$ rpki-client -vvf rpki.apnic.net/member_repository/A916CDDF/26608D46107211EAAC06B079C4F9AE02/T_pSjG5GftRY9TX8XG3Z2-0M5zc.mft File: T_pSjG5GftRY9TX8XG3Z2-0M5zc.mft (raw, json) Hash identifier: XDGi061Z8GU1Ds5cMV0XZx0e/wauVQqmXnHE3g+Fv+Y= Subject key identifier: 53:8A:89:FA:17:84:C2:5E:3F:A0:3D:CB:18:B3:45:CE:8C:8C:59:87 Authority key identifier: 4F:FA:52:8C:6E:46:7E:D4:58:F5:35:FC:5C:6D:D9:DB:ED:0C:E7:37 Certificate issuer: /CN=A916CDDF/serialNumber=4FFA528C6E467ED458F535FC5C6DD9DBED0CE737 Certificate serial: 081E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/T_pSjG5GftRY9TX8XG3Z2-0M5zc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916CDDF/26608D46107211EAAC06B079C4F9AE02/T_pSjG5GftRY9TX8XG3Z2-0M5zc.mft Manifest number: 1456 Signing time: Sat 18 Oct 2025 19:22:17 +0000 Manifest this update: Sat 18 Oct 2025 19:22:17 +0000 Manifest next update: Sat 25 Oct 2025 19:22:16 +0000 Files and hashes: 1: T_pSjG5GftRY9TX8XG3Z2-0M5zc.crl (hash: atXcYhaFB5Uej7sENnm77xqqoB01bQ5+HMd0qTtdiP4=) 2: 3C73210E29E711F0AB5EBA80C4F9AE02.roa (hash: k142c1mhkeL45x3p2n9As909+kYuHAEo9TNndwZMKuc=) 3: 81A55E3629E711F08823E620C4F9AE02.roa (hash: hX5dpHGXTGcDiyEWkvOCWSK7VdcIwU2X7lTjxGfS0x8=) 4: F4075E7CF28611EF976CB83AC4F9AE02.roa (hash: LHvxfj3VCNmuKnrLv2NsZrToWYHoHHWWd+F8Qkfp44A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916CDDF/26608D46107211EAAC06B079C4F9AE02/T_pSjG5GftRY9TX8XG3Z2-0M5zc.crl rsync://rpki.apnic.net/member_repository/A916CDDF/26608D46107211EAAC06B079C4F9AE02/T_pSjG5GftRY9TX8XG3Z2-0M5zc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/T_pSjG5GftRY9TX8XG3Z2-0M5zc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 19:22:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2078 (0x81e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916CDDF, serialNumber=4FFA528C6E467ED458F535FC5C6DD9DBED0CE737 Validity Not Before: Oct 18 19:22:17 2025 GMT Not After : Oct 25 19:22:16 2025 GMT Subject: CN=68f3e8e9-ab27 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:6e:cf:16:b1:f1:94:e5:41:be:7c:f8:5e:fb: f9:30:90:af:59:c5:4e:3a:e9:9e:92:42:5d:84:18: a5:d7:df:8a:f6:66:cb:5f:2a:7d:aa:8c:e2:a5:12: 36:9f:c7:ad:35:41:a0:08:cc:c8:f6:35:f2:60:e8: 18:18:d6:22:2e:2b:a1:34:a0:46:f9:7d:70:f6:80: 3e:1b:ce:d4:5f:ed:a8:97:7d:31:33:56:b8:07:64: 8c:ff:51:9e:21:01:0d:e8:4b:22:9f:b0:af:cf:94: 3a:87:93:7a:a8:fe:66:4b:15:bb:50:aa:20:e1:62: 89:85:84:3e:90:16:45:01:90:63:7a:f1:2d:7d:7c: b5:33:4b:18:2c:96:bd:26:bc:c0:d0:10:cf:f3:ab: 2c:0c:c7:cc:da:f8:ae:18:fa:e1:08:5a:e8:95:d0: 1a:1d:bd:0d:10:19:79:2b:e0:81:5d:b3:c9:10:ae: f4:ac:dd:95:d4:17:89:85:5b:e1:11:16:d2:d6:67: a9:7c:67:a3:77:9d:9c:f5:6e:32:0c:61:63:27:fb: 53:1e:dc:a9:4a:61:a7:83:9c:18:45:ec:26:34:32: 40:88:9e:44:69:aa:6e:a4:ba:2f:17:b1:b9:ee:65: e6:e3:65:ed:ec:ac:1d:9d:17:f9:9a:a6:f8:5c:4b: 39:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:8A:89:FA:17:84:C2:5E:3F:A0:3D:CB:18:B3:45:CE:8C:8C:59:87 X509v3 Authority Key Identifier: keyid:4F:FA:52:8C:6E:46:7E:D4:58:F5:35:FC:5C:6D:D9:DB:ED:0C:E7:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916CDDF/26608D46107211EAAC06B079C4F9AE02/T_pSjG5GftRY9TX8XG3Z2-0M5zc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/T_pSjG5GftRY9TX8XG3Z2-0M5zc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916CDDF/26608D46107211EAAC06B079C4F9AE02/T_pSjG5GftRY9TX8XG3Z2-0M5zc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 21:1a:d6:15:2d:6c:7c:1f:9b:aa:ed:cd:55:a0:fa:18:a4:d4: 6e:e1:16:f5:72:5c:68:b3:e8:14:2d:f9:5b:7e:dc:de:23:96: 85:e3:4f:2b:f8:38:70:5b:8a:eb:48:8c:69:be:69:d5:a3:d1: aa:8f:81:0f:e9:d0:33:b9:8c:2b:37:2b:55:3f:ae:bc:62:05: 2c:40:a3:80:21:23:b7:c8:1b:71:d1:c3:18:ce:9c:39:a9:d3: 2b:b3:8c:fa:6f:8a:32:8f:9f:a5:1d:16:a3:37:50:fd:0a:2e: 20:6a:74:23:cd:fa:6c:f0:ac:3d:ea:21:85:15:33:70:2c:64: 7a:8f:4d:1f:f0:e3:21:94:0f:19:f1:d8:a2:42:5a:66:c7:d9: 2e:b1:fe:5c:09:f1:e8:db:14:3d:74:a9:4f:88:c0:55:f2:88: 76:28:b9:d9:01:e0:69:5a:90:87:2f:e4:ff:de:cf:e0:48:bf: 33:89:8c:1a:a6:68:67:23:69:ae:1a:86:de:49:8f:21:0a:de: 5d:6c:34:84:6c:a7:aa:6f:ce:87:d5:cb:bf:f0:7d:83:ca:c4: 5b:65:18:ab:db:18:c1:6a:c7:0e:22:b2:cf:a9:b3:08:9b:0a: 7f:8c:08:58:50:69:32:ce:59:f7:f5:60:4f:52:d2:27:1c:a3: ff:9c:9a:3d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCB4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkNEREYxMTAvBgNVBAUTKDRGRkE1MjhDNkU0NjdFRDQ1OEY1MzVGQzVDNkREOURC RUQwQ0U3MzcwHhcNMjUxMDE4MTkyMjE3WhcNMjUxMDI1MTkyMjE2WjAYMRYwFAYD VQQDEw02OGYzZThlOS1hYjI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApG7PFrHxlOVBvnz4Xvv5MJCvWcVOOumekkJdhBil19+K9mbLXyp9qozipRI2 n8etNUGgCMzI9jXyYOgYGNYiLiuhNKBG+X1w9oA+G87UX+2ol30xM1a4B2SM/1Ge IQEN6Esin7Cvz5Q6h5N6qP5mSxW7UKog4WKJhYQ+kBZFAZBjevEtfXy1M0sYLJa9 JrzA0BDP86ssDMfM2viuGPrhCFroldAaHb0NEBl5K+CBXbPJEK70rN2V1BeJhVvh ERbS1mepfGejd52c9W4yDGFjJ/tTHtypSmGng5wYRewmNDJAiJ5EaapupLovF7G5 7mXm42Xt7KwdnRf5mqb4XEs5zQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFOKifoX hMJeP6A9yxizRc6MjFmHMB8GA1UdIwQYMBaAFE/6UoxuRn7UWPU1/Fxt2dvtDOc3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2Q0RERi8yNjYwOEQ0NjEw NzIxMUVBQUMwNkIwNzlDNEY5QUUwMi9UX3BTakc1R2Z0Ulk5VFg4WEczWjItME01 emMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RfcFNqRzVHZnRSWTlUWDhYRzNaMi0wTTV6Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 Q0RERi8yNjYwOEQ0NjEwNzIxMUVBQUMwNkIwNzlDNEY5QUUwMi9UX3BTakc1R2Z0 Ulk5VFg4WEczWjItME01emMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAhGtYVLWx8H5uq7c1VoPoYpNRu4Rb1clxos+gULflbftzeI5aF408r +DhwW4rrSIxpvmnVo9Gqj4EP6dAzuYwrNytVP668YgUsQKOAISO3yBtx0cMYzpw5 qdMrs4z6b4oyj5+lHRajN1D9Ci4ganQjzfps8Kw96iGFFTNwLGR6j00f8OMhlA8Z 8diiQlpmx9kusf5cCfHo2xQ9dKlPiMBV8oh2KLnZAeBpWpCHL+T/3s/gSL8ziYwa pmhnI2muGobeSY8hCt5dbDSEbKeqb86H1cu/8H2DysRbZRir2xjBascOIrLPqbMI mwp/jAhYUGkyzln39WBPUtInHKP/nJo9 -----END CERTIFICATE-----Generated at Mon Oct 20 18:26:46 2025 by rpki-client