$ rpki-client -vvf rpki.apnic.net/member_repository/A9186249/98726D6ED17011EEA6151C4DC4F9AE02/TfrxJZm8ip9x2mCrOSDgofQBWOU.mft File: TfrxJZm8ip9x2mCrOSDgofQBWOU.mft (raw, json) Hash identifier: e63IiO69GViRcGq4Q8nxzswAkNQ4eJULP3OXKgE5lWs= Subject key identifier: FA:EF:45:2C:2E:A8:EC:DA:56:F0:51:AC:C3:15:D1:75:D4:8C:04:C1 Authority key identifier: 4D:FA:F1:25:99:BC:8A:9F:71:DA:60:AB:39:20:E0:A1:F4:01:58:E5 Certificate issuer: /CN=A9186249/serialNumber=4DFAF12599BC8A9F71DA60AB3920E0A1F40158E5 Certificate serial: 0146 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TfrxJZm8ip9x2mCrOSDgofQBWOU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9186249/98726D6ED17011EEA6151C4DC4F9AE02/TfrxJZm8ip9x2mCrOSDgofQBWOU.mft Manifest number: 0142 Signing time: Mon 03 Nov 2025 04:26:04 +0000 Manifest this update: Mon 03 Nov 2025 04:26:03 +0000 Manifest next update: Mon 10 Nov 2025 04:26:03 +0000 Files and hashes: 1: TfrxJZm8ip9x2mCrOSDgofQBWOU.crl (hash: Yz29muAkEkygjMprDVi3XAvdhmC2E4u+1kprERpFXyk=) 2: E7780BD6D17411EE87F7325DC4F9AE02.roa (hash: 2EzfaEZcvEqdfL3o4m+mh66hiNoNCrlQkH2IaWK10g8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9186249/98726D6ED17011EEA6151C4DC4F9AE02/TfrxJZm8ip9x2mCrOSDgofQBWOU.crl rsync://rpki.apnic.net/member_repository/A9186249/98726D6ED17011EEA6151C4DC4F9AE02/TfrxJZm8ip9x2mCrOSDgofQBWOU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TfrxJZm8ip9x2mCrOSDgofQBWOU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 04:26:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 326 (0x146) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9186249, serialNumber=4DFAF12599BC8A9F71DA60AB3920E0A1F40158E5 Validity Not Before: Nov 3 04:26:03 2025 GMT Not After : Nov 10 04:26:03 2025 GMT Subject: CN=69082edc-1bb0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:dc:75:49:3e:32:1a:a2:f3:22:11:52:2c:1b: 00:7d:b5:19:8b:0a:4b:c6:8e:79:1b:5c:4f:b5:f2: 8d:c5:de:cd:8a:d3:0c:23:d1:f6:37:ce:77:45:26: b3:d1:14:ad:bb:77:ed:37:9f:f2:c0:ae:73:ec:a3: b0:90:fd:43:23:ff:30:f0:98:a7:1b:bd:11:04:52: da:90:91:f4:3b:37:b9:16:92:36:84:92:9b:66:a4: de:69:14:97:f8:1f:4f:bd:71:42:cb:69:4c:8b:05: ce:e7:8d:a1:b0:dc:77:7a:6b:7d:47:e3:ce:be:fc: 73:c3:a5:22:8f:6b:11:18:11:24:b3:b0:4b:78:bc: ad:30:7e:37:15:a0:e5:a0:c7:25:2e:8a:87:d9:0f: d9:8b:8e:5f:2e:d6:69:97:5f:15:41:71:82:c1:47: 7f:1c:ec:16:ed:a0:1e:77:67:9a:89:e7:dc:ba:e1: ee:02:59:d6:d9:bf:94:ed:45:a0:50:5a:d4:e5:e4: ba:c7:6e:b0:a6:97:a3:9b:52:b9:10:58:d5:28:ec: 70:69:8f:ca:d5:3b:9a:88:38:de:4b:16:3e:30:ca: 52:ff:f9:cc:b5:ac:f2:f6:b0:88:fc:93:63:f5:69: a7:2b:7d:88:ea:79:54:9c:aa:29:54:5d:86:7b:8a: 31:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:EF:45:2C:2E:A8:EC:DA:56:F0:51:AC:C3:15:D1:75:D4:8C:04:C1 X509v3 Authority Key Identifier: keyid:4D:FA:F1:25:99:BC:8A:9F:71:DA:60:AB:39:20:E0:A1:F4:01:58:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9186249/98726D6ED17011EEA6151C4DC4F9AE02/TfrxJZm8ip9x2mCrOSDgofQBWOU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TfrxJZm8ip9x2mCrOSDgofQBWOU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9186249/98726D6ED17011EEA6151C4DC4F9AE02/TfrxJZm8ip9x2mCrOSDgofQBWOU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 07:21:97:32:1b:21:ab:ec:09:26:c7:87:1a:12:1c:e5:f0:f7: 0b:67:57:ca:0f:2a:de:5e:f7:39:04:27:b4:4e:e1:22:59:b2: bd:c0:06:66:10:58:36:43:64:05:5f:10:14:84:ec:2e:75:33: ca:b5:99:8a:c7:a5:10:7e:17:56:91:5c:e0:10:ec:8f:03:0f: 4b:11:52:59:d8:81:1e:9e:d6:a6:c8:2a:9b:a9:e8:b4:74:28: 0d:4b:81:b1:90:32:12:be:ab:ed:e5:3d:23:12:83:f1:39:1e: 9e:e3:07:53:fa:f4:ed:87:9f:75:70:b3:38:59:1e:b9:ae:e4: d3:b3:c6:a9:c5:9e:e7:77:75:a2:c7:13:1e:dd:0d:dc:90:3a: d6:9a:e1:8f:07:cf:ca:49:ec:6a:a4:8a:8f:d5:54:b8:65:5b: c9:f8:ee:c4:51:54:3c:da:ab:e9:68:51:bb:4a:5a:2b:10:6d: 91:56:92:6a:56:2b:1a:d9:18:9f:e9:8e:46:2a:98:ff:7f:82: c0:b9:bb:d2:b1:11:0f:9c:58:7e:57:2b:b9:23:c5:f1:8c:4f: f8:06:f1:97:e2:49:67:6a:11:14:19:97:cb:79:07:bd:8f:2c: ca:5b:ea:9f:ee:3a:fd:1c:c3:d5:f9:a7:14:38:36:4e:52:a3: 13:c3:a2:55 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODYyNDkxMTAvBgNVBAUTKDRERkFGMTI1OTlCQzhBOUY3MURBNjBBQjM5MjBFMEEx RjQwMTU4RTUwHhcNMjUxMTAzMDQyNjAzWhcNMjUxMTEwMDQyNjAzWjAYMRYwFAYD VQQDEw02OTA4MmVkYy0xYmIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq9x1ST4yGqLzIhFSLBsAfbUZiwpLxo55G1xPtfKNxd7NitMMI9H2N853RSaz 0RStu3ftN5/ywK5z7KOwkP1DI/8w8JinG70RBFLakJH0Oze5FpI2hJKbZqTeaRSX +B9PvXFCy2lMiwXO542hsNx3emt9R+POvvxzw6Uij2sRGBEks7BLeLytMH43FaDl oMclLoqH2Q/Zi45fLtZpl18VQXGCwUd/HOwW7aAed2eaiefcuuHuAlnW2b+U7UWg UFrU5eS6x26wppejm1K5EFjVKOxwaY/K1TuaiDjeSxY+MMpS//nMtazy9rCI/JNj 9WmnK32I6nlUnKopVF2Ge4oxLQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPrvRSwu qOzaVvBRrMMV0XXUjATBMB8GA1UdIwQYMBaAFE368SWZvIqfcdpgqzkg4KH0AVjl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NjI0OS85ODcyNkQ2RUQx NzAxMUVFQTYxNTFDNERDNEY5QUUwMi9UZnJ4SlptOGlwOXgybUNyT1NEZ29mUUJX T1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1RmcnhKWm04aXA5eDJtQ3JPU0Rnb2ZRQldPVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NjI0OS85ODcyNkQ2RUQxNzAxMUVFQTYxNTFDNERDNEY5QUUwMi9UZnJ4SlptOGlw OXgybUNyT1NEZ29mUUJXT1UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAHIZcyGyGr7Akmx4caEhzl8PcLZ1fKDyreXvc5BCe0TuEiWbK9wAZm EFg2Q2QFXxAUhOwudTPKtZmKx6UQfhdWkVzgEOyPAw9LEVJZ2IEentamyCqbqei0 dCgNS4GxkDISvqvt5T0jEoPxOR6e4wdT+vTth591cLM4WR65ruTTs8apxZ7nd3Wi xxMe3Q3ckDrWmuGPB8/KSexqpIqP1VS4ZVvJ+O7EUVQ82qvpaFG7SlorEG2RVpJq Visa2Rif6Y5GKpj/f4LAubvSsREPnFh+Vyu5I8XxjE/4BvGX4klnahEUGZfLeQe9 jyzKW+qf7jr9HMPV+acUODZOUqMTw6JV -----END CERTIFICATE-----Generated at Wed Nov 5 02:17:40 2025 by rpki-client