$ rpki-client -vvf rpki.apnic.net/member_repository/A917F0AF/2D7A7E0ECC4F11EFA89A8F14C4F9AE02/4RQ3jak0hhRp9JXZdZjg8AKJwzA.mft File: 4RQ3jak0hhRp9JXZdZjg8AKJwzA.mft (raw, json) Hash identifier: G/0FfxkeIANTHUzA1bcXzIh3xk802YJWPUrp9ezMowg= Subject key identifier: E0:84:71:51:4A:CB:A3:BC:C3:B0:16:D4:01:CE:13:DA:C8:2B:59:36 Authority key identifier: E1:14:37:8D:A9:34:86:14:69:F4:95:D9:75:98:E0:F0:02:89:C3:30 Certificate issuer: /CN=A917F0AF/serialNumber=E114378DA934861469F495D97598E0F00289C330 Certificate serial: 97 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4RQ3jak0hhRp9JXZdZjg8AKJwzA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917F0AF/2D7A7E0ECC4F11EFA89A8F14C4F9AE02/4RQ3jak0hhRp9JXZdZjg8AKJwzA.mft Manifest number: 95 Signing time: Sun 19 Oct 2025 09:41:33 +0000 Manifest this update: Sun 19 Oct 2025 09:41:32 +0000 Manifest next update: Sun 26 Oct 2025 09:41:32 +0000 Files and hashes: 1: 4RQ3jak0hhRp9JXZdZjg8AKJwzA.crl (hash: WKO9vGllbBeL65Vj7ck9nI0pXE3ZBohVxi3onDY53pE=) 2: 27E5184CCC6211EFA20BEE1BC4F9AE02.roa (hash: ICu/yjGLx5mxYSM0WJFCxUELVponO7X2E1rDJr+HfU4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917F0AF/2D7A7E0ECC4F11EFA89A8F14C4F9AE02/4RQ3jak0hhRp9JXZdZjg8AKJwzA.crl rsync://rpki.apnic.net/member_repository/A917F0AF/2D7A7E0ECC4F11EFA89A8F14C4F9AE02/4RQ3jak0hhRp9JXZdZjg8AKJwzA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4RQ3jak0hhRp9JXZdZjg8AKJwzA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 09:41:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 151 (0x97) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917F0AF, serialNumber=E114378DA934861469F495D97598E0F00289C330 Validity Not Before: Oct 19 09:41:32 2025 GMT Not After : Oct 26 09:41:32 2025 GMT Subject: CN=68f4b24c-7832 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:fb:66:f1:23:aa:05:c4:85:2e:1a:d6:91:ac: a8:8e:bb:06:65:1a:cc:aa:df:9d:8b:3f:9e:d8:84: 64:b6:ea:aa:48:d2:d6:30:16:ea:9b:29:73:80:5d: 54:15:bd:54:8f:d0:50:97:bf:65:b6:ee:76:cd:3f: 66:e4:7f:3b:11:74:70:a4:5c:b7:5b:70:e1:cf:51: 17:f9:d4:7b:1b:4c:58:5f:c2:cc:d8:6e:ba:46:a6: 47:1f:9d:dd:0e:f6:38:5c:e6:1d:9a:ad:d1:44:47: 22:80:a4:90:99:db:fa:72:07:a1:97:7f:01:78:52: 44:ab:b6:c7:b3:64:af:51:08:8b:cf:12:50:1e:c1: 93:5b:d3:b0:78:d7:6e:9b:56:96:1c:ff:5a:32:f0: 51:d5:b3:c1:14:65:51:55:95:a7:c4:14:81:f0:8e: 15:48:1e:59:88:1a:06:f8:32:32:08:e0:ca:ae:39: 0e:5c:76:be:4b:a5:7a:1c:47:63:b0:88:01:bb:f8: 5d:5c:a1:dd:d2:9e:8e:72:0d:cc:d1:8e:ba:11:24: bb:a3:e6:c3:72:b1:3d:8c:28:ea:9a:74:19:c3:c6: dc:b3:bb:3c:92:f4:74:d1:64:2d:7b:f1:88:24:96: 0c:37:c5:ff:1d:56:b0:ff:d7:d9:4e:e6:92:c1:4c: 3a:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:84:71:51:4A:CB:A3:BC:C3:B0:16:D4:01:CE:13:DA:C8:2B:59:36 X509v3 Authority Key Identifier: keyid:E1:14:37:8D:A9:34:86:14:69:F4:95:D9:75:98:E0:F0:02:89:C3:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917F0AF/2D7A7E0ECC4F11EFA89A8F14C4F9AE02/4RQ3jak0hhRp9JXZdZjg8AKJwzA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4RQ3jak0hhRp9JXZdZjg8AKJwzA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917F0AF/2D7A7E0ECC4F11EFA89A8F14C4F9AE02/4RQ3jak0hhRp9JXZdZjg8AKJwzA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2a:44:80:9b:d9:e7:51:c8:1d:8b:12:d7:00:4c:f3:04:fa:ad: d4:7a:cc:49:8a:f8:44:64:da:c0:68:d0:88:c8:22:3b:ac:66: e9:68:bf:da:e1:10:79:a3:a4:ac:1e:25:45:97:0d:9d:46:a6: f8:39:f0:59:02:10:8d:d6:aa:6c:07:0d:fa:83:65:df:c5:cd: 7b:98:c7:db:b5:06:cb:7a:60:6c:23:58:37:a3:78:82:42:c2: e9:28:df:7f:63:8c:45:4e:2b:de:34:2b:45:3a:fe:be:81:f0: 79:aa:cd:42:25:3f:aa:c6:6d:ed:e6:cc:06:3e:5a:14:95:ba: 42:d5:9c:08:dc:d9:f0:3b:dc:7e:5d:99:00:f6:a0:8f:39:bb: 47:ee:8e:10:fa:3b:92:1b:63:7a:ff:f1:1e:6a:5a:d9:5e:ae: 7c:8e:0f:83:53:2c:3e:ce:aa:40:0f:41:4a:a0:4b:7a:53:9a: 16:5d:69:21:ff:9f:05:b7:bf:99:32:ea:c6:2e:50:26:72:3c: ab:91:82:59:61:8b:99:56:1e:f5:cd:07:82:93:78:3c:67:8d: 0a:d0:4a:8d:ab:f5:d6:1f:35:49:1b:0a:97:fe:df:4f:69:de: e1:b4:89:45:81:49:52:22:b9:a5:cb:8d:45:bc:85:5f:64:f9: a6:b3:30:c5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0YwQUYxMTAvBgNVBAUTKEUxMTQzNzhEQTkzNDg2MTQ2OUY0OTVEOTc1OThFMEYw MDI4OUMzMzAwHhcNMjUxMDE5MDk0MTMyWhcNMjUxMDI2MDk0MTMyWjAYMRYwFAYD VQQDEw02OGY0YjI0Yy03ODMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4ftm8SOqBcSFLhrWkayojrsGZRrMqt+diz+e2IRktuqqSNLWMBbqmylzgF1U Fb1Uj9BQl79ltu52zT9m5H87EXRwpFy3W3Dhz1EX+dR7G0xYX8LM2G66RqZHH53d DvY4XOYdmq3RREcigKSQmdv6cgehl38BeFJEq7bHs2SvUQiLzxJQHsGTW9OweNdu m1aWHP9aMvBR1bPBFGVRVZWnxBSB8I4VSB5ZiBoG+DIyCODKrjkOXHa+S6V6HEdj sIgBu/hdXKHd0p6Ocg3M0Y66ESS7o+bDcrE9jCjqmnQZw8bcs7s8kvR00WQte/GI JJYMN8X/HVaw/9fZTuaSwUw6mQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOCEcVFK y6O8w7AW1AHOE9rIK1k2MB8GA1UdIwQYMBaAFOEUN42pNIYUafSV2XWY4PACicMw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RjBBRi8yRDdBN0UwRUND NEYxMUVGQTg5QThGMTRDNEY5QUUwMi80UlEzamFrMGhoUnA5SlhaZFpqZzhBS0p3 ekEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRSUTNqYWswaGhScDlKWFpkWmpnOEFLSnd6QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RjBBRi8yRDdBN0UwRUNDNEYxMUVGQTg5QThGMTRDNEY5QUUwMi80UlEzamFrMGho UnA5SlhaZFpqZzhBS0p3ekEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAqRICb2edRyB2LEtcATPME+q3UesxJivhEZNrAaNCIyCI7rGbpaL/a 4RB5o6SsHiVFlw2dRqb4OfBZAhCN1qpsBw36g2Xfxc17mMfbtQbLemBsI1g3o3iC QsLpKN9/Y4xFTiveNCtFOv6+gfB5qs1CJT+qxm3t5swGPloUlbpC1ZwI3NnwO9x+ XZkA9qCPObtH7o4Q+juSG2N6//EealrZXq58jg+DUyw+zqpAD0FKoEt6U5oWXWkh /58Ft7+ZMurGLlAmcjyrkYJZYYuZVh71zQeCk3g8Z40K0EqNq/XWHzVJGwqX/t9P ad7htIlFgUlSIrmly41FvIVfZPmmszDF -----END CERTIFICATE-----Generated at Tue Oct 21 04:49:17 2025 by rpki-client