$ rpki-client -vvf rpki.apnic.net/member_repository/A916C4BC/A970B2EC51AC11EC9ED9041BC4F9AE02/Tf7DQ3yQv0FNBRiLSCx4SObzFhs.mft File: Tf7DQ3yQv0FNBRiLSCx4SObzFhs.mft (raw, json) Hash identifier: mGMxh4XdbULRtlR7VjFgHWSE+LYHhMJjZhqfEwvqUgE= Subject key identifier: 72:72:28:FE:0F:26:E1:9C:84:C6:82:33:39:8F:4F:19:47:B1:CC:B3 Authority key identifier: 4D:FE:C3:43:7C:90:BF:41:4D:05:18:8B:48:2C:78:48:E6:F3:16:1B Certificate issuer: /CN=A916C4BC/serialNumber=4DFEC3437C90BF414D05188B482C7848E6F3161B Certificate serial: 04A3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Tf7DQ3yQv0FNBRiLSCx4SObzFhs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916C4BC/A970B2EC51AC11EC9ED9041BC4F9AE02/Tf7DQ3yQv0FNBRiLSCx4SObzFhs.mft Manifest number: 049F Signing time: Sun 19 Oct 2025 01:47:42 +0000 Manifest this update: Sun 19 Oct 2025 01:47:42 +0000 Manifest next update: Sun 26 Oct 2025 01:47:42 +0000 Files and hashes: 1: Tf7DQ3yQv0FNBRiLSCx4SObzFhs.crl (hash: atLzJNMdhWrr3+g4ZaDv5O2A1oYEcBRYafOE057/SzY=) 2: F593443851B011ECB5188E24C4F9AE02.roa (hash: CA35rH85+j+YJMr1xe8QwPujExClO3AIGNQ5xuf0vDw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916C4BC/A970B2EC51AC11EC9ED9041BC4F9AE02/Tf7DQ3yQv0FNBRiLSCx4SObzFhs.crl rsync://rpki.apnic.net/member_repository/A916C4BC/A970B2EC51AC11EC9ED9041BC4F9AE02/Tf7DQ3yQv0FNBRiLSCx4SObzFhs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Tf7DQ3yQv0FNBRiLSCx4SObzFhs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 01:47:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1187 (0x4a3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916C4BC, serialNumber=4DFEC3437C90BF414D05188B482C7848E6F3161B Validity Not Before: Oct 19 01:47:42 2025 GMT Not After : Oct 26 01:47:42 2025 GMT Subject: CN=68f4433e-65f5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:61:ec:61:27:0e:5d:b5:be:72:d8:8e:b4:04: a8:9a:33:60:db:b0:be:e3:48:77:86:a1:95:c1:ad: 53:ed:88:69:0a:e6:fa:c8:78:79:9d:96:4e:bb:40: ae:df:62:ec:ff:38:e1:24:ca:2b:35:cb:d8:0b:92: eb:08:5e:10:35:c9:9e:39:74:fd:82:65:02:2b:21: ac:15:65:76:fd:c7:b1:ea:f6:cd:6d:89:fc:dd:7e: 07:da:20:12:68:a9:3f:d0:39:05:72:e9:9a:92:8f: ee:33:e4:f3:f4:fe:96:b1:f9:f3:a0:60:a5:d6:1b: 3e:54:4d:70:be:22:8b:45:e3:22:48:82:db:78:9b: 9a:be:7f:e9:de:f8:36:b9:73:63:52:9b:2d:21:9b: 92:18:0b:56:ed:05:13:0f:fc:a5:6b:c0:e4:55:67: db:81:c6:7f:17:ef:ed:cb:c9:bc:16:17:6d:1c:67: f6:52:cb:57:6f:97:8f:03:c1:ac:60:e9:26:07:dc: b1:1e:9b:0b:a3:8a:fb:3e:e9:79:c5:f0:bf:c5:0d: b8:58:22:97:29:dd:00:ed:00:ea:b1:5a:65:f7:88: 5c:f9:f4:0b:31:dd:6a:04:ed:58:cd:1a:5a:b6:28: b6:dc:be:1f:07:c2:a5:53:c8:62:84:85:87:d1:73: 39:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:72:28:FE:0F:26:E1:9C:84:C6:82:33:39:8F:4F:19:47:B1:CC:B3 X509v3 Authority Key Identifier: keyid:4D:FE:C3:43:7C:90:BF:41:4D:05:18:8B:48:2C:78:48:E6:F3:16:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916C4BC/A970B2EC51AC11EC9ED9041BC4F9AE02/Tf7DQ3yQv0FNBRiLSCx4SObzFhs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Tf7DQ3yQv0FNBRiLSCx4SObzFhs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916C4BC/A970B2EC51AC11EC9ED9041BC4F9AE02/Tf7DQ3yQv0FNBRiLSCx4SObzFhs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:9a:06:5e:b1:d0:5c:71:b1:11:3c:d9:ea:e9:1d:23:18:59: e3:63:ba:50:fb:78:f0:f6:d6:0a:cd:d1:d4:66:a5:59:a9:a6: b3:49:d8:85:35:e8:0c:4f:5b:7e:97:4f:c8:a0:21:0b:a5:8e: f9:fd:33:ed:bc:f5:81:25:31:e3:21:38:70:47:f1:ad:d3:4e: 68:72:fb:90:ef:28:9b:61:6c:06:52:a9:7a:11:13:de:08:ea: 33:59:35:2c:19:27:6f:1b:0a:b9:76:37:d3:33:42:24:53:1b: 77:9b:a5:9e:10:a6:99:16:d1:f9:10:b4:d7:13:71:13:59:a8: 1f:5b:6f:d5:08:ab:ef:68:49:b3:98:6c:31:78:01:bf:d9:d7: 2c:59:9c:70:f7:68:d1:28:6d:a0:48:2a:8a:64:35:03:e5:5a: f8:a8:9f:a1:89:05:9c:a6:0e:6d:f5:55:fc:2a:24:9a:b1:94: 54:66:02:76:84:ac:a0:a0:60:cb:73:67:e9:fe:92:30:4a:9a: 8d:0a:60:f8:a1:9b:f7:af:be:ea:63:82:ae:64:89:4a:04:17: ad:12:7c:45:56:f9:b2:61:0d:eb:07:d1:e4:2e:f5:d9:cd:3a: 83:54:76:f9:82:87:cd:88:6f:93:35:00:f6:f7:0f:56:8e:42: 2d:71:5e:50 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBKMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkM0QkMxMTAvBgNVBAUTKDRERkVDMzQzN0M5MEJGNDE0RDA1MTg4QjQ4MkM3ODQ4 RTZGMzE2MUIwHhcNMjUxMDE5MDE0NzQyWhcNMjUxMDI2MDE0NzQyWjAYMRYwFAYD VQQDEw02OGY0NDMzZS02NWY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3WHsYScOXbW+ctiOtASomjNg27C+40h3hqGVwa1T7YhpCub6yHh5nZZOu0Cu 32Ls/zjhJMorNcvYC5LrCF4QNcmeOXT9gmUCKyGsFWV2/cex6vbNbYn83X4H2iAS aKk/0DkFcumako/uM+Tz9P6WsfnzoGCl1hs+VE1wviKLReMiSILbeJuavn/p3vg2 uXNjUpstIZuSGAtW7QUTD/yla8DkVWfbgcZ/F+/ty8m8FhdtHGf2UstXb5ePA8Gs YOkmB9yxHpsLo4r7Pul5xfC/xQ24WCKXKd0A7QDqsVpl94hc+fQLMd1qBO1YzRpa tii23L4fB8KlU8hihIWH0XM5wwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHJyKP4P JuGchMaCMzmPTxlHscyzMB8GA1UdIwQYMBaAFE3+w0N8kL9BTQUYi0gseEjm8xYb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QzRCQy9BOTcwQjJFQzUx QUMxMUVDOUVEOTA0MUJDNEY5QUUwMi9UZjdEUTN5UXYwRk5CUmlMU0N4NFNPYnpG aHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RmN0RRM3lRdjBGTkJSaUxTQ3g0U09iekZocy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QzRCQy9BOTcwQjJFQzUxQUMxMUVDOUVEOTA0MUJDNEY5QUUwMi9UZjdEUTN5UXYw Rk5CUmlMU0N4NFNPYnpGaHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA6mgZesdBccbERPNnq6R0jGFnjY7pQ+3jw9tYKzdHUZqVZqaazSdiF NegMT1t+l0/IoCELpY75/TPtvPWBJTHjIThwR/Gt005ocvuQ7yibYWwGUql6ERPe COozWTUsGSdvGwq5djfTM0IkUxt3m6WeEKaZFtH5ELTXE3ETWagfW2/VCKvvaEmz mGwxeAG/2dcsWZxw92jRKG2gSCqKZDUD5Vr4qJ+hiQWcpg5t9VX8KiSasZRUZgJ2 hKygoGDLc2fp/pIwSpqNCmD4oZv3r77qY4KuZIlKBBetEnxFVvmyYQ3rB9HkLvXZ zTqDVHb5gofNiG+TNQD29w9WjkItcV5Q -----END CERTIFICATE-----Generated at Mon Oct 20 15:22:36 2025 by rpki-client