$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9A8D/32F1F4C283E911ECB873C871C4F9AE02/4Y-ehXQ6vsrARiuP30On20pij_k.mft File: 4Y-ehXQ6vsrARiuP30On20pij_k.mft (raw, json) Hash identifier: eJlbyL2KxqODOOXeIysrXZqvkBcPEmrrvK0K05lkBwM= Subject key identifier: 00:BC:8A:65:97:5F:9A:17:28:CF:DA:80:20:62:FA:18:AA:52:90:19 Authority key identifier: E1:8F:9E:85:74:3A:BE:CA:C0:46:2B:8F:DF:43:A7:DB:4A:62:8F:F9 Certificate issuer: /CN=A91C9A8D/serialNumber=E18F9E85743ABECAC0462B8FDF43A7DB4A628FF9 Certificate serial: 0437 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4Y-ehXQ6vsrARiuP30On20pij_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C9A8D/32F1F4C283E911ECB873C871C4F9AE02/4Y-ehXQ6vsrARiuP30On20pij_k.mft Manifest number: 04C0 Signing time: Wed 05 Nov 2025 00:25:16 +0000 Manifest this update: Wed 05 Nov 2025 00:25:15 +0000 Manifest next update: Wed 12 Nov 2025 00:25:15 +0000 Files and hashes: 1: 4Y-ehXQ6vsrARiuP30On20pij_k.crl (hash: tBVrWb6uZxIrkBsbS4y+VSOqwRSzpIBIARZ5KLloqvw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C9A8D/32F1F4C283E911ECB873C871C4F9AE02/4Y-ehXQ6vsrARiuP30On20pij_k.crl rsync://rpki.apnic.net/member_repository/A91C9A8D/32F1F4C283E911ECB873C871C4F9AE02/4Y-ehXQ6vsrARiuP30On20pij_k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4Y-ehXQ6vsrARiuP30On20pij_k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 00:25:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1079 (0x437) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C9A8D, serialNumber=E18F9E85743ABECAC0462B8FDF43A7DB4A628FF9 Validity Not Before: Nov 5 00:25:15 2025 GMT Not After : Nov 12 00:25:15 2025 GMT Subject: CN=690a996b-ca0b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:c9:42:03:ab:5d:12:f4:3f:15:dc:30:25:57: 72:a8:f8:4b:fc:11:cb:21:6b:31:b4:46:54:09:ce: 84:05:06:7c:94:7e:db:ab:c6:03:40:e7:ac:6d:8b: cf:95:aa:15:b6:c1:47:5d:1d:ba:0a:b0:58:27:3f: f9:4f:fe:c7:9f:3c:7e:a2:e6:15:db:99:31:28:d7: dc:c0:c7:95:ed:77:f9:ef:4b:60:3d:88:78:9e:35: 0d:17:ac:2a:9f:65:3b:74:a3:85:7e:30:59:04:f2: a7:57:53:07:f0:c0:af:1b:a0:45:8d:07:a4:be:0f: aa:d9:4c:ad:52:75:70:ad:5b:31:61:cb:4b:df:d6: 58:e2:0d:be:59:ad:e4:0f:d9:d6:50:e5:57:6e:ff: d9:53:24:e1:fe:62:61:6a:c6:ab:8f:55:d0:cb:31: cc:7d:83:5a:fd:3d:8d:79:90:f1:41:bd:53:4b:07: 4a:5d:40:63:4d:5d:68:8a:2d:60:e3:be:ef:29:9b: a2:2e:d9:82:3f:62:c1:8a:68:c7:07:c8:4c:67:68: 78:0f:ac:2e:9b:ad:8a:2a:f4:ca:0a:85:a6:fe:46: e1:82:cc:92:99:88:29:8b:91:05:61:3d:53:21:42: c1:be:cd:aa:fe:93:84:a9:b3:4b:de:6e:7d:c6:12: dd:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:BC:8A:65:97:5F:9A:17:28:CF:DA:80:20:62:FA:18:AA:52:90:19 X509v3 Authority Key Identifier: keyid:E1:8F:9E:85:74:3A:BE:CA:C0:46:2B:8F:DF:43:A7:DB:4A:62:8F:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C9A8D/32F1F4C283E911ECB873C871C4F9AE02/4Y-ehXQ6vsrARiuP30On20pij_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4Y-ehXQ6vsrARiuP30On20pij_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9A8D/32F1F4C283E911ECB873C871C4F9AE02/4Y-ehXQ6vsrARiuP30On20pij_k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8d:45:53:b8:40:9e:c7:cf:65:33:e9:51:1f:f3:2d:cc:09:7d: 2e:02:22:d0:cc:f7:0c:7a:15:b0:43:cf:69:7c:5d:d4:1d:3c: aa:ff:be:07:84:6d:48:e0:ce:5d:c3:25:74:cb:42:f6:42:fa: cf:8b:69:cd:82:e2:34:cf:2c:1a:6f:83:07:b1:7f:73:30:91: c0:e0:8a:f6:cf:24:ae:0d:ab:77:c3:51:fe:a9:9c:0d:60:f7: 29:29:fa:cf:fe:25:dd:9c:de:07:2d:53:92:f6:70:ee:bc:d3: b0:40:2f:72:0d:be:61:7f:21:33:6d:39:1a:36:52:8a:82:b8: 21:65:98:fd:fe:e4:3a:c5:81:9f:63:a0:a1:7a:34:b8:e9:0e: a7:f2:f8:8a:18:84:7d:f5:33:fc:a7:d0:b6:40:73:cf:ab:81: 44:b8:07:19:f1:30:60:ef:e1:80:ba:ef:7c:09:4f:4f:82:d5: f1:4c:2d:47:c6:32:5e:4a:c9:ed:c9:9d:f0:9b:b1:eb:e4:f8: fd:28:9d:b5:0b:65:68:e4:aa:7b:a3:39:75:5a:f7:9d:d5:75: f4:5c:e5:89:79:53:aa:4f:e2:a0:b7:47:b0:17:a4:96:62:80: 3c:ba:70:ee:3c:1f:8b:48:78:37:26:f5:81:fd:2d:27:78:3e: 0e:b4:13:93 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBDcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzlBOEQxMTAvBgNVBAUTKEUxOEY5RTg1NzQzQUJFQ0FDMDQ2MkI4RkRGNDNBN0RC NEE2MjhGRjkwHhcNMjUxMTA1MDAyNTE1WhcNMjUxMTEyMDAyNTE1WjAYMRYwFAYD VQQDEw02OTBhOTk2Yi1jYTBiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA18lCA6tdEvQ/FdwwJVdyqPhL/BHLIWsxtEZUCc6EBQZ8lH7bq8YDQOesbYvP laoVtsFHXR26CrBYJz/5T/7Hnzx+ouYV25kxKNfcwMeV7Xf570tgPYh4njUNF6wq n2U7dKOFfjBZBPKnV1MH8MCvG6BFjQekvg+q2UytUnVwrVsxYctL39ZY4g2+Wa3k D9nWUOVXbv/ZUyTh/mJhasarj1XQyzHMfYNa/T2NeZDxQb1TSwdKXUBjTV1oii1g 477vKZuiLtmCP2LBimjHB8hMZ2h4D6wum62KKvTKCoWm/kbhgsySmYgpi5EFYT1T IULBvs2q/pOEqbNL3m59xhLdvQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAC8imWX X5oXKM/agCBi+hiqUpAZMB8GA1UdIwQYMBaAFOGPnoV0Or7KwEYrj99Dp9tKYo/5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOUE4RC8zMkYxRjRDMjgz RTkxMUVDQjg3M0M4NzFDNEY5QUUwMi80WS1laFhRNnZzckFSaXVQMzBPbjIwcGlq X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRZLWVoWFE2dnNyQVJpdVAzME9uMjBwaWpfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OUE4RC8zMkYxRjRDMjgzRTkxMUVDQjg3M0M4NzFDNEY5QUUwMi80WS1laFhRNnZz ckFSaXVQMzBPbjIwcGlqX2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCNRVO4QJ7Hz2Uz6VEf8y3MCX0uAiLQzPcMehWwQ89pfF3UHTyq/74H hG1I4M5dwyV0y0L2QvrPi2nNguI0zywab4MHsX9zMJHA4Ir2zySuDat3w1H+qZwN YPcpKfrP/iXdnN4HLVOS9nDuvNOwQC9yDb5hfyEzbTkaNlKKgrghZZj9/uQ6xYGf Y6ChejS46Q6n8viKGIR99TP8p9C2QHPPq4FEuAcZ8TBg7+GAuu98CU9PgtXxTC1H xjJeSsntyZ3wm7Hr5Pj9KJ21C2Vo5Kp7ozl1Wved1XX0XOWJeVOqT+Kgt0ewF6SW YoA8unDuPB+LSHg3JvWB/S0neD4OtBOT -----END CERTIFICATE-----Generated at Wed Nov 5 05:27:30 2025 by rpki-client