$ rpki-client -vvf rpki.apnic.net/member_repository/A9188D2D/A0682A048FF911EDABEC2537C4F9AE02/tYgfusqd6_Rspghj0pd8U_3WwZA.mft File: tYgfusqd6_Rspghj0pd8U_3WwZA.mft (raw, json) Hash identifier: wFiwk1MB6uQa48NVu8f/Me6QCVQgMa//NeTu3zGVVXI= Subject key identifier: B7:C5:67:02:FA:A6:F1:F1:10:E4:FA:B1:79:DD:78:2E:C1:0C:15:61 Authority key identifier: B5:88:1F:BA:CA:9D:EB:F4:6C:A6:08:63:D2:97:7C:53:FD:D6:C1:90 Certificate issuer: /CN=A9188D2D/serialNumber=B5881FBACA9DEBF46CA60863D2977C53FDD6C190 Certificate serial: 0213 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tYgfusqd6_Rspghj0pd8U_3WwZA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9188D2D/A0682A048FF911EDABEC2537C4F9AE02/tYgfusqd6_Rspghj0pd8U_3WwZA.mft Manifest number: 020D Signing time: Wed 05 Nov 2025 02:22:38 +0000 Manifest this update: Wed 05 Nov 2025 02:22:37 +0000 Manifest next update: Wed 12 Nov 2025 02:22:37 +0000 Files and hashes: 1: tYgfusqd6_Rspghj0pd8U_3WwZA.crl (hash: Jw8Q1HR2X6ApkTpqmxtwmwxCt3BADue9uvWb5Nnu12I=) 2: D9D943568FFC11ED9776CB38C4F9AE02.roa (hash: CAQTwJ95TZU81HKb4Y7lVQbfnRcyYnVzCOwyM749MwA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9188D2D/A0682A048FF911EDABEC2537C4F9AE02/tYgfusqd6_Rspghj0pd8U_3WwZA.crl rsync://rpki.apnic.net/member_repository/A9188D2D/A0682A048FF911EDABEC2537C4F9AE02/tYgfusqd6_Rspghj0pd8U_3WwZA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tYgfusqd6_Rspghj0pd8U_3WwZA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 02:22:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 531 (0x213) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9188D2D, serialNumber=B5881FBACA9DEBF46CA60863D2977C53FDD6C190 Validity Not Before: Nov 5 02:22:37 2025 GMT Not After : Nov 12 02:22:37 2025 GMT Subject: CN=690ab4ed-1985 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:d0:e1:8d:07:f6:34:6a:82:4f:03:33:37:42: b8:58:34:d7:7d:e4:84:3c:b3:3f:c3:e3:91:29:4b: 8e:8a:7d:0e:45:45:a1:75:7d:5b:75:c9:50:fc:22: 80:2e:1d:48:0e:66:41:b6:cb:96:f1:ff:07:b6:8d: 06:ee:75:ea:b7:b3:98:b3:a5:29:a3:27:8b:33:aa: 4d:2a:de:8c:b8:0e:d4:dd:c7:01:65:16:bb:f7:e0: 93:64:e9:95:b0:5a:ae:b2:49:5e:42:24:63:0e:7b: 36:25:c5:c8:97:fc:35:0e:c7:3b:30:76:de:58:0a: e3:fe:38:34:ee:56:ec:68:76:6d:77:28:e8:c6:e8: 86:a1:4f:ec:f0:71:90:ba:19:92:95:c3:ed:d7:5a: a3:5e:ce:85:72:40:ea:3e:60:8e:a0:d0:34:4f:54: c6:26:91:dc:99:9f:41:45:54:63:bd:fb:9b:d1:90: 51:74:78:5b:47:69:57:65:73:8f:2e:5b:39:6e:d7: 70:4c:bc:bb:56:00:c7:5c:33:a1:d2:62:5e:f5:68: 00:f0:ff:b7:d7:f1:d9:f5:80:f9:e3:bf:20:03:78: 55:ee:ae:bc:cb:19:aa:e5:1a:f0:89:18:ca:44:95: 62:fc:56:d5:2b:e1:4a:cb:94:68:18:5b:5b:bb:ed: ed:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:C5:67:02:FA:A6:F1:F1:10:E4:FA:B1:79:DD:78:2E:C1:0C:15:61 X509v3 Authority Key Identifier: keyid:B5:88:1F:BA:CA:9D:EB:F4:6C:A6:08:63:D2:97:7C:53:FD:D6:C1:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9188D2D/A0682A048FF911EDABEC2537C4F9AE02/tYgfusqd6_Rspghj0pd8U_3WwZA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tYgfusqd6_Rspghj0pd8U_3WwZA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9188D2D/A0682A048FF911EDABEC2537C4F9AE02/tYgfusqd6_Rspghj0pd8U_3WwZA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2d:7c:54:73:60:64:91:63:66:ff:d1:07:de:e8:c3:49:2c:68: c4:f5:d6:d6:78:47:33:6a:4b:7d:f9:99:19:a8:49:e2:a7:08: 25:89:91:8a:83:d1:6f:13:cf:23:1e:37:ce:db:79:aa:28:86: 77:4b:89:f8:d0:ca:fa:a5:14:aa:2a:d0:04:d1:9d:8f:df:0b: bd:21:5e:8a:45:71:09:86:45:44:b9:2b:58:2d:9a:b3:c1:84: 15:8b:bd:f0:5c:cb:52:7f:db:8f:a6:6c:8e:85:ab:1a:5b:33: 7b:3e:1e:66:5c:0d:6e:a6:85:69:d9:09:23:6d:44:56:b1:47: 99:34:e1:00:0e:65:25:6f:d3:c9:6f:58:f1:36:c1:97:24:6c: 79:00:43:00:7a:6f:9e:23:b9:0e:cb:92:0a:a2:0c:79:c0:81: 4f:c1:a1:90:5a:68:8f:a7:12:7e:e1:6b:8f:4b:20:75:b5:8f: ac:30:f0:f7:00:2c:54:7f:c2:05:a4:24:c8:6e:b7:2e:4e:00: 03:1e:70:44:17:b4:a3:45:31:84:90:89:34:e3:08:65:de:b5: b9:4e:d8:6a:fb:4d:af:a2:9a:d5:b2:1e:a2:a8:4b:9e:88:b8: 9f:3b:e7:92:6f:b7:1a:4c:30:51:a8:9b:22:0d:14:9a:99:04: 91:88:61:b5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAhMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODhEMkQxMTAvBgNVBAUTKEI1ODgxRkJBQ0E5REVCRjQ2Q0E2MDg2M0QyOTc3QzUz RkRENkMxOTAwHhcNMjUxMTA1MDIyMjM3WhcNMjUxMTEyMDIyMjM3WjAYMRYwFAYD VQQDEw02OTBhYjRlZC0xOTg1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA69DhjQf2NGqCTwMzN0K4WDTXfeSEPLM/w+ORKUuOin0ORUWhdX1bdclQ/CKA Lh1IDmZBtsuW8f8Hto0G7nXqt7OYs6UpoyeLM6pNKt6MuA7U3ccBZRa79+CTZOmV sFquskleQiRjDns2JcXIl/w1Dsc7MHbeWArj/jg07lbsaHZtdyjoxuiGoU/s8HGQ uhmSlcPt11qjXs6FckDqPmCOoNA0T1TGJpHcmZ9BRVRjvfub0ZBRdHhbR2lXZXOP Lls5btdwTLy7VgDHXDOh0mJe9WgA8P+31/HZ9YD5478gA3hV7q68yxmq5RrwiRjK RJVi/FbVK+FKy5RoGFtbu+3tfwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLfFZwL6 pvHxEOT6sXndeC7BDBVhMB8GA1UdIwQYMBaAFLWIH7rKnev0bKYIY9KXfFP91sGQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4OEQyRC9BMDY4MkEwNDhG RjkxMUVEQUJFQzI1MzdDNEY5QUUwMi90WWdmdXNxZDZfUnNwZ2hqMHBkOFVfM1d3 WkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RZZ2Z1c3FkNl9Sc3BnaGowcGQ4VV8zV3daQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 OEQyRC9BMDY4MkEwNDhGRjkxMUVEQUJFQzI1MzdDNEY5QUUwMi90WWdmdXNxZDZf UnNwZ2hqMHBkOFVfM1d3WkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAtfFRzYGSRY2b/0Qfe6MNJLGjE9dbWeEczakt9+ZkZqEnipwgliZGK g9FvE88jHjfO23mqKIZ3S4n40Mr6pRSqKtAE0Z2P3wu9IV6KRXEJhkVEuStYLZqz wYQVi73wXMtSf9uPpmyOhasaWzN7Ph5mXA1upoVp2QkjbURWsUeZNOEADmUlb9PJ b1jxNsGXJGx5AEMAem+eI7kOy5IKogx5wIFPwaGQWmiPpxJ+4WuPSyB1tY+sMPD3 ACxUf8IFpCTIbrcuTgADHnBEF7SjRTGEkIk04whl3rW5Tthq+02voprVsh6iqEue iLifO+eSb7caTDBRqJsiDRSamQSRiGG1 -----END CERTIFICATE-----Generated at Wed Nov 5 05:47:33 2025 by rpki-client