$ rpki-client -vvf rpki.apnic.net/member_repository/A9173C8A/E7FFC5F486F711E78634EC7EC4F9AE02/Tisg2VNzK3Xu0S8SmSGgsbXrFY4.mft File: Tisg2VNzK3Xu0S8SmSGgsbXrFY4.mft (raw, json) Hash identifier: /rK2qrszhYHNa1SXSEFsAiX+1zudAraAyDy+trza2jQ= Subject key identifier: 74:0E:4E:E8:A4:DB:90:3E:3F:0F:07:95:5D:03:48:D1:FC:73:C4:06 Authority key identifier: 4E:2B:20:D9:53:73:2B:75:EE:D1:2F:12:99:21:A0:B1:B5:EB:15:8E Certificate issuer: /CN=A9173C8A/serialNumber=4E2B20D953732B75EED12F129921A0B1B5EB158E Certificate serial: 195B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Tisg2VNzK3Xu0S8SmSGgsbXrFY4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9173C8A/E7FFC5F486F711E78634EC7EC4F9AE02/Tisg2VNzK3Xu0S8SmSGgsbXrFY4.mft Manifest number: 194E Signing time: Tue 04 Nov 2025 16:31:07 +0000 Manifest this update: Tue 04 Nov 2025 16:31:07 +0000 Manifest next update: Tue 11 Nov 2025 16:31:07 +0000 Files and hashes: 1: Tisg2VNzK3Xu0S8SmSGgsbXrFY4.crl (hash: iOfBkUTUggo6jLWoTbtBAilU5yFGwOR232orWE+aBX0=) 2: 9FD5C8F48EFE11E88C6EBD37C4F9AE02.roa (hash: 7Hs9ZZORwzDrkP5Wsr0Azs8K265xvZ4OedgYnSopdc0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9173C8A/E7FFC5F486F711E78634EC7EC4F9AE02/Tisg2VNzK3Xu0S8SmSGgsbXrFY4.crl rsync://rpki.apnic.net/member_repository/A9173C8A/E7FFC5F486F711E78634EC7EC4F9AE02/Tisg2VNzK3Xu0S8SmSGgsbXrFY4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Tisg2VNzK3Xu0S8SmSGgsbXrFY4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 16:31:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6491 (0x195b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9173C8A, serialNumber=4E2B20D953732B75EED12F129921A0B1B5EB158E Validity Not Before: Nov 4 16:31:07 2025 GMT Not After : Nov 11 16:31:07 2025 GMT Subject: CN=690a2a4b-dbdd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:9c:31:5f:23:1e:3a:79:2f:bc:b2:58:ae:b5: 29:7c:89:3b:2c:08:00:7e:52:b9:4d:d7:f7:88:c5: 52:aa:61:95:bb:95:4c:50:25:56:95:28:b7:9f:6d: 7e:e8:97:b8:ff:9d:30:b5:a6:71:2a:b8:f0:c0:bf: 56:11:29:b3:58:c5:ae:f0:be:ca:0d:0e:1c:ab:8d: 5c:94:35:b7:bf:d1:8c:2e:3f:1c:bf:c4:b6:65:ce: bd:77:64:05:37:3f:c6:73:cf:d9:a7:be:74:45:e4: 60:e9:00:d9:fa:11:35:a7:8f:8b:97:ef:bc:a5:68: 1f:08:9b:64:63:ca:f0:79:d4:5c:c6:12:14:37:47: 48:4c:dc:6f:fc:d7:68:29:fe:c2:4a:41:0f:4f:71: f0:44:ea:fc:97:4c:0e:f4:23:1e:1e:0e:06:1f:2f: 87:3c:1c:79:3c:95:00:65:a7:82:6a:ae:67:96:80: b5:a9:60:9c:87:f9:97:c4:a9:17:71:ce:4a:e4:5b: 43:ea:c1:7d:a4:4e:a4:63:b3:49:b2:26:9f:a5:65: 49:f1:d1:8e:b6:f2:6e:c0:ca:1b:5e:eb:1b:c0:0b: d6:e9:8e:5d:f9:e2:50:f7:82:a1:45:5f:71:26:02: 16:44:0a:6d:12:39:3a:03:ec:22:17:ee:8c:57:f4: 71:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:0E:4E:E8:A4:DB:90:3E:3F:0F:07:95:5D:03:48:D1:FC:73:C4:06 X509v3 Authority Key Identifier: keyid:4E:2B:20:D9:53:73:2B:75:EE:D1:2F:12:99:21:A0:B1:B5:EB:15:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9173C8A/E7FFC5F486F711E78634EC7EC4F9AE02/Tisg2VNzK3Xu0S8SmSGgsbXrFY4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Tisg2VNzK3Xu0S8SmSGgsbXrFY4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9173C8A/E7FFC5F486F711E78634EC7EC4F9AE02/Tisg2VNzK3Xu0S8SmSGgsbXrFY4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 61:18:08:63:a4:8e:09:f7:6e:5e:5a:e8:14:f5:61:5e:92:2e: fd:1e:b6:31:9e:d4:fe:ec:3a:59:fe:0c:28:63:f2:2e:28:58: 61:57:a3:ce:82:c2:91:e1:e2:60:56:95:9b:72:be:5c:40:09: 40:e0:28:df:6c:e3:4d:68:ad:d1:88:b9:c5:88:01:95:3b:2f: 6c:61:54:6b:e3:7e:d1:e9:de:4f:f7:8e:05:a8:40:89:ba:46: 26:33:ec:58:de:53:72:f1:d2:85:20:d1:9b:af:08:a2:31:e0: fd:5f:be:8f:dc:a6:20:98:65:f8:c2:f5:c8:e7:b2:c6:3d:5d: 1e:e9:b0:dc:f6:94:51:ee:df:4c:e0:d2:60:4b:19:5d:4f:3d: 7e:af:91:fe:45:79:65:51:24:fb:70:c9:46:54:a0:3d:fb:14: 96:9f:1a:ab:75:de:85:3b:58:ab:99:05:6e:c9:2d:b4:8d:ff: d1:93:94:9e:fb:8c:be:50:1b:91:9b:99:4c:a6:47:68:e5:6a: 62:48:a3:f8:6a:5f:17:ee:f4:29:6b:c8:d2:b6:6e:c2:bd:c0: 36:76:41:be:b3:d3:40:b8:ae:86:b3:ab:eb:88:2d:3b:56:34: ca:19:fe:75:7d:39:37:9b:ab:ba:ca:47:9d:03:19:d6:4a:fa: e1:ca:b7:31 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGVswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzNDOEExMTAvBgNVBAUTKDRFMkIyMEQ5NTM3MzJCNzVFRUQxMkYxMjk5MjFBMEIx QjVFQjE1OEUwHhcNMjUxMTA0MTYzMTA3WhcNMjUxMTExMTYzMTA3WjAYMRYwFAYD VQQDEw02OTBhMmE0Yi1kYmRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu5wxXyMeOnkvvLJYrrUpfIk7LAgAflK5Tdf3iMVSqmGVu5VMUCVWlSi3n21+ 6Je4/50wtaZxKrjwwL9WESmzWMWu8L7KDQ4cq41clDW3v9GMLj8cv8S2Zc69d2QF Nz/Gc8/Zp750ReRg6QDZ+hE1p4+Ll++8pWgfCJtkY8rwedRcxhIUN0dITNxv/Ndo Kf7CSkEPT3HwROr8l0wO9CMeHg4GHy+HPBx5PJUAZaeCaq5nloC1qWCch/mXxKkX cc5K5FtD6sF9pE6kY7NJsiafpWVJ8dGOtvJuwMobXusbwAvW6Y5d+eJQ94KhRV9x JgIWRAptEjk6A+wiF+6MV/RxjwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHQOTuik 25A+Pw8HlV0DSNH8c8QGMB8GA1UdIwQYMBaAFE4rINlTcyt17tEvEpkhoLG16xWO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3M0M4QS9FN0ZGQzVGNDg2 RjcxMUU3ODYzNEVDN0VDNEY5QUUwMi9UaXNnMlZOekszWHUwUzhTbVNHZ3NiWHJG WTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1Rpc2cyVk56SzNYdTBTOFNtU0dnc2JYckZZNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 M0M4QS9FN0ZGQzVGNDg2RjcxMUU3ODYzNEVDN0VDNEY5QUUwMi9UaXNnMlZOeksz WHUwUzhTbVNHZ3NiWHJGWTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBhGAhjpI4J925eWugU9WFeki79HrYxntT+7DpZ/gwoY/IuKFhhV6PO gsKR4eJgVpWbcr5cQAlA4CjfbONNaK3RiLnFiAGVOy9sYVRr437R6d5P944FqECJ ukYmM+xY3lNy8dKFINGbrwiiMeD9X76P3KYgmGX4wvXI57LGPV0e6bDc9pRR7t9M 4NJgSxldTz1+r5H+RXllUST7cMlGVKA9+xSWnxqrdd6FO1irmQVuyS20jf/Rk5Se +4y+UBuRm5lMpkdo5WpiSKP4al8X7vQpa8jStm7CvcA2dkG+s9NAuK6Gs6vriC07 VjTKGf51fTk3m6u6ykedAxnWSvrhyrcx -----END CERTIFICATE-----Generated at Wed Nov 5 15:17:16 2025 by rpki-client