$ rpki-client -vvf rpki.apnic.net/member_repository/A91B7F47/330A008CCE5911E9A0908287C4F9AE02/4wpM3fbCaay6OcpYqpWS2JhkAfQ.mft File: 4wpM3fbCaay6OcpYqpWS2JhkAfQ.mft (raw, json) Hash identifier: N0PTKJy1S7rTPz30b3Al5N65Nl8znTH8y6jPKK318Co= Subject key identifier: 42:D8:06:59:7D:55:9B:5C:43:C8:A4:C1:0A:C9:85:C1:63:AF:4B:DC Authority key identifier: E3:0A:4C:DD:F6:C2:69:AC:BA:39:CA:58:AA:95:92:D8:98:64:01:F4 Certificate issuer: /CN=A91B7F47/serialNumber=E30A4CDDF6C269ACBA39CA58AA9592D8986401F4 Certificate serial: 0DE2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4wpM3fbCaay6OcpYqpWS2JhkAfQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B7F47/330A008CCE5911E9A0908287C4F9AE02/4wpM3fbCaay6OcpYqpWS2JhkAfQ.mft Manifest number: 0DC4 Signing time: Sat 18 Oct 2025 18:35:18 +0000 Manifest this update: Sat 18 Oct 2025 18:35:18 +0000 Manifest next update: Sat 25 Oct 2025 18:35:18 +0000 Files and hashes: 1: 4wpM3fbCaay6OcpYqpWS2JhkAfQ.crl (hash: /YBq1ZI8dUUWYiQhd1kwqxSPB3uIIsaG7cC9dtp8V4Y=) 2: 8B41351885EB11F0B665685EC4F9AE02.roa (hash: 3jicQmgQkvww41dqycYyBrr/vfnWtkA7h6bxqXU86fw=) 3: 3AA99BFC85E311F08C58A47BC4F9AE02.roa (hash: P7cfUWJzhGI/B+OEAI2GfYhnJaFGcv7V45ZOvv42ixM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B7F47/330A008CCE5911E9A0908287C4F9AE02/4wpM3fbCaay6OcpYqpWS2JhkAfQ.crl rsync://rpki.apnic.net/member_repository/A91B7F47/330A008CCE5911E9A0908287C4F9AE02/4wpM3fbCaay6OcpYqpWS2JhkAfQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4wpM3fbCaay6OcpYqpWS2JhkAfQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 18:35:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3554 (0xde2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B7F47, serialNumber=E30A4CDDF6C269ACBA39CA58AA9592D8986401F4 Validity Not Before: Oct 18 18:35:18 2025 GMT Not After : Oct 25 18:35:18 2025 GMT Subject: CN=68f3dde6-4699 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:c0:a7:ff:b3:e7:8c:8f:27:9e:02:10:96:aa: b5:14:5f:a6:ca:e1:53:c1:03:90:54:f2:de:8f:2a: 8b:e1:d8:30:c6:ad:1f:f0:28:4a:96:99:41:4a:69: 91:c5:5d:90:ba:12:25:4d:e4:51:31:62:a0:43:c5: 1b:47:73:d0:b1:c1:cc:59:f2:7e:5c:40:98:da:a3: 0a:7e:43:61:68:8b:0c:9e:71:4c:b9:af:fb:a7:49: 1b:16:f4:bf:ad:5b:f4:2c:56:c5:01:cc:92:1c:08: 81:6d:cb:7c:98:d5:28:36:18:79:c8:b9:9a:89:ac: 7c:0f:ce:35:31:3b:b9:67:8f:3b:ec:fa:5f:68:31: bb:ac:80:22:1d:88:b3:53:a3:f9:81:d8:19:af:27: ed:1c:2a:5d:c3:99:f1:eb:ca:3b:63:b7:fc:e9:06: b8:98:30:4f:7b:cb:47:b8:eb:31:06:05:63:ed:36: e5:c4:57:f8:08:7e:d1:64:8e:d7:74:a0:e2:2e:1c: 74:6b:cb:e4:13:5c:a4:b0:22:d9:7c:af:2e:af:8f: 32:f8:3b:10:fd:e0:27:dd:72:38:75:ca:ba:a5:71: 39:70:eb:7b:6c:7d:b3:fe:ed:7a:52:8c:26:83:fe: a8:dd:ca:26:89:9c:17:25:fa:63:7e:39:b3:55:3d: f2:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:D8:06:59:7D:55:9B:5C:43:C8:A4:C1:0A:C9:85:C1:63:AF:4B:DC X509v3 Authority Key Identifier: keyid:E3:0A:4C:DD:F6:C2:69:AC:BA:39:CA:58:AA:95:92:D8:98:64:01:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B7F47/330A008CCE5911E9A0908287C4F9AE02/4wpM3fbCaay6OcpYqpWS2JhkAfQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4wpM3fbCaay6OcpYqpWS2JhkAfQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B7F47/330A008CCE5911E9A0908287C4F9AE02/4wpM3fbCaay6OcpYqpWS2JhkAfQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a4:84:48:72:e9:fc:3d:05:f6:ed:b8:0e:c3:1b:68:d5:c4:89: a8:03:37:49:7c:21:31:d6:dd:64:6b:a6:bb:ad:9c:88:02:8d: e0:9a:ca:6b:44:2f:75:0c:f1:c1:2c:62:33:a2:51:11:59:5c: b1:1b:28:c7:d6:26:8d:b0:eb:24:79:ef:ca:b3:63:3a:c0:15: ee:77:91:f3:d5:ad:27:87:19:c6:b5:3a:77:bd:01:1d:e4:73: f4:9b:65:65:48:c8:e3:ce:d1:bb:ae:1b:76:e6:d5:d2:d7:71: df:13:23:8d:1e:96:dc:30:7d:a4:80:9d:9c:29:46:89:27:b7: eb:0e:17:83:89:c8:5d:4e:0e:11:27:11:6f:00:a1:86:57:c9: 3e:6e:7f:b2:b5:2e:57:af:de:95:2b:cc:13:1e:55:50:0d:81: 8f:a7:fc:d8:7a:8a:dc:15:95:0f:d3:d3:1f:0a:e7:f4:f3:4d: 53:55:d2:59:6f:d4:92:b3:0f:fd:16:33:57:f2:83:7b:2f:47: f5:23:61:80:36:49:a9:c6:d2:40:e8:5f:2f:a9:7b:c3:0c:c2: 74:3b:06:35:78:1b:5d:8a:52:00:1d:27:fa:4f:aa:36:f7:37: 26:5b:fd:05:9d:a3:ab:9f:37:b5:45:07:6a:15:82:51:32:5c: b6:ae:7c:60 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDeIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjdGNDcxMTAvBgNVBAUTKEUzMEE0Q0RERjZDMjY5QUNCQTM5Q0E1OEFBOTU5MkQ4 OTg2NDAxRjQwHhcNMjUxMDE4MTgzNTE4WhcNMjUxMDI1MTgzNTE4WjAYMRYwFAYD VQQDEw02OGYzZGRlNi00Njk5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw8Cn/7PnjI8nngIQlqq1FF+myuFTwQOQVPLejyqL4dgwxq0f8ChKlplBSmmR xV2QuhIlTeRRMWKgQ8UbR3PQscHMWfJ+XECY2qMKfkNhaIsMnnFMua/7p0kbFvS/ rVv0LFbFAcySHAiBbct8mNUoNhh5yLmaiax8D841MTu5Z4877PpfaDG7rIAiHYiz U6P5gdgZryftHCpdw5nx68o7Y7f86Qa4mDBPe8tHuOsxBgVj7TblxFf4CH7RZI7X dKDiLhx0a8vkE1yksCLZfK8ur48y+DsQ/eAn3XI4dcq6pXE5cOt7bH2z/u16Uowm g/6o3comiZwXJfpjfjmzVT3yYQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFELYBll9 VZtcQ8ikwQrJhcFjr0vcMB8GA1UdIwQYMBaAFOMKTN32wmmsujnKWKqVktiYZAH0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCN0Y0Ny8zMzBBMDA4Q0NF NTkxMUU5QTA5MDgyODdDNEY5QUUwMi80d3BNM2ZiQ2FheTZPY3BZcXBXUzJKaGtB ZlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzR3cE0zZmJDYWF5Nk9jcFlxcFdTMkpoa0FmUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC N0Y0Ny8zMzBBMDA4Q0NFNTkxMUU5QTA5MDgyODdDNEY5QUUwMi80d3BNM2ZiQ2Fh eTZPY3BZcXBXUzJKaGtBZlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCkhEhy6fw9BfbtuA7DG2jVxImoAzdJfCEx1t1ka6a7rZyIAo3gmspr RC91DPHBLGIzolERWVyxGyjH1iaNsOskee/Ks2M6wBXud5Hz1a0nhxnGtTp3vQEd 5HP0m2VlSMjjztG7rht25tXS13HfEyONHpbcMH2kgJ2cKUaJJ7frDheDichdTg4R JxFvAKGGV8k+bn+ytS5Xr96VK8wTHlVQDYGPp/zYeorcFZUP09MfCuf0801TVdJZ b9SSsw/9FjNX8oN7L0f1I2GANkmpxtJA6F8vqXvDDMJ0OwY1eBtdilIAHSf6T6o2 9zcmW/0FnaOrnze1RQdqFYJRMly2rnxg -----END CERTIFICATE-----Generated at Mon Oct 20 08:48:39 2025 by rpki-client