$ rpki-client -vvf rpki.apnic.net/member_repository/A9180D79/E18208BC6D9C11EEA02BBB0EC4F9AE02/TiH1qoySjAtnV8A-VbClkjxOSKs.mft File: TiH1qoySjAtnV8A-VbClkjxOSKs.mft (raw, json) Hash identifier: YdLqWO5DEnp/9BcNfXQHwerrGOLQuy2etm5GfjPeR/Q= Subject key identifier: 64:27:1B:07:03:1D:A0:BA:A3:6F:7E:B3:6A:29:1A:76:50:F2:D1:14 Authority key identifier: 4E:21:F5:AA:8C:92:8C:0B:67:57:C0:3E:55:B0:A5:92:3C:4E:48:AB Certificate issuer: /CN=A9180D79/serialNumber=4E21F5AA8C928C0B6757C03E55B0A5923C4E48AB Certificate serial: 018B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TiH1qoySjAtnV8A-VbClkjxOSKs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9180D79/E18208BC6D9C11EEA02BBB0EC4F9AE02/TiH1qoySjAtnV8A-VbClkjxOSKs.mft Manifest number: 0185 Signing time: Wed 05 Nov 2025 03:49:14 +0000 Manifest this update: Wed 05 Nov 2025 03:49:14 +0000 Manifest next update: Wed 12 Nov 2025 03:49:14 +0000 Files and hashes: 1: TiH1qoySjAtnV8A-VbClkjxOSKs.crl (hash: 9ZGShk8052oUr+Ag9oLq1deTN2IW7WQz3/g2ScTIzWc=) 2: E586278C29A111F0BA1F4E63C4F9AE02.roa (hash: iMx1ZiX9rWmGz4A0kr/IlO0X/88Oa+zlLaNS0YVQidY=) 3: F97DB5F229A111F090BC8163C4F9AE02.roa (hash: qSTrfN/t5DWRs97KV7DGaW2piIfbl9N9+lJsbDORhpA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9180D79/E18208BC6D9C11EEA02BBB0EC4F9AE02/TiH1qoySjAtnV8A-VbClkjxOSKs.crl rsync://rpki.apnic.net/member_repository/A9180D79/E18208BC6D9C11EEA02BBB0EC4F9AE02/TiH1qoySjAtnV8A-VbClkjxOSKs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TiH1qoySjAtnV8A-VbClkjxOSKs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 03:49:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 395 (0x18b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9180D79, serialNumber=4E21F5AA8C928C0B6757C03E55B0A5923C4E48AB Validity Not Before: Nov 5 03:49:14 2025 GMT Not After : Nov 12 03:49:14 2025 GMT Subject: CN=690ac93a-e30c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:3a:24:f5:11:5b:37:2b:12:d5:4a:dc:06:4e: a5:5a:25:30:e6:43:e9:f6:9d:1d:f8:49:ff:a5:f9: 9e:4e:10:eb:82:a4:f6:a7:ee:17:c8:6b:9d:08:3c: b6:79:f7:4a:f0:ad:61:da:42:f9:6d:94:ef:49:06: 91:2b:ab:e8:f1:96:88:1e:6d:05:25:09:1b:2e:61: 9d:4e:62:db:dc:0f:20:04:20:47:8d:2d:f2:67:be: 2a:1d:0b:ef:e0:31:ec:74:07:b7:82:70:93:3e:08: a5:4a:3b:a1:de:75:9f:59:da:28:ed:32:06:6b:44: e7:1d:12:c0:d6:bb:44:8a:4a:87:26:d2:50:8b:fd: 44:14:da:2d:b1:a2:92:4b:e4:d1:ee:70:59:14:43: ec:f5:57:48:4f:da:3b:f7:6f:72:97:b5:b2:e2:9f: ef:d1:57:95:57:1e:dd:7e:65:d7:e4:b7:e1:37:14: 1f:46:cd:81:dc:99:74:45:56:22:32:26:68:e5:2b: af:a6:28:2d:0a:9a:62:df:f0:28:4c:40:ad:f9:47: 9b:5d:b6:21:73:e4:35:bf:df:3e:1b:e5:31:e1:7b: af:a5:2a:db:6b:0e:35:cb:a3:2c:4e:85:aa:93:ae: 5d:56:af:35:36:3c:a2:0d:6e:b3:b2:43:b7:df:ff: 23:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:27:1B:07:03:1D:A0:BA:A3:6F:7E:B3:6A:29:1A:76:50:F2:D1:14 X509v3 Authority Key Identifier: keyid:4E:21:F5:AA:8C:92:8C:0B:67:57:C0:3E:55:B0:A5:92:3C:4E:48:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9180D79/E18208BC6D9C11EEA02BBB0EC4F9AE02/TiH1qoySjAtnV8A-VbClkjxOSKs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TiH1qoySjAtnV8A-VbClkjxOSKs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9180D79/E18208BC6D9C11EEA02BBB0EC4F9AE02/TiH1qoySjAtnV8A-VbClkjxOSKs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8a:a6:27:b0:3d:dd:9f:c8:9d:bb:96:8c:86:e8:d2:44:b1:ad: c0:10:22:bc:a1:45:b1:1c:76:a7:7a:d7:76:b7:8f:7b:ed:3a: 2d:e0:a8:00:1f:c5:ff:f8:81:ea:df:07:f9:0b:64:c2:a3:6b: fc:ca:d2:b3:6a:92:8c:e9:2b:3d:c6:fb:3c:2c:ce:c7:bb:a5: 98:91:ed:9e:80:61:c9:07:6f:03:d9:3a:cf:55:56:54:b2:a9: 60:76:28:57:ad:29:68:46:b4:0b:b1:ab:02:7f:a6:8c:13:44: c2:d1:72:ce:76:33:96:cb:4a:71:86:32:3e:00:f9:b9:27:93: 26:5a:80:f8:7e:89:51:b5:93:45:49:1c:d2:99:79:33:7b:67: 47:d8:a2:c9:69:45:f8:03:7e:63:2c:c6:bf:da:1b:85:2a:4c: 0f:04:d0:2c:f3:99:94:78:81:6f:9b:0a:fd:ad:b7:b7:85:32: 1b:9e:9d:da:fb:a4:d1:ae:e2:e5:4a:0d:e7:64:eb:86:45:93: 2b:81:07:9d:06:87:13:2a:eb:e3:dd:59:55:01:0c:ad:16:9e: 95:75:df:37:1b:0d:cf:88:f4:53:e3:d1:68:6b:c6:ea:a5:aa: df:80:29:7a:c3:76:fa:24:a4:5d:f4:78:0e:be:3e:01:89:40: db:f2:8c:48 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAYswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODBENzkxMTAvBgNVBAUTKDRFMjFGNUFBOEM5MjhDMEI2NzU3QzAzRTU1QjBBNTky M0M0RTQ4QUIwHhcNMjUxMTA1MDM0OTE0WhcNMjUxMTEyMDM0OTE0WjAYMRYwFAYD VQQDEw02OTBhYzkzYS1lMzBjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3Dok9RFbNysS1UrcBk6lWiUw5kPp9p0d+En/pfmeThDrgqT2p+4XyGudCDy2 efdK8K1h2kL5bZTvSQaRK6vo8ZaIHm0FJQkbLmGdTmLb3A8gBCBHjS3yZ74qHQvv 4DHsdAe3gnCTPgilSjuh3nWfWdoo7TIGa0TnHRLA1rtEikqHJtJQi/1EFNotsaKS S+TR7nBZFEPs9VdIT9o7929yl7Wy4p/v0VeVVx7dfmXX5LfhNxQfRs2B3Jl0RVYi MiZo5SuvpigtCppi3/AoTECt+UebXbYhc+Q1v98+G+Ux4XuvpSrbaw41y6MsToWq k65dVq81NjyiDW6zskO33/8jeQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGQnGwcD HaC6o29+s2opGnZQ8tEUMB8GA1UdIwQYMBaAFE4h9aqMkowLZ1fAPlWwpZI8Tkir MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MEQ3OS9FMTgyMDhCQzZE OUMxMUVFQTAyQkJCMEVDNEY5QUUwMi9UaUgxcW95U2pBdG5WOEEtVmJDbGtqeE9T S3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RpSDFxb3lTakF0blY4QS1WYkNsa2p4T1NLcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MEQ3OS9FMTgyMDhCQzZEOUMxMUVFQTAyQkJCMEVDNEY5QUUwMi9UaUgxcW95U2pB dG5WOEEtVmJDbGtqeE9TS3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCKpiewPd2fyJ27loyG6NJEsa3AECK8oUWxHHanetd2t4977Tot4KgA H8X/+IHq3wf5C2TCo2v8ytKzapKM6Ss9xvs8LM7Hu6WYke2egGHJB28D2TrPVVZU sqlgdihXrSloRrQLsasCf6aME0TC0XLOdjOWy0pxhjI+APm5J5MmWoD4folRtZNF SRzSmXkze2dH2KLJaUX4A35jLMa/2huFKkwPBNAs85mUeIFvmwr9rbe3hTIbnp3a +6TRruLlSg3nZOuGRZMrgQedBocTKuvj3VlVAQytFp6Vdd83Gw3PiPRT49Foa8bq parfgCl6w3b6JKRd9HgOvj4BiUDb8oxI -----END CERTIFICATE-----Generated at Wed Nov 5 19:23:16 2025 by rpki-client