$ rpki-client -vvf rpki.apnic.net/member_repository/A912512F/4B8BFFECB46911EAABA71C75C4F9AE02/4jfSzTuh8bknVF8kSZKHKtCvwwU.mft File: 4jfSzTuh8bknVF8kSZKHKtCvwwU.mft (raw, json) Hash identifier: zNa4h6FGCRKEdUyokC+eKG2GA02zD9Z9Fg/eH8KrlXk= Subject key identifier: 64:4F:8A:D1:50:DD:BF:C9:DA:36:ED:06:9C:EC:E1:DC:E2:61:1E:A0 Authority key identifier: E2:37:D2:CD:3B:A1:F1:B9:27:54:5F:24:49:92:87:2A:D0:AF:C3:05 Certificate issuer: /CN=A912512F/serialNumber=E237D2CD3BA1F1B927545F244992872AD0AFC305 Certificate serial: 0941 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4jfSzTuh8bknVF8kSZKHKtCvwwU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912512F/4B8BFFECB46911EAABA71C75C4F9AE02/4jfSzTuh8bknVF8kSZKHKtCvwwU.mft Manifest number: 0925 Signing time: Sun 02 Nov 2025 20:14:39 +0000 Manifest this update: Sun 02 Nov 2025 20:14:38 +0000 Manifest next update: Sun 09 Nov 2025 20:14:38 +0000 Files and hashes: 1: 4jfSzTuh8bknVF8kSZKHKtCvwwU.crl (hash: hfoGeriC+J41AUZg2ceQReVeft3rgxOS7RbStzD4EbA=) 2: 4C5CCE6EB46A11EAB5A01176C4F9AE02.roa (hash: RO65RMNM2Nj+skVx9D4SwK+SURjH9kvIKLTrXVq1cDk=) 3: 9FCAD654781E11EB808A544BC4F9AE02.roa (hash: AMggt9zpwS0BRdqI+ClPrj6WWxTra7y9F4TlC3w0Ums=) 4: 4B3A4250B46A11EAB5A01176C4F9AE02.roa (hash: rJeii+ilF+9cVriG2vucr/nhWEU/kidxHLEjPFgUME0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912512F/4B8BFFECB46911EAABA71C75C4F9AE02/4jfSzTuh8bknVF8kSZKHKtCvwwU.crl rsync://rpki.apnic.net/member_repository/A912512F/4B8BFFECB46911EAABA71C75C4F9AE02/4jfSzTuh8bknVF8kSZKHKtCvwwU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4jfSzTuh8bknVF8kSZKHKtCvwwU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 20:14:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2369 (0x941) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912512F, serialNumber=E237D2CD3BA1F1B927545F244992872AD0AFC305 Validity Not Before: Nov 2 20:14:38 2025 GMT Not After : Nov 9 20:14:38 2025 GMT Subject: CN=6907bbaf-abef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:16:db:df:50:b9:cb:9b:74:3a:e3:d5:5d:84: 2f:bf:3a:dc:5d:34:4d:0d:24:94:11:43:b7:08:a8: 94:ad:8d:ab:b5:7a:f7:f8:67:cf:4b:03:d9:4c:f8: 5d:32:dd:5c:7f:10:a7:09:1a:c3:b9:2d:26:cf:73: ef:d6:ff:e9:ba:bc:15:88:13:81:9f:b3:8e:2d:44: af:61:bd:65:6e:7e:7a:ef:dd:35:c2:03:4f:aa:81: a8:92:d0:39:72:02:d6:7a:a1:1c:cf:c6:12:23:a5: c5:ae:9e:76:6d:4e:52:60:3b:91:55:42:6f:47:c3: e8:50:a1:a9:f2:77:04:f0:54:9e:a5:48:5a:8a:97: 86:0c:72:49:98:95:a6:b5:df:dc:15:09:2d:4c:54: 46:86:ec:c1:41:84:fa:74:79:1c:3f:ae:3d:02:34: 6d:1c:3c:18:64:ee:03:1f:f0:9e:a8:8a:72:79:10: e8:e0:59:49:9c:40:25:68:30:d4:2f:f7:cc:90:30: 03:2f:f8:9b:20:92:fc:ac:5d:d3:bf:4c:8d:a5:a1: 97:d9:16:b6:8d:e2:cb:aa:64:a6:70:b1:32:11:6f: 0b:e7:00:19:c1:21:c9:1e:b7:f8:ec:d0:02:8b:3d: a9:18:54:bf:d7:3b:c4:8b:e0:aa:e8:4a:53:39:96: 0b:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:4F:8A:D1:50:DD:BF:C9:DA:36:ED:06:9C:EC:E1:DC:E2:61:1E:A0 X509v3 Authority Key Identifier: keyid:E2:37:D2:CD:3B:A1:F1:B9:27:54:5F:24:49:92:87:2A:D0:AF:C3:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912512F/4B8BFFECB46911EAABA71C75C4F9AE02/4jfSzTuh8bknVF8kSZKHKtCvwwU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4jfSzTuh8bknVF8kSZKHKtCvwwU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912512F/4B8BFFECB46911EAABA71C75C4F9AE02/4jfSzTuh8bknVF8kSZKHKtCvwwU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 58:15:c1:e9:70:da:f2:73:9b:62:30:3d:a0:c8:b9:f0:4b:25: 65:62:b8:99:94:68:fb:fa:18:6b:20:de:1a:75:60:28:5d:a3: 62:aa:e1:ba:e2:d8:0e:76:c6:a7:7f:da:bf:cb:10:6b:89:5f: 73:08:5e:85:4c:e5:b4:3a:7d:b1:a1:11:e0:b7:0f:d1:87:f6: 6f:25:ae:15:a2:52:a1:47:6b:35:9b:49:ea:48:32:fd:a6:9e: 29:9a:b0:75:54:9d:95:f4:78:82:e7:fd:d8:5c:ea:d6:80:b2: 20:c9:38:40:d5:07:59:cc:37:ad:a9:93:1f:a8:b9:6b:64:94: 34:0a:2b:39:95:e2:fa:f4:3d:4e:fb:ba:d7:08:e4:df:f7:1f: a2:71:f6:6b:3b:0a:53:8a:77:18:f8:a5:95:fb:87:f1:9c:82: 06:8f:71:39:ee:6a:9e:00:c1:62:47:1f:f5:08:38:25:8b:9d: 8d:2f:bf:25:63:59:7c:e4:c0:83:cf:05:b9:46:f2:56:71:25: 97:45:58:1b:a1:b0:34:44:41:09:8c:b1:44:bb:71:fe:3b:ce: 30:78:be:b0:8b:c7:9f:e3:6e:b6:d4:4e:4c:3a:dc:1a:3d:d3: b8:33:25:32:32:ad:4c:11:16:74:e7:60:76:80:08:c1:8c:b0: d5:aa:22:71 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCUEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjUxMkYxMTAvBgNVBAUTKEUyMzdEMkNEM0JBMUYxQjkyNzU0NUYyNDQ5OTI4NzJB RDBBRkMzMDUwHhcNMjUxMTAyMjAxNDM4WhcNMjUxMTA5MjAxNDM4WjAYMRYwFAYD VQQDEw02OTA3YmJhZi1hYmVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvxbb31C5y5t0OuPVXYQvvzrcXTRNDSSUEUO3CKiUrY2rtXr3+GfPSwPZTPhd Mt1cfxCnCRrDuS0mz3Pv1v/purwViBOBn7OOLUSvYb1lbn567901wgNPqoGoktA5 cgLWeqEcz8YSI6XFrp52bU5SYDuRVUJvR8PoUKGp8ncE8FSepUhaipeGDHJJmJWm td/cFQktTFRGhuzBQYT6dHkcP649AjRtHDwYZO4DH/CeqIpyeRDo4FlJnEAlaDDU L/fMkDADL/ibIJL8rF3Tv0yNpaGX2Ra2jeLLqmSmcLEyEW8L5wAZwSHJHrf47NAC iz2pGFS/1zvEi+Cq6EpTOZYLdwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGRPitFQ 3b/J2jbtBpzs4dziYR6gMB8GA1UdIwQYMBaAFOI30s07ofG5J1RfJEmShyrQr8MF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNTEyRi80QjhCRkZFQ0I0 NjkxMUVBQUJBNzFDNzVDNEY5QUUwMi80amZTelR1aDhia25WRjhrU1pLSEt0Q3Z3 d1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRqZlN6VHVoOGJrblZGOGtTWktIS3RDdnd3VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NTEyRi80QjhCRkZFQ0I0NjkxMUVBQUJBNzFDNzVDNEY5QUUwMi80amZTelR1aDhi a25WRjhrU1pLSEt0Q3Z3d1UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBYFcHpcNryc5tiMD2gyLnwSyVlYriZlGj7+hhrIN4adWAoXaNiquG6 4tgOdsanf9q/yxBriV9zCF6FTOW0On2xoRHgtw/Rh/ZvJa4VolKhR2s1m0nqSDL9 pp4pmrB1VJ2V9HiC5/3YXOrWgLIgyThA1QdZzDetqZMfqLlrZJQ0Cis5leL69D1O +7rXCOTf9x+icfZrOwpTincY+KWV+4fxnIIGj3E57mqeAMFiRx/1CDgli52NL78l Y1l85MCDzwW5RvJWcSWXRVgbobA0REEJjLFEu3H+O84weL6wi8ef42621E5MOtwa PdO4MyUyMq1MERZ052B2gAjBjLDVqiJx -----END CERTIFICATE-----Generated at Mon Nov 3 18:14:40 2025 by rpki-client