+0pwdkhDi3mOqDnhqRfSagsVTavp+UBNJe2h/wwKp33NuMO4Ufmib3IrAnKpi 4Gepsxrg11qN53Kb8H1ywPWedfvbsH83QIwiYQDh7dQea6IFbKsmEyP121IX9/RB cD48yIyh091Amx8j2NAVTR0uzbzZoBZjBoElqqKwKgZv0u08Rvg2TTOEWOay4rKN HpgNAc0Iuy8CUbgQZY7GgNgzgwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPRnYcND ka+wbioDRHFfjo6uRf6iMB8GA1UdIwQYMBaAFEygLsERh0rg59BVWiX/MwL5EuuM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODI1RC9ERDcxRDU2OEE0 NDYxMUVGOEQ1OEE2MjRDNEY5QUUwMi9US0F1d1JHSFN1RG4wRlZhSmY4ekF2a1M2 NHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1RLQXV3UkdIU3VEbjBGVmFKZjh6QXZrUzY0dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 ODI1RC9ERDcxRDU2OEE0NDYxMUVGOEQ1OEE2MjRDNEY5QUUwMi9US0F1d1JHSFN1 RG4wRlZhSmY4ekF2a1M2NHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCmx/fCuE7PB98J0r6B7d3Jc4uEqfFltmXCw2BXM064hYAvG9YuDWAM 7ooSbPVAvByz8GBXKpBeU5SIZMYJE5Kl3rPtfCeOlpCppTEqLN7JfoWRR69CAPOY uE3bDTnIMXjl6GAkD+fBlD4nRdIb80PQr8e6GQ0milf09ncm4+1cU4Uljt1V7LPS 8yj//K+Ch8Zegtt6xQXvNh9JBEOOoTv/9vzeMIM7EO0gATS/i+CltqlWJ4hS2lQ5 6Kni3V96xsmo4BLG/9IQU/u+cndxL7Jey9blZpIbjHZad8QKdJmPRM8nzN3yefPT UJRWlDBCb4Ly5ujp5JuJeQWzKOGfd2Zl -----END CERTIFICATE-----Generated at Tue Oct 21 07:13:52 2025 by rpki-client