$ rpki-client -vvf rpki.apnic.net/member_repository/A918D96C/A42E37FE1D9611E29C5F4A7F08B02CD2/4I1sf-Nf42ZC_m9mzNooZqZiQvE.mft File: 4I1sf-Nf42ZC_m9mzNooZqZiQvE.mft (raw, json) Hash identifier: v3WJl1ZRmIGiJS1PIDKjt7MWMT/6IAuapF5d//c7mA4= Subject key identifier: 7F:CD:E9:54:9F:25:E5:E9:E8:4C:24:E8:2B:AB:52:10:2B:EA:C9:BD Authority key identifier: E0:8D:6C:7F:E3:5F:E3:66:42:FE:6F:66:CC:DA:28:66:A6:62:42:F1 Certificate issuer: /CN=A918D96C/serialNumber=E08D6C7FE35FE36642FE6F66CCDA2866A66242F1 Certificate serial: 34D6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4I1sf-Nf42ZC_m9mzNooZqZiQvE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918D96C/A42E37FE1D9611E29C5F4A7F08B02CD2/4I1sf-Nf42ZC_m9mzNooZqZiQvE.mft Manifest number: 34D6 Signing time: Tue 04 Nov 2025 14:54:01 +0000 Manifest this update: Tue 04 Nov 2025 14:54:01 +0000 Manifest next update: Tue 11 Nov 2025 14:54:01 +0000 Files and hashes: 1: 4I1sf-Nf42ZC_m9mzNooZqZiQvE.crl (hash: ItABCByH/fhoqU4Ud/SqyA6j2CCexBFxEBIQNDEw23Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918D96C/A42E37FE1D9611E29C5F4A7F08B02CD2/4I1sf-Nf42ZC_m9mzNooZqZiQvE.crl rsync://rpki.apnic.net/member_repository/A918D96C/A42E37FE1D9611E29C5F4A7F08B02CD2/4I1sf-Nf42ZC_m9mzNooZqZiQvE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4I1sf-Nf42ZC_m9mzNooZqZiQvE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 14:54:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13526 (0x34d6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918D96C, serialNumber=E08D6C7FE35FE36642FE6F66CCDA2866A66242F1 Validity Not Before: Nov 4 14:54:01 2025 GMT Not After : Nov 11 14:54:01 2025 GMT Subject: CN=690a1389-8818 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:51:d4:13:e0:76:65:cc:a6:0f:05:de:70:7c: 4b:2a:51:e9:77:c8:69:74:3c:2d:76:1d:9a:84:af: 3a:a2:90:a4:85:42:c4:b5:98:4a:6e:a4:2f:9b:85: 4a:a1:b5:c8:2d:0e:e8:90:57:a6:27:0b:cb:8e:17: 97:f4:8d:44:92:ab:b7:f5:77:b4:f0:39:23:01:f0: df:84:42:4b:b3:d0:4d:39:87:cc:eb:d7:b6:9f:1a: ec:53:71:a2:f2:b2:22:80:9b:d2:0d:da:38:33:dc: 93:03:07:ea:4e:17:5f:c9:eb:8d:88:ab:c4:1d:3c: f9:23:11:9d:b6:41:aa:bf:34:ea:e1:2c:3d:9a:ca: f4:84:7f:60:ea:1a:12:22:db:bd:f5:7f:ea:52:32: 3f:fb:1d:f3:9e:b0:4c:f8:67:90:be:f9:71:78:7f: 91:b2:08:aa:fd:12:60:f0:70:47:07:cf:f8:4e:fc: 07:9d:29:aa:69:c8:a3:92:de:69:d3:c0:af:da:3b: f1:0f:d2:10:2d:27:65:69:97:b9:fe:59:cc:fe:0f: 45:69:fc:ee:b5:b5:35:b9:dd:58:d5:71:ee:d8:45: a6:0a:b1:96:86:76:78:b1:0f:48:c6:4b:12:d4:73: 14:28:e5:53:ec:b0:46:f7:04:c0:d1:2e:fa:66:0a: b4:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:CD:E9:54:9F:25:E5:E9:E8:4C:24:E8:2B:AB:52:10:2B:EA:C9:BD X509v3 Authority Key Identifier: keyid:E0:8D:6C:7F:E3:5F:E3:66:42:FE:6F:66:CC:DA:28:66:A6:62:42:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918D96C/A42E37FE1D9611E29C5F4A7F08B02CD2/4I1sf-Nf42ZC_m9mzNooZqZiQvE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4I1sf-Nf42ZC_m9mzNooZqZiQvE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D96C/A42E37FE1D9611E29C5F4A7F08B02CD2/4I1sf-Nf42ZC_m9mzNooZqZiQvE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2c:85:4c:02:4c:65:80:3f:8c:bf:24:ff:28:dd:25:50:fe:4c: f5:da:ab:eb:18:7e:23:9e:2f:60:4f:cd:89:b0:24:c7:c7:87: db:21:c8:21:1d:e0:86:a9:12:67:d4:90:49:12:3b:9a:6d:c3: e8:07:74:6d:89:dd:95:e2:d1:92:02:30:7b:52:17:8e:01:9d: b8:3f:5e:82:f9:91:a4:5d:ec:2c:de:2a:dc:46:1c:1a:9c:da: a2:af:67:06:9f:db:33:56:dc:f3:19:9c:01:a7:ca:66:1f:7e: 84:2e:eb:58:7a:d1:81:10:ae:5a:22:ab:60:b0:df:c7:8e:69: 26:f7:b5:10:f7:95:f7:e6:01:64:d3:43:7c:a4:cc:eb:c0:59: e0:5a:0b:bb:30:0d:6b:d4:b3:5d:0c:3d:8a:fa:60:39:b4:d0: c2:c8:cf:0b:9b:41:e6:28:02:1e:1c:eb:d0:33:04:8a:6f:50: 77:98:2f:d7:dc:19:b8:34:95:f9:b0:a3:82:9e:f8:58:c1:26: 13:bf:4d:77:2a:e7:d8:79:d3:52:f6:cb:56:84:57:55:2c:0a: 54:7e:52:f0:b4:44:b6:c7:da:70:86:8d:4b:d5:e9:2b:94:e6: 34:e0:da:bb:ba:3a:dc:96:3d:cc:9c:67:48:c5:90:d8:c0:80: 0d:79:2b:2f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNNYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEQ5NkMxMTAvBgNVBAUTKEUwOEQ2QzdGRTM1RkUzNjY0MkZFNkY2NkNDREEyODY2 QTY2MjQyRjEwHhcNMjUxMTA0MTQ1NDAxWhcNMjUxMTExMTQ1NDAxWjAYMRYwFAYD VQQDEw02OTBhMTM4OS04ODE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw1HUE+B2ZcymDwXecHxLKlHpd8hpdDwtdh2ahK86opCkhULEtZhKbqQvm4VK obXILQ7okFemJwvLjheX9I1Ekqu39Xe08DkjAfDfhEJLs9BNOYfM69e2nxrsU3Gi 8rIigJvSDdo4M9yTAwfqThdfyeuNiKvEHTz5IxGdtkGqvzTq4Sw9msr0hH9g6hoS Itu99X/qUjI/+x3znrBM+GeQvvlxeH+Rsgiq/RJg8HBHB8/4TvwHnSmqacijkt5p 08Cv2jvxD9IQLSdlaZe5/lnM/g9FafzutbU1ud1Y1XHu2EWmCrGWhnZ4sQ9IxksS 1HMUKOVT7LBG9wTA0S76Zgq0+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH/N6VSf JeXp6Ewk6CurUhAr6sm9MB8GA1UdIwQYMBaAFOCNbH/jX+NmQv5vZszaKGamYkLx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RDk2Qy9BNDJFMzdGRTFE OTYxMUUyOUM1RjRBN0YwOEIwMkNEMi80STFzZi1OZjQyWkNfbTltek5vb1pxWmlR dkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRJMXNmLU5mNDJaQ19tOW16Tm9vWnFaaVF2RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RDk2Qy9BNDJFMzdGRTFEOTYxMUUyOUM1RjRBN0YwOEIwMkNEMi80STFzZi1OZjQy WkNfbTltek5vb1pxWmlRdkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAshUwCTGWAP4y/JP8o3SVQ/kz12qvrGH4jni9gT82JsCTHx4fbIcgh HeCGqRJn1JBJEjuabcPoB3Rtid2V4tGSAjB7UheOAZ24P16C+ZGkXews3ircRhwa nNqir2cGn9szVtzzGZwBp8pmH36ELutYetGBEK5aIqtgsN/Hjmkm97UQ95X35gFk 00N8pMzrwFngWgu7MA1r1LNdDD2K+mA5tNDCyM8Lm0HmKAIeHOvQMwSKb1B3mC/X 3Bm4NJX5sKOCnvhYwSYTv013KufYedNS9stWhFdVLApUflLwtES2x9pwho1L1ekr lOY04Nq7ujrclj3MnGdIxZDYwIANeSsv -----END CERTIFICATE-----Generated at Wed Nov 5 05:23:18 2025 by rpki-client