$ rpki-client -vvf rpki.apnic.net/member_repository/A9176C8F/F14EED986B5A11EFBC99925CC4F9AE02/Tn7ZUcT4nxHxlEaOqBVE1zNeT1k.mft File: Tn7ZUcT4nxHxlEaOqBVE1zNeT1k.mft (raw, json) Hash identifier: UVoro+AicWaRlWtjefWVwJVnZOKUDDsS+mbNs81+grI= Subject key identifier: A7:A3:F4:21:4D:1A:6D:C1:CE:6F:BD:9B:D0:0A:00:C3:CC:E2:D2:CC Authority key identifier: 4E:7E:D9:51:C4:F8:9F:11:F1:94:46:8E:A8:15:44:D7:33:5E:4F:59 Certificate issuer: /CN=A9176C8F/serialNumber=4E7ED951C4F89F11F194468EA81544D7335E4F59 Certificate serial: E6 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Tn7ZUcT4nxHxlEaOqBVE1zNeT1k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9176C8F/F14EED986B5A11EFBC99925CC4F9AE02/Tn7ZUcT4nxHxlEaOqBVE1zNeT1k.mft Manifest number: E2 Signing time: Mon 03 Nov 2025 05:34:08 +0000 Manifest this update: Mon 03 Nov 2025 05:34:07 +0000 Manifest next update: Mon 10 Nov 2025 05:34:07 +0000 Files and hashes: 1: Tn7ZUcT4nxHxlEaOqBVE1zNeT1k.crl (hash: H7YKC7OavUQm8MT7MXj0bzHmp9UQsQzglt0dXuGbH1Q=) 2: 4E9597086B5C11EFABB11F60C4F9AE02.roa (hash: Co6tkDsI5HQErtzjpED6IOpErLBa9412vvEmJqPigVc=) 3: 43749A72824E11F0A1C4B018C4F9AE02.roa (hash: 4DEc0wbLK30W3YSB0WhzIpXuKeWb4EluJvYfPFr8RSQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9176C8F/F14EED986B5A11EFBC99925CC4F9AE02/Tn7ZUcT4nxHxlEaOqBVE1zNeT1k.crl rsync://rpki.apnic.net/member_repository/A9176C8F/F14EED986B5A11EFBC99925CC4F9AE02/Tn7ZUcT4nxHxlEaOqBVE1zNeT1k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Tn7ZUcT4nxHxlEaOqBVE1zNeT1k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 05:34:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 230 (0xe6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9176C8F, serialNumber=4E7ED951C4F89F11F194468EA81544D7335E4F59 Validity Not Before: Nov 3 05:34:07 2025 GMT Not After : Nov 10 05:34:07 2025 GMT Subject: CN=69083ed0-6ffc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:d1:9b:d9:1f:23:55:ab:70:67:8a:01:94:bf: b4:b6:7c:d4:6d:f4:63:bf:c6:33:80:65:7e:d9:2c: 33:09:10:a9:8b:ce:b3:33:19:19:02:e9:50:78:8b: 51:46:b6:bc:aa:e6:3e:7d:c6:c6:13:2c:bf:4d:b4: ee:38:b1:a3:14:52:bf:59:f3:07:8c:45:54:79:78: 4d:97:cf:63:26:68:99:69:23:36:6c:15:83:92:81: 99:c1:92:68:ef:72:7d:d1:3d:7f:e2:7e:0f:58:1b: 6a:e2:e7:b1:c6:3e:ff:3e:66:4d:33:7d:d3:f9:8c: 31:93:22:eb:5c:71:bd:ff:93:b2:22:48:1d:b5:a3: 4b:55:de:73:6c:0a:01:37:41:20:5f:04:a9:7a:14: 03:71:db:2c:ca:00:cc:dd:a4:28:20:a7:c8:c7:02: e4:2d:53:8a:e4:bc:b2:e8:fd:bc:b8:4f:c5:5a:75: c2:8c:a0:c8:e1:88:70:78:d6:6a:f1:81:f8:b0:c0: ec:32:c2:67:0b:22:7c:8c:51:38:a1:5f:1c:97:89: ae:f8:46:28:38:d9:11:29:80:85:6e:3c:52:c1:c4: a3:41:bc:eb:f2:88:7c:84:7f:d4:c7:51:12:3a:bc: 6c:48:8f:a9:3c:d7:57:94:08:13:e1:9a:49:f4:3d: 78:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:A3:F4:21:4D:1A:6D:C1:CE:6F:BD:9B:D0:0A:00:C3:CC:E2:D2:CC X509v3 Authority Key Identifier: keyid:4E:7E:D9:51:C4:F8:9F:11:F1:94:46:8E:A8:15:44:D7:33:5E:4F:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9176C8F/F14EED986B5A11EFBC99925CC4F9AE02/Tn7ZUcT4nxHxlEaOqBVE1zNeT1k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Tn7ZUcT4nxHxlEaOqBVE1zNeT1k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9176C8F/F14EED986B5A11EFBC99925CC4F9AE02/Tn7ZUcT4nxHxlEaOqBVE1zNeT1k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 56:ce:5a:b5:af:64:cc:ad:9e:c4:fb:4e:51:58:a0:3f:02:55: c9:f5:d6:e4:19:9b:94:e6:7b:a2:98:64:6f:60:8a:cd:63:dd: 75:c9:aa:47:1c:44:4a:9c:f4:c0:d1:42:98:14:5f:68:4a:01: aa:28:69:f9:39:3c:21:6f:a5:4f:46:85:8f:b5:d3:d2:34:59: 0e:f8:bb:e4:e0:6b:d3:84:3e:4b:20:f9:94:d0:ea:8b:e1:e3: 36:82:e7:47:55:cc:ed:58:66:c2:c5:1e:28:bc:b8:85:69:1d: ab:10:f6:ef:ee:46:4a:99:55:3f:50:f3:2f:2c:ea:d9:4b:de: 42:30:d9:56:f5:81:b3:9c:4d:00:4f:47:dc:46:36:66:d0:05: 78:5f:79:65:0b:81:96:b1:a7:bd:3b:96:d1:28:6f:78:c7:6a: a5:bf:69:37:75:41:b3:d6:e4:0a:08:8b:42:6b:a8:9e:1f:40: 01:66:14:a8:cd:9e:70:74:bc:5b:94:66:a7:1d:1a:a6:56:2a: 2e:ed:b9:e1:1b:80:65:f9:cc:f3:f9:f9:c4:ca:5c:8f:c6:80: 7a:73:0f:93:ce:37:d1:50:45:b2:0c:bd:64:50:ed:a7:10:fc: 6c:49:d6:b2:b8:e1:bd:a2:1a:0f:52:f7:97:b9:21:92:16:f8: 2d:65:b7:55 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzZDOEYxMTAvBgNVBAUTKDRFN0VEOTUxQzRGODlGMTFGMTk0NDY4RUE4MTU0NEQ3 MzM1RTRGNTkwHhcNMjUxMTAzMDUzNDA3WhcNMjUxMTEwMDUzNDA3WjAYMRYwFAYD VQQDEw02OTA4M2VkMC02ZmZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz9Gb2R8jVatwZ4oBlL+0tnzUbfRjv8YzgGV+2SwzCRCpi86zMxkZAulQeItR Rra8quY+fcbGEyy/TbTuOLGjFFK/WfMHjEVUeXhNl89jJmiZaSM2bBWDkoGZwZJo 73J90T1/4n4PWBtq4uexxj7/PmZNM33T+YwxkyLrXHG9/5OyIkgdtaNLVd5zbAoB N0EgXwSpehQDcdssygDM3aQoIKfIxwLkLVOK5Lyy6P28uE/FWnXCjKDI4YhweNZq 8YH4sMDsMsJnCyJ8jFE4oV8cl4mu+EYoONkRKYCFbjxSwcSjQbzr8oh8hH/Ux1ES OrxsSI+pPNdXlAgT4ZpJ9D14/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKej9CFN Gm3Bzm+9m9AKAMPM4tLMMB8GA1UdIwQYMBaAFE5+2VHE+J8R8ZRGjqgVRNczXk9Z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NkM4Ri9GMTRFRUQ5ODZC NUExMUVGQkM5OTkyNUNDNEY5QUUwMi9UbjdaVWNUNG54SHhsRWFPcUJWRTF6TmVU MWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1RuN1pVY1Q0bnhIeGxFYU9xQlZFMXpOZVQxay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NkM4Ri9GMTRFRUQ5ODZCNUExMUVGQkM5OTkyNUNDNEY5QUUwMi9UbjdaVWNUNG54 SHhsRWFPcUJWRTF6TmVUMWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBWzlq1r2TMrZ7E+05RWKA/AlXJ9dbkGZuU5nuimGRvYIrNY911yapH HERKnPTA0UKYFF9oSgGqKGn5OTwhb6VPRoWPtdPSNFkO+Lvk4GvThD5LIPmU0OqL 4eM2gudHVcztWGbCxR4ovLiFaR2rEPbv7kZKmVU/UPMvLOrZS95CMNlW9YGznE0A T0fcRjZm0AV4X3llC4GWsae9O5bRKG94x2qlv2k3dUGz1uQKCItCa6ieH0ABZhSo zZ5wdLxblGanHRqmViou7bnhG4Bl+czz+fnEylyPxoB6cw+TzjfRUEWyDL1kUO2n EPxsSdayuOG9ohoPUveXuSGSFvgtZbdV -----END CERTIFICATE-----Generated at Wed Nov 5 05:06:20 2025 by rpki-client