$ rpki-client -vvf rpki.apnic.net/member_repository/A913DA50/D49BD210F49F11E98BFFF82CC4F9AE02/tXSEdav1kHeBiVHMH-bti9LzEhM.mft File: tXSEdav1kHeBiVHMH-bti9LzEhM.mft (raw, json) Hash identifier: eWRDLatX/Zj07+oJ9ohZM9lF5ua4qtbUDTT55N0Gyrg= Subject key identifier: 1C:3A:40:8E:D0:E4:3F:DA:95:A6:14:DE:A7:1F:D4:D8:B3:CC:CB:BE Authority key identifier: B5:74:84:75:AB:F5:90:77:81:89:51:CC:1F:E6:ED:8B:D2:F3:12:13 Certificate issuer: /CN=A913DA50/serialNumber=B5748475ABF59077818951CC1FE6ED8BD2F31213 Certificate serial: 0CF2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tXSEdav1kHeBiVHMH-bti9LzEhM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913DA50/D49BD210F49F11E98BFFF82CC4F9AE02/tXSEdav1kHeBiVHMH-bti9LzEhM.mft Manifest number: 0CEA Signing time: Tue 04 Nov 2025 18:11:36 +0000 Manifest this update: Tue 04 Nov 2025 18:11:35 +0000 Manifest next update: Tue 11 Nov 2025 18:11:35 +0000 Files and hashes: 1: tXSEdav1kHeBiVHMH-bti9LzEhM.crl (hash: DenqBdXf1FfzPb0vo478pFlAm46P9+MMStFnMWx69JM=) 2: E458D4E0F4A011E98C19332EC4F9AE02.roa (hash: Kuacwrd9xmPbCRcHxM/w7AGXBwpLtTpK06rVdfJjAc4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913DA50/D49BD210F49F11E98BFFF82CC4F9AE02/tXSEdav1kHeBiVHMH-bti9LzEhM.crl rsync://rpki.apnic.net/member_repository/A913DA50/D49BD210F49F11E98BFFF82CC4F9AE02/tXSEdav1kHeBiVHMH-bti9LzEhM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tXSEdav1kHeBiVHMH-bti9LzEhM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 18:11:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3314 (0xcf2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913DA50, serialNumber=B5748475ABF59077818951CC1FE6ED8BD2F31213 Validity Not Before: Nov 4 18:11:35 2025 GMT Not After : Nov 11 18:11:35 2025 GMT Subject: CN=690a41d7-619d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:42:c5:b4:2f:7b:1c:67:a0:62:55:5d:34:b2: 83:a7:66:52:cc:b7:39:b6:da:b7:d3:76:af:0a:c6: d4:3c:67:3a:9d:d1:be:20:70:81:ba:77:cf:47:50: 3d:d3:e3:2d:17:04:6f:28:a1:ab:20:52:7b:09:8e: ee:9c:ad:b3:96:af:78:a2:59:2b:8e:e1:af:91:a5: 78:4f:6b:18:04:3f:b5:2a:32:14:b7:ac:a1:a2:ab: 9b:7e:d7:1b:f2:1c:2e:2d:ae:19:73:37:da:11:81: cc:b3:29:c1:74:fb:03:09:d9:a8:7e:50:fd:9c:e8: 00:1f:25:b9:3b:93:05:56:6e:89:82:82:60:93:6d: 5e:cd:8c:ef:b4:af:a8:37:a5:da:36:95:7b:94:61: 53:b3:78:73:98:a9:66:ad:ef:ca:fb:31:cc:f2:e9: a7:c9:79:61:97:94:be:ec:eb:c6:81:70:ce:b8:16: c4:f6:35:f4:1b:15:bf:77:9a:b3:97:f2:f1:ea:31: 25:50:41:67:4e:b6:a9:03:ec:b4:56:68:43:4d:e8: 8d:cc:e8:9e:83:38:97:ca:1f:55:23:4d:49:8e:62: dc:eb:ae:3c:83:ee:e1:1e:94:a6:80:dc:51:7e:75: 26:53:e9:86:08:1b:3d:1d:df:3d:f0:d0:7d:5a:6d: da:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:3A:40:8E:D0:E4:3F:DA:95:A6:14:DE:A7:1F:D4:D8:B3:CC:CB:BE X509v3 Authority Key Identifier: keyid:B5:74:84:75:AB:F5:90:77:81:89:51:CC:1F:E6:ED:8B:D2:F3:12:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913DA50/D49BD210F49F11E98BFFF82CC4F9AE02/tXSEdav1kHeBiVHMH-bti9LzEhM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tXSEdav1kHeBiVHMH-bti9LzEhM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913DA50/D49BD210F49F11E98BFFF82CC4F9AE02/tXSEdav1kHeBiVHMH-bti9LzEhM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 28:a5:ae:0e:33:8c:35:1f:fc:89:c1:32:0f:1c:9a:6a:7c:17: 86:35:92:07:2f:3c:bf:0e:7b:28:72:29:a2:d1:c8:86:47:f5: 88:fe:a1:e8:1b:bf:6c:02:ef:be:2a:88:46:3e:40:47:14:22: 2f:e7:72:c5:42:4d:16:c4:9f:a8:9b:8b:ef:00:ae:b2:cf:95: 2c:08:18:ec:33:89:4e:9e:07:8e:f2:db:54:af:d3:b2:6b:c2: 36:2c:84:86:85:7f:14:0c:f6:74:74:11:61:cd:95:b3:3a:ca: 14:dd:6e:85:04:a4:dd:6d:d6:fc:c0:2b:21:0e:61:c8:74:1b: f6:84:b2:54:9a:7f:50:0d:12:2d:3d:2c:9d:3a:45:1e:89:fb: 2a:a2:28:f2:13:d0:08:88:1b:d7:ef:c6:85:b9:05:55:53:9b: 85:df:f4:00:87:41:e0:89:28:ee:13:20:a2:c8:a8:29:70:fa: 68:c6:2d:0f:37:8b:96:0f:0a:d2:5d:b0:8b:aa:dd:44:83:c5: b7:78:62:fb:e5:49:ee:ba:79:be:d5:83:76:8a:76:04:cf:37: 2f:ec:97:50:13:bb:72:cd:26:25:17:ea:61:b7:4c:99:eb:c2: 90:47:fc:30:d2:32:27:f2:c5:b3:01:67:a4:6e:b9:7a:92:3a: 04:49:30:4c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDPIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0RBNTAxMTAvBgNVBAUTKEI1NzQ4NDc1QUJGNTkwNzc4MTg5NTFDQzFGRTZFRDhC RDJGMzEyMTMwHhcNMjUxMTA0MTgxMTM1WhcNMjUxMTExMTgxMTM1WjAYMRYwFAYD VQQDEw02OTBhNDFkNy02MTlkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmULFtC97HGegYlVdNLKDp2ZSzLc5ttq303avCsbUPGc6ndG+IHCBunfPR1A9 0+MtFwRvKKGrIFJ7CY7unK2zlq94olkrjuGvkaV4T2sYBD+1KjIUt6yhoqubftcb 8hwuLa4ZczfaEYHMsynBdPsDCdmoflD9nOgAHyW5O5MFVm6JgoJgk21ezYzvtK+o N6XaNpV7lGFTs3hzmKlmre/K+zHM8umnyXlhl5S+7OvGgXDOuBbE9jX0GxW/d5qz l/Lx6jElUEFnTrapA+y0VmhDTeiNzOiegziXyh9VI01JjmLc6648g+7hHpSmgNxR fnUmU+mGCBs9Hd898NB9Wm3aEQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBw6QI7Q 5D/alaYU3qcf1NizzMu+MB8GA1UdIwQYMBaAFLV0hHWr9ZB3gYlRzB/m7YvS8xIT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzREE1MC9ENDlCRDIxMEY0 OUYxMUU5OEJGRkY4MkNDNEY5QUUwMi90WFNFZGF2MWtIZUJpVkhNSC1idGk5THpF aE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RYU0VkYXYxa0hlQmlWSE1ILWJ0aTlMekVoTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz REE1MC9ENDlCRDIxMEY0OUYxMUU5OEJGRkY4MkNDNEY5QUUwMi90WFNFZGF2MWtI ZUJpVkhNSC1idGk5THpFaE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAopa4OM4w1H/yJwTIPHJpqfBeGNZIHLzy/Dnsocimi0ciGR/WI/qHo G79sAu++KohGPkBHFCIv53LFQk0WxJ+om4vvAK6yz5UsCBjsM4lOngeO8ttUr9Oy a8I2LISGhX8UDPZ0dBFhzZWzOsoU3W6FBKTdbdb8wCshDmHIdBv2hLJUmn9QDRIt PSydOkUeifsqoijyE9AIiBvX78aFuQVVU5uF3/QAh0HgiSjuEyCiyKgpcPpoxi0P N4uWDwrSXbCLqt1Eg8W3eGL75Unuunm+1YN2inYEzzcv7JdQE7tyzSYlF+pht0yZ 68KQR/ww0jIn8sWzAWekbrl6kjoESTBM -----END CERTIFICATE-----Generated at Wed Nov 5 11:56:46 2025 by rpki-client