$ rpki-client -vvf rpki.apnic.net/member_repository/A9170187/F1E2A3F8571C11ECBB63FE83C4F9AE02/tkVWXJMbKETS92DqqrDirkvjFBQ.mft File: tkVWXJMbKETS92DqqrDirkvjFBQ.mft (raw, json) Hash identifier: tGfkfZ7YFuwAk0+VdHGvYQTkolk0wHMV/lNFxFXsnHM= Subject key identifier: 4F:94:84:08:91:31:F6:01:D8:10:B5:BD:C4:CF:3C:B8:33:14:58:53 Authority key identifier: B6:45:56:5C:93:1B:28:44:D2:F7:60:EA:AA:B0:E2:AE:4B:E3:14:14 Certificate issuer: /CN=A9170187/serialNumber=B645565C931B2844D2F760EAAAB0E2AE4BE31414 Certificate serial: 049A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tkVWXJMbKETS92DqqrDirkvjFBQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170187/F1E2A3F8571C11ECBB63FE83C4F9AE02/tkVWXJMbKETS92DqqrDirkvjFBQ.mft Manifest number: 0494 Signing time: Sun 19 Oct 2025 01:51:54 +0000 Manifest this update: Sun 19 Oct 2025 01:51:53 +0000 Manifest next update: Sun 26 Oct 2025 01:51:53 +0000 Files and hashes: 1: tkVWXJMbKETS92DqqrDirkvjFBQ.crl (hash: NILviQXkMW2zEswOWMqWoezEiIN3zaVLCIO3AM149D8=) 2: 838DF1B0572011EC905C770CC4F9AE02.roa (hash: iL8DbZfU13LX2Ap/5AtahLEn5kXxcngJgS8iYsEF4yY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170187/F1E2A3F8571C11ECBB63FE83C4F9AE02/tkVWXJMbKETS92DqqrDirkvjFBQ.crl rsync://rpki.apnic.net/member_repository/A9170187/F1E2A3F8571C11ECBB63FE83C4F9AE02/tkVWXJMbKETS92DqqrDirkvjFBQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tkVWXJMbKETS92DqqrDirkvjFBQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 01:51:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1178 (0x49a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170187, serialNumber=B645565C931B2844D2F760EAAAB0E2AE4BE31414 Validity Not Before: Oct 19 01:51:53 2025 GMT Not After : Oct 26 01:51:53 2025 GMT Subject: CN=68f4443a-94a2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:30:4e:33:f0:1a:10:3f:a7:da:b0:2b:66:da: 32:37:81:47:7f:97:9e:9b:6b:7e:58:21:f4:3a:83: 85:29:f4:b6:14:ef:da:d3:88:59:7d:d3:0b:3c:2a: e3:96:ab:03:72:50:9e:c2:81:1e:ba:94:f4:d8:2a: f8:f2:df:65:92:16:93:2a:b7:32:b6:01:d1:07:b3: e1:78:e2:9e:96:49:de:d5:f0:ee:fe:16:6f:00:98: 95:bc:99:9e:e4:0b:4e:1a:43:e6:59:c2:97:7c:ce: 82:14:9b:78:f3:79:68:ee:6b:79:94:b6:03:48:58: 89:22:a1:fb:d7:29:b5:e2:ef:f1:f6:8c:bf:a6:d5: f7:4c:a8:44:9e:c5:11:cc:d8:1e:ea:c6:6c:0c:ac: df:a8:ed:a2:a6:79:4c:92:e8:2e:75:1a:13:dc:f2: c2:5d:bd:2d:a9:f7:c5:cf:55:3b:8e:a0:2f:13:17: 4b:34:65:36:f3:8f:5e:7a:35:a3:58:1f:dd:c9:bc: d1:4d:31:67:bf:3f:25:1e:6b:1d:54:7a:08:43:cd: 00:a8:9e:7a:23:99:b1:d0:70:5e:7e:94:ad:88:34: e5:eb:a9:78:a7:0b:f6:de:69:b2:ea:31:72:f4:d9: be:79:3d:aa:39:d2:11:86:fc:65:c1:3d:78:17:b9: b4:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:94:84:08:91:31:F6:01:D8:10:B5:BD:C4:CF:3C:B8:33:14:58:53 X509v3 Authority Key Identifier: keyid:B6:45:56:5C:93:1B:28:44:D2:F7:60:EA:AA:B0:E2:AE:4B:E3:14:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170187/F1E2A3F8571C11ECBB63FE83C4F9AE02/tkVWXJMbKETS92DqqrDirkvjFBQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tkVWXJMbKETS92DqqrDirkvjFBQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170187/F1E2A3F8571C11ECBB63FE83C4F9AE02/tkVWXJMbKETS92DqqrDirkvjFBQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 46:25:f6:04:59:08:25:e6:df:5d:72:c5:af:d4:93:c3:1b:a8: 01:71:38:b6:82:b8:c3:b7:bb:c5:34:be:c6:3c:14:23:cf:b7: c2:a6:99:ef:a3:48:78:2d:a9:f6:9f:25:e6:0a:04:06:17:8f: 1b:68:b1:ca:05:26:e7:88:2b:b2:bb:08:fd:24:0f:ca:8b:d3: 66:34:d4:e3:c8:eb:52:fd:a7:cd:8b:1b:ed:89:9d:31:5b:a1: 3a:1f:f1:37:90:e8:32:08:41:b2:a2:15:b9:db:92:73:b8:72: f8:db:c2:cb:0a:32:f8:0d:ad:88:e7:b2:87:84:bc:95:6e:ee: a2:b1:8b:b0:c3:51:54:59:83:d7:7f:4c:e2:01:29:9b:a5:e6: 00:eb:40:01:38:93:79:74:2e:c7:12:cd:48:a4:ab:e8:bb:d5: 33:b3:c2:a1:8a:af:4f:59:5a:63:dd:18:b9:df:f6:c8:17:f1: a3:0a:5d:05:a5:33:ff:71:e6:5c:57:1c:70:c6:cd:a1:b1:15: e2:e9:ba:03:b4:cf:c2:38:0c:e6:a5:4f:22:92:22:52:f2:51: 13:21:52:90:ca:b3:07:6e:ee:96:45:31:80:ba:87:ac:b6:39: b0:f9:9d:d0:44:54:94:cc:1d:9c:ae:b6:eb:ef:bc:58:71:cd: 99:29:6c:c0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBJowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzAxODcxMTAvBgNVBAUTKEI2NDU1NjVDOTMxQjI4NDREMkY3NjBFQUFBQjBFMkFF NEJFMzE0MTQwHhcNMjUxMDE5MDE1MTUzWhcNMjUxMDI2MDE1MTUzWjAYMRYwFAYD VQQDEw02OGY0NDQzYS05NGEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3TBOM/AaED+n2rArZtoyN4FHf5eem2t+WCH0OoOFKfS2FO/a04hZfdMLPCrj lqsDclCewoEeupT02Cr48t9lkhaTKrcytgHRB7PheOKelkne1fDu/hZvAJiVvJme 5AtOGkPmWcKXfM6CFJt483lo7mt5lLYDSFiJIqH71ym14u/x9oy/ptX3TKhEnsUR zNge6sZsDKzfqO2ipnlMkugudRoT3PLCXb0tqffFz1U7jqAvExdLNGU2849eejWj WB/dybzRTTFnvz8lHmsdVHoIQ80AqJ56I5mx0HBefpStiDTl66l4pwv23mmy6jFy 9Nm+eT2qOdIRhvxlwT14F7m03wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE+UhAiR MfYB2BC1vcTPPLgzFFhTMB8GA1UdIwQYMBaAFLZFVlyTGyhE0vdg6qqw4q5L4xQU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MDE4Ny9GMUUyQTNGODU3 MUMxMUVDQkI2M0ZFODNDNEY5QUUwMi90a1ZXWEpNYktFVFM5MkRxcXJEaXJrdmpG QlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RrVldYSk1iS0VUUzkyRHFxckRpcmt2akZCUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MDE4Ny9GMUUyQTNGODU3MUMxMUVDQkI2M0ZFODNDNEY5QUUwMi90a1ZXWEpNYktF VFM5MkRxcXJEaXJrdmpGQlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBGJfYEWQgl5t9dcsWv1JPDG6gBcTi2grjDt7vFNL7GPBQjz7fCppnv o0h4Lan2nyXmCgQGF48baLHKBSbniCuyuwj9JA/Ki9NmNNTjyOtS/afNixvtiZ0x W6E6H/E3kOgyCEGyohW525JzuHL428LLCjL4Da2I57KHhLyVbu6isYuww1FUWYPX f0ziASmbpeYA60ABOJN5dC7HEs1IpKvou9Uzs8Khiq9PWVpj3Ri53/bIF/GjCl0F pTP/ceZcVxxwxs2hsRXi6boDtM/COAzmpU8ikiJS8lETIVKQyrMHbu6WRTGAuoes tjmw+Z3QRFSUzB2crrbr77xYcc2ZKWzA -----END CERTIFICATE-----Generated at Mon Oct 20 01:47:13 2025 by rpki-client