$ rpki-client -vvf rpki.apnic.net/member_repository/A917E754/ACD1D7701DAB11E2BA2806AA08B02CD2/tQk3XiWpXStZwZWBw8Y1topJES0.mft File: tQk3XiWpXStZwZWBw8Y1topJES0.mft (raw, json) Hash identifier: /jMTs82Kq8qV5whrERnNt60hmk6ZoI8fBvSTIRp5fao= Subject key identifier: 0C:06:58:81:4B:56:05:00:DE:92:11:7B:D0:74:B3:D6:D7:C3:2C:20 Authority key identifier: B5:09:37:5E:25:A9:5D:2B:59:C1:95:81:C3:C6:35:B6:8A:49:11:2D Certificate issuer: /CN=A917E754/serialNumber=B509375E25A95D2B59C19581C3C635B68A49112D Certificate serial: 34DD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tQk3XiWpXStZwZWBw8Y1topJES0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E754/ACD1D7701DAB11E2BA2806AA08B02CD2/tQk3XiWpXStZwZWBw8Y1topJES0.mft Manifest number: 34D5 Signing time: Sat 18 Oct 2025 15:29:50 +0000 Manifest this update: Sat 18 Oct 2025 15:29:49 +0000 Manifest next update: Sat 25 Oct 2025 15:29:49 +0000 Files and hashes: 1: tQk3XiWpXStZwZWBw8Y1topJES0.crl (hash: 8yyf5/Wi086qqhxGEfsDtJ+bKEpeCahqh1VXUQXcego=) 2: 2F79F386050511EA87CC7D42C4F9AE02.roa (hash: RGbkUiQObiN5kNn1fOoTLpQbUrsGEdo5yysiJ0yuXAg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E754/ACD1D7701DAB11E2BA2806AA08B02CD2/tQk3XiWpXStZwZWBw8Y1topJES0.crl rsync://rpki.apnic.net/member_repository/A917E754/ACD1D7701DAB11E2BA2806AA08B02CD2/tQk3XiWpXStZwZWBw8Y1topJES0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tQk3XiWpXStZwZWBw8Y1topJES0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 15:29:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13533 (0x34dd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E754, serialNumber=B509375E25A95D2B59C19581C3C635B68A49112D Validity Not Before: Oct 18 15:29:49 2025 GMT Not After : Oct 25 15:29:49 2025 GMT Subject: CN=68f3b26d-f6b4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:2d:0c:2a:44:ea:f2:c1:74:bb:8d:77:db:ab: 7a:9b:e8:64:2a:51:dd:c3:57:81:04:06:ee:0e:0a: 6e:39:26:c8:26:fd:f1:61:cc:af:a7:19:d8:a5:58: cd:5e:8f:2a:41:f7:ca:7d:16:f8:af:a5:9b:4d:5c: 28:c0:74:fe:fd:b4:24:74:9e:60:34:f3:b9:97:94: 88:06:69:61:ec:5c:fb:bc:74:56:9f:a6:21:d3:e9: a9:67:9b:bd:9f:89:23:5a:88:cc:82:ae:f3:e4:ae: fa:b3:24:35:1a:b4:90:8e:c1:1a:d1:d8:2a:b4:25: af:6c:6a:71:a6:80:a3:b0:b3:c3:54:99:43:bd:34: 39:0d:3a:bc:cb:1c:ea:b2:70:19:b4:29:d9:ae:5a: 2a:23:ca:24:33:81:be:a2:f3:d2:70:cd:d3:f6:d0: 9b:ff:a9:de:9f:92:07:cb:b6:2d:e6:7f:49:33:b2: 46:df:e6:d7:77:9e:37:e1:e9:5a:a4:70:d1:16:05: b9:06:aa:c4:d0:03:34:7f:d4:03:8c:a0:11:f1:c4: a9:76:b6:f9:8d:71:df:59:fa:99:66:98:f0:b7:34: ba:10:e7:e0:11:e5:1d:50:7c:97:89:cf:00:63:41: 19:cc:42:4d:8e:a1:be:64:ee:b8:95:3d:60:65:f5: a4:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:06:58:81:4B:56:05:00:DE:92:11:7B:D0:74:B3:D6:D7:C3:2C:20 X509v3 Authority Key Identifier: keyid:B5:09:37:5E:25:A9:5D:2B:59:C1:95:81:C3:C6:35:B6:8A:49:11:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E754/ACD1D7701DAB11E2BA2806AA08B02CD2/tQk3XiWpXStZwZWBw8Y1topJES0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tQk3XiWpXStZwZWBw8Y1topJES0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E754/ACD1D7701DAB11E2BA2806AA08B02CD2/tQk3XiWpXStZwZWBw8Y1topJES0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2f:32:3c:90:55:ff:9f:d4:f9:f1:61:12:99:a8:4f:2c:8a:7a: 6c:1f:8d:a8:e8:b1:9c:22:34:b6:25:a8:d6:0e:36:91:78:b9: 51:b2:61:19:dc:ec:88:7d:c9:a0:05:96:07:49:98:7c:01:fb: b5:35:3d:9f:e7:af:46:39:ac:c4:44:bc:55:87:0c:45:94:aa: e0:f2:3c:7e:06:34:42:2d:e3:31:db:12:6b:09:b0:78:d0:be: b7:bd:dd:d2:83:da:06:c5:3e:a4:ae:b3:e8:a7:5a:9c:04:83: 9d:18:e2:95:31:4e:3e:ad:02:fd:b6:8a:00:95:d4:d8:82:91: a4:d7:9c:56:1b:9e:e6:c8:c2:19:6f:19:93:57:5f:f6:d0:27: f7:73:41:a4:aa:55:0e:da:07:75:ba:71:53:5f:63:44:76:4a: 60:54:b6:02:f9:82:78:da:25:cd:5f:a3:99:fe:98:ec:fc:aa: 3a:fb:5e:6b:3b:cf:a9:aa:10:59:1b:ed:02:cc:a5:7b:76:74: 53:8b:95:9e:c9:87:ac:eb:65:c8:8d:59:4c:54:ed:b6:cb:ac: 24:d6:3e:39:3f:bd:18:2b:a8:66:25:72:df:92:86:ad:66:66: 09:69:b7:ef:40:d9:a1:7b:86:e3:d4:06:88:cf:72:fd:55:b8: 81:f4:4e:09 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNN0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U3NTQxMTAvBgNVBAUTKEI1MDkzNzVFMjVBOTVEMkI1OUMxOTU4MUMzQzYzNUI2 OEE0OTExMkQwHhcNMjUxMDE4MTUyOTQ5WhcNMjUxMDI1MTUyOTQ5WjAYMRYwFAYD VQQDEw02OGYzYjI2ZC1mNmI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxy0MKkTq8sF0u41326t6m+hkKlHdw1eBBAbuDgpuOSbIJv3xYcyvpxnYpVjN Xo8qQffKfRb4r6WbTVwowHT+/bQkdJ5gNPO5l5SIBmlh7Fz7vHRWn6Yh0+mpZ5u9 n4kjWojMgq7z5K76syQ1GrSQjsEa0dgqtCWvbGpxpoCjsLPDVJlDvTQ5DTq8yxzq snAZtCnZrloqI8okM4G+ovPScM3T9tCb/6nen5IHy7Yt5n9JM7JG3+bXd5434ela pHDRFgW5BqrE0AM0f9QDjKAR8cSpdrb5jXHfWfqZZpjwtzS6EOfgEeUdUHyXic8A Y0EZzEJNjqG+ZO64lT1gZfWknwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAwGWIFL VgUA3pIRe9B0s9bXwywgMB8GA1UdIwQYMBaAFLUJN14lqV0rWcGVgcPGNbaKSREt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTc1NC9BQ0QxRDc3MDFE QUIxMUUyQkEyODA2QUEwOEIwMkNEMi90UWszWGlXcFhTdFp3WldCdzhZMXRvcEpF UzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RRazNYaVdwWFN0WndaV0J3OFkxdG9wSkVTMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTc1NC9BQ0QxRDc3MDFEQUIxMUUyQkEyODA2QUEwOEIwMkNEMi90UWszWGlXcFhT dFp3WldCdzhZMXRvcEpFUzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAvMjyQVf+f1PnxYRKZqE8sinpsH42o6LGcIjS2JajWDjaReLlRsmEZ 3OyIfcmgBZYHSZh8Afu1NT2f569GOazERLxVhwxFlKrg8jx+BjRCLeMx2xJrCbB4 0L63vd3Sg9oGxT6krrPop1qcBIOdGOKVMU4+rQL9tooAldTYgpGk15xWG57myMIZ bxmTV1/20Cf3c0GkqlUO2gd1unFTX2NEdkpgVLYC+YJ42iXNX6OZ/pjs/Ko6+15r O8+pqhBZG+0CzKV7dnRTi5WeyYes62XIjVlMVO22y6wk1j45P70YK6hmJXLfkoat ZmYJabfvQNmhe4bj1AaIz3L9VbiB9E4J -----END CERTIFICATE-----Generated at Mon Oct 20 14:00:25 2025 by rpki-client