$ rpki-client -vvf rpki.apnic.net/member_repository/A91CC561/86C30482E73411E99D8EAF47C4F9AE02/4idah1qSyusBBPicRvSlhbet9bY.mft File: 4idah1qSyusBBPicRvSlhbet9bY.mft (raw, json) Hash identifier: WGJ13/ZgRm9SeIKxlLaZ65wzQpsBssEGpEOlYd9fZiM= Subject key identifier: D6:F0:3F:FC:C4:19:A4:40:15:BB:41:99:4B:57:A8:2C:11:14:9D:70 Authority key identifier: E2:27:5A:87:5A:92:CA:EB:01:04:F8:9C:46:F4:A5:85:B7:AD:F5:B6 Certificate issuer: /CN=A91CC561/serialNumber=E2275A875A92CAEB0104F89C46F4A585B7ADF5B6 Certificate serial: 0D37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4idah1qSyusBBPicRvSlhbet9bY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CC561/86C30482E73411E99D8EAF47C4F9AE02/4idah1qSyusBBPicRvSlhbet9bY.mft Manifest number: 0D2B Signing time: Sat 18 Oct 2025 18:44:17 +0000 Manifest this update: Sat 18 Oct 2025 18:44:17 +0000 Manifest next update: Sat 25 Oct 2025 18:44:17 +0000 Files and hashes: 1: 4idah1qSyusBBPicRvSlhbet9bY.crl (hash: SFVPkBKy/GxnkjZjn8XHyGoLV2l0QUuURPe1zBz1MAA=) 2: 5A395E26E2DB11EB8608EA87C4F9AE02.roa (hash: qxCxFSPkCJMsK7i3RHMxc9Lr9Tcp57aZA1WThFY3ZFw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CC561/86C30482E73411E99D8EAF47C4F9AE02/4idah1qSyusBBPicRvSlhbet9bY.crl rsync://rpki.apnic.net/member_repository/A91CC561/86C30482E73411E99D8EAF47C4F9AE02/4idah1qSyusBBPicRvSlhbet9bY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4idah1qSyusBBPicRvSlhbet9bY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 18:44:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3383 (0xd37) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CC561, serialNumber=E2275A875A92CAEB0104F89C46F4A585B7ADF5B6 Validity Not Before: Oct 18 18:44:17 2025 GMT Not After : Oct 25 18:44:17 2025 GMT Subject: CN=68f3e001-64f8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:ba:06:74:7d:38:55:31:be:cd:98:d5:ab:aa: 4b:34:43:7d:2c:6d:8d:39:f0:d6:ea:46:c7:1f:9c: 34:b9:55:3a:e3:e9:7c:9b:69:c4:2c:08:6b:f4:6e: 87:c6:93:13:24:77:b5:c7:3d:35:41:2d:01:ae:26: d5:ff:a9:80:9a:cc:94:3c:ee:7c:bb:4f:a8:55:76: c7:9b:90:fa:cd:32:24:82:fa:46:41:70:35:8c:4c: 21:3d:f1:03:29:5f:e6:37:78:95:3e:96:e6:ca:6b: fa:44:3b:1e:84:7b:0b:fc:13:05:88:5d:1f:2c:8c: 8d:ad:fe:57:c9:10:46:8d:33:b0:ce:79:3c:99:52: 94:b0:f0:4c:a5:53:a0:05:82:92:6f:3a:3e:c1:bc: 81:66:78:cb:4f:e5:e0:16:b7:3e:cf:68:66:78:cf: dd:7d:78:30:42:3c:a7:23:73:60:f4:64:87:11:08: a5:2d:eb:b9:75:84:51:b8:5b:e4:14:63:00:1f:3a: 9a:43:7e:1b:c7:fb:83:9e:6d:fb:ce:58:18:45:b0: ef:31:f9:eb:a3:26:64:80:00:63:78:d3:03:80:23: 37:67:f9:29:01:fc:60:94:f0:4e:bc:af:10:bb:cc: 9b:84:a9:6d:82:df:2a:2d:95:a3:16:1e:70:14:f7: d8:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:F0:3F:FC:C4:19:A4:40:15:BB:41:99:4B:57:A8:2C:11:14:9D:70 X509v3 Authority Key Identifier: keyid:E2:27:5A:87:5A:92:CA:EB:01:04:F8:9C:46:F4:A5:85:B7:AD:F5:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CC561/86C30482E73411E99D8EAF47C4F9AE02/4idah1qSyusBBPicRvSlhbet9bY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4idah1qSyusBBPicRvSlhbet9bY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CC561/86C30482E73411E99D8EAF47C4F9AE02/4idah1qSyusBBPicRvSlhbet9bY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5b:21:f3:e5:82:c6:20:c7:b0:ff:90:f7:c9:06:18:84:06:9d: 49:12:1c:fa:86:06:71:8d:4a:20:df:89:37:92:d3:4e:be:73: c8:0a:c3:34:a8:4c:03:8e:93:cb:2e:97:70:fa:52:7f:0f:ed: fa:a1:78:88:88:d1:88:53:9a:14:da:a1:c6:93:8f:ba:86:d0: 5f:f4:de:a0:b8:6a:b6:26:f4:d7:90:ec:a7:55:26:bb:40:cc: 5c:ed:d4:96:29:f4:87:4a:91:6b:6e:ab:30:56:91:27:2b:c3: 7e:9a:fa:b8:8c:01:8b:39:33:31:b6:b6:1b:c8:1d:17:6a:92: 56:e4:08:1b:2e:78:28:fb:e4:12:29:1c:b1:4f:6e:b1:c5:f3: 01:b1:48:6e:e5:05:77:cf:d1:09:1a:d8:a2:19:72:3c:10:45: cd:cf:d1:21:ce:f1:26:33:db:13:fd:f7:eb:20:84:65:cd:2f: 54:37:65:f9:9b:29:22:b9:5b:a3:5e:bf:66:14:1c:4c:a6:36: 58:76:b0:8e:36:9a:1d:85:42:f0:40:13:ef:b0:2f:17:27:ab: 35:e5:d6:9f:68:55:d8:5c:b4:22:9c:a4:99:c3:9c:63:6e:04: 18:e1:53:cd:26:63:45:c5:02:14:72:f4:45:a1:1c:1c:7c:81: ea:fd:3e:e9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDTcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0M1NjExMTAvBgNVBAUTKEUyMjc1QTg3NUE5MkNBRUIwMTA0Rjg5QzQ2RjRBNTg1 QjdBREY1QjYwHhcNMjUxMDE4MTg0NDE3WhcNMjUxMDI1MTg0NDE3WjAYMRYwFAYD VQQDEw02OGYzZTAwMS02NGY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA57oGdH04VTG+zZjVq6pLNEN9LG2NOfDW6kbHH5w0uVU64+l8m2nELAhr9G6H xpMTJHe1xz01QS0BribV/6mAmsyUPO58u0+oVXbHm5D6zTIkgvpGQXA1jEwhPfED KV/mN3iVPpbmymv6RDsehHsL/BMFiF0fLIyNrf5XyRBGjTOwznk8mVKUsPBMpVOg BYKSbzo+wbyBZnjLT+XgFrc+z2hmeM/dfXgwQjynI3Ng9GSHEQilLeu5dYRRuFvk FGMAHzqaQ34bx/uDnm37zlgYRbDvMfnroyZkgABjeNMDgCM3Z/kpAfxglPBOvK8Q u8ybhKltgt8qLZWjFh5wFPfYawIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNbwP/zE GaRAFbtBmUtXqCwRFJ1wMB8GA1UdIwQYMBaAFOInWodaksrrAQT4nEb0pYW3rfW2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQzU2MS84NkMzMDQ4MkU3 MzQxMUU5OUQ4RUFGNDdDNEY5QUUwMi80aWRhaDFxU3l1c0JCUGljUnZTbGhiZXQ5 YlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRpZGFoMXFTeXVzQkJQaWNSdlNsaGJldDliWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QzU2MS84NkMzMDQ4MkU3MzQxMUU5OUQ4RUFGNDdDNEY5QUUwMi80aWRhaDFxU3l1 c0JCUGljUnZTbGhiZXQ5YlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBbIfPlgsYgx7D/kPfJBhiEBp1JEhz6hgZxjUog34k3ktNOvnPICsM0 qEwDjpPLLpdw+lJ/D+36oXiIiNGIU5oU2qHGk4+6htBf9N6guGq2JvTXkOynVSa7 QMxc7dSWKfSHSpFrbqswVpEnK8N+mvq4jAGLOTMxtrYbyB0XapJW5AgbLngo++QS KRyxT26xxfMBsUhu5QV3z9EJGtiiGXI8EEXNz9EhzvEmM9sT/ffrIIRlzS9UN2X5 mykiuVujXr9mFBxMpjZYdrCONpodhULwQBPvsC8XJ6s15dafaFXYXLQinKSZw5xj bgQY4VPNJmNFxQIUcvRFoRwcfIHq/T7p -----END CERTIFICATE-----Generated at Mon Oct 20 19:47:50 2025 by rpki-client