$ rpki-client -vvf rpki.apnic.net/member_repository/A9197FDB/657E4074DA3611EB84E6A349C4F9AE02/4AJb-TLnFuGh-K-QECEcQRCE_J0.mft File: 4AJb-TLnFuGh-K-QECEcQRCE_J0.mft (raw, json) Hash identifier: XvigRB2OGE+sqEIw+gFtUWjdlwhJiQVxH2jaQiIk4CA= Subject key identifier: 6B:A7:0E:B7:3A:B6:97:E6:1F:9C:EC:8F:AE:A6:91:08:C1:83:C0:23 Authority key identifier: E0:02:5B:F9:32:E7:16:E1:A1:F8:AF:90:10:21:1C:41:10:84:FC:9D Certificate issuer: /CN=A9197FDB/serialNumber=E0025BF932E716E1A1F8AF9010211C411084FC9D Certificate serial: 05D9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4AJb-TLnFuGh-K-QECEcQRCE_J0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9197FDB/657E4074DA3611EB84E6A349C4F9AE02/4AJb-TLnFuGh-K-QECEcQRCE_J0.mft Manifest number: 05D2 Signing time: Sun 26 Oct 2025 23:59:10 +0000 Manifest this update: Sun 26 Oct 2025 23:59:09 +0000 Manifest next update: Sun 02 Nov 2025 23:59:09 +0000 Files and hashes: 1: 4AJb-TLnFuGh-K-QECEcQRCE_J0.crl (hash: b/HpCWpn9ycVdFLxKDKioEvLO+QhVqJDhsqJ6OsLsiw=) 2: 0A1FAC405BB211EEAD06B243C4F9AE02.roa (hash: +Nf3CbeJiQCKoMqVOr8fCtBhRD9vFNzRUGK/YqqHHSM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9197FDB/657E4074DA3611EB84E6A349C4F9AE02/4AJb-TLnFuGh-K-QECEcQRCE_J0.crl rsync://rpki.apnic.net/member_repository/A9197FDB/657E4074DA3611EB84E6A349C4F9AE02/4AJb-TLnFuGh-K-QECEcQRCE_J0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4AJb-TLnFuGh-K-QECEcQRCE_J0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 02 Nov 2025 23:59:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1497 (0x5d9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9197FDB, serialNumber=E0025BF932E716E1A1F8AF9010211C411084FC9D Validity Not Before: Oct 26 23:59:09 2025 GMT Not After : Nov 2 23:59:09 2025 GMT Subject: CN=68feb5ce-acbe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:35:34:58:e6:ff:22:9d:86:7a:1d:c1:46:18: a7:71:cc:36:e0:f2:0c:ac:0f:ce:18:07:24:3b:67: 00:f5:c5:5c:94:9e:c0:64:8c:cb:44:44:80:fc:70: 0c:cb:3d:ad:ed:21:cb:7f:1b:2b:fa:d1:31:8d:33: f7:41:3f:0d:24:fa:60:34:1f:18:07:ce:39:b1:95: bb:21:e6:24:f6:34:2c:3c:9b:47:e3:63:9a:2c:80: 9c:3e:56:a5:15:5c:8f:fc:b9:19:c6:21:30:3c:4b: 33:f7:72:2d:fa:73:11:84:72:7f:f0:5e:94:9d:35: a8:50:ed:e5:68:5c:81:a8:cd:10:3f:4d:b4:6b:ba: 59:2b:31:84:c6:c3:bf:2c:5e:61:53:ab:20:9e:c4: 4d:b1:96:7f:30:24:75:de:41:9b:71:49:07:84:6d: 26:26:4c:6b:2d:11:86:06:a5:e7:9f:1e:2a:a3:46: fd:ac:6c:31:f5:e2:81:86:52:f5:52:fe:70:a6:88: 23:93:ae:af:1e:c9:17:d4:ee:f6:51:66:f6:f4:20: 22:d4:50:ac:29:74:64:77:26:b2:5d:4a:8c:70:aa: 3b:a3:ae:74:1b:d3:e8:19:c5:76:a6:3a:74:39:6a: c0:1d:ee:e4:ef:08:f0:6a:a1:4d:42:a1:bb:c7:13: 21:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:A7:0E:B7:3A:B6:97:E6:1F:9C:EC:8F:AE:A6:91:08:C1:83:C0:23 X509v3 Authority Key Identifier: keyid:E0:02:5B:F9:32:E7:16:E1:A1:F8:AF:90:10:21:1C:41:10:84:FC:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9197FDB/657E4074DA3611EB84E6A349C4F9AE02/4AJb-TLnFuGh-K-QECEcQRCE_J0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4AJb-TLnFuGh-K-QECEcQRCE_J0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9197FDB/657E4074DA3611EB84E6A349C4F9AE02/4AJb-TLnFuGh-K-QECEcQRCE_J0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 74:62:74:ea:69:d8:b6:f0:90:5f:9f:f1:27:d2:e4:bd:94:aa: 4c:2f:20:35:5e:e6:b2:c3:6c:79:ac:37:9a:88:a3:80:9c:af: fd:cd:ef:cb:8b:e8:86:2e:bf:fd:d2:65:25:fa:17:7a:9b:c5: 61:a2:e6:1c:87:be:17:15:68:d4:75:e7:31:6b:d3:1c:45:ae: 7a:e0:a5:30:bd:29:75:a3:18:7d:1f:75:01:89:36:a5:22:e2: 58:50:e6:08:2e:18:88:ca:e6:02:b0:16:26:b3:44:aa:9c:b4: 51:25:c8:a4:27:42:d3:23:d9:67:6f:ee:09:2b:5f:c5:b0:5b: 4d:49:83:fa:ac:28:17:f8:06:c8:6b:49:d9:6a:eb:4e:42:46: 6f:2d:8c:25:21:46:77:ff:26:f6:96:7c:ca:a2:9d:f5:3f:26: 38:fa:93:26:15:1d:8b:ff:37:38:15:82:1b:f8:91:92:de:e0: 6d:b9:1b:35:15:97:b5:db:ff:42:92:b8:93:50:d3:b6:37:2e: f6:d2:89:f3:b5:e0:11:a7:87:ae:75:64:d2:d9:32:6d:7f:be: a3:a5:3c:70:e2:47:0b:d2:81:40:eb:2b:46:5b:9e:03:60:d0: 0c:a6:ee:5d:10:23:69:2c:6a:ce:86:06:a9:0f:9b:ca:88:63: 25:a3:0a:e5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBdkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTdGREIxMTAvBgNVBAUTKEUwMDI1QkY5MzJFNzE2RTFBMUY4QUY5MDEwMjExQzQx MTA4NEZDOUQwHhcNMjUxMDI2MjM1OTA5WhcNMjUxMTAyMjM1OTA5WjAYMRYwFAYD VQQDEw02OGZlYjVjZS1hY2JlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArTU0WOb/Ip2Geh3BRhinccw24PIMrA/OGAckO2cA9cVclJ7AZIzLRESA/HAM yz2t7SHLfxsr+tExjTP3QT8NJPpgNB8YB845sZW7IeYk9jQsPJtH42OaLICcPlal FVyP/LkZxiEwPEsz93It+nMRhHJ/8F6UnTWoUO3laFyBqM0QP020a7pZKzGExsO/ LF5hU6sgnsRNsZZ/MCR13kGbcUkHhG0mJkxrLRGGBqXnnx4qo0b9rGwx9eKBhlL1 Uv5wpogjk66vHskX1O72UWb29CAi1FCsKXRkdyayXUqMcKo7o650G9PoGcV2pjp0 OWrAHe7k7wjwaqFNQqG7xxMhywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGunDrc6 tpfmH5zsj66mkQjBg8AjMB8GA1UdIwQYMBaAFOACW/ky5xbhofivkBAhHEEQhPyd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5N0ZEQi82NTdFNDA3NERB MzYxMUVCODRFNkEzNDlDNEY5QUUwMi80QUpiLVRMbkZ1R2gtSy1RRUNFY1FSQ0Vf SjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRBSmItVExuRnVHaC1LLVFFQ0VjUVJDRV9KMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 N0ZEQi82NTdFNDA3NERBMzYxMUVCODRFNkEzNDlDNEY5QUUwMi80QUpiLVRMbkZ1 R2gtSy1RRUNFY1FSQ0VfSjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB0YnTqadi28JBfn/En0uS9lKpMLyA1Xuayw2x5rDeaiKOAnK/9ze/L i+iGLr/90mUl+hd6m8VhouYch74XFWjUdecxa9McRa564KUwvSl1oxh9H3UBiTal IuJYUOYILhiIyuYCsBYms0SqnLRRJcikJ0LTI9lnb+4JK1/FsFtNSYP6rCgX+AbI a0nZautOQkZvLYwlIUZ3/yb2lnzKop31PyY4+pMmFR2L/zc4FYIb+JGS3uBtuRs1 FZe12/9CkriTUNO2Ny720onzteARp4eudWTS2TJtf76jpTxw4kcL0oFA6ytGW54D YNAMpu5dECNpLGrOhgapD5vKiGMlowrl -----END CERTIFICATE-----Generated at Mon Oct 27 12:12:37 2025 by rpki-client