$ rpki-client -vvf rpki.apnic.net/member_repository/A916DED9/DF15B3B8852911EEAFD04C84C4F9AE02/4W5PZeLjl-n84FeFomXGGXyCIMk.mft File: 4W5PZeLjl-n84FeFomXGGXyCIMk.mft (raw, json) Hash identifier: o/OSgX6GHlVYCY3asPN3Y+3rlPImllPGlTlQ4sPS3HE= Subject key identifier: D2:7F:DF:77:41:6F:74:9A:E7:21:63:B0:7C:9A:86:EE:9A:84:F3:71 Authority key identifier: E1:6E:4F:65:E2:E3:97:E9:FC:E0:57:85:A2:65:C6:19:7C:82:20:C9 Certificate issuer: /CN=A916DED9/serialNumber=E16E4F65E2E397E9FCE05785A265C6197C8220C9 Certificate serial: 0168 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4W5PZeLjl-n84FeFomXGGXyCIMk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916DED9/DF15B3B8852911EEAFD04C84C4F9AE02/4W5PZeLjl-n84FeFomXGGXyCIMk.mft Manifest number: 0166 Signing time: Sun 19 Oct 2025 06:36:25 +0000 Manifest this update: Sun 19 Oct 2025 06:36:25 +0000 Manifest next update: Sun 26 Oct 2025 06:36:25 +0000 Files and hashes: 1: 4W5PZeLjl-n84FeFomXGGXyCIMk.crl (hash: eoiPSPYAn3BL1PEvXRCtipoE6N06eGFS7m5YKd82tyk=) 2: 880E53BC852A11EE8B988A85C4F9AE02.roa (hash: SuIwbjVFIiO//MYlkWAI7JLL+Gi6my0EIFtFpMkp/oM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916DED9/DF15B3B8852911EEAFD04C84C4F9AE02/4W5PZeLjl-n84FeFomXGGXyCIMk.crl rsync://rpki.apnic.net/member_repository/A916DED9/DF15B3B8852911EEAFD04C84C4F9AE02/4W5PZeLjl-n84FeFomXGGXyCIMk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4W5PZeLjl-n84FeFomXGGXyCIMk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 06:36:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 360 (0x168) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916DED9, serialNumber=E16E4F65E2E397E9FCE05785A265C6197C8220C9 Validity Not Before: Oct 19 06:36:25 2025 GMT Not After : Oct 26 06:36:25 2025 GMT Subject: CN=68f486e9-ad43 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:d9:0b:c1:a3:a9:0f:53:11:5b:c9:77:b5:e1: 5d:0c:4c:b4:58:c9:8d:a7:b4:58:39:97:fc:bd:15: 5d:f2:a4:35:dd:cb:20:cb:a5:80:54:fa:25:db:23: da:1b:33:21:76:7d:74:c5:16:d6:da:3d:5c:26:2c: 47:16:0d:87:bd:3f:69:5d:03:85:d1:6c:89:d8:42: 3a:ee:70:31:87:1c:63:37:24:cf:2a:a3:c4:d5:67: 0c:c2:a9:b4:03:c8:f1:23:6a:17:24:f4:c9:29:56: f5:83:18:79:92:bb:3d:cc:e3:81:e1:80:f8:1b:94: 58:8a:26:f8:d7:65:59:45:81:cd:d0:83:7f:80:19: b9:cd:f0:28:ef:10:95:8e:66:bd:2d:73:89:f1:35: 40:2e:ea:33:a8:26:e9:b2:f8:80:76:5d:75:63:a3: a7:64:34:c1:5a:c7:45:cf:9d:29:e2:2c:07:67:09: 27:78:45:c1:63:6f:fb:20:f9:1c:17:a6:24:07:8a: 5c:77:3e:44:6e:d8:55:07:b9:55:ba:d4:6c:04:65: 18:0c:77:38:da:cf:ef:48:13:63:37:92:f4:90:02: 7a:59:6c:c6:19:ea:54:20:e3:25:1b:83:db:75:3c: b5:c3:93:c0:da:56:b9:6d:c6:85:d1:be:85:c5:23: 11:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:7F:DF:77:41:6F:74:9A:E7:21:63:B0:7C:9A:86:EE:9A:84:F3:71 X509v3 Authority Key Identifier: keyid:E1:6E:4F:65:E2:E3:97:E9:FC:E0:57:85:A2:65:C6:19:7C:82:20:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916DED9/DF15B3B8852911EEAFD04C84C4F9AE02/4W5PZeLjl-n84FeFomXGGXyCIMk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4W5PZeLjl-n84FeFomXGGXyCIMk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916DED9/DF15B3B8852911EEAFD04C84C4F9AE02/4W5PZeLjl-n84FeFomXGGXyCIMk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a4:0f:6c:c8:97:e8:d8:51:44:90:e6:9f:c0:bc:fa:5a:79:a4: 29:fa:bf:25:bf:29:04:29:d8:49:65:b0:8b:d1:f2:5e:37:fe: a6:ff:55:33:da:04:6f:eb:de:d2:98:84:55:4b:bb:c6:6f:b3: fe:0f:a2:5e:b1:21:3e:b9:82:64:4c:c0:43:95:f1:d3:8b:4a: 35:da:6f:d0:b2:57:1c:d3:70:c6:b5:b1:77:94:f0:9d:e3:4a: 73:3f:70:0d:d2:9c:70:b8:9a:c6:73:a3:84:aa:f2:e1:62:7e: 8c:94:73:58:95:76:aa:6c:34:50:13:d3:37:0a:65:09:6f:89: 34:d8:bf:af:a0:f7:86:99:da:c6:24:b7:d8:52:7a:62:94:56: 50:79:4d:70:86:e2:93:30:c2:d8:20:23:2b:02:dd:21:6c:30: a6:9e:61:f2:b9:3f:ac:5c:e0:3f:0e:3d:88:cb:fc:0d:88:86: 5d:6a:ca:e9:36:ee:a1:8d:6f:3a:f6:8b:42:71:a3:df:5b:cc: 31:e6:c9:eb:7a:ea:fa:7f:61:28:72:06:6c:06:87:7d:a0:ce: 7a:55:8e:05:e3:e1:63:dd:4f:ef:eb:b9:35:2f:ef:82:9c:5d: 77:f6:a0:58:3d:de:fc:17:4f:72:9d:a0:67:40:fc:aa:4c:08: f4:45:a3:cb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAWgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkRFRDkxMTAvBgNVBAUTKEUxNkU0RjY1RTJFMzk3RTlGQ0UwNTc4NUEyNjVDNjE5 N0M4MjIwQzkwHhcNMjUxMDE5MDYzNjI1WhcNMjUxMDI2MDYzNjI1WjAYMRYwFAYD VQQDEw02OGY0ODZlOS1hZDQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx9kLwaOpD1MRW8l3teFdDEy0WMmNp7RYOZf8vRVd8qQ13csgy6WAVPol2yPa GzMhdn10xRbW2j1cJixHFg2HvT9pXQOF0WyJ2EI67nAxhxxjNyTPKqPE1WcMwqm0 A8jxI2oXJPTJKVb1gxh5krs9zOOB4YD4G5RYiib412VZRYHN0IN/gBm5zfAo7xCV jma9LXOJ8TVALuozqCbpsviAdl11Y6OnZDTBWsdFz50p4iwHZwkneEXBY2/7IPkc F6YkB4pcdz5EbthVB7lVutRsBGUYDHc42s/vSBNjN5L0kAJ6WWzGGepUIOMlG4Pb dTy1w5PA2la5bcaF0b6FxSMRxwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNJ/33dB b3Sa5yFjsHyahu6ahPNxMB8GA1UdIwQYMBaAFOFuT2Xi45fp/OBXhaJlxhl8giDJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2REVEOS9ERjE1QjNCODg1 MjkxMUVFQUZEMDRDODRDNEY5QUUwMi80VzVQWmVMamwtbjg0RmVGb21YR0dYeUNJ TWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRXNVBaZUxqbC1uODRGZUZvbVhHR1h5Q0lNay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 REVEOS9ERjE1QjNCODg1MjkxMUVFQUZEMDRDODRDNEY5QUUwMi80VzVQWmVMamwt bjg0RmVGb21YR0dYeUNJTWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCkD2zIl+jYUUSQ5p/AvPpaeaQp+r8lvykEKdhJZbCL0fJeN/6m/1Uz 2gRv697SmIRVS7vGb7P+D6JesSE+uYJkTMBDlfHTi0o12m/Qslcc03DGtbF3lPCd 40pzP3AN0pxwuJrGc6OEqvLhYn6MlHNYlXaqbDRQE9M3CmUJb4k02L+voPeGmdrG JLfYUnpilFZQeU1whuKTMMLYICMrAt0hbDCmnmHyuT+sXOA/Dj2Iy/wNiIZdasrp Nu6hjW869otCcaPfW8wx5snreur6f2EocgZsBod9oM56VY4F4+Fj3U/v67k1L++C nF139qBYPd78F09ynaBnQPyqTAj0RaPL -----END CERTIFICATE-----Generated at Sun Oct 19 23:28:58 2025 by rpki-client