$ rpki-client -vvf rpki.apnic.net/member_repository/A9157DAE/61666C0ED68911E8B6811433C4F9AE02/4bgHrCt0Vfux4xYGjR0BcSYLscc.mft File: 4bgHrCt0Vfux4xYGjR0BcSYLscc.mft (raw, json) Hash identifier: Faid9HmnlM73J9N8Bk5VoU6K+L1FuzF8Gn3CSTnQCag= Subject key identifier: 22:A9:63:62:1A:A7:F0:9E:8D:3E:CE:BB:22:F7:50:74:23:02:17:EF Authority key identifier: E1:B8:07:AC:2B:74:55:FB:B1:E3:16:06:8D:1D:01:71:26:0B:B1:C7 Certificate issuer: /CN=A9157DAE/serialNumber=E1B807AC2B7455FBB1E316068D1D0171260BB1C7 Certificate serial: 135C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4bgHrCt0Vfux4xYGjR0BcSYLscc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157DAE/61666C0ED68911E8B6811433C4F9AE02/4bgHrCt0Vfux4xYGjR0BcSYLscc.mft Manifest number: 12DE Signing time: Mon 20 Oct 2025 17:30:02 +0000 Manifest this update: Mon 20 Oct 2025 17:30:01 +0000 Manifest next update: Mon 27 Oct 2025 17:30:01 +0000 Files and hashes: 1: 4bgHrCt0Vfux4xYGjR0BcSYLscc.crl (hash: ctbINREv4/aBEbZGMgxZJ35BnDmafOOWZxYNu4tukmk=) 2: A6A4A20E89B911EC8FDB572DC4F9AE02.roa (hash: jk5NfHi6Ak10G3qvwwRLBuA+9+MuEQTJVNCIOpp4ijc=) 3: A8949F64D86E11E982BA0712C4F9AE02.roa (hash: o0TBqHxczgW2iXEBGTx5nw86Q8zs7jfB/2ZiH2tcXBM=) 4: 1F8378E6BCBD11EBAC9A4744C4F9AE02.roa (hash: J5LxjosxnnfdXaMAoaZ/PL1BfkizkN1e40crDyxzXgM=) 5: 9EE31802996B11E9B3FEED46C4F9AE02.roa (hash: GdNQEvmzlHfA6Ec8mmP8z6x+jIWG7iAnHlvJMuf8oD8=) 6: F6EBC724B24211EF99C46E64C4F9AE02.roa (hash: q2Nqb/hrcV90WNVexwR/NHfj/Q0Tv7rC0yL9DHC6X3M=) 7: D17E9426B24211EFBBDC2164C4F9AE02.roa (hash: 08uSCXwlwYJnGMem9e+DAMnS4EN8A9/G3dvb9XlzVbk=) 8: 161983C2B9EB11EDB53AC21BC4F9AE02.roa (hash: 21MmIK/xKiS7JETWE4m4JFsmki6dx7l2EGE0grkpOo4=) 9: C2E189AC7F8C11EF94FCB676C4F9AE02.roa (hash: RAc63GKSag+ebIvPIiKjuswG8wAgmCrcqifdzue1EA8=) 10: FDB29514452511E98F23AE4FC4F9AE02.roa (hash: pyXuQQMaaHpRKrd64JzrpDvcZINK8BGOr87BtX8mKCw=) 11: 8E6CF9C8E59911E98D355932C4F9AE02.roa (hash: duhPOulpnnqLJOw021zARLEkW5qMCDlozjaUuWOU1CE=) 12: F99AFAFE1D5411EA921E0351C4F9AE02.roa (hash: RBZSewamTngEQkgjLa0OkH4nQrMAppxSjX91nS2Wpzo=) 13: C21FA1CE080511EAA9457C67C4F9AE02.roa (hash: PiSgVIn+A3YVcVJ8J1LY1Q9+m55+zt9vsCjTvJtZIKc=) 14: 0038D872072E11EB8914E540C4F9AE02.roa (hash: bM9HkA9Kov8pVlsp7/+B8Lhib1zUTj1baRTYw1iNq78=) 15: D8E0EC82927711E985E0423AC4F9AE02.roa (hash: +fJoTern1FEL3hWeQl1ij5UIzJGzXQGhkR014UlHjWU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157DAE/61666C0ED68911E8B6811433C4F9AE02/4bgHrCt0Vfux4xYGjR0BcSYLscc.crl rsync://rpki.apnic.net/member_repository/A9157DAE/61666C0ED68911E8B6811433C4F9AE02/4bgHrCt0Vfux4xYGjR0BcSYLscc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4bgHrCt0Vfux4xYGjR0BcSYLscc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Oct 2025 17:30:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4956 (0x135c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157DAE, serialNumber=E1B807AC2B7455FBB1E316068D1D0171260BB1C7 Validity Not Before: Oct 20 17:30:01 2025 GMT Not After : Oct 27 17:30:01 2025 GMT Subject: CN=68f6719a-6e39 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:31:eb:4c:98:63:9c:2b:ab:33:e0:98:f9:2c: 2c:cf:4b:ac:30:fa:e4:5e:b8:2f:54:73:be:ea:c8: 21:8d:53:45:4a:08:60:a4:fd:d6:34:6f:fe:38:5c: 60:97:c5:ed:56:d6:79:10:56:8b:c3:54:da:17:d8: 90:9e:9c:32:b9:44:75:6a:6f:37:63:36:c7:e8:a6: a3:9a:6c:7c:a2:6b:c5:14:3c:08:7e:98:87:10:c4: cd:d0:e3:a0:db:b3:b9:1c:23:10:5a:96:54:61:aa: a2:8e:b1:85:b9:5f:d6:4b:64:b4:f3:02:10:b2:6a: ed:db:fd:0c:4f:4d:c7:c9:e9:39:b5:86:c6:ad:34: 5f:45:03:04:51:cf:cc:d8:4e:86:5d:d7:b5:39:52: 34:78:80:74:5e:38:aa:e9:50:7d:91:90:5d:a1:11: fb:0e:37:22:e8:fb:72:a8:d2:6d:a8:1d:01:42:d2: 81:e1:43:7b:31:87:27:01:ad:c5:dc:f1:98:ff:f5: 1b:54:8f:0d:f1:87:ac:de:2b:01:d3:cb:16:4a:2b: 13:7a:bb:71:dd:0c:df:bc:f2:db:7f:c9:18:07:0a: 9c:89:4b:db:c8:fe:99:50:be:9f:41:b2:6c:c7:76: 45:83:a2:72:df:7c:04:60:35:0d:8d:54:10:1f:64: 6e:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:A9:63:62:1A:A7:F0:9E:8D:3E:CE:BB:22:F7:50:74:23:02:17:EF X509v3 Authority Key Identifier: keyid:E1:B8:07:AC:2B:74:55:FB:B1:E3:16:06:8D:1D:01:71:26:0B:B1:C7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157DAE/61666C0ED68911E8B6811433C4F9AE02/4bgHrCt0Vfux4xYGjR0BcSYLscc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4bgHrCt0Vfux4xYGjR0BcSYLscc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157DAE/61666C0ED68911E8B6811433C4F9AE02/4bgHrCt0Vfux4xYGjR0BcSYLscc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a0:6d:6c:f2:f4:f3:22:8e:56:0f:aa:f8:48:c5:a1:fc:d6:76: 88:37:3e:6b:6c:56:5d:4a:dd:ec:14:5f:ae:6d:52:c0:dd:79: 66:4e:98:94:fd:71:06:1d:3d:f5:01:0d:fb:68:dc:ba:a1:e9: 02:46:21:ea:13:9a:0a:87:cf:25:4b:1d:0d:67:65:c1:e6:c5: 8e:be:8f:2c:98:a2:29:ae:e2:06:d3:83:ea:5d:ec:50:eb:c4: 5f:7c:d8:60:db:43:6d:34:00:fd:e1:47:d4:ec:12:f8:72:49: 2d:3d:f9:30:5e:20:87:14:a0:77:75:be:ee:4b:ef:86:5c:08: 29:af:a4:6a:f2:a8:5a:0d:82:54:19:c3:fa:32:cd:8d:4c:60: 21:82:81:ab:c9:49:9a:59:fb:c8:05:cd:d8:40:bf:fe:7f:0d: ad:5a:c8:45:3c:9d:76:50:67:df:59:70:67:42:f0:20:95:23: 45:a3:6c:fe:1f:c3:b7:cd:7d:ac:54:2c:41:39:9a:12:6e:39: 84:6a:28:f1:41:08:a5:7a:1a:b6:fa:43:48:8f:a4:18:fa:af: c4:ff:2f:cd:24:4b:7b:8c:6f:68:e5:a5:d0:12:d5:d3:c2:6c: ab:ac:9c:22:1d:ac:6c:72:02:10:ee:c3:e1:67:bc:ee:d9:60: 09:d9:83:1c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICE1wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdEQUUxMTAvBgNVBAUTKEUxQjgwN0FDMkI3NDU1RkJCMUUzMTYwNjhEMUQwMTcx MjYwQkIxQzcwHhcNMjUxMDIwMTczMDAxWhcNMjUxMDI3MTczMDAxWjAYMRYwFAYD VQQDEw02OGY2NzE5YS02ZTM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwTHrTJhjnCurM+CY+Swsz0usMPrkXrgvVHO+6sghjVNFSghgpP3WNG/+OFxg l8XtVtZ5EFaLw1TaF9iQnpwyuUR1am83YzbH6Kajmmx8omvFFDwIfpiHEMTN0OOg 27O5HCMQWpZUYaqijrGFuV/WS2S08wIQsmrt2/0MT03Hyek5tYbGrTRfRQMEUc/M 2E6GXde1OVI0eIB0Xjiq6VB9kZBdoRH7Djci6PtyqNJtqB0BQtKB4UN7MYcnAa3F 3PGY//UbVI8N8Yes3isB08sWSisTertx3QzfvPLbf8kYBwqciUvbyP6ZUL6fQbJs x3ZFg6Jy33wEYDUNjVQQH2RuGQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCKpY2Ia p/CejT7OuyL3UHQjAhfvMB8GA1UdIwQYMBaAFOG4B6wrdFX7seMWBo0dAXEmC7HH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0RBRS82MTY2NkMwRUQ2 ODkxMUU4QjY4MTE0MzNDNEY5QUUwMi80YmdIckN0MFZmdXg0eFlHalIwQmNTWUxz Y2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRiZ0hyQ3QwVmZ1eDR4WUdqUjBCY1NZTHNjYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 N0RBRS82MTY2NkMwRUQ2ODkxMUU4QjY4MTE0MzNDNEY5QUUwMi80YmdIckN0MFZm dXg0eFlHalIwQmNTWUxzY2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCgbWzy9PMijlYPqvhIxaH81naINz5rbFZdSt3sFF+ubVLA3XlmTpiU /XEGHT31AQ37aNy6oekCRiHqE5oKh88lSx0NZ2XB5sWOvo8smKIpruIG04PqXexQ 68RffNhg20NtNAD94UfU7BL4ckktPfkwXiCHFKB3db7uS++GXAgpr6Rq8qhaDYJU GcP6Ms2NTGAhgoGryUmaWfvIBc3YQL/+fw2tWshFPJ12UGffWXBnQvAglSNFo2z+ H8O3zX2sVCxBOZoSbjmEaijxQQilehq2+kNIj6QY+q/E/y/NJEt7jG9o5aXQEtXT wmyrrJwiHaxscgIQ7sPhZ7zu2WAJ2YMc -----END CERTIFICATE-----Generated at Wed Oct 22 10:50:02 2025 by rpki-client