$ rpki-client -vvf rpki.apnic.net/member_repository/A914E600/221BAEBE77F111EFAC112942C4F9AE02/4LlFj2mCX_gpOHsTnoj9O9Z0AIc.mft File: 4LlFj2mCX_gpOHsTnoj9O9Z0AIc.mft (raw, json) Hash identifier: UaCcoA0NcqoGNV+1tsMhP5wtmzLuDJy7KHXqKjKv4xE= Subject key identifier: 9B:D3:46:AB:6C:30:3E:EE:47:C7:43:99:BA:C7:F5:B9:F3:A1:B2:98 Authority key identifier: E0:B9:45:8F:69:82:5F:F8:29:38:7B:13:9E:88:FD:3B:D6:74:00:87 Certificate issuer: /CN=A914E600/serialNumber=E0B9458F69825FF829387B139E88FD3BD6740087 Certificate serial: CF Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4LlFj2mCX_gpOHsTnoj9O9Z0AIc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E600/221BAEBE77F111EFAC112942C4F9AE02/4LlFj2mCX_gpOHsTnoj9O9Z0AIc.mft Manifest number: CD Signing time: Sun 19 Oct 2025 08:50:33 +0000 Manifest this update: Sun 19 Oct 2025 08:50:32 +0000 Manifest next update: Sun 26 Oct 2025 08:50:32 +0000 Files and hashes: 1: 4LlFj2mCX_gpOHsTnoj9O9Z0AIc.crl (hash: PGp0nippyTnojXouKNUckM2rU4W0vEoF+DghbOypQC0=) 2: D86268E877F111EFADAB6362C4F9AE02.roa (hash: e8wZoAxd5aA3CtPGlNCm2H8RgaO0sg67bbRxbVIcezE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E600/221BAEBE77F111EFAC112942C4F9AE02/4LlFj2mCX_gpOHsTnoj9O9Z0AIc.crl rsync://rpki.apnic.net/member_repository/A914E600/221BAEBE77F111EFAC112942C4F9AE02/4LlFj2mCX_gpOHsTnoj9O9Z0AIc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4LlFj2mCX_gpOHsTnoj9O9Z0AIc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 08:50:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 207 (0xcf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E600, serialNumber=E0B9458F69825FF829387B139E88FD3BD6740087 Validity Not Before: Oct 19 08:50:32 2025 GMT Not After : Oct 26 08:50:32 2025 GMT Subject: CN=68f4a658-799b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:74:2b:a2:f2:c4:f8:8b:83:14:57:41:fe:5e: de:34:8b:7c:41:db:be:69:5e:a0:e6:ba:aa:cc:64: e8:4f:71:f3:23:28:08:07:d1:05:b6:3b:64:54:08: 7f:b5:e1:37:ec:4e:26:ab:e0:7d:64:d9:01:07:70: 78:98:80:95:db:b1:e3:39:da:a3:b0:45:7c:8a:c4: ec:16:c0:a0:29:96:ec:29:66:ae:02:cd:ac:10:81: 38:da:4e:e0:69:08:be:f5:be:9e:02:60:51:37:f8: 01:ae:d4:0a:85:cd:9a:77:de:d4:43:6b:f2:1b:88: 5a:81:1d:e5:b8:b1:86:58:33:7c:ef:8c:ce:98:c1: 93:af:3b:ec:4d:06:0b:fe:96:4d:80:0c:39:d3:f1: 90:b0:c8:49:ef:4f:34:40:3a:8b:42:01:8a:fd:88: d1:76:b3:3a:db:29:0e:8c:5e:66:d2:d7:40:32:8b: c2:34:f2:64:9d:14:d9:58:0c:30:e5:51:d2:85:50: 12:c7:83:fc:52:9d:13:18:8c:ea:69:5a:ec:30:8d: bf:43:d2:a5:c7:d9:c9:93:67:50:62:05:b0:1b:d3: 22:30:9b:e2:85:0d:d1:8c:ba:89:6f:dd:c6:9b:05: bb:30:ac:6e:b2:cd:2b:74:2b:e0:8b:f9:43:8a:e5: 3c:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:D3:46:AB:6C:30:3E:EE:47:C7:43:99:BA:C7:F5:B9:F3:A1:B2:98 X509v3 Authority Key Identifier: keyid:E0:B9:45:8F:69:82:5F:F8:29:38:7B:13:9E:88:FD:3B:D6:74:00:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E600/221BAEBE77F111EFAC112942C4F9AE02/4LlFj2mCX_gpOHsTnoj9O9Z0AIc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4LlFj2mCX_gpOHsTnoj9O9Z0AIc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E600/221BAEBE77F111EFAC112942C4F9AE02/4LlFj2mCX_gpOHsTnoj9O9Z0AIc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 13:be:3e:a8:43:6a:db:11:95:89:4f:ef:2c:c4:51:64:c2:4f: c3:cc:5c:73:4a:c2:c1:a0:b0:2f:88:c6:a4:9f:8b:42:0f:de: b2:b7:a6:66:ca:71:4b:4e:42:fe:ac:cf:13:8b:0e:8f:ed:26: be:09:7a:0e:65:b8:b5:c4:58:19:a6:79:59:ae:a5:2c:bc:79: 8d:75:f3:60:99:da:3d:4f:48:59:d8:a5:c6:af:d6:2a:d3:86: ed:82:4f:d3:d7:c5:50:9c:63:7b:43:91:0e:13:e3:23:72:a6: 65:4b:4a:f1:5f:57:c0:8a:37:6d:91:7f:3e:3d:12:c9:b8:8b: df:f0:d9:89:74:40:32:e9:48:2c:c0:4f:dc:a0:1d:a9:6a:62: ed:63:6f:07:bb:91:cf:b6:ed:99:16:01:5a:87:70:a6:a8:24: 81:fc:85:41:86:3f:91:61:bc:3d:16:0a:c7:dc:b9:73:af:02: ef:ba:43:a0:c4:dd:a4:73:c8:92:4b:d5:d8:1b:8b:19:bc:10: 7b:2d:e4:68:0f:1d:19:3e:88:74:6a:88:07:14:a7:93:42:66: 83:d4:0a:1e:1f:a6:84:27:e2:a3:f1:a9:53:cb:30:c6:55:e4: cf:5e:68:15:c4:2e:8a:dc:36:74:d4:2c:d6:b0:af:09:b9:a7: c4:21:cb:5e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAM8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEU2MDAxMTAvBgNVBAUTKEUwQjk0NThGNjk4MjVGRjgyOTM4N0IxMzlFODhGRDNC RDY3NDAwODcwHhcNMjUxMDE5MDg1MDMyWhcNMjUxMDI2MDg1MDMyWjAYMRYwFAYD VQQDEw02OGY0YTY1OC03OTliMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuXQrovLE+IuDFFdB/l7eNIt8Qdu+aV6g5rqqzGToT3HzIygIB9EFtjtkVAh/ teE37E4mq+B9ZNkBB3B4mICV27HjOdqjsEV8isTsFsCgKZbsKWauAs2sEIE42k7g aQi+9b6eAmBRN/gBrtQKhc2ad97UQ2vyG4hagR3luLGGWDN874zOmMGTrzvsTQYL /pZNgAw50/GQsMhJ7080QDqLQgGK/YjRdrM62ykOjF5m0tdAMovCNPJknRTZWAww 5VHShVASx4P8Up0TGIzqaVrsMI2/Q9Klx9nJk2dQYgWwG9MiMJvihQ3RjLqJb93G mwW7MKxuss0rdCvgi/lDiuU8MwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJvTRqts MD7uR8dDmbrH9bnzobKYMB8GA1UdIwQYMBaAFOC5RY9pgl/4KTh7E56I/TvWdACH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTYwMC8yMjFCQUVCRTc3 RjExMUVGQUMxMTI5NDJDNEY5QUUwMi80TGxGajJtQ1hfZ3BPSHNUbm9qOU85WjBB SWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzRMbEZqMm1DWF9ncE9Ic1Rub2o5TzlaMEFJYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RTYwMC8yMjFCQUVCRTc3RjExMUVGQUMxMTI5NDJDNEY5QUUwMi80TGxGajJtQ1hf Z3BPSHNUbm9qOU85WjBBSWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQATvj6oQ2rbEZWJT+8sxFFkwk/DzFxzSsLBoLAviMakn4tCD96yt6Zm ynFLTkL+rM8Tiw6P7Sa+CXoOZbi1xFgZpnlZrqUsvHmNdfNgmdo9T0hZ2KXGr9Yq 04btgk/T18VQnGN7Q5EOE+MjcqZlS0rxX1fAijdtkX8+PRLJuIvf8NmJdEAy6Ugs wE/coB2pamLtY28Hu5HPtu2ZFgFah3CmqCSB/IVBhj+RYbw9FgrH3LlzrwLvukOg xN2kc8iSS9XYG4sZvBB7LeRoDx0ZPoh0aogHFKeTQmaD1AoeH6aEJ+Kj8alTyzDG VeTPXmgVxC6K3DZ01CzWsK8JuafEIcte -----END CERTIFICATE-----Generated at Mon Oct 20 18:23:07 2025 by rpki-client