$ rpki-client -vvf rpki.apnic.net/member_repository/A91B8E38/51F0DB3C3FFE11ED9A87A315C4F9AE02/ck4fZGxFGwGeHNo21DRq25tf2_g.mft File: ck4fZGxFGwGeHNo21DRq25tf2_g.mft (raw, json) Hash identifier: HdgA/oONL0cAWn8Vc201AuUTw1ZcfHbu2UAfI2K86/A= Subject key identifier: F3:DF:F9:03:F3:DA:8F:94:7C:B3:97:06:A8:5B:A0:A3:24:2F:11:DF Authority key identifier: 72:4E:1F:64:6C:45:1B:01:9E:1C:DA:36:D4:34:6A:DB:9B:5F:DB:F8 Certificate issuer: /CN=A91B8E38/serialNumber=724E1F646C451B019E1CDA36D4346ADB9B5FDBF8 Certificate serial: 0243 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ck4fZGxFGwGeHNo21DRq25tf2_g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B8E38/51F0DB3C3FFE11ED9A87A315C4F9AE02/ck4fZGxFGwGeHNo21DRq25tf2_g.mft Manifest number: 023F Signing time: Sun 19 Oct 2025 04:01:51 +0000 Manifest this update: Sun 19 Oct 2025 04:01:50 +0000 Manifest next update: Sun 26 Oct 2025 04:01:50 +0000 Files and hashes: 1: ck4fZGxFGwGeHNo21DRq25tf2_g.crl (hash: yD/eupPhO+q93od+k5pu6PYUon0jRgFp1uYpNfWBvq4=) 2: A6789038400211ED808CCF0DC4F9AE02.roa (hash: tO/Vg+1jM6TnaROUPSYxvRElxqw/2z5ZN8ZDcSK7tnY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B8E38/51F0DB3C3FFE11ED9A87A315C4F9AE02/ck4fZGxFGwGeHNo21DRq25tf2_g.crl rsync://rpki.apnic.net/member_repository/A91B8E38/51F0DB3C3FFE11ED9A87A315C4F9AE02/ck4fZGxFGwGeHNo21DRq25tf2_g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ck4fZGxFGwGeHNo21DRq25tf2_g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 04:01:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 579 (0x243) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B8E38, serialNumber=724E1F646C451B019E1CDA36D4346ADB9B5FDBF8 Validity Not Before: Oct 19 04:01:50 2025 GMT Not After : Oct 26 04:01:50 2025 GMT Subject: CN=68f462af-9c28 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:ce:46:7e:22:98:71:3f:46:7e:4f:b4:5f:6b: 30:9d:0c:e4:45:1f:83:0b:99:9e:b9:a3:92:4f:ac: d9:c6:70:c5:77:90:33:45:41:e5:36:a3:88:56:14: 3e:9e:ea:07:aa:8a:2f:b2:32:a3:10:59:1c:fc:1b: 06:dd:19:15:bf:db:0e:39:b3:3a:d0:fe:a5:35:cc: 87:c4:95:da:26:c5:e4:b9:58:64:33:d2:42:2d:d7: d7:f1:8a:7c:f8:39:e2:77:74:6f:2b:af:2e:ed:1f: 16:c9:0c:55:f4:6c:79:13:74:6a:34:52:02:ff:74: 76:01:e4:36:d9:ce:87:38:a7:7a:df:32:61:2e:72: e1:ab:1a:db:66:60:ca:97:49:83:25:4b:25:70:44: 66:e1:cf:b9:0d:b3:41:4e:6c:f3:ee:96:35:d5:82: c1:9a:9a:44:96:cf:39:7d:bf:c6:20:43:cb:c8:ec: 66:9c:17:f9:a5:81:98:82:db:1f:7b:3d:d7:85:8e: 24:d7:b8:75:1e:97:41:94:f6:74:56:45:08:48:38: d7:ca:6b:0f:51:ad:0f:be:8e:70:26:a6:17:e6:59: dd:b9:c2:29:2c:09:7a:6d:b9:23:11:22:b1:c4:46: e9:15:1e:02:46:77:43:94:28:27:91:8f:20:f7:54: 8b:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:DF:F9:03:F3:DA:8F:94:7C:B3:97:06:A8:5B:A0:A3:24:2F:11:DF X509v3 Authority Key Identifier: keyid:72:4E:1F:64:6C:45:1B:01:9E:1C:DA:36:D4:34:6A:DB:9B:5F:DB:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B8E38/51F0DB3C3FFE11ED9A87A315C4F9AE02/ck4fZGxFGwGeHNo21DRq25tf2_g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ck4fZGxFGwGeHNo21DRq25tf2_g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B8E38/51F0DB3C3FFE11ED9A87A315C4F9AE02/ck4fZGxFGwGeHNo21DRq25tf2_g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 58:b8:0d:2b:bc:27:da:fc:6b:9a:5b:1b:a0:58:fe:e5:fb:1d: 64:da:36:93:4c:37:c8:33:e1:c8:33:0e:81:3c:9a:dd:18:7c: 2a:59:51:3f:f7:e9:e4:00:fd:94:13:0e:8a:f2:dc:6e:98:b1: 62:82:f0:60:ad:2e:f4:e3:f7:8d:41:a0:34:d7:de:a1:cc:29: dc:10:f7:29:9c:50:65:af:28:04:20:fa:52:44:9f:09:37:19: cd:27:d7:6c:52:fe:3e:19:54:47:37:b0:d7:bc:ec:fa:06:a1: 92:ef:36:84:56:09:99:61:83:78:36:92:12:9d:22:25:d5:94: 9c:c8:21:cb:c1:22:f3:c6:92:9d:97:c8:22:fd:3d:23:43:50: 57:24:af:2d:88:fd:a5:3e:42:c4:a5:3d:30:db:59:96:9b:08: 97:3b:b8:eb:a2:dd:b3:47:7d:95:8e:fb:1a:4d:3f:89:0f:99: 9b:e3:97:51:46:8b:a5:9a:a1:ad:0c:d6:48:50:56:1c:fe:29: e9:ef:9a:ec:f6:ee:99:24:e3:25:72:54:4d:10:d9:4b:ed:5f: 7b:bf:90:fe:86:d1:fb:0a:0d:89:0a:9e:e4:af:2d:e2:4a:85: a4:eb:d0:c8:fe:74:5c:5f:69:b6:5a:1b:30:fd:25:7b:2f:90: 29:5d:45:7e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAkMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjhFMzgxMTAvBgNVBAUTKDcyNEUxRjY0NkM0NTFCMDE5RTFDREEzNkQ0MzQ2QURC OUI1RkRCRjgwHhcNMjUxMDE5MDQwMTUwWhcNMjUxMDI2MDQwMTUwWjAYMRYwFAYD VQQDEw02OGY0NjJhZi05YzI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvc5GfiKYcT9Gfk+0X2swnQzkRR+DC5meuaOST6zZxnDFd5AzRUHlNqOIVhQ+ nuoHqoovsjKjEFkc/BsG3RkVv9sOObM60P6lNcyHxJXaJsXkuVhkM9JCLdfX8Yp8 +Dnid3RvK68u7R8WyQxV9Gx5E3RqNFIC/3R2AeQ22c6HOKd63zJhLnLhqxrbZmDK l0mDJUslcERm4c+5DbNBTmzz7pY11YLBmppEls85fb/GIEPLyOxmnBf5pYGYgtsf ez3XhY4k17h1HpdBlPZ0VkUISDjXymsPUa0Pvo5wJqYX5lnducIpLAl6bbkjESKx xEbpFR4CRndDlCgnkY8g91SLzQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPPf+QPz 2o+UfLOXBqhboKMkLxHfMB8GA1UdIwQYMBaAFHJOH2RsRRsBnhzaNtQ0atubX9v4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOEUzOC81MUYwREIzQzNG RkUxMUVEOUE4N0EzMTVDNEY5QUUwMi9jazRmWkd4Rkd3R2VITm8yMURScTI1dGYy X2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NrNGZaR3hGR3dHZUhObzIxRFJxMjV0ZjJfZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OEUzOC81MUYwREIzQzNGRkUxMUVEOUE4N0EzMTVDNEY5QUUwMi9jazRmWkd4Rkd3 R2VITm8yMURScTI1dGYyX2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBYuA0rvCfa/GuaWxugWP7l+x1k2jaTTDfIM+HIMw6BPJrdGHwqWVE/ 9+nkAP2UEw6K8txumLFigvBgrS704/eNQaA0196hzCncEPcpnFBlrygEIPpSRJ8J NxnNJ9dsUv4+GVRHN7DXvOz6BqGS7zaEVgmZYYN4NpISnSIl1ZScyCHLwSLzxpKd l8gi/T0jQ1BXJK8tiP2lPkLEpT0w21mWmwiXO7jrot2zR32VjvsaTT+JD5mb45dR RoulmqGtDNZIUFYc/inp75rs9u6ZJOMlclRNENlL7V97v5D+htH7Cg2JCp7kry3i SoWk69DI/nRcX2m2Whsw/SV7L5ApXUV+ -----END CERTIFICATE-----Generated at Mon Oct 20 01:46:25 2025 by rpki-client