$ rpki-client -vvf rpki.apnic.net/member_repository/A9157B74/AF64E5103BAA11F09642821CC4F9AE02/4suW87BaY-nlR5ZSbszpSjWR5fw.mft File: 4suW87BaY-nlR5ZSbszpSjWR5fw.mft (raw, json) Hash identifier: KwiTC3ai+2ghgBQUSJyZ1xlfdRgsqJVVn4Z0gYW1IIY= Subject key identifier: 31:F8:4D:0C:93:32:1D:BD:4F:F4:02:44:60:73:8B:E4:C8:BA:68:42 Authority key identifier: E2:CB:96:F3:B0:5A:63:E9:E5:47:96:52:6E:CC:E9:4A:35:91:E5:FC Certificate issuer: /CN=A9157B74/serialNumber=E2CB96F3B05A63E9E54796526ECCE94A3591E5FC Certificate serial: 50 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4suW87BaY-nlR5ZSbszpSjWR5fw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157B74/AF64E5103BAA11F09642821CC4F9AE02/4suW87BaY-nlR5ZSbszpSjWR5fw.mft Manifest number: 4E Signing time: Sun 19 Oct 2025 10:42:24 +0000 Manifest this update: Sun 19 Oct 2025 10:42:23 +0000 Manifest next update: Sun 26 Oct 2025 10:42:23 +0000 Files and hashes: 1: 4suW87BaY-nlR5ZSbszpSjWR5fw.crl (hash: r7Rh5jJdQE7KZwo5HVXl9naxMgRESTdLyWOmFRqEbZ8=) 2: ACCFE0643C9711F08159891EC4F9AE02.roa (hash: wGVIBPNEBcFCJnJRSDz4VWxuIzLpiNR2BJzQPhs1Kok=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157B74/AF64E5103BAA11F09642821CC4F9AE02/4suW87BaY-nlR5ZSbszpSjWR5fw.crl rsync://rpki.apnic.net/member_repository/A9157B74/AF64E5103BAA11F09642821CC4F9AE02/4suW87BaY-nlR5ZSbszpSjWR5fw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4suW87BaY-nlR5ZSbszpSjWR5fw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 10:42:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 80 (0x50) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157B74, serialNumber=E2CB96F3B05A63E9E54796526ECCE94A3591E5FC Validity Not Before: Oct 19 10:42:23 2025 GMT Not After : Oct 26 10:42:23 2025 GMT Subject: CN=68f4c08f-368b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:c0:17:2c:7e:cd:7f:e9:e7:dd:1d:94:d2:54: 48:14:31:a3:63:06:81:7d:e0:b3:9f:d3:f0:eb:ce: 04:be:ef:3c:01:cb:17:a9:46:06:7b:de:29:c4:9f: 3f:8b:ec:78:06:49:96:d0:f2:5a:58:b7:8d:0d:f6: 57:90:a0:df:d4:d6:25:f2:61:e7:db:1e:a3:3a:96: 6a:6f:10:cf:2c:b6:26:ac:ce:2b:65:92:31:d7:f6: 43:c3:f5:5d:cc:6f:54:de:af:26:c9:e1:70:e4:ea: c8:d2:46:93:8c:f7:81:ef:8c:be:fb:42:30:01:88: f0:68:21:7a:ec:26:d6:c8:fc:7b:a9:46:c4:87:a3: 13:2d:1d:e2:54:da:7f:05:38:98:27:53:28:dd:de: bb:b5:b3:d7:1f:ea:ee:9d:4f:38:f8:91:7c:d7:0a: b9:34:de:38:24:67:43:a0:2a:36:76:30:29:56:e1: f9:96:10:49:80:8f:b5:8e:ab:2c:92:d6:88:c2:86: db:29:c7:09:2b:7c:f4:6d:f1:a5:d4:70:79:bb:26: e7:f3:4d:30:fe:69:30:4a:38:8f:bd:d5:68:c1:ff: b2:67:28:d0:3f:dd:8e:e9:de:2a:36:ab:cd:e7:53: 63:93:41:94:bd:36:07:bc:20:06:c1:ff:d0:ff:07: 01:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:F8:4D:0C:93:32:1D:BD:4F:F4:02:44:60:73:8B:E4:C8:BA:68:42 X509v3 Authority Key Identifier: keyid:E2:CB:96:F3:B0:5A:63:E9:E5:47:96:52:6E:CC:E9:4A:35:91:E5:FC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157B74/AF64E5103BAA11F09642821CC4F9AE02/4suW87BaY-nlR5ZSbszpSjWR5fw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4suW87BaY-nlR5ZSbszpSjWR5fw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157B74/AF64E5103BAA11F09642821CC4F9AE02/4suW87BaY-nlR5ZSbszpSjWR5fw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8f:49:19:c3:73:aa:2f:c5:85:64:14:b3:9b:13:86:1d:cc:49: 37:ef:29:d1:1a:5c:0c:6b:e5:c2:a4:81:7e:8c:f4:7f:31:b9: 3e:44:4d:b6:89:4b:ac:3d:b7:40:89:0b:6f:30:2f:92:cb:2a: d4:dd:39:5c:41:21:d1:38:23:a8:3b:2d:a4:81:63:2d:d0:80: 50:02:1e:af:29:99:fa:29:4e:ef:ef:1e:de:bd:56:c3:ae:67: 17:17:90:7c:8e:8f:9b:89:46:dd:0f:df:6e:d7:13:34:49:27: 57:22:e4:b8:42:60:21:e6:16:ee:b5:48:7c:bd:86:08:9a:ac: 57:16:e7:79:5d:52:50:f7:6c:86:f7:2d:2c:24:3a:7f:9a:37: 9d:73:b4:16:88:8e:04:65:d4:4b:5e:87:43:ed:20:4f:a2:87: 4e:53:a1:a0:b1:9c:86:af:7c:af:4b:55:c4:32:39:40:f8:0d: 0e:2b:fc:ce:4a:10:7e:aa:25:ea:75:cd:60:f5:95:d0:fb:29: 71:36:a2:65:23:05:e7:af:0e:95:51:0d:a0:12:36:c8:6b:15: 20:b3:d0:0e:8d:bb:62:d4:d2:0f:50:17:37:20:56:93:7e:00: b0:dc:64:ea:bc:d5:e6:74:68:e9:72:90:db:f9:cf:8d:72:90: db:75:41:1a -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBUDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 N0I3NDExMC8GA1UEBRMoRTJDQjk2RjNCMDVBNjNFOUU1NDc5NjUyNkVDQ0U5NEEz NTkxRTVGQzAeFw0yNTEwMTkxMDQyMjNaFw0yNTEwMjYxMDQyMjNaMBgxFjAUBgNV BAMTDTY4ZjRjMDhmLTM2OGIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCswBcsfs1/6efdHZTSVEgUMaNjBoF94LOf0/DrzgS+7zwByxepRgZ73inEnz+L 7HgGSZbQ8lpYt40N9leQoN/U1iXyYefbHqM6lmpvEM8stiaszitlkjHX9kPD9V3M b1TerybJ4XDk6sjSRpOM94HvjL77QjABiPBoIXrsJtbI/HupRsSHoxMtHeJU2n8F OJgnUyjd3ru1s9cf6u6dTzj4kXzXCrk03jgkZ0OgKjZ2MClW4fmWEEmAj7WOqyyS 1ojChtspxwkrfPRt8aXUcHm7JufzTTD+aTBKOI+91WjB/7JnKNA/3Y7p3io2q83n U2OTQZS9Nge8IAbB/9D/BwHtAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUMfhNDJMy Hb1P9AJEYHOL5Mi6aEIwHwYDVR0jBBgwFoAU4suW87BaY+nlR5ZSbszpSjWR5fww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU3Qjc0L0FGNjRFNTEwM0JB QTExRjA5NjQyODIxQ0M0RjlBRTAyLzRzdVc4N0JhWS1ubFI1WlNic3pwU2pXUjVm dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvNHN1Vzg3QmFZLW5sUjVaU2JzenBTaldSNWZ3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU3 Qjc0L0FGNjRFNTEwM0JBQTExRjA5NjQyODIxQ0M0RjlBRTAyLzRzdVc4N0JhWS1u bFI1WlNic3pwU2pXUjVmdy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAI9JGcNzqi/FhWQUs5sThh3MSTfvKdEaXAxr5cKkgX6M9H8xuT5ETbaJ S6w9t0CJC28wL5LLKtTdOVxBIdE4I6g7LaSBYy3QgFACHq8pmfopTu/vHt69VsOu ZxcXkHyOj5uJRt0P327XEzRJJ1ci5LhCYCHmFu61SHy9hgiarFcW53ldUlD3bIb3 LSwkOn+aN51ztBaIjgRl1Eteh0PtIE+ih05ToaCxnIavfK9LVcQyOUD4DQ4r/M5K EH6qJep1zWD1ldD7KXE2omUjBeevDpVRDaASNshrFSCz0A6Nu2LU0g9QFzcgVpN+ ALDcZOq81eZ0aOlykNv5z41ykNt1QRo= -----END CERTIFICATE-----Generated at Tue Oct 21 10:42:14 2025 by rpki-client