$ rpki-client -vvf rpki.apnic.net/member_repository/A91EB1BE/5A57786CC0C811E8AE805334C4F9AE02/4CEd1HfFtNoX56IChgOs2OcWZrU.mft File: 4CEd1HfFtNoX56IChgOs2OcWZrU.mft (raw, json) Hash identifier: GHFm2KYl18mlRNVBCeXf6mpWBv3Xu0uZfp3kXXFZwrw= Subject key identifier: 7F:80:21:E1:02:88:8A:08:A3:44:BC:24:9F:75:E9:B1:26:52:71:6F Authority key identifier: E0:21:1D:D4:77:C5:B4:DA:17:E7:A2:02:86:03:AC:D8:E7:16:66:B5 Certificate issuer: /CN=A91EB1BE/serialNumber=E0211DD477C5B4DA17E7A2028603ACD8E71666B5 Certificate serial: 1325 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4CEd1HfFtNoX56IChgOs2OcWZrU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EB1BE/5A57786CC0C811E8AE805334C4F9AE02/4CEd1HfFtNoX56IChgOs2OcWZrU.mft Manifest number: 1314 Signing time: Sun 02 Nov 2025 17:01:44 +0000 Manifest this update: Sun 02 Nov 2025 17:01:44 +0000 Manifest next update: Sun 09 Nov 2025 17:01:44 +0000 Files and hashes: 1: 4CEd1HfFtNoX56IChgOs2OcWZrU.crl (hash: aGPoIztCwLYpBwpXjX84NqkejvOkcJltrCnZK08Vq3o=) 2: 31E1DE72B04B11EE9F3B384BC4F9AE02.roa (hash: SUqha04b2ntyDAUGFXYiqHZijUV69AXBCBCtIkXQ4as=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EB1BE/5A57786CC0C811E8AE805334C4F9AE02/4CEd1HfFtNoX56IChgOs2OcWZrU.crl rsync://rpki.apnic.net/member_repository/A91EB1BE/5A57786CC0C811E8AE805334C4F9AE02/4CEd1HfFtNoX56IChgOs2OcWZrU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4CEd1HfFtNoX56IChgOs2OcWZrU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 17:01:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4901 (0x1325) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EB1BE, serialNumber=E0211DD477C5B4DA17E7A2028603ACD8E71666B5 Validity Not Before: Nov 2 17:01:44 2025 GMT Not After : Nov 9 17:01:44 2025 GMT Subject: CN=69078e78-e274 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:0d:46:4c:bb:bf:e2:b8:52:91:05:9b:56:c4: 69:e1:27:8d:5f:fc:e1:ac:44:64:b4:53:5e:64:27: 37:d8:ff:21:12:73:6e:7c:8f:a4:13:f5:86:d1:9a: f7:ca:bf:26:a0:a6:dc:4b:3d:cb:28:73:01:01:34: a8:70:16:c4:55:1f:3e:49:3e:fa:ac:d3:0f:d0:2c: 81:17:93:0e:b4:a3:f0:ad:2d:f8:d3:ae:ce:76:54: 59:95:d9:c7:86:36:25:d5:e8:fb:15:5c:c0:dd:d7: 8c:2e:43:57:8b:3c:ce:7a:e8:8a:5c:96:68:96:ea: 45:ac:9b:01:b2:c1:9b:0d:4e:a6:14:7a:97:d0:da: d8:c6:1c:d1:bc:f5:fa:07:1a:11:8e:c8:d5:83:6f: 54:86:4b:69:fe:94:c8:54:2d:de:28:1a:7d:4b:0f: 10:20:eb:6d:c8:81:f6:a1:9c:11:9a:d0:28:0b:42: ba:15:0e:ac:25:f5:39:18:a8:81:83:ce:03:3f:db: cb:12:3a:1b:62:1a:61:58:73:bc:fb:6c:ed:5b:7d: 7b:80:bf:18:4b:a5:bb:8f:aa:5a:54:67:ab:d7:7d: 31:d2:ac:7e:80:a9:a1:d3:ce:da:c1:95:f2:ae:1a: 10:92:6a:36:1a:fb:e3:8a:97:a8:a9:30:2a:da:f8: 91:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:80:21:E1:02:88:8A:08:A3:44:BC:24:9F:75:E9:B1:26:52:71:6F X509v3 Authority Key Identifier: keyid:E0:21:1D:D4:77:C5:B4:DA:17:E7:A2:02:86:03:AC:D8:E7:16:66:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EB1BE/5A57786CC0C811E8AE805334C4F9AE02/4CEd1HfFtNoX56IChgOs2OcWZrU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4CEd1HfFtNoX56IChgOs2OcWZrU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EB1BE/5A57786CC0C811E8AE805334C4F9AE02/4CEd1HfFtNoX56IChgOs2OcWZrU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 03:93:d1:54:50:c1:75:a1:00:fe:4d:ba:a7:cb:07:17:bd:f1: 0e:11:ee:9b:23:9e:2a:9d:2e:93:1c:0d:61:cb:08:70:35:40: 0a:fc:18:77:18:13:44:da:07:bf:85:49:b6:0f:65:f5:b5:19: 2d:09:15:fd:37:04:3c:bc:de:25:76:3b:25:2d:5b:5c:56:0d: 0e:4f:33:9d:55:dc:72:8f:86:7b:05:76:ff:49:17:55:70:b6: cc:39:91:dd:0c:39:c9:a1:06:ed:66:14:cd:73:ae:da:10:7b: 66:17:0c:4d:dd:2f:af:2f:e3:e9:c1:b7:5e:2d:95:6b:f7:52: 3d:2c:0e:bf:c5:5f:7a:1c:e8:f7:7f:c7:3a:99:df:a1:15:bc: 57:b6:d6:12:d7:6d:fa:65:01:6c:f6:f8:3f:f1:19:e3:f6:5f: 10:cf:30:a0:09:4e:03:15:d5:53:ee:bc:50:ce:d4:a3:9d:ef: 37:d0:24:11:2c:4c:0b:94:3d:ef:31:97:9d:16:2c:95:dd:a1: a8:01:27:4e:93:91:bf:f3:00:81:c0:9e:39:62:74:1d:3a:64: 8f:f8:02:f6:0d:fc:c4:1d:d2:79:41:0f:a5:85:0a:00:e4:1f: 70:7f:b9:07:14:52:00:41:5a:dc:92:de:fc:b5:33:ff:78:58: 4a:59:74:9c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEyUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUIxQkUxMTAvBgNVBAUTKEUwMjExREQ0NzdDNUI0REExN0U3QTIwMjg2MDNBQ0Q4 RTcxNjY2QjUwHhcNMjUxMTAyMTcwMTQ0WhcNMjUxMTA5MTcwMTQ0WjAYMRYwFAYD VQQDEw02OTA3OGU3OC1lMjc0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArw1GTLu/4rhSkQWbVsRp4SeNX/zhrERktFNeZCc32P8hEnNufI+kE/WG0Zr3 yr8moKbcSz3LKHMBATSocBbEVR8+ST76rNMP0CyBF5MOtKPwrS34067OdlRZldnH hjYl1ej7FVzA3deMLkNXizzOeuiKXJZolupFrJsBssGbDU6mFHqX0NrYxhzRvPX6 BxoRjsjVg29Uhktp/pTIVC3eKBp9Sw8QIOttyIH2oZwRmtAoC0K6FQ6sJfU5GKiB g84DP9vLEjobYhphWHO8+2ztW317gL8YS6W7j6paVGer130x0qx+gKmh087awZXy rhoQkmo2GvvjipeoqTAq2viRTwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH+AIeEC iIoIo0S8JJ916bEmUnFvMB8GA1UdIwQYMBaAFOAhHdR3xbTaF+eiAoYDrNjnFma1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQjFCRS81QTU3Nzg2Q0Mw QzgxMUU4QUU4MDUzMzRDNEY5QUUwMi80Q0VkMUhmRnROb1g1NklDaGdPczJPY1da clUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRDRWQxSGZGdE5vWDU2SUNoZ09zMk9jV1pyVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QjFCRS81QTU3Nzg2Q0MwQzgxMUU4QUU4MDUzMzRDNEY5QUUwMi80Q0VkMUhmRnRO b1g1NklDaGdPczJPY1daclUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQADk9FUUMF1oQD+TbqnywcXvfEOEe6bI54qnS6THA1hywhwNUAK/Bh3 GBNE2ge/hUm2D2X1tRktCRX9NwQ8vN4ldjslLVtcVg0OTzOdVdxyj4Z7BXb/SRdV cLbMOZHdDDnJoQbtZhTNc67aEHtmFwxN3S+vL+PpwbdeLZVr91I9LA6/xV96HOj3 f8c6md+hFbxXttYS1236ZQFs9vg/8Rnj9l8QzzCgCU4DFdVT7rxQztSjne830CQR LEwLlD3vMZedFiyV3aGoASdOk5G/8wCBwJ45YnQdOmSP+AL2DfzEHdJ5QQ+lhQoA 5B9wf7kHFFIAQVrckt78tTP/eFhKWXSc -----END CERTIFICATE-----Generated at Mon Nov 3 18:18:47 2025 by rpki-client