$ rpki-client -vvf rpki.apnic.net/member_repository/A91E0CA1/7063E424523F11EA8C9CF016C4F9AE02/4dlaPL3ZICmuvh4TCAmeYknNNiQ.mft File: 4dlaPL3ZICmuvh4TCAmeYknNNiQ.mft (raw, json) Hash identifier: 1Lbm8Qvld844TYwhoVnY3lY/Ryf6+zrCR/WnbGl2Ipw= Subject key identifier: AE:4A:0C:2B:10:90:7A:8D:00:B1:50:99:F3:CB:A9:5B:C8:20:2E:52 Authority key identifier: E1:D9:5A:3C:BD:D9:20:29:AE:BE:1E:13:08:09:9E:62:49:CD:36:24 Certificate issuer: /CN=A91E0CA1/serialNumber=E1D95A3CBDD92029AEBE1E1308099E6249CD3624 Certificate serial: 0B05 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4dlaPL3ZICmuvh4TCAmeYknNNiQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E0CA1/7063E424523F11EA8C9CF016C4F9AE02/4dlaPL3ZICmuvh4TCAmeYknNNiQ.mft Manifest number: 0AFE Signing time: Sat 18 Oct 2025 20:16:52 +0000 Manifest this update: Sat 18 Oct 2025 20:16:51 +0000 Manifest next update: Sat 25 Oct 2025 20:16:51 +0000 Files and hashes: 1: 4dlaPL3ZICmuvh4TCAmeYknNNiQ.crl (hash: GNseuRoLNSM8hTAf2Q9m1J7ZSwcHjD2TkaS9zbUxLD0=) 2: 29B9D5B8524111EABEF0A119C4F9AE02.roa (hash: XgnhviRQUKAkeu4itRmlPhHlV4kxqNIZcBKK2pdxl3k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E0CA1/7063E424523F11EA8C9CF016C4F9AE02/4dlaPL3ZICmuvh4TCAmeYknNNiQ.crl rsync://rpki.apnic.net/member_repository/A91E0CA1/7063E424523F11EA8C9CF016C4F9AE02/4dlaPL3ZICmuvh4TCAmeYknNNiQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4dlaPL3ZICmuvh4TCAmeYknNNiQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 20:16:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2821 (0xb05) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E0CA1, serialNumber=E1D95A3CBDD92029AEBE1E1308099E6249CD3624 Validity Not Before: Oct 18 20:16:51 2025 GMT Not After : Oct 25 20:16:51 2025 GMT Subject: CN=68f3f5b4-377f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:a1:ec:ba:a3:ba:c4:a7:51:79:78:88:e6:c0: 2b:28:aa:5f:fe:db:1c:55:9a:70:1e:55:e9:90:ba: 36:f0:a5:cc:6e:76:79:a8:80:7d:08:59:3f:bf:cb: b1:0a:81:d0:73:48:40:93:93:1f:d9:68:52:cd:5f: 3b:b1:ae:c6:98:e0:1e:50:d5:de:66:de:1d:d0:c7: 69:a8:32:a9:15:2f:f7:26:21:8a:e9:c0:01:77:c1: 16:6e:a7:58:e8:36:21:f0:f9:3c:df:d0:0b:ee:35: 9f:77:21:45:1e:0a:08:b2:85:bb:ff:3f:a9:d0:e0: 70:fd:1d:07:49:09:65:98:47:7b:ff:67:0f:da:0b: 14:a1:d3:02:41:a3:d7:3d:96:d2:64:16:b2:57:ae: 14:67:c7:a0:e9:33:f1:9f:01:90:e7:10:ba:e1:a6: 8c:37:41:be:b8:72:36:a9:49:88:6e:be:6d:a1:95: a6:5e:a0:09:90:06:27:73:15:c9:ca:bf:e1:cb:58: 8d:5e:0b:9d:af:d6:00:d4:6e:3b:d3:d8:40:c7:a7: 65:ac:48:fc:00:45:7d:b9:af:12:60:99:e7:6f:52: d7:25:13:1d:0f:c2:fd:27:79:3e:0d:52:b4:ae:2b: 69:db:1e:32:bb:60:fb:e5:32:c1:76:a0:ab:fb:5f: ed:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:4A:0C:2B:10:90:7A:8D:00:B1:50:99:F3:CB:A9:5B:C8:20:2E:52 X509v3 Authority Key Identifier: keyid:E1:D9:5A:3C:BD:D9:20:29:AE:BE:1E:13:08:09:9E:62:49:CD:36:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E0CA1/7063E424523F11EA8C9CF016C4F9AE02/4dlaPL3ZICmuvh4TCAmeYknNNiQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4dlaPL3ZICmuvh4TCAmeYknNNiQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E0CA1/7063E424523F11EA8C9CF016C4F9AE02/4dlaPL3ZICmuvh4TCAmeYknNNiQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a7:1f:c1:df:65:57:c5:c2:7f:76:92:fb:94:e5:1f:f5:e3:2b: ec:37:a2:93:8d:06:91:cc:54:3f:89:c0:b0:1c:80:ba:18:59: cf:29:7a:1f:06:00:fb:5e:7b:87:bb:78:a0:a2:ca:b4:06:ff: 2e:93:38:cb:52:29:cc:25:c6:f8:d1:f0:bc:d6:fa:ef:3b:29: e7:4c:e8:3d:3f:31:76:31:f2:e7:1a:96:f2:df:94:fb:5a:57: c7:4c:53:45:8d:4d:f5:f3:df:9e:9a:73:7d:9f:a2:ca:99:52: dd:db:e3:12:ac:6c:2a:ae:ce:1e:9a:1d:14:f5:a8:49:93:21: da:21:b0:da:f6:dd:ef:d7:b6:19:17:0b:6d:0b:f9:38:0c:49: 64:68:31:ea:dc:b1:52:5c:99:32:15:ab:93:a8:ff:1d:78:ca: 5e:55:c8:90:2c:0f:2f:2e:8b:2e:1b:eb:ea:a6:8f:fa:da:0b: f4:3a:b6:60:9b:53:22:f3:52:3a:1d:f8:43:33:e1:52:e9:6b: af:c3:19:9c:24:28:2c:c7:91:8d:91:08:b8:cd:65:63:a9:99: b9:bd:da:20:5a:61:47:6b:aa:1c:5f:70:9b:14:d6:c3:76:27: 57:d9:de:a5:ed:95:41:99:de:48:76:c6:ae:6b:c2:04:80:6c: fe:8d:eb:ed -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCwUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTBDQTExMTAvBgNVBAUTKEUxRDk1QTNDQkREOTIwMjlBRUJFMUUxMzA4MDk5RTYy NDlDRDM2MjQwHhcNMjUxMDE4MjAxNjUxWhcNMjUxMDI1MjAxNjUxWjAYMRYwFAYD VQQDEw02OGYzZjViNC0zNzdmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnKHsuqO6xKdReXiI5sArKKpf/tscVZpwHlXpkLo28KXMbnZ5qIB9CFk/v8ux CoHQc0hAk5Mf2WhSzV87sa7GmOAeUNXeZt4d0MdpqDKpFS/3JiGK6cABd8EWbqdY 6DYh8Pk839AL7jWfdyFFHgoIsoW7/z+p0OBw/R0HSQllmEd7/2cP2gsUodMCQaPX PZbSZBayV64UZ8eg6TPxnwGQ5xC64aaMN0G+uHI2qUmIbr5toZWmXqAJkAYncxXJ yr/hy1iNXgudr9YA1G4709hAx6dlrEj8AEV9ua8SYJnnb1LXJRMdD8L9J3k+DVK0 ritp2x4yu2D75TLBdqCr+1/tnwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK5KDCsQ kHqNALFQmfPLqVvIIC5SMB8GA1UdIwQYMBaAFOHZWjy92SAprr4eEwgJnmJJzTYk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMENBMS83MDYzRTQyNDUy M0YxMUVBOEM5Q0YwMTZDNEY5QUUwMi80ZGxhUEwzWklDbXV2aDRUQ0FtZVlrbk5O aVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRkbGFQTDNaSUNtdXZoNFRDQW1lWWtuTk5pUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MENBMS83MDYzRTQyNDUyM0YxMUVBOEM5Q0YwMTZDNEY5QUUwMi80ZGxhUEwzWklD bXV2aDRUQ0FtZVlrbk5OaVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCnH8HfZVfFwn92kvuU5R/14yvsN6KTjQaRzFQ/icCwHIC6GFnPKXof BgD7XnuHu3igosq0Bv8ukzjLUinMJcb40fC81vrvOynnTOg9PzF2MfLnGpby35T7 WlfHTFNFjU3189+emnN9n6LKmVLd2+MSrGwqrs4emh0U9ahJkyHaIbDa9t3v17YZ FwttC/k4DElkaDHq3LFSXJkyFauTqP8deMpeVciQLA8vLosuG+vqpo/62gv0OrZg m1Mi81I6HfhDM+FS6WuvwxmcJCgsx5GNkQi4zWVjqZm5vdogWmFHa6ocX3CbFNbD didX2d6l7ZVBmd5Idsaua8IEgGz+jevt -----END CERTIFICATE-----Generated at Sun Oct 19 23:32:54 2025 by rpki-client