$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF076/A408F582B90411E9B1D50B41C4F9AE02/R4pL3QESHRxrMz7MPiW6Gohxmao.mft File: R4pL3QESHRxrMz7MPiW6Gohxmao.mft (raw, json) Hash identifier: QsNUAFJratBmWsIFuBB++F0P9C20XIYPWpveTkqHumg= Subject key identifier: AC:AB:F4:91:66:3E:F4:9F:35:69:33:25:D2:A6:B2:A9:CE:A1:78:C3 Authority key identifier: 47:8A:4B:DD:01:12:1D:1C:6B:33:3E:CC:3E:25:BA:1A:88:71:99:AA Certificate issuer: /CN=A91DF076/serialNumber=478A4BDD01121D1C6B333ECC3E25BA1A887199AA Certificate serial: 0E1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R4pL3QESHRxrMz7MPiW6Gohxmao.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DF076/A408F582B90411E9B1D50B41C4F9AE02/R4pL3QESHRxrMz7MPiW6Gohxmao.mft Manifest number: 0E13 Signing time: Sat 18 Oct 2025 18:30:00 +0000 Manifest this update: Sat 18 Oct 2025 18:29:59 +0000 Manifest next update: Sat 25 Oct 2025 18:29:59 +0000 Files and hashes: 1: R4pL3QESHRxrMz7MPiW6Gohxmao.crl (hash: Ojn8ZX5E3qQQAVn9RMHi4hkOyy+t4/8+jtoqoJLbfKw=) 2: 7043D43679BB11ECB6D72266C4F9AE02.roa (hash: iU2Hi3gnDAAGhDttleotVYNL88jidVA94xxut38qdqc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DF076/A408F582B90411E9B1D50B41C4F9AE02/R4pL3QESHRxrMz7MPiW6Gohxmao.crl rsync://rpki.apnic.net/member_repository/A91DF076/A408F582B90411E9B1D50B41C4F9AE02/R4pL3QESHRxrMz7MPiW6Gohxmao.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R4pL3QESHRxrMz7MPiW6Gohxmao.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 18:29:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3613 (0xe1d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DF076, serialNumber=478A4BDD01121D1C6B333ECC3E25BA1A887199AA Validity Not Before: Oct 18 18:29:59 2025 GMT Not After : Oct 25 18:29:59 2025 GMT Subject: CN=68f3dca8-9ffa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:9b:73:c8:4f:f6:20:13:59:c8:21:81:bb:5d: 23:00:67:55:40:e1:c1:ed:e3:49:97:14:32:c2:f7: 2b:ac:b0:8f:79:15:6f:17:8e:f2:ca:c2:bf:f3:a0: 6c:3c:b1:44:19:a5:1f:3d:ed:3e:81:b3:6e:2d:cc: 75:14:d2:8a:f0:06:b5:c1:72:43:03:96:ed:9f:66: d7:66:8e:09:52:b4:c2:c6:1e:f5:a8:72:51:0f:ae: b9:c4:ee:bc:2a:05:03:29:02:4c:cb:56:61:00:78: 61:9d:86:68:ce:0f:01:b0:e9:45:61:ed:a9:6a:c2: a6:da:ed:2a:0f:35:1d:79:03:1b:36:84:3c:e4:a1: 63:fb:57:47:15:5d:ab:fb:a3:92:41:82:0b:f5:72: 59:f8:9d:4c:bb:74:46:e7:83:a6:9d:f5:4a:0d:a8: 2a:91:b5:fc:c6:7a:7d:a8:48:7a:b3:dd:d7:43:2f: d4:51:02:3d:35:fe:58:fd:5d:b0:a3:44:8e:cc:96: e6:85:56:99:b9:29:ca:9e:3c:4e:c7:55:a1:18:8a: c4:39:29:a8:f8:74:81:b4:1a:78:d8:b5:85:6f:e1: 97:d7:ff:8f:a7:89:ca:21:38:8b:d4:04:3d:6c:d4: 94:a8:60:d5:a6:26:c7:70:87:7b:59:9c:1b:a5:e4: 61:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:AB:F4:91:66:3E:F4:9F:35:69:33:25:D2:A6:B2:A9:CE:A1:78:C3 X509v3 Authority Key Identifier: keyid:47:8A:4B:DD:01:12:1D:1C:6B:33:3E:CC:3E:25:BA:1A:88:71:99:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DF076/A408F582B90411E9B1D50B41C4F9AE02/R4pL3QESHRxrMz7MPiW6Gohxmao.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R4pL3QESHRxrMz7MPiW6Gohxmao.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF076/A408F582B90411E9B1D50B41C4F9AE02/R4pL3QESHRxrMz7MPiW6Gohxmao.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 65:45:25:51:9e:57:7c:62:bd:8b:d4:24:14:31:16:93:9a:06: 2d:17:54:e8:7b:c2:32:a9:a3:a4:c2:1a:52:16:f4:c3:be:39: c3:94:e5:df:70:e1:4b:4b:2a:c3:ed:34:4d:85:50:dc:e1:b1: 13:a0:69:1e:be:b8:cc:9b:dc:68:2f:d2:89:02:e6:61:5e:d4: b0:84:09:df:1b:09:1b:5b:81:4c:7d:97:1d:5e:8b:eb:ea:d5: a9:3b:9e:fe:65:42:b3:c8:03:b5:1e:5f:a4:f4:16:de:84:f8: 44:6f:79:72:24:8d:21:0d:85:3a:f1:27:d9:08:fb:60:08:75: ef:2e:18:3c:98:08:cc:40:ea:11:7e:58:bb:36:d1:f5:81:04: c7:30:01:c1:ac:3f:fa:b3:d5:ba:e7:94:18:c6:a9:3a:f4:19: 38:44:00:76:eb:a9:67:e9:8c:a3:af:e7:90:30:4a:49:d9:b1: af:0a:fe:46:1a:ea:22:98:54:bd:4b:f4:de:75:2c:be:44:b9: c7:3e:99:2c:16:a5:19:64:44:5f:b4:95:44:06:ed:96:ad:53: 82:50:47:79:9a:6e:88:35:c0:fe:5c:4a:f0:f2:e9:38:98:f0: db:5e:4d:74:12:41:d8:31:b5:4d:04:6b:c0:b4:f4:94:95:c7: f7:b1:96:37 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDh0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REYwNzYxMTAvBgNVBAUTKDQ3OEE0QkREMDExMjFEMUM2QjMzM0VDQzNFMjVCQTFB ODg3MTk5QUEwHhcNMjUxMDE4MTgyOTU5WhcNMjUxMDI1MTgyOTU5WjAYMRYwFAYD VQQDEw02OGYzZGNhOC05ZmZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuptzyE/2IBNZyCGBu10jAGdVQOHB7eNJlxQywvcrrLCPeRVvF47yysK/86Bs PLFEGaUfPe0+gbNuLcx1FNKK8Aa1wXJDA5btn2bXZo4JUrTCxh71qHJRD665xO68 KgUDKQJMy1ZhAHhhnYZozg8BsOlFYe2pasKm2u0qDzUdeQMbNoQ85KFj+1dHFV2r +6OSQYIL9XJZ+J1Mu3RG54OmnfVKDagqkbX8xnp9qEh6s93XQy/UUQI9Nf5Y/V2w o0SOzJbmhVaZuSnKnjxOx1WhGIrEOSmo+HSBtBp42LWFb+GX1/+Pp4nKITiL1AQ9 bNSUqGDVpibHcId7WZwbpeRhPQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKyr9JFm PvSfNWkzJdKmsqnOoXjDMB8GA1UdIwQYMBaAFEeKS90BEh0cazM+zD4luhqIcZmq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERjA3Ni9BNDA4RjU4MkI5 MDQxMUU5QjFENTBCNDFDNEY5QUUwMi9SNHBMM1FFU0hSeHJNejdNUGlXNkdvaHht YW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1I0cEwzUUVTSFJ4ck16N01QaVc2R29oeG1hby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RjA3Ni9BNDA4RjU4MkI5MDQxMUU5QjFENTBCNDFDNEY5QUUwMi9SNHBMM1FFU0hS eHJNejdNUGlXNkdvaHhtYW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBlRSVRnld8Yr2L1CQUMRaTmgYtF1Toe8IyqaOkwhpSFvTDvjnDlOXf cOFLSyrD7TRNhVDc4bEToGkevrjMm9xoL9KJAuZhXtSwhAnfGwkbW4FMfZcdXovr 6tWpO57+ZUKzyAO1Hl+k9BbehPhEb3lyJI0hDYU68SfZCPtgCHXvLhg8mAjMQOoR fli7NtH1gQTHMAHBrD/6s9W655QYxqk69Bk4RAB266ln6Yyjr+eQMEpJ2bGvCv5G GuoimFS9S/TedSy+RLnHPpksFqUZZERftJVEBu2WrVOCUEd5mm6INcD+XErw8uk4 mPDbXk10EkHYMbVNBGvAtPSUlcf3sZY3 -----END CERTIFICATE-----Generated at Mon Oct 20 08:50:30 2025 by rpki-client