$ rpki-client -vvf rpki.apnic.net/member_repository/A91471DA/51D579480FE211ECA4DDC909C4F9AE02/4k0JVBBixgi-Nj_2Gcy4RE3cPC8.mft File: 4k0JVBBixgi-Nj_2Gcy4RE3cPC8.mft (raw, json) Hash identifier: gI0mNgmjvwePR/UbcTOHo2yyEA78JcazayNlcrRF534= Subject key identifier: BB:D4:10:E4:A3:0B:EB:07:EF:9A:87:0F:A0:20:E1:65:B1:86:08:E4 Authority key identifier: E2:4D:09:54:10:62:C6:08:BE:36:3F:F6:19:CC:B8:44:4D:DC:3C:2F Certificate issuer: /CN=A91471DA/serialNumber=E24D09541062C608BE363FF619CCB8444DDC3C2F Certificate serial: 0544 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4k0JVBBixgi-Nj_2Gcy4RE3cPC8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91471DA/51D579480FE211ECA4DDC909C4F9AE02/4k0JVBBixgi-Nj_2Gcy4RE3cPC8.mft Manifest number: 0541 Signing time: Sun 19 Oct 2025 01:11:26 +0000 Manifest this update: Sun 19 Oct 2025 01:11:25 +0000 Manifest next update: Sun 26 Oct 2025 01:11:25 +0000 Files and hashes: 1: 4k0JVBBixgi-Nj_2Gcy4RE3cPC8.crl (hash: NeeuRI21/7PqaRYwMKDzCGgxGBbwIrwjm1OpAMbzwFM=) 2: 914E7A440FE611EC8DD2020EC4F9AE02.roa (hash: +BX7RaNNlsglW/BB60o8n67yb/21GqaNOP3+xpToWWc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91471DA/51D579480FE211ECA4DDC909C4F9AE02/4k0JVBBixgi-Nj_2Gcy4RE3cPC8.crl rsync://rpki.apnic.net/member_repository/A91471DA/51D579480FE211ECA4DDC909C4F9AE02/4k0JVBBixgi-Nj_2Gcy4RE3cPC8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4k0JVBBixgi-Nj_2Gcy4RE3cPC8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 01:11:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1348 (0x544) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91471DA, serialNumber=E24D09541062C608BE363FF619CCB8444DDC3C2F Validity Not Before: Oct 19 01:11:25 2025 GMT Not After : Oct 26 01:11:25 2025 GMT Subject: CN=68f43abd-5579 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:3d:4a:98:8a:0f:d1:57:c5:96:71:5a:2d:2f: 25:e0:18:73:ca:10:49:33:6d:9d:5c:94:b1:b0:42: 86:5a:bc:96:43:e5:a4:e9:d2:ba:b4:a8:24:ae:88: 95:c5:d5:67:2b:0b:65:44:65:34:f9:d9:6b:87:d0: 0a:7a:33:9e:65:a1:90:51:2c:9a:2d:63:32:aa:a6: 0e:82:91:56:0e:29:bb:a9:ce:4a:cf:7d:ed:d0:90: 84:ff:21:6f:32:f1:6d:76:34:79:4e:75:f6:b4:c3: fb:bf:60:79:7f:b1:f2:2c:e4:ff:30:5e:d3:87:d9: 6b:96:43:7b:56:c9:f9:b0:84:34:ac:78:2a:0c:e1: 87:45:0a:11:7f:91:2d:e4:9b:dd:3f:6a:c3:fe:b1: c8:5e:1a:15:31:0b:40:48:cd:d8:59:fc:e1:be:58: 73:0a:aa:ec:91:b2:f8:c0:8b:29:06:80:c8:a0:c4: d7:bb:d0:10:99:08:79:49:f2:c6:1f:79:93:59:c5: d9:da:cf:f6:9f:d0:a9:99:d9:57:fb:bd:f2:4f:63: 00:92:86:53:f1:bb:d1:10:f6:bd:1b:2e:8f:a5:72: 63:61:a1:ab:6d:2e:8c:f5:1f:17:b7:aa:be:90:be: 61:56:48:cb:44:59:fc:71:60:75:87:e4:44:89:a6: a9:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:D4:10:E4:A3:0B:EB:07:EF:9A:87:0F:A0:20:E1:65:B1:86:08:E4 X509v3 Authority Key Identifier: keyid:E2:4D:09:54:10:62:C6:08:BE:36:3F:F6:19:CC:B8:44:4D:DC:3C:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91471DA/51D579480FE211ECA4DDC909C4F9AE02/4k0JVBBixgi-Nj_2Gcy4RE3cPC8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4k0JVBBixgi-Nj_2Gcy4RE3cPC8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91471DA/51D579480FE211ECA4DDC909C4F9AE02/4k0JVBBixgi-Nj_2Gcy4RE3cPC8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9d:39:f9:47:be:47:7e:0a:55:61:e9:76:d1:92:0c:82:1a:cb: 41:68:4d:9f:96:1f:d1:11:00:04:95:04:40:ab:10:fc:47:b3: 60:8a:34:2f:02:e9:64:7e:d2:36:93:a7:3d:5b:06:be:4a:cf: 2a:27:21:f5:5d:66:07:ef:47:aa:4b:09:20:0c:ff:58:16:c6: dc:18:29:41:fc:e3:9e:5e:df:ba:be:de:14:ac:ea:fc:a8:28: 7e:dc:ea:17:fd:8f:bb:ce:f9:da:b8:bf:ee:34:a0:b1:fc:88: 60:8e:e6:ac:65:4d:d7:48:e9:89:87:0e:5f:fe:aa:cd:fb:78: f0:71:89:f5:ca:eb:bf:fb:35:7b:0d:cd:77:48:ad:c3:f1:23: 6d:8d:7b:6a:ca:97:5a:89:67:02:7f:59:4e:e1:45:97:c2:f9: ab:25:c0:52:34:b1:76:d2:36:85:08:9a:9b:02:4e:4a:19:d0: 40:2a:d6:07:a6:06:d8:2b:ca:4f:51:a2:4e:38:a1:83:ea:3a: 95:b9:84:eb:fb:de:af:d2:ff:9d:3c:f6:55:11:e5:be:a4:7e: 5d:48:ec:f0:58:36:5f:7d:ba:d3:b6:09:b8:b3:59:9d:4b:b5: b5:d7:e6:d8:40:b7:54:77:4d:b0:59:cc:33:d4:0d:e9:e4:52: 79:8a:0d:65 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBUQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDcxREExMTAvBgNVBAUTKEUyNEQwOTU0MTA2MkM2MDhCRTM2M0ZGNjE5Q0NCODQ0 NEREQzNDMkYwHhcNMjUxMDE5MDExMTI1WhcNMjUxMDI2MDExMTI1WjAYMRYwFAYD VQQDEw02OGY0M2FiZC01NTc5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApT1KmIoP0VfFlnFaLS8l4BhzyhBJM22dXJSxsEKGWryWQ+Wk6dK6tKgkroiV xdVnKwtlRGU0+dlrh9AKejOeZaGQUSyaLWMyqqYOgpFWDim7qc5Kz33t0JCE/yFv MvFtdjR5TnX2tMP7v2B5f7HyLOT/MF7Th9lrlkN7Vsn5sIQ0rHgqDOGHRQoRf5Et 5JvdP2rD/rHIXhoVMQtASM3YWfzhvlhzCqrskbL4wIspBoDIoMTXu9AQmQh5SfLG H3mTWcXZ2s/2n9CpmdlX+73yT2MAkoZT8bvREPa9Gy6PpXJjYaGrbS6M9R8Xt6q+ kL5hVkjLRFn8cWB1h+REiaapZQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLvUEOSj C+sH75qHD6Ag4WWxhgjkMB8GA1UdIwQYMBaAFOJNCVQQYsYIvjY/9hnMuERN3Dwv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NzFEQS81MUQ1Nzk0ODBG RTIxMUVDQTREREM5MDlDNEY5QUUwMi80azBKVkJCaXhnaS1Oal8yR2N5NFJFM2NQ QzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRrMEpWQkJpeGdpLU5qXzJHY3k0UkUzY1BDOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NzFEQS81MUQ1Nzk0ODBGRTIxMUVDQTREREM5MDlDNEY5QUUwMi80azBKVkJCaXhn aS1Oal8yR2N5NFJFM2NQQzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCdOflHvkd+ClVh6XbRkgyCGstBaE2flh/REQAElQRAqxD8R7NgijQv AulkftI2k6c9Wwa+Ss8qJyH1XWYH70eqSwkgDP9YFsbcGClB/OOeXt+6vt4UrOr8 qCh+3OoX/Y+7zvnauL/uNKCx/IhgjuasZU3XSOmJhw5f/qrN+3jwcYn1yuu/+zV7 Dc13SK3D8SNtjXtqypdaiWcCf1lO4UWXwvmrJcBSNLF20jaFCJqbAk5KGdBAKtYH pgbYK8pPUaJOOKGD6jqVuYTr+96v0v+dPPZVEeW+pH5dSOzwWDZffbrTtgm4s1md S7W11+bYQLdUd02wWcwz1A3p5FJ5ig1l -----END CERTIFICATE-----Generated at Mon Oct 20 11:32:01 2025 by rpki-client