$ rpki-client -vvf rpki.apnic.net/member_repository/A9170C53/CE445BD0DA5B11ED96747C5AC4F9AE02/4dFD2djqAiJMHLDJFey4TuKLWqo.mft File: 4dFD2djqAiJMHLDJFey4TuKLWqo.mft (raw, json) Hash identifier: Z8MzdhG1VCSRdyg49+Z06Q7U5o+7uGrgWyEfYlCDxlg= Subject key identifier: B4:F6:EF:68:A2:42:E2:00:B5:90:1E:17:88:33:D2:D7:0B:4A:0D:6F Authority key identifier: E1:D1:43:D9:D8:EA:02:22:4C:1C:B0:C9:15:EC:B8:4E:E2:8B:5A:AA Certificate issuer: /CN=A9170C53/serialNumber=E1D143D9D8EA02224C1CB0C915ECB84EE28B5AAA Certificate serial: 01E8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4dFD2djqAiJMHLDJFey4TuKLWqo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170C53/CE445BD0DA5B11ED96747C5AC4F9AE02/4dFD2djqAiJMHLDJFey4TuKLWqo.mft Manifest number: 01DB Signing time: Thu 23 Oct 2025 04:19:43 +0000 Manifest this update: Thu 23 Oct 2025 04:19:42 +0000 Manifest next update: Thu 30 Oct 2025 04:19:42 +0000 Files and hashes: 1: 4dFD2djqAiJMHLDJFey4TuKLWqo.crl (hash: yzTW4ZdSoDwtBwIyMeZhR0dv7cwO5eFTzlq61DAmaCY=) 2: 916EFEE0DA6011ED9BC6175FC4F9AE02.roa (hash: RDPi47SZcDAz4xmQe0PzevESUJOCnp77k9KEsG3kOPw=) 3: 9283C1F8DA6011ED9BC6175FC4F9AE02.roa (hash: 4ZxnpGjaykPQCM8pL2N1CRQo3+QNzrfE6n7zpJytINg=) 4: 90AE648CDA6011ED9BC6175FC4F9AE02.roa (hash: +lHlOLbl/5RnNOcPx8/sJld2TYpyfZTtFIxadDBZYdU=) 5: 91FAB1ECDA6011ED9BC6175FC4F9AE02.roa (hash: v8W7oHHzaQTWG5Q9zg44OzZnUjsO7rk1vnHeE+xeDvw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170C53/CE445BD0DA5B11ED96747C5AC4F9AE02/4dFD2djqAiJMHLDJFey4TuKLWqo.crl rsync://rpki.apnic.net/member_repository/A9170C53/CE445BD0DA5B11ED96747C5AC4F9AE02/4dFD2djqAiJMHLDJFey4TuKLWqo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4dFD2djqAiJMHLDJFey4TuKLWqo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 30 Oct 2025 04:19:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 488 (0x1e8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170C53, serialNumber=E1D143D9D8EA02224C1CB0C915ECB84EE28B5AAA Validity Not Before: Oct 23 04:19:42 2025 GMT Not After : Oct 30 04:19:42 2025 GMT Subject: CN=68f9acde-aca2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:60:76:ef:cb:c7:17:27:ec:a3:ec:a9:2c:14: f2:6a:db:f2:14:9f:a2:be:15:62:e3:0e:6b:87:39: 0b:29:35:b1:85:e4:e1:aa:e3:4f:3b:e7:a1:a6:76: f2:21:f9:07:f0:23:93:b1:c5:7b:8a:e7:28:ce:a9: 53:21:79:bf:51:ac:56:cf:48:51:c1:c5:12:0b:8e: c7:3b:6b:80:69:17:96:3e:3e:eb:ce:e1:8a:25:17: 7e:de:ad:21:4b:d5:1a:42:c7:df:0f:6c:30:a1:d8: d7:f5:16:fe:99:55:11:8f:c8:39:cb:b1:a6:60:a3: f0:b0:8a:e1:0a:91:53:02:bc:28:b5:67:b7:d4:d3: 90:fe:4f:31:61:4b:c8:63:f6:55:f4:f4:46:d8:81: bd:ea:3b:ed:83:0e:c8:d2:b1:09:e4:44:ec:87:f0: 43:6c:c0:9a:fb:1d:ad:db:68:eb:c5:4e:0a:d4:f2: cb:c5:8e:63:35:99:e8:85:07:3f:84:18:1f:e9:a3: b0:f5:6e:54:d5:c4:a9:cf:01:33:7f:1a:60:6b:7c: 43:b5:c0:54:57:fd:e1:f8:31:ea:0d:2e:c5:5d:8c: 28:96:80:05:9d:80:25:f1:48:0c:e8:64:b8:24:16: a4:6b:86:0b:b0:e9:d4:c8:36:84:4c:96:1e:bb:4e: c8:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:F6:EF:68:A2:42:E2:00:B5:90:1E:17:88:33:D2:D7:0B:4A:0D:6F X509v3 Authority Key Identifier: keyid:E1:D1:43:D9:D8:EA:02:22:4C:1C:B0:C9:15:EC:B8:4E:E2:8B:5A:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170C53/CE445BD0DA5B11ED96747C5AC4F9AE02/4dFD2djqAiJMHLDJFey4TuKLWqo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4dFD2djqAiJMHLDJFey4TuKLWqo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170C53/CE445BD0DA5B11ED96747C5AC4F9AE02/4dFD2djqAiJMHLDJFey4TuKLWqo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 14:7e:50:f7:a9:43:43:bb:6b:e5:1b:7e:03:ce:ad:27:fa:42: fc:93:37:ec:08:b6:b5:90:18:71:56:7e:f5:76:fb:76:55:ab: ca:7a:2f:04:3f:fa:92:9e:66:50:4e:ec:7f:fc:9e:61:4d:51: d5:2e:18:4b:de:e1:0e:c3:02:1c:c4:5d:83:e7:a1:cc:ed:b5: 4f:b2:49:54:af:33:f0:46:29:8d:23:00:70:06:c3:b8:6f:e7: ad:02:69:66:f3:cd:58:bd:55:46:c4:c9:b0:38:b8:46:92:22: 85:43:c2:e8:c1:df:30:98:ae:c2:81:ab:6c:ec:2c:72:66:b1: 9f:5f:df:63:47:68:c7:e4:92:25:ba:80:2c:f1:09:4b:32:ff: ab:ea:65:ec:f4:b6:2f:95:19:ad:18:7f:e7:5c:e3:43:b9:31: 52:d0:d0:e1:07:d2:92:65:fc:a4:91:42:b8:13:a5:d3:6b:73: 7d:40:ac:0a:57:85:b5:6d:1b:3b:38:95:ee:4b:a4:35:98:e7: 4e:64:a9:01:08:89:d3:bf:9e:ed:54:e1:8d:bb:67:e9:5f:d6: 92:03:28:92:bd:6b:a9:94:fe:fb:64:4d:af:f7:6a:25:ef:9e: 4d:a2:3a:c8:fd:40:35:ce:e6:9c:d2:a3:70:cd:97:5c:d7:dc: 2e:e5:80:fc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAegwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzBDNTMxMTAvBgNVBAUTKEUxRDE0M0Q5RDhFQTAyMjI0QzFDQjBDOTE1RUNCODRF RTI4QjVBQUEwHhcNMjUxMDIzMDQxOTQyWhcNMjUxMDMwMDQxOTQyWjAYMRYwFAYD VQQDEw02OGY5YWNkZS1hY2EyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs2B278vHFyfso+ypLBTyatvyFJ+ivhVi4w5rhzkLKTWxheThquNPO+ehpnby IfkH8COTscV7iucozqlTIXm/UaxWz0hRwcUSC47HO2uAaReWPj7rzuGKJRd+3q0h S9UaQsffD2wwodjX9Rb+mVURj8g5y7GmYKPwsIrhCpFTArwotWe31NOQ/k8xYUvI Y/ZV9PRG2IG96jvtgw7I0rEJ5ETsh/BDbMCa+x2t22jrxU4K1PLLxY5jNZnohQc/ hBgf6aOw9W5U1cSpzwEzfxpga3xDtcBUV/3h+DHqDS7FXYwoloAFnYAl8UgM6GS4 JBaka4YLsOnUyDaETJYeu07IpQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLT272ii QuIAtZAeF4gz0tcLSg1vMB8GA1UdIwQYMBaAFOHRQ9nY6gIiTBywyRXsuE7ii1qq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MEM1My9DRTQ0NUJEMERB NUIxMUVEOTY3NDdDNUFDNEY5QUUwMi80ZEZEMmRqcUFpSk1ITERKRmV5NFR1S0xX cW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRkRkQyZGpxQWlKTUhMREpGZXk0VHVLTFdxby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MEM1My9DRTQ0NUJEMERBNUIxMUVEOTY3NDdDNUFDNEY5QUUwMi80ZEZEMmRqcUFp Sk1ITERKRmV5NFR1S0xXcW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAUflD3qUNDu2vlG34Dzq0n+kL8kzfsCLa1kBhxVn71dvt2VavKei8E P/qSnmZQTux//J5hTVHVLhhL3uEOwwIcxF2D56HM7bVPsklUrzPwRimNIwBwBsO4 b+etAmlm881YvVVGxMmwOLhGkiKFQ8Lowd8wmK7Cgats7CxyZrGfX99jR2jH5JIl uoAs8QlLMv+r6mXs9LYvlRmtGH/nXONDuTFS0NDhB9KSZfykkUK4E6XTa3N9QKwK V4W1bRs7OJXuS6Q1mOdOZKkBCInTv57tVOGNu2fpX9aSAyiSvWuplP77ZE2v92ol 755NojrI/UA1zuac0qNwzZdc19wu5YD8 -----END CERTIFICATE-----Generated at Thu Oct 23 05:59:57 2025 by rpki-client