$ rpki-client -vvf rpki.apnic.net/member_repository/A9175027/2505CEDC256811EBAC2CAC5AC4F9AE02/4XcstdOWUnbPTpjTdmtjDX4_gXg.mft File: 4XcstdOWUnbPTpjTdmtjDX4_gXg.mft (raw, json) Hash identifier: UB0SjdyplYIvc4ZvQHrxsOD0qkGDONDCuCX+NcCKIhg= Subject key identifier: 36:7A:41:CE:31:BB:80:01:69:30:90:78:92:D2:F0:4E:2F:26:E2:A4 Authority key identifier: E1:77:2C:B5:D3:96:52:76:CF:4E:98:D3:76:6B:63:0D:7E:3F:81:78 Certificate issuer: /CN=A9175027/serialNumber=E1772CB5D3965276CF4E98D3766B630D7E3F8178 Certificate serial: 07D9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4XcstdOWUnbPTpjTdmtjDX4_gXg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9175027/2505CEDC256811EBAC2CAC5AC4F9AE02/4XcstdOWUnbPTpjTdmtjDX4_gXg.mft Manifest number: 07B7 Signing time: Sat 18 Oct 2025 22:46:26 +0000 Manifest this update: Sat 18 Oct 2025 22:46:26 +0000 Manifest next update: Sat 25 Oct 2025 22:46:26 +0000 Files and hashes: 1: 4XcstdOWUnbPTpjTdmtjDX4_gXg.crl (hash: IeT3HdUEjLd1lI7JckjgIpVTXrP+ZHjoHjqi7dxa/zo=) 2: 12DBAD3CDAFF11ECA67DA10BC4F9AE02.roa (hash: hFRxkLpFxynkLA+bgk7ZWKTxrIef2z810IITJ3Z3KSc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9175027/2505CEDC256811EBAC2CAC5AC4F9AE02/4XcstdOWUnbPTpjTdmtjDX4_gXg.crl rsync://rpki.apnic.net/member_repository/A9175027/2505CEDC256811EBAC2CAC5AC4F9AE02/4XcstdOWUnbPTpjTdmtjDX4_gXg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4XcstdOWUnbPTpjTdmtjDX4_gXg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 22:46:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2009 (0x7d9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9175027, serialNumber=E1772CB5D3965276CF4E98D3766B630D7E3F8178 Validity Not Before: Oct 18 22:46:26 2025 GMT Not After : Oct 25 22:46:26 2025 GMT Subject: CN=68f418c2-a004 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:79:ee:58:02:5a:39:e4:9e:81:fe:1c:16:f5: e7:f8:66:d3:ca:88:1c:ab:43:23:e2:03:84:0b:93: 91:1d:c8:fd:60:d5:b8:95:69:59:11:97:1a:a7:10: 82:d1:8c:6e:5e:1d:ec:ef:b7:6e:74:ab:1c:a4:15: c4:d9:22:33:10:3b:25:32:31:d0:5e:c7:d7:93:dd: 91:4c:1d:77:0f:6d:fb:23:af:43:32:c4:11:82:62: ac:c5:27:e1:bf:ad:43:9e:8d:93:16:af:7b:ef:d2: a5:e8:e5:59:13:98:76:61:eb:6e:d5:0a:4d:b3:f7: 85:c8:e7:f5:1e:be:0d:40:9e:40:d7:bc:9c:94:c3: 80:6b:b1:7e:cf:6b:92:6d:18:95:ea:fe:02:a8:1a: 70:99:0a:c7:b5:4e:d8:d1:8c:d3:10:f0:e0:af:08: 93:56:7a:3f:80:e4:af:83:80:d5:b5:d2:60:38:0c: e8:4b:a8:45:bc:4c:c6:67:da:62:ad:8b:e3:d0:78: 8f:d4:81:40:06:e3:df:2a:94:d6:38:a9:34:52:08: 4a:8a:8b:02:82:07:e3:7f:80:ab:a1:2f:46:1b:38: 90:8f:3c:7d:af:bd:7b:89:52:ce:d0:03:91:06:75: dd:3c:3e:0f:9b:d0:7b:e1:65:da:2f:34:fa:5a:13: d6:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:7A:41:CE:31:BB:80:01:69:30:90:78:92:D2:F0:4E:2F:26:E2:A4 X509v3 Authority Key Identifier: keyid:E1:77:2C:B5:D3:96:52:76:CF:4E:98:D3:76:6B:63:0D:7E:3F:81:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9175027/2505CEDC256811EBAC2CAC5AC4F9AE02/4XcstdOWUnbPTpjTdmtjDX4_gXg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4XcstdOWUnbPTpjTdmtjDX4_gXg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9175027/2505CEDC256811EBAC2CAC5AC4F9AE02/4XcstdOWUnbPTpjTdmtjDX4_gXg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7d:ae:14:be:cb:30:48:ba:44:5d:1f:f1:b4:db:4e:aa:3c:fe: 22:81:38:50:b1:6e:ec:c8:28:83:39:36:52:9b:46:1b:3c:de: c0:6f:b9:e5:b0:27:a9:a9:16:1d:f1:65:9a:f9:b2:1b:d7:32: f4:e4:c6:5a:02:8d:b1:32:72:e1:22:1f:58:a5:cb:4e:fb:f7: 96:b5:1b:51:66:d7:49:08:1c:cd:8b:09:27:5d:9c:49:48:e9: d9:00:3d:d9:12:5a:07:f7:eb:a4:3b:a7:d7:63:ad:cb:32:06: 88:05:0a:f7:0a:68:71:95:4a:25:b3:88:44:e9:75:54:3d:2e: df:1d:4f:db:34:7f:ea:67:71:0a:ff:b9:0a:b8:9d:87:42:6e: 57:72:de:9e:cc:6e:43:96:63:46:2d:88:9c:83:c7:d6:a3:36: 90:d2:01:b3:cb:94:4f:0c:2a:df:78:e5:20:20:79:44:d9:84: a1:ec:18:a0:29:6c:5c:6a:20:8b:9b:15:55:6e:b4:6d:dc:0a: 8f:9a:89:e0:c7:50:ab:52:50:c7:a2:dc:2e:58:bf:a4:db:b8: 55:cc:1f:d4:44:da:c4:83:50:7e:1e:20:83:03:a5:f2:34:a5: c5:b8:5e:b6:a4:9d:16:ae:8d:48:60:78:c4:68:a8:2b:16:12: 81:0d:8b:e9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB9kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzUwMjcxMTAvBgNVBAUTKEUxNzcyQ0I1RDM5NjUyNzZDRjRFOThEMzc2NkI2MzBE N0UzRjgxNzgwHhcNMjUxMDE4MjI0NjI2WhcNMjUxMDI1MjI0NjI2WjAYMRYwFAYD VQQDEw02OGY0MThjMi1hMDA0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlnnuWAJaOeSegf4cFvXn+GbTyogcq0Mj4gOEC5ORHcj9YNW4lWlZEZcapxCC 0YxuXh3s77dudKscpBXE2SIzEDslMjHQXsfXk92RTB13D237I69DMsQRgmKsxSfh v61Dno2TFq9779Kl6OVZE5h2Yetu1QpNs/eFyOf1Hr4NQJ5A17yclMOAa7F+z2uS bRiV6v4CqBpwmQrHtU7Y0YzTEPDgrwiTVno/gOSvg4DVtdJgOAzoS6hFvEzGZ9pi rYvj0HiP1IFABuPfKpTWOKk0UghKiosCggfjf4CroS9GGziQjzx9r717iVLO0AOR BnXdPD4Pm9B74WXaLzT6WhPWGwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDZ6Qc4x u4ABaTCQeJLS8E4vJuKkMB8GA1UdIwQYMBaAFOF3LLXTllJ2z06Y03ZrYw1+P4F4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NTAyNy8yNTA1Q0VEQzI1 NjgxMUVCQUMyQ0FDNUFDNEY5QUUwMi80WGNzdGRPV1VuYlBUcGpUZG10akRYNF9n WGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRYY3N0ZE9XVW5iUFRwalRkbXRqRFg0X2dYZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NTAyNy8yNTA1Q0VEQzI1NjgxMUVCQUMyQ0FDNUFDNEY5QUUwMi80WGNzdGRPV1Vu YlBUcGpUZG10akRYNF9nWGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB9rhS+yzBIukRdH/G0206qPP4igThQsW7syCiDOTZSm0YbPN7Ab7nl sCepqRYd8WWa+bIb1zL05MZaAo2xMnLhIh9YpctO+/eWtRtRZtdJCBzNiwknXZxJ SOnZAD3ZEloH9+ukO6fXY63LMgaIBQr3CmhxlUols4hE6XVUPS7fHU/bNH/qZ3EK /7kKuJ2HQm5Xct6ezG5DlmNGLYicg8fWozaQ0gGzy5RPDCrfeOUgIHlE2YSh7Big KWxcaiCLmxVVbrRt3AqPmongx1CrUlDHotwuWL+k27hVzB/URNrEg1B+HiCDA6Xy NKXFuF62pJ0Wro1IYHjEaKgrFhKBDYvp -----END CERTIFICATE-----Generated at Mon Oct 20 06:49:24 2025 by rpki-client