$ rpki-client -vvf rpki.apnic.net/member_repository/A9197ADE/89A493E2FE4D11EFA1AFFC1AC4F9AE02/2TIL_awMkLNCikT8fcoOL3kJd0E.mft File: 2TIL_awMkLNCikT8fcoOL3kJd0E.mft (raw, json) Hash identifier: Q+iGOlfuHDcHjQ2gERRPJCmDJ29rSUpuzl0hcJSM5gY= Subject key identifier: 45:EE:9B:94:3B:DD:29:59:1F:84:84:87:60:0D:4D:7F:A5:75:D3:88 Authority key identifier: D9:32:0B:FD:AC:0C:90:B3:42:8A:44:FC:7D:CA:0E:2F:79:09:77:41 Certificate issuer: /CN=A9197ADE/serialNumber=D9320BFDAC0C90B3428A44FC7DCA0E2F79097741 Certificate serial: 76 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2TIL_awMkLNCikT8fcoOL3kJd0E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9197ADE/89A493E2FE4D11EFA1AFFC1AC4F9AE02/2TIL_awMkLNCikT8fcoOL3kJd0E.mft Manifest number: 74 Signing time: Sun 19 Oct 2025 10:12:32 +0000 Manifest this update: Sun 19 Oct 2025 10:12:31 +0000 Manifest next update: Sun 26 Oct 2025 10:12:31 +0000 Files and hashes: 1: 2TIL_awMkLNCikT8fcoOL3kJd0E.crl (hash: mFBBTdtZDWR2+L/GuHHeizxw110FBkEL8wZLawKQPmo=) 2: E0CFA54EFE4D11EF8274971BC4F9AE02.roa (hash: xErSiwEVGbEN6QlFmGLkFVWsdMEkeNM0TxyRejXCRHw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9197ADE/89A493E2FE4D11EFA1AFFC1AC4F9AE02/2TIL_awMkLNCikT8fcoOL3kJd0E.crl rsync://rpki.apnic.net/member_repository/A9197ADE/89A493E2FE4D11EFA1AFFC1AC4F9AE02/2TIL_awMkLNCikT8fcoOL3kJd0E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2TIL_awMkLNCikT8fcoOL3kJd0E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 10:12:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 118 (0x76) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9197ADE, serialNumber=D9320BFDAC0C90B3428A44FC7DCA0E2F79097741 Validity Not Before: Oct 19 10:12:31 2025 GMT Not After : Oct 26 10:12:31 2025 GMT Subject: CN=68f4b98f-91c6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:4b:50:a6:df:7c:83:55:7d:c0:6d:fe:93:78: a0:fb:5e:85:69:b8:f9:5f:dc:fe:9d:56:3d:72:10: 1e:86:0a:52:e2:fd:d6:89:48:7d:95:6b:2d:f8:af: 6a:19:e6:fc:58:72:a0:6b:58:f3:61:fa:1a:55:3d: d9:44:55:51:9c:fe:60:de:a2:a2:8b:8b:13:a0:1f: 1f:0c:00:a0:99:89:01:24:85:38:1d:f8:1a:42:8b: cc:f4:51:88:2a:ff:99:92:fc:84:fc:02:2c:9e:1c: 6a:54:a2:5e:49:81:4c:1e:a5:b0:86:4a:0b:12:32: 6c:0c:54:b9:1c:ca:2d:08:5c:4c:ea:15:88:5d:35: a6:bf:16:2c:cd:c0:77:bc:ed:56:d7:f4:c7:b6:5d: 2f:aa:ae:03:e7:c1:b6:6a:a6:5b:a3:20:69:fe:a4: ac:e0:fd:48:aa:3f:4e:2f:21:d2:43:31:16:84:45: 03:8f:2d:99:5a:0f:bb:18:8d:60:eb:59:0c:8e:7e: 7b:85:aa:53:51:95:84:0c:fa:21:2a:b6:3c:33:3c: 41:3d:3d:04:1d:6e:02:ba:29:20:7c:cd:be:54:bd: 57:17:3d:b4:29:03:bc:4e:9f:b9:9e:27:3e:1b:f1: c1:23:b1:fc:1f:01:33:ca:eb:45:08:28:2e:d4:f4: 5b:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:EE:9B:94:3B:DD:29:59:1F:84:84:87:60:0D:4D:7F:A5:75:D3:88 X509v3 Authority Key Identifier: keyid:D9:32:0B:FD:AC:0C:90:B3:42:8A:44:FC:7D:CA:0E:2F:79:09:77:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9197ADE/89A493E2FE4D11EFA1AFFC1AC4F9AE02/2TIL_awMkLNCikT8fcoOL3kJd0E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2TIL_awMkLNCikT8fcoOL3kJd0E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9197ADE/89A493E2FE4D11EFA1AFFC1AC4F9AE02/2TIL_awMkLNCikT8fcoOL3kJd0E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4d:a5:1d:3f:05:6f:dd:5e:15:74:1c:67:c6:26:4b:df:91:10: 2b:f8:30:c6:b3:20:c4:62:e1:e1:91:3f:c9:85:d1:78:3d:fc: 34:9f:7d:e3:e2:e1:3c:a4:a7:57:54:85:5a:19:b5:2a:fc:b3: cd:67:c4:02:89:1d:1d:ea:08:98:84:7c:e4:b6:1e:b8:35:72: ef:e1:f8:8a:f2:6b:fa:03:f5:3b:ef:a3:9d:df:ee:dd:e7:2d: e1:a4:6e:46:ca:16:e5:b5:a4:2d:5a:43:aa:b5:d8:66:da:41: 18:23:b1:6f:e0:15:36:ba:60:4d:19:ff:12:8d:bc:57:f4:76: 56:44:66:3d:9f:2a:9c:d0:49:56:86:df:49:67:64:f8:8c:09: 9a:39:b9:75:33:a8:c2:08:af:7d:2d:40:2c:49:60:4e:4a:d9: a6:a2:e7:62:f2:df:9d:1d:4b:89:b5:f6:bc:c7:7a:df:a5:09: 2f:cd:57:c4:7a:ac:40:42:a8:77:90:b8:1c:0f:c6:aa:74:37: e6:d0:cc:03:10:7e:1c:90:46:8a:4d:85:c7:6d:d3:e0:99:0e: a6:ad:c2:f8:96:d5:17:c4:2d:8b:a3:c5:75:72:0c:0f:b4:d2: 2a:a8:ee:e2:ec:db:af:ac:07:5c:6b:ea:7a:9a:2c:36:82:76: d8:1c:c9:95 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBdjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 N0FERTExMC8GA1UEBRMoRDkzMjBCRkRBQzBDOTBCMzQyOEE0NEZDN0RDQTBFMkY3 OTA5Nzc0MTAeFw0yNTEwMTkxMDEyMzFaFw0yNTEwMjYxMDEyMzFaMBgxFjAUBgNV BAMTDTY4ZjRiOThmLTkxYzYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDQS1Cm33yDVX3Abf6TeKD7XoVpuPlf3P6dVj1yEB6GClLi/daJSH2Vay34r2oZ 5vxYcqBrWPNh+hpVPdlEVVGc/mDeoqKLixOgHx8MAKCZiQEkhTgd+BpCi8z0UYgq /5mS/IT8AiyeHGpUol5JgUwepbCGSgsSMmwMVLkcyi0IXEzqFYhdNaa/FizNwHe8 7VbX9Me2XS+qrgPnwbZqplujIGn+pKzg/UiqP04vIdJDMRaERQOPLZlaD7sYjWDr WQyOfnuFqlNRlYQM+iEqtjwzPEE9PQQdbgK6KSB8zb5UvVcXPbQpA7xOn7meJz4b 8cEjsfwfATPK60UIKC7U9FuLAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQURe6blDvd KVkfhISHYA1Nf6V104gwHwYDVR0jBBgwFoAU2TIL/awMkLNCikT8fcoOL3kJd0Ew DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk3QURFLzg5QTQ5M0UyRkU0 RDExRUZBMUFGRkMxQUM0RjlBRTAyLzJUSUxfYXdNa0xOQ2lrVDhmY29PTDNrSmQw RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMlRJTF9hd01rTE5DaWtUOGZjb09MM2tKZDBFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk3 QURFLzg5QTQ5M0UyRkU0RDExRUZBMUFGRkMxQUM0RjlBRTAyLzJUSUxfYXdNa0xO Q2lrVDhmY29PTDNrSmQwRS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAE2lHT8Fb91eFXQcZ8YmS9+RECv4MMazIMRi4eGRP8mF0Xg9/DSffePi 4Tykp1dUhVoZtSr8s81nxAKJHR3qCJiEfOS2Hrg1cu/h+Irya/oD9Tvvo53f7t3n LeGkbkbKFuW1pC1aQ6q12GbaQRgjsW/gFTa6YE0Z/xKNvFf0dlZEZj2fKpzQSVaG 30lnZPiMCZo5uXUzqMIIr30tQCxJYE5K2aai52Ly350dS4m19rzHet+lCS/NV8R6 rEBCqHeQuBwPxqp0N+bQzAMQfhyQRopNhcdt0+CZDqatwviW1RfELYujxXVyDA+0 0iqo7uLs26+sB1xr6nqaLDaCdtgcyZU= -----END CERTIFICATE-----Generated at Mon Oct 20 16:14:45 2025 by rpki-client