$ rpki-client -vvf rpki.apnic.net/member_repository/A915E005/9BE781FEC69911E5B0AFE54EC4F9AE02/4Cvu6I2DW9DkJUygjXwDvFcZdIQ.mft File: 4Cvu6I2DW9DkJUygjXwDvFcZdIQ.mft (raw, json) Hash identifier: QrvQbCyObTA+GMPTyy9WDkPVBNyIsitZQR4M2dfMWHE= Subject key identifier: F6:2B:5D:9A:B1:E9:90:C1:8B:10:B5:37:6C:80:F0:E1:7B:88:93:BA Authority key identifier: E0:2B:EE:E8:8D:83:5B:D0:E4:25:4C:A0:8D:7C:03:BC:57:19:74:84 Certificate issuer: /CN=A915E005/serialNumber=E02BEEE88D835BD0E4254CA08D7C03BC57197484 Certificate serial: 2252 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4Cvu6I2DW9DkJUygjXwDvFcZdIQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915E005/9BE781FEC69911E5B0AFE54EC4F9AE02/4Cvu6I2DW9DkJUygjXwDvFcZdIQ.mft Manifest number: 2242 Signing time: Sun 02 Nov 2025 15:53:00 +0000 Manifest this update: Sun 02 Nov 2025 15:53:00 +0000 Manifest next update: Sun 09 Nov 2025 15:53:00 +0000 Files and hashes: 1: 4Cvu6I2DW9DkJUygjXwDvFcZdIQ.crl (hash: FZzcfssTttHBALLKuwyt9wqFyJ6gCBnwvbrkKYuODx4=) 2: CD4CD0B654F311E7AC64ED3AC4F9AE02.roa (hash: iH2xmS1GVsSNNCZWscwdxJt8FMGLF9Yh7e5xIVsXSm8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915E005/9BE781FEC69911E5B0AFE54EC4F9AE02/4Cvu6I2DW9DkJUygjXwDvFcZdIQ.crl rsync://rpki.apnic.net/member_repository/A915E005/9BE781FEC69911E5B0AFE54EC4F9AE02/4Cvu6I2DW9DkJUygjXwDvFcZdIQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4Cvu6I2DW9DkJUygjXwDvFcZdIQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 15:52:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8786 (0x2252) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915E005, serialNumber=E02BEEE88D835BD0E4254CA08D7C03BC57197484 Validity Not Before: Nov 2 15:53:00 2025 GMT Not After : Nov 9 15:53:00 2025 GMT Subject: CN=69077e5c-a1b9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:6b:e0:e4:66:a6:38:74:af:07:f3:5b:75:79: df:a1:cb:8f:82:18:f1:bb:ba:fe:44:6d:6a:1c:25: b4:f9:04:ad:f5:c9:26:d6:d0:fb:a1:ef:6d:48:0f: c7:04:0e:15:cc:07:c9:52:0d:c7:6c:c9:fc:63:e2: 87:07:0f:83:09:af:11:56:25:c1:7a:02:ee:94:ab: 08:8a:05:d7:16:3e:f5:65:c3:e5:38:98:b1:7f:f9: ad:55:3c:61:c0:68:05:eb:80:30:8c:a0:8a:1d:fa: 8f:a5:d0:72:60:57:bb:ec:48:bf:1d:98:0c:8f:88: 64:f6:c8:bc:86:eb:18:95:49:90:c1:f7:44:f2:90: 30:53:b3:45:b0:3f:0c:7a:b0:42:dc:93:bd:39:1a: 5a:bc:5a:da:9c:b5:71:45:fb:cd:3b:6b:77:76:3d: d1:a0:62:50:59:93:d6:20:64:2a:f2:91:f5:58:0b: ef:ed:74:03:a6:fd:75:51:bc:55:60:70:f6:b0:44: 02:7a:a8:5c:ed:d0:66:2c:5b:71:df:30:63:0a:19: 7c:2f:86:6b:e3:d4:73:89:af:aa:d2:93:db:87:eb: 3a:52:ff:99:67:28:ec:de:06:e7:06:d4:c7:22:01: 85:86:75:9a:92:3f:2d:98:96:6c:6e:39:88:23:03: 9a:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:2B:5D:9A:B1:E9:90:C1:8B:10:B5:37:6C:80:F0:E1:7B:88:93:BA X509v3 Authority Key Identifier: keyid:E0:2B:EE:E8:8D:83:5B:D0:E4:25:4C:A0:8D:7C:03:BC:57:19:74:84 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915E005/9BE781FEC69911E5B0AFE54EC4F9AE02/4Cvu6I2DW9DkJUygjXwDvFcZdIQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4Cvu6I2DW9DkJUygjXwDvFcZdIQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915E005/9BE781FEC69911E5B0AFE54EC4F9AE02/4Cvu6I2DW9DkJUygjXwDvFcZdIQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 18:15:4b:bc:25:d3:4c:2b:cf:ee:1a:28:ad:f4:1d:c6:ca:50: 20:96:c9:57:dd:16:82:f5:27:4b:aa:f3:71:fb:6a:e4:7e:75: 55:f7:bd:a9:07:1a:f9:ed:66:87:4b:27:9d:f4:db:73:33:c4: 45:52:5f:6d:3b:80:80:6b:3c:e7:77:d6:6b:b8:3d:0c:84:53: 48:e6:cf:1d:17:21:92:94:b1:2f:4b:8e:b7:01:5d:29:66:7c: 01:ac:a3:41:bb:b2:8e:2e:ab:ab:42:05:57:e6:28:74:1b:2a: 37:92:eb:10:df:60:5d:04:61:dd:e4:0d:34:ce:2d:74:be:57: 27:a4:50:32:a5:4c:b4:d3:27:98:2c:aa:f7:6b:bb:e4:8a:6c: b7:23:f1:c3:f1:26:fa:84:fc:0d:87:dd:a0:3c:f3:0d:bd:6f: 08:b0:ae:b2:e9:d2:f3:6f:e9:c4:2c:f8:8e:c6:32:11:fd:f0: 70:a8:54:a3:da:c4:cf:0c:f3:49:47:a2:f8:5d:9a:0d:b0:62: 4d:cc:0a:0d:11:a0:11:8d:1b:65:b2:1a:59:73:23:76:1c:b7: 48:9a:3a:6a:d2:91:fb:e1:71:01:37:e2:20:4b:85:9b:ad:81: ae:07:38:0e:d7:16:59:da:9f:a1:60:86:f0:7d:a7:e9:02:11: cd:2c:f1:e9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIlIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUUwMDUxMTAvBgNVBAUTKEUwMkJFRUU4OEQ4MzVCRDBFNDI1NENBMDhEN0MwM0JD NTcxOTc0ODQwHhcNMjUxMTAyMTU1MzAwWhcNMjUxMTA5MTU1MzAwWjAYMRYwFAYD VQQDEw02OTA3N2U1Yy1hMWI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAomvg5GamOHSvB/NbdXnfocuPghjxu7r+RG1qHCW0+QSt9ckm1tD7oe9tSA/H BA4VzAfJUg3HbMn8Y+KHBw+DCa8RViXBegLulKsIigXXFj71ZcPlOJixf/mtVTxh wGgF64AwjKCKHfqPpdByYFe77Ei/HZgMj4hk9si8husYlUmQwfdE8pAwU7NFsD8M erBC3JO9ORpavFranLVxRfvNO2t3dj3RoGJQWZPWIGQq8pH1WAvv7XQDpv11UbxV YHD2sEQCeqhc7dBmLFtx3zBjChl8L4Zr49Rzia+q0pPbh+s6Uv+ZZyjs3gbnBtTH IgGFhnWakj8tmJZsbjmIIwOacwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPYrXZqx 6ZDBixC1N2yA8OF7iJO6MB8GA1UdIwQYMBaAFOAr7uiNg1vQ5CVMoI18A7xXGXSE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RTAwNS85QkU3ODFGRUM2 OTkxMUU1QjBBRkU1NEVDNEY5QUUwMi80Q3Z1NkkyRFc5RGtKVXlnalh3RHZGY1pk SVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRDdnU2STJEVzlEa0pVeWdqWHdEdkZjWmRJUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RTAwNS85QkU3ODFGRUM2OTkxMUU1QjBBRkU1NEVDNEY5QUUwMi80Q3Z1NkkyRFc5 RGtKVXlnalh3RHZGY1pkSVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAYFUu8JdNMK8/uGiit9B3GylAglslX3RaC9SdLqvNx+2rkfnVV972p Bxr57WaHSyed9NtzM8RFUl9tO4CAazznd9ZruD0MhFNI5s8dFyGSlLEvS463AV0p ZnwBrKNBu7KOLqurQgVX5ih0Gyo3kusQ32BdBGHd5A00zi10vlcnpFAypUy00yeY LKr3a7vkimy3I/HD8Sb6hPwNh92gPPMNvW8IsK6y6dLzb+nELPiOxjIR/fBwqFSj 2sTPDPNJR6L4XZoNsGJNzAoNEaARjRtlshpZcyN2HLdImjpq0pH74XEBN+IgS4Wb rYGuBzgO1xZZ2p+hYIbwfafpAhHNLPHp -----END CERTIFICATE-----Generated at Mon Nov 3 18:18:11 2025 by rpki-client