$ rpki-client -vvf rpki.apnic.net/member_repository/A91F59A6/E4EDAC18CB1A11EA87CD5544C4F9AE02/4l_Nm3clhTlCeRpi1HXs_tfAP2Q.mft File: 4l_Nm3clhTlCeRpi1HXs_tfAP2Q.mft (raw, json) Hash identifier: yCgTwElO0W5UqhBB/cGMxJbo4LGCMKgPAn9hCmmv8GM= Subject key identifier: 91:BD:A4:62:89:5B:F4:BC:59:48:C8:00:B4:3B:6D:67:5F:10:F4:A7 Authority key identifier: E2:5F:CD:9B:77:25:85:39:42:79:1A:62:D4:75:EC:FE:D7:C0:3F:64 Certificate issuer: /CN=A91F59A6/serialNumber=E25FCD9B7725853942791A62D475ECFED7C03F64 Certificate serial: 08BE Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4l_Nm3clhTlCeRpi1HXs_tfAP2Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F59A6/E4EDAC18CB1A11EA87CD5544C4F9AE02/4l_Nm3clhTlCeRpi1HXs_tfAP2Q.mft Manifest number: 08A7 Signing time: Mon 20 Oct 2025 18:35:36 +0000 Manifest this update: Mon 20 Oct 2025 18:35:35 +0000 Manifest next update: Mon 27 Oct 2025 18:35:35 +0000 Files and hashes: 1: 4l_Nm3clhTlCeRpi1HXs_tfAP2Q.crl (hash: f3amEmTGo+Xl1B24734v9wsBFhVL9Y3EdGxrHuBHhDo=) 2: 18B1B5361CE611EBB543881CC4F9AE02.roa (hash: qnuam7WR9nNoSALeN6aIELormJYa9PcytIxvW+OP1aE=) 3: 19B0BAAE1CE611EBB543881CC4F9AE02.roa (hash: /kIJQGWq5uSGzv2Hlgx55daJuqaTWlcXb9ZHCo//sns=) 4: D385E420314711EBA579873DC4F9AE02.roa (hash: o1Hw/spcKOOb0VVRRR+YO5Yydeov4PBZjAAS3/6uAVI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F59A6/E4EDAC18CB1A11EA87CD5544C4F9AE02/4l_Nm3clhTlCeRpi1HXs_tfAP2Q.crl rsync://rpki.apnic.net/member_repository/A91F59A6/E4EDAC18CB1A11EA87CD5544C4F9AE02/4l_Nm3clhTlCeRpi1HXs_tfAP2Q.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4l_Nm3clhTlCeRpi1HXs_tfAP2Q.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Oct 2025 18:35:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2238 (0x8be) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F59A6, serialNumber=E25FCD9B7725853942791A62D475ECFED7C03F64 Validity Not Before: Oct 20 18:35:35 2025 GMT Not After : Oct 27 18:35:35 2025 GMT Subject: CN=68f680f8-b8f0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:0e:18:eb:57:7c:09:03:a9:bb:21:79:d8:47: 53:89:ad:c6:44:a8:9f:48:b1:43:2b:b2:f5:a0:bb: 75:df:20:f5:cd:e1:7a:fa:57:92:3f:e2:ca:dd:5f: 94:5a:8c:7c:04:a8:1e:27:25:a1:76:f4:a3:29:a2: 66:a4:68:4c:6e:23:17:22:e5:cc:a9:9d:77:fa:08: a2:1b:df:84:74:1f:85:f6:a1:8a:fb:e7:73:3d:a4: 1e:c3:58:91:58:6c:d8:b5:92:5e:4d:b3:f7:7a:45: f2:10:73:15:a7:cf:6f:e2:16:4f:76:f6:4e:ec:40: f4:6d:19:2b:a8:4c:17:05:5d:6a:c4:f8:14:e8:48: 90:06:86:61:ff:67:15:1a:7e:34:b8:da:c4:e3:22: 5e:2a:f9:bd:1a:a0:7e:fa:aa:54:f1:97:f7:72:3d: aa:9f:9e:09:b3:ab:94:10:cd:ff:8f:47:8e:7d:38: b6:b7:da:e5:cb:04:e7:f6:b2:bf:9f:46:39:4c:f8: 23:c6:e7:24:74:cc:88:31:65:16:fd:a2:71:5e:e3: f3:6f:cc:11:94:54:bc:13:65:a4:83:98:44:93:ee: 78:d7:e4:c6:bc:43:75:bd:ff:73:a7:04:d7:73:3b: 3b:03:69:70:83:a2:74:d7:1a:1f:ee:b1:94:80:d8: 50:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:BD:A4:62:89:5B:F4:BC:59:48:C8:00:B4:3B:6D:67:5F:10:F4:A7 X509v3 Authority Key Identifier: keyid:E2:5F:CD:9B:77:25:85:39:42:79:1A:62:D4:75:EC:FE:D7:C0:3F:64 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F59A6/E4EDAC18CB1A11EA87CD5544C4F9AE02/4l_Nm3clhTlCeRpi1HXs_tfAP2Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4l_Nm3clhTlCeRpi1HXs_tfAP2Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F59A6/E4EDAC18CB1A11EA87CD5544C4F9AE02/4l_Nm3clhTlCeRpi1HXs_tfAP2Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2c:73:e3:d3:36:c3:30:77:17:73:7e:07:55:e1:ec:61:b0:ae: 86:bd:33:8a:f2:23:0c:fa:5b:c5:ae:dd:cc:5a:23:f0:fe:b8: 24:fc:2a:69:15:5f:8e:9f:03:2f:56:23:ff:62:ef:94:c0:37: 40:a6:d7:7f:e6:f5:cd:51:b3:c9:a6:d7:c7:ce:bc:4c:c3:3e: d4:53:70:2a:a7:2e:34:1e:eb:65:4a:f4:f0:53:4d:9c:4e:3a: 68:bf:9a:67:af:7c:96:73:66:b3:31:15:83:bf:32:ea:7c:25: 45:76:01:c7:d7:ca:d2:01:02:a7:19:8f:13:95:29:36:b6:08: 43:71:d8:1a:fa:68:f4:f0:5d:6d:4d:89:bd:03:85:a9:e0:8d: 1b:aa:8b:eb:34:86:5c:98:65:d2:bb:c2:f8:7e:18:f8:cd:64: c0:d5:8d:54:3a:b5:9b:23:50:be:99:5d:90:a3:56:4d:1e:0e: 2e:e8:2e:42:16:b1:d5:af:2f:dc:f1:0d:9c:bb:1c:e4:80:f6: 5c:3c:78:95:19:2e:72:f6:78:ad:a5:67:8b:4c:8e:f0:c2:32: 3a:c1:64:09:ec:10:54:68:58:ac:f0:12:30:3d:b3:3a:16:53: 72:97:1c:e2:53:b5:c3:c1:f7:5b:92:b6:df:ea:41:f7:2a:3d: 0c:67:58:02 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCL4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjU5QTYxMTAvBgNVBAUTKEUyNUZDRDlCNzcyNTg1Mzk0Mjc5MUE2MkQ0NzVFQ0ZF RDdDMDNGNjQwHhcNMjUxMDIwMTgzNTM1WhcNMjUxMDI3MTgzNTM1WjAYMRYwFAYD VQQDEw02OGY2ODBmOC1iOGYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuA4Y61d8CQOpuyF52EdTia3GRKifSLFDK7L1oLt13yD1zeF6+leSP+LK3V+U Wox8BKgeJyWhdvSjKaJmpGhMbiMXIuXMqZ13+giiG9+EdB+F9qGK++dzPaQew1iR WGzYtZJeTbP3ekXyEHMVp89v4hZPdvZO7ED0bRkrqEwXBV1qxPgU6EiQBoZh/2cV Gn40uNrE4yJeKvm9GqB++qpU8Zf3cj2qn54Js6uUEM3/j0eOfTi2t9rlywTn9rK/ n0Y5TPgjxuckdMyIMWUW/aJxXuPzb8wRlFS8E2Wkg5hEk+541+TGvEN1vf9zpwTX czs7A2lwg6J01xof7rGUgNhQ5wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJG9pGKJ W/S8WUjIALQ7bWdfEPSnMB8GA1UdIwQYMBaAFOJfzZt3JYU5QnkaYtR17P7XwD9k MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNTlBNi9FNEVEQUMxOENC MUExMUVBODdDRDU1NDRDNEY5QUUwMi80bF9ObTNjbGhUbENlUnBpMUhYc190ZkFQ MlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzRsX05tM2NsaFRsQ2VScGkxSFhzX3RmQVAyUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NTlBNi9FNEVEQUMxOENCMUExMUVBODdDRDU1NDRDNEY5QUUwMi80bF9ObTNjbGhU bENlUnBpMUhYc190ZkFQMlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAsc+PTNsMwdxdzfgdV4exhsK6GvTOK8iMM+lvFrt3MWiPw/rgk/Cpp FV+OnwMvViP/Yu+UwDdAptd/5vXNUbPJptfHzrxMwz7UU3Aqpy40HutlSvTwU02c Tjpov5pnr3yWc2azMRWDvzLqfCVFdgHH18rSAQKnGY8TlSk2tghDcdga+mj08F1t TYm9A4Wp4I0bqovrNIZcmGXSu8L4fhj4zWTA1Y1UOrWbI1C+mV2Qo1ZNHg4u6C5C FrHVry/c8Q2cuxzkgPZcPHiVGS5y9nitpWeLTI7wwjI6wWQJ7BBUaFis8BIwPbM6 FlNylxziU7XDwfdbkrbf6kH3Kj0MZ1gC -----END CERTIFICATE-----Generated at Mon Oct 20 23:36:22 2025 by rpki-client