$ rpki-client -vvf rpki.apnic.net/member_repository/A9126F2B/90FADEECD5CD11E5AA426E40C4F9AE02/4YL5k2lSxCadZw2ldS3syGgjTxs.mft File: 4YL5k2lSxCadZw2ldS3syGgjTxs.mft (raw, json) Hash identifier: Q071Hx4eq+MRRvcddFpIRD92n8oYxjxnqbPZ17yxzx8= Subject key identifier: EA:45:DC:07:94:C8:11:A2:B0:1F:63:DF:C6:FC:4A:0C:1A:16:55:9C Authority key identifier: E1:82:F9:93:69:52:C4:26:9D:67:0D:A5:75:2D:EC:C8:68:23:4F:1B Certificate issuer: /CN=A9126F2B/serialNumber=E182F9936952C4269D670DA5752DECC868234F1B Certificate serial: 2217 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4YL5k2lSxCadZw2ldS3syGgjTxs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9126F2B/90FADEECD5CD11E5AA426E40C4F9AE02/4YL5k2lSxCadZw2ldS3syGgjTxs.mft Manifest number: 21F6 Signing time: Wed 22 Oct 2025 16:05:22 +0000 Manifest this update: Wed 22 Oct 2025 16:05:21 +0000 Manifest next update: Wed 29 Oct 2025 16:05:21 +0000 Files and hashes: 1: 4YL5k2lSxCadZw2ldS3syGgjTxs.crl (hash: UrTNI2qTKe22t6oO5eEejVJTARTGZI17/dWxxlJ0j1g=) 2: B72206B4554B11E791BA5861C4F9AE02.roa (hash: Si+Xx28szHe9Iv7W1YtcZoNp90VlP5RP91wUGl6kx/U=) 3: A8E9DE704B8511E7BF406610C4F9AE02.roa (hash: nu+MmRVMelFZBsdSEFhVpeJliAcHe14e7veTklAJkjc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9126F2B/90FADEECD5CD11E5AA426E40C4F9AE02/4YL5k2lSxCadZw2ldS3syGgjTxs.crl rsync://rpki.apnic.net/member_repository/A9126F2B/90FADEECD5CD11E5AA426E40C4F9AE02/4YL5k2lSxCadZw2ldS3syGgjTxs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4YL5k2lSxCadZw2ldS3syGgjTxs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 29 Oct 2025 16:05:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8727 (0x2217) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9126F2B, serialNumber=E182F9936952C4269D670DA5752DECC868234F1B Validity Not Before: Oct 22 16:05:21 2025 GMT Not After : Oct 29 16:05:21 2025 GMT Subject: CN=68f900c2-d2a1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:e1:63:83:fc:52:ce:ec:c6:3e:91:84:4a:8b: 58:6c:b0:af:f7:af:5c:19:20:7f:94:a8:a1:5c:94: ef:49:67:7c:ee:a6:00:c7:51:88:97:f4:1a:d5:1f: 93:ee:48:93:0b:76:2b:b8:bc:7c:12:2d:0b:e7:ce: 98:29:a6:af:38:32:7e:24:94:9d:4a:ac:bf:59:be: 34:6b:6f:04:9c:f4:91:73:35:fa:f2:05:c3:5b:cb: 3e:e8:a1:2a:d4:d9:5b:2f:25:5d:79:a7:d2:59:46: f3:d2:b2:4b:36:a9:07:d4:f9:c6:4b:59:89:fe:66: 50:9b:91:38:c0:e6:be:5f:8d:b3:8f:6c:71:71:71: aa:69:3f:cd:e2:81:6a:ff:5d:77:82:59:78:ed:76: cb:62:c0:ae:f5:b5:39:ec:f0:7b:ec:13:0d:bd:3b: 38:a9:30:0f:fa:d7:05:d5:7b:f4:db:69:a4:30:0f: 2b:1a:47:96:ec:83:f1:17:44:f5:e1:f4:5c:42:14: fc:00:45:ef:01:e7:b0:20:81:48:ef:ac:b7:42:73: cc:c7:c2:ad:74:10:1b:b6:9c:ca:13:cc:3c:a3:ff: bd:ab:07:fc:79:d0:1e:3c:ad:f2:b5:e8:13:9d:11: a1:60:14:df:82:a6:bb:2b:b7:d2:3b:ff:e1:65:6a: 71:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:45:DC:07:94:C8:11:A2:B0:1F:63:DF:C6:FC:4A:0C:1A:16:55:9C X509v3 Authority Key Identifier: keyid:E1:82:F9:93:69:52:C4:26:9D:67:0D:A5:75:2D:EC:C8:68:23:4F:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9126F2B/90FADEECD5CD11E5AA426E40C4F9AE02/4YL5k2lSxCadZw2ldS3syGgjTxs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4YL5k2lSxCadZw2ldS3syGgjTxs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9126F2B/90FADEECD5CD11E5AA426E40C4F9AE02/4YL5k2lSxCadZw2ldS3syGgjTxs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5b:44:8e:ad:14:94:cb:94:da:5f:e1:10:ed:d9:5a:01:c1:0d: b5:64:28:9d:6b:80:27:6d:7d:3f:46:36:41:ab:0e:85:60:3e: ac:3b:ed:89:de:da:d3:21:76:0d:ae:6a:1b:6b:81:1d:d6:a8: 3f:4f:9d:86:2a:ed:8b:58:54:7c:88:cb:13:09:3b:fb:b8:f4: a8:e8:70:e3:e7:b6:bd:a8:a2:35:42:9a:80:20:03:22:11:c4: 57:a6:96:47:2c:03:e6:4d:38:82:b5:4a:c5:f0:54:af:83:f5: 4c:ae:4e:c5:4f:18:c1:e5:a9:87:f7:31:9b:13:f0:16:d6:49: d1:88:b2:76:ac:60:81:8b:ba:57:b1:53:27:74:d1:b9:3f:32: 03:d6:a7:18:b6:6b:fa:69:3c:3b:73:b6:13:82:b4:2d:5d:ab: dd:78:76:5e:06:05:5d:f7:f5:0b:56:aa:23:b4:95:d5:f2:fd: b0:47:86:3c:83:92:ff:3d:f4:b1:db:9d:54:f4:8b:ec:a3:cd: 62:c8:1a:e1:a7:f6:9e:6b:64:e1:eb:cf:a8:55:8c:ae:61:1f: 14:58:99:2e:b7:47:c2:2a:2d:97:38:57:0e:f5:d0:14:7e:30: a1:93:01:b3:2f:bb:31:fd:2f:ff:f7:d5:43:02:c4:50:e4:6b: 7c:6d:c6:a3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIhcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjZGMkIxMTAvBgNVBAUTKEUxODJGOTkzNjk1MkM0MjY5RDY3MERBNTc1MkRFQ0M4 NjgyMzRGMUIwHhcNMjUxMDIyMTYwNTIxWhcNMjUxMDI5MTYwNTIxWjAYMRYwFAYD VQQDEw02OGY5MDBjMi1kMmExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu+Fjg/xSzuzGPpGESotYbLCv969cGSB/lKihXJTvSWd87qYAx1GIl/Qa1R+T 7kiTC3YruLx8Ei0L586YKaavODJ+JJSdSqy/Wb40a28EnPSRczX68gXDW8s+6KEq 1NlbLyVdeafSWUbz0rJLNqkH1PnGS1mJ/mZQm5E4wOa+X42zj2xxcXGqaT/N4oFq /113gll47XbLYsCu9bU57PB77BMNvTs4qTAP+tcF1Xv022mkMA8rGkeW7IPxF0T1 4fRcQhT8AEXvAeewIIFI76y3QnPMx8KtdBAbtpzKE8w8o/+9qwf8edAePK3ytegT nRGhYBTfgqa7K7fSO//hZWpxBwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOpF3AeU yBGisB9j38b8SgwaFlWcMB8GA1UdIwQYMBaAFOGC+ZNpUsQmnWcNpXUt7MhoI08b MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNkYyQi85MEZBREVFQ0Q1 Q0QxMUU1QUE0MjZFNDBDNEY5QUUwMi80WUw1azJsU3hDYWRadzJsZFMzc3lHZ2pU eHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRZTDVrMmxTeENhZFp3MmxkUzNzeUdnalR4cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NkYyQi85MEZBREVFQ0Q1Q0QxMUU1QUE0MjZFNDBDNEY5QUUwMi80WUw1azJsU3hD YWRadzJsZFMzc3lHZ2pUeHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBbRI6tFJTLlNpf4RDt2VoBwQ21ZCida4AnbX0/RjZBqw6FYD6sO+2J 3trTIXYNrmoba4Ed1qg/T52GKu2LWFR8iMsTCTv7uPSo6HDj57a9qKI1QpqAIAMi EcRXppZHLAPmTTiCtUrF8FSvg/VMrk7FTxjB5amH9zGbE/AW1knRiLJ2rGCBi7pX sVMndNG5PzID1qcYtmv6aTw7c7YTgrQtXavdeHZeBgVd9/ULVqojtJXV8v2wR4Y8 g5L/PfSx251U9Ivso81iyBrhp/aea2Th68+oVYyuYR8UWJkut0fCKi2XOFcO9dAU fjChkwGzL7sx/S//99VDAsRQ5Gt8bcaj -----END CERTIFICATE-----Generated at Wed Oct 22 18:40:02 2025 by rpki-client