$ rpki-client -vvf rpki.apnic.net/member_repository/A9174880/69F04BA81D6A11E2BB7014A808B02CD2/Ty_T8AtY8TSpqOPn3ajY0grANSc.mft File: Ty_T8AtY8TSpqOPn3ajY0grANSc.mft (raw, json) Hash identifier: 4ndSbTKx9Lm01jYNbKRCsXLV1DI85Hl43XVMZfluQ18= Subject key identifier: 1C:EC:26:CF:8C:95:6D:12:37:F6:90:89:A6:9D:16:C7:B6:F3:E4:70 Authority key identifier: 4F:2F:D3:F0:0B:58:F1:34:A9:A8:E3:E7:DD:A8:D8:D2:0A:C0:35:27 Certificate issuer: /CN=A9174880/serialNumber=4F2FD3F00B58F134A9A8E3E7DDA8D8D20AC03527 Certificate serial: 3558 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ty_T8AtY8TSpqOPn3ajY0grANSc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9174880/69F04BA81D6A11E2BB7014A808B02CD2/Ty_T8AtY8TSpqOPn3ajY0grANSc.mft Manifest number: 3518 Signing time: Tue 04 Nov 2025 14:16:45 +0000 Manifest this update: Tue 04 Nov 2025 14:16:44 +0000 Manifest next update: Tue 11 Nov 2025 14:16:44 +0000 Files and hashes: 1: Ty_T8AtY8TSpqOPn3ajY0grANSc.crl (hash: gbnVbE7p/zXyOQsVZXASh8BT0S4jFyWblhPx9NTwrO0=) 2: 5D81654A561E11E7A4FFF329C4F9AE02.roa (hash: lNgj4TvSe3KKVyyrTSvIWXZ/d+PVLLALfHGvhjBEEiE=) 3: 3869DF8A1C6011EEAF58FB61C4F9AE02.roa (hash: nfzhFLP0jYKTq0z6wHGwsoz8GMYhYCaKTE6tTnCuKUk=) 4: B5885EF852D411EC8C8CE26CC4F9AE02.roa (hash: r9l8dniBLJAah6kBshgsvvbb8QtLGysiZozs08rVUnY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9174880/69F04BA81D6A11E2BB7014A808B02CD2/Ty_T8AtY8TSpqOPn3ajY0grANSc.crl rsync://rpki.apnic.net/member_repository/A9174880/69F04BA81D6A11E2BB7014A808B02CD2/Ty_T8AtY8TSpqOPn3ajY0grANSc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ty_T8AtY8TSpqOPn3ajY0grANSc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 14:16:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13656 (0x3558) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9174880, serialNumber=4F2FD3F00B58F134A9A8E3E7DDA8D8D20AC03527 Validity Not Before: Nov 4 14:16:44 2025 GMT Not After : Nov 11 14:16:44 2025 GMT Subject: CN=690a0acd-3da5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:35:92:3a:4f:6f:ea:8a:c4:c8:13:cc:d3:52: 9e:45:9f:ca:63:e8:cd:5f:55:52:67:a1:d2:49:b6: 20:d2:80:db:2a:76:89:78:64:8c:4c:65:10:d2:c1: 62:d5:17:ec:60:86:13:34:41:c2:75:27:5f:f2:df: 0b:a7:db:3a:6f:0a:0c:59:af:f9:58:7a:0e:b9:d7: 94:f8:34:82:56:a5:fa:e3:fd:b6:f6:24:a5:de:e2: e6:a0:7e:4c:b2:62:1c:4b:91:84:50:91:f5:ce:86: a2:28:1d:7b:3c:a7:09:f1:e6:81:74:d4:67:9a:ab: b8:64:d2:42:a5:eb:a9:be:a4:7e:ad:14:3e:9d:4a: 56:5d:a5:f5:b8:b3:81:3c:c7:63:b2:bf:1e:4d:48: fc:9f:24:a0:c1:70:b6:81:d3:60:ab:85:46:3b:9d: bd:55:11:8b:08:38:a1:f1:e3:d3:6f:f2:2e:22:9d: 30:aa:4b:e0:db:c6:39:c2:77:41:b4:97:0a:ee:79: 60:57:13:cb:46:c3:26:66:30:a5:01:b8:6e:f4:2b: dd:9b:ca:5b:d5:97:39:a6:be:b9:2b:3a:e5:47:c2: 74:94:41:02:0d:5b:23:19:56:f3:68:06:55:ba:05: 72:49:ef:e0:fa:06:a6:05:e6:90:ff:1d:68:ac:fb: e6:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:EC:26:CF:8C:95:6D:12:37:F6:90:89:A6:9D:16:C7:B6:F3:E4:70 X509v3 Authority Key Identifier: keyid:4F:2F:D3:F0:0B:58:F1:34:A9:A8:E3:E7:DD:A8:D8:D2:0A:C0:35:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9174880/69F04BA81D6A11E2BB7014A808B02CD2/Ty_T8AtY8TSpqOPn3ajY0grANSc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ty_T8AtY8TSpqOPn3ajY0grANSc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9174880/69F04BA81D6A11E2BB7014A808B02CD2/Ty_T8AtY8TSpqOPn3ajY0grANSc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 47:91:e4:dc:5c:cc:ee:74:55:40:3a:b0:fe:cf:6f:89:a0:1f: 2e:a2:ed:4e:41:bb:6b:21:11:11:ff:24:52:bc:21:6f:70:60: 58:21:43:19:a8:05:a6:ba:f5:36:e9:ea:16:8a:4f:be:ca:b7: ae:4c:6c:60:8f:1c:0d:7f:4e:80:4c:85:ed:47:03:05:fb:ba: d6:1b:74:6d:c2:97:0c:40:23:b9:cc:f7:d1:e2:40:e8:94:cf: 38:a9:8c:57:12:07:14:95:50:c1:26:19:11:45:d5:e8:70:f6: 2c:8b:05:48:4b:a6:ea:94:d4:ae:73:3b:de:73:7d:fd:ca:a4: c9:30:57:bb:8a:9b:64:08:f3:da:c8:9a:cc:be:29:45:fe:94: 22:e0:2d:60:49:d5:c9:7f:df:09:96:db:d2:42:d4:8d:13:07: 1e:3c:73:50:36:c1:fa:aa:f6:e7:60:62:a2:9d:82:ff:eb:09: ba:a2:7e:82:f0:a6:c6:6a:c9:e3:3e:08:80:13:16:c6:ca:ef: 44:47:37:e9:52:59:40:fc:38:c5:dd:bd:a3:05:60:09:75:f9: 7e:36:8e:27:48:bc:7a:c3:d0:c8:bd:e2:59:07:d9:93:7d:a8: 44:b9:20:91:17:84:3d:aa:00:04:52:bf:55:7e:9d:95:dc:7b: 74:eb:6f:19 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNVgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzQ4ODAxMTAvBgNVBAUTKDRGMkZEM0YwMEI1OEYxMzRBOUE4RTNFN0REQThEOEQy MEFDMDM1MjcwHhcNMjUxMTA0MTQxNjQ0WhcNMjUxMTExMTQxNjQ0WjAYMRYwFAYD VQQDEw02OTBhMGFjZC0zZGE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsTWSOk9v6orEyBPM01KeRZ/KY+jNX1VSZ6HSSbYg0oDbKnaJeGSMTGUQ0sFi 1RfsYIYTNEHCdSdf8t8Lp9s6bwoMWa/5WHoOudeU+DSCVqX64/229iSl3uLmoH5M smIcS5GEUJH1zoaiKB17PKcJ8eaBdNRnmqu4ZNJCpeupvqR+rRQ+nUpWXaX1uLOB PMdjsr8eTUj8nySgwXC2gdNgq4VGO529VRGLCDih8ePTb/IuIp0wqkvg28Y5wndB tJcK7nlgVxPLRsMmZjClAbhu9Cvdm8pb1Zc5pr65KzrlR8J0lEECDVsjGVbzaAZV ugVySe/g+gamBeaQ/x1orPvmxwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBzsJs+M lW0SN/aQiaadFse28+RwMB8GA1UdIwQYMBaAFE8v0/ALWPE0qajj592o2NIKwDUn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NDg4MC82OUYwNEJBODFE NkExMUUyQkI3MDE0QTgwOEIwMkNEMi9UeV9UOEF0WThUU3BxT1BuM2FqWTBnckFO U2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1R5X1Q4QXRZOFRTcHFPUG4zYWpZMGdyQU5TYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NDg4MC82OUYwNEJBODFENkExMUUyQkI3MDE0QTgwOEIwMkNEMi9UeV9UOEF0WThU U3BxT1BuM2FqWTBnckFOU2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBHkeTcXMzudFVAOrD+z2+JoB8uou1OQbtrIRER/yRSvCFvcGBYIUMZ qAWmuvU26eoWik++yreuTGxgjxwNf06ATIXtRwMF+7rWG3RtwpcMQCO5zPfR4kDo lM84qYxXEgcUlVDBJhkRRdXocPYsiwVIS6bqlNSuczvec339yqTJMFe7iptkCPPa yJrMvilF/pQi4C1gSdXJf98JltvSQtSNEwcePHNQNsH6qvbnYGKinYL/6wm6on6C 8KbGasnjPgiAExbGyu9ERzfpUllA/DjF3b2jBWAJdfl+No4nSLx6w9DIveJZB9mT fahEuSCRF4Q9qgAEUr9Vfp2V3Ht0628Z -----END CERTIFICATE-----Generated at Tue Nov 4 19:04:15 2025 by rpki-client