$ rpki-client -vvf rpki.apnic.net/member_repository/A9161F73/6DF0E1083D0711EFB5C9EC24C4F9AE02/tDxOPTL5W1BV0E_cAfhRljfImm8.mft File: tDxOPTL5W1BV0E_cAfhRljfImm8.mft (raw, json) Hash identifier: kp8gMZs1bnXlEkEOEWtpriFBDNCrx4wzezxf3nXhxZE= Subject key identifier: 00:1E:95:B9:2C:07:3E:15:84:95:00:CD:13:2F:16:1A:3E:34:3E:52 Authority key identifier: B4:3C:4E:3D:32:F9:5B:50:55:D0:4F:DC:01:F8:51:96:37:C8:9A:6F Certificate issuer: /CN=A9161F73/serialNumber=B43C4E3D32F95B5055D04FDC01F8519637C89A6F Certificate serial: F6 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tDxOPTL5W1BV0E_cAfhRljfImm8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9161F73/6DF0E1083D0711EFB5C9EC24C4F9AE02/tDxOPTL5W1BV0E_cAfhRljfImm8.mft Manifest number: F2 Signing time: Sun 19 Oct 2025 08:14:15 +0000 Manifest this update: Sun 19 Oct 2025 08:14:14 +0000 Manifest next update: Sun 26 Oct 2025 08:14:14 +0000 Files and hashes: 1: tDxOPTL5W1BV0E_cAfhRljfImm8.crl (hash: 8lv4hUkzhyaO0V0SKu4yQgxd7KkCT6jDoy8jO5VwnXg=) 2: 858870583D0A11EF829DCE39C4F9AE02.roa (hash: RTDmiAUTa+6e7BNeD1q7cr5hG3t1MJJWblXaDUXHJew=) 3: 38BDA87E3D0A11EF9EEE4439C4F9AE02.roa (hash: ZlBqKGquKmDZSHNnRJSZITSYuAIz8r1LwmFTYmRFcj4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9161F73/6DF0E1083D0711EFB5C9EC24C4F9AE02/tDxOPTL5W1BV0E_cAfhRljfImm8.crl rsync://rpki.apnic.net/member_repository/A9161F73/6DF0E1083D0711EFB5C9EC24C4F9AE02/tDxOPTL5W1BV0E_cAfhRljfImm8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tDxOPTL5W1BV0E_cAfhRljfImm8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 08:14:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 246 (0xf6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9161F73, serialNumber=B43C4E3D32F95B5055D04FDC01F8519637C89A6F Validity Not Before: Oct 19 08:14:14 2025 GMT Not After : Oct 26 08:14:14 2025 GMT Subject: CN=68f49dd6-59f9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:59:d4:0b:fb:cc:07:7f:82:0b:73:2b:14:65: 33:cf:45:6d:4e:c6:b3:cb:31:c4:0e:fd:d1:b6:6e: e8:f2:9f:cb:4b:8a:67:a2:26:31:89:23:b1:84:9d: 5d:f1:8e:1d:13:72:91:78:c8:29:a9:e4:b7:ac:b2: ae:13:78:58:7c:8f:63:bd:67:81:c0:75:cb:6f:8c: 07:35:12:ab:31:09:a6:c6:c7:f0:1f:10:2c:ee:ba: 2e:e8:a4:a0:92:ee:e8:00:17:59:8c:eb:48:cc:0b: 15:78:d2:38:f7:cb:2b:76:ca:63:cf:be:51:b9:4d: c7:ce:5a:2c:0c:11:82:e7:98:37:d3:6a:26:a4:44: 0c:ab:27:ee:c6:7f:9e:d3:0e:98:8c:8a:93:73:ed: 73:59:ef:32:65:db:f2:89:b2:d2:dd:a2:6a:9d:c3: 78:81:6b:9a:09:f3:a6:71:9c:5b:3a:4b:bb:cc:a7: 26:70:29:0c:d2:07:66:38:aa:ea:db:a8:a2:93:7b: 93:fe:f6:e3:16:08:1c:ec:ca:67:17:66:16:ed:6a: 3d:b2:6b:ea:a3:d8:82:d6:fb:cd:a6:e9:d7:8b:ad: fb:4c:69:f6:4d:5d:74:04:7d:4c:7e:95:9a:45:f6: 57:46:88:70:8a:47:1f:1d:6f:0a:c4:77:f4:59:10: 2f:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:1E:95:B9:2C:07:3E:15:84:95:00:CD:13:2F:16:1A:3E:34:3E:52 X509v3 Authority Key Identifier: keyid:B4:3C:4E:3D:32:F9:5B:50:55:D0:4F:DC:01:F8:51:96:37:C8:9A:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9161F73/6DF0E1083D0711EFB5C9EC24C4F9AE02/tDxOPTL5W1BV0E_cAfhRljfImm8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tDxOPTL5W1BV0E_cAfhRljfImm8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9161F73/6DF0E1083D0711EFB5C9EC24C4F9AE02/tDxOPTL5W1BV0E_cAfhRljfImm8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 21:0b:68:bd:cd:fb:15:c1:91:b1:08:f9:54:55:8c:28:f7:b1: ec:34:a8:45:b9:e4:c7:fe:ee:00:50:ea:21:5f:69:60:38:63: ba:20:13:72:51:48:38:9b:51:99:99:5a:f7:11:94:92:d5:d0: 87:bf:33:c8:e9:03:aa:2b:cd:34:5f:9d:53:9a:47:7e:9e:90: 12:c6:bd:ab:ed:b7:d2:53:03:51:17:54:22:68:f4:54:c4:5f: 8a:3e:50:67:fd:b0:c2:a2:4f:60:f3:73:64:04:cd:31:c1:8f: b0:db:63:1f:bb:f6:25:df:a0:9d:d3:35:4c:3e:87:40:40:97: df:79:74:5a:c1:2d:87:49:3c:dd:29:6f:5e:a6:92:22:d2:d8: 82:67:ad:b9:75:b1:63:37:b0:45:e3:e7:95:54:5d:28:2a:6f: 52:94:01:e0:b1:b9:86:52:a4:c1:ec:be:79:e4:8d:a4:4f:e8: 33:e7:51:db:7d:90:a9:56:55:fb:23:4c:c5:0a:e5:89:74:65: 74:bb:83:2e:17:d2:00:cd:ee:b5:fd:e4:0f:36:27:18:37:b6: 8a:ce:ca:d6:86:b1:dc:95:3e:16:a3:4d:db:aa:54:d4:99:39: 4a:e0:ab:f8:b5:dc:ad:d3:9c:ca:4a:03:4e:6a:f2:5c:89:7b: 63:e8:d7:30 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjFGNzMxMTAvBgNVBAUTKEI0M0M0RTNEMzJGOTVCNTA1NUQwNEZEQzAxRjg1MTk2 MzdDODlBNkYwHhcNMjUxMDE5MDgxNDE0WhcNMjUxMDI2MDgxNDE0WjAYMRYwFAYD VQQDEw02OGY0OWRkNi01OWY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6FnUC/vMB3+CC3MrFGUzz0VtTsazyzHEDv3Rtm7o8p/LS4pnoiYxiSOxhJ1d 8Y4dE3KReMgpqeS3rLKuE3hYfI9jvWeBwHXLb4wHNRKrMQmmxsfwHxAs7rou6KSg ku7oABdZjOtIzAsVeNI498srdspjz75RuU3HzlosDBGC55g302ompEQMqyfuxn+e 0w6YjIqTc+1zWe8yZdvyibLS3aJqncN4gWuaCfOmcZxbOku7zKcmcCkM0gdmOKrq 26iik3uT/vbjFggc7MpnF2YW7Wo9smvqo9iC1vvNpunXi637TGn2TV10BH1MfpWa RfZXRohwikcfHW8KxHf0WRAv3QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAAelbks Bz4VhJUAzRMvFho+ND5SMB8GA1UdIwQYMBaAFLQ8Tj0y+VtQVdBP3AH4UZY3yJpv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MUY3My82REYwRTEwODNE MDcxMUVGQjVDOUVDMjRDNEY5QUUwMi90RHhPUFRMNVcxQlYwRV9jQWZoUmxqZklt bTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3REeE9QVEw1VzFCVjBFX2NBZmhSbGpmSW1tOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MUY3My82REYwRTEwODNEMDcxMUVGQjVDOUVDMjRDNEY5QUUwMi90RHhPUFRMNVcx QlYwRV9jQWZoUmxqZkltbTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAhC2i9zfsVwZGxCPlUVYwo97HsNKhFueTH/u4AUOohX2lgOGO6IBNy UUg4m1GZmVr3EZSS1dCHvzPI6QOqK800X51Tmkd+npASxr2r7bfSUwNRF1QiaPRU xF+KPlBn/bDCok9g83NkBM0xwY+w22Mfu/Yl36Cd0zVMPodAQJffeXRawS2HSTzd KW9eppIi0tiCZ625dbFjN7BF4+eVVF0oKm9SlAHgsbmGUqTB7L555I2kT+gz51Hb fZCpVlX7I0zFCuWJdGV0u4MuF9IAze61/eQPNicYN7aKzsrWhrHclT4Wo03bqlTU mTlK4Kv4tdyt05zKSgNOavJciXtj6Ncw -----END CERTIFICATE-----Generated at Tue Oct 21 02:26:04 2025 by rpki-client