$ rpki-client -vvf rpki.apnic.net/member_repository/A91C23FE/825CE9AAF9EB11E6BDE7A968C4F9AE02/4vB0KtgKnbsodRhO4N1elN11eEs.mft File: 4vB0KtgKnbsodRhO4N1elN11eEs.mft (raw, json) Hash identifier: LiCgThyhNYFAMyrH3Ziw3PzPLxc6NSWhVnFT9EWR5iA= Subject key identifier: 04:BB:5B:ED:F9:E9:48:84:99:7F:E1:A6:07:7F:F4:38:38:EB:69:F5 Authority key identifier: E2:F0:74:2A:D8:0A:9D:BB:28:75:18:4E:E0:DD:5E:94:DD:75:78:4B Certificate issuer: /CN=A91C23FE/serialNumber=E2F0742AD80A9DBB2875184EE0DD5E94DD75784B Certificate serial: 1C27 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4vB0KtgKnbsodRhO4N1elN11eEs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C23FE/825CE9AAF9EB11E6BDE7A968C4F9AE02/4vB0KtgKnbsodRhO4N1elN11eEs.mft Manifest number: 1C1D Signing time: Mon 20 Oct 2025 16:31:05 +0000 Manifest this update: Mon 20 Oct 2025 16:31:04 +0000 Manifest next update: Mon 27 Oct 2025 16:31:04 +0000 Files and hashes: 1: 4vB0KtgKnbsodRhO4N1elN11eEs.crl (hash: v5wgAzB3Jmt/sEAReoLWdlBET8jUaYZWg0ZFvFYj5oA=) 2: A88F22ECCC7011ED931BD15FC4F9AE02.roa (hash: BCcYD/VfHPlrE1idB6qMcYHXBoKVsq99H3ysbvhT4uw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C23FE/825CE9AAF9EB11E6BDE7A968C4F9AE02/4vB0KtgKnbsodRhO4N1elN11eEs.crl rsync://rpki.apnic.net/member_repository/A91C23FE/825CE9AAF9EB11E6BDE7A968C4F9AE02/4vB0KtgKnbsodRhO4N1elN11eEs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4vB0KtgKnbsodRhO4N1elN11eEs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Oct 2025 16:31:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7207 (0x1c27) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C23FE, serialNumber=E2F0742AD80A9DBB2875184EE0DD5E94DD75784B Validity Not Before: Oct 20 16:31:04 2025 GMT Not After : Oct 27 16:31:04 2025 GMT Subject: CN=68f663c9-cc77 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:cd:4b:de:8a:9f:10:0c:cd:e8:ee:06:79:33: c4:55:6d:ef:15:6e:f2:34:0b:a8:6b:cf:16:55:a0: 07:b9:27:d4:23:52:41:99:e9:1f:a9:63:c4:47:a7: 13:1d:8e:ba:91:67:da:61:36:1e:7f:2b:75:56:bc: 7a:8c:5f:ac:1e:fe:80:bf:25:65:ab:47:6d:c5:b4: c5:ba:7a:66:96:2d:bc:00:7e:1e:08:e6:49:6f:c5: 02:c0:83:50:b7:c1:79:c7:bd:bf:bd:2e:16:76:2c: 90:df:98:9e:47:1e:2a:fc:af:cc:f2:64:c2:7a:9a: f6:0e:e2:e7:b4:85:18:d6:cd:b1:ac:42:c8:ba:4d: 84:04:a2:31:c2:b2:96:c5:a1:7c:48:3c:33:62:a4: 28:eb:52:5c:47:3f:a4:f7:8e:84:37:21:80:1b:b7: 11:53:bf:fd:ba:8a:e7:6c:c4:35:13:5a:33:3d:ba: 47:71:48:39:a5:5e:e4:bd:ae:35:5d:25:a1:3b:5e: c5:ff:5c:6c:97:6e:a4:84:be:7f:0c:1b:4b:ed:d3: 67:ad:fc:81:eb:49:1c:98:b4:a9:c0:67:f2:22:d4: df:2d:08:53:5d:f4:c1:fa:36:f5:5d:ae:5f:a3:5f: 17:b6:27:24:9b:6a:c5:73:a8:c3:c2:d9:b5:99:85: b9:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:BB:5B:ED:F9:E9:48:84:99:7F:E1:A6:07:7F:F4:38:38:EB:69:F5 X509v3 Authority Key Identifier: keyid:E2:F0:74:2A:D8:0A:9D:BB:28:75:18:4E:E0:DD:5E:94:DD:75:78:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C23FE/825CE9AAF9EB11E6BDE7A968C4F9AE02/4vB0KtgKnbsodRhO4N1elN11eEs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4vB0KtgKnbsodRhO4N1elN11eEs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C23FE/825CE9AAF9EB11E6BDE7A968C4F9AE02/4vB0KtgKnbsodRhO4N1elN11eEs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1f:21:29:f0:2b:1b:d5:a0:7e:08:58:9e:e5:78:3f:9e:9f:4f: d9:68:41:ea:c7:04:cc:b9:7f:9e:27:56:65:10:de:c8:16:64: df:7c:51:5a:65:93:47:5a:e6:b2:d9:76:46:3e:43:0e:8a:f5: 36:2b:a6:15:97:a5:8d:f8:49:dd:8a:bb:98:4d:55:72:9c:fe: 30:02:57:d6:e2:cc:76:25:35:77:de:cc:72:61:6e:de:56:29: 46:fe:ca:a3:fb:31:e6:35:b3:cc:ee:90:5b:cb:f3:95:67:41: 77:7d:3c:9e:ce:b5:9d:cf:4e:ad:e5:b3:c3:48:23:71:85:d6: bf:eb:57:cc:88:54:7c:70:b3:32:94:14:51:e0:88:af:43:ed: 77:dc:5f:1d:b1:e9:5b:3e:c5:1f:d3:eb:70:c7:dd:42:9d:c1: 7d:87:66:63:e0:11:d2:1c:6a:bb:e0:5c:93:f7:33:24:4c:2e: 7f:f0:4a:60:3f:b1:aa:f3:3d:0d:e9:16:03:1c:ca:eb:af:30: c3:48:31:3e:63:e2:f1:14:01:e2:4c:b9:66:e1:55:f7:f2:dd: 5b:64:0b:fc:59:01:43:a4:58:95:1a:65:5a:b8:ea:a1:bb:5e: 90:4e:02:c5:d4:1a:cd:85:eb:01:e7:aa:86:1e:31:77:96:7a: 3e:25:65:52 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHCcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzIzRkUxMTAvBgNVBAUTKEUyRjA3NDJBRDgwQTlEQkIyODc1MTg0RUUwREQ1RTk0 REQ3NTc4NEIwHhcNMjUxMDIwMTYzMTA0WhcNMjUxMDI3MTYzMTA0WjAYMRYwFAYD VQQDEw02OGY2NjNjOS1jYzc3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt81L3oqfEAzN6O4GeTPEVW3vFW7yNAuoa88WVaAHuSfUI1JBmekfqWPER6cT HY66kWfaYTYefyt1Vrx6jF+sHv6AvyVlq0dtxbTFunpmli28AH4eCOZJb8UCwINQ t8F5x72/vS4WdiyQ35ieRx4q/K/M8mTCepr2DuLntIUY1s2xrELIuk2EBKIxwrKW xaF8SDwzYqQo61JcRz+k946ENyGAG7cRU7/9uornbMQ1E1ozPbpHcUg5pV7kva41 XSWhO17F/1xsl26khL5/DBtL7dNnrfyB60kcmLSpwGfyItTfLQhTXfTB+jb1Xa5f o18Xtickm2rFc6jDwtm1mYW5WwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAS7W+35 6UiEmX/hpgd/9Dg462n1MB8GA1UdIwQYMBaAFOLwdCrYCp27KHUYTuDdXpTddXhL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMjNGRS84MjVDRTlBQUY5 RUIxMUU2QkRFN0E5NjhDNEY5QUUwMi80dkIwS3RnS25ic29kUmhPNE4xZWxOMTFl RXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzR2QjBLdGdLbmJzb2RSaE80TjFlbE4xMWVFcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MjNGRS84MjVDRTlBQUY5RUIxMUU2QkRFN0E5NjhDNEY5QUUwMi80dkIwS3RnS25i c29kUmhPNE4xZWxOMTFlRXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAfISnwKxvVoH4IWJ7leD+en0/ZaEHqxwTMuX+eJ1ZlEN7IFmTffFFa ZZNHWuay2XZGPkMOivU2K6YVl6WN+EndiruYTVVynP4wAlfW4sx2JTV33sxyYW7e VilG/sqj+zHmNbPM7pBby/OVZ0F3fTyezrWdz06t5bPDSCNxhda/61fMiFR8cLMy lBRR4IivQ+133F8dselbPsUf0+twx91CncF9h2Zj4BHSHGq74FyT9zMkTC5/8Epg P7Gq8z0N6RYDHMrrrzDDSDE+Y+LxFAHiTLlm4VX38t1bZAv8WQFDpFiVGmVauOqh u16QTgLF1BrNhesB56qGHjF3lno+JWVS -----END CERTIFICATE-----Generated at Tue Oct 21 00:59:29 2025 by rpki-client