$ rpki-client -vvf rpki.apnic.net/member_repository/A916814B/02A2D970162F11E8B8DE2669C4F9AE02/4YMttqUeSiWekP7IHkfFRpxSpok.mft File: 4YMttqUeSiWekP7IHkfFRpxSpok.mft (raw, json) Hash identifier: /rz1yXoxIYrsRXlfQNSe2izme1SPOHhJ6AxTJf+SneM= Subject key identifier: 34:DA:0D:08:D1:6D:B2:F7:97:25:50:32:15:B1:5C:9C:89:47:2E:67 Authority key identifier: E1:83:2D:B6:A5:1E:4A:25:9E:90:FE:C8:1E:47:C5:46:9C:52:A6:89 Certificate issuer: /CN=A916814B/serialNumber=E1832DB6A51E4A259E90FEC81E47C5469C52A689 Certificate serial: 165C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4YMttqUeSiWekP7IHkfFRpxSpok.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916814B/02A2D970162F11E8B8DE2669C4F9AE02/4YMttqUeSiWekP7IHkfFRpxSpok.mft Manifest number: 1650 Signing time: Sat 18 Oct 2025 17:08:10 +0000 Manifest this update: Sat 18 Oct 2025 17:08:10 +0000 Manifest next update: Sat 25 Oct 2025 17:08:10 +0000 Files and hashes: 1: 4YMttqUeSiWekP7IHkfFRpxSpok.crl (hash: w0ul+G8QyeOITAA+aXYt8z4+OPBjyN7fYWehCtAQ4MA=) 2: B4FED5FC8E5311EBB81E6C70C4F9AE02.roa (hash: kDacZR8moKTX56aD4xPOhhoyt0qIcn1U0w7VaT9wQjo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916814B/02A2D970162F11E8B8DE2669C4F9AE02/4YMttqUeSiWekP7IHkfFRpxSpok.crl rsync://rpki.apnic.net/member_repository/A916814B/02A2D970162F11E8B8DE2669C4F9AE02/4YMttqUeSiWekP7IHkfFRpxSpok.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4YMttqUeSiWekP7IHkfFRpxSpok.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 17:08:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5724 (0x165c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916814B, serialNumber=E1832DB6A51E4A259E90FEC81E47C5469C52A689 Validity Not Before: Oct 18 17:08:10 2025 GMT Not After : Oct 25 17:08:10 2025 GMT Subject: CN=68f3c97a-68cf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:a5:df:bf:d0:d9:66:48:3f:38:11:c1:fb:05: fd:a0:ca:2d:59:a8:94:71:d3:88:cb:0c:a1:01:94: 4c:e6:cb:1e:98:a5:15:f2:ce:7c:4c:6a:06:f5:03: ea:12:fd:02:2f:31:61:91:32:ba:8a:e5:88:36:3e: 31:3d:e1:40:2c:dc:e5:ab:ea:a2:40:90:6a:26:49: d4:0f:f6:07:ab:39:8a:84:8c:8d:ad:5a:13:2a:a4: 94:2c:a5:e7:2a:ff:ab:70:0b:37:a8:61:fd:a1:00: 51:1d:59:e2:70:29:02:02:cc:00:73:16:4a:ae:55: 21:40:92:1f:4a:b8:1a:8f:6f:5b:bd:99:e0:11:63: fe:cc:6e:93:83:f6:b6:01:36:8a:47:a8:f9:f6:0d: 5f:6e:ce:31:fd:8d:b4:dd:60:09:4d:11:94:cf:cf: 50:8c:95:5b:19:12:c3:e0:fb:d8:d1:56:66:38:6b: e8:5e:41:42:67:a7:fe:c3:48:d0:9c:f2:4c:f3:be: 65:34:89:8b:13:91:76:33:0f:e9:f8:f7:d5:37:34: 72:f0:59:21:6b:8d:1e:ac:e4:9a:a8:62:a2:91:1d: ea:ec:48:6c:2a:56:21:56:5e:94:d4:27:52:3e:4e: a4:cc:f1:04:a9:f0:72:f2:ac:28:2a:ec:6a:6f:30: e7:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:DA:0D:08:D1:6D:B2:F7:97:25:50:32:15:B1:5C:9C:89:47:2E:67 X509v3 Authority Key Identifier: keyid:E1:83:2D:B6:A5:1E:4A:25:9E:90:FE:C8:1E:47:C5:46:9C:52:A6:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916814B/02A2D970162F11E8B8DE2669C4F9AE02/4YMttqUeSiWekP7IHkfFRpxSpok.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4YMttqUeSiWekP7IHkfFRpxSpok.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916814B/02A2D970162F11E8B8DE2669C4F9AE02/4YMttqUeSiWekP7IHkfFRpxSpok.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8a:be:59:ce:73:e8:ce:c9:4e:11:5a:27:8a:7b:00:03:91:30: f8:88:36:34:09:74:cd:33:f7:3e:14:68:97:94:28:b1:71:45: 16:e3:32:c9:c6:05:79:bb:69:5b:97:f5:50:4e:c6:a8:fd:30: 32:b8:02:7e:84:3f:fe:22:47:6e:84:e4:07:c8:6f:5e:86:40: 56:00:b2:77:15:30:66:c2:9a:67:8c:e2:8a:58:2a:25:e8:aa: d9:94:93:4d:02:75:ad:0e:06:77:b4:47:21:0e:c9:db:cd:12: a3:d2:68:f9:72:f4:ae:c9:a6:d2:03:06:ad:c9:1a:33:a2:3a: 4b:dc:45:5a:f0:be:bf:0f:32:cf:59:94:1d:87:75:8e:e9:ca: c6:17:ff:ef:84:ba:4c:54:2d:d3:b2:b4:72:85:0a:33:34:a4: 86:b8:0d:97:58:3b:4c:00:f0:1a:4c:fa:c0:93:32:b3:04:b2: a7:ba:47:59:90:af:bd:a9:b3:e9:bc:0c:66:d2:f8:22:fa:52: ea:f9:8f:9c:0d:7a:c7:e9:b0:02:92:1c:ac:f7:68:88:0e:23: 20:b4:15:95:32:71:df:09:9c:b8:8c:87:ef:59:d6:a2:f5:b1: 66:62:c5:31:51:63:d4:c9:3b:bc:d9:ed:4e:bf:0a:98:15:d6: 2c:ae:3e:4e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFlwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjgxNEIxMTAvBgNVBAUTKEUxODMyREI2QTUxRTRBMjU5RTkwRkVDODFFNDdDNTQ2 OUM1MkE2ODkwHhcNMjUxMDE4MTcwODEwWhcNMjUxMDI1MTcwODEwWjAYMRYwFAYD VQQDEw02OGYzYzk3YS02OGNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsaXfv9DZZkg/OBHB+wX9oMotWaiUcdOIywyhAZRM5ssemKUV8s58TGoG9QPq Ev0CLzFhkTK6iuWINj4xPeFALNzlq+qiQJBqJknUD/YHqzmKhIyNrVoTKqSULKXn Kv+rcAs3qGH9oQBRHVnicCkCAswAcxZKrlUhQJIfSrgaj29bvZngEWP+zG6Tg/a2 ATaKR6j59g1fbs4x/Y203WAJTRGUz89QjJVbGRLD4PvY0VZmOGvoXkFCZ6f+w0jQ nPJM875lNImLE5F2Mw/p+PfVNzRy8Fkha40erOSaqGKikR3q7EhsKlYhVl6U1CdS Pk6kzPEEqfBy8qwoKuxqbzDnoQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDTaDQjR bbL3lyVQMhWxXJyJRy5nMB8GA1UdIwQYMBaAFOGDLbalHkolnpD+yB5HxUacUqaJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2ODE0Qi8wMkEyRDk3MDE2 MkYxMUU4QjhERTI2NjlDNEY5QUUwMi80WU10dHFVZVNpV2VrUDdJSGtmRlJweFNw b2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRZTXR0cVVlU2lXZWtQN0lIa2ZGUnB4U3Bvay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 ODE0Qi8wMkEyRDk3MDE2MkYxMUU4QjhERTI2NjlDNEY5QUUwMi80WU10dHFVZVNp V2VrUDdJSGtmRlJweFNwb2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCKvlnOc+jOyU4RWieKewADkTD4iDY0CXTNM/c+FGiXlCixcUUW4zLJ xgV5u2lbl/VQTsao/TAyuAJ+hD/+IkduhOQHyG9ehkBWALJ3FTBmwppnjOKKWCol 6KrZlJNNAnWtDgZ3tEchDsnbzRKj0mj5cvSuyabSAwatyRozojpL3EVa8L6/DzLP WZQdh3WO6crGF//vhLpMVC3TsrRyhQozNKSGuA2XWDtMAPAaTPrAkzKzBLKnukdZ kK+9qbPpvAxm0vgi+lLq+Y+cDXrH6bACkhys92iIDiMgtBWVMnHfCZy4jIfvWdai 9bFmYsUxUWPUyTu82e1OvwqYFdYsrj5O -----END CERTIFICATE-----Generated at Mon Oct 20 08:48:23 2025 by rpki-client