$ rpki-client -vvf rpki.apnic.net/member_repository/A914B57F/B2457D6A4E5911EA9EE9E20DC4F9AE02/4QZLtgGhMQh2G1RXofcVJMSky84.mft File: 4QZLtgGhMQh2G1RXofcVJMSky84.mft (raw, json) Hash identifier: aHigXP8dstytA6WfxbKn0cUCwadqmAAkzTjNqZoS7ws= Subject key identifier: 96:71:5C:A4:B0:34:74:C9:19:82:58:B9:50:79:EF:C2:AF:C5:6E:8C Authority key identifier: E1:06:4B:B6:01:A1:31:08:76:1B:54:57:A1:F7:15:24:C4:A4:CB:CE Certificate issuer: /CN=A914B57F/serialNumber=E1064BB601A13108761B5457A1F71524C4A4CBCE Certificate serial: 0B22 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4QZLtgGhMQh2G1RXofcVJMSky84.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914B57F/B2457D6A4E5911EA9EE9E20DC4F9AE02/4QZLtgGhMQh2G1RXofcVJMSky84.mft Manifest number: 0B1B Signing time: Tue 04 Nov 2025 19:23:56 +0000 Manifest this update: Tue 04 Nov 2025 19:23:55 +0000 Manifest next update: Tue 11 Nov 2025 19:23:55 +0000 Files and hashes: 1: 4QZLtgGhMQh2G1RXofcVJMSky84.crl (hash: h8ckGfEgimrSb+f9D3DyFXMD6mF0w4Kgq3ECpoI9LHI=) 2: 11685AAC4F0D11EAA161D143C4F9AE02.roa (hash: dlSOSQk2MniPlYlY5Ht7zlRaFaui9HZpjfs6c69fqdk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914B57F/B2457D6A4E5911EA9EE9E20DC4F9AE02/4QZLtgGhMQh2G1RXofcVJMSky84.crl rsync://rpki.apnic.net/member_repository/A914B57F/B2457D6A4E5911EA9EE9E20DC4F9AE02/4QZLtgGhMQh2G1RXofcVJMSky84.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4QZLtgGhMQh2G1RXofcVJMSky84.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 19:23:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2850 (0xb22) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914B57F, serialNumber=E1064BB601A13108761B5457A1F71524C4A4CBCE Validity Not Before: Nov 4 19:23:55 2025 GMT Not After : Nov 11 19:23:55 2025 GMT Subject: CN=690a52cb-99d6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:78:d7:75:c1:8b:c2:b1:52:c2:ec:33:ab:9b: e1:1c:82:b9:c1:fe:0c:e7:fd:a3:c1:fd:ce:fa:36: a1:7d:18:ff:3e:b0:91:4e:90:f1:9a:5b:ad:b4:93: 99:b7:56:97:62:f8:07:03:97:0f:56:00:20:59:b8: 9c:ba:22:52:c2:4e:0f:ad:f7:2f:dd:5a:ef:90:99: de:07:c2:11:c8:4b:be:cd:82:4e:01:17:e1:b9:b1: d7:04:dc:a5:53:b9:97:c5:ac:e6:70:2a:c9:3b:56: 7d:c4:9e:45:17:7b:3f:ad:f3:d5:c1:54:d1:a2:3f: 29:e0:3f:62:11:b2:34:98:89:dd:7f:6a:ef:67:20: af:c1:02:a3:93:e8:f5:2e:3e:13:cf:aa:2a:98:d6: 73:93:d3:05:c6:12:15:f8:72:73:5f:fb:45:82:ea: 86:6a:d5:82:e2:ab:1c:e7:6c:73:eb:56:21:37:05: 7f:21:e1:67:07:94:ea:30:3e:72:90:98:47:0c:c2: 47:22:c1:e5:a1:c9:c6:90:59:2f:17:72:05:d6:3d: 99:87:bc:e1:76:3d:d9:cf:e1:af:51:34:b2:e2:b4: 6f:7a:95:42:a3:4f:ab:c0:00:d7:2a:8e:0d:72:cc: 33:9a:47:05:a7:53:e8:af:ea:70:56:73:50:70:6c: 6c:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:71:5C:A4:B0:34:74:C9:19:82:58:B9:50:79:EF:C2:AF:C5:6E:8C X509v3 Authority Key Identifier: keyid:E1:06:4B:B6:01:A1:31:08:76:1B:54:57:A1:F7:15:24:C4:A4:CB:CE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914B57F/B2457D6A4E5911EA9EE9E20DC4F9AE02/4QZLtgGhMQh2G1RXofcVJMSky84.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4QZLtgGhMQh2G1RXofcVJMSky84.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914B57F/B2457D6A4E5911EA9EE9E20DC4F9AE02/4QZLtgGhMQh2G1RXofcVJMSky84.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a6:13:61:01:42:fa:0a:92:33:34:a7:db:12:3a:91:6e:04:03: a7:44:50:e7:04:28:34:3f:a7:74:c2:73:16:d6:aa:4c:4e:ea: 07:64:49:21:b8:b2:1f:fb:c2:b3:dc:d6:52:cc:06:fc:4e:c0: 13:48:01:06:79:ce:a3:99:4f:9a:3b:d2:19:10:10:64:21:9c: ce:85:dc:00:e7:f1:66:30:aa:53:10:cf:89:e4:26:ce:85:ed: a3:79:1d:45:cd:c3:96:32:24:a9:59:28:f9:b9:99:fe:fa:dc: c7:ab:17:bf:70:23:e0:66:b5:b4:4e:47:6e:7a:05:a4:1b:17: e2:24:86:11:68:25:f1:bf:a0:00:08:24:35:0e:b7:1e:bd:cc: 18:39:d9:d6:28:65:91:12:24:2e:dc:9f:bc:bd:0c:2d:a9:59: ed:b7:96:08:43:79:6e:28:1b:29:a4:c7:a5:7c:ec:1d:e7:a4: ce:f6:ba:90:34:65:16:32:91:18:73:3e:e7:d8:ec:a7:2d:32: ef:b5:c0:25:74:89:7f:9e:36:53:db:3b:db:a0:44:78:8e:f0: 69:e9:fa:6b:be:32:43:c4:8a:5a:a4:55:6d:07:7f:b7:8d:83: d1:f8:77:96:97:25:4a:f9:e2:57:70:90:24:db:bd:9f:d9:c4: e2:a3:a6:ae -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCyIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEI1N0YxMTAvBgNVBAUTKEUxMDY0QkI2MDFBMTMxMDg3NjFCNTQ1N0ExRjcxNTI0 QzRBNENCQ0UwHhcNMjUxMTA0MTkyMzU1WhcNMjUxMTExMTkyMzU1WjAYMRYwFAYD VQQDEw02OTBhNTJjYi05OWQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoXjXdcGLwrFSwuwzq5vhHIK5wf4M5/2jwf3O+jahfRj/PrCRTpDxmluttJOZ t1aXYvgHA5cPVgAgWbicuiJSwk4Prfcv3VrvkJneB8IRyEu+zYJOARfhubHXBNyl U7mXxazmcCrJO1Z9xJ5FF3s/rfPVwVTRoj8p4D9iEbI0mIndf2rvZyCvwQKjk+j1 Lj4Tz6oqmNZzk9MFxhIV+HJzX/tFguqGatWC4qsc52xz61YhNwV/IeFnB5TqMD5y kJhHDMJHIsHlocnGkFkvF3IF1j2Zh7zhdj3Zz+GvUTSy4rRvepVCo0+rwADXKo4N cswzmkcFp1Por+pwVnNQcGxsQwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJZxXKSw NHTJGYJYuVB578KvxW6MMB8GA1UdIwQYMBaAFOEGS7YBoTEIdhtUV6H3FSTEpMvO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QjU3Ri9CMjQ1N0Q2QTRF NTkxMUVBOUVFOUUyMERDNEY5QUUwMi80UVpMdGdHaE1RaDJHMVJYb2ZjVkpNU2t5 ODQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRRWkx0Z0doTVFoMkcxUlhvZmNWSk1Ta3k4NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QjU3Ri9CMjQ1N0Q2QTRFNTkxMUVBOUVFOUUyMERDNEY5QUUwMi80UVpMdGdHaE1R aDJHMVJYb2ZjVkpNU2t5ODQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCmE2EBQvoKkjM0p9sSOpFuBAOnRFDnBCg0P6d0wnMW1qpMTuoHZEkh uLIf+8Kz3NZSzAb8TsATSAEGec6jmU+aO9IZEBBkIZzOhdwA5/FmMKpTEM+J5CbO he2jeR1FzcOWMiSpWSj5uZn++tzHqxe/cCPgZrW0TkduegWkGxfiJIYRaCXxv6AA CCQ1DrcevcwYOdnWKGWREiQu3J+8vQwtqVntt5YIQ3luKBsppMelfOwd56TO9rqQ NGUWMpEYcz7n2OynLTLvtcAldIl/njZT2zvboER4jvBp6fprvjJDxIpapFVtB3+3 jYPR+HeWlyVK+eJXcJAk272f2cTio6au -----END CERTIFICATE-----Generated at Wed Nov 5 18:09:19 2025 by rpki-client