$ rpki-client -vvf rpki.apnic.net/member_repository/A917D4C4/439CF87C8D7B11EB8D8BD60BC4F9AE02/4MiSj5RRUg5k0d7VjwcZa1hhsoY.mft File: 4MiSj5RRUg5k0d7VjwcZa1hhsoY.mft (raw, json) Hash identifier: gn1ycNDhI1HWIeWrDGpo1Vs++u/2YwYPIXXFvA8+d2o= Subject key identifier: F9:21:27:4C:44:96:E8:50:B8:29:A4:7B:92:E3:A2:59:38:37:31:99 Authority key identifier: E0:C8:92:8F:94:51:52:0E:64:D1:DE:D5:8F:07:19:6B:58:61:B2:86 Certificate issuer: /CN=A917D4C4/serialNumber=E0C8928F9451520E64D1DED58F07196B5861B286 Certificate serial: 06A0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4MiSj5RRUg5k0d7VjwcZa1hhsoY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917D4C4/439CF87C8D7B11EB8D8BD60BC4F9AE02/4MiSj5RRUg5k0d7VjwcZa1hhsoY.mft Manifest number: 069C Signing time: Sat 18 Oct 2025 14:52:59 +0000 Manifest this update: Sat 18 Oct 2025 14:52:58 +0000 Manifest next update: Sat 25 Oct 2025 14:52:58 +0000 Files and hashes: 1: 4MiSj5RRUg5k0d7VjwcZa1hhsoY.crl (hash: m/TvpyprP895ECeAWKnuFaxzi9SkWuBvMgzwbiN2k3s=) 2: 6E325DBC0E2F11EDB4659653C4F9AE02.roa (hash: NS8IXL+/osy1aonTB1YcjpMFwDzkEpu3g9yC5lM136w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917D4C4/439CF87C8D7B11EB8D8BD60BC4F9AE02/4MiSj5RRUg5k0d7VjwcZa1hhsoY.crl rsync://rpki.apnic.net/member_repository/A917D4C4/439CF87C8D7B11EB8D8BD60BC4F9AE02/4MiSj5RRUg5k0d7VjwcZa1hhsoY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4MiSj5RRUg5k0d7VjwcZa1hhsoY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 14:52:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1696 (0x6a0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917D4C4, serialNumber=E0C8928F9451520E64D1DED58F07196B5861B286 Validity Not Before: Oct 18 14:52:58 2025 GMT Not After : Oct 25 14:52:58 2025 GMT Subject: CN=68f3a9cb-b824 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:c3:ba:53:44:42:ee:ae:64:d0:bd:f6:a0:dc: 1f:03:23:ee:3b:31:12:1e:78:07:96:a8:3e:3f:9e: 3d:d1:d6:82:a9:2e:e3:19:8f:b9:0e:c3:01:22:bc: 57:06:19:28:51:ed:18:a1:e4:c5:ed:0a:f9:8b:08: b1:72:08:76:d6:85:ba:29:bc:ea:67:88:3f:83:24: 0e:59:d8:81:78:96:ba:13:94:73:67:89:aa:a9:e5: 41:e3:e2:a4:c1:90:0f:38:58:af:6a:1f:97:07:b1: 99:52:c8:28:22:e8:7d:53:5b:7b:0f:4d:34:87:78: 2e:dc:f8:2b:8f:45:32:75:87:6f:09:08:1b:55:b1: 21:fd:73:4a:9c:a5:1d:5a:5b:80:0e:94:d1:5f:ef: 2b:37:99:da:54:c4:eb:1c:f9:4b:8d:4f:9d:b4:6a: 8d:89:d1:e7:09:50:57:db:eb:b2:f8:c3:d6:cf:23: 95:3f:81:45:50:59:ae:a0:cb:28:40:1e:16:10:63: 21:a3:4d:d1:1b:7d:3d:6a:a1:2e:a8:6a:b3:58:be: da:5b:cd:6b:f1:5f:0e:00:8f:08:14:77:d1:59:55: 48:c5:5e:f7:7a:41:49:37:c9:1d:ff:65:30:ab:05: dd:e9:70:7c:4c:57:f3:3a:e8:60:f2:37:9a:9c:ba: 59:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:21:27:4C:44:96:E8:50:B8:29:A4:7B:92:E3:A2:59:38:37:31:99 X509v3 Authority Key Identifier: keyid:E0:C8:92:8F:94:51:52:0E:64:D1:DE:D5:8F:07:19:6B:58:61:B2:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917D4C4/439CF87C8D7B11EB8D8BD60BC4F9AE02/4MiSj5RRUg5k0d7VjwcZa1hhsoY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4MiSj5RRUg5k0d7VjwcZa1hhsoY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917D4C4/439CF87C8D7B11EB8D8BD60BC4F9AE02/4MiSj5RRUg5k0d7VjwcZa1hhsoY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 28:d9:a0:5b:cb:9e:15:78:05:79:27:5e:8d:e7:48:dc:61:92: ad:2c:c9:5d:41:7e:14:00:fb:67:d1:5a:d4:93:2e:e5:72:42: da:1c:5e:71:6e:97:51:4e:e6:90:ff:d5:b3:50:b0:30:4b:f3: c5:bd:e0:b4:8a:1e:8c:9c:d2:77:ba:3e:d9:63:de:16:5d:04: 0f:a6:17:5f:ff:3a:c3:ac:32:35:cd:db:14:ce:60:a4:35:2e: b9:97:9c:7f:c0:6a:1c:6c:8a:39:29:c1:90:28:c4:29:04:f9: 52:4a:2e:20:3f:a2:5c:15:c7:c3:86:89:a4:58:73:dc:9e:d4: 76:08:22:52:ea:a1:d8:d0:68:a7:13:3e:04:7b:06:28:20:16: be:51:53:47:81:47:aa:e0:6f:78:75:01:87:8f:7b:1d:63:f9: 74:07:12:cb:34:da:68:e4:2c:fd:5e:7e:e5:39:0f:5d:69:d2: f7:e8:c6:6c:e3:f1:d0:bc:b5:b4:b8:04:47:86:97:c5:7f:4c: e7:51:f6:31:55:3b:41:a2:e6:03:0a:0b:18:18:2f:96:84:14: f1:6e:70:9d:6c:e9:e3:3d:39:73:b9:73:99:ac:21:b3:72:a9: 55:bf:ea:46:b7:96:5e:1a:42:b5:b8:da:72:45:0f:59:ba:08: b2:c2:61:ac -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBqAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0Q0QzQxMTAvBgNVBAUTKEUwQzg5MjhGOTQ1MTUyMEU2NEQxREVENThGMDcxOTZC NTg2MUIyODYwHhcNMjUxMDE4MTQ1MjU4WhcNMjUxMDI1MTQ1MjU4WjAYMRYwFAYD VQQDEw02OGYzYTljYi1iODI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlsO6U0RC7q5k0L32oNwfAyPuOzESHngHlqg+P5490daCqS7jGY+5DsMBIrxX BhkoUe0YoeTF7Qr5iwixcgh21oW6KbzqZ4g/gyQOWdiBeJa6E5RzZ4mqqeVB4+Kk wZAPOFivah+XB7GZUsgoIuh9U1t7D000h3gu3Pgrj0UydYdvCQgbVbEh/XNKnKUd WluADpTRX+8rN5naVMTrHPlLjU+dtGqNidHnCVBX2+uy+MPWzyOVP4FFUFmuoMso QB4WEGMho03RG309aqEuqGqzWL7aW81r8V8OAI8IFHfRWVVIxV73ekFJN8kd/2Uw qwXd6XB8TFfzOuhg8jeanLpZxwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPkhJ0xE luhQuCmke5Ljolk4NzGZMB8GA1UdIwQYMBaAFODIko+UUVIOZNHe1Y8HGWtYYbKG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RDRDNC80MzlDRjg3QzhE N0IxMUVCOEQ4QkQ2MEJDNEY5QUUwMi80TWlTajVSUlVnNWswZDdWandjWmExaGhz b1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRNaVNqNVJSVWc1azBkN1Zqd2NaYTFoaHNvWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RDRDNC80MzlDRjg3QzhEN0IxMUVCOEQ4QkQ2MEJDNEY5QUUwMi80TWlTajVSUlVn NWswZDdWandjWmExaGhzb1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAo2aBby54VeAV5J16N50jcYZKtLMldQX4UAPtn0VrUky7lckLaHF5x bpdRTuaQ/9WzULAwS/PFveC0ih6MnNJ3uj7ZY94WXQQPphdf/zrDrDI1zdsUzmCk NS65l5x/wGocbIo5KcGQKMQpBPlSSi4gP6JcFcfDhomkWHPcntR2CCJS6qHY0Gin Ez4EewYoIBa+UVNHgUeq4G94dQGHj3sdY/l0BxLLNNpo5Cz9Xn7lOQ9dadL36MZs 4/HQvLW0uARHhpfFf0znUfYxVTtBouYDCgsYGC+WhBTxbnCdbOnjPTlzuXOZrCGz cqlVv+pGt5ZeGkK1uNpyRQ9ZugiywmGs -----END CERTIFICATE-----Generated at Mon Oct 20 10:46:58 2025 by rpki-client