$ rpki-client -vvf rpki.apnic.net/member_repository/A917E678/B897C582A19C11EB92A2DF29C4F9AE02/4kPzvoJVabsWrLN0vJjavmkLF8E.mft File: 4kPzvoJVabsWrLN0vJjavmkLF8E.mft (raw, json) Hash identifier: dC4cxXM4pnfbXLajS+4s8nFXSgBiLcAIgvf3vQDx/WY= Subject key identifier: 88:91:F1:EF:66:4D:C5:7C:50:E5:7A:C6:00:94:27:B6:67:FD:0C:6E Authority key identifier: E2:43:F3:BE:82:55:69:BB:16:AC:B3:74:BC:98:DA:BE:69:0B:17:C1 Certificate issuer: /CN=A917E678/serialNumber=E243F3BE825569BB16ACB374BC98DABE690B17C1 Certificate serial: 06ED Authority info access: rsync://rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/4kPzvoJVabsWrLN0vJjavmkLF8E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E678/B897C582A19C11EB92A2DF29C4F9AE02/4kPzvoJVabsWrLN0vJjavmkLF8E.mft Manifest number: 06C9 Signing time: Mon 20 Oct 2025 17:15:51 +0000 Manifest this update: Mon 20 Oct 2025 17:15:51 +0000 Manifest next update: Mon 27 Oct 2025 17:15:51 +0000 Files and hashes: 1: 4kPzvoJVabsWrLN0vJjavmkLF8E.crl (hash: OG6cIhikYX56ZnHKsFitrRd/dreUdQe0Mnz5wE0IMfA=) 2: 91E868D4902B11EF87435A54C4F9AE02.roa (hash: qm9tOH02ZhUyhN95rojnAyTLcNLxX4GEOIv6/MzX5Qk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E678/B897C582A19C11EB92A2DF29C4F9AE02/4kPzvoJVabsWrLN0vJjavmkLF8E.crl rsync://rpki.apnic.net/member_repository/A917E678/B897C582A19C11EB92A2DF29C4F9AE02/4kPzvoJVabsWrLN0vJjavmkLF8E.mft rsync://rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/4kPzvoJVabsWrLN0vJjavmkLF8E.cer rsync://rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.crl rsync://rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Oct 2025 14:50:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1773 (0x6ed) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E678, serialNumber=E243F3BE825569BB16ACB374BC98DABE690B17C1 Validity Not Before: Oct 20 17:15:51 2025 GMT Not After : Oct 27 17:15:51 2025 GMT Subject: CN=68f66e47-15b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:bc:b1:70:5a:01:63:40:39:b0:a3:75:76:2f: a0:a1:5d:84:d0:84:4a:29:54:e5:a2:01:10:aa:61: fc:29:53:13:5a:ad:48:3e:6f:4b:80:5c:6b:ef:68: 0c:09:99:f4:f0:0b:9b:b8:60:7f:34:48:a9:13:ad: 14:95:4c:2d:0e:93:b4:95:92:50:95:1f:96:7e:48: 23:95:19:61:4a:18:bc:70:c0:aa:3f:70:0a:b5:de: c0:fd:4a:11:fb:63:18:de:dc:09:52:a9:23:7b:f0: 6d:fe:ab:fb:ff:92:f8:1f:83:2b:c4:35:4e:b9:d0: e5:70:36:86:55:24:2c:5b:55:1b:b3:b4:07:90:f5: 18:c4:2b:94:3d:c9:14:f0:08:47:fd:c1:fb:1c:66: 26:cb:5c:32:08:c9:2e:f4:e9:08:36:fd:59:b0:33: d0:54:68:6a:65:8d:43:89:94:98:0a:c2:d8:12:17: dc:cd:3f:08:24:aa:5e:51:a0:e8:97:2e:fe:c6:23: 29:e7:66:87:f6:d7:23:8c:5b:da:3f:ce:da:80:94: 59:44:78:e8:94:70:f3:57:34:1c:ad:f3:6d:c9:e0: 21:46:35:21:c3:de:12:8f:c4:15:4c:77:c2:42:81: d5:3f:dc:d4:7b:ed:90:7a:ea:a2:79:48:49:9e:6b: 98:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:91:F1:EF:66:4D:C5:7C:50:E5:7A:C6:00:94:27:B6:67:FD:0C:6E X509v3 Authority Key Identifier: keyid:E2:43:F3:BE:82:55:69:BB:16:AC:B3:74:BC:98:DA:BE:69:0B:17:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E678/B897C582A19C11EB92A2DF29C4F9AE02/4kPzvoJVabsWrLN0vJjavmkLF8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/4kPzvoJVabsWrLN0vJjavmkLF8E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E678/B897C582A19C11EB92A2DF29C4F9AE02/4kPzvoJVabsWrLN0vJjavmkLF8E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cb:59:dc:eb:91:79:ee:99:45:03:8f:7e:8a:b4:1c:b7:0c:03: 8d:b5:9b:49:a0:78:04:a6:cc:f4:16:a1:35:13:0b:2b:c1:af: e5:a5:3b:a9:24:6a:a1:b1:d7:ad:39:86:45:39:17:7d:07:00: 89:36:87:d7:d8:4b:b1:e7:36:b2:13:2c:9d:46:b2:01:de:e9: 3d:83:3d:e7:94:e7:59:b7:7c:f6:bd:9e:a9:88:78:e8:59:72: bd:8c:ce:51:b2:8b:3b:8b:65:e9:ee:72:52:b2:47:e5:13:94: 92:58:b2:60:18:17:3d:7c:e5:af:67:f9:f3:e6:7c:15:24:5e: 0b:7c:4a:1a:83:55:e5:08:68:c7:e5:d4:7e:a9:cb:0b:18:dd: 0d:79:2e:eb:56:70:85:74:0e:d6:87:bc:40:0b:20:cc:9f:92: 6d:ef:1d:d4:e8:ba:58:aa:1b:cd:9a:d0:36:28:65:70:d3:db: 11:0b:49:4d:9d:8a:34:db:39:e2:55:a3:9d:f3:5e:2d:19:34: a5:90:16:33:da:f5:85:5e:52:6d:81:f9:02:bb:9e:18:77:64: 4c:11:6d:09:db:9f:8e:06:01:3a:24:73:91:0a:ed:34:97:2c: 7b:68:c9:76:a4:d5:1f:96:54:76:d4:3a:44:26:fd:0d:05:9b: 14:45:d2:1b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBu0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U2NzgxMTAvBgNVBAUTKEUyNDNGM0JFODI1NTY5QkIxNkFDQjM3NEJDOThEQUJF NjkwQjE3QzEwHhcNMjUxMDIwMTcxNTUxWhcNMjUxMDI3MTcxNTUxWjAYMRYwFAYD VQQDEw02OGY2NmU0Ny0xNWI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwbyxcFoBY0A5sKN1di+goV2E0IRKKVTlogEQqmH8KVMTWq1IPm9LgFxr72gM CZn08AubuGB/NEipE60UlUwtDpO0lZJQlR+WfkgjlRlhShi8cMCqP3AKtd7A/UoR +2MY3twJUqkje/Bt/qv7/5L4H4MrxDVOudDlcDaGVSQsW1Ubs7QHkPUYxCuUPckU 8AhH/cH7HGYmy1wyCMku9OkINv1ZsDPQVGhqZY1DiZSYCsLYEhfczT8IJKpeUaDo ly7+xiMp52aH9tcjjFvaP87agJRZRHjolHDzVzQcrfNtyeAhRjUhw94Sj8QVTHfC QoHVP9zUe+2QeuqieUhJnmuYiwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIiR8e9m TcV8UOV6xgCUJ7Zn/QxuMB8GA1UdIwQYMBaAFOJD876CVWm7FqyzdLyY2r5pCxfB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTY3OC9CODk3QzU4MkEx OUMxMUVCOTJBMkRGMjlDNEY5QUUwMi80a1B6dm9KVmFic1dyTE4wdkpqYXZta0xG OEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I0QTFCRUE2MUQ2NjExRTJCMkNEOEI3Qzcy RkQxRkYyLzRrUHp2b0pWYWJzV3JMTjB2Smphdm1rTEY4RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTY3OC9CODk3QzU4MkExOUMxMUVCOTJBMkRGMjlDNEY5QUUwMi80a1B6dm9KVmFi c1dyTE4wdkpqYXZta0xGOEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDLWdzrkXnumUUDj36KtBy3DAONtZtJoHgEpsz0FqE1Ewsrwa/lpTup JGqhsdetOYZFORd9BwCJNofX2Eux5zayEyydRrIB3uk9gz3nlOdZt3z2vZ6piHjo WXK9jM5Rsos7i2Xp7nJSskflE5SSWLJgGBc9fOWvZ/nz5nwVJF4LfEoag1XlCGjH 5dR+qcsLGN0NeS7rVnCFdA7Wh7xACyDMn5Jt7x3U6LpYqhvNmtA2KGVw09sRC0lN nYo02zniVaOd814tGTSlkBYz2vWFXlJtgfkCu54Yd2RMEW0J25+OBgE6JHORCu00 lyx7aMl2pNUfllR21DpEJv0NBZsURdIb -----END CERTIFICATE-----Generated at Tue Oct 21 03:05:02 2025 by rpki-client