$ rpki-client -vvf rpki.apnic.net/member_repository/A9126F2B/90FADEECD5CD11E5AA426E40C4F9AE02/4YL5k2lSxCadZw2ldS3syGgjTxs.mft File: 4YL5k2lSxCadZw2ldS3syGgjTxs.mft (raw, json) Hash identifier: 7xpDni8HcadXsEribvS3vapbE2xS02uT79ySJNpxtJo= Subject key identifier: D0:29:57:6C:04:B8:98:F9:01:C1:DF:3A:69:74:1C:91:A8:1C:2D:E5 Authority key identifier: E1:82:F9:93:69:52:C4:26:9D:67:0D:A5:75:2D:EC:C8:68:23:4F:1B Certificate issuer: /CN=A9126F2B/serialNumber=E182F9936952C4269D670DA5752DECC868234F1B Certificate serial: 2216 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4YL5k2lSxCadZw2ldS3syGgjTxs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9126F2B/90FADEECD5CD11E5AA426E40C4F9AE02/4YL5k2lSxCadZw2ldS3syGgjTxs.mft Manifest number: 21F5 Signing time: Mon 20 Oct 2025 16:06:41 +0000 Manifest this update: Mon 20 Oct 2025 16:06:40 +0000 Manifest next update: Mon 27 Oct 2025 16:06:40 +0000 Files and hashes: 1: 4YL5k2lSxCadZw2ldS3syGgjTxs.crl (hash: pABXExjs37JzgNXDgzmKPuDthu+yyb8e3Azs1jZeuNs=) 2: B72206B4554B11E791BA5861C4F9AE02.roa (hash: Si+Xx28szHe9Iv7W1YtcZoNp90VlP5RP91wUGl6kx/U=) 3: A8E9DE704B8511E7BF406610C4F9AE02.roa (hash: nu+MmRVMelFZBsdSEFhVpeJliAcHe14e7veTklAJkjc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9126F2B/90FADEECD5CD11E5AA426E40C4F9AE02/4YL5k2lSxCadZw2ldS3syGgjTxs.crl rsync://rpki.apnic.net/member_repository/A9126F2B/90FADEECD5CD11E5AA426E40C4F9AE02/4YL5k2lSxCadZw2ldS3syGgjTxs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4YL5k2lSxCadZw2ldS3syGgjTxs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Oct 2025 16:06:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8726 (0x2216) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9126F2B, serialNumber=E182F9936952C4269D670DA5752DECC868234F1B Validity Not Before: Oct 20 16:06:40 2025 GMT Not After : Oct 27 16:06:40 2025 GMT Subject: CN=68f65e11-755c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:55:49:2b:cc:da:d0:e7:a0:19:d9:d0:35:e7: 7e:c6:72:51:15:a6:cb:17:c6:c8:77:1f:4b:75:60: 52:52:10:53:b1:35:3f:0b:90:7d:cc:9b:2b:e4:40: 4d:2e:c7:32:9f:25:39:f7:f2:2e:7d:c2:a6:cf:c3: 59:27:d9:62:92:c6:c4:b2:e7:c0:3e:e8:06:d7:9a: cd:a8:4e:6c:a6:64:40:58:e2:54:86:4f:34:7b:8e: ff:b0:cf:05:a2:2b:5d:d2:26:d8:94:c3:61:a2:f0: 7b:24:b1:eb:aa:ed:d9:5f:da:0e:f7:95:7c:04:9c: ce:5c:b5:7b:e9:bc:93:77:53:01:0d:44:ab:42:12: d2:2f:be:69:7d:9c:69:6e:4d:45:4b:69:70:b0:c9: 72:da:78:af:c5:37:61:64:c8:fd:66:2d:47:93:f6: 23:92:25:4f:95:77:e4:9e:68:91:77:59:06:0f:60: fa:85:45:fc:6d:1e:39:3c:7c:62:25:9f:26:aa:56: cf:e4:6b:12:9d:bd:cf:e7:b1:7f:7f:22:2b:46:3e: 2b:22:e3:0c:3e:ac:ba:c1:f6:07:bd:3a:9c:9f:e5: b5:cd:4b:8e:63:a0:0a:18:62:55:fa:cb:1f:7a:2b: 30:8c:6d:3b:5c:57:84:5a:1f:f7:c6:ad:62:ff:47: a6:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:29:57:6C:04:B8:98:F9:01:C1:DF:3A:69:74:1C:91:A8:1C:2D:E5 X509v3 Authority Key Identifier: keyid:E1:82:F9:93:69:52:C4:26:9D:67:0D:A5:75:2D:EC:C8:68:23:4F:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9126F2B/90FADEECD5CD11E5AA426E40C4F9AE02/4YL5k2lSxCadZw2ldS3syGgjTxs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4YL5k2lSxCadZw2ldS3syGgjTxs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9126F2B/90FADEECD5CD11E5AA426E40C4F9AE02/4YL5k2lSxCadZw2ldS3syGgjTxs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 27:e7:f3:84:8b:05:ea:e6:27:99:12:49:12:d5:57:dc:6d:e7: 20:73:5b:89:77:81:07:2d:28:11:9e:8f:ee:a5:8d:f3:35:67: d0:46:78:4d:4e:44:bb:82:02:98:68:f4:08:da:3a:d5:a1:8d: 34:ce:23:40:36:b5:87:c1:77:60:e4:97:ba:48:26:bf:d9:28: 3e:65:72:b9:60:bd:8f:22:c8:6d:22:74:1c:8f:7c:9a:e1:3c: 76:b6:52:24:07:3e:3b:50:57:ab:a8:57:39:f7:47:bb:b3:4f: ab:b5:86:13:78:55:3d:f2:12:be:6e:d6:3d:d7:33:16:bb:b3: 53:52:04:08:ae:2f:13:60:9d:2d:6b:d6:a2:73:91:f1:42:28: 97:d0:ee:e5:e8:4e:c5:cf:29:ed:fb:ef:e6:e0:94:14:ee:73: 3b:48:70:a4:df:4a:e9:7a:07:c9:61:a7:d1:d8:8d:2b:87:5a: 29:6f:40:dc:c1:50:d3:e6:fd:cd:82:28:36:ef:d7:00:33:cd: 8a:f7:c2:1e:48:50:4e:5c:7c:b8:10:40:3f:d6:1a:56:16:ee: 94:58:5f:ab:8e:92:e9:fd:7c:eb:6f:82:c3:8d:3a:7d:20:bd: fa:17:a5:47:bc:e0:68:21:a9:f9:16:8c:4a:32:3f:7d:ca:45: cf:0f:47:61 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIhYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjZGMkIxMTAvBgNVBAUTKEUxODJGOTkzNjk1MkM0MjY5RDY3MERBNTc1MkRFQ0M4 NjgyMzRGMUIwHhcNMjUxMDIwMTYwNjQwWhcNMjUxMDI3MTYwNjQwWjAYMRYwFAYD VQQDEw02OGY2NWUxMS03NTVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqFVJK8za0OegGdnQNed+xnJRFabLF8bIdx9LdWBSUhBTsTU/C5B9zJsr5EBN LscynyU59/IufcKmz8NZJ9liksbEsufAPugG15rNqE5spmRAWOJUhk80e47/sM8F oitd0ibYlMNhovB7JLHrqu3ZX9oO95V8BJzOXLV76byTd1MBDUSrQhLSL75pfZxp bk1FS2lwsMly2nivxTdhZMj9Zi1Hk/YjkiVPlXfknmiRd1kGD2D6hUX8bR45PHxi JZ8mqlbP5GsSnb3P57F/fyIrRj4rIuMMPqy6wfYHvTqcn+W1zUuOY6AKGGJV+ssf eiswjG07XFeEWh/3xq1i/0em/wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNApV2wE uJj5AcHfOml0HJGoHC3lMB8GA1UdIwQYMBaAFOGC+ZNpUsQmnWcNpXUt7MhoI08b MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNkYyQi85MEZBREVFQ0Q1 Q0QxMUU1QUE0MjZFNDBDNEY5QUUwMi80WUw1azJsU3hDYWRadzJsZFMzc3lHZ2pU eHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRZTDVrMmxTeENhZFp3MmxkUzNzeUdnalR4cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NkYyQi85MEZBREVFQ0Q1Q0QxMUU1QUE0MjZFNDBDNEY5QUUwMi80WUw1azJsU3hD YWRadzJsZFMzc3lHZ2pUeHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAn5/OEiwXq5ieZEkkS1Vfcbecgc1uJd4EHLSgRno/upY3zNWfQRnhN TkS7ggKYaPQI2jrVoY00ziNANrWHwXdg5Je6SCa/2Sg+ZXK5YL2PIshtInQcj3ya 4Tx2tlIkBz47UFerqFc590e7s0+rtYYTeFU98hK+btY91zMWu7NTUgQIri8TYJ0t a9aic5HxQiiX0O7l6E7Fzynt++/m4JQU7nM7SHCk30rpegfJYafR2I0rh1opb0Dc wVDT5v3Ngig279cAM82K98IeSFBOXHy4EEA/1hpWFu6UWF+rjpLp/Xzrb4LDjTp9 IL36F6VHvOBoIan5FoxKMj99ykXPD0dh -----END CERTIFICATE-----Generated at Mon Oct 20 19:10:59 2025 by rpki-client