$ rpki-client -vvf rpki.apnic.net/member_repository/A915825D/DD71D568A44611EF8D58A624C4F9AE02/TKAuwRGHSuDn0FVaJf8zAvkS64w.mft File: TKAuwRGHSuDn0FVaJf8zAvkS64w.mft (raw, json) Hash identifier: /9gYO8Osd3bqNA38q+iJfNdvHVVceV+iNopJ6J/1AM8= Subject key identifier: 6A:09:95:96:A0:D1:3A:8D:98:B1:4D:A7:B0:CA:7B:9A:E8:A3:8D:AA Authority key identifier: 4C:A0:2E:C1:11:87:4A:E0:E7:D0:55:5A:25:FF:33:02:F9:12:EB:8C Certificate issuer: /CN=A915825D/serialNumber=4CA02EC111874AE0E7D0555A25FF3302F912EB8C Certificate serial: C0 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TKAuwRGHSuDn0FVaJf8zAvkS64w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915825D/DD71D568A44611EF8D58A624C4F9AE02/TKAuwRGHSuDn0FVaJf8zAvkS64w.mft Manifest number: BB Signing time: Mon 03 Nov 2025 06:03:01 +0000 Manifest this update: Mon 03 Nov 2025 06:03:00 +0000 Manifest next update: Mon 10 Nov 2025 06:03:00 +0000 Files and hashes: 1: TKAuwRGHSuDn0FVaJf8zAvkS64w.crl (hash: J3sSkELXNiCw3WBpSxpbfv6ZJg7nGHj/Z4W2WCx7bGg=) 2: 109B1A6AC14F11EFAE8F4B0BC4F9AE02.roa (hash: m6Ln5a7ZSeIX81Tm2886H7n9SlKXj8hnsIcbsYsTN7o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915825D/DD71D568A44611EF8D58A624C4F9AE02/TKAuwRGHSuDn0FVaJf8zAvkS64w.crl rsync://rpki.apnic.net/member_repository/A915825D/DD71D568A44611EF8D58A624C4F9AE02/TKAuwRGHSuDn0FVaJf8zAvkS64w.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TKAuwRGHSuDn0FVaJf8zAvkS64w.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 06:02:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 192 (0xc0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915825D, serialNumber=4CA02EC111874AE0E7D0555A25FF3302F912EB8C Validity Not Before: Nov 3 06:03:00 2025 GMT Not After : Nov 10 06:03:00 2025 GMT Subject: CN=69084594-2bfa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:88:24:2a:9e:5d:ac:0b:21:db:33:66:c7:e1: f4:b6:41:6c:cb:e5:89:d3:7d:d1:8e:a3:11:19:0a: be:62:c0:00:31:09:50:f6:18:d5:b3:30:17:44:bf: 56:78:48:34:e2:c7:0a:4d:a2:6d:bb:0a:ed:1e:5c: 59:27:c4:d2:73:0b:a7:c9:f2:8f:43:89:05:0e:cb: 65:1d:88:0b:35:5f:28:ee:41:3d:6d:85:dd:04:71: 47:9d:53:10:c2:58:93:18:1e:e2:1f:73:c7:0a:47: 25:e9:89:a7:71:c6:bf:65:8d:d9:82:5a:2d:7c:a5: 49:0f:7a:05:94:c0:9a:fd:ef:21:b6:a1:6d:5e:0c: d9:b5:ed:1f:3b:dc:c2:9f:c3:43:ee:e7:18:00:70: 99:e4:64:44:d8:01:f3:83:84:57:f3:e2:99:c5:65: 0e:b4:aa:44:a8:6c:e8:82:a7:95:92:38:f4:0b:cc: 78:a0:20:d0:43:46:26:7c:46:61:35:eb:3d:ff:fc: 85:58:d1:2a:ec:62:86:38:91:ae:10:b7:95:d2:0b: 7b:02:33:28:6d:47:55:46:65:2b:89:fd:e2:1d:af: 80:d3:60:57:5f:d2:95:00:1c:f6:28:1c:ac:42:bb: 6a:4d:35:22:04:b5:fb:97:c1:b5:d5:ed:e8:e7:84: 1b:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:09:95:96:A0:D1:3A:8D:98:B1:4D:A7:B0:CA:7B:9A:E8:A3:8D:AA X509v3 Authority Key Identifier: keyid:4C:A0:2E:C1:11:87:4A:E0:E7:D0:55:5A:25:FF:33:02:F9:12:EB:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915825D/DD71D568A44611EF8D58A624C4F9AE02/TKAuwRGHSuDn0FVaJf8zAvkS64w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TKAuwRGHSuDn0FVaJf8zAvkS64w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915825D/DD71D568A44611EF8D58A624C4F9AE02/TKAuwRGHSuDn0FVaJf8zAvkS64w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bc:5b:6d:82:76:4f:52:d1:d7:45:4b:98:c6:12:46:c9:60:42: 87:32:09:78:74:75:ca:55:1c:7c:9f:5c:50:70:b8:a9:9f:fa: 4c:b2:6f:ab:33:d9:20:5b:7b:e6:0c:6f:80:8d:62:68:08:69: b7:e4:aa:56:20:b8:89:35:26:bc:30:0f:1b:b3:61:16:11:63: dd:95:94:d0:61:5e:e9:9a:e9:c1:60:79:7d:70:dd:ce:69:b7: cd:40:d7:e5:99:c0:e7:e4:66:a8:33:99:50:00:a1:0f:51:6f: b6:ff:6e:50:93:51:f7:c1:89:30:ec:22:7c:69:4f:8b:c6:37: 96:25:d7:09:be:f2:ff:99:37:db:98:40:aa:a0:5f:b4:b9:e4: fd:19:d1:c8:53:01:a4:1e:50:80:ee:86:52:83:68:14:5f:39: e3:7c:81:7a:66:0f:ee:a6:7d:8a:97:60:7a:99:23:fc:46:43: 77:bb:bc:7c:a6:4e:2e:fc:76:9f:2f:e0:67:c6:b7:71:21:1a: 44:b9:89:3f:b6:aa:77:e5:69:2d:3a:9b:b3:fd:43:4c:6e:95: 06:3e:6e:86:2d:5a:bd:e1:57:81:fc:70:6c:4c:2f:05:e5:6e: 9a:65:4b:81:0b:e5:4a:ff:37:ec:da:a4:93:3d:82:45:43:6e: ae:f4:9a:a2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTgyNUQxMTAvBgNVBAUTKDRDQTAyRUMxMTE4NzRBRTBFN0QwNTU1QTI1RkYzMzAy RjkxMkVCOEMwHhcNMjUxMTAzMDYwMzAwWhcNMjUxMTEwMDYwMzAwWjAYMRYwFAYD VQQDEw02OTA4NDU5NC0yYmZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqIgkKp5drAsh2zNmx+H0tkFsy+WJ033RjqMRGQq+YsAAMQlQ9hjVszAXRL9W eEg04scKTaJtuwrtHlxZJ8TScwunyfKPQ4kFDstlHYgLNV8o7kE9bYXdBHFHnVMQ wliTGB7iH3PHCkcl6Ymncca/ZY3ZglotfKVJD3oFlMCa/e8htqFtXgzZte0fO9zC n8ND7ucYAHCZ5GRE2AHzg4RX8+KZxWUOtKpEqGzogqeVkjj0C8x4oCDQQ0YmfEZh Nes9//yFWNEq7GKGOJGuELeV0gt7AjMobUdVRmUrif3iHa+A02BXX9KVABz2KBys QrtqTTUiBLX7l8G11e3o54QbUQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGoJlZag 0TqNmLFNp7DKe5roo42qMB8GA1UdIwQYMBaAFEygLsERh0rg59BVWiX/MwL5EuuM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODI1RC9ERDcxRDU2OEE0 NDYxMUVGOEQ1OEE2MjRDNEY5QUUwMi9US0F1d1JHSFN1RG4wRlZhSmY4ekF2a1M2 NHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1RLQXV3UkdIU3VEbjBGVmFKZjh6QXZrUzY0dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 ODI1RC9ERDcxRDU2OEE0NDYxMUVGOEQ1OEE2MjRDNEY5QUUwMi9US0F1d1JHSFN1 RG4wRlZhSmY4ekF2a1M2NHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC8W22Cdk9S0ddFS5jGEkbJYEKHMgl4dHXKVRx8n1xQcLipn/pMsm+r M9kgW3vmDG+AjWJoCGm35KpWILiJNSa8MA8bs2EWEWPdlZTQYV7pmunBYHl9cN3O abfNQNflmcDn5GaoM5lQAKEPUW+2/25Qk1H3wYkw7CJ8aU+LxjeWJdcJvvL/mTfb mECqoF+0ueT9GdHIUwGkHlCA7oZSg2gUXznjfIF6Zg/upn2Kl2B6mSP8RkN3u7x8 pk4u/HafL+BnxrdxIRpEuYk/tqp35WktOpuz/UNMbpUGPm6GLVq94VeB/HBsTC8F 5W6aZUuBC+VK/zfs2qSTPYJFQ26u9Jqi -----END CERTIFICATE-----Generated at Wed Nov 5 02:02:44 2025 by rpki-client