$ rpki-client -vvf rpki.apnic.net/member_repository/A91DBB66/0C0D80DE2FAC11F08CEA0A71C4F9AE02/4Y0K0YMT4gIg3qG4cW37310JzPg.mft File: 4Y0K0YMT4gIg3qG4cW37310JzPg.mft (raw, json) Hash identifier: ZEHaLfPDlN63TcoSUWtjiRa6mBATWH54EZXIc4mmUgU= Subject key identifier: B4:FF:32:03:24:66:96:E9:A9:CF:B2:8B:72:E5:D3:6D:DF:E6:F2:C2 Authority key identifier: E1:8D:0A:D1:83:13:E2:02:20:DE:A1:B8:71:6D:FB:DF:5D:09:CC:F8 Certificate issuer: /CN=A91DBB66/serialNumber=E18D0AD18313E20220DEA1B8716DFBDF5D09CCF8 Certificate serial: 56 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4Y0K0YMT4gIg3qG4cW37310JzPg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DBB66/0C0D80DE2FAC11F08CEA0A71C4F9AE02/4Y0K0YMT4gIg3qG4cW37310JzPg.mft Manifest number: 54 Signing time: Sun 19 Oct 2025 10:37:35 +0000 Manifest this update: Sun 19 Oct 2025 10:37:34 +0000 Manifest next update: Sun 26 Oct 2025 10:37:34 +0000 Files and hashes: 1: 4Y0K0YMT4gIg3qG4cW37310JzPg.crl (hash: V2m7i4QblrvqKwMoOO4GanLP76ScX4eKiEBOOuR/WDs=) 2: 099A56FE2FB311F09E3A9373C4F9AE02.roa (hash: c58CHJdQfloT8cjooayoSNCaLkxE9yxaVBgoB9VE0Hs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DBB66/0C0D80DE2FAC11F08CEA0A71C4F9AE02/4Y0K0YMT4gIg3qG4cW37310JzPg.crl rsync://rpki.apnic.net/member_repository/A91DBB66/0C0D80DE2FAC11F08CEA0A71C4F9AE02/4Y0K0YMT4gIg3qG4cW37310JzPg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4Y0K0YMT4gIg3qG4cW37310JzPg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 10:37:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 86 (0x56) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DBB66, serialNumber=E18D0AD18313E20220DEA1B8716DFBDF5D09CCF8 Validity Not Before: Oct 19 10:37:34 2025 GMT Not After : Oct 26 10:37:34 2025 GMT Subject: CN=68f4bf6f-3a00 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:b7:d3:0b:e9:e4:2d:02:25:f2:b8:32:a7:d4: 05:74:64:22:5b:30:c6:83:d8:fa:20:63:00:cc:3d: c0:42:a0:fa:16:60:71:22:2e:1d:d9:9c:ce:4c:eb: 1c:ee:65:14:8a:66:f0:fe:01:23:b8:ec:67:ca:ba: f0:7f:ec:3e:4d:f8:e0:44:ad:ec:37:ec:fb:0c:b4: ae:fa:44:4a:dc:a3:66:6b:94:c4:c6:32:50:f6:de: 19:8f:f9:1c:71:b6:27:93:3e:f7:3c:cd:ad:d3:be: fd:98:cd:c1:a4:e7:27:94:1c:a0:77:09:8d:4a:3e: 58:59:b7:9e:2a:97:06:5e:f5:fd:16:33:42:bf:91: df:f1:d5:c1:4a:43:7f:fa:4d:35:4f:e4:71:97:be: d7:c6:06:f4:f3:02:4d:89:db:76:a7:56:56:cd:93: 04:71:a6:fc:35:b9:74:8c:b1:6c:87:bd:ee:cf:ce: dc:40:27:56:13:01:44:25:9e:70:40:d0:ad:d7:7d: 00:85:22:48:57:95:2a:c9:00:e4:80:15:2b:66:70: ed:4f:02:f5:44:61:8a:26:ff:9b:d0:41:19:41:d5: ca:47:ad:b7:b2:37:18:e3:7b:d5:bd:01:05:c6:ff: b6:7e:b3:4d:ad:bb:eb:85:ff:c9:e1:72:5c:f3:14: 8f:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:FF:32:03:24:66:96:E9:A9:CF:B2:8B:72:E5:D3:6D:DF:E6:F2:C2 X509v3 Authority Key Identifier: keyid:E1:8D:0A:D1:83:13:E2:02:20:DE:A1:B8:71:6D:FB:DF:5D:09:CC:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DBB66/0C0D80DE2FAC11F08CEA0A71C4F9AE02/4Y0K0YMT4gIg3qG4cW37310JzPg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4Y0K0YMT4gIg3qG4cW37310JzPg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DBB66/0C0D80DE2FAC11F08CEA0A71C4F9AE02/4Y0K0YMT4gIg3qG4cW37310JzPg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 01:26:24:5e:b9:b3:34:06:f5:71:3d:e1:e8:4b:3d:e7:1f:3c: 54:d3:65:14:d1:ba:66:f7:41:5d:fb:f8:ea:4f:8f:8e:42:8e: 5f:25:e3:3c:b2:34:bb:9b:26:42:1f:01:e9:fe:64:66:11:ec: ae:c8:01:8e:d9:1d:9e:0b:d5:9e:a8:df:c4:68:11:5b:f6:17: e6:70:a8:0b:be:fb:f0:3d:e2:43:62:57:b1:1e:1e:4d:8c:ba: 52:e1:3d:38:a1:6a:9c:46:4a:f8:17:73:2c:6d:aa:da:c7:95: c7:70:da:d2:ca:9e:f9:5f:e2:16:77:ba:1f:54:d6:50:85:4c: a2:e8:1d:d8:4b:c5:ce:78:6d:53:f4:50:a0:5f:a4:a0:51:f7: b1:da:83:67:4e:11:6e:05:50:c9:cd:6a:8d:7b:56:bb:c6:90: 43:64:76:ad:b8:b5:bf:04:1d:52:19:47:2b:9b:46:63:7d:fa: 61:a7:1a:70:23:14:e1:97:c7:3e:37:4a:c8:5f:d3:b0:c9:f0: 40:db:b3:bc:09:f9:fe:52:d9:47:aa:de:63:c5:ed:ad:c6:1e: aa:f0:03:6e:cf:1e:27:37:4e:21:0d:de:49:61:68:2c:38:ca: ea:47:f1:64:dd:58:a4:ea:60:ac:4b:5d:7e:a0:5b:e9:42:db: 88:33:f1:0d -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBVjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE QkI2NjExMC8GA1UEBRMoRTE4RDBBRDE4MzEzRTIwMjIwREVBMUI4NzE2REZCREY1 RDA5Q0NGODAeFw0yNTEwMTkxMDM3MzRaFw0yNTEwMjYxMDM3MzRaMBgxFjAUBgNV BAMTDTY4ZjRiZjZmLTNhMDAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDpt9ML6eQtAiXyuDKn1AV0ZCJbMMaD2PogYwDMPcBCoPoWYHEiLh3ZnM5M6xzu ZRSKZvD+ASO47GfKuvB/7D5N+OBErew37PsMtK76RErco2ZrlMTGMlD23hmP+Rxx tieTPvc8za3Tvv2YzcGk5yeUHKB3CY1KPlhZt54qlwZe9f0WM0K/kd/x1cFKQ3/6 TTVP5HGXvtfGBvTzAk2J23anVlbNkwRxpvw1uXSMsWyHve7PztxAJ1YTAUQlnnBA 0K3XfQCFIkhXlSrJAOSAFStmcO1PAvVEYYom/5vQQRlB1cpHrbeyNxjje9W9AQXG /7Z+s02tu+uF/8nhclzzFI9rAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUtP8yAyRm lumpz7KLcuXTbd/m8sIwHwYDVR0jBBgwFoAU4Y0K0YMT4gIg3qG4cW37310JzPgw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURCQjY2LzBDMEQ4MERFMkZB QzExRjA4Q0VBMEE3MUM0RjlBRTAyLzRZMEswWU1UNGdJZzNxRzRjVzM3MzEwSnpQ Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvNFkwSzBZTVQ0Z0lnM3FHNGNXMzczMTBKelBnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURC QjY2LzBDMEQ4MERFMkZBQzExRjA4Q0VBMEE3MUM0RjlBRTAyLzRZMEswWU1UNGdJ ZzNxRzRjVzM3MzEwSnpQZy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAAEmJF65szQG9XE94ehLPecfPFTTZRTRumb3QV37+OpPj45Cjl8l4zyy NLubJkIfAen+ZGYR7K7IAY7ZHZ4L1Z6o38RoEVv2F+ZwqAu++/A94kNiV7EeHk2M ulLhPTihapxGSvgXcyxtqtrHlcdw2tLKnvlf4hZ3uh9U1lCFTKLoHdhLxc54bVP0 UKBfpKBR97Hag2dOEW4FUMnNao17VrvGkENkdq24tb8EHVIZRyubRmN9+mGnGnAj FOGXxz43Sshf07DJ8EDbs7wJ+f5S2Ueq3mPF7a3GHqrwA27PHic3TiEN3klhaCw4 yupH8WTdWKTqYKxLXX6gW+lC24gz8Q0= -----END CERTIFICATE-----Generated at Tue Oct 21 00:59:37 2025 by rpki-client