$ rpki-client -vvf rpki.apnic.net/member_repository/A917E678/B897C582A19C11EB92A2DF29C4F9AE02/4kPzvoJVabsWrLN0vJjavmkLF8E.mft File: 4kPzvoJVabsWrLN0vJjavmkLF8E.mft (raw, json) Hash identifier: Orv4jOu5dLkkL5beOBnn7NJrQM8ReSXjgczTvEELbbA= Subject key identifier: 4A:45:76:43:D1:09:D8:73:20:A0:98:36:61:B8:A9:13:A5:4C:91:1C Authority key identifier: E2:43:F3:BE:82:55:69:BB:16:AC:B3:74:BC:98:DA:BE:69:0B:17:C1 Certificate issuer: /CN=A917E678/serialNumber=E243F3BE825569BB16ACB374BC98DABE690B17C1 Certificate serial: 06EF Authority info access: rsync://rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/4kPzvoJVabsWrLN0vJjavmkLF8E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E678/B897C582A19C11EB92A2DF29C4F9AE02/4kPzvoJVabsWrLN0vJjavmkLF8E.mft Manifest number: 06CB Signing time: Wed 22 Oct 2025 17:13:19 +0000 Manifest this update: Wed 22 Oct 2025 17:13:18 +0000 Manifest next update: Wed 29 Oct 2025 17:13:18 +0000 Files and hashes: 1: 4kPzvoJVabsWrLN0vJjavmkLF8E.crl (hash: WdwgPKcuRCJysVXMti7ifGyIOmlXfJBWcJgPvAEKUW0=) 2: 91E868D4902B11EF87435A54C4F9AE02.roa (hash: qm9tOH02ZhUyhN95rojnAyTLcNLxX4GEOIv6/MzX5Qk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E678/B897C582A19C11EB92A2DF29C4F9AE02/4kPzvoJVabsWrLN0vJjavmkLF8E.crl rsync://rpki.apnic.net/member_repository/A917E678/B897C582A19C11EB92A2DF29C4F9AE02/4kPzvoJVabsWrLN0vJjavmkLF8E.mft rsync://rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/4kPzvoJVabsWrLN0vJjavmkLF8E.cer rsync://rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.crl rsync://rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 29 Oct 2025 17:13:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1775 (0x6ef) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E678, serialNumber=E243F3BE825569BB16ACB374BC98DABE690B17C1 Validity Not Before: Oct 22 17:13:18 2025 GMT Not After : Oct 29 17:13:18 2025 GMT Subject: CN=68f910ae-505e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:8f:3e:ca:17:88:02:07:0b:75:5e:6e:f2:ec: ce:22:bc:73:3a:89:f0:e7:43:86:98:14:bb:4d:d2: 92:b5:0f:aa:b4:64:33:c9:5e:bb:42:6c:20:6e:b9: c0:fa:64:62:b1:21:da:d5:34:c9:c1:99:6a:fa:64: 5a:93:7f:89:1d:fb:c4:5e:2f:44:02:ad:00:3a:17: 33:f0:aa:e5:63:1a:60:37:68:95:f0:ed:bf:13:2b: 55:9f:fe:7c:54:29:42:2d:69:19:f8:18:29:03:56: 3b:69:d1:82:79:03:ee:8c:87:00:d4:8e:fb:cd:bd: 13:8a:2a:8e:3f:11:c1:cf:41:37:16:d8:4e:30:62: 3c:b0:0b:56:24:b5:39:1d:60:0e:87:e2:27:a4:9f: d9:f0:87:fa:b5:19:3e:ed:ea:07:66:51:e9:f1:d2: 8d:62:bc:c6:17:ce:b1:fc:85:89:e9:29:7e:88:f5: 36:fc:87:d8:d6:ee:f8:8d:e7:43:1b:66:e8:f7:70: 44:1b:3c:14:87:84:f6:e7:25:69:29:4a:e2:9c:cb: 9f:91:9c:08:66:3c:54:2e:b2:ac:af:4d:14:b1:ac: 8c:94:e3:92:62:aa:f3:85:5e:ed:80:f1:d7:d1:6d: a4:8a:45:d4:00:98:ef:73:6d:8c:f5:a2:e3:7c:c8: 57:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:45:76:43:D1:09:D8:73:20:A0:98:36:61:B8:A9:13:A5:4C:91:1C X509v3 Authority Key Identifier: keyid:E2:43:F3:BE:82:55:69:BB:16:AC:B3:74:BC:98:DA:BE:69:0B:17:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E678/B897C582A19C11EB92A2DF29C4F9AE02/4kPzvoJVabsWrLN0vJjavmkLF8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/4kPzvoJVabsWrLN0vJjavmkLF8E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E678/B897C582A19C11EB92A2DF29C4F9AE02/4kPzvoJVabsWrLN0vJjavmkLF8E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d8:18:51:69:4e:e9:95:68:8b:19:c5:d8:22:65:48:98:38:23: 95:ee:2e:a4:ad:32:99:46:b4:dd:be:25:10:d6:25:f0:48:cc: fd:82:b2:3b:6d:85:24:5d:39:74:38:d4:50:cf:b2:fd:8f:dc: f1:80:62:29:af:1f:c2:9b:45:39:c6:fc:8d:ae:a9:dd:c6:b6: 41:b9:65:f9:48:04:99:d4:b8:21:fc:15:d0:23:c0:3f:ee:02: 97:22:51:59:f3:8f:70:95:39:bb:e0:17:d7:cf:0a:4c:de:6d: e8:63:2e:0e:4c:b2:72:07:e3:2a:5e:d2:b2:28:67:8e:10:f6: 7f:45:9a:1c:3d:68:dd:93:34:8b:53:ec:22:c8:90:a8:35:ce: 56:a4:1d:e6:5f:36:38:47:e6:45:5a:b9:8b:cb:07:4a:e7:07: af:c3:98:40:af:d9:52:09:2c:21:88:09:eb:13:8f:ad:0f:45: af:4f:28:d6:3e:89:72:e1:cc:34:70:ce:0f:5e:a2:7e:6f:68: 71:61:c7:54:7b:74:c9:19:31:ec:ac:b2:9b:52:bf:cb:71:9e: 45:c2:07:f6:bd:11:61:08:18:bf:07:5e:3d:76:f2:f9:4a:b2: e9:98:b3:ab:69:a9:be:57:02:15:b9:6e:13:af:be:a3:cd:e9: 3e:54:d0:98 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBu8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U2NzgxMTAvBgNVBAUTKEUyNDNGM0JFODI1NTY5QkIxNkFDQjM3NEJDOThEQUJF NjkwQjE3QzEwHhcNMjUxMDIyMTcxMzE4WhcNMjUxMDI5MTcxMzE4WjAYMRYwFAYD VQQDEw02OGY5MTBhZS01MDVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyY8+yheIAgcLdV5u8uzOIrxzOonw50OGmBS7TdKStQ+qtGQzyV67QmwgbrnA +mRisSHa1TTJwZlq+mRak3+JHfvEXi9EAq0AOhcz8KrlYxpgN2iV8O2/EytVn/58 VClCLWkZ+BgpA1Y7adGCeQPujIcA1I77zb0TiiqOPxHBz0E3FthOMGI8sAtWJLU5 HWAOh+InpJ/Z8If6tRk+7eoHZlHp8dKNYrzGF86x/IWJ6Sl+iPU2/IfY1u74jedD G2bo93BEGzwUh4T25yVpKUrinMufkZwIZjxULrKsr00UsayMlOOSYqrzhV7tgPHX 0W2kikXUAJjvc22M9aLjfMhXLwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEpFdkPR CdhzIKCYNmG4qROlTJEcMB8GA1UdIwQYMBaAFOJD876CVWm7FqyzdLyY2r5pCxfB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTY3OC9CODk3QzU4MkEx OUMxMUVCOTJBMkRGMjlDNEY5QUUwMi80a1B6dm9KVmFic1dyTE4wdkpqYXZta0xG OEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I0QTFCRUE2MUQ2NjExRTJCMkNEOEI3Qzcy RkQxRkYyLzRrUHp2b0pWYWJzV3JMTjB2Smphdm1rTEY4RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTY3OC9CODk3QzU4MkExOUMxMUVCOTJBMkRGMjlDNEY5QUUwMi80a1B6dm9KVmFi c1dyTE4wdkpqYXZta0xGOEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDYGFFpTumVaIsZxdgiZUiYOCOV7i6krTKZRrTdviUQ1iXwSMz9grI7 bYUkXTl0ONRQz7L9j9zxgGIprx/Cm0U5xvyNrqndxrZBuWX5SASZ1Lgh/BXQI8A/ 7gKXIlFZ849wlTm74BfXzwpM3m3oYy4OTLJyB+MqXtKyKGeOEPZ/RZocPWjdkzSL U+wiyJCoNc5WpB3mXzY4R+ZFWrmLywdK5wevw5hAr9lSCSwhiAnrE4+tD0WvTyjW Poly4cw0cM4PXqJ+b2hxYcdUe3TJGTHsrLKbUr/LcZ5Fwgf2vRFhCBi/B149dvL5 SrLpmLOraam+VwIVuW4Tr76jzek+VNCY -----END CERTIFICATE-----Generated at Fri Oct 24 01:42:18 2025 by rpki-client