$ rpki-client -vvf rpki.apnic.net/member_repository/A916A983/28B1B61CCD0F11E89D9FF165C4F9AE02/tKlqre7ce-3VfWL8mknqCz_29Qw.mft File: tKlqre7ce-3VfWL8mknqCz_29Qw.mft (raw, json) Hash identifier: Ne6UUs04cfCq3/+Ep6p1OTXfbUsKLv7slymAXMouu50= Subject key identifier: AA:5B:39:38:58:7C:11:85:9B:5C:D8:E6:60:CA:AD:DC:02:6D:EF:4F Authority key identifier: B4:A9:6A:AD:EE:DC:7B:ED:D5:7D:62:FC:9A:49:EA:0B:3F:F6:F5:0C Certificate issuer: /CN=A916A983/serialNumber=B4A96AADEEDC7BEDD57D62FC9A49EA0B3FF6F50C Certificate serial: 12CD Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/tKlqre7ce-3VfWL8mknqCz_29Qw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916A983/28B1B61CCD0F11E89D9FF165C4F9AE02/tKlqre7ce-3VfWL8mknqCz_29Qw.mft Manifest number: 12C5 Signing time: Sat 18 Oct 2025 17:34:27 +0000 Manifest this update: Sat 18 Oct 2025 17:34:26 +0000 Manifest next update: Sat 25 Oct 2025 17:34:26 +0000 Files and hashes: 1: tKlqre7ce-3VfWL8mknqCz_29Qw.crl (hash: hD5OuSZ/s1+/CdRmA1AJ5exAhSAJguEqHLBWm6FM51U=) 2: 1C839F861BA111EA8BDD6114C4F9AE02.roa (hash: QOShMQ6mMEZRjJ5JESydTLr4xwZz//rE2YbhLSt51RI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916A983/28B1B61CCD0F11E89D9FF165C4F9AE02/tKlqre7ce-3VfWL8mknqCz_29Qw.crl rsync://rpki.apnic.net/member_repository/A916A983/28B1B61CCD0F11E89D9FF165C4F9AE02/tKlqre7ce-3VfWL8mknqCz_29Qw.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/tKlqre7ce-3VfWL8mknqCz_29Qw.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 17:34:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4813 (0x12cd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916A983, serialNumber=B4A96AADEEDC7BEDD57D62FC9A49EA0B3FF6F50C Validity Not Before: Oct 18 17:34:26 2025 GMT Not After : Oct 25 17:34:26 2025 GMT Subject: CN=68f3cfa2-89c6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:b9:d1:04:5b:ef:b6:a8:36:f1:58:7d:21:72: 43:04:e7:0f:64:19:96:a7:b6:33:d3:96:0a:9c:94: e7:8b:36:00:ee:e3:fb:bb:61:11:84:00:eb:40:05: 8c:42:bb:14:a2:84:f5:f1:21:64:ff:59:f4:8c:98: 8c:b7:e4:b6:35:a6:d2:25:bc:44:88:d9:95:7b:ff: 28:c9:7d:54:6b:8e:43:20:61:ce:5d:35:87:e4:23: bb:bc:9f:f8:cc:e0:bc:f1:1f:49:10:9a:7c:51:5d: cd:70:5f:0d:07:4c:e2:d8:eb:8e:ca:e3:d3:fb:41: e5:fa:d7:a5:48:3d:cf:ed:a9:53:2c:5e:68:56:bb: 12:84:7b:c0:44:ce:43:63:34:b8:50:f4:66:39:d8: 24:59:27:bb:35:5a:14:76:ca:b6:47:9a:c0:33:9a: 07:c0:8d:1a:82:7c:25:7d:32:77:e0:76:48:88:9f: 70:ac:c9:cd:bd:65:d5:70:06:4d:20:22:e9:07:82: ac:c9:7f:bd:25:d0:c7:13:8b:56:c5:3d:22:20:b5: f3:b8:d0:ec:09:5f:72:aa:78:ed:99:bc:f9:3f:8d: c8:3e:6d:ff:87:b6:70:3b:69:c6:3b:1f:3a:af:db: a1:a9:b5:79:68:54:fd:83:8b:8b:9e:fe:13:9e:e3: fa:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:5B:39:38:58:7C:11:85:9B:5C:D8:E6:60:CA:AD:DC:02:6D:EF:4F X509v3 Authority Key Identifier: keyid:B4:A9:6A:AD:EE:DC:7B:ED:D5:7D:62:FC:9A:49:EA:0B:3F:F6:F5:0C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916A983/28B1B61CCD0F11E89D9FF165C4F9AE02/tKlqre7ce-3VfWL8mknqCz_29Qw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/tKlqre7ce-3VfWL8mknqCz_29Qw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916A983/28B1B61CCD0F11E89D9FF165C4F9AE02/tKlqre7ce-3VfWL8mknqCz_29Qw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 96:f1:9e:a5:56:34:59:53:76:cb:71:3c:4d:26:3a:56:fa:70: 93:fd:2a:ec:f7:ee:be:f4:79:8b:37:45:70:d3:2f:55:ad:98: 77:44:90:07:71:b6:f5:0c:ac:41:95:1a:43:58:fe:8a:3d:d8: 6f:ec:d3:a9:e4:3c:68:b8:dc:82:3d:96:a4:9f:5f:b3:2f:36: d0:ba:b5:83:e2:e7:54:0e:b6:47:74:55:60:23:0f:23:92:ad: 47:3f:0d:3f:02:53:1e:e8:cb:6c:cc:79:8b:0c:85:c5:b1:0b: ad:75:14:10:ab:09:6d:6e:60:17:b5:f5:7f:91:b5:35:b5:5f: cb:7d:36:4d:c5:92:5c:9c:3d:5c:4f:8e:8d:b3:b1:9a:b5:c7: 2c:9e:7c:31:c3:1f:ba:9a:97:93:8e:eb:ab:3e:a4:f4:1b:a8: 37:c5:81:82:0b:10:0f:ee:06:a9:a4:b7:0e:83:a7:37:31:95: c0:3b:b5:5c:6e:d3:47:9f:2a:51:f9:56:cd:ee:d8:4e:14:1c: c5:93:a8:69:30:60:eb:53:d9:c2:62:a3:67:34:94:12:e1:31: 56:f7:a8:1e:df:7d:7b:bb:76:2f:44:46:59:fc:2f:32:0d:e5: 8d:42:be:45:12:53:69:0e:01:5f:ce:bd:c3:36:e5:73:78:a3: 33:81:b9:2b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEs0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkE5ODMxMTAvBgNVBAUTKEI0QTk2QUFERUVEQzdCRURENTdENjJGQzlBNDlFQTBC M0ZGNkY1MEMwHhcNMjUxMDE4MTczNDI2WhcNMjUxMDI1MTczNDI2WjAYMRYwFAYD VQQDEw02OGYzY2ZhMi04OWM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsrnRBFvvtqg28Vh9IXJDBOcPZBmWp7Yz05YKnJTnizYA7uP7u2ERhADrQAWM QrsUooT18SFk/1n0jJiMt+S2NabSJbxEiNmVe/8oyX1Ua45DIGHOXTWH5CO7vJ/4 zOC88R9JEJp8UV3NcF8NB0zi2OuOyuPT+0Hl+telSD3P7alTLF5oVrsShHvARM5D YzS4UPRmOdgkWSe7NVoUdsq2R5rAM5oHwI0agnwlfTJ34HZIiJ9wrMnNvWXVcAZN ICLpB4KsyX+9JdDHE4tWxT0iILXzuNDsCV9yqnjtmbz5P43IPm3/h7ZwO2nGOx86 r9uhqbV5aFT9g4uLnv4TnuP6VwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKpbOThY fBGFm1zY5mDKrdwCbe9PMB8GA1UdIwQYMBaAFLSpaq3u3Hvt1X1i/JpJ6gs/9vUM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QTk4My8yOEIxQjYxQ0NE MEYxMUU4OUQ5RkYxNjVDNEY5QUUwMi90S2xxcmU3Y2UtM1ZmV0w4bWtucUN6XzI5 UXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL3RLbHFyZTdjZS0zVmZXTDhta25xQ3pfMjlRdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QTk4My8yOEIxQjYxQ0NEMEYxMUU4OUQ5RkYxNjVDNEY5QUUwMi90S2xxcmU3Y2Ut M1ZmV0w4bWtucUN6XzI5UXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCW8Z6lVjRZU3bLcTxNJjpW+nCT/Srs9+6+9HmLN0Vw0y9VrZh3RJAH cbb1DKxBlRpDWP6KPdhv7NOp5DxouNyCPZakn1+zLzbQurWD4udUDrZHdFVgIw8j kq1HPw0/AlMe6MtszHmLDIXFsQutdRQQqwltbmAXtfV/kbU1tV/LfTZNxZJcnD1c T46Ns7Gatccsnnwxwx+6mpeTjuurPqT0G6g3xYGCCxAP7gappLcOg6c3MZXAO7Vc btNHnypR+VbN7thOFBzFk6hpMGDrU9nCYqNnNJQS4TFW96ge3317u3YvREZZ/C8y DeWNQr5FElNpDgFfzr3DNuVzeKMzgbkr -----END CERTIFICATE-----Generated at Mon Oct 20 18:25:54 2025 by rpki-client