$ rpki-client -vvf rpki.apnic.net/member_repository/A9157DAE/61666C0ED68911E8B6811433C4F9AE02/4bgHrCt0Vfux4xYGjR0BcSYLscc.mft File: 4bgHrCt0Vfux4xYGjR0BcSYLscc.mft (raw, json) Hash identifier: FfOtro9MXicH83LpDyRsYiE26LKIkMenXxfWGT440R8= Subject key identifier: F0:6D:71:EE:63:86:05:69:EA:67:FE:AA:B5:F4:F5:97:2D:8A:C5:4E Authority key identifier: E1:B8:07:AC:2B:74:55:FB:B1:E3:16:06:8D:1D:01:71:26:0B:B1:C7 Certificate issuer: /CN=A9157DAE/serialNumber=E1B807AC2B7455FBB1E316068D1D0171260BB1C7 Certificate serial: 135B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4bgHrCt0Vfux4xYGjR0BcSYLscc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157DAE/61666C0ED68911E8B6811433C4F9AE02/4bgHrCt0Vfux4xYGjR0BcSYLscc.mft Manifest number: 12DD Signing time: Sat 18 Oct 2025 17:35:09 +0000 Manifest this update: Sat 18 Oct 2025 17:35:09 +0000 Manifest next update: Sat 25 Oct 2025 17:35:09 +0000 Files and hashes: 1: 4bgHrCt0Vfux4xYGjR0BcSYLscc.crl (hash: y8grfdszc6dJLoBa5O+a5zgv4UO/rDjLJw4WYDbwqQo=) 2: A6A4A20E89B911EC8FDB572DC4F9AE02.roa (hash: jk5NfHi6Ak10G3qvwwRLBuA+9+MuEQTJVNCIOpp4ijc=) 3: A8949F64D86E11E982BA0712C4F9AE02.roa (hash: o0TBqHxczgW2iXEBGTx5nw86Q8zs7jfB/2ZiH2tcXBM=) 4: 1F8378E6BCBD11EBAC9A4744C4F9AE02.roa (hash: J5LxjosxnnfdXaMAoaZ/PL1BfkizkN1e40crDyxzXgM=) 5: 9EE31802996B11E9B3FEED46C4F9AE02.roa (hash: GdNQEvmzlHfA6Ec8mmP8z6x+jIWG7iAnHlvJMuf8oD8=) 6: F6EBC724B24211EF99C46E64C4F9AE02.roa (hash: q2Nqb/hrcV90WNVexwR/NHfj/Q0Tv7rC0yL9DHC6X3M=) 7: D17E9426B24211EFBBDC2164C4F9AE02.roa (hash: 08uSCXwlwYJnGMem9e+DAMnS4EN8A9/G3dvb9XlzVbk=) 8: 161983C2B9EB11EDB53AC21BC4F9AE02.roa (hash: 21MmIK/xKiS7JETWE4m4JFsmki6dx7l2EGE0grkpOo4=) 9: C2E189AC7F8C11EF94FCB676C4F9AE02.roa (hash: RAc63GKSag+ebIvPIiKjuswG8wAgmCrcqifdzue1EA8=) 10: FDB29514452511E98F23AE4FC4F9AE02.roa (hash: pyXuQQMaaHpRKrd64JzrpDvcZINK8BGOr87BtX8mKCw=) 11: 8E6CF9C8E59911E98D355932C4F9AE02.roa (hash: duhPOulpnnqLJOw021zARLEkW5qMCDlozjaUuWOU1CE=) 12: F99AFAFE1D5411EA921E0351C4F9AE02.roa (hash: RBZSewamTngEQkgjLa0OkH4nQrMAppxSjX91nS2Wpzo=) 13: C21FA1CE080511EAA9457C67C4F9AE02.roa (hash: PiSgVIn+A3YVcVJ8J1LY1Q9+m55+zt9vsCjTvJtZIKc=) 14: 0038D872072E11EB8914E540C4F9AE02.roa (hash: bM9HkA9Kov8pVlsp7/+B8Lhib1zUTj1baRTYw1iNq78=) 15: D8E0EC82927711E985E0423AC4F9AE02.roa (hash: +fJoTern1FEL3hWeQl1ij5UIzJGzXQGhkR014UlHjWU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157DAE/61666C0ED68911E8B6811433C4F9AE02/4bgHrCt0Vfux4xYGjR0BcSYLscc.crl rsync://rpki.apnic.net/member_repository/A9157DAE/61666C0ED68911E8B6811433C4F9AE02/4bgHrCt0Vfux4xYGjR0BcSYLscc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4bgHrCt0Vfux4xYGjR0BcSYLscc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 17:35:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4955 (0x135b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157DAE, serialNumber=E1B807AC2B7455FBB1E316068D1D0171260BB1C7 Validity Not Before: Oct 18 17:35:09 2025 GMT Not After : Oct 25 17:35:09 2025 GMT Subject: CN=68f3cfcd-bb73 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:55:ee:c1:88:78:30:02:e1:cf:12:04:0e:de: fb:63:f0:b3:ce:9e:02:cb:a5:27:7f:38:f0:ca:6f: ec:46:7a:68:0a:cb:bb:58:e0:26:58:ba:d0:48:f1: a0:e6:a4:c4:e8:55:aa:13:11:44:e5:33:48:c8:8c: 20:23:4f:b2:5a:81:04:96:3f:88:16:2b:2e:db:4f: fd:7d:84:ca:3c:cb:17:8e:cf:35:0f:96:60:30:a4: 29:75:aa:c2:67:5a:a8:92:42:99:09:5c:0b:5a:18: df:88:0b:a8:65:65:f5:c0:8b:e1:a9:04:eb:27:71: 38:59:2e:a9:1e:ce:0f:f8:62:d8:73:a4:3e:b3:cf: c0:f2:78:ae:b0:47:b3:67:a6:37:a7:f5:35:0a:23: e0:50:c4:db:86:e4:c1:28:f5:0c:86:b6:97:44:6b: ad:40:7a:17:c4:27:d9:eb:93:02:d8:e7:4b:4e:41: 10:8a:33:e6:f9:3b:9e:c3:87:45:9b:a9:3b:2f:14: 22:9a:c2:99:3d:42:53:78:62:af:7f:8b:aa:f6:52: 1b:19:51:a8:e1:eb:41:e1:5b:17:5f:6d:3d:ff:62: c7:fb:83:88:06:49:2c:63:fb:98:19:fe:91:af:b2: a7:5d:0a:8b:1e:4b:ca:7b:03:5a:18:65:bc:70:c0: 7c:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:6D:71:EE:63:86:05:69:EA:67:FE:AA:B5:F4:F5:97:2D:8A:C5:4E X509v3 Authority Key Identifier: keyid:E1:B8:07:AC:2B:74:55:FB:B1:E3:16:06:8D:1D:01:71:26:0B:B1:C7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157DAE/61666C0ED68911E8B6811433C4F9AE02/4bgHrCt0Vfux4xYGjR0BcSYLscc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4bgHrCt0Vfux4xYGjR0BcSYLscc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157DAE/61666C0ED68911E8B6811433C4F9AE02/4bgHrCt0Vfux4xYGjR0BcSYLscc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 91:4a:2f:65:d7:42:ce:75:d9:a3:9f:66:53:74:51:5c:54:c8: 48:c0:2e:3e:f5:1d:ed:53:d4:ea:89:f5:71:e8:73:69:ff:b8: a3:67:56:88:e2:e9:3c:d1:90:90:6e:90:e8:55:41:24:9a:fd: 5f:28:e9:0c:68:06:06:ee:ac:f7:d1:6d:3b:6b:2d:8c:84:8d: b2:90:c9:06:32:9a:eb:22:e5:b5:0e:fd:5e:74:87:d7:ea:fe: 4b:49:4c:92:f9:8b:09:24:7f:b1:e9:44:ee:a1:9c:74:05:a1: 56:e3:66:72:e4:25:78:d9:0f:e5:d4:be:42:c8:28:db:ef:76: 34:ee:38:0b:95:47:95:91:95:4a:35:b8:be:53:09:99:d7:ee: d6:e6:6f:70:d8:0d:6d:85:82:58:b2:15:b5:22:80:a5:4c:5e: 71:c9:45:52:88:92:d6:3c:24:02:14:89:05:9b:82:82:f8:21: 3b:e5:8e:dd:56:63:b4:e9:a0:68:11:49:0d:5a:90:16:8d:73: bf:60:d0:d4:33:e7:57:db:47:c4:91:56:c6:80:7a:39:8b:e5: 72:2e:83:d2:95:77:f2:96:b6:cb:85:b0:c4:77:c6:d3:ee:3c: 9d:b0:27:98:df:5e:16:4f:88:13:46:8d:b3:83:aa:15:ab:97: 82:69:8e:91 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICE1swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdEQUUxMTAvBgNVBAUTKEUxQjgwN0FDMkI3NDU1RkJCMUUzMTYwNjhEMUQwMTcx MjYwQkIxQzcwHhcNMjUxMDE4MTczNTA5WhcNMjUxMDI1MTczNTA5WjAYMRYwFAYD VQQDEw02OGYzY2ZjZC1iYjczMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0lXuwYh4MALhzxIEDt77Y/Czzp4Cy6Unfzjwym/sRnpoCsu7WOAmWLrQSPGg 5qTE6FWqExFE5TNIyIwgI0+yWoEElj+IFisu20/9fYTKPMsXjs81D5ZgMKQpdarC Z1qokkKZCVwLWhjfiAuoZWX1wIvhqQTrJ3E4WS6pHs4P+GLYc6Q+s8/A8niusEez Z6Y3p/U1CiPgUMTbhuTBKPUMhraXRGutQHoXxCfZ65MC2OdLTkEQijPm+Tuew4dF m6k7LxQimsKZPUJTeGKvf4uq9lIbGVGo4etB4VsXX209/2LH+4OIBkksY/uYGf6R r7KnXQqLHkvKewNaGGW8cMB82wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPBtce5j hgVp6mf+qrX09ZctisVOMB8GA1UdIwQYMBaAFOG4B6wrdFX7seMWBo0dAXEmC7HH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0RBRS82MTY2NkMwRUQ2 ODkxMUU4QjY4MTE0MzNDNEY5QUUwMi80YmdIckN0MFZmdXg0eFlHalIwQmNTWUxz Y2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRiZ0hyQ3QwVmZ1eDR4WUdqUjBCY1NZTHNjYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 N0RBRS82MTY2NkMwRUQ2ODkxMUU4QjY4MTE0MzNDNEY5QUUwMi80YmdIckN0MFZm dXg0eFlHalIwQmNTWUxzY2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCRSi9l10LOddmjn2ZTdFFcVMhIwC4+9R3tU9TqifVx6HNp/7ijZ1aI 4uk80ZCQbpDoVUEkmv1fKOkMaAYG7qz30W07ay2MhI2ykMkGMprrIuW1Dv1edIfX 6v5LSUyS+YsJJH+x6UTuoZx0BaFW42Zy5CV42Q/l1L5CyCjb73Y07jgLlUeVkZVK Nbi+UwmZ1+7W5m9w2A1thYJYshW1IoClTF5xyUVSiJLWPCQCFIkFm4KC+CE75Y7d VmO06aBoEUkNWpAWjXO/YNDUM+dX20fEkVbGgHo5i+VyLoPSlXfylrbLhbDEd8bT 7jydsCeY314WT4gTRo2zg6oVq5eCaY6R -----END CERTIFICATE-----Generated at Mon Oct 20 09:36:02 2025 by rpki-client