$ rpki-client -vvf rpki.apnic.net/member_repository/A914B57F/B2457D6A4E5911EA9EE9E20DC4F9AE02/4QZLtgGhMQh2G1RXofcVJMSky84.mft File: 4QZLtgGhMQh2G1RXofcVJMSky84.mft (raw, json) Hash identifier: 22Q6tClwaiTWlYpyMgZu6RhOqRbFF/FqzU/u57Kmy6w= Subject key identifier: F6:F6:8C:40:C6:A2:64:8F:0C:B8:E6:D1:28:0C:33:72:2D:E3:AC:CF Authority key identifier: E1:06:4B:B6:01:A1:31:08:76:1B:54:57:A1:F7:15:24:C4:A4:CB:CE Certificate issuer: /CN=A914B57F/serialNumber=E1064BB601A13108761B5457A1F71524C4A4CBCE Certificate serial: 0B19 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4QZLtgGhMQh2G1RXofcVJMSky84.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914B57F/B2457D6A4E5911EA9EE9E20DC4F9AE02/4QZLtgGhMQh2G1RXofcVJMSky84.mft Manifest number: 0B12 Signing time: Sat 18 Oct 2025 20:13:47 +0000 Manifest this update: Sat 18 Oct 2025 20:13:47 +0000 Manifest next update: Sat 25 Oct 2025 20:13:47 +0000 Files and hashes: 1: 4QZLtgGhMQh2G1RXofcVJMSky84.crl (hash: XAOsUWp37yml5hbx6/1mMxUOD8aNOMDc5wfm+GYKdW8=) 2: 11685AAC4F0D11EAA161D143C4F9AE02.roa (hash: dlSOSQk2MniPlYlY5Ht7zlRaFaui9HZpjfs6c69fqdk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914B57F/B2457D6A4E5911EA9EE9E20DC4F9AE02/4QZLtgGhMQh2G1RXofcVJMSky84.crl rsync://rpki.apnic.net/member_repository/A914B57F/B2457D6A4E5911EA9EE9E20DC4F9AE02/4QZLtgGhMQh2G1RXofcVJMSky84.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4QZLtgGhMQh2G1RXofcVJMSky84.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 20:13:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2841 (0xb19) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914B57F, serialNumber=E1064BB601A13108761B5457A1F71524C4A4CBCE Validity Not Before: Oct 18 20:13:47 2025 GMT Not After : Oct 25 20:13:47 2025 GMT Subject: CN=68f3f4fb-1b4f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:38:c7:c2:8d:c9:dd:cd:34:52:4f:7d:15:8b: 14:e0:a5:a9:ac:40:76:f8:34:b4:99:ca:89:2d:e7: 27:fa:45:32:a6:e2:f6:ec:2b:0f:3f:c6:36:e4:f8: 0c:38:57:05:bc:2a:6c:d3:70:0f:e4:6f:8d:84:d2: f9:f4:82:d9:82:10:63:4a:37:a0:47:12:08:ec:c0: 93:08:ff:a3:33:31:37:8e:5f:47:c5:aa:94:87:38: 7e:41:c5:9d:b1:71:0d:e2:c4:6e:8d:88:03:f5:59: e3:8a:a3:86:55:02:c3:21:33:b8:c3:c9:3d:5e:12: 9f:8c:d5:68:dd:07:3e:ca:ad:3e:0a:39:d1:87:97: a8:1d:f6:fa:0c:29:0f:78:99:b7:42:09:be:14:e5: 63:ab:a1:a7:f9:d5:f0:d7:0a:de:5c:38:a6:4d:05: e9:72:95:7b:71:0c:18:27:10:80:32:2a:87:0b:3f: 8e:be:33:e4:31:04:6f:f6:0a:04:fe:43:9b:8f:de: 0f:47:f4:d5:2e:e9:f8:f3:d9:34:44:c5:2c:fb:10: 5f:8a:81:c2:52:dd:69:c6:48:cf:e1:29:a5:10:3b: ca:c6:35:5d:ae:cd:6d:2c:45:46:fc:7c:7d:b2:1b: ed:20:e0:fd:90:0b:0b:d0:ee:de:03:50:91:09:87: 96:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:F6:8C:40:C6:A2:64:8F:0C:B8:E6:D1:28:0C:33:72:2D:E3:AC:CF X509v3 Authority Key Identifier: keyid:E1:06:4B:B6:01:A1:31:08:76:1B:54:57:A1:F7:15:24:C4:A4:CB:CE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914B57F/B2457D6A4E5911EA9EE9E20DC4F9AE02/4QZLtgGhMQh2G1RXofcVJMSky84.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4QZLtgGhMQh2G1RXofcVJMSky84.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914B57F/B2457D6A4E5911EA9EE9E20DC4F9AE02/4QZLtgGhMQh2G1RXofcVJMSky84.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a3:04:2e:99:ce:84:e3:b8:17:5c:96:6e:cd:a3:bb:6e:f6:5c: 9b:ca:75:7d:66:46:8a:e9:6d:0d:91:0a:31:e2:15:79:cf:eb: eb:66:ca:3c:e6:da:d1:83:a2:47:6f:e2:3b:e8:0f:16:2e:f1: fd:ac:b5:60:75:70:d1:92:6e:92:ca:08:4d:62:53:74:a8:a9: 70:96:84:d1:64:72:75:c2:d4:63:e1:ec:3c:c9:be:b4:ad:07: 40:9e:68:8c:03:01:aa:6f:b7:a1:09:d8:2c:f4:6f:21:3d:e3: 41:8a:a3:11:3b:c8:03:a5:1c:a3:e7:99:95:19:3d:3c:d7:a8: c1:d8:f5:8b:83:9f:1a:35:f8:e4:23:08:e8:b0:b9:03:72:06: e7:13:80:e4:30:d4:13:bd:8e:76:0a:3a:aa:59:c7:1c:1f:b2: 68:71:2a:ef:e3:5b:66:21:4e:47:8b:14:12:92:ef:78:4c:e7: 60:7e:2c:d5:0c:e4:8d:4f:2a:53:4c:27:0d:cc:9f:af:6a:79: b4:a4:ba:3c:35:62:3d:21:a2:0c:f6:44:d2:f2:6d:1f:e6:7c: cb:0d:17:4c:bc:3d:78:b8:0f:48:0f:6a:dc:e3:bb:e3:64:1b: 2f:94:7c:ad:c3:0c:35:54:83:51:c9:4d:59:e5:cf:6e:05:2c: 1e:82:d1:15 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCxkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEI1N0YxMTAvBgNVBAUTKEUxMDY0QkI2MDFBMTMxMDg3NjFCNTQ1N0ExRjcxNTI0 QzRBNENCQ0UwHhcNMjUxMDE4MjAxMzQ3WhcNMjUxMDI1MjAxMzQ3WjAYMRYwFAYD VQQDEw02OGYzZjRmYi0xYjRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3TjHwo3J3c00Uk99FYsU4KWprEB2+DS0mcqJLecn+kUypuL27CsPP8Y25PgM OFcFvCps03AP5G+NhNL59ILZghBjSjegRxII7MCTCP+jMzE3jl9HxaqUhzh+QcWd sXEN4sRujYgD9VnjiqOGVQLDITO4w8k9XhKfjNVo3Qc+yq0+CjnRh5eoHfb6DCkP eJm3Qgm+FOVjq6Gn+dXw1wreXDimTQXpcpV7cQwYJxCAMiqHCz+OvjPkMQRv9goE /kObj94PR/TVLun489k0RMUs+xBfioHCUt1pxkjP4SmlEDvKxjVdrs1tLEVG/Hx9 shvtIOD9kAsL0O7eA1CRCYeWiwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPb2jEDG omSPDLjm0SgMM3It46zPMB8GA1UdIwQYMBaAFOEGS7YBoTEIdhtUV6H3FSTEpMvO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QjU3Ri9CMjQ1N0Q2QTRF NTkxMUVBOUVFOUUyMERDNEY5QUUwMi80UVpMdGdHaE1RaDJHMVJYb2ZjVkpNU2t5 ODQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRRWkx0Z0doTVFoMkcxUlhvZmNWSk1Ta3k4NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QjU3Ri9CMjQ1N0Q2QTRFNTkxMUVBOUVFOUUyMERDNEY5QUUwMi80UVpMdGdHaE1R aDJHMVJYb2ZjVkpNU2t5ODQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCjBC6ZzoTjuBdclm7No7tu9lybynV9ZkaK6W0NkQox4hV5z+vrZso8 5trRg6JHb+I76A8WLvH9rLVgdXDRkm6SyghNYlN0qKlwloTRZHJ1wtRj4ew8yb60 rQdAnmiMAwGqb7ehCdgs9G8hPeNBiqMRO8gDpRyj55mVGT0816jB2PWLg58aNfjk IwjosLkDcgbnE4DkMNQTvY52CjqqWcccH7JocSrv41tmIU5HixQSku94TOdgfizV DOSNTypTTCcNzJ+vanm0pLo8NWI9IaIM9kTS8m0f5nzLDRdMvD14uA9ID2rc47vj ZBsvlHytwww1VINRyU1Z5c9uBSwegtEV -----END CERTIFICATE-----Generated at Mon Oct 20 01:47:38 2025 by rpki-client