$ rpki-client -vvf rpki.apnic.net/member_repository/A9172D91/EA672A5C19E711E8B243D57CC4F9AE02/4u3kp-qXJminlbJ7qdyH9LkNqJc.mft File: 4u3kp-qXJminlbJ7qdyH9LkNqJc.mft (raw, json) Hash identifier: 2ntaX2sBLCIAfViY927TSv1RIeDkKYARY1bPspwo7WM= Subject key identifier: 14:DD:89:6D:F3:A5:CB:4A:7C:BD:1D:8F:9D:A9:0E:0B:E4:33:DD:FC Authority key identifier: E2:ED:E4:A7:EA:97:26:68:A7:95:B2:7B:A9:DC:87:F4:B9:0D:A8:97 Certificate issuer: /CN=A9172D91/serialNumber=E2EDE4A7EA972668A795B27BA9DC87F4B90DA897 Certificate serial: 16BE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4u3kp-qXJminlbJ7qdyH9LkNqJc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9172D91/EA672A5C19E711E8B243D57CC4F9AE02/4u3kp-qXJminlbJ7qdyH9LkNqJc.mft Manifest number: 167C Signing time: Mon 06 Oct 2025 16:48:51 +0000 Manifest this update: Mon 06 Oct 2025 16:48:50 +0000 Manifest next update: Mon 13 Oct 2025 16:48:50 +0000 Files and hashes: 1: 4u3kp-qXJminlbJ7qdyH9LkNqJc.crl (hash: h2WzxY3J74z//suejmMywElx8RUszQKeQxTVp4CjwHI=) 2: 854D304E0C9B11EC8433FE7AC4F9AE02.roa (hash: 3RtBD83ZJNmQpXwmbagiYu3nHPOh0MloLGGIQPhUGxM=) 3: 56C8FCACE38011EFBF195482C4F9AE02.roa (hash: J0L9nDFdFV6ZiImc3zHe9UUNBLYublvIh0RA4SsVHPQ=) 4: 9C79DBD23E7911EBBFFAC96BC4F9AE02.roa (hash: Oe+nCjRXmGLUG9jUiGqdGqfQAZRPEdEXa9ffB5a1tlY=) 5: 2357FC145F8D11EF94E7303FC4F9AE02.roa (hash: XuW38uZAfeN4keo/onpljpRS5BHBZ8INJxFDXHjJZ6w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9172D91/EA672A5C19E711E8B243D57CC4F9AE02/4u3kp-qXJminlbJ7qdyH9LkNqJc.crl rsync://rpki.apnic.net/member_repository/A9172D91/EA672A5C19E711E8B243D57CC4F9AE02/4u3kp-qXJminlbJ7qdyH9LkNqJc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4u3kp-qXJminlbJ7qdyH9LkNqJc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 13 Oct 2025 16:48:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5822 (0x16be) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9172D91, serialNumber=E2EDE4A7EA972668A795B27BA9DC87F4B90DA897 Validity Not Before: Oct 6 16:48:50 2025 GMT Not After : Oct 13 16:48:50 2025 GMT Subject: CN=68e3f2f3-b0d6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:c3:04:7b:c2:a6:93:50:f4:d1:1f:55:af:49: 41:27:20:39:bf:8b:76:cd:52:70:8a:f5:7b:e7:4b: f9:8e:26:60:19:59:9e:81:1d:ee:b5:e9:e2:83:a4: 3f:04:bf:9f:67:ab:44:bb:70:50:8e:4b:09:8a:cf: 98:9a:1d:45:1d:c5:37:b9:e7:4c:06:8a:8d:e0:62: f8:f1:b4:b7:a6:fe:27:bf:53:a3:bd:4c:95:ba:c6: db:0f:ed:3f:34:0a:aa:07:90:ba:a1:da:b6:dc:2a: b9:59:a5:78:22:09:1b:05:24:65:5d:43:82:ed:48: 49:97:d1:15:a4:f1:7a:f0:0a:5a:fb:1a:bd:fa:0c: c5:87:52:10:69:b2:bd:fb:7d:b8:b4:c8:3b:0e:1d: 6d:75:ed:c6:41:76:93:97:b9:d8:0d:9e:67:79:8f: 4c:5b:57:e4:66:ee:a6:b0:fa:2d:fb:c7:8b:6b:0d: d4:79:1b:c8:2e:c1:df:13:fd:60:e3:31:73:07:61: 19:5d:9d:79:4c:45:50:25:e3:b6:4e:cb:c4:71:99: 53:79:3e:20:04:56:9a:8a:da:21:3f:98:a7:8b:2f: 63:d5:73:54:50:a8:b3:6e:53:69:fb:cd:ce:b5:be: bb:90:8c:44:cf:7c:ed:92:e2:f7:23:f4:6e:13:d5: 6a:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:DD:89:6D:F3:A5:CB:4A:7C:BD:1D:8F:9D:A9:0E:0B:E4:33:DD:FC X509v3 Authority Key Identifier: keyid:E2:ED:E4:A7:EA:97:26:68:A7:95:B2:7B:A9:DC:87:F4:B9:0D:A8:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9172D91/EA672A5C19E711E8B243D57CC4F9AE02/4u3kp-qXJminlbJ7qdyH9LkNqJc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4u3kp-qXJminlbJ7qdyH9LkNqJc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9172D91/EA672A5C19E711E8B243D57CC4F9AE02/4u3kp-qXJminlbJ7qdyH9LkNqJc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 91:f4:aa:b8:e7:62:29:fc:0f:58:20:bc:c0:d8:76:e9:e8:55: 63:29:56:9d:90:76:b0:20:5b:6a:9d:ac:4b:08:53:c7:f4:ac: e6:2a:66:36:0e:01:28:10:37:47:71:fb:8b:a1:50:ed:ff:d3: 92:45:4f:54:11:ad:00:c4:83:8b:15:7b:ac:e6:50:2a:ce:40: bc:cd:97:9d:11:5a:6c:d6:d7:f5:90:85:5d:ee:da:3b:d3:e9: f6:23:13:9e:7d:11:fd:5f:fb:cd:6a:77:cc:cc:b4:68:ee:1f: f7:71:fb:17:9f:7c:80:26:0e:f1:ed:3c:ba:2b:e9:c8:ea:15: 15:bc:88:f3:fb:32:45:a1:7b:da:4b:21:fb:87:72:16:bc:a6: a4:0a:33:3c:78:85:86:e5:1b:98:87:53:36:68:29:34:34:08: e4:4d:07:7f:5a:bd:53:b9:5e:2b:70:68:9e:52:dd:8a:c7:db: 6e:98:f6:75:c4:0a:1f:d0:7b:a0:62:8f:3e:b0:b0:af:c5:1a: e1:31:4b:c1:d1:0e:12:12:cc:e2:ad:41:54:b5:ab:34:7c:e4: 27:dd:23:5b:a6:69:d3:70:e0:cd:72:7f:d6:63:2a:cf:a6:e8: ae:12:7c:01:5b:8d:ff:93:93:b4:01:fa:48:25:7d:b4:27:46: 84:61:49:13 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFr4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzJEOTExMTAvBgNVBAUTKEUyRURFNEE3RUE5NzI2NjhBNzk1QjI3QkE5REM4N0Y0 QjkwREE4OTcwHhcNMjUxMDA2MTY0ODUwWhcNMjUxMDEzMTY0ODUwWjAYMRYwFAYD VQQDEw02OGUzZjJmMy1iMGQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1cMEe8Kmk1D00R9Vr0lBJyA5v4t2zVJwivV750v5jiZgGVmegR3utenig6Q/ BL+fZ6tEu3BQjksJis+Ymh1FHcU3uedMBoqN4GL48bS3pv4nv1OjvUyVusbbD+0/ NAqqB5C6odq23Cq5WaV4IgkbBSRlXUOC7UhJl9EVpPF68Apa+xq9+gzFh1IQabK9 +324tMg7Dh1tde3GQXaTl7nYDZ5neY9MW1fkZu6msPot+8eLaw3UeRvILsHfE/1g 4zFzB2EZXZ15TEVQJeO2TsvEcZlTeT4gBFaaitohP5iniy9j1XNUUKizblNp+83O tb67kIxEz3ztkuL3I/RuE9VqDwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBTdiW3z pctKfL0dj52pDgvkM938MB8GA1UdIwQYMBaAFOLt5KfqlyZop5Wye6nch/S5DaiX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MkQ5MS9FQTY3MkE1QzE5 RTcxMUU4QjI0M0Q1N0NDNEY5QUUwMi80dTNrcC1xWEptaW5sYko3cWR5SDlMa05x SmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzR1M2twLXFYSm1pbmxiSjdxZHlIOUxrTnFKYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MkQ5MS9FQTY3MkE1QzE5RTcxMUU4QjI0M0Q1N0NDNEY5QUUwMi80dTNrcC1xWEpt aW5sYko3cWR5SDlMa05xSmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCR9Kq452Ip/A9YILzA2Hbp6FVjKVadkHawIFtqnaxLCFPH9KzmKmY2 DgEoEDdHcfuLoVDt/9OSRU9UEa0AxIOLFXus5lAqzkC8zZedEVps1tf1kIVd7to7 0+n2IxOefRH9X/vNanfMzLRo7h/3cfsXn3yAJg7x7Ty6K+nI6hUVvIjz+zJFoXva SyH7h3IWvKakCjM8eIWG5RuYh1M2aCk0NAjkTQd/Wr1TuV4rcGieUt2Kx9tumPZ1 xAof0HugYo8+sLCvxRrhMUvB0Q4SEszirUFUtas0fOQn3SNbpmnTcODNcn/WYyrP puiuEnwBW43/k5O0AfpIJX20J0aEYUkT -----END CERTIFICATE-----Generated at Wed Oct 8 15:48:59 2025 by rpki-client