$ rpki-client -vvf rpki.apnic.net/member_repository/A91E1604/120C2C743CEB11EF94E24F59C4F9AE02/4vF3N7hMH2eGnAOkf4xBn9QgAWw.mft File: 4vF3N7hMH2eGnAOkf4xBn9QgAWw.mft (raw, json) Hash identifier: P+rrmroMnEzBucS+2IjWKfaneT6uEDx9xB2iLo1By8Q= Subject key identifier: 89:F2:2C:A3:6F:B5:F5:07:37:D5:D5:49:CF:44:A0:87:85:B9:D8:B0 Authority key identifier: E2:F1:77:37:B8:4C:1F:67:86:9C:03:A4:7F:8C:41:9F:D4:20:01:6C Certificate issuer: /CN=A91E1604/serialNumber=E2F17737B84C1F67869C03A47F8C419FD420016C Certificate serial: F4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4vF3N7hMH2eGnAOkf4xBn9QgAWw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E1604/120C2C743CEB11EF94E24F59C4F9AE02/4vF3N7hMH2eGnAOkf4xBn9QgAWw.mft Manifest number: F2 Signing time: Sun 19 Oct 2025 08:13:43 +0000 Manifest this update: Sun 19 Oct 2025 08:13:42 +0000 Manifest next update: Sun 26 Oct 2025 08:13:42 +0000 Files and hashes: 1: 4vF3N7hMH2eGnAOkf4xBn9QgAWw.crl (hash: N99XoMp7iJz3rJb9OgootViHO7v9GRwWuTNiCk8vlrI=) 2: 0B725F44496D11EF9F7F2116C4F9AE02.roa (hash: SsTEks9DzvfjnZoXdnmZIWjNSHqbFmVLR2wVP5eTyr8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E1604/120C2C743CEB11EF94E24F59C4F9AE02/4vF3N7hMH2eGnAOkf4xBn9QgAWw.crl rsync://rpki.apnic.net/member_repository/A91E1604/120C2C743CEB11EF94E24F59C4F9AE02/4vF3N7hMH2eGnAOkf4xBn9QgAWw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4vF3N7hMH2eGnAOkf4xBn9QgAWw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 08:13:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 244 (0xf4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E1604, serialNumber=E2F17737B84C1F67869C03A47F8C419FD420016C Validity Not Before: Oct 19 08:13:42 2025 GMT Not After : Oct 26 08:13:42 2025 GMT Subject: CN=68f49db6-3fef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:07:92:a6:03:88:64:6f:a1:e4:8d:00:f9:e1: 50:c1:5a:a5:f8:0a:4f:65:9a:93:34:8a:17:80:63: 50:c2:16:5d:23:4c:3c:ef:c3:e8:84:3c:c9:f7:24: d2:ab:67:5d:0f:40:90:69:f8:9f:49:bc:ef:3a:f3: 22:5d:03:08:ae:bf:37:a1:13:58:a5:ad:0b:29:05: 64:fa:42:4a:64:ce:4b:3d:2e:8c:d8:e2:7d:a3:25: ce:d4:8e:a9:03:8a:00:bf:2e:44:1e:ea:7e:24:d9: 10:97:f5:c6:d8:01:51:4a:b2:8a:46:a7:f3:05:7e: 7f:8c:1d:33:f6:79:f9:2d:de:d3:4d:56:91:91:c3: 55:d8:13:41:1f:51:fc:26:5f:23:6d:0a:d1:4c:65: 60:b8:4b:a0:29:fd:63:53:b5:21:f3:78:72:d1:ca: 7c:99:1a:e6:9c:41:3d:36:ba:14:ff:55:c0:1f:7d: 40:26:0e:27:0a:f6:08:b8:a2:37:8f:8a:13:da:9f: 60:18:24:4b:fa:bb:06:cb:bd:9b:38:d0:b1:eb:7d: db:7c:87:41:b3:41:08:ec:5d:73:34:da:17:fd:5c: 54:2e:86:bd:e5:64:f1:21:bb:8b:88:c4:ba:e2:95: 19:81:1f:bc:23:21:5c:1c:ef:12:6c:e9:53:62:8a: 8d:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:F2:2C:A3:6F:B5:F5:07:37:D5:D5:49:CF:44:A0:87:85:B9:D8:B0 X509v3 Authority Key Identifier: keyid:E2:F1:77:37:B8:4C:1F:67:86:9C:03:A4:7F:8C:41:9F:D4:20:01:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E1604/120C2C743CEB11EF94E24F59C4F9AE02/4vF3N7hMH2eGnAOkf4xBn9QgAWw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4vF3N7hMH2eGnAOkf4xBn9QgAWw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E1604/120C2C743CEB11EF94E24F59C4F9AE02/4vF3N7hMH2eGnAOkf4xBn9QgAWw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:78:68:a8:9d:b3:44:9c:7e:b7:75:8b:f8:a4:59:7b:e8:64: f3:cd:21:35:83:df:f9:2d:f7:f6:87:fa:a8:e8:23:6e:67:eb: 8d:b1:64:45:05:10:e1:da:fe:8d:fd:fb:85:bb:5c:6e:09:c0: 04:c8:48:9e:4e:6c:0a:e2:f3:f3:bc:c9:59:d3:b4:c9:82:77: 07:81:3a:f2:7c:a5:88:6e:26:19:f1:5f:69:17:03:a6:d0:df: f9:93:57:60:5a:dd:2a:7a:9b:4e:36:23:9f:c2:96:63:eb:4e: 34:e0:82:36:2b:07:7f:75:11:32:4c:cb:c1:99:03:ba:01:d9: 5f:e4:a5:6f:94:b9:ca:98:18:66:47:67:57:a7:39:ee:a6:cd: 55:e3:6c:54:ff:a1:30:7b:9c:ba:88:8a:d0:1c:99:ce:be:6c: fc:20:1e:4e:de:93:55:a5:74:49:11:57:e7:de:99:9f:a2:7d: a1:a4:f4:34:44:bb:00:a3:28:3f:70:d0:de:96:64:ef:7b:8d: 44:76:02:28:57:4b:b5:65:34:60:86:53:e7:bf:62:6e:97:b4: fc:72:4f:08:aa:79:dc:a1:a9:74:c1:8b:3a:2e:e4:ab:19:dd: 6f:03:67:31:d8:78:9e:42:e4:ab:da:13:d5:7c:ec:51:fc:b8: c6:4b:f4:44 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTE2MDQxMTAvBgNVBAUTKEUyRjE3NzM3Qjg0QzFGNjc4NjlDMDNBNDdGOEM0MTlG RDQyMDAxNkMwHhcNMjUxMDE5MDgxMzQyWhcNMjUxMDI2MDgxMzQyWjAYMRYwFAYD VQQDEw02OGY0OWRiNi0zZmVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyAeSpgOIZG+h5I0A+eFQwVql+ApPZZqTNIoXgGNQwhZdI0w878PohDzJ9yTS q2ddD0CQafifSbzvOvMiXQMIrr83oRNYpa0LKQVk+kJKZM5LPS6M2OJ9oyXO1I6p A4oAvy5EHup+JNkQl/XG2AFRSrKKRqfzBX5/jB0z9nn5Ld7TTVaRkcNV2BNBH1H8 Jl8jbQrRTGVguEugKf1jU7Uh83hy0cp8mRrmnEE9NroU/1XAH31AJg4nCvYIuKI3 j4oT2p9gGCRL+rsGy72bONCx633bfIdBs0EI7F1zNNoX/VxULoa95WTxIbuLiMS6 4pUZgR+8IyFcHO8SbOlTYoqNTQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFInyLKNv tfUHN9XVSc9EoIeFudiwMB8GA1UdIwQYMBaAFOLxdze4TB9nhpwDpH+MQZ/UIAFs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMTYwNC8xMjBDMkM3NDND RUIxMUVGOTRFMjRGNTlDNEY5QUUwMi80dkYzTjdoTUgyZUduQU9rZjR4Qm45UWdB V3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzR2RjNON2hNSDJlR25BT2tmNHhCbjlRZ0FXdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MTYwNC8xMjBDMkM3NDNDRUIxMUVGOTRFMjRGNTlDNEY5QUUwMi80dkYzTjdoTUgy ZUduQU9rZjR4Qm45UWdBV3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAaeGionbNEnH63dYv4pFl76GTzzSE1g9/5Lff2h/qo6CNuZ+uNsWRF BRDh2v6N/fuFu1xuCcAEyEieTmwK4vPzvMlZ07TJgncHgTryfKWIbiYZ8V9pFwOm 0N/5k1dgWt0qeptONiOfwpZj60404II2Kwd/dREyTMvBmQO6Adlf5KVvlLnKmBhm R2dXpznups1V42xU/6Ewe5y6iIrQHJnOvmz8IB5O3pNVpXRJEVfn3pmfon2hpPQ0 RLsAoyg/cNDelmTve41EdgIoV0u1ZTRghlPnv2Jul7T8ck8Iqnncoal0wYs6LuSr Gd1vA2cx2HieQuSr2hPVfOxR/LjGS/RE -----END CERTIFICATE-----Generated at Mon Oct 20 16:24:58 2025 by rpki-client