$ rpki-client -vvf rpki.apnic.net/member_repository/A9157B74/CE00425A36BC11F081D55F17C4F9AE02/v4hgssA3e7Xv7b461A8c8YnyrLI.mft File: v4hgssA3e7Xv7b461A8c8YnyrLI.mft (raw, json) Hash identifier: GD1dbR+4pCzKzTAQetUld6VLCPCTKGvk5nMUtELThOs= Subject key identifier: 83:85:24:8D:CF:8C:73:07:71:C9:92:48:2E:86:68:7D:B2:D4:B9:EB Authority key identifier: BF:88:60:B2:C0:37:7B:B5:EF:ED:BE:3A:D4:0F:1C:F1:89:F2:AC:B2 Certificate issuer: /CN=A9157B74/serialNumber=BF8860B2C0377BB5EFEDBE3AD40F1CF189F2ACB2 Certificate serial: 5A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/v4hgssA3e7Xv7b461A8c8YnyrLI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157B74/CE00425A36BC11F081D55F17C4F9AE02/v4hgssA3e7Xv7b461A8c8YnyrLI.mft Manifest number: 58 Signing time: Mon 03 Nov 2025 07:12:02 +0000 Manifest this update: Mon 03 Nov 2025 07:12:01 +0000 Manifest next update: Mon 10 Nov 2025 07:12:01 +0000 Files and hashes: 1: v4hgssA3e7Xv7b461A8c8YnyrLI.crl (hash: DxcrMNgYa2gPYdeldbkqiVxr/9jzhsSE7ouddTKKhs8=) 2: 074A7A1436C511F0A4E5C52BC4F9AE02.roa (hash: fSlcIZdpNT8EGzQOFMuevlDD2po6QEISgofqICdF3UI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157B74/CE00425A36BC11F081D55F17C4F9AE02/v4hgssA3e7Xv7b461A8c8YnyrLI.crl rsync://rpki.apnic.net/member_repository/A9157B74/CE00425A36BC11F081D55F17C4F9AE02/v4hgssA3e7Xv7b461A8c8YnyrLI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/v4hgssA3e7Xv7b461A8c8YnyrLI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 07:12:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 90 (0x5a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157B74, serialNumber=BF8860B2C0377BB5EFEDBE3AD40F1CF189F2ACB2 Validity Not Before: Nov 3 07:12:01 2025 GMT Not After : Nov 10 07:12:01 2025 GMT Subject: CN=690855c2-11ba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:01:be:6b:4e:6f:69:0d:a1:56:3a:6c:8d:d2: 3a:5e:8a:ec:83:4b:e3:89:f4:9b:94:8b:fb:68:ba: 92:e2:3a:7b:11:e7:79:46:a4:9a:74:f9:f2:d5:f4: 46:e1:4f:95:ff:31:fb:8a:ae:d8:db:60:88:b5:19: 67:3f:2e:8a:41:13:b7:84:85:70:f1:69:f2:bc:c6: ec:98:01:a0:19:b1:dc:e6:21:37:e1:33:d7:9e:10: e4:7e:6e:bb:90:85:2a:a4:27:57:7b:f1:b9:02:95: c2:1e:94:9b:3f:01:59:e5:f5:3a:50:08:10:66:a2: 91:f9:c0:5d:5a:fe:01:d6:8d:91:b0:3e:b5:01:7a: 12:4c:cd:e0:d1:a4:c6:2f:ab:d9:d0:37:c1:d6:59: 40:9a:51:19:5b:1e:ea:3e:9f:74:d6:bc:74:9a:34: 13:02:cd:c4:d9:19:97:b8:18:a4:77:e6:ad:44:7e: 19:0a:43:be:f1:c4:0b:49:d2:c4:10:bc:b4:52:db: 23:16:c0:df:87:eb:b7:7b:7a:64:74:ca:d0:43:36: 98:a4:9c:7f:61:15:52:b2:53:27:a6:67:a0:87:a8: 46:89:6b:a4:96:8a:a4:72:59:08:90:ef:b0:ef:fb: e4:5e:60:68:19:a4:a7:ac:b0:b7:bb:34:dc:0b:7a: a0:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:85:24:8D:CF:8C:73:07:71:C9:92:48:2E:86:68:7D:B2:D4:B9:EB X509v3 Authority Key Identifier: keyid:BF:88:60:B2:C0:37:7B:B5:EF:ED:BE:3A:D4:0F:1C:F1:89:F2:AC:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157B74/CE00425A36BC11F081D55F17C4F9AE02/v4hgssA3e7Xv7b461A8c8YnyrLI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/v4hgssA3e7Xv7b461A8c8YnyrLI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157B74/CE00425A36BC11F081D55F17C4F9AE02/v4hgssA3e7Xv7b461A8c8YnyrLI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 07:5d:68:be:4a:50:00:31:dd:e7:72:0c:0c:0f:58:18:bd:4c: 06:de:7a:94:0a:e7:02:e1:70:ac:ca:34:fa:49:87:a6:4c:be: f7:72:2a:db:51:7c:8b:67:7f:fb:41:05:26:6a:61:81:54:54: ed:72:0e:2c:b7:fa:77:05:2f:32:03:71:0e:58:7d:44:2b:46: 9d:cb:5a:ff:6e:21:66:7d:1c:10:5b:8c:10:92:fb:46:ef:3b: 01:6c:e2:ec:46:0e:ad:e3:ee:63:b3:38:08:ca:b0:f7:4e:db: 8a:33:75:56:43:b6:3d:2f:d8:7f:ef:94:90:5a:0a:a2:76:23: 72:c4:b1:c7:fe:b3:00:1a:f1:1a:6b:30:f2:cc:4a:28:ad:4f: ec:fc:26:91:1c:80:6f:3b:e6:05:d2:fe:b0:54:6e:78:0c:bc: 58:57:a0:6f:a2:57:c5:a4:f5:97:fb:4d:64:42:79:53:b7:f4: 64:db:a2:d4:24:b7:00:a5:80:a9:51:f9:99:f3:80:e9:72:74: e7:a8:50:52:96:7b:fc:23:dd:8e:e4:0a:3f:cb:cb:44:62:dd: fb:27:a2:72:31:61:18:c5:e2:26:81:60:97:c4:60:ee:ac:88: 37:cd:a9:ff:30:ba:90:21:36:96:73:52:b1:be:f0:d1:2b:1c: c0:88:dc:ed -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBWjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 N0I3NDExMC8GA1UEBRMoQkY4ODYwQjJDMDM3N0JCNUVGRURCRTNBRDQwRjFDRjE4 OUYyQUNCMjAeFw0yNTExMDMwNzEyMDFaFw0yNTExMTAwNzEyMDFaMBgxFjAUBgNV BAMTDTY5MDg1NWMyLTExYmEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDgAb5rTm9pDaFWOmyN0jpeiuyDS+OJ9JuUi/toupLiOnsR53lGpJp0+fLV9Ebh T5X/MfuKrtjbYIi1GWc/LopBE7eEhXDxafK8xuyYAaAZsdzmITfhM9eeEOR+bruQ hSqkJ1d78bkClcIelJs/AVnl9TpQCBBmopH5wF1a/gHWjZGwPrUBehJMzeDRpMYv q9nQN8HWWUCaURlbHuo+n3TWvHSaNBMCzcTZGZe4GKR35q1EfhkKQ77xxAtJ0sQQ vLRS2yMWwN+H67d7emR0ytBDNpiknH9hFVKyUyemZ6CHqEaJa6SWiqRyWQiQ77Dv ++ReYGgZpKessLe7NNwLeqB3AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUg4Ukjc+M cwdxyZJILoZofbLUueswHwYDVR0jBBgwFoAUv4hgssA3e7Xv7b461A8c8YnyrLIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU3Qjc0L0NFMDA0MjVBMzZC QzExRjA4MUQ1NUYxN0M0RjlBRTAyL3Y0aGdzc0EzZTdYdjdiNDYxQThjOFlueXJM SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvdjRoZ3NzQTNlN1h2N2I0NjFBOGM4WW55ckxJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU3 Qjc0L0NFMDA0MjVBMzZCQzExRjA4MUQ1NUYxN0M0RjlBRTAyL3Y0aGdzc0EzZTdY djdiNDYxQThjOFlueXJMSS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAAddaL5KUAAx3edyDAwPWBi9TAbeepQK5wLhcKzKNPpJh6ZMvvdyKttR fItnf/tBBSZqYYFUVO1yDiy3+ncFLzIDcQ5YfUQrRp3LWv9uIWZ9HBBbjBCS+0bv OwFs4uxGDq3j7mOzOAjKsPdO24ozdVZDtj0v2H/vlJBaCqJ2I3LEscf+swAa8Rpr MPLMSiitT+z8JpEcgG875gXS/rBUbngMvFhXoG+iV8Wk9Zf7TWRCeVO39GTbotQk twClgKlR+ZnzgOlydOeoUFKWe/wj3Y7kCj/Ly0Ri3fsnonIxYRjF4iaBYJfEYO6s iDfNqf8wupAhNpZzUrG+8NErHMCI3O0= -----END CERTIFICATE-----Generated at Mon Nov 3 18:10:13 2025 by rpki-client