$ rpki-client -vvf rpki.apnic.net/member_repository/A912E5CB/5288DCE0704911EDB6E1FB78C4F9AE02/4XM7lw_d92f_GVQoQ34SQqN2knc.mft File: 4XM7lw_d92f_GVQoQ34SQqN2knc.mft (raw, json) Hash identifier: rAsvHqI9nd0FodKPOJUUWT1JObi3QxHh1NnAwwxvcQ0= Subject key identifier: 12:95:0D:4E:CF:2C:B0:9A:C5:6B:1C:BE:13:00:A5:31:13:34:A1:FF Authority key identifier: E1:73:3B:97:0F:DD:F7:67:FF:19:54:28:43:7E:12:42:A3:76:92:77 Certificate issuer: /CN=A912E5CB/serialNumber=E1733B970FDDF767FF195428437E1242A3769277 Certificate serial: 021D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4XM7lw_d92f_GVQoQ34SQqN2knc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912E5CB/5288DCE0704911EDB6E1FB78C4F9AE02/4XM7lw_d92f_GVQoQ34SQqN2knc.mft Manifest number: 021A Signing time: Sun 19 Oct 2025 04:23:17 +0000 Manifest this update: Sun 19 Oct 2025 04:23:16 +0000 Manifest next update: Sun 26 Oct 2025 04:23:16 +0000 Files and hashes: 1: 4XM7lw_d92f_GVQoQ34SQqN2knc.crl (hash: yZc1vUvDzE6KuNTXj5xxokNPDAqiLLF5+uyIFd/Qrf8=) 2: 5FF4FD52704C11ED97935E7DC4F9AE02.roa (hash: C5+qR+xwM5riTT+23t/1tPZQq66L4etzO1hAZvNu09M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912E5CB/5288DCE0704911EDB6E1FB78C4F9AE02/4XM7lw_d92f_GVQoQ34SQqN2knc.crl rsync://rpki.apnic.net/member_repository/A912E5CB/5288DCE0704911EDB6E1FB78C4F9AE02/4XM7lw_d92f_GVQoQ34SQqN2knc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4XM7lw_d92f_GVQoQ34SQqN2knc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 04:23:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 541 (0x21d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912E5CB, serialNumber=E1733B970FDDF767FF195428437E1242A3769277 Validity Not Before: Oct 19 04:23:16 2025 GMT Not After : Oct 26 04:23:16 2025 GMT Subject: CN=68f467b5-c4cc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:85:02:fd:fd:a5:a5:8f:85:60:96:c2:f8:74: 0d:5d:a6:c5:38:2b:ab:08:6d:58:e7:de:cc:07:e7: 85:4f:02:0f:a4:cc:37:87:8d:f3:70:10:c2:16:4f: 85:01:ac:6e:e6:b2:ec:a1:1a:97:1b:86:0d:db:fe: 4c:db:da:9e:f9:2f:6d:3e:c4:01:32:b8:13:7c:0c: 37:9f:67:b4:f0:d3:93:f3:94:2a:ef:92:64:8d:23: 19:3d:88:61:13:e0:49:3c:ac:f8:ca:65:05:2a:b4: 87:2a:97:1c:a3:50:9a:6d:ce:f1:9c:37:2b:83:0d: e7:dd:54:82:96:17:e9:0d:03:4f:a5:4e:1a:88:09: 66:d9:f6:2f:f7:1f:40:d3:b3:c3:81:19:15:ef:e2: f9:04:48:b5:7f:65:73:39:fe:63:7b:a9:39:2f:dd: 9a:84:b6:f8:d6:49:22:1f:d9:79:e4:74:2a:58:36: b9:dc:41:6e:65:44:12:2a:28:56:14:51:95:ca:3d: ef:27:bf:e2:65:f6:28:00:fd:42:41:d3:82:85:e2: 2c:11:5e:43:41:d0:b6:6f:12:ed:4a:e5:a5:00:a4: 4a:0e:17:9d:13:1a:72:b9:c6:ce:5d:a1:00:33:9e: 34:3b:df:14:ba:46:ce:5b:bd:d5:dc:d9:7f:67:71: a7:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:95:0D:4E:CF:2C:B0:9A:C5:6B:1C:BE:13:00:A5:31:13:34:A1:FF X509v3 Authority Key Identifier: keyid:E1:73:3B:97:0F:DD:F7:67:FF:19:54:28:43:7E:12:42:A3:76:92:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912E5CB/5288DCE0704911EDB6E1FB78C4F9AE02/4XM7lw_d92f_GVQoQ34SQqN2knc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4XM7lw_d92f_GVQoQ34SQqN2knc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912E5CB/5288DCE0704911EDB6E1FB78C4F9AE02/4XM7lw_d92f_GVQoQ34SQqN2knc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 20:83:c9:6e:59:2a:bc:28:8e:4c:2d:3c:d3:09:e3:3d:95:f4: 6b:c4:f5:5f:9a:95:62:f1:49:be:f5:8b:8e:ed:d8:be:2b:9a: 65:ec:4a:45:69:d4:ca:02:09:f7:50:a4:16:04:9f:f4:2b:22: 81:41:30:fb:7d:9b:c2:21:b5:4b:d1:e8:cb:c3:c8:dd:7b:ef: ec:53:3f:9a:a1:3c:0c:e7:41:56:68:11:81:72:d9:41:a1:b1: 49:91:9f:75:a0:05:12:28:8a:22:d8:56:d2:96:6c:d5:50:24: 1d:b4:0f:68:e0:8b:9d:a9:73:5a:1b:bc:2e:e2:ea:6f:bd:3e: 07:d1:30:c7:d5:38:74:e3:6b:86:54:d1:c2:18:e9:93:3c:cd: 02:e6:39:13:34:97:74:69:3a:18:e6:2f:56:60:03:40:ca:83: ea:a9:19:17:5d:10:8a:1b:a1:63:0e:1f:c5:7b:6d:d5:37:8e: b9:72:81:21:09:79:7b:15:bb:01:c5:cf:dc:66:56:e8:f4:1b: 05:2a:55:bb:ad:13:21:7a:6d:81:b8:c8:9b:27:71:f9:aa:5e: 97:86:0e:fa:4b:ed:bc:08:dc:c8:af:bb:47:95:56:14:f7:c0: 21:df:c7:91:31:34:85:25:dc:38:ae:23:74:f6:8f:6b:b3:b5: 80:0a:fc:83 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAh0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkU1Q0IxMTAvBgNVBAUTKEUxNzMzQjk3MEZEREY3NjdGRjE5NTQyODQzN0UxMjQy QTM3NjkyNzcwHhcNMjUxMDE5MDQyMzE2WhcNMjUxMDI2MDQyMzE2WjAYMRYwFAYD VQQDEw02OGY0NjdiNS1jNGNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1IUC/f2lpY+FYJbC+HQNXabFOCurCG1Y597MB+eFTwIPpMw3h43zcBDCFk+F Aaxu5rLsoRqXG4YN2/5M29qe+S9tPsQBMrgTfAw3n2e08NOT85Qq75JkjSMZPYhh E+BJPKz4ymUFKrSHKpcco1Cabc7xnDcrgw3n3VSClhfpDQNPpU4aiAlm2fYv9x9A 07PDgRkV7+L5BEi1f2VzOf5je6k5L92ahLb41kkiH9l55HQqWDa53EFuZUQSKihW FFGVyj3vJ7/iZfYoAP1CQdOCheIsEV5DQdC2bxLtSuWlAKRKDhedExpyucbOXaEA M540O98UukbOW73V3Nl/Z3GnkwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBKVDU7P LLCaxWscvhMApTETNKH/MB8GA1UdIwQYMBaAFOFzO5cP3fdn/xlUKEN+EkKjdpJ3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRTVDQi81Mjg4RENFMDcw NDkxMUVEQjZFMUZCNzhDNEY5QUUwMi80WE03bHdfZDkyZl9HVlFvUTM0U1FxTjJr bmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRYTTdsd19kOTJmX0dWUW9RMzRTUXFOMmtuYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RTVDQi81Mjg4RENFMDcwNDkxMUVEQjZFMUZCNzhDNEY5QUUwMi80WE03bHdfZDky Zl9HVlFvUTM0U1FxTjJrbmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAgg8luWSq8KI5MLTzTCeM9lfRrxPVfmpVi8Um+9YuO7di+K5pl7EpF adTKAgn3UKQWBJ/0KyKBQTD7fZvCIbVL0ejLw8jde+/sUz+aoTwM50FWaBGBctlB obFJkZ91oAUSKIoi2FbSlmzVUCQdtA9o4IudqXNaG7wu4upvvT4H0TDH1Th042uG VNHCGOmTPM0C5jkTNJd0aToY5i9WYANAyoPqqRkXXRCKG6FjDh/Fe23VN465coEh CXl7FbsBxc/cZlbo9BsFKlW7rRMhem2BuMibJ3H5ql6Xhg76S+28CNzIr7tHlVYU 98Ah38eRMTSFJdw4riN09o9rs7WACvyD -----END CERTIFICATE-----Generated at Sun Oct 19 23:32:59 2025 by rpki-client