$ rpki-client -vvf rpki.apnic.net/member_repository/A91B3DC1/50C6027AA50611EC82A2437DC4F9AE02/4UTM9B2hBa9s1FvD-IZiNNOPfHU.mft File: 4UTM9B2hBa9s1FvD-IZiNNOPfHU.mft (raw, json) Hash identifier: CJQP7EOK8Kv5wF2uiMaYNAuF5Z5HKoJZ0i2/Tr4Kzws= Subject key identifier: A5:1E:6B:56:D6:CD:95:33:A5:5E:87:8F:5E:66:96:52:3E:E2:70:08 Authority key identifier: E1:44:CC:F4:1D:A1:05:AF:6C:D4:5B:C3:F8:86:62:34:D3:8F:7C:75 Certificate issuer: /CN=A91B3DC1/serialNumber=E144CCF41DA105AF6CD45BC3F8866234D38F7C75 Certificate serial: 03D2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4UTM9B2hBa9s1FvD-IZiNNOPfHU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B3DC1/50C6027AA50611EC82A2437DC4F9AE02/4UTM9B2hBa9s1FvD-IZiNNOPfHU.mft Manifest number: 03CC Signing time: Sun 19 Oct 2025 02:37:44 +0000 Manifest this update: Sun 19 Oct 2025 02:37:44 +0000 Manifest next update: Sun 26 Oct 2025 02:37:44 +0000 Files and hashes: 1: 4UTM9B2hBa9s1FvD-IZiNNOPfHU.crl (hash: /oBGBAy8+w7rOEa1h3mUJpohoMyedwuaaSUAVLHmqv8=) 2: 2FFDFB74A5F111EC89780C38C4F9AE02.roa (hash: t9Ue3iuOWPGeL64kpqjEgMmW4d4g4YPsvh4Erz4xwRU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B3DC1/50C6027AA50611EC82A2437DC4F9AE02/4UTM9B2hBa9s1FvD-IZiNNOPfHU.crl rsync://rpki.apnic.net/member_repository/A91B3DC1/50C6027AA50611EC82A2437DC4F9AE02/4UTM9B2hBa9s1FvD-IZiNNOPfHU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4UTM9B2hBa9s1FvD-IZiNNOPfHU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 02:37:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 978 (0x3d2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B3DC1, serialNumber=E144CCF41DA105AF6CD45BC3F8866234D38F7C75 Validity Not Before: Oct 19 02:37:44 2025 GMT Not After : Oct 26 02:37:44 2025 GMT Subject: CN=68f44ef8-4e1c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:e4:4b:90:84:c4:e3:5b:ce:4f:46:19:7e:05: f9:de:2f:e9:e6:fb:d7:04:af:db:c6:2d:fb:37:b2: 55:09:b5:24:3c:33:3c:49:78:b8:a8:1b:15:d8:f5: 3b:7e:38:cb:55:b3:c2:a0:19:3e:07:69:cd:84:88: 74:e6:08:7a:85:1c:9e:f2:85:99:f8:41:c6:94:c6: ac:a8:42:31:5a:0c:69:dd:2c:bf:4e:d8:3b:28:9e: 82:15:af:6c:cc:df:50:39:74:d7:0f:aa:84:ee:c0: a9:ee:bc:c6:44:52:fd:5d:21:ee:66:92:01:1e:2e: 2b:f0:db:39:f3:22:1c:57:e1:46:75:b2:29:1d:ce: fa:28:51:67:77:23:83:8f:9c:94:a4:bf:05:4d:89: 26:91:dc:39:81:77:97:71:e7:fd:f6:8c:1d:0c:03: 47:5b:b8:9d:a8:95:94:f8:db:8c:51:58:48:29:67: 29:fc:18:08:32:1e:be:85:d0:fc:94:08:c9:3f:10: be:57:29:62:c0:89:67:bd:98:d7:7a:87:d0:32:56: 2a:ae:17:91:9d:e6:a2:88:6e:a4:f1:48:7c:3f:1f: 6a:6c:41:2d:91:62:be:0f:46:f5:8d:d1:d7:57:ee: 74:09:e3:a5:8d:cc:4d:e2:40:42:e0:55:44:b1:54: 02:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:1E:6B:56:D6:CD:95:33:A5:5E:87:8F:5E:66:96:52:3E:E2:70:08 X509v3 Authority Key Identifier: keyid:E1:44:CC:F4:1D:A1:05:AF:6C:D4:5B:C3:F8:86:62:34:D3:8F:7C:75 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B3DC1/50C6027AA50611EC82A2437DC4F9AE02/4UTM9B2hBa9s1FvD-IZiNNOPfHU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4UTM9B2hBa9s1FvD-IZiNNOPfHU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B3DC1/50C6027AA50611EC82A2437DC4F9AE02/4UTM9B2hBa9s1FvD-IZiNNOPfHU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 20:c3:67:74:83:48:5f:04:10:f5:f1:b2:6a:43:ff:42:bb:d7: 59:b3:f5:b3:6c:d9:d4:12:60:76:0f:1b:bc:dc:e4:34:33:fc: a4:e7:de:a8:86:7c:9a:d5:8e:4f:c5:3c:85:3e:53:c9:af:23: 8a:48:39:c7:c6:fd:aa:47:5d:d3:e9:ad:4c:ab:69:66:ed:b2: 8f:2f:56:4f:bb:4d:bd:db:40:a2:30:90:92:1b:3d:f6:9d:39: 04:c7:5a:c8:00:99:20:da:bb:a5:6c:2e:60:66:92:56:11:d0: 4a:65:3e:be:d4:21:b7:45:76:3c:7d:94:3f:fc:3d:04:af:1e: fa:4c:ac:9f:b3:ed:cd:71:2f:05:cd:7b:3f:16:f6:16:33:42: 90:a7:df:5d:15:b2:c6:7f:cf:44:ba:73:b0:7e:e5:87:59:9f: 28:39:b0:af:20:01:6d:31:40:78:e6:51:3f:7e:9c:f7:03:65: ef:54:14:c3:c5:58:d3:f4:e8:95:64:a6:3a:1c:33:1f:d8:f8: 1e:32:74:a4:16:fd:cb:a0:fa:1b:4b:7b:7d:98:a8:b4:f8:de: 10:01:b9:2d:7c:8c:f1:ef:23:c1:e6:3b:a5:9d:2a:b8:29:e5: 20:74:a6:4f:1a:73:ee:57:54:c0:a8:44:b0:d0:cd:45:dd:b4: cb:69:6e:14 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA9IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjNEQzExMTAvBgNVBAUTKEUxNDRDQ0Y0MURBMTA1QUY2Q0Q0NUJDM0Y4ODY2MjM0 RDM4RjdDNzUwHhcNMjUxMDE5MDIzNzQ0WhcNMjUxMDI2MDIzNzQ0WjAYMRYwFAYD VQQDEw02OGY0NGVmOC00ZTFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAquRLkITE41vOT0YZfgX53i/p5vvXBK/bxi37N7JVCbUkPDM8SXi4qBsV2PU7 fjjLVbPCoBk+B2nNhIh05gh6hRye8oWZ+EHGlMasqEIxWgxp3Sy/Ttg7KJ6CFa9s zN9QOXTXD6qE7sCp7rzGRFL9XSHuZpIBHi4r8Ns58yIcV+FGdbIpHc76KFFndyOD j5yUpL8FTYkmkdw5gXeXcef99owdDANHW7idqJWU+NuMUVhIKWcp/BgIMh6+hdD8 lAjJPxC+VyliwIlnvZjXeofQMlYqrheRneaiiG6k8Uh8Px9qbEEtkWK+D0b1jdHX V+50CeOljcxN4kBC4FVEsVQCRQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKUea1bW zZUzpV6Hj15mllI+4nAIMB8GA1UdIwQYMBaAFOFEzPQdoQWvbNRbw/iGYjTTj3x1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCM0RDMS81MEM2MDI3QUE1 MDYxMUVDODJBMjQzN0RDNEY5QUUwMi80VVRNOUIyaEJhOXMxRnZELUlaaU5OT1Bm SFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRVVE05QjJoQmE5czFGdkQtSVppTk5PUGZIVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC M0RDMS81MEM2MDI3QUE1MDYxMUVDODJBMjQzN0RDNEY5QUUwMi80VVRNOUIyaEJh OXMxRnZELUlaaU5OT1BmSFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAgw2d0g0hfBBD18bJqQ/9Cu9dZs/WzbNnUEmB2Dxu83OQ0M/yk596o hnya1Y5PxTyFPlPJryOKSDnHxv2qR13T6a1Mq2lm7bKPL1ZPu02920CiMJCSGz32 nTkEx1rIAJkg2rulbC5gZpJWEdBKZT6+1CG3RXY8fZQ//D0Erx76TKyfs+3NcS8F zXs/FvYWM0KQp99dFbLGf89EunOwfuWHWZ8oObCvIAFtMUB45lE/fpz3A2XvVBTD xVjT9OiVZKY6HDMf2PgeMnSkFv3LoPobS3t9mKi0+N4QAbktfIzx7yPB5julnSq4 KeUgdKZPGnPuV1TAqESw0M1F3bTLaW4U -----END CERTIFICATE-----Generated at Mon Oct 20 01:45:52 2025 by rpki-client