$ rpki-client -vvf rpki.apnic.net/member_repository/A916A033/8BAE8B88294B11EBA0BC902FC4F9AE02/tNHFfu7y2pEKr3lGCpvLIab80v0.mft File: tNHFfu7y2pEKr3lGCpvLIab80v0.mft (raw, json) Hash identifier: K7nVA5BuV8OnrLbJ2YxyR/eszXxtMgQUDBRQVNPTmYs= Subject key identifier: 19:8D:A2:15:0B:F6:E6:DE:F8:B4:3D:9B:7B:D1:52:20:8E:D9:A8:75 Authority key identifier: B4:D1:C5:7E:EE:F2:DA:91:0A:AF:79:46:0A:9B:CB:21:A6:FC:D2:FD Certificate issuer: /CN=A916A033/serialNumber=B4D1C57EEEF2DA910AAF79460A9BCB21A6FCD2FD Certificate serial: 07A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tNHFfu7y2pEKr3lGCpvLIab80v0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916A033/8BAE8B88294B11EBA0BC902FC4F9AE02/tNHFfu7y2pEKr3lGCpvLIab80v0.mft Manifest number: 0799 Signing time: Sun 02 Nov 2025 21:26:43 +0000 Manifest this update: Sun 02 Nov 2025 21:26:42 +0000 Manifest next update: Sun 09 Nov 2025 21:26:42 +0000 Files and hashes: 1: tNHFfu7y2pEKr3lGCpvLIab80v0.crl (hash: ycecXoug/lv7UJ+5nwKNt2/GZ7qHSSKeKbFiZC5a358=) 2: EB0FEBAA295811EBB519AC70C4F9AE02.roa (hash: 23TiuLPxAaSrXTY2xFHwDsaNfyE9NetpuIlQb209liA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916A033/8BAE8B88294B11EBA0BC902FC4F9AE02/tNHFfu7y2pEKr3lGCpvLIab80v0.crl rsync://rpki.apnic.net/member_repository/A916A033/8BAE8B88294B11EBA0BC902FC4F9AE02/tNHFfu7y2pEKr3lGCpvLIab80v0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tNHFfu7y2pEKr3lGCpvLIab80v0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 21:26:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1957 (0x7a5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916A033, serialNumber=B4D1C57EEEF2DA910AAF79460A9BCB21A6FCD2FD Validity Not Before: Nov 2 21:26:42 2025 GMT Not After : Nov 9 21:26:42 2025 GMT Subject: CN=6907cc93-d29f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:b3:a5:0e:31:4e:96:89:dc:9a:f0:9b:a2:ad: 1f:1e:4b:91:2e:3c:d5:03:0c:66:c7:47:65:d8:ff: e4:18:a0:15:d7:28:f5:83:bc:b2:7e:f9:73:bb:4a: 94:f2:aa:d7:51:69:50:ee:02:d0:67:88:39:f8:bc: 8b:8d:be:6a:19:38:aa:e6:9d:e2:34:8b:be:17:4e: b8:7b:cc:4f:71:7a:05:e2:ea:9c:8a:b8:54:22:40: ad:49:f9:c3:64:4e:86:45:b9:8a:7b:26:c9:74:2b: 18:5b:ed:97:4d:6e:ee:ab:77:a6:48:38:a2:a4:50: c6:89:d8:f4:be:a9:1b:d5:b9:44:15:f8:13:3a:72: f3:fa:2f:0f:0c:60:03:b4:af:2e:68:35:80:6e:d5: 1b:df:a7:5e:f2:fd:07:84:63:1c:26:b9:b3:65:93: 1b:d2:37:2a:b0:d4:6f:9d:b7:04:e0:4e:03:4c:60: fc:da:8e:e2:80:a1:10:ba:3c:f4:1e:de:57:de:5f: 17:19:56:44:3c:65:9c:f3:81:6b:85:0f:2a:1b:22: 61:5b:c2:86:ff:12:d8:a2:11:fb:47:f8:3d:1d:bb: 95:2b:cf:e1:08:7e:07:ba:3e:d2:6d:95:dc:11:d7: 79:f4:76:eb:a7:76:33:78:ca:ba:4f:89:d9:e9:41: 91:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:8D:A2:15:0B:F6:E6:DE:F8:B4:3D:9B:7B:D1:52:20:8E:D9:A8:75 X509v3 Authority Key Identifier: keyid:B4:D1:C5:7E:EE:F2:DA:91:0A:AF:79:46:0A:9B:CB:21:A6:FC:D2:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916A033/8BAE8B88294B11EBA0BC902FC4F9AE02/tNHFfu7y2pEKr3lGCpvLIab80v0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tNHFfu7y2pEKr3lGCpvLIab80v0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916A033/8BAE8B88294B11EBA0BC902FC4F9AE02/tNHFfu7y2pEKr3lGCpvLIab80v0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6a:d8:f8:cc:8a:42:d2:21:28:1d:b7:44:78:47:b6:b8:0b:09: bd:20:89:2a:b8:30:60:7c:f0:f8:e5:5d:61:32:e7:fd:b9:f0: 4e:e4:5f:fe:b9:e1:5d:fa:4b:52:c8:bb:22:45:aa:58:3b:21: ef:a4:8f:d6:1b:50:80:7d:49:a1:cf:d6:f7:9c:16:6a:fb:43: e9:a9:56:1f:e6:0e:cd:3f:94:74:0c:c3:e1:1d:91:89:a0:1d: 9c:41:74:3c:2e:20:70:ae:e0:b1:73:78:4f:87:7d:90:ea:59: ac:cd:58:d5:13:40:94:da:21:0c:31:0f:cd:06:77:6d:ed:21: 4e:c9:6a:e9:8c:ba:a8:fc:8f:66:1f:5c:29:ed:67:b9:a6:90: a9:39:e7:96:4d:31:63:d8:88:9b:d6:8a:5a:51:73:87:95:a6: e9:6e:a6:b7:ac:00:c0:4f:5f:e8:0c:c4:4e:92:62:a4:e3:41: 9f:88:67:c6:bb:56:fc:25:35:a8:01:a8:e9:97:c4:e1:76:06: 7b:51:cb:89:b3:22:cc:5b:20:7b:da:d6:db:53:62:1d:ec:81: 91:81:20:94:02:70:10:0d:bf:bf:97:29:1b:d0:da:cf:c4:63: bd:3a:f5:4d:76:36:74:1d:4b:b1:56:02:c5:b3:53:af:bb:5f: ad:2f:70:0a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB6UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkEwMzMxMTAvBgNVBAUTKEI0RDFDNTdFRUVGMkRBOTEwQUFGNzk0NjBBOUJDQjIx QTZGQ0QyRkQwHhcNMjUxMTAyMjEyNjQyWhcNMjUxMTA5MjEyNjQyWjAYMRYwFAYD VQQDEw02OTA3Y2M5My1kMjlmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3bOlDjFOloncmvCboq0fHkuRLjzVAwxmx0dl2P/kGKAV1yj1g7yyfvlzu0qU 8qrXUWlQ7gLQZ4g5+LyLjb5qGTiq5p3iNIu+F064e8xPcXoF4uqcirhUIkCtSfnD ZE6GRbmKeybJdCsYW+2XTW7uq3emSDiipFDGidj0vqkb1blEFfgTOnLz+i8PDGAD tK8uaDWAbtUb36de8v0HhGMcJrmzZZMb0jcqsNRvnbcE4E4DTGD82o7igKEQujz0 Ht5X3l8XGVZEPGWc84FrhQ8qGyJhW8KG/xLYohH7R/g9HbuVK8/hCH4Huj7SbZXc Edd59Hbrp3YzeMq6T4nZ6UGRqwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBmNohUL 9ube+LQ9m3vRUiCO2ah1MB8GA1UdIwQYMBaAFLTRxX7u8tqRCq95RgqbyyGm/NL9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QTAzMy84QkFFOEI4ODI5 NEIxMUVCQTBCQzkwMkZDNEY5QUUwMi90TkhGZnU3eTJwRUtyM2xHQ3B2TElhYjgw djAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ROSEZmdTd5MnBFS3IzbEdDcHZMSWFiODB2MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QTAzMy84QkFFOEI4ODI5NEIxMUVCQTBCQzkwMkZDNEY5QUUwMi90TkhGZnU3eTJw RUtyM2xHQ3B2TElhYjgwdjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBq2PjMikLSISgdt0R4R7a4Cwm9IIkquDBgfPD45V1hMuf9ufBO5F/+ ueFd+ktSyLsiRapYOyHvpI/WG1CAfUmhz9b3nBZq+0PpqVYf5g7NP5R0DMPhHZGJ oB2cQXQ8LiBwruCxc3hPh32Q6lmszVjVE0CU2iEMMQ/NBndt7SFOyWrpjLqo/I9m H1wp7We5ppCpOeeWTTFj2Iib1opaUXOHlabpbqa3rADAT1/oDMROkmKk40GfiGfG u1b8JTWoAajpl8ThdgZ7UcuJsyLMWyB72tbbU2Id7IGRgSCUAnAQDb+/lykb0NrP xGO9OvVNdjZ0HUuxVgLFs1Ovu1+tL3AK -----END CERTIFICATE-----Generated at Tue Nov 4 08:05:02 2025 by rpki-client