$ rpki-client -vvf rpki.apnic.net/member_repository/A91D09B8/6AB99E262C7211EFB89B0F84C4F9AE02/4-j_B54D_aQzRoidk3ZblZ9uHVk.mft File: 4-j_B54D_aQzRoidk3ZblZ9uHVk.mft (raw, json) Hash identifier: xbXLZSt3K57NkhC2bAEdemT3cS2VzUJ8TfZQRkOSgSQ= Subject key identifier: D4:49:1F:26:30:60:7A:E3:6A:AC:1E:A4:7D:C7:53:9E:D4:FE:DD:53 Authority key identifier: E3:E8:FF:07:9E:03:FD:A4:33:46:88:9D:93:76:5B:95:9F:6E:1D:59 Certificate issuer: /CN=A91D09B8/serialNumber=E3E8FF079E03FDA43346889D93765B959F6E1D59 Certificate serial: 0107 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4-j_B54D_aQzRoidk3ZblZ9uHVk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D09B8/6AB99E262C7211EFB89B0F84C4F9AE02/4-j_B54D_aQzRoidk3ZblZ9uHVk.mft Manifest number: 0104 Signing time: Mon 03 Nov 2025 05:02:19 +0000 Manifest this update: Mon 03 Nov 2025 05:02:18 +0000 Manifest next update: Mon 10 Nov 2025 05:02:18 +0000 Files and hashes: 1: 4-j_B54D_aQzRoidk3ZblZ9uHVk.crl (hash: UhUGHXiIsqiP2/YCGQcqMrtCKXrLS/EUAq/j4hpH218=) 2: 7594FBFA2C7311EFA27A6526C4F9AE02.roa (hash: 1wzYMLFHk5w163izK/FwbdDLwMdZuNPTMa1yYNCw1jQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D09B8/6AB99E262C7211EFB89B0F84C4F9AE02/4-j_B54D_aQzRoidk3ZblZ9uHVk.crl rsync://rpki.apnic.net/member_repository/A91D09B8/6AB99E262C7211EFB89B0F84C4F9AE02/4-j_B54D_aQzRoidk3ZblZ9uHVk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4-j_B54D_aQzRoidk3ZblZ9uHVk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 05:02:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 263 (0x107) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D09B8, serialNumber=E3E8FF079E03FDA43346889D93765B959F6E1D59 Validity Not Before: Nov 3 05:02:18 2025 GMT Not After : Nov 10 05:02:18 2025 GMT Subject: CN=6908375b-a216 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:89:9f:b9:d9:e2:cd:97:61:50:26:1d:44:db: 80:db:fa:ff:22:b0:23:bf:de:56:bd:80:7b:2f:46: 52:e1:b4:28:7d:72:f0:42:4e:3c:55:ff:96:d2:30: 96:d5:6f:54:68:50:c2:31:11:eb:e7:24:c8:b2:32: 0b:26:ef:80:49:75:b2:6e:96:19:3a:67:90:6e:1a: 96:43:cc:2f:cf:e1:50:55:12:20:31:5d:0f:c1:85: cb:4c:d5:3c:10:a2:6e:82:f0:4e:f7:f5:a5:b8:ad: 9f:db:2d:ab:d6:b0:f1:34:7d:6a:b6:1d:fa:9b:f0: 06:04:ba:68:df:a4:3d:e0:85:e1:2a:74:74:30:38: 2a:0a:35:ac:e5:6a:d3:b3:c8:09:d2:6c:3a:50:79: 37:fb:27:b6:5a:b7:a1:ba:eb:09:de:e5:b5:3d:6b: f5:77:16:d2:c2:5b:99:7e:64:32:ac:1c:fb:4e:0f: 93:4d:f3:44:cf:0f:f5:be:13:10:97:9c:b9:f6:bb: 29:eb:10:51:86:17:23:64:82:26:6a:94:bf:25:3e: 14:b4:84:db:fe:17:5e:b6:69:f3:6a:95:cd:02:d1: ad:0c:1f:e6:2c:99:8a:33:4e:30:8a:ed:94:1d:78: 66:5b:66:13:8f:91:8d:d2:1a:37:83:07:e6:47:27: b7:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:49:1F:26:30:60:7A:E3:6A:AC:1E:A4:7D:C7:53:9E:D4:FE:DD:53 X509v3 Authority Key Identifier: keyid:E3:E8:FF:07:9E:03:FD:A4:33:46:88:9D:93:76:5B:95:9F:6E:1D:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D09B8/6AB99E262C7211EFB89B0F84C4F9AE02/4-j_B54D_aQzRoidk3ZblZ9uHVk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4-j_B54D_aQzRoidk3ZblZ9uHVk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D09B8/6AB99E262C7211EFB89B0F84C4F9AE02/4-j_B54D_aQzRoidk3ZblZ9uHVk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2b:a8:66:af:e5:37:a4:a2:9d:16:49:69:3b:f6:64:33:17:60: 1b:e6:0f:ab:7e:05:35:f6:9d:bb:63:37:d4:33:0e:59:26:b2: 8e:0e:b9:51:a4:2a:40:ae:ca:73:45:6e:ec:e8:5b:df:2f:d1: 86:56:a3:1b:88:2a:ad:98:24:4d:cd:e1:cd:69:86:5d:96:1f: 50:2e:18:c6:02:1c:b1:3f:3f:66:76:d7:24:97:98:ae:5e:5c: 58:32:e7:cb:18:50:5f:ed:17:00:ea:07:23:a5:70:c0:48:66: 02:4f:e4:7d:8a:06:6a:9f:af:bd:78:55:9f:45:8c:62:74:d4: e8:f7:03:5a:0e:b4:ab:4b:35:3e:18:e8:20:7f:8e:25:f5:96: c9:7e:c8:9b:b3:85:5c:a4:68:a8:2a:dd:7d:d3:e2:fc:87:70: e1:80:5a:0a:3c:78:4d:bc:60:4b:c1:db:f0:f7:4f:b3:f4:63: 0a:99:a3:d8:ae:36:45:d1:75:18:46:b5:17:54:6c:e1:c3:12: 67:74:48:cf:8b:57:16:71:38:43:dc:fd:94:f9:f1:d5:83:fa: 4e:cc:2f:3f:8c:51:7f:fd:5d:88:6c:63:4d:c6:d0:8c:ba:8b: 12:34:7c:1f:81:6b:cb:55:6d:1e:5b:d4:79:4a:fb:8d:37:0c: 5c:ab:14:d2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDA5QjgxMTAvBgNVBAUTKEUzRThGRjA3OUUwM0ZEQTQzMzQ2ODg5RDkzNzY1Qjk1 OUY2RTFENTkwHhcNMjUxMTAzMDUwMjE4WhcNMjUxMTEwMDUwMjE4WjAYMRYwFAYD VQQDEw02OTA4Mzc1Yi1hMjE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuYmfudnizZdhUCYdRNuA2/r/IrAjv95WvYB7L0ZS4bQofXLwQk48Vf+W0jCW 1W9UaFDCMRHr5yTIsjILJu+ASXWybpYZOmeQbhqWQ8wvz+FQVRIgMV0PwYXLTNU8 EKJugvBO9/WluK2f2y2r1rDxNH1qth36m/AGBLpo36Q94IXhKnR0MDgqCjWs5WrT s8gJ0mw6UHk3+ye2WrehuusJ3uW1PWv1dxbSwluZfmQyrBz7Tg+TTfNEzw/1vhMQ l5y59rsp6xBRhhcjZIImapS/JT4UtITb/hdetmnzapXNAtGtDB/mLJmKM04wiu2U HXhmW2YTj5GN0ho3gwfmRye3cwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNRJHyYw YHrjaqwepH3HU57U/t1TMB8GA1UdIwQYMBaAFOPo/weeA/2kM0aInZN2W5Wfbh1Z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMDlCOC82QUI5OUUyNjJD NzIxMUVGQjg5QjBGODRDNEY5QUUwMi80LWpfQjU0RF9hUXpSb2lkazNaYmxaOXVI VmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzQtal9CNTREX2FRelJvaWRrM1pibFo5dUhWay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MDlCOC82QUI5OUUyNjJDNzIxMUVGQjg5QjBGODRDNEY5QUUwMi80LWpfQjU0RF9h UXpSb2lkazNaYmxaOXVIVmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQArqGav5Tekop0WSWk79mQzF2Ab5g+rfgU19p27YzfUMw5ZJrKODrlR pCpArspzRW7s6FvfL9GGVqMbiCqtmCRNzeHNaYZdlh9QLhjGAhyxPz9mdtckl5iu XlxYMufLGFBf7RcA6gcjpXDASGYCT+R9igZqn6+9eFWfRYxidNTo9wNaDrSrSzU+ GOggf44l9ZbJfsibs4VcpGioKt190+L8h3DhgFoKPHhNvGBLwdvw90+z9GMKmaPY rjZF0XUYRrUXVGzhwxJndEjPi1cWcThD3P2U+fHVg/pOzC8/jFF//V2IbGNNxtCM uosSNHwfgWvLVW0eW9R5SvuNNwxcqxTS -----END CERTIFICATE-----Generated at Mon Nov 3 18:17:27 2025 by rpki-client