$ rpki-client -vvf rpki.apnic.net/member_repository/A9170C53/CE445BD0DA5B11ED96747C5AC4F9AE02/4dFD2djqAiJMHLDJFey4TuKLWqo.mft File: 4dFD2djqAiJMHLDJFey4TuKLWqo.mft (raw, json) Hash identifier: jq3fVV/FIi57VgvNzo+ByFKqSqVmLUgRzAgf179PmrE= Subject key identifier: 78:48:D6:07:AC:0F:F9:49:87:30:E4:91:B9:2B:A7:30:4F:E2:AF:56 Authority key identifier: E1:D1:43:D9:D8:EA:02:22:4C:1C:B0:C9:15:EC:B8:4E:E2:8B:5A:AA Certificate issuer: /CN=A9170C53/serialNumber=E1D143D9D8EA02224C1CB0C915ECB84EE28B5AAA Certificate serial: 01E7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4dFD2djqAiJMHLDJFey4TuKLWqo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170C53/CE445BD0DA5B11ED96747C5AC4F9AE02/4dFD2djqAiJMHLDJFey4TuKLWqo.mft Manifest number: 01DA Signing time: Sun 19 Oct 2025 05:12:21 +0000 Manifest this update: Sun 19 Oct 2025 05:12:20 +0000 Manifest next update: Sun 26 Oct 2025 05:12:20 +0000 Files and hashes: 1: 4dFD2djqAiJMHLDJFey4TuKLWqo.crl (hash: Kb1FuUh5F1QpgaAuVWei7jOjkqZ4h/cZaLYmQSI895M=) 2: 916EFEE0DA6011ED9BC6175FC4F9AE02.roa (hash: RDPi47SZcDAz4xmQe0PzevESUJOCnp77k9KEsG3kOPw=) 3: 9283C1F8DA6011ED9BC6175FC4F9AE02.roa (hash: 4ZxnpGjaykPQCM8pL2N1CRQo3+QNzrfE6n7zpJytINg=) 4: 90AE648CDA6011ED9BC6175FC4F9AE02.roa (hash: +lHlOLbl/5RnNOcPx8/sJld2TYpyfZTtFIxadDBZYdU=) 5: 91FAB1ECDA6011ED9BC6175FC4F9AE02.roa (hash: v8W7oHHzaQTWG5Q9zg44OzZnUjsO7rk1vnHeE+xeDvw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170C53/CE445BD0DA5B11ED96747C5AC4F9AE02/4dFD2djqAiJMHLDJFey4TuKLWqo.crl rsync://rpki.apnic.net/member_repository/A9170C53/CE445BD0DA5B11ED96747C5AC4F9AE02/4dFD2djqAiJMHLDJFey4TuKLWqo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4dFD2djqAiJMHLDJFey4TuKLWqo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 05:12:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 487 (0x1e7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170C53, serialNumber=E1D143D9D8EA02224C1CB0C915ECB84EE28B5AAA Validity Not Before: Oct 19 05:12:20 2025 GMT Not After : Oct 26 05:12:20 2025 GMT Subject: CN=68f47334-bb9a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:57:22:5e:c6:3b:22:12:9d:a6:6c:d7:1b:3a: 1b:11:dd:bf:78:c9:72:c4:03:46:60:4b:c6:8c:5d: 17:30:be:61:b7:ee:e3:71:55:87:cd:01:25:bf:0b: e6:a6:58:8d:69:48:c4:95:66:2c:6b:46:13:c2:38: 77:16:81:ae:ab:c4:51:c1:07:3a:2b:5d:d2:5a:e4: 41:34:78:5b:53:03:f3:58:cc:f0:d3:bc:47:06:b4: cc:ad:7f:75:c2:d2:f0:04:1a:6a:73:12:05:27:eb: 80:1f:48:5e:2c:52:a3:c4:74:1a:cc:2a:55:fb:1a: c1:7c:5e:31:4f:96:98:a6:60:f0:33:45:2b:e3:82: 57:a3:1c:54:17:2b:89:b8:35:09:33:c4:33:a1:dd: 90:6d:9b:e0:b4:4f:17:c6:c1:df:84:31:b3:3e:3d: 37:85:67:d7:4a:14:75:e4:a3:75:e5:b6:6a:77:ab: 25:2f:ff:71:6d:f4:4b:95:15:25:8f:37:8b:8f:ce: 7f:1b:c9:53:eb:77:49:dd:ce:df:51:3a:3d:84:44: 8d:c7:2a:84:59:82:e6:22:20:4c:5c:15:c5:49:0f: da:65:b5:37:18:69:14:67:9e:e5:79:49:9b:2f:05: ec:39:80:03:4a:d5:4b:23:ab:cd:90:74:0f:a5:88: e4:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:48:D6:07:AC:0F:F9:49:87:30:E4:91:B9:2B:A7:30:4F:E2:AF:56 X509v3 Authority Key Identifier: keyid:E1:D1:43:D9:D8:EA:02:22:4C:1C:B0:C9:15:EC:B8:4E:E2:8B:5A:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170C53/CE445BD0DA5B11ED96747C5AC4F9AE02/4dFD2djqAiJMHLDJFey4TuKLWqo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4dFD2djqAiJMHLDJFey4TuKLWqo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170C53/CE445BD0DA5B11ED96747C5AC4F9AE02/4dFD2djqAiJMHLDJFey4TuKLWqo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 17:1d:fa:6b:aa:2f:3e:2b:a7:ff:0a:0b:78:5c:28:86:ab:52: c8:92:ff:0e:80:71:4a:27:37:6b:6b:f8:29:07:57:58:0d:ff: 8b:ba:77:77:32:01:0e:8f:d4:04:0c:77:9b:fe:3d:67:7c:f4: 91:b9:6a:7a:6b:dc:56:fa:11:fe:b0:18:78:16:be:2c:db:cf: 4d:4d:95:9e:08:43:6c:d5:2a:46:19:07:51:8a:5f:21:ba:a0: 23:23:de:c2:c4:6e:0d:ba:07:0a:66:aa:f1:0a:73:8c:e6:c9: 23:4d:bc:9f:42:ae:35:b6:fb:ca:71:59:88:37:65:25:99:94: d4:70:b5:cc:a5:f3:e9:d5:18:01:2c:64:9a:47:84:47:1d:43: 99:39:91:3b:4a:00:57:07:f7:ad:58:dc:81:5e:c5:32:0b:df: d9:1a:d6:5f:11:08:5b:25:15:85:53:d4:07:9d:f7:4e:9f:cf: 5d:78:c0:c1:fc:91:d7:02:6e:ca:43:eb:0b:bd:2d:4a:72:26: 26:5e:30:11:a8:a2:bb:59:ca:0b:df:86:e1:5a:fa:92:fc:1f: 09:5b:27:1e:59:a9:65:47:f5:64:9a:79:4a:d0:81:7a:11:80: 50:9e:eb:21:cd:1a:af:ed:30:bc:a1:a1:bc:65:2a:08:93:23: b2:b3:4f:80 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAecwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzBDNTMxMTAvBgNVBAUTKEUxRDE0M0Q5RDhFQTAyMjI0QzFDQjBDOTE1RUNCODRF RTI4QjVBQUEwHhcNMjUxMDE5MDUxMjIwWhcNMjUxMDI2MDUxMjIwWjAYMRYwFAYD VQQDEw02OGY0NzMzNC1iYjlhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt1ciXsY7IhKdpmzXGzobEd2/eMlyxANGYEvGjF0XML5ht+7jcVWHzQElvwvm pliNaUjElWYsa0YTwjh3FoGuq8RRwQc6K13SWuRBNHhbUwPzWMzw07xHBrTMrX91 wtLwBBpqcxIFJ+uAH0heLFKjxHQazCpV+xrBfF4xT5aYpmDwM0Ur44JXoxxUFyuJ uDUJM8Qzod2QbZvgtE8XxsHfhDGzPj03hWfXShR15KN15bZqd6slL/9xbfRLlRUl jzeLj85/G8lT63dJ3c7fUTo9hESNxyqEWYLmIiBMXBXFSQ/aZbU3GGkUZ57leUmb LwXsOYADStVLI6vNkHQPpYjk9QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHhI1ges D/lJhzDkkbkrpzBP4q9WMB8GA1UdIwQYMBaAFOHRQ9nY6gIiTBywyRXsuE7ii1qq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MEM1My9DRTQ0NUJEMERB NUIxMUVEOTY3NDdDNUFDNEY5QUUwMi80ZEZEMmRqcUFpSk1ITERKRmV5NFR1S0xX cW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRkRkQyZGpxQWlKTUhMREpGZXk0VHVLTFdxby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MEM1My9DRTQ0NUJEMERBNUIxMUVEOTY3NDdDNUFDNEY5QUUwMi80ZEZEMmRqcUFp Sk1ITERKRmV5NFR1S0xXcW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAXHfprqi8+K6f/Cgt4XCiGq1LIkv8OgHFKJzdra/gpB1dYDf+Lund3 MgEOj9QEDHeb/j1nfPSRuWp6a9xW+hH+sBh4Fr4s289NTZWeCENs1SpGGQdRil8h uqAjI97CxG4NugcKZqrxCnOM5skjTbyfQq41tvvKcVmIN2UlmZTUcLXMpfPp1RgB LGSaR4RHHUOZOZE7SgBXB/etWNyBXsUyC9/ZGtZfEQhbJRWFU9QHnfdOn89deMDB /JHXAm7KQ+sLvS1KciYmXjARqKK7WcoL34bhWvqS/B8JWyceWallR/VkmnlK0IF6 EYBQnushzRqv7TC8oaG8ZSoIkyOys0+A -----END CERTIFICATE-----Generated at Sun Oct 19 23:32:24 2025 by rpki-client