$ rpki-client -vvf rpki.apnic.net/member_repository/A916C4BC/A970B2EC51AC11EC9ED9041BC4F9AE02/Tf7DQ3yQv0FNBRiLSCx4SObzFhs.mft File: Tf7DQ3yQv0FNBRiLSCx4SObzFhs.mft (raw, json) Hash identifier: 6X6riip+UplJLIfT8Bt/mr4O6H0haXqC22Ih0XDPmV4= Subject key identifier: 43:88:32:2F:84:9F:BE:89:23:9D:81:08:AD:EB:B4:6B:A0:E4:D2:1D Authority key identifier: 4D:FE:C3:43:7C:90:BF:41:4D:05:18:8B:48:2C:78:48:E6:F3:16:1B Certificate issuer: /CN=A916C4BC/serialNumber=4DFEC3437C90BF414D05188B482C7848E6F3161B Certificate serial: 04AB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Tf7DQ3yQv0FNBRiLSCx4SObzFhs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916C4BC/A970B2EC51AC11EC9ED9041BC4F9AE02/Tf7DQ3yQv0FNBRiLSCx4SObzFhs.mft Manifest number: 04A7 Signing time: Sun 02 Nov 2025 23:54:46 +0000 Manifest this update: Sun 02 Nov 2025 23:54:46 +0000 Manifest next update: Sun 09 Nov 2025 23:54:46 +0000 Files and hashes: 1: Tf7DQ3yQv0FNBRiLSCx4SObzFhs.crl (hash: tICDOtmd1GiSu21VBZ/XQf+sr48e90ldZP0o/vM54Nk=) 2: F593443851B011ECB5188E24C4F9AE02.roa (hash: CA35rH85+j+YJMr1xe8QwPujExClO3AIGNQ5xuf0vDw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916C4BC/A970B2EC51AC11EC9ED9041BC4F9AE02/Tf7DQ3yQv0FNBRiLSCx4SObzFhs.crl rsync://rpki.apnic.net/member_repository/A916C4BC/A970B2EC51AC11EC9ED9041BC4F9AE02/Tf7DQ3yQv0FNBRiLSCx4SObzFhs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Tf7DQ3yQv0FNBRiLSCx4SObzFhs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 23:54:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1195 (0x4ab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916C4BC, serialNumber=4DFEC3437C90BF414D05188B482C7848E6F3161B Validity Not Before: Nov 2 23:54:46 2025 GMT Not After : Nov 9 23:54:46 2025 GMT Subject: CN=6907ef46-25bd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:83:b5:2c:50:33:f0:c4:44:cf:06:5d:b3:19: f0:1d:c0:e3:bc:d9:dc:4a:89:26:29:59:59:13:c3: 3d:85:c7:5d:c0:cc:0d:97:94:65:5c:fd:9e:2a:e2: d4:01:a6:bd:0e:e1:ab:2f:a6:7c:34:85:67:77:d3: 42:62:e1:ed:29:a1:8f:ca:8a:f2:47:26:a2:d2:70: 5d:00:09:37:f9:49:70:84:c8:7c:96:8c:9b:c0:11: 53:6b:51:15:f3:df:fa:d3:03:85:ed:5c:56:94:40: 97:f8:d6:55:96:d6:48:a9:53:8f:6a:da:42:3a:2f: 9f:20:cc:6e:6c:3d:85:e2:d2:55:45:21:6b:61:bb: 91:9c:9b:3b:fc:68:e5:c9:7f:9b:77:a5:a0:31:9a: 8a:47:b8:e3:69:46:90:47:72:56:f2:ee:e8:2c:86: 29:54:cd:54:ac:eb:1b:6c:29:c4:34:5d:d5:68:1d: 29:f8:22:e5:dd:7a:19:7a:1e:de:35:f5:91:bc:e0: 9d:7d:1a:71:5a:88:9e:b3:c5:5f:66:a5:33:4b:96: 03:f4:a4:d0:76:2c:e7:34:aa:00:5f:6e:99:5d:8c: ce:e1:3d:70:5a:72:8a:fb:75:3f:3e:38:b8:61:8a: 7b:2e:e6:92:c5:d6:82:7a:e9:b3:63:6f:62:ee:55: 88:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:88:32:2F:84:9F:BE:89:23:9D:81:08:AD:EB:B4:6B:A0:E4:D2:1D X509v3 Authority Key Identifier: keyid:4D:FE:C3:43:7C:90:BF:41:4D:05:18:8B:48:2C:78:48:E6:F3:16:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916C4BC/A970B2EC51AC11EC9ED9041BC4F9AE02/Tf7DQ3yQv0FNBRiLSCx4SObzFhs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Tf7DQ3yQv0FNBRiLSCx4SObzFhs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916C4BC/A970B2EC51AC11EC9ED9041BC4F9AE02/Tf7DQ3yQv0FNBRiLSCx4SObzFhs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 92:1b:f1:50:f6:eb:f9:48:4b:7f:79:58:1d:31:94:73:c3:a5: c4:1c:0a:c8:6d:85:cd:79:bc:07:99:2b:a6:85:13:f3:db:e0: 4c:58:98:e2:ec:46:d0:7b:40:c2:f9:f4:9d:b9:9b:a9:8c:39: 26:b9:72:80:e7:1f:54:c4:aa:e4:3a:12:a7:80:25:74:43:68: d6:3c:b6:f6:67:aa:f1:65:ff:17:45:db:da:02:43:ff:85:59: 20:d0:df:53:4c:10:a4:bf:fd:1b:40:45:64:cb:f2:69:7c:33: 5f:b9:55:21:3f:40:eb:6a:95:09:45:04:5a:97:12:b2:ba:92: d5:d1:79:e0:a3:4a:6d:18:48:5c:53:17:e4:a8:94:a1:d4:ff: 6d:6c:99:97:85:31:0e:6b:d8:55:d2:ef:c3:c6:aa:39:7e:89: 2b:ba:f3:fc:36:7a:87:32:52:97:a1:54:46:54:9d:fc:73:52: 10:98:3b:fb:f2:d4:2b:33:d2:2c:bf:4c:93:67:b9:da:d3:35: b9:63:9e:af:37:10:48:6f:99:f5:80:bf:40:f9:48:a4:5c:9a: 3b:4e:1f:db:f3:fb:7a:1e:0a:e5:f4:9e:b4:d1:d4:a4:28:c4: 98:a1:50:71:4b:7e:56:26:8a:8b:64:9c:46:4b:e8:cf:e9:10: 5e:5e:3a:a7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBKswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkM0QkMxMTAvBgNVBAUTKDRERkVDMzQzN0M5MEJGNDE0RDA1MTg4QjQ4MkM3ODQ4 RTZGMzE2MUIwHhcNMjUxMTAyMjM1NDQ2WhcNMjUxMTA5MjM1NDQ2WjAYMRYwFAYD VQQDEw02OTA3ZWY0Ni0yNWJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1oO1LFAz8MREzwZdsxnwHcDjvNncSokmKVlZE8M9hcddwMwNl5RlXP2eKuLU Aaa9DuGrL6Z8NIVnd9NCYuHtKaGPyoryRyai0nBdAAk3+UlwhMh8loybwBFTa1EV 89/60wOF7VxWlECX+NZVltZIqVOPatpCOi+fIMxubD2F4tJVRSFrYbuRnJs7/Gjl yX+bd6WgMZqKR7jjaUaQR3JW8u7oLIYpVM1UrOsbbCnENF3VaB0p+CLl3XoZeh7e NfWRvOCdfRpxWoies8VfZqUzS5YD9KTQdiznNKoAX26ZXYzO4T1wWnKK+3U/Pji4 YYp7LuaSxdaCeumzY29i7lWIRwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEOIMi+E n76JI52BCK3rtGug5NIdMB8GA1UdIwQYMBaAFE3+w0N8kL9BTQUYi0gseEjm8xYb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QzRCQy9BOTcwQjJFQzUx QUMxMUVDOUVEOTA0MUJDNEY5QUUwMi9UZjdEUTN5UXYwRk5CUmlMU0N4NFNPYnpG aHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RmN0RRM3lRdjBGTkJSaUxTQ3g0U09iekZocy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QzRCQy9BOTcwQjJFQzUxQUMxMUVDOUVEOTA0MUJDNEY5QUUwMi9UZjdEUTN5UXYw Rk5CUmlMU0N4NFNPYnpGaHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCSG/FQ9uv5SEt/eVgdMZRzw6XEHArIbYXNebwHmSumhRPz2+BMWJji 7EbQe0DC+fSduZupjDkmuXKA5x9UxKrkOhKngCV0Q2jWPLb2Z6rxZf8XRdvaAkP/ hVkg0N9TTBCkv/0bQEVky/JpfDNfuVUhP0DrapUJRQRalxKyupLV0Xngo0ptGEhc UxfkqJSh1P9tbJmXhTEOa9hV0u/Dxqo5fokruvP8NnqHMlKXoVRGVJ38c1IQmDv7 8tQrM9Isv0yTZ7na0zW5Y56vNxBIb5n1gL9A+UikXJo7Th/b8/t6Hgrl9J600dSk KMSYoVBxS35WJoqLZJxGS+jP6RBeXjqn -----END CERTIFICATE-----Generated at Tue Nov 4 12:37:52 2025 by rpki-client