$ rpki-client -vvf rpki.apnic.net/member_repository/A9197CBD/3570DF2EB11411EE95E74365C4F9AE02/tIZeO-nFadK5Pyw1HKsk0VBqrA0.mft File: tIZeO-nFadK5Pyw1HKsk0VBqrA0.mft (raw, json) Hash identifier: dJe06gvjSR9tIv7OLNyhp9R6FfmxcAiYlCRwirBXxyc= Subject key identifier: 11:D1:5A:85:F3:EA:D1:93:E9:F7:07:8E:40:AD:FA:46:37:6C:84:CC Authority key identifier: B4:86:5E:3B:E9:C5:69:D2:B9:3F:2C:35:1C:AB:24:D1:50:6A:AC:0D Certificate issuer: /CN=A9197CBD/serialNumber=B4865E3BE9C569D2B93F2C351CAB24D1506AAC0D Certificate serial: 0154 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tIZeO-nFadK5Pyw1HKsk0VBqrA0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9197CBD/3570DF2EB11411EE95E74365C4F9AE02/tIZeO-nFadK5Pyw1HKsk0VBqrA0.mft Manifest number: 014F Signing time: Sun 19 Oct 2025 06:58:55 +0000 Manifest this update: Sun 19 Oct 2025 06:58:54 +0000 Manifest next update: Sun 26 Oct 2025 06:58:54 +0000 Files and hashes: 1: tIZeO-nFadK5Pyw1HKsk0VBqrA0.crl (hash: 61DO2Y5eE3S7okv15fTCC4bsD8riaGcJJpcOXUMDVnU=) 2: DDFD7F92A36311F0BCF40B3CC4F9AE02.roa (hash: db0WobY2OuSvFKrtHPb4XtM1BwNHUwXNkFsg7pWHA3w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9197CBD/3570DF2EB11411EE95E74365C4F9AE02/tIZeO-nFadK5Pyw1HKsk0VBqrA0.crl rsync://rpki.apnic.net/member_repository/A9197CBD/3570DF2EB11411EE95E74365C4F9AE02/tIZeO-nFadK5Pyw1HKsk0VBqrA0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tIZeO-nFadK5Pyw1HKsk0VBqrA0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 06:58:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 340 (0x154) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9197CBD, serialNumber=B4865E3BE9C569D2B93F2C351CAB24D1506AAC0D Validity Not Before: Oct 19 06:58:54 2025 GMT Not After : Oct 26 06:58:54 2025 GMT Subject: CN=68f48c2e-9ba8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:04:7d:fe:94:e9:5c:46:2c:8c:23:9a:f6:92: 5d:81:30:b0:5c:55:b7:e6:09:dc:44:1f:a3:b7:12: b4:c5:b6:ab:3c:c1:cc:24:25:1e:62:93:e3:b8:72: d2:86:1e:ca:08:60:9d:b5:e9:86:9b:bd:c0:57:94: 31:e8:d1:39:07:19:ff:44:80:4e:dc:fc:b9:94:4e: 16:04:bf:90:63:ec:79:99:98:6a:c2:fb:32:29:79: 42:c3:e7:f4:c3:ba:1e:73:c2:d4:2a:97:d7:e7:68: d2:83:fa:fe:70:52:6a:06:e1:22:ed:0d:c7:b3:8e: 44:03:de:f1:f8:72:34:ea:b6:40:fb:61:93:d7:2a: d6:da:2a:74:9a:cc:6a:ee:a3:c4:c3:d5:6c:82:7b: ae:03:ca:a9:6a:f1:f3:2d:47:c7:80:da:7e:b7:9c: 1c:32:0d:d4:8c:8d:70:36:1a:a3:58:00:80:7b:b1: 0a:42:e3:c8:47:d9:b8:61:bb:3a:90:50:7a:d0:79: 09:35:83:06:b7:dc:b9:12:50:dd:dd:ec:24:d2:ed: 6f:57:d0:b0:d5:69:75:c9:e8:26:83:a1:3c:ef:45: d8:ae:d7:25:86:f9:01:9c:29:6e:3c:d1:41:87:27: 76:15:05:82:c4:97:e7:3f:6e:e8:ad:8c:18:bb:af: f0:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:D1:5A:85:F3:EA:D1:93:E9:F7:07:8E:40:AD:FA:46:37:6C:84:CC X509v3 Authority Key Identifier: keyid:B4:86:5E:3B:E9:C5:69:D2:B9:3F:2C:35:1C:AB:24:D1:50:6A:AC:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9197CBD/3570DF2EB11411EE95E74365C4F9AE02/tIZeO-nFadK5Pyw1HKsk0VBqrA0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tIZeO-nFadK5Pyw1HKsk0VBqrA0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9197CBD/3570DF2EB11411EE95E74365C4F9AE02/tIZeO-nFadK5Pyw1HKsk0VBqrA0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1d:1a:cd:45:d7:02:ea:30:f3:33:84:1a:56:e0:39:6a:d0:f9: 95:14:aa:d4:d8:5f:27:99:d2:95:13:98:56:46:84:38:4d:a6: 03:c5:3f:fd:fb:08:49:47:a0:ec:68:9c:14:e4:04:e3:26:d0: 1d:84:4a:ee:bb:b3:b9:26:01:fd:4d:1a:bd:1d:21:c0:cb:b1: 24:c2:7a:88:a8:f2:d3:36:d8:4b:89:34:ed:6d:e6:35:9f:02: 5c:29:69:51:60:52:4f:7c:45:3b:bb:12:a6:3c:8a:4f:2e:f5: bf:e3:86:1a:63:8e:47:4a:1c:36:7e:9a:71:bd:4e:b0:da:16: a2:e2:af:01:5e:ef:1f:e1:a8:7f:2a:6f:76:dd:bb:be:8b:65: 30:4d:b2:5e:44:61:cd:27:6e:ba:45:bd:5f:21:bb:59:0e:16: 37:4d:98:43:e2:f1:1c:87:f8:8e:65:7c:24:37:42:53:24:3f: 9d:e9:07:7b:04:2f:02:96:85:08:a3:33:9f:58:65:48:c5:ce: f4:f1:3d:5a:17:43:dd:48:2b:a5:3d:6d:ab:c1:07:6c:48:ae: f3:c0:ca:35:1b:aa:4a:20:4e:67:f2:4a:04:f4:17:93:d2:35: ad:fd:7b:a8:2f:c8:e2:35:ff:ad:05:45:3a:29:27:5d:58:a6: 29:78:77:06 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTdDQkQxMTAvBgNVBAUTKEI0ODY1RTNCRTlDNTY5RDJCOTNGMkMzNTFDQUIyNEQx NTA2QUFDMEQwHhcNMjUxMDE5MDY1ODU0WhcNMjUxMDI2MDY1ODU0WjAYMRYwFAYD VQQDEw02OGY0OGMyZS05YmE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6wR9/pTpXEYsjCOa9pJdgTCwXFW35gncRB+jtxK0xbarPMHMJCUeYpPjuHLS hh7KCGCdtemGm73AV5Qx6NE5Bxn/RIBO3Py5lE4WBL+QY+x5mZhqwvsyKXlCw+f0 w7oec8LUKpfX52jSg/r+cFJqBuEi7Q3Hs45EA97x+HI06rZA+2GT1yrW2ip0msxq 7qPEw9VsgnuuA8qpavHzLUfHgNp+t5wcMg3UjI1wNhqjWACAe7EKQuPIR9m4Ybs6 kFB60HkJNYMGt9y5ElDd3ewk0u1vV9Cw1Wl1yegmg6E870XYrtclhvkBnCluPNFB hyd2FQWCxJfnP27orYwYu6/wSwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBHRWoXz 6tGT6fcHjkCt+kY3bITMMB8GA1UdIwQYMBaAFLSGXjvpxWnSuT8sNRyrJNFQaqwN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5N0NCRC8zNTcwREYyRUIx MTQxMUVFOTVFNzQzNjVDNEY5QUUwMi90SVplTy1uRmFkSzVQeXcxSEtzazBWQnFy QTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3RJWmVPLW5GYWRLNVB5dzFIS3NrMFZCcXJBMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 N0NCRC8zNTcwREYyRUIxMTQxMUVFOTVFNzQzNjVDNEY5QUUwMi90SVplTy1uRmFk SzVQeXcxSEtzazBWQnFyQTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAdGs1F1wLqMPMzhBpW4Dlq0PmVFKrU2F8nmdKVE5hWRoQ4TaYDxT/9 +whJR6DsaJwU5ATjJtAdhEruu7O5JgH9TRq9HSHAy7EkwnqIqPLTNthLiTTtbeY1 nwJcKWlRYFJPfEU7uxKmPIpPLvW/44YaY45HShw2fppxvU6w2hai4q8BXu8f4ah/ Km923bu+i2UwTbJeRGHNJ266Rb1fIbtZDhY3TZhD4vEch/iOZXwkN0JTJD+d6Qd7 BC8CloUIozOfWGVIxc708T1aF0PdSCulPW2rwQdsSK7zwMo1G6pKIE5n8koE9BeT 0jWt/XuoL8jiNf+tBUU6KSddWKYpeHcG -----END CERTIFICATE-----Generated at Mon Oct 20 20:59:36 2025 by rpki-client