$ rpki-client -vvf rpki.apnic.net/member_repository/A9198D95/48ED296AE06511EEB35F421EC4F9AE02/_tgXL4qVo1IC1RxvdfqUfehE9M0.mft File: _tgXL4qVo1IC1RxvdfqUfehE9M0.mft (raw, json) Hash identifier: BX27MzB1/Ygj/12YuSE+GXCO0MjHVFhglH6lk9jrhwY= Subject key identifier: 14:17:F1:78:80:A2:9B:56:55:0B:2E:9B:BF:92:12:66:81:BA:15:D8 Authority key identifier: FE:D8:17:2F:8A:95:A3:52:02:D5:1C:6F:75:FA:94:7D:E8:44:F4:CD Certificate issuer: /CN=A9198D95/serialNumber=FED8172F8A95A35202D51C6F75FA947DE844F4CD Certificate serial: 0137 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_tgXL4qVo1IC1RxvdfqUfehE9M0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9198D95/48ED296AE06511EEB35F421EC4F9AE02/_tgXL4qVo1IC1RxvdfqUfehE9M0.mft Manifest number: 0134 Signing time: Mon 03 Nov 2025 04:30:37 +0000 Manifest this update: Mon 03 Nov 2025 04:30:37 +0000 Manifest next update: Mon 10 Nov 2025 04:30:36 +0000 Files and hashes: 1: _tgXL4qVo1IC1RxvdfqUfehE9M0.crl (hash: Ris+5Rv2big8UUxjrPE+pbiHk1KhB/hgW6B9mfJTcQM=) 2: 994A883AE06511EEA8CEC61EC4F9AE02.roa (hash: VIkL73Ao9GMOlF5higO2xRTxCND3iZkpVBfNLk5tPMM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9198D95/48ED296AE06511EEB35F421EC4F9AE02/_tgXL4qVo1IC1RxvdfqUfehE9M0.crl rsync://rpki.apnic.net/member_repository/A9198D95/48ED296AE06511EEB35F421EC4F9AE02/_tgXL4qVo1IC1RxvdfqUfehE9M0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_tgXL4qVo1IC1RxvdfqUfehE9M0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 04:30:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 311 (0x137) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9198D95, serialNumber=FED8172F8A95A35202D51C6F75FA947DE844F4CD Validity Not Before: Nov 3 04:30:37 2025 GMT Not After : Nov 10 04:30:36 2025 GMT Subject: CN=69082fed-617c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:e3:0f:b5:ae:f8:be:7c:f3:e1:23:83:9e:c6: 5d:8e:68:d8:49:21:86:9d:39:58:bc:9f:f0:96:7d: be:21:1a:52:92:d5:f6:4e:c8:48:19:17:5c:e6:8b: f9:8b:78:bf:c3:60:ae:1b:df:5b:a3:e1:37:98:b4: c9:44:33:f5:6e:45:27:9f:8f:d8:d8:db:8d:c3:20: 2c:fd:ea:e2:a1:b5:b0:e5:1d:0a:45:a3:78:9c:0f: 56:81:54:10:cb:57:8c:39:4e:b1:b2:e4:a0:9e:6f: f6:a1:34:53:0d:33:b7:52:b4:b9:c3:31:3d:65:ea: 4d:e5:a4:e0:89:f2:b9:dd:90:68:c9:e7:0b:ba:52: a0:9b:45:b6:de:f5:da:95:a9:fa:94:c9:67:82:72: 3a:2a:b1:10:d4:f7:92:cd:0c:95:38:59:00:76:85: a0:05:3a:b6:94:f7:0b:47:fc:a9:40:83:1b:4c:e3: ae:34:35:90:c3:29:07:2b:01:c3:c4:fd:bd:56:e0: 9d:3e:f7:49:f9:0d:54:d1:a2:7e:bb:08:e6:e3:12: e9:f1:70:41:60:57:ec:e6:46:f1:c9:46:b3:29:55: ac:00:97:1e:1e:78:90:d2:7f:0c:ba:14:ed:a6:a6: 5f:6b:94:a5:e9:e1:12:54:7a:bc:ee:f6:8d:e1:e3: 53:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:17:F1:78:80:A2:9B:56:55:0B:2E:9B:BF:92:12:66:81:BA:15:D8 X509v3 Authority Key Identifier: keyid:FE:D8:17:2F:8A:95:A3:52:02:D5:1C:6F:75:FA:94:7D:E8:44:F4:CD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9198D95/48ED296AE06511EEB35F421EC4F9AE02/_tgXL4qVo1IC1RxvdfqUfehE9M0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_tgXL4qVo1IC1RxvdfqUfehE9M0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9198D95/48ED296AE06511EEB35F421EC4F9AE02/_tgXL4qVo1IC1RxvdfqUfehE9M0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 30:03:eb:5c:d6:5e:49:1f:0e:80:dd:18:c4:7e:c5:4c:67:a6: 79:c2:bd:1e:9a:5a:54:de:e1:cd:71:9f:f2:a8:f9:f0:30:6b: 09:55:03:1e:e1:ad:ff:7b:91:a9:b1:0c:c4:9c:4c:5d:94:60: 0a:71:53:5d:c4:74:35:d2:a8:80:4c:10:75:73:9b:35:20:fb: 47:d9:57:e6:7b:fc:cb:44:69:2f:d6:2b:32:a4:23:c6:0e:f9: 8d:59:76:44:ce:92:1d:44:3b:4f:9e:4c:1a:55:24:48:7b:a7: 4e:b4:9a:dc:b9:4d:75:4c:96:33:60:44:e4:cf:0d:ac:53:24: ed:bc:95:9b:87:ba:a8:25:d8:59:f7:96:1f:7b:8f:70:48:41: d1:c9:7f:a9:e4:d4:3a:91:58:a2:02:32:3f:cd:ac:a2:43:b2: ea:3a:7c:6f:ba:4d:7b:14:20:a7:1c:82:cc:4e:84:a7:9b:e9: 95:16:14:24:29:12:c8:ca:5b:e5:f4:97:b9:58:d0:25:0a:1a: 3f:46:a2:1a:60:e6:6c:37:50:d7:53:ea:02:1d:19:ad:3b:d5: 45:d1:34:52:12:55:5e:3b:69:5a:26:d2:82:40:fe:d5:e1:d5: 5c:da:c5:ce:b5:79:d0:66:9b:49:12:9c:bb:0f:24:bd:55:0e: a7:63:3f:7f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OThEOTUxMTAvBgNVBAUTKEZFRDgxNzJGOEE5NUEzNTIwMkQ1MUM2Rjc1RkE5NDdE RTg0NEY0Q0QwHhcNMjUxMTAzMDQzMDM3WhcNMjUxMTEwMDQzMDM2WjAYMRYwFAYD VQQDEw02OTA4MmZlZC02MTdjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsOMPta74vnzz4SODnsZdjmjYSSGGnTlYvJ/wln2+IRpSktX2TshIGRdc5ov5 i3i/w2CuG99bo+E3mLTJRDP1bkUnn4/Y2NuNwyAs/eriobWw5R0KRaN4nA9WgVQQ y1eMOU6xsuSgnm/2oTRTDTO3UrS5wzE9ZepN5aTgifK53ZBoyecLulKgm0W23vXa lan6lMlngnI6KrEQ1PeSzQyVOFkAdoWgBTq2lPcLR/ypQIMbTOOuNDWQwykHKwHD xP29VuCdPvdJ+Q1U0aJ+uwjm4xLp8XBBYFfs5kbxyUazKVWsAJceHniQ0n8MuhTt pqZfa5Sl6eESVHq87vaN4eNTjQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBQX8XiA optWVQsum7+SEmaBuhXYMB8GA1UdIwQYMBaAFP7YFy+KlaNSAtUcb3X6lH3oRPTN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OEQ5NS80OEVEMjk2QUUw NjUxMUVFQjM1RjQyMUVDNEY5QUUwMi9fdGdYTDRxVm8xSUMxUnh2ZGZxVWZlaEU5 TTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL190Z1hMNHFWbzFJQzFSeHZkZnFVZmVoRTlNMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OEQ5NS80OEVEMjk2QUUwNjUxMUVFQjM1RjQyMUVDNEY5QUUwMi9fdGdYTDRxVm8x SUMxUnh2ZGZxVWZlaEU5TTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAwA+tc1l5JHw6A3RjEfsVMZ6Z5wr0emlpU3uHNcZ/yqPnwMGsJVQMe 4a3/e5GpsQzEnExdlGAKcVNdxHQ10qiATBB1c5s1IPtH2Vfme/zLRGkv1isypCPG DvmNWXZEzpIdRDtPnkwaVSRIe6dOtJrcuU11TJYzYETkzw2sUyTtvJWbh7qoJdhZ 95Yfe49wSEHRyX+p5NQ6kViiAjI/zayiQ7LqOnxvuk17FCCnHILMToSnm+mVFhQk KRLIylvl9Je5WNAlCho/RqIaYOZsN1DXU+oCHRmtO9VF0TRSElVeO2laJtKCQP7V 4dVc2sXOtXnQZptJEpy7DyS9VQ6nYz9/ -----END CERTIFICATE-----Generated at Tue Nov 4 21:37:18 2025 by rpki-client