$ rpki-client -vvf rpki.apnic.net/member_repository/A914CBF3/1BC6EB2011E711EAB903AA79C4F9AE02/4kSeMSIgEx4udsQsfMxt0ZNRBwc.mft File: 4kSeMSIgEx4udsQsfMxt0ZNRBwc.mft (raw, json) Hash identifier: BmEw1KmdcRRzB9W27S3MznWkENSksxB+1GCXAB7kKxM= Subject key identifier: D3:B9:D0:7E:4E:2F:A5:CA:75:43:A7:56:89:82:D6:BE:1F:66:D8:AF Authority key identifier: E2:44:9E:31:22:20:13:1E:2E:76:C4:2C:7C:CC:6D:D1:93:51:07:07 Certificate issuer: /CN=A914CBF3/serialNumber=E2449E312220131E2E76C42C7CCC6DD193510707 Certificate serial: 0C7E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4kSeMSIgEx4udsQsfMxt0ZNRBwc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914CBF3/1BC6EB2011E711EAB903AA79C4F9AE02/4kSeMSIgEx4udsQsfMxt0ZNRBwc.mft Manifest number: 0C5B Signing time: Sat 18 Oct 2025 19:24:10 +0000 Manifest this update: Sat 18 Oct 2025 19:24:10 +0000 Manifest next update: Sat 25 Oct 2025 19:24:10 +0000 Files and hashes: 1: 4kSeMSIgEx4udsQsfMxt0ZNRBwc.crl (hash: pGykV0rIrFhRs1Z7gqwOdNZFE/NcUCAW1t3y2AvpztE=) 2: 183DE570057A11EC822F230EC4F9AE02.roa (hash: bEfFzY9ERkUCouk5XoaucvDsVkrzcwabTIVAnbK3Eko=) 3: B32668C4D98C11EB905D7281C4F9AE02.roa (hash: +CpW1CaKQXu6MhTzl4JHCslaYOAYJXQr9xAkDiD0lq0=) 4: B688C61E2A7411F09C50DF45C4F9AE02.roa (hash: PvI9nhg15RMbIrPmzo33E5WP1sio6iu2Cas5ym98pTY=) 5: 89EA369C2A7411F09A757F45C4F9AE02.roa (hash: F9UOwIl8TIxEFQqKFxE/ZQxprBW29nR8LDsUajtcNxA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914CBF3/1BC6EB2011E711EAB903AA79C4F9AE02/4kSeMSIgEx4udsQsfMxt0ZNRBwc.crl rsync://rpki.apnic.net/member_repository/A914CBF3/1BC6EB2011E711EAB903AA79C4F9AE02/4kSeMSIgEx4udsQsfMxt0ZNRBwc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4kSeMSIgEx4udsQsfMxt0ZNRBwc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 19:24:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3198 (0xc7e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914CBF3, serialNumber=E2449E312220131E2E76C42C7CCC6DD193510707 Validity Not Before: Oct 18 19:24:10 2025 GMT Not After : Oct 25 19:24:10 2025 GMT Subject: CN=68f3e95a-c4a4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:d2:8b:5c:88:47:8a:36:c4:1e:ab:67:51:31: a2:41:b2:a5:ba:1b:59:9f:12:7f:2f:2d:2a:c9:6f: 2f:d2:fa:74:73:cb:cf:e5:8f:46:39:50:7a:f4:d1: 16:0f:b4:5d:71:9f:b3:cd:58:b7:6c:d3:28:f1:90: b9:a7:2c:dd:62:ee:9f:1d:72:dc:d0:07:ae:10:58: ec:ce:b9:d5:9a:c2:e2:cc:4a:de:b7:31:75:3d:ea: a8:db:ab:f9:53:f8:2f:b3:6d:5d:86:4a:2f:f8:b6: 80:b2:11:e7:79:05:ac:87:80:a0:c4:ea:a4:3f:b7: 7b:58:91:21:5d:5c:eb:7d:30:67:16:45:51:5b:84: 5c:80:bb:71:64:6c:9b:ad:6f:11:7e:58:0b:cc:9f: d8:4a:e2:9a:89:00:92:18:80:cd:f1:fe:cd:3b:b9: 03:e9:fc:23:a6:eb:a7:7f:9b:3f:53:a5:fe:ac:b8: 51:d8:f4:8d:61:03:bb:db:c9:e7:1c:99:bc:27:03: 9c:c6:91:3a:cf:9c:bd:34:b3:7e:9c:f2:2c:a7:e4: 7c:b2:20:11:4d:b2:50:13:65:8e:d5:2a:0c:48:d7: 58:5f:51:79:e3:09:44:d8:95:f0:5e:8c:49:93:91: 74:41:1b:bc:fb:6a:4d:04:40:a0:11:4c:24:9b:02: b7:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:B9:D0:7E:4E:2F:A5:CA:75:43:A7:56:89:82:D6:BE:1F:66:D8:AF X509v3 Authority Key Identifier: keyid:E2:44:9E:31:22:20:13:1E:2E:76:C4:2C:7C:CC:6D:D1:93:51:07:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914CBF3/1BC6EB2011E711EAB903AA79C4F9AE02/4kSeMSIgEx4udsQsfMxt0ZNRBwc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4kSeMSIgEx4udsQsfMxt0ZNRBwc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914CBF3/1BC6EB2011E711EAB903AA79C4F9AE02/4kSeMSIgEx4udsQsfMxt0ZNRBwc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3b:64:7a:2d:19:61:e7:09:23:be:03:6b:64:a8:05:ec:90:39: eb:9e:39:1b:ad:89:88:48:8d:46:71:f9:a4:f5:e3:29:a4:b4: ad:70:4f:22:52:4f:aa:e7:99:af:a9:dd:82:4f:d1:b5:59:55: 41:d2:80:b0:23:ff:c9:f4:7f:c4:1f:ed:e1:1d:4e:e7:61:49: 24:dd:5b:57:e0:03:74:97:55:2c:b2:f0:0f:11:2c:9c:80:bc: 9b:02:c9:10:b6:53:d3:4d:13:05:23:78:11:f8:de:e1:aa:3b: 30:aa:04:e3:dd:4d:13:2e:c6:49:6e:07:43:e9:cd:94:db:e1: 90:c2:2a:a1:ae:40:ee:6d:14:79:35:62:34:f0:9f:72:bc:45: fd:33:5d:2c:79:64:3d:3e:8e:ab:47:46:10:99:80:c4:5e:d6: 6e:e5:ae:62:61:4f:c1:ed:cc:c5:dc:42:2a:50:77:82:42:78: 72:d3:fd:f2:16:ad:b8:c8:3f:13:1c:d7:41:ae:28:55:89:a2: ac:fc:e2:43:04:e1:4f:e7:70:76:91:1d:0e:bd:66:54:03:19: a1:dd:3e:87:c2:95:4b:0b:06:2e:d6:33:89:9d:4f:c6:82:b5: 73:a5:fa:8d:7b:85:e7:c7:ea:bd:50:d8:3d:e5:18:40:44:13: c6:7c:bb:3d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDH4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NENCRjMxMTAvBgNVBAUTKEUyNDQ5RTMxMjIyMDEzMUUyRTc2QzQyQzdDQ0M2REQx OTM1MTA3MDcwHhcNMjUxMDE4MTkyNDEwWhcNMjUxMDI1MTkyNDEwWjAYMRYwFAYD VQQDEw02OGYzZTk1YS1jNGE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyNKLXIhHijbEHqtnUTGiQbKluhtZnxJ/Ly0qyW8v0vp0c8vP5Y9GOVB69NEW D7RdcZ+zzVi3bNMo8ZC5pyzdYu6fHXLc0AeuEFjszrnVmsLizEretzF1Peqo26v5 U/gvs21dhkov+LaAshHneQWsh4CgxOqkP7d7WJEhXVzrfTBnFkVRW4RcgLtxZGyb rW8RflgLzJ/YSuKaiQCSGIDN8f7NO7kD6fwjpuunf5s/U6X+rLhR2PSNYQO728nn HJm8JwOcxpE6z5y9NLN+nPIsp+R8siARTbJQE2WO1SoMSNdYX1F54wlE2JXwXoxJ k5F0QRu8+2pNBECgEUwkmwK3ewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNO50H5O L6XKdUOnVomC1r4fZtivMB8GA1UdIwQYMBaAFOJEnjEiIBMeLnbELHzMbdGTUQcH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0Q0JGMy8xQkM2RUIyMDEx RTcxMUVBQjkwM0FBNzlDNEY5QUUwMi80a1NlTVNJZ0V4NHVkc1FzZk14dDBaTlJC d2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRrU2VNU0lnRXg0dWRzUXNmTXh0MFpOUkJ3Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 Q0JGMy8xQkM2RUIyMDExRTcxMUVBQjkwM0FBNzlDNEY5QUUwMi80a1NlTVNJZ0V4 NHVkc1FzZk14dDBaTlJCd2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA7ZHotGWHnCSO+A2tkqAXskDnrnjkbrYmISI1Gcfmk9eMppLStcE8i Uk+q55mvqd2CT9G1WVVB0oCwI//J9H/EH+3hHU7nYUkk3VtX4AN0l1UssvAPESyc gLybAskQtlPTTRMFI3gR+N7hqjswqgTj3U0TLsZJbgdD6c2U2+GQwiqhrkDubRR5 NWI08J9yvEX9M10seWQ9Po6rR0YQmYDEXtZu5a5iYU/B7czF3EIqUHeCQnhy0/3y Fq24yD8THNdBrihViaKs/OJDBOFP53B2kR0OvWZUAxmh3T6HwpVLCwYu1jOJnU/G grVzpfqNe4Xnx+q9UNg95RhARBPGfLs9 -----END CERTIFICATE-----Generated at Mon Oct 20 04:12:16 2025 by rpki-client