$ rpki-client -vvf rpki.apnic.net/member_repository/A9188D2D/A0682A048FF911EDABEC2537C4F9AE02/tYgfusqd6_Rspghj0pd8U_3WwZA.mft File: tYgfusqd6_Rspghj0pd8U_3WwZA.mft (raw, json) Hash identifier: I8qxzqUxFGcC+yrJ2PIrUG+wOpHA2V101nhVcRMXQnM= Subject key identifier: 70:64:7F:0A:03:7E:32:FF:02:D7:40:43:F4:2D:F7:79:95:E1:6C:27 Authority key identifier: B5:88:1F:BA:CA:9D:EB:F4:6C:A6:08:63:D2:97:7C:53:FD:D6:C1:90 Certificate issuer: /CN=A9188D2D/serialNumber=B5881FBACA9DEBF46CA60863D2977C53FDD6C190 Certificate serial: 020B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tYgfusqd6_Rspghj0pd8U_3WwZA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9188D2D/A0682A048FF911EDABEC2537C4F9AE02/tYgfusqd6_Rspghj0pd8U_3WwZA.mft Manifest number: 0205 Signing time: Sun 19 Oct 2025 04:40:09 +0000 Manifest this update: Sun 19 Oct 2025 04:40:08 +0000 Manifest next update: Sun 26 Oct 2025 04:40:08 +0000 Files and hashes: 1: tYgfusqd6_Rspghj0pd8U_3WwZA.crl (hash: aaCHCXWVQ0x05jeQZQ3ptbEVkmsYYUWnWSKKKxjSjDU=) 2: D9D943568FFC11ED9776CB38C4F9AE02.roa (hash: CAQTwJ95TZU81HKb4Y7lVQbfnRcyYnVzCOwyM749MwA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9188D2D/A0682A048FF911EDABEC2537C4F9AE02/tYgfusqd6_Rspghj0pd8U_3WwZA.crl rsync://rpki.apnic.net/member_repository/A9188D2D/A0682A048FF911EDABEC2537C4F9AE02/tYgfusqd6_Rspghj0pd8U_3WwZA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tYgfusqd6_Rspghj0pd8U_3WwZA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 04:40:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 523 (0x20b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9188D2D, serialNumber=B5881FBACA9DEBF46CA60863D2977C53FDD6C190 Validity Not Before: Oct 19 04:40:08 2025 GMT Not After : Oct 26 04:40:08 2025 GMT Subject: CN=68f46ba8-162f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:aa:44:f0:9d:64:a7:10:cd:c6:11:a2:b3:24: 91:eb:77:93:b5:bf:db:89:48:b1:fa:e9:42:e7:82: 92:85:82:e8:e3:16:8f:8d:4e:ce:14:ac:c0:bc:0c: 81:de:a2:95:65:16:38:a5:50:13:4f:b3:5d:4f:94: c0:fa:b8:7c:70:39:7e:d4:16:c4:f7:30:82:00:f3: 98:f3:dd:51:e4:06:dd:06:1a:98:7c:39:80:7f:80: 62:4a:a0:0a:d3:7f:7f:48:12:2a:3c:d5:04:48:fd: 4a:9e:92:4f:ec:6d:0f:e9:71:8c:05:fd:9a:e1:b6: 82:fb:2d:3c:19:c2:22:f7:d1:f0:fa:47:fd:cb:45: 6f:1d:7c:09:c7:e7:97:9e:d6:f0:61:f8:fe:23:f8: fe:fd:64:a5:40:4e:14:92:08:e8:fa:a1:fb:e1:5f: 07:f2:eb:62:79:89:04:81:48:73:84:08:d2:c9:ee: 6c:19:6d:6b:45:ea:1a:3e:8a:88:a7:00:c5:2e:24: 87:25:cc:c9:16:ba:d1:8c:db:b1:9a:86:c6:9e:b6: 41:dd:25:36:03:70:04:94:2b:9f:c5:ee:30:d2:00: 61:c9:b7:23:81:8a:5a:ad:60:c4:c4:ea:83:5b:e4: 88:51:65:7f:7d:d1:ed:65:34:b4:64:ab:19:15:72: 08:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:64:7F:0A:03:7E:32:FF:02:D7:40:43:F4:2D:F7:79:95:E1:6C:27 X509v3 Authority Key Identifier: keyid:B5:88:1F:BA:CA:9D:EB:F4:6C:A6:08:63:D2:97:7C:53:FD:D6:C1:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9188D2D/A0682A048FF911EDABEC2537C4F9AE02/tYgfusqd6_Rspghj0pd8U_3WwZA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tYgfusqd6_Rspghj0pd8U_3WwZA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9188D2D/A0682A048FF911EDABEC2537C4F9AE02/tYgfusqd6_Rspghj0pd8U_3WwZA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 49:0b:07:1b:47:2e:46:6b:68:f3:8f:be:6e:26:64:aa:3e:9b: 98:ce:e0:28:a8:84:b2:a8:4e:88:0c:84:ca:f2:d2:f6:c3:e4: 06:ee:ff:56:33:e4:ab:72:33:da:0b:bc:97:3d:3d:a8:e1:ad: cb:00:bf:f4:7f:cc:3e:57:e4:46:59:40:b8:03:64:ec:90:bc: a4:3e:24:b5:ae:53:b0:0e:20:94:c5:06:c6:15:46:dd:2f:79: d7:ff:af:d9:f5:a0:49:b5:40:30:49:8e:a2:2c:91:bc:2e:5b: 48:a6:40:bd:e5:2f:c7:e0:42:60:d5:58:84:84:58:22:2c:c4: db:ef:df:0c:3a:14:dd:9c:e7:ef:b6:ef:b1:52:38:78:76:c3: af:a2:55:d3:cb:8f:20:82:ea:78:e6:91:8f:02:1e:58:43:ab: bc:8e:20:3a:cb:62:ea:ff:31:e1:67:08:fd:88:29:e1:89:88: 32:93:c0:29:35:bc:48:70:5b:40:30:f0:66:62:be:6b:4f:e8: 92:b1:20:87:94:5e:ae:91:4e:b6:a4:14:15:10:a1:eb:b9:c8: 6a:b6:e6:ae:9a:26:24:5f:cf:3d:be:13:10:30:f0:7e:ef:93: a4:92:cc:be:80:03:4b:ce:c4:6c:e5:e8:56:7d:18:56:9d:3c: 47:81:ac:89 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAgswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODhEMkQxMTAvBgNVBAUTKEI1ODgxRkJBQ0E5REVCRjQ2Q0E2MDg2M0QyOTc3QzUz RkRENkMxOTAwHhcNMjUxMDE5MDQ0MDA4WhcNMjUxMDI2MDQ0MDA4WjAYMRYwFAYD VQQDEw02OGY0NmJhOC0xNjJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqapE8J1kpxDNxhGisySR63eTtb/biUix+ulC54KShYLo4xaPjU7OFKzAvAyB 3qKVZRY4pVATT7NdT5TA+rh8cDl+1BbE9zCCAPOY891R5AbdBhqYfDmAf4BiSqAK 039/SBIqPNUESP1KnpJP7G0P6XGMBf2a4baC+y08GcIi99Hw+kf9y0VvHXwJx+eX ntbwYfj+I/j+/WSlQE4Ukgjo+qH74V8H8utieYkEgUhzhAjSye5sGW1rReoaPoqI pwDFLiSHJczJFrrRjNuxmobGnrZB3SU2A3AElCufxe4w0gBhybcjgYparWDExOqD W+SIUWV/fdHtZTS0ZKsZFXIInQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHBkfwoD fjL/AtdAQ/Qt93mV4WwnMB8GA1UdIwQYMBaAFLWIH7rKnev0bKYIY9KXfFP91sGQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4OEQyRC9BMDY4MkEwNDhG RjkxMUVEQUJFQzI1MzdDNEY5QUUwMi90WWdmdXNxZDZfUnNwZ2hqMHBkOFVfM1d3 WkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RZZ2Z1c3FkNl9Sc3BnaGowcGQ4VV8zV3daQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 OEQyRC9BMDY4MkEwNDhGRjkxMUVEQUJFQzI1MzdDNEY5QUUwMi90WWdmdXNxZDZf UnNwZ2hqMHBkOFVfM1d3WkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBJCwcbRy5Ga2jzj75uJmSqPpuYzuAoqISyqE6IDITK8tL2w+QG7v9W M+SrcjPaC7yXPT2o4a3LAL/0f8w+V+RGWUC4A2TskLykPiS1rlOwDiCUxQbGFUbd L3nX/6/Z9aBJtUAwSY6iLJG8LltIpkC95S/H4EJg1ViEhFgiLMTb798MOhTdnOfv tu+xUjh4dsOvolXTy48ggup45pGPAh5YQ6u8jiA6y2Lq/zHhZwj9iCnhiYgyk8Ap NbxIcFtAMPBmYr5rT+iSsSCHlF6ukU62pBQVEKHruchqtuaumiYkX889vhMQMPB+ 75Okksy+gANLzsRs5ehWfRhWnTxHgayJ -----END CERTIFICATE-----Generated at Mon Oct 20 10:33:47 2025 by rpki-client