$ rpki-client -vvf rpki.apnic.net/member_repository/A914E0B6/6956AE3EBF3011EEBE4F3C1EC4F9AE02/4BlKpTtYIbm9DFx7g1K7E4GFP50.mft File: 4BlKpTtYIbm9DFx7g1K7E4GFP50.mft (raw, json) Hash identifier: SdD3BvxaMQKEbFso17edyXcE8BYNySTfMHLr3XMy6fA= Subject key identifier: B3:62:32:89:B5:23:07:EC:99:8E:78:84:7E:48:9A:C8:3F:D2:F4:2A Authority key identifier: E0:19:4A:A5:3B:58:21:B9:BD:0C:5C:7B:83:52:BB:13:81:85:3F:9D Certificate issuer: /CN=A914E0B6/serialNumber=E0194AA53B5821B9BD0C5C7B8352BB1381853F9D Certificate serial: 0141 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4BlKpTtYIbm9DFx7g1K7E4GFP50.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E0B6/6956AE3EBF3011EEBE4F3C1EC4F9AE02/4BlKpTtYIbm9DFx7g1K7E4GFP50.mft Manifest number: 0141 Signing time: Sun 19 Oct 2025 07:08:07 +0000 Manifest this update: Sun 19 Oct 2025 07:08:06 +0000 Manifest next update: Sun 26 Oct 2025 07:08:06 +0000 Files and hashes: 1: 4BlKpTtYIbm9DFx7g1K7E4GFP50.crl (hash: kZHQo4RoO9jwvrksaYrJkfjCWP7504Yw4zxHLdZz4nI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E0B6/6956AE3EBF3011EEBE4F3C1EC4F9AE02/4BlKpTtYIbm9DFx7g1K7E4GFP50.crl rsync://rpki.apnic.net/member_repository/A914E0B6/6956AE3EBF3011EEBE4F3C1EC4F9AE02/4BlKpTtYIbm9DFx7g1K7E4GFP50.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4BlKpTtYIbm9DFx7g1K7E4GFP50.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 07:08:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 321 (0x141) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E0B6, serialNumber=E0194AA53B5821B9BD0C5C7B8352BB1381853F9D Validity Not Before: Oct 19 07:08:06 2025 GMT Not After : Oct 26 07:08:06 2025 GMT Subject: CN=68f48e57-68ad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:59:ea:6f:3d:af:ca:3b:4f:6b:d7:c2:ff:3f: 2e:ed:47:36:7c:e8:2d:65:f2:84:19:01:3e:79:33: 1f:69:87:fb:ee:af:68:34:e7:d1:8a:39:39:65:11: 24:a7:d3:b9:b6:b1:5e:4e:69:40:03:04:4e:2f:98: d8:d0:b2:9b:89:3c:05:df:eb:0a:e7:6e:3a:5f:2e: d8:ce:09:b2:20:b3:88:a3:12:fb:8e:ff:20:94:ad: f2:2e:a1:13:5c:5e:d2:a1:ab:e8:ec:9e:78:08:ab: 8e:bf:0a:a2:88:7e:52:78:c9:42:10:b1:17:57:62: 98:08:d7:9b:e5:3f:4e:4b:90:bb:93:40:ae:6b:6e: 0d:19:3e:f2:1d:32:17:c2:b0:f6:fb:e1:2b:2e:0f: 88:d8:92:6c:fe:3a:56:46:cd:e8:e6:b1:7e:87:5d: 3f:59:e7:25:a5:02:cc:7e:a2:5a:d3:54:8c:b5:6b: 6e:9d:3a:30:82:46:fe:9e:d4:4b:cf:dd:f5:e5:4a: 18:f9:b9:6f:90:6e:9a:ec:28:cc:ac:6c:52:34:fe: c3:25:8a:5a:b2:c3:d7:4e:0b:e6:83:6e:ac:d7:44: 03:02:1b:8a:17:5b:59:4d:52:58:0d:19:e5:31:19: c1:5f:0e:50:41:42:15:47:07:d8:ac:68:37:22:08: cc:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:62:32:89:B5:23:07:EC:99:8E:78:84:7E:48:9A:C8:3F:D2:F4:2A X509v3 Authority Key Identifier: keyid:E0:19:4A:A5:3B:58:21:B9:BD:0C:5C:7B:83:52:BB:13:81:85:3F:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E0B6/6956AE3EBF3011EEBE4F3C1EC4F9AE02/4BlKpTtYIbm9DFx7g1K7E4GFP50.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4BlKpTtYIbm9DFx7g1K7E4GFP50.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E0B6/6956AE3EBF3011EEBE4F3C1EC4F9AE02/4BlKpTtYIbm9DFx7g1K7E4GFP50.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 44:3b:45:37:6e:75:9c:46:10:8b:30:ac:ff:c7:f1:6c:c7:42: e9:3c:8d:06:4d:83:92:39:e1:e6:a1:e9:bb:68:ff:a0:34:9b: 70:a3:9f:24:51:d7:03:6e:bc:f1:74:fc:4f:6d:db:e2:89:8a: 64:eb:50:08:ce:7f:7b:d6:9b:d7:89:68:3f:38:fe:7d:0d:3b: 46:67:cd:19:17:7e:14:b4:c4:c2:7e:72:94:cd:2f:38:4f:f5: 3a:c7:26:8e:09:df:b4:ac:0b:75:21:4d:51:2d:3b:17:1a:b5: ba:e6:1a:7c:09:fa:9d:b8:1e:82:db:73:16:8e:9b:2c:ab:d3: d2:b4:0f:38:03:ed:25:78:28:4a:e5:73:52:0a:b4:43:89:46: 41:33:b4:47:d2:20:4e:2f:05:7a:80:1e:9d:10:32:17:f2:a8: 8b:32:cc:12:fc:9d:a1:49:26:26:da:30:36:25:f4:cd:3f:59: e0:6a:2c:7a:38:17:33:ff:ce:8a:37:f3:3a:5a:c5:d0:e4:54: 22:8a:92:b7:d2:db:20:b7:db:1f:55:93:5d:0e:3c:21:8c:ad: 3b:d1:e8:b2:09:af:13:72:3f:d6:88:93:53:a7:9e:85:a4:ec: c2:12:83:c9:7d:51:21:d2:71:74:86:6f:a7:af:61:40:19:d2: aa:f7:f4:e5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEUwQjYxMTAvBgNVBAUTKEUwMTk0QUE1M0I1ODIxQjlCRDBDNUM3QjgzNTJCQjEz ODE4NTNGOUQwHhcNMjUxMDE5MDcwODA2WhcNMjUxMDI2MDcwODA2WjAYMRYwFAYD VQQDEw02OGY0OGU1Ny02OGFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1Vnqbz2vyjtPa9fC/z8u7Uc2fOgtZfKEGQE+eTMfaYf77q9oNOfRijk5ZREk p9O5trFeTmlAAwROL5jY0LKbiTwF3+sK5246Xy7YzgmyILOIoxL7jv8glK3yLqET XF7Soavo7J54CKuOvwqiiH5SeMlCELEXV2KYCNeb5T9OS5C7k0Cua24NGT7yHTIX wrD2++ErLg+I2JJs/jpWRs3o5rF+h10/WeclpQLMfqJa01SMtWtunTowgkb+ntRL z9315UoY+blvkG6a7CjMrGxSNP7DJYpassPXTgvmg26s10QDAhuKF1tZTVJYDRnl MRnBXw5QQUIVRwfYrGg3IgjMhwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLNiMom1 IwfsmY54hH5Imsg/0vQqMB8GA1UdIwQYMBaAFOAZSqU7WCG5vQxce4NSuxOBhT+d MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTBCNi82OTU2QUUzRUJG MzAxMUVFQkU0RjNDMUVDNEY5QUUwMi80QmxLcFR0WUlibTlERng3ZzFLN0U0R0ZQ NTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRCbEtwVHRZSWJtOURGeDdnMUs3RTRHRlA1MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RTBCNi82OTU2QUUzRUJGMzAxMUVFQkU0RjNDMUVDNEY5QUUwMi80QmxLcFR0WUli bTlERng3ZzFLN0U0R0ZQNTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBEO0U3bnWcRhCLMKz/x/Fsx0LpPI0GTYOSOeHmoem7aP+gNJtwo58k UdcDbrzxdPxPbdviiYpk61AIzn971pvXiWg/OP59DTtGZ80ZF34UtMTCfnKUzS84 T/U6xyaOCd+0rAt1IU1RLTsXGrW65hp8CfqduB6C23MWjpssq9PStA84A+0leChK 5XNSCrRDiUZBM7RH0iBOLwV6gB6dEDIX8qiLMswS/J2hSSYm2jA2JfTNP1ngaix6 OBcz/86KN/M6WsXQ5FQiipK30tsgt9sfVZNdDjwhjK070eiyCa8Tcj/WiJNTp56F pOzCEoPJfVEh0nF0hm+nr2FAGdKq9/Tl -----END CERTIFICATE-----Generated at Sun Oct 19 23:32:14 2025 by rpki-client