$ rpki-client -vvf rpki.apnic.net/member_repository/A9145B13/4637FBF2B12811EFB750A52BC4F9AE02/4_FvnXPM7iaTkVokT0S1U6TbPcw.mft File: 4_FvnXPM7iaTkVokT0S1U6TbPcw.mft (raw, json) Hash identifier: mV4ZBa7Y0pF6RjZWKqpN1F1cCTGP4ZKrD2KJzBHkeXw= Subject key identifier: 4A:06:E7:D7:F0:99:37:30:15:40:94:23:43:EF:8B:DC:53:B4:9E:FC Authority key identifier: E3:F1:6F:9D:73:CC:EE:26:93:91:5A:24:4F:44:B5:53:A4:DB:3D:CC Certificate issuer: /CN=A9145B13/serialNumber=E3F16F9D73CCEE2693915A244F44B553A4DB3DCC Certificate serial: A5 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4_FvnXPM7iaTkVokT0S1U6TbPcw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9145B13/4637FBF2B12811EFB750A52BC4F9AE02/4_FvnXPM7iaTkVokT0S1U6TbPcw.mft Manifest number: A4 Signing time: Sun 19 Oct 2025 09:27:38 +0000 Manifest this update: Sun 19 Oct 2025 09:27:37 +0000 Manifest next update: Sun 26 Oct 2025 09:27:37 +0000 Files and hashes: 1: 4_FvnXPM7iaTkVokT0S1U6TbPcw.crl (hash: QVJsE35GTDY5de62kyqt1Z4rRSDUuG/zOKTa6Zr6TJ0=) 2: 05E4CBECB12911EF993BC12DC4F9AE02.roa (hash: 6bS2IOUFxNL/dxgXXkv7hlgTjA3VB1/wSeyQ+zl4/9o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9145B13/4637FBF2B12811EFB750A52BC4F9AE02/4_FvnXPM7iaTkVokT0S1U6TbPcw.crl rsync://rpki.apnic.net/member_repository/A9145B13/4637FBF2B12811EFB750A52BC4F9AE02/4_FvnXPM7iaTkVokT0S1U6TbPcw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4_FvnXPM7iaTkVokT0S1U6TbPcw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 09:27:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 165 (0xa5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9145B13, serialNumber=E3F16F9D73CCEE2693915A244F44B553A4DB3DCC Validity Not Before: Oct 19 09:27:37 2025 GMT Not After : Oct 26 09:27:37 2025 GMT Subject: CN=68f4af0a-1740 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:69:dd:6c:71:4f:a8:c3:71:da:ad:3f:94:e2: 65:12:0c:68:7d:7f:33:bf:a3:30:99:99:bb:dd:1a: 81:aa:e7:aa:2b:26:a3:5e:8d:d1:5c:ac:f2:21:44: 3b:c3:f2:2a:cc:78:bf:12:44:47:27:d5:76:66:30: 4f:1d:8f:96:60:87:99:c7:a1:23:3f:34:41:14:ea: 55:9e:00:55:c9:a7:98:3c:3f:54:62:d4:1e:64:62: 48:9e:7f:87:6f:ee:d5:fd:46:97:a7:62:0f:45:37: ee:60:8f:9b:77:49:5c:28:99:39:3c:ff:52:c1:68: 17:5e:08:69:34:9c:28:47:4f:45:b8:4a:e4:37:f0: dd:0d:68:26:b2:1e:b6:36:63:c4:ad:e1:63:d6:96: c5:24:16:f9:58:fb:04:9c:d6:02:0e:df:27:35:45: 74:51:0d:79:3c:c3:e0:87:10:dc:fa:8a:76:bf:43: 5f:07:97:9b:01:3e:f7:58:f7:03:e7:56:01:5b:7a: 9c:dd:b1:24:39:1d:b0:f8:b4:da:b7:c3:ae:09:86: bb:27:64:56:20:9f:91:86:fd:a1:92:e0:f5:c4:22: 39:94:e3:d2:1d:2d:d0:8a:b5:1f:eb:7c:dc:ea:1e: 24:b5:69:16:73:63:b3:39:10:c2:27:b6:e3:22:11: 4a:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:06:E7:D7:F0:99:37:30:15:40:94:23:43:EF:8B:DC:53:B4:9E:FC X509v3 Authority Key Identifier: keyid:E3:F1:6F:9D:73:CC:EE:26:93:91:5A:24:4F:44:B5:53:A4:DB:3D:CC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9145B13/4637FBF2B12811EFB750A52BC4F9AE02/4_FvnXPM7iaTkVokT0S1U6TbPcw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4_FvnXPM7iaTkVokT0S1U6TbPcw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9145B13/4637FBF2B12811EFB750A52BC4F9AE02/4_FvnXPM7iaTkVokT0S1U6TbPcw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 57:16:98:43:62:65:0e:4b:86:78:b0:79:7c:4e:f0:01:bd:d2: 18:59:ec:55:03:b9:48:c7:4e:eb:df:76:74:96:dd:e1:cc:bc: 1d:c6:9c:13:a1:d9:a7:10:2c:38:be:b0:c3:e3:96:ff:37:92: 20:c1:5e:d6:47:7c:de:b8:35:f1:a4:5d:56:04:81:68:7d:8c: 80:a8:62:5d:b1:a6:fc:ee:2d:d4:6e:b3:2b:d6:a5:e3:2d:d5: 60:6c:45:cf:3e:dc:1f:e5:06:9d:82:f6:0a:1c:e7:97:ff:cb: b4:fe:a1:8c:a0:96:2d:80:fe:e3:3d:7a:9c:99:22:f6:4b:cf: f4:b6:76:b6:cb:e6:3f:31:ff:f9:d6:08:59:ab:dc:b9:d8:c7: 28:a1:7e:60:74:3a:5a:6c:14:76:25:a5:13:c0:03:d5:36:74: a8:64:06:b7:25:b1:9c:00:65:9c:83:57:73:7e:7f:8e:be:81: 4d:2e:d6:d0:f4:43:8b:f0:bd:8e:f3:08:2b:1f:f8:e6:67:58: 6c:51:78:b3:ce:49:b7:57:29:9f:9c:63:8f:11:86:a7:48:3a: ea:bd:9a:6d:fb:d4:60:bb:59:ba:56:d0:10:f3:18:ea:44:2d: 94:56:85:47:a1:02:b1:ab:25:ea:29:c0:a0:6d:a6:7f:7d:a1: 32:ba:98:8a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDVCMTMxMTAvBgNVBAUTKEUzRjE2RjlENzNDQ0VFMjY5MzkxNUEyNDRGNDRCNTUz QTREQjNEQ0MwHhcNMjUxMDE5MDkyNzM3WhcNMjUxMDI2MDkyNzM3WjAYMRYwFAYD VQQDEw02OGY0YWYwYS0xNzQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkmndbHFPqMNx2q0/lOJlEgxofX8zv6MwmZm73RqBqueqKyajXo3RXKzyIUQ7 w/IqzHi/EkRHJ9V2ZjBPHY+WYIeZx6EjPzRBFOpVngBVyaeYPD9UYtQeZGJInn+H b+7V/UaXp2IPRTfuYI+bd0lcKJk5PP9SwWgXXghpNJwoR09FuErkN/DdDWgmsh62 NmPEreFj1pbFJBb5WPsEnNYCDt8nNUV0UQ15PMPghxDc+op2v0NfB5ebAT73WPcD 51YBW3qc3bEkOR2w+LTat8OuCYa7J2RWIJ+Rhv2hkuD1xCI5lOPSHS3QirUf63zc 6h4ktWkWc2OzORDCJ7bjIhFKmQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEoG59fw mTcwFUCUI0Pvi9xTtJ78MB8GA1UdIwQYMBaAFOPxb51zzO4mk5FaJE9EtVOk2z3M MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NUIxMy80NjM3RkJGMkIx MjgxMUVGQjc1MEE1MkJDNEY5QUUwMi80X0Z2blhQTTdpYVRrVm9rVDBTMVU2VGJQ Y3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzRfRnZuWFBNN2lhVGtWb2tUMFMxVTZUYlBjdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NUIxMy80NjM3RkJGMkIxMjgxMUVGQjc1MEE1MkJDNEY5QUUwMi80X0Z2blhQTTdp YVRrVm9rVDBTMVU2VGJQY3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBXFphDYmUOS4Z4sHl8TvABvdIYWexVA7lIx07r33Z0lt3hzLwdxpwT odmnECw4vrDD45b/N5IgwV7WR3zeuDXxpF1WBIFofYyAqGJdsab87i3UbrMr1qXj LdVgbEXPPtwf5QadgvYKHOeX/8u0/qGMoJYtgP7jPXqcmSL2S8/0tna2y+Y/Mf/5 1ghZq9y52McooX5gdDpabBR2JaUTwAPVNnSoZAa3JbGcAGWcg1dzfn+OvoFNLtbQ 9EOL8L2O8wgrH/jmZ1hsUXizzkm3VymfnGOPEYanSDrqvZpt+9Rgu1m6VtAQ8xjq RC2UVoVHoQKxqyXqKcCgbaZ/faEyupiK -----END CERTIFICATE-----Generated at Tue Oct 21 00:52:54 2025 by rpki-client