$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9A8D/32F1F4C283E911ECB873C871C4F9AE02/4Y-ehXQ6vsrARiuP30On20pij_k.mft File: 4Y-ehXQ6vsrARiuP30On20pij_k.mft (raw, json) Hash identifier: fj9gh1SjJS2+bkDwBXrAoAo+mf/jey3ZmtWSMBft038= Subject key identifier: 73:FD:B6:F0:3A:DA:7A:6C:94:2F:D3:3B:E3:6F:A9:C4:D0:CA:FB:7B Authority key identifier: E1:8F:9E:85:74:3A:BE:CA:C0:46:2B:8F:DF:43:A7:DB:4A:62:8F:F9 Certificate issuer: /CN=A91C9A8D/serialNumber=E18F9E85743ABECAC0462B8FDF43A7DB4A628FF9 Certificate serial: 042F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4Y-ehXQ6vsrARiuP30On20pij_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C9A8D/32F1F4C283E911ECB873C871C4F9AE02/4Y-ehXQ6vsrARiuP30On20pij_k.mft Manifest number: 04B0 Signing time: Sun 19 Oct 2025 02:16:10 +0000 Manifest this update: Sun 19 Oct 2025 02:16:09 +0000 Manifest next update: Sun 26 Oct 2025 02:16:09 +0000 Files and hashes: 1: 4Y-ehXQ6vsrARiuP30On20pij_k.crl (hash: V4/FgoDebQ96gSF08SIfFnnnyti7aiSY2jw5sqU1/BQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C9A8D/32F1F4C283E911ECB873C871C4F9AE02/4Y-ehXQ6vsrARiuP30On20pij_k.crl rsync://rpki.apnic.net/member_repository/A91C9A8D/32F1F4C283E911ECB873C871C4F9AE02/4Y-ehXQ6vsrARiuP30On20pij_k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4Y-ehXQ6vsrARiuP30On20pij_k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 02:16:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1071 (0x42f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C9A8D, serialNumber=E18F9E85743ABECAC0462B8FDF43A7DB4A628FF9 Validity Not Before: Oct 19 02:16:09 2025 GMT Not After : Oct 26 02:16:09 2025 GMT Subject: CN=68f449ea-59d8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:e9:76:a6:5e:66:ec:f0:8a:a1:d6:cc:50:e0: 79:32:0c:6e:72:18:cf:39:10:5e:f9:cf:1e:82:d7: c8:e9:da:a0:b8:16:97:2c:e0:27:01:09:4a:93:a6: 4f:f7:c1:2f:28:71:75:06:34:33:80:52:ab:a2:3e: 3a:2c:67:1f:21:41:d4:a9:18:35:f7:88:6a:e8:45: f9:bd:b6:15:1a:05:d8:9e:ac:9e:cf:20:1d:d4:eb: 6e:9b:cd:0d:6a:7f:79:32:24:68:34:9f:0a:3a:cd: 58:ec:72:01:42:47:a7:9f:8a:a8:ce:32:59:6e:8f: 27:cd:41:d8:e6:de:65:d0:50:04:7a:da:47:50:17: 71:cb:b2:78:5b:56:6f:d7:1c:f9:7a:ec:c6:a5:f4: 9a:b7:b8:38:64:7c:f5:c7:b6:0f:f3:e8:b9:e3:cf: 46:57:60:e9:17:b3:dc:99:69:a5:69:40:85:1c:c1: 5f:75:f2:7a:11:76:35:5d:e5:c8:07:28:b1:87:bb: 7b:e0:55:1d:77:48:aa:be:21:a5:59:92:61:85:39: a9:6a:54:92:9f:a3:06:98:83:e6:17:80:52:2b:6c: 17:e3:da:fd:4c:1f:04:8c:32:b8:c2:ba:fd:3d:e8: b3:69:e4:8e:2b:93:8c:55:95:4d:b3:f8:a5:03:f0: b7:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:FD:B6:F0:3A:DA:7A:6C:94:2F:D3:3B:E3:6F:A9:C4:D0:CA:FB:7B X509v3 Authority Key Identifier: keyid:E1:8F:9E:85:74:3A:BE:CA:C0:46:2B:8F:DF:43:A7:DB:4A:62:8F:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C9A8D/32F1F4C283E911ECB873C871C4F9AE02/4Y-ehXQ6vsrARiuP30On20pij_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4Y-ehXQ6vsrARiuP30On20pij_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9A8D/32F1F4C283E911ECB873C871C4F9AE02/4Y-ehXQ6vsrARiuP30On20pij_k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 20:f0:3b:fa:08:0b:10:ea:bf:5c:5c:91:17:8d:d9:93:d9:fa: b2:2c:e3:2d:b2:8f:91:f0:e2:e1:51:40:bd:ff:aa:36:95:65: b3:84:73:d1:8f:40:f7:54:d2:64:7e:1f:65:32:79:51:83:60: 0b:8c:83:48:bc:da:ab:36:66:38:2b:a8:b8:2c:05:dd:f3:ac: 79:76:a9:d5:df:98:ce:90:fd:d0:ad:f6:ba:ff:68:d6:5a:2a: 06:34:01:9b:46:39:94:ad:a2:12:20:dc:cd:b0:bf:4e:30:b1: 7c:3f:3c:81:27:c6:68:cd:f7:27:9e:3e:b0:67:76:18:c6:f8: fc:9a:79:03:2f:29:e3:b0:bc:0b:b8:f8:bf:eb:c3:82:80:a7: a9:90:8e:d7:a3:98:4e:96:dd:16:a9:f3:2a:f4:e8:65:a0:3d: 1e:c9:9e:6c:9b:ef:78:cc:4b:3f:1f:33:79:70:cc:18:0b:36: aa:1b:45:1d:54:4d:50:fa:6d:84:83:6b:15:57:d6:18:fd:03: 58:c2:32:c2:40:2d:1a:87:68:c2:2c:eb:48:ed:62:59:90:b7: 03:29:47:9d:8c:eb:d8:64:1c:2e:24:ae:87:82:05:b0:99:06: b8:30:c0:0f:04:0e:b3:22:af:59:50:ce:09:4e:45:bf:0f:ad: f8:73:b0:40 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBC8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzlBOEQxMTAvBgNVBAUTKEUxOEY5RTg1NzQzQUJFQ0FDMDQ2MkI4RkRGNDNBN0RC NEE2MjhGRjkwHhcNMjUxMDE5MDIxNjA5WhcNMjUxMDI2MDIxNjA5WjAYMRYwFAYD VQQDEw02OGY0NDllYS01OWQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArel2pl5m7PCKodbMUOB5MgxuchjPORBe+c8egtfI6dqguBaXLOAnAQlKk6ZP 98EvKHF1BjQzgFKroj46LGcfIUHUqRg194hq6EX5vbYVGgXYnqyezyAd1Otum80N an95MiRoNJ8KOs1Y7HIBQkenn4qozjJZbo8nzUHY5t5l0FAEetpHUBdxy7J4W1Zv 1xz5euzGpfSat7g4ZHz1x7YP8+i5489GV2DpF7PcmWmlaUCFHMFfdfJ6EXY1XeXI Byixh7t74FUdd0iqviGlWZJhhTmpalSSn6MGmIPmF4BSK2wX49r9TB8EjDK4wrr9 PeizaeSOK5OMVZVNs/ilA/C3vQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHP9tvA6 2npslC/TO+NvqcTQyvt7MB8GA1UdIwQYMBaAFOGPnoV0Or7KwEYrj99Dp9tKYo/5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOUE4RC8zMkYxRjRDMjgz RTkxMUVDQjg3M0M4NzFDNEY5QUUwMi80WS1laFhRNnZzckFSaXVQMzBPbjIwcGlq X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRZLWVoWFE2dnNyQVJpdVAzME9uMjBwaWpfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OUE4RC8zMkYxRjRDMjgzRTkxMUVDQjg3M0M4NzFDNEY5QUUwMi80WS1laFhRNnZz ckFSaXVQMzBPbjIwcGlqX2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAg8Dv6CAsQ6r9cXJEXjdmT2fqyLOMtso+R8OLhUUC9/6o2lWWzhHPR j0D3VNJkfh9lMnlRg2ALjINIvNqrNmY4K6i4LAXd86x5dqnV35jOkP3Qrfa6/2jW WioGNAGbRjmUraISINzNsL9OMLF8PzyBJ8Zozfcnnj6wZ3YYxvj8mnkDLynjsLwL uPi/68OCgKepkI7Xo5hOlt0WqfMq9OhloD0eyZ5sm+94zEs/HzN5cMwYCzaqG0Ud VE1Q+m2Eg2sVV9YY/QNYwjLCQC0ah2jCLOtI7WJZkLcDKUedjOvYZBwuJK6HggWw mQa4MMAPBA6zIq9ZUM4JTkW/D634c7BA -----END CERTIFICATE-----Generated at Mon Oct 20 15:56:27 2025 by rpki-client