$ rpki-client -vvf rpki.apnic.net/member_repository/A91F4C6B/278AA3E4B51F11EA9FE8BD58C4F9AE02/4mhztF-I0fXYg8F-TM9wokUWIUI.mft File: 4mhztF-I0fXYg8F-TM9wokUWIUI.mft (raw, json) Hash identifier: yQdSa82FYzzvxOS1n2cqxNwSmdZUhZKuQHR9e+n7vqY= Subject key identifier: 61:C5:CC:2F:AB:83:0A:96:4B:74:FA:D8:48:0D:88:53:BF:50:C9:77 Authority key identifier: E2:68:73:B4:5F:88:D1:F5:D8:83:C1:7E:4C:CF:70:A2:45:16:21:42 Certificate issuer: /CN=A91F4C6B/serialNumber=E26873B45F88D1F5D883C17E4CCF70A245162142 Certificate serial: 090A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4mhztF-I0fXYg8F-TM9wokUWIUI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F4C6B/278AA3E4B51F11EA9FE8BD58C4F9AE02/4mhztF-I0fXYg8F-TM9wokUWIUI.mft Manifest number: 08FB Signing time: Tue 16 Sep 2025 20:34:48 +0000 Manifest this update: Tue 16 Sep 2025 20:34:47 +0000 Manifest next update: Tue 23 Sep 2025 20:34:47 +0000 Files and hashes: 1: 4mhztF-I0fXYg8F-TM9wokUWIUI.crl (hash: /FK5ZWdW27NvTv2wqiFKzEPlHD6HbIP34On6P/yMrHk=) 2: E146B994B51F11EA9146DD58C4F9AE02.roa (hash: hfrhHFCjm9A1IZZ68jj/fGY3wp72/JwweOhEQKmJp+w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F4C6B/278AA3E4B51F11EA9FE8BD58C4F9AE02/4mhztF-I0fXYg8F-TM9wokUWIUI.crl rsync://rpki.apnic.net/member_repository/A91F4C6B/278AA3E4B51F11EA9FE8BD58C4F9AE02/4mhztF-I0fXYg8F-TM9wokUWIUI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4mhztF-I0fXYg8F-TM9wokUWIUI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 23 Sep 2025 20:34:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2314 (0x90a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F4C6B, serialNumber=E26873B45F88D1F5D883C17E4CCF70A245162142 Validity Not Before: Sep 16 20:34:47 2025 GMT Not After : Sep 23 20:34:47 2025 GMT Subject: CN=68c9c9e7-bf3a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:cb:1d:2e:f2:2b:81:43:bb:3b:2e:40:ae:10: 40:f2:e6:0f:63:ac:29:e9:da:d7:5c:1c:50:50:18: f6:98:94:1a:f8:55:07:84:b9:d6:5c:e1:29:89:c6: 21:14:f8:0d:c9:ba:85:34:a1:2a:69:87:8e:01:c3: 6a:e0:6c:6f:a5:4d:68:93:05:3f:9c:ab:7c:97:5f: 8e:16:16:f2:9a:83:17:43:a6:ef:8b:59:a3:e4:b8: 8b:cc:1e:e1:37:69:f9:3e:66:17:c1:81:2a:2d:aa: da:76:77:17:7c:e0:e6:4a:35:46:62:d0:6d:cb:b9: 45:dc:cf:57:81:11:81:0e:83:73:4b:f7:4f:f7:6b: 17:be:7b:0d:53:82:b3:e1:19:6b:d8:a1:f5:4b:9b: 51:00:ef:84:77:f0:7f:cc:e3:9d:e4:9d:96:73:b1: 6d:28:c1:e8:36:e5:3e:4e:12:ee:a3:e8:0c:ed:b4: 57:62:51:71:20:90:4a:2f:bd:ab:ff:af:bf:98:3e: 2f:83:f2:1c:90:b7:ea:14:ac:dc:83:19:e9:da:4a: 66:32:08:71:45:db:e5:9d:33:c3:f3:cc:8f:62:53: b9:59:72:6d:ae:97:21:f9:7b:74:c9:ca:af:5d:e6: 3d:e7:43:be:c5:a9:97:5f:0d:d7:b1:4b:09:f1:39: 3c:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:C5:CC:2F:AB:83:0A:96:4B:74:FA:D8:48:0D:88:53:BF:50:C9:77 X509v3 Authority Key Identifier: keyid:E2:68:73:B4:5F:88:D1:F5:D8:83:C1:7E:4C:CF:70:A2:45:16:21:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F4C6B/278AA3E4B51F11EA9FE8BD58C4F9AE02/4mhztF-I0fXYg8F-TM9wokUWIUI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4mhztF-I0fXYg8F-TM9wokUWIUI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F4C6B/278AA3E4B51F11EA9FE8BD58C4F9AE02/4mhztF-I0fXYg8F-TM9wokUWIUI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6e:b4:e2:12:e9:b8:fd:16:4c:05:3d:e8:67:2d:17:20:2e:60: 02:1f:d2:4e:a7:05:d3:46:1d:f6:9f:64:b9:2f:e9:d4:e8:06: 5c:1a:87:80:41:49:f9:21:02:ff:bc:4e:b1:bf:f7:8f:e1:6f: 7b:e4:69:c4:72:9c:69:1a:4d:74:08:58:0d:d8:8a:78:7c:32: 92:3f:b3:5b:66:0e:df:f5:e4:a1:fb:e7:8d:2c:11:2f:66:04: f8:e8:ab:5a:6a:14:97:4f:80:da:74:3f:0e:34:1c:5a:7e:97: 4c:1a:67:31:89:ed:48:45:38:b1:19:8a:b5:98:e3:5a:75:a8: 2b:7d:c1:b4:96:5c:49:ab:c8:b5:11:5c:c9:ed:d9:52:c0:7a: af:ab:c7:fb:f0:15:1d:97:ac:99:41:f1:0a:b3:11:86:82:a3: 19:df:9c:58:bf:c8:dc:62:4b:35:62:75:f4:5e:a6:8b:ec:41: 71:31:d3:72:f3:38:56:df:25:a7:41:44:6a:88:aa:e9:1d:a3: 67:2d:43:e6:ee:0e:be:fc:bb:40:cb:0e:ef:f9:09:29:8d:ee: 82:fd:91:0f:c2:5b:0a:36:6c:b2:e6:dc:1c:ab:4d:db:a3:88: 57:d5:0e:95:a7:d7:b9:e9:0c:9d:c4:7b:21:33:4d:32:e6:9a: 30:78:c6:61 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCQowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjRDNkIxMTAvBgNVBAUTKEUyNjg3M0I0NUY4OEQxRjVEODgzQzE3RTRDQ0Y3MEEy NDUxNjIxNDIwHhcNMjUwOTE2MjAzNDQ3WhcNMjUwOTIzMjAzNDQ3WjAYMRYwFAYD VQQDEw02OGM5YzllNy1iZjNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr8sdLvIrgUO7Oy5ArhBA8uYPY6wp6drXXBxQUBj2mJQa+FUHhLnWXOEpicYh FPgNybqFNKEqaYeOAcNq4GxvpU1okwU/nKt8l1+OFhbymoMXQ6bvi1mj5LiLzB7h N2n5PmYXwYEqLaradncXfODmSjVGYtBty7lF3M9XgRGBDoNzS/dP92sXvnsNU4Kz 4Rlr2KH1S5tRAO+Ed/B/zOOd5J2Wc7FtKMHoNuU+ThLuo+gM7bRXYlFxIJBKL72r /6+/mD4vg/IckLfqFKzcgxnp2kpmMghxRdvlnTPD88yPYlO5WXJtrpch+Xt0ycqv XeY950O+xamXXw3XsUsJ8Tk8yQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGHFzC+r gwqWS3T62EgNiFO/UMl3MB8GA1UdIwQYMBaAFOJoc7RfiNH12IPBfkzPcKJFFiFC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNEM2Qi8yNzhBQTNFNEI1 MUYxMUVBOUZFOEJENThDNEY5QUUwMi80bWh6dEYtSTBmWFlnOEYtVE05d29rVVdJ VUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRtaHp0Ri1JMGZYWWc4Ri1UTTl3b2tVV0lVSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NEM2Qi8yNzhBQTNFNEI1MUYxMUVBOUZFOEJENThDNEY5QUUwMi80bWh6dEYtSTBm WFlnOEYtVE05d29rVVdJVUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQButOIS6bj9FkwFPehnLRcgLmACH9JOpwXTRh32n2S5L+nU6AZcGoeA QUn5IQL/vE6xv/eP4W975GnEcpxpGk10CFgN2Ip4fDKSP7NbZg7f9eSh++eNLBEv ZgT46KtaahSXT4DadD8ONBxafpdMGmcxie1IRTixGYq1mONadagrfcG0llxJq8i1 EVzJ7dlSwHqvq8f78BUdl6yZQfEKsxGGgqMZ35xYv8jcYks1YnX0XqaL7EFxMdNy 8zhW3yWnQURqiKrpHaNnLUPm7g6+/LtAyw7v+Qkpje6C/ZEPwlsKNmyy5twcq03b o4hX1Q6Vp9e56QydxHshM00y5poweMZh -----END CERTIFICATE-----Generated at Thu Sep 18 20:25:00 2025 by rpki-client