$ rpki-client -vvf rpki.apnic.net/member_repository/A9198D95/48ED296AE06511EEB35F421EC4F9AE02/_tgXL4qVo1IC1RxvdfqUfehE9M0.mft File: _tgXL4qVo1IC1RxvdfqUfehE9M0.mft (raw, json) Hash identifier: B9xBZ+buGK/nqxsOMZzLMvDlum81+PcxF5F8BdBjz0M= Subject key identifier: F1:D0:FB:0E:C7:D0:6E:5C:68:2B:91:77:EF:1D:CD:76:80:24:D9:8C Authority key identifier: FE:D8:17:2F:8A:95:A3:52:02:D5:1C:6F:75:FA:94:7D:E8:44:F4:CD Certificate issuer: /CN=A9198D95/serialNumber=FED8172F8A95A35202D51C6F75FA947DE844F4CD Certificate serial: 0130 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_tgXL4qVo1IC1RxvdfqUfehE9M0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9198D95/48ED296AE06511EEB35F421EC4F9AE02/_tgXL4qVo1IC1RxvdfqUfehE9M0.mft Manifest number: 012D Signing time: Sun 19 Oct 2025 07:24:39 +0000 Manifest this update: Sun 19 Oct 2025 07:24:38 +0000 Manifest next update: Sun 26 Oct 2025 07:24:38 +0000 Files and hashes: 1: _tgXL4qVo1IC1RxvdfqUfehE9M0.crl (hash: B14Z7wScKw4/vWwxSHqX5eQDt+xxfW35LjK8wAQd1/g=) 2: 994A883AE06511EEA8CEC61EC4F9AE02.roa (hash: VIkL73Ao9GMOlF5higO2xRTxCND3iZkpVBfNLk5tPMM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9198D95/48ED296AE06511EEB35F421EC4F9AE02/_tgXL4qVo1IC1RxvdfqUfehE9M0.crl rsync://rpki.apnic.net/member_repository/A9198D95/48ED296AE06511EEB35F421EC4F9AE02/_tgXL4qVo1IC1RxvdfqUfehE9M0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_tgXL4qVo1IC1RxvdfqUfehE9M0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 07:24:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 304 (0x130) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9198D95, serialNumber=FED8172F8A95A35202D51C6F75FA947DE844F4CD Validity Not Before: Oct 19 07:24:38 2025 GMT Not After : Oct 26 07:24:38 2025 GMT Subject: CN=68f49236-844d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:50:6b:69:66:a8:74:7d:94:2f:e3:77:c9:e3: 8e:84:3a:7b:f6:ef:61:2c:df:06:4b:de:fb:21:45: 83:63:70:58:f5:b2:e6:f8:bc:a2:fa:8e:bc:5a:47: d7:6c:dd:89:da:d4:5d:ee:66:d2:70:e9:20:2b:3c: a9:7f:16:99:19:84:90:f9:d4:7c:54:4d:07:3b:1c: 81:aa:c0:41:fd:15:77:5a:a3:ff:86:2d:e1:0d:52: 0d:24:80:68:79:0e:34:40:5c:cd:c1:35:58:56:40: 99:e3:33:92:f7:62:24:38:d6:32:e7:77:8f:05:c0: 65:1b:10:85:f8:e0:f2:ee:af:3d:51:a4:86:63:96: 77:2e:96:7b:61:7c:ac:a3:6e:b8:15:1d:4f:22:2f: b0:4c:c6:3f:0a:18:e6:52:8a:9c:03:a1:2d:0f:78: e5:77:af:09:55:9f:f8:ef:56:85:51:ba:dc:57:3e: f4:57:75:15:9e:bf:32:10:db:ed:41:cd:51:c7:ac: c9:c2:26:f6:8b:54:ad:8c:55:40:61:77:46:63:dd: 67:17:cb:0d:32:25:c3:5c:4f:89:ec:fd:00:24:76: a3:cb:89:e1:5e:2d:ad:94:7d:c0:80:00:82:52:13: 4d:d6:52:dd:c8:e6:15:96:49:3d:78:11:5f:f9:81: 7c:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:D0:FB:0E:C7:D0:6E:5C:68:2B:91:77:EF:1D:CD:76:80:24:D9:8C X509v3 Authority Key Identifier: keyid:FE:D8:17:2F:8A:95:A3:52:02:D5:1C:6F:75:FA:94:7D:E8:44:F4:CD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9198D95/48ED296AE06511EEB35F421EC4F9AE02/_tgXL4qVo1IC1RxvdfqUfehE9M0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_tgXL4qVo1IC1RxvdfqUfehE9M0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9198D95/48ED296AE06511EEB35F421EC4F9AE02/_tgXL4qVo1IC1RxvdfqUfehE9M0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 41:7f:cf:97:d5:7d:85:07:22:47:51:4c:71:ca:6e:5c:59:6b: 66:8d:2d:2a:a3:52:af:6e:a6:54:e8:c5:42:df:e3:f7:93:e9: 44:96:5c:90:f0:1f:d5:f1:5a:10:48:3d:50:73:10:46:73:d6: cc:b1:6b:bf:0f:ff:ac:cc:ce:a0:d5:61:ac:55:e5:17:37:93: e6:ef:10:e2:29:49:76:f2:2f:23:ae:d5:e8:bc:e5:3b:f7:82: 2d:19:34:00:ff:80:2d:60:b8:00:e0:84:0d:56:91:96:d4:6c: 97:13:30:02:a6:88:45:69:73:69:80:e2:09:04:98:53:0d:e5: 3d:5f:66:18:b6:00:a4:26:03:3b:2e:96:4d:18:dc:17:a2:09: f8:4d:12:14:46:30:8a:fb:38:46:a5:3a:d3:97:7f:e6:88:63: e3:a9:d3:06:de:42:f9:8b:f7:27:26:44:2c:16:ec:8c:df:36: 8c:c8:c4:56:dd:8b:5d:98:5e:a5:02:ca:b8:3c:67:2d:eb:ee: 99:22:87:17:90:28:22:c8:69:e8:8e:be:e6:11:7f:0e:04:9e: a4:6f:b1:9e:11:03:1e:cb:56:31:17:9a:b6:c7:76:84:af:60: cb:0a:5b:6a:22:43:18:0e:08:3f:c4:7e:ee:0d:df:3e:b0:9a: 95:e6:4e:77 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OThEOTUxMTAvBgNVBAUTKEZFRDgxNzJGOEE5NUEzNTIwMkQ1MUM2Rjc1RkE5NDdE RTg0NEY0Q0QwHhcNMjUxMDE5MDcyNDM4WhcNMjUxMDI2MDcyNDM4WjAYMRYwFAYD VQQDEw02OGY0OTIzNi04NDRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvlBraWaodH2UL+N3yeOOhDp79u9hLN8GS977IUWDY3BY9bLm+Lyi+o68WkfX bN2J2tRd7mbScOkgKzypfxaZGYSQ+dR8VE0HOxyBqsBB/RV3WqP/hi3hDVINJIBo eQ40QFzNwTVYVkCZ4zOS92IkONYy53ePBcBlGxCF+ODy7q89UaSGY5Z3LpZ7YXys o264FR1PIi+wTMY/ChjmUoqcA6EtD3jld68JVZ/471aFUbrcVz70V3UVnr8yENvt Qc1Rx6zJwib2i1StjFVAYXdGY91nF8sNMiXDXE+J7P0AJHajy4nhXi2tlH3AgACC UhNN1lLdyOYVlkk9eBFf+YF8DwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPHQ+w7H 0G5caCuRd+8dzXaAJNmMMB8GA1UdIwQYMBaAFP7YFy+KlaNSAtUcb3X6lH3oRPTN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OEQ5NS80OEVEMjk2QUUw NjUxMUVFQjM1RjQyMUVDNEY5QUUwMi9fdGdYTDRxVm8xSUMxUnh2ZGZxVWZlaEU5 TTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL190Z1hMNHFWbzFJQzFSeHZkZnFVZmVoRTlNMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OEQ5NS80OEVEMjk2QUUwNjUxMUVFQjM1RjQyMUVDNEY5QUUwMi9fdGdYTDRxVm8x SUMxUnh2ZGZxVWZlaEU5TTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBBf8+X1X2FByJHUUxxym5cWWtmjS0qo1KvbqZU6MVC3+P3k+lEllyQ 8B/V8VoQSD1QcxBGc9bMsWu/D/+szM6g1WGsVeUXN5Pm7xDiKUl28i8jrtXovOU7 94ItGTQA/4AtYLgA4IQNVpGW1GyXEzACpohFaXNpgOIJBJhTDeU9X2YYtgCkJgM7 LpZNGNwXogn4TRIURjCK+zhGpTrTl3/miGPjqdMG3kL5i/cnJkQsFuyM3zaMyMRW 3YtdmF6lAsq4PGct6+6ZIocXkCgiyGnojr7mEX8OBJ6kb7GeEQMey1YxF5q2x3aE r2DLCltqIkMYDgg/xH7uDd8+sJqV5k53 -----END CERTIFICATE-----Generated at Mon Oct 20 13:44:56 2025 by rpki-client