$ rpki-client -vvf rpki.apnic.net/member_repository/A9139220/15CD1C2228B011EBB4469E1EC4F9AE02/4s_EK2oIFQrv7-cYm-WvK-Vo-ME.mft File: 4s_EK2oIFQrv7-cYm-WvK-Vo-ME.mft (raw, json) Hash identifier: 4jWQss+C3I+R6cAETeo4WgWAGFnTzPLPkuMhWZvPneQ= Subject key identifier: B1:00:C0:C7:55:46:C8:20:4D:A6:F1:65:95:5E:24:1B:C4:2A:28:86 Authority key identifier: E2:CF:C4:2B:6A:08:15:0A:EF:EF:E7:18:9B:E5:AF:2B:E5:68:F8:C1 Certificate issuer: /CN=A9139220/serialNumber=E2CFC42B6A08150AEFEFE7189BE5AF2BE568F8C1 Certificate serial: 07A4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4s_EK2oIFQrv7-cYm-WvK-Vo-ME.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9139220/15CD1C2228B011EBB4469E1EC4F9AE02/4s_EK2oIFQrv7-cYm-WvK-Vo-ME.mft Manifest number: 079A Signing time: Tue 04 Nov 2025 21:32:04 +0000 Manifest this update: Tue 04 Nov 2025 21:32:04 +0000 Manifest next update: Tue 11 Nov 2025 21:32:04 +0000 Files and hashes: 1: 4s_EK2oIFQrv7-cYm-WvK-Vo-ME.crl (hash: ljuiOR+yLKp1oKir3gWNb1wTik1WLu8wnZ/leFUCSAg=) 2: 7EBB570A296C11EBB7D88147C4F9AE02.roa (hash: fXQXf8N5tytPfV8xyqN1Zu7dGcPNJVrKRy7cMq29VZM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9139220/15CD1C2228B011EBB4469E1EC4F9AE02/4s_EK2oIFQrv7-cYm-WvK-Vo-ME.crl rsync://rpki.apnic.net/member_repository/A9139220/15CD1C2228B011EBB4469E1EC4F9AE02/4s_EK2oIFQrv7-cYm-WvK-Vo-ME.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4s_EK2oIFQrv7-cYm-WvK-Vo-ME.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 21:32:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1956 (0x7a4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9139220, serialNumber=E2CFC42B6A08150AEFEFE7189BE5AF2BE568F8C1 Validity Not Before: Nov 4 21:32:04 2025 GMT Not After : Nov 11 21:32:04 2025 GMT Subject: CN=690a70d4-5535 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:a2:10:58:30:80:f7:e9:9a:a4:38:ba:c0:15: c6:7f:82:2b:42:e1:c9:9b:f7:91:88:f2:a7:62:da: 80:ae:43:c2:bc:0b:58:24:3a:dc:50:1c:c6:05:9c: 6d:8e:ea:1d:70:95:e5:b7:c2:5d:d4:7d:f2:e7:b4: d1:dc:59:ec:21:de:f3:2d:86:42:17:96:83:71:87: 26:10:d7:3e:1d:b9:9f:72:35:1e:01:ad:30:be:1b: c4:ae:ab:66:ed:46:c8:b2:e2:c8:2f:ea:2f:71:9d: 04:47:49:79:a0:a1:e1:09:ab:91:c6:f6:cc:09:40: 8b:19:7c:c0:8c:2d:f8:ab:79:96:e9:08:2a:92:5d: 53:46:a7:d6:3c:ba:de:1d:bb:cb:e0:fd:a5:3b:26: 72:81:86:91:df:ef:67:8e:a9:c7:33:38:60:72:21: 2d:da:7e:8a:90:f4:82:c4:84:ab:0f:c9:1d:89:37: 47:12:22:10:ed:64:d9:8a:48:36:d7:dd:8b:da:be: 81:38:75:f2:66:8f:dd:38:16:af:a7:02:07:b7:ce: 24:f6:33:43:26:59:e6:9c:a1:b0:53:e0:9a:74:37: 3f:21:94:a0:b4:1c:75:c9:00:ea:ab:5d:da:38:ca: 7d:99:36:45:12:a6:23:49:54:d7:a1:5f:46:24:f2: ff:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:00:C0:C7:55:46:C8:20:4D:A6:F1:65:95:5E:24:1B:C4:2A:28:86 X509v3 Authority Key Identifier: keyid:E2:CF:C4:2B:6A:08:15:0A:EF:EF:E7:18:9B:E5:AF:2B:E5:68:F8:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9139220/15CD1C2228B011EBB4469E1EC4F9AE02/4s_EK2oIFQrv7-cYm-WvK-Vo-ME.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4s_EK2oIFQrv7-cYm-WvK-Vo-ME.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9139220/15CD1C2228B011EBB4469E1EC4F9AE02/4s_EK2oIFQrv7-cYm-WvK-Vo-ME.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 45:1b:8d:01:32:7a:28:da:25:27:76:88:8f:cd:59:ae:36:9e: bd:1d:2c:c2:44:6f:42:a6:69:f6:97:f5:e4:c9:46:de:6e:42: 92:c5:76:12:df:d7:5c:f3:11:d1:a5:69:80:45:69:5f:5b:a4: 20:32:b0:bb:5a:e4:81:5e:05:cb:24:a5:dd:f6:43:a5:61:f9: ae:e4:52:ea:d5:ec:eb:90:27:c4:bd:5b:99:24:57:cc:ce:71: fb:46:24:6a:57:38:a3:f9:20:f7:9c:03:c7:a7:a4:2e:61:87: 65:de:12:68:67:00:a0:d2:5a:e2:70:33:92:2c:e0:f9:f9:5a: 08:5e:9f:68:ce:fc:ab:21:82:22:d5:59:e2:7f:88:cb:e1:2b: 1b:f0:09:00:14:49:90:a2:22:ac:ee:e0:29:32:56:3e:07:cd: ed:64:b4:33:5a:da:cc:11:5e:d0:5d:70:92:1d:b9:82:5e:87: 91:7d:d4:d2:64:2c:38:a5:d8:dd:44:94:69:2d:5a:14:e1:11: a1:12:62:51:93:2d:06:76:05:b9:72:d4:e1:49:86:58:fa:ca: 76:af:1c:20:52:b7:10:5e:b7:88:6c:48:48:1e:39:13:8b:c8: 23:87:9c:74:ce:2f:26:5b:7d:ab:67:da:70:90:e6:66:a4:e9: 60:5c:d4:20 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB6QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzkyMjAxMTAvBgNVBAUTKEUyQ0ZDNDJCNkEwODE1MEFFRkVGRTcxODlCRTVBRjJC RTU2OEY4QzEwHhcNMjUxMTA0MjEzMjA0WhcNMjUxMTExMjEzMjA0WjAYMRYwFAYD VQQDEw02OTBhNzBkNC01NTM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtKIQWDCA9+mapDi6wBXGf4IrQuHJm/eRiPKnYtqArkPCvAtYJDrcUBzGBZxt juodcJXlt8Jd1H3y57TR3FnsId7zLYZCF5aDcYcmENc+HbmfcjUeAa0wvhvErqtm 7UbIsuLIL+ovcZ0ER0l5oKHhCauRxvbMCUCLGXzAjC34q3mW6Qgqkl1TRqfWPLre HbvL4P2lOyZygYaR3+9njqnHMzhgciEt2n6KkPSCxISrD8kdiTdHEiIQ7WTZikg2 192L2r6BOHXyZo/dOBavpwIHt84k9jNDJlnmnKGwU+CadDc/IZSgtBx1yQDqq13a OMp9mTZFEqYjSVTXoV9GJPL/RQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLEAwMdV RsggTabxZZVeJBvEKiiGMB8GA1UdIwQYMBaAFOLPxCtqCBUK7+/nGJvlryvlaPjB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOTIyMC8xNUNEMUMyMjI4 QjAxMUVCQjQ0NjlFMUVDNEY5QUUwMi80c19FSzJvSUZRcnY3LWNZbS1XdkstVm8t TUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRzX0VLMm9JRlFydjctY1ltLVd2Sy1Wby1NRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz OTIyMC8xNUNEMUMyMjI4QjAxMUVCQjQ0NjlFMUVDNEY5QUUwMi80c19FSzJvSUZR cnY3LWNZbS1XdkstVm8tTUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBFG40BMnoo2iUndoiPzVmuNp69HSzCRG9Cpmn2l/XkyUbebkKSxXYS 39dc8xHRpWmARWlfW6QgMrC7WuSBXgXLJKXd9kOlYfmu5FLq1ezrkCfEvVuZJFfM znH7RiRqVzij+SD3nAPHp6QuYYdl3hJoZwCg0lricDOSLOD5+VoIXp9ozvyrIYIi 1Vnif4jL4Ssb8AkAFEmQoiKs7uApMlY+B83tZLQzWtrMEV7QXXCSHbmCXoeRfdTS ZCw4pdjdRJRpLVoU4RGhEmJRky0GdgW5ctThSYZY+sp2rxwgUrcQXreIbEhIHjkT i8gjh5x0zi8mW32rZ9pwkOZmpOlgXNQg -----END CERTIFICATE-----Generated at Wed Nov 5 07:55:07 2025 by rpki-client