$ rpki-client -vvf rpki.apnic.net/member_repository/A9144F34/4D22EEE0BDE911EFBFD53882C4F9AE02/SzEIvFdYhD1j3_b8ZAl_KxZEy4o.mft File: SzEIvFdYhD1j3_b8ZAl_KxZEy4o.mft (raw, json) Hash identifier: 7roe4JBA40DKnLjghiJGUU/GAQiRFf4xl/9dnRYU0kQ= Subject key identifier: 27:4D:F9:BC:5B:31:71:44:BB:4E:0D:05:11:6D:30:3A:D5:6B:00:A3 Authority key identifier: 4B:31:08:BC:57:58:84:3D:63:DF:F6:FC:64:09:7F:2B:16:44:CB:8A Certificate issuer: /CN=A9144F34/serialNumber=4B3108BC5758843D63DFF6FC64097F2B1644CB8A Certificate serial: A6 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/SzEIvFdYhD1j3_b8ZAl_KxZEy4o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9144F34/4D22EEE0BDE911EFBFD53882C4F9AE02/SzEIvFdYhD1j3_b8ZAl_KxZEy4o.mft Manifest number: A4 Signing time: Mon 03 Nov 2025 06:17:01 +0000 Manifest this update: Mon 03 Nov 2025 06:17:01 +0000 Manifest next update: Mon 10 Nov 2025 06:17:01 +0000 Files and hashes: 1: SzEIvFdYhD1j3_b8ZAl_KxZEy4o.crl (hash: y2eB4t4uiXGhoArIWCHxLcLMrlHMF8OuaJuqXfwV1G0=) 2: 4965C7C02E4411F0B187B122C4F9AE02.roa (hash: vT0qzVdoUmxJ/TJ/AidkSPg3ugEyyFgQIDSZRoXd/0g=) 3: AA14EED2BDE911EFB07EE682C4F9AE02.roa (hash: 8Lz3SihiRlFf9NOxeybLJutdQF61khJ8l8jmKMF421Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9144F34/4D22EEE0BDE911EFBFD53882C4F9AE02/SzEIvFdYhD1j3_b8ZAl_KxZEy4o.crl rsync://rpki.apnic.net/member_repository/A9144F34/4D22EEE0BDE911EFBFD53882C4F9AE02/SzEIvFdYhD1j3_b8ZAl_KxZEy4o.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/SzEIvFdYhD1j3_b8ZAl_KxZEy4o.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 06:17:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 166 (0xa6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9144F34, serialNumber=4B3108BC5758843D63DFF6FC64097F2B1644CB8A Validity Not Before: Nov 3 06:17:01 2025 GMT Not After : Nov 10 06:17:01 2025 GMT Subject: CN=690848dd-9bc6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:a7:cf:89:45:81:12:aa:6c:22:81:77:3c:ec: df:7f:73:1b:b9:df:8b:ab:e6:79:9e:1a:70:bd:00: db:e6:77:05:1f:fc:4b:de:9b:9d:eb:44:b3:d0:4f: 4b:ba:b5:28:97:da:d1:0e:13:0a:2d:ec:76:f8:21: a7:07:90:9f:3b:fd:f3:7a:2f:bb:6a:b6:49:17:0d: df:97:f1:47:56:38:ed:be:5d:22:0a:40:1c:a2:ac: c2:e9:2e:f7:b9:eb:9d:4c:e7:8e:9c:1b:65:35:2d: 7a:e6:8d:8c:c3:30:99:83:a1:2f:f6:3f:7c:ee:6a: c6:1f:1a:cc:36:ce:27:b8:6e:ef:6b:db:ab:b9:ea: 7f:ac:28:18:5a:a0:25:81:f5:19:e5:f2:ea:79:a1: c8:f8:52:9e:b5:00:7b:34:37:71:8e:10:7c:73:1e: 78:10:0f:1d:2e:36:4d:7f:50:25:a6:13:f9:12:d9: 55:a9:0d:48:c3:e7:22:98:38:e0:55:a3:66:45:90: af:68:f5:99:c1:f4:e6:45:ea:d1:56:e3:58:a2:ca: e6:50:91:51:26:0f:0b:53:fa:ff:fb:82:f4:57:ee: 73:25:04:30:08:fb:d2:f4:20:74:dc:aa:a0:7b:19: f5:a3:93:12:b3:59:bd:24:99:77:ec:09:32:3a:b1: 29:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:4D:F9:BC:5B:31:71:44:BB:4E:0D:05:11:6D:30:3A:D5:6B:00:A3 X509v3 Authority Key Identifier: keyid:4B:31:08:BC:57:58:84:3D:63:DF:F6:FC:64:09:7F:2B:16:44:CB:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9144F34/4D22EEE0BDE911EFBFD53882C4F9AE02/SzEIvFdYhD1j3_b8ZAl_KxZEy4o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/SzEIvFdYhD1j3_b8ZAl_KxZEy4o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9144F34/4D22EEE0BDE911EFBFD53882C4F9AE02/SzEIvFdYhD1j3_b8ZAl_KxZEy4o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0d:89:d2:b5:fb:35:d7:d4:65:13:ba:c9:b8:e5:a1:05:48:ee: 0a:0c:0f:19:72:4b:8f:fd:66:37:aa:84:98:a8:35:5b:d4:50: 0f:47:40:2b:a9:5f:97:ba:cc:2e:12:75:a5:dd:54:3e:b4:c1: 3f:1c:87:b7:09:79:95:44:fd:cb:c1:e4:f3:13:f5:9e:28:a7: 72:b9:ef:ba:c4:32:79:dd:79:14:37:46:99:d6:d0:37:9c:2d: 7b:a5:8e:5a:0a:36:9a:04:f5:e6:1b:28:a2:ff:40:17:36:1f: dd:39:67:0a:b2:3e:e9:07:50:85:d6:62:de:9e:0a:df:b0:51: b5:aa:d5:3a:18:ad:fb:18:a0:f4:33:e6:2e:b2:3b:9e:6c:4f: 41:2b:ad:72:aa:14:77:c1:6b:da:a1:bf:f5:a8:6b:c7:cd:9c: eb:7a:b8:8d:1c:6b:85:bd:94:e0:1d:a9:fe:9d:43:4b:46:05: c9:45:db:1e:6c:73:6f:22:25:86:0d:ee:2e:32:da:b1:3a:ce: f9:b0:64:f2:a1:6e:52:2b:13:6a:ae:9c:86:63:5b:4f:12:3d: 72:ee:74:83:c5:bd:9b:e9:f0:7f:91:5a:41:79:8e:ce:ca:be: b7:78:00:32:2e:cd:61:8a:7f:8e:db:82:ae:d1:5e:e9:fb:a2: 64:07:37:b6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDRGMzQxMTAvBgNVBAUTKDRCMzEwOEJDNTc1ODg0M0Q2M0RGRjZGQzY0MDk3RjJC MTY0NENCOEEwHhcNMjUxMTAzMDYxNzAxWhcNMjUxMTEwMDYxNzAxWjAYMRYwFAYD VQQDEw02OTA4NDhkZC05YmM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkKfPiUWBEqpsIoF3POzff3Mbud+Lq+Z5nhpwvQDb5ncFH/xL3pud60Sz0E9L urUol9rRDhMKLex2+CGnB5CfO/3zei+7arZJFw3fl/FHVjjtvl0iCkAcoqzC6S73 ueudTOeOnBtlNS165o2MwzCZg6Ev9j987mrGHxrMNs4nuG7va9uruep/rCgYWqAl gfUZ5fLqeaHI+FKetQB7NDdxjhB8cx54EA8dLjZNf1AlphP5EtlVqQ1Iw+cimDjg VaNmRZCvaPWZwfTmRerRVuNYosrmUJFRJg8LU/r/+4L0V+5zJQQwCPvS9CB03Kqg exn1o5MSs1m9JJl37AkyOrEpqwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCdN+bxb MXFEu04NBRFtMDrVawCjMB8GA1UdIwQYMBaAFEsxCLxXWIQ9Y9/2/GQJfysWRMuK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NEYzNC80RDIyRUVFMEJE RTkxMUVGQkZENTM4ODJDNEY5QUUwMi9TekVJdkZkWWhEMWozX2I4WkFsX0t4WkV5 NG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1N6RUl2RmRZaEQxajNfYjhaQWxfS3haRXk0by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NEYzNC80RDIyRUVFMEJERTkxMUVGQkZENTM4ODJDNEY5QUUwMi9TekVJdkZkWWhE MWozX2I4WkFsX0t4WkV5NG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQANidK1+zXX1GUTusm45aEFSO4KDA8ZckuP/WY3qoSYqDVb1FAPR0Ar qV+XuswuEnWl3VQ+tME/HIe3CXmVRP3LweTzE/WeKKdyue+6xDJ53XkUN0aZ1tA3 nC17pY5aCjaaBPXmGyii/0AXNh/dOWcKsj7pB1CF1mLengrfsFG1qtU6GK37GKD0 M+YusjuebE9BK61yqhR3wWvaob/1qGvHzZzreriNHGuFvZTgHan+nUNLRgXJRdse bHNvIiWGDe4uMtqxOs75sGTyoW5SKxNqrpyGY1tPEj1y7nSDxb2b6fB/kVpBeY7O yr63eAAyLs1hin+O24Ku0V7p+6JkBze2 -----END CERTIFICATE-----Generated at Tue Nov 4 13:18:32 2025 by rpki-client