$ rpki-client -vvf rpki.apnic.net/member_repository/A919EE77/D9BE07BA0CED11EBA7F1115BC4F9AE02/t4Gi59ke3KiwMN4-qJ-k-vF5HyE.mft File: t4Gi59ke3KiwMN4-qJ-k-vF5HyE.mft (raw, json) Hash identifier: acB0K+k5i12Zo35OPudN5UeflSF4GQZ4XxTjR2uqlnU= Subject key identifier: 9E:3F:45:10:63:5F:4A:FF:91:64:90:7A:C2:1C:F7:00:4E:50:4B:9A Authority key identifier: B7:81:A2:E7:D9:1E:DC:A8:B0:30:DE:3E:A8:9F:A4:FA:F1:79:1F:21 Certificate issuer: /CN=A919EE77/serialNumber=B781A2E7D91EDCA8B030DE3EA89FA4FAF1791F21 Certificate serial: 07FB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t4Gi59ke3KiwMN4-qJ-k-vF5HyE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919EE77/D9BE07BA0CED11EBA7F1115BC4F9AE02/t4Gi59ke3KiwMN4-qJ-k-vF5HyE.mft Manifest number: 07E8 Signing time: Tue 04 Nov 2025 21:14:26 +0000 Manifest this update: Tue 04 Nov 2025 21:14:25 +0000 Manifest next update: Tue 11 Nov 2025 21:14:25 +0000 Files and hashes: 1: t4Gi59ke3KiwMN4-qJ-k-vF5HyE.crl (hash: kkGSUxe5pc1Ywba3ag+bVkLvoAuDrRcDwnl97KE2rjs=) 2: 7BAB9AF01B3D11EE903BB536C4F9AE02.roa (hash: tLbfqsiqbU5f5RIfXdeZj0H0Fi86hjwtE1k3SMfEBD0=) 3: B811CFA2BF7811EE80314533C4F9AE02.roa (hash: /j+vq5djnc7hZrEiUy4WmMk+wFiISuWLXCgiYcfhmKo=) 4: CD284E600CEE11EB88376B5BC4F9AE02.roa (hash: tkd8GU4TJwZRxQo7fPIxlQckyw3LFTCGlrBbg1Zjf+g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919EE77/D9BE07BA0CED11EBA7F1115BC4F9AE02/t4Gi59ke3KiwMN4-qJ-k-vF5HyE.crl rsync://rpki.apnic.net/member_repository/A919EE77/D9BE07BA0CED11EBA7F1115BC4F9AE02/t4Gi59ke3KiwMN4-qJ-k-vF5HyE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t4Gi59ke3KiwMN4-qJ-k-vF5HyE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 21:14:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2043 (0x7fb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919EE77, serialNumber=B781A2E7D91EDCA8B030DE3EA89FA4FAF1791F21 Validity Not Before: Nov 4 21:14:25 2025 GMT Not After : Nov 11 21:14:25 2025 GMT Subject: CN=690a6cb2-657a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:a0:db:31:2d:9d:d7:2f:1a:39:6a:26:40:07: a3:d3:53:f3:48:9e:a1:48:e1:db:9f:81:4d:cc:44: d6:de:6a:b8:f7:5f:78:f3:fb:58:92:02:ae:b1:15: 8b:28:80:37:10:fa:43:47:24:3d:a6:f1:bd:d5:e6: c8:bf:f8:f3:5f:7c:20:37:e5:91:b9:51:4d:3d:5f: 03:92:55:6e:4f:ec:00:4f:25:e8:99:6e:82:de:9f: b9:9d:5b:33:3c:99:bc:7a:f7:b8:5c:5c:ca:91:20: 47:9b:03:0b:a1:07:f4:a1:08:d5:65:8b:ee:4a:7f: be:81:7c:fd:b2:b0:64:7a:92:27:49:13:8f:25:88: b6:c9:26:96:31:9e:4e:f1:b5:70:00:c2:ef:88:13: d9:e0:a7:cc:04:05:b6:1e:3d:45:db:b2:8d:a9:7b: eb:ad:bc:6d:3e:6a:49:26:5f:69:51:e5:b2:d6:6e: 64:26:4f:80:8f:f5:b3:94:69:5a:30:42:d3:77:fe: a8:31:59:ed:75:61:83:a9:4e:d4:cc:b2:4a:0e:c2: fe:bb:e2:7c:28:7d:5e:17:c4:22:b0:b6:e6:47:74: 15:19:68:62:ea:d8:54:97:e3:fb:e2:4f:32:23:d7: bd:bf:86:64:23:6a:e9:86:93:3c:07:36:1f:ab:ff: c8:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:3F:45:10:63:5F:4A:FF:91:64:90:7A:C2:1C:F7:00:4E:50:4B:9A X509v3 Authority Key Identifier: keyid:B7:81:A2:E7:D9:1E:DC:A8:B0:30:DE:3E:A8:9F:A4:FA:F1:79:1F:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919EE77/D9BE07BA0CED11EBA7F1115BC4F9AE02/t4Gi59ke3KiwMN4-qJ-k-vF5HyE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t4Gi59ke3KiwMN4-qJ-k-vF5HyE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919EE77/D9BE07BA0CED11EBA7F1115BC4F9AE02/t4Gi59ke3KiwMN4-qJ-k-vF5HyE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:8e:e0:53:ab:02:b3:92:7b:52:b1:f7:78:6d:31:b2:6d:9d: b5:1c:8b:75:04:03:ce:8f:e3:66:40:04:99:d3:88:a1:e8:90: 62:b2:ea:39:d8:50:f0:30:b9:5a:84:e2:34:69:f5:b5:bb:45: be:14:5d:1e:92:6a:77:5f:f1:0e:fd:80:b3:97:46:f6:c7:7e: 25:fa:6b:5f:d2:9e:91:18:3e:97:30:85:34:51:36:00:2e:0c: fb:e3:29:80:91:91:72:c8:87:98:ed:54:47:4c:8a:ec:64:ee: 67:ed:4e:cc:74:c9:b6:76:3a:9f:10:94:1f:b3:3c:21:be:62: 9b:22:54:09:62:20:b8:c4:f6:c7:b3:4b:30:6e:ab:b9:38:46: 9e:2a:02:46:29:07:22:77:f1:62:f9:b7:db:f6:c0:34:6b:bf: ba:e6:fa:86:24:c2:ce:5a:7d:d5:20:4b:a3:6c:c9:34:4f:d2: 7a:e3:f2:5f:c0:72:e6:ed:66:53:e5:89:43:b9:16:e4:22:60: 2b:6f:81:4c:b7:b8:71:39:6e:fe:b9:ae:55:c0:9e:e9:8c:f3: dc:7e:2f:c1:c7:8f:4e:9b:6c:78:b7:7e:9a:fe:e0:a6:94:d9: 2e:4a:d3:74:a3:24:33:18:9f:7d:b8:53:d8:19:e8:37:77:72: bb:26:17:88 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB/swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUVFNzcxMTAvBgNVBAUTKEI3ODFBMkU3RDkxRURDQThCMDMwREUzRUE4OUZBNEZB RjE3OTFGMjEwHhcNMjUxMTA0MjExNDI1WhcNMjUxMTExMjExNDI1WjAYMRYwFAYD VQQDEw02OTBhNmNiMi02NTdhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2qDbMS2d1y8aOWomQAej01PzSJ6hSOHbn4FNzETW3mq491948/tYkgKusRWL KIA3EPpDRyQ9pvG91ebIv/jzX3wgN+WRuVFNPV8DklVuT+wATyXomW6C3p+5nVsz PJm8eve4XFzKkSBHmwMLoQf0oQjVZYvuSn++gXz9srBkepInSROPJYi2ySaWMZ5O 8bVwAMLviBPZ4KfMBAW2Hj1F27KNqXvrrbxtPmpJJl9pUeWy1m5kJk+Aj/WzlGla MELTd/6oMVntdWGDqU7UzLJKDsL+u+J8KH1eF8QisLbmR3QVGWhi6thUl+P74k8y I9e9v4ZkI2rphpM8BzYfq//IyQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ4/RRBj X0r/kWSQesIc9wBOUEuaMB8GA1UdIwQYMBaAFLeBoufZHtyosDDePqifpPrxeR8h MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RUU3Ny9EOUJFMDdCQTBD RUQxMUVCQTdGMTExNUJDNEY5QUUwMi90NEdpNTlrZTNLaXdNTjQtcUotay12RjVI eUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Q0R2k1OWtlM0tpd01ONC1xSi1rLXZGNUh5RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RUU3Ny9EOUJFMDdCQTBDRUQxMUVCQTdGMTExNUJDNEY5QUUwMi90NEdpNTlrZTNL aXdNTjQtcUotay12RjVIeUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA6juBTqwKzkntSsfd4bTGybZ21HIt1BAPOj+NmQASZ04ih6JBisuo5 2FDwMLlahOI0afW1u0W+FF0ekmp3X/EO/YCzl0b2x34l+mtf0p6RGD6XMIU0UTYA Lgz74ymAkZFyyIeY7VRHTIrsZO5n7U7MdMm2djqfEJQfszwhvmKbIlQJYiC4xPbH s0swbqu5OEaeKgJGKQcid/Fi+bfb9sA0a7+65vqGJMLOWn3VIEujbMk0T9J64/Jf wHLm7WZT5YlDuRbkImArb4FMt7hxOW7+ua5VwJ7pjPPcfi/Bx49Om2x4t36a/uCm lNkuStN0oyQzGJ99uFPYGeg3d3K7JheI -----END CERTIFICATE-----Generated at Wed Nov 5 19:28:19 2025 by rpki-client