$ rpki-client -vvf rpki.apnic.net/member_repository/A91F85CD/8A505588DD1911EA94D26011C4F9AE02/4hHNheByVQ4z5MyGpj-8360dNTI.mft File: 4hHNheByVQ4z5MyGpj-8360dNTI.mft (raw, json) Hash identifier: JsX/OlYwAV/ovjWF97Ky5XrvUg2pAvJxUIchfJAk6RQ= Subject key identifier: C5:EB:F3:EB:B3:63:95:59:49:CF:95:3B:3D:BD:F0:06:4F:96:50:B5 Authority key identifier: E2:11:CD:85:E0:72:55:0E:33:E4:CC:86:A6:3F:BC:DF:AD:1D:35:32 Certificate issuer: /CN=A91F85CD/serialNumber=E211CD85E072550E33E4CC86A63FBCDFAD1D3532 Certificate serial: 0856 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4hHNheByVQ4z5MyGpj-8360dNTI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F85CD/8A505588DD1911EA94D26011C4F9AE02/4hHNheByVQ4z5MyGpj-8360dNTI.mft Manifest number: 084E Signing time: Sat 18 Oct 2025 21:52:13 +0000 Manifest this update: Sat 18 Oct 2025 21:52:13 +0000 Manifest next update: Sat 25 Oct 2025 21:52:13 +0000 Files and hashes: 1: 4hHNheByVQ4z5MyGpj-8360dNTI.crl (hash: smJeHofMGXbzZk/SiCfgCeGi19bSg7jmo9TyiFYIvpE=) 2: 624086E2E99611EA930A5B74C4F9AE02.roa (hash: ZdmpHgIkxt7GWbnQ6LOR1kcULfHlPHaLzEsc6YKJVc0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F85CD/8A505588DD1911EA94D26011C4F9AE02/4hHNheByVQ4z5MyGpj-8360dNTI.crl rsync://rpki.apnic.net/member_repository/A91F85CD/8A505588DD1911EA94D26011C4F9AE02/4hHNheByVQ4z5MyGpj-8360dNTI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4hHNheByVQ4z5MyGpj-8360dNTI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 21:52:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2134 (0x856) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F85CD, serialNumber=E211CD85E072550E33E4CC86A63FBCDFAD1D3532 Validity Not Before: Oct 18 21:52:13 2025 GMT Not After : Oct 25 21:52:13 2025 GMT Subject: CN=68f40c0d-9698 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:b5:bb:02:6c:9b:ab:60:ec:4b:a1:32:6b:73: 69:e4:ab:4a:cb:49:f0:c4:b9:d7:6b:91:35:63:57: 3f:f3:e4:ed:51:53:df:3f:23:37:f7:bd:85:53:ca: 56:1c:5c:a7:e5:e6:83:ae:41:b9:39:a8:16:26:85: 2f:58:18:7c:44:06:bf:f9:66:97:32:b9:6a:ab:08: f2:d2:79:8c:6a:77:29:e9:bd:f9:74:3e:fc:16:e5: b0:cd:10:70:90:ab:bb:14:d6:a1:32:eb:ec:f9:fb: 58:1d:19:7d:c9:74:04:45:a7:e9:88:1f:05:84:49: a7:82:dc:08:c4:cb:e2:65:36:bd:a8:c9:74:ae:70: 45:d3:b1:7a:81:7f:42:1e:54:1c:48:39:2d:d1:39: c5:80:49:bd:06:3f:2e:ca:26:08:05:a7:81:ed:00: 7a:53:3d:ec:c2:18:8b:49:bf:e0:9e:a4:39:08:ac: 01:d0:b2:68:61:5a:6d:ca:25:6f:b6:7f:d6:52:56: ea:b7:5c:ed:ef:b8:ba:8e:94:42:b4:61:40:7d:31: 06:28:c6:39:cb:47:e0:f2:f2:b1:d4:c0:1a:b2:95: 4e:6a:58:a7:60:3c:56:52:b2:03:48:4b:c4:88:87: 17:ef:05:bb:2a:84:4e:ad:dc:19:16:86:85:dd:89: 39:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:EB:F3:EB:B3:63:95:59:49:CF:95:3B:3D:BD:F0:06:4F:96:50:B5 X509v3 Authority Key Identifier: keyid:E2:11:CD:85:E0:72:55:0E:33:E4:CC:86:A6:3F:BC:DF:AD:1D:35:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F85CD/8A505588DD1911EA94D26011C4F9AE02/4hHNheByVQ4z5MyGpj-8360dNTI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4hHNheByVQ4z5MyGpj-8360dNTI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F85CD/8A505588DD1911EA94D26011C4F9AE02/4hHNheByVQ4z5MyGpj-8360dNTI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 48:e5:0f:d2:d6:47:42:c0:61:d5:61:f5:f1:b0:03:41:4d:c3: 91:2a:33:64:88:ff:39:e5:a5:bc:bc:07:a7:57:90:fe:f7:b1: 4b:6d:bc:15:87:59:9f:ae:48:d4:b5:08:6d:09:23:90:8f:cb: 5c:b0:c9:c0:8a:2d:87:cd:96:de:6f:f3:de:a2:f9:b6:86:3c: 9e:41:10:c0:16:1d:a3:2d:01:ce:77:f8:d2:1d:00:f0:51:b5: e6:f5:8b:9d:6e:03:17:23:2c:f5:54:2a:02:f4:ee:5c:12:d7: 5d:72:57:81:bf:48:20:04:ce:36:9b:63:cc:3e:52:89:0e:e6: 57:ac:1e:4e:14:52:f4:cd:05:c5:d6:a9:34:b7:16:b6:68:1b: c1:d4:4a:8d:7d:55:82:71:16:94:97:13:cf:19:66:08:56:3d: ef:24:14:a2:3e:e0:d1:02:e8:a7:21:88:66:0f:8e:4e:54:20: 99:6d:e2:d7:ab:62:48:d8:71:8a:0d:ca:ce:d9:76:2c:03:d0: 71:fb:04:a2:75:20:62:6f:58:e2:36:f0:0e:6b:4e:ab:03:fe: b4:63:22:5e:2f:31:3f:3e:c6:a7:04:e9:2a:86:93:3a:f6:ae: b2:e5:c1:3e:2e:e4:c7:1c:09:da:de:1b:b9:3f:a7:b9:aa:29: b4:34:a1:6e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCFYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Rjg1Q0QxMTAvBgNVBAUTKEUyMTFDRDg1RTA3MjU1MEUzM0U0Q0M4NkE2M0ZCQ0RG QUQxRDM1MzIwHhcNMjUxMDE4MjE1MjEzWhcNMjUxMDI1MjE1MjEzWjAYMRYwFAYD VQQDEw02OGY0MGMwZC05Njk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqbW7Amybq2DsS6Eya3Np5KtKy0nwxLnXa5E1Y1c/8+TtUVPfPyM3972FU8pW HFyn5eaDrkG5OagWJoUvWBh8RAa/+WaXMrlqqwjy0nmMancp6b35dD78FuWwzRBw kKu7FNahMuvs+ftYHRl9yXQERafpiB8FhEmngtwIxMviZTa9qMl0rnBF07F6gX9C HlQcSDkt0TnFgEm9Bj8uyiYIBaeB7QB6Uz3swhiLSb/gnqQ5CKwB0LJoYVptyiVv tn/WUlbqt1zt77i6jpRCtGFAfTEGKMY5y0fg8vKx1MAaspVOalinYDxWUrIDSEvE iIcX7wW7KoROrdwZFoaF3Yk5CwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMXr8+uz Y5VZSc+VOz298AZPllC1MB8GA1UdIwQYMBaAFOIRzYXgclUOM+TMhqY/vN+tHTUy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGODVDRC84QTUwNTU4OERE MTkxMUVBOTREMjYwMTFDNEY5QUUwMi80aEhOaGVCeVZRNHo1TXlHcGotODM2MGRO VEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRoSE5oZUJ5VlE0ejVNeUdwai04MzYwZE5USS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG ODVDRC84QTUwNTU4OEREMTkxMUVBOTREMjYwMTFDNEY5QUUwMi80aEhOaGVCeVZR NHo1TXlHcGotODM2MGROVEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBI5Q/S1kdCwGHVYfXxsANBTcORKjNkiP855aW8vAenV5D+97FLbbwV h1mfrkjUtQhtCSOQj8tcsMnAii2HzZbeb/Peovm2hjyeQRDAFh2jLQHOd/jSHQDw UbXm9YudbgMXIyz1VCoC9O5cEtddcleBv0ggBM42m2PMPlKJDuZXrB5OFFL0zQXF 1qk0txa2aBvB1EqNfVWCcRaUlxPPGWYIVj3vJBSiPuDRAuinIYhmD45OVCCZbeLX q2JI2HGKDcrO2XYsA9Bx+wSidSBib1jiNvAOa06rA/60YyJeLzE/PsanBOkqhpM6 9q6y5cE+LuTHHAna3hu5P6e5qim0NKFu -----END CERTIFICATE-----Generated at Sun Oct 19 23:27:06 2025 by rpki-client