$ rpki-client -vvf rpki.apnic.net/member_repository/A9197FDB/657E4074DA3611EB84E6A349C4F9AE02/4AJb-TLnFuGh-K-QECEcQRCE_J0.mft File: 4AJb-TLnFuGh-K-QECEcQRCE_J0.mft (raw, json) Hash identifier: cSG4pfwH3KBD4SmNIE+X9AiBW0IMFPMPKVTDqlaowko= Subject key identifier: 06:86:E6:30:AB:C6:1D:A9:22:6F:EA:C5:8B:2D:CA:FF:CA:53:9B:5D Authority key identifier: E0:02:5B:F9:32:E7:16:E1:A1:F8:AF:90:10:21:1C:41:10:84:FC:9D Certificate issuer: /CN=A9197FDB/serialNumber=E0025BF932E716E1A1F8AF9010211C411084FC9D Certificate serial: 05D6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4AJb-TLnFuGh-K-QECEcQRCE_J0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9197FDB/657E4074DA3611EB84E6A349C4F9AE02/4AJb-TLnFuGh-K-QECEcQRCE_J0.mft Manifest number: 05CF Signing time: Sun 19 Oct 2025 00:43:01 +0000 Manifest this update: Sun 19 Oct 2025 00:43:00 +0000 Manifest next update: Sun 26 Oct 2025 00:43:00 +0000 Files and hashes: 1: 4AJb-TLnFuGh-K-QECEcQRCE_J0.crl (hash: PcFPzb0BQ6jbXfYtjAhSQcCX+0lrTduZFBPkb4p2Iv0=) 2: 0A1FAC405BB211EEAD06B243C4F9AE02.roa (hash: +Nf3CbeJiQCKoMqVOr8fCtBhRD9vFNzRUGK/YqqHHSM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9197FDB/657E4074DA3611EB84E6A349C4F9AE02/4AJb-TLnFuGh-K-QECEcQRCE_J0.crl rsync://rpki.apnic.net/member_repository/A9197FDB/657E4074DA3611EB84E6A349C4F9AE02/4AJb-TLnFuGh-K-QECEcQRCE_J0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4AJb-TLnFuGh-K-QECEcQRCE_J0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 00:42:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1494 (0x5d6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9197FDB, serialNumber=E0025BF932E716E1A1F8AF9010211C411084FC9D Validity Not Before: Oct 19 00:43:00 2025 GMT Not After : Oct 26 00:43:00 2025 GMT Subject: CN=68f43414-e284 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:eb:f5:cd:48:1a:ff:2a:91:d8:d6:c3:6f:e9: f5:68:37:f9:fa:9f:e0:42:89:5b:7e:46:42:ff:33: 53:b6:63:ae:b7:36:2f:6e:c6:fd:4e:c9:4a:3f:6b: cb:07:f1:89:a6:e1:d9:19:67:21:7b:9a:4d:11:b6: 38:8e:47:33:f4:63:62:5f:52:f9:29:8d:94:b1:dd: ca:28:57:eb:4c:34:96:81:3a:41:f2:b5:6b:2f:6c: b6:f1:7c:8e:06:f4:8b:d0:b4:40:d3:5f:c0:d2:8d: 4e:bb:78:f9:6c:c2:00:bf:82:ae:86:cc:dc:e8:9d: 26:4c:6f:92:1e:66:51:48:11:98:97:5f:f4:44:1e: 67:7a:30:9f:33:9b:63:ff:c7:c0:54:bb:b2:61:40: b3:84:ee:2c:0a:60:7f:dc:2e:eb:c8:81:ba:d6:80: f5:91:5b:a3:e1:67:9e:67:4d:6d:0a:9d:6e:3a:ac: 86:d8:b3:9d:3d:67:d6:ef:7e:24:80:c1:fb:07:48: 31:c9:bc:72:11:2e:51:10:0c:ee:ec:3c:68:63:76: 9c:52:c3:44:21:89:e8:a5:8b:c2:4c:f7:24:05:22: b0:79:d3:37:37:1b:89:85:75:93:7a:ee:9c:f1:cc: 0e:65:58:a6:65:4d:1c:a8:02:39:4b:28:37:b5:94: 6e:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:86:E6:30:AB:C6:1D:A9:22:6F:EA:C5:8B:2D:CA:FF:CA:53:9B:5D X509v3 Authority Key Identifier: keyid:E0:02:5B:F9:32:E7:16:E1:A1:F8:AF:90:10:21:1C:41:10:84:FC:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9197FDB/657E4074DA3611EB84E6A349C4F9AE02/4AJb-TLnFuGh-K-QECEcQRCE_J0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4AJb-TLnFuGh-K-QECEcQRCE_J0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9197FDB/657E4074DA3611EB84E6A349C4F9AE02/4AJb-TLnFuGh-K-QECEcQRCE_J0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 72:66:a4:08:53:25:84:42:f9:96:76:3f:e5:21:03:b5:65:b4: 9d:0d:79:4b:4c:0e:ac:c3:aa:f3:2c:cb:7a:7b:ab:e0:3b:f2: 83:70:22:bd:1a:51:ce:b0:af:eb:0a:43:53:91:94:a7:e1:ed: 87:fa:df:c0:27:8a:e1:31:c6:da:10:ba:6d:d2:ed:f3:20:d2: da:19:62:06:5b:49:4a:43:18:f7:8c:a2:a4:40:7f:0f:32:7e: 94:5a:25:03:e5:63:4a:cd:fa:4e:24:14:66:0f:e8:19:96:a7: b1:08:3a:4f:28:b7:4b:7a:1b:6d:a0:72:09:12:7e:ee:dc:41: bb:37:64:03:59:4e:68:6b:fe:9d:7a:9c:c4:e0:17:ee:4b:f3: 91:01:85:91:62:8b:fb:bd:f7:b8:ef:a4:8d:9b:40:ff:5a:ef: b4:47:8c:ac:eb:d5:ce:ed:40:d6:2d:c9:c3:63:83:41:3c:57: 0b:87:88:51:fe:d9:ce:3c:07:a5:0e:c8:85:e5:2e:3f:45:3a: ba:cc:2a:cb:c2:99:6f:e2:f0:27:88:5b:90:77:14:61:0c:5b: 47:c5:00:41:80:72:85:08:50:e3:3c:a2:83:69:04:e0:b4:aa: 3a:ef:12:8e:dd:eb:8a:1f:8b:dd:bc:0b:94:a8:4e:17:8a:16: 74:76:dc:46 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBdYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTdGREIxMTAvBgNVBAUTKEUwMDI1QkY5MzJFNzE2RTFBMUY4QUY5MDEwMjExQzQx MTA4NEZDOUQwHhcNMjUxMDE5MDA0MzAwWhcNMjUxMDI2MDA0MzAwWjAYMRYwFAYD VQQDEw02OGY0MzQxNC1lMjg0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtOv1zUga/yqR2NbDb+n1aDf5+p/gQolbfkZC/zNTtmOutzYvbsb9TslKP2vL B/GJpuHZGWche5pNEbY4jkcz9GNiX1L5KY2Usd3KKFfrTDSWgTpB8rVrL2y28XyO BvSL0LRA01/A0o1Ou3j5bMIAv4Kuhszc6J0mTG+SHmZRSBGYl1/0RB5nejCfM5tj /8fAVLuyYUCzhO4sCmB/3C7ryIG61oD1kVuj4WeeZ01tCp1uOqyG2LOdPWfW734k gMH7B0gxybxyES5REAzu7DxoY3acUsNEIYnopYvCTPckBSKwedM3NxuJhXWTeu6c 8cwOZVimZU0cqAI5Syg3tZRuswIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAaG5jCr xh2pIm/qxYstyv/KU5tdMB8GA1UdIwQYMBaAFOACW/ky5xbhofivkBAhHEEQhPyd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5N0ZEQi82NTdFNDA3NERB MzYxMUVCODRFNkEzNDlDNEY5QUUwMi80QUpiLVRMbkZ1R2gtSy1RRUNFY1FSQ0Vf SjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRBSmItVExuRnVHaC1LLVFFQ0VjUVJDRV9KMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 N0ZEQi82NTdFNDA3NERBMzYxMUVCODRFNkEzNDlDNEY5QUUwMi80QUpiLVRMbkZ1 R2gtSy1RRUNFY1FSQ0VfSjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQByZqQIUyWEQvmWdj/lIQO1ZbSdDXlLTA6sw6rzLMt6e6vgO/KDcCK9 GlHOsK/rCkNTkZSn4e2H+t/AJ4rhMcbaELpt0u3zINLaGWIGW0lKQxj3jKKkQH8P Mn6UWiUD5WNKzfpOJBRmD+gZlqexCDpPKLdLehttoHIJEn7u3EG7N2QDWU5oa/6d epzE4BfuS/ORAYWRYov7vfe476SNm0D/Wu+0R4ys69XO7UDWLcnDY4NBPFcLh4hR /tnOPAelDsiF5S4/RTq6zCrLwplv4vAniFuQdxRhDFtHxQBBgHKFCFDjPKKDaQTg tKo67xKO3euKH4vdvAuUqE4XihZ0dtxG -----END CERTIFICATE-----Generated at Mon Oct 20 08:46:21 2025 by rpki-client