$ rpki-client -vvf rpki.apnic.net/member_repository/A91F4C6B/278AA3E4B51F11EA9FE8BD58C4F9AE02/4mhztF-I0fXYg8F-TM9wokUWIUI.mft File: 4mhztF-I0fXYg8F-TM9wokUWIUI.mft (raw, json) Hash identifier: Hi8+paKMbOXfITLk4Efr8o23eJifsFk/u6kV9axF/Yg= Subject key identifier: 45:38:7C:45:4B:7F:3C:5C:52:C4:99:08:BA:49:FF:8F:49:5F:17:58 Authority key identifier: E2:68:73:B4:5F:88:D1:F5:D8:83:C1:7E:4C:CF:70:A2:45:16:21:42 Certificate issuer: /CN=A91F4C6B/serialNumber=E26873B45F88D1F5D883C17E4CCF70A245162142 Certificate serial: 0922 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4mhztF-I0fXYg8F-TM9wokUWIUI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F4C6B/278AA3E4B51F11EA9FE8BD58C4F9AE02/4mhztF-I0fXYg8F-TM9wokUWIUI.mft Manifest number: 0913 Signing time: Sun 02 Nov 2025 20:15:21 +0000 Manifest this update: Sun 02 Nov 2025 20:15:20 +0000 Manifest next update: Sun 09 Nov 2025 20:15:20 +0000 Files and hashes: 1: 4mhztF-I0fXYg8F-TM9wokUWIUI.crl (hash: wQXX8vTJ68lfGFb8HadbVvpDpAExfkP03Bdk0Z5OIFM=) 2: E146B994B51F11EA9146DD58C4F9AE02.roa (hash: hfrhHFCjm9A1IZZ68jj/fGY3wp72/JwweOhEQKmJp+w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F4C6B/278AA3E4B51F11EA9FE8BD58C4F9AE02/4mhztF-I0fXYg8F-TM9wokUWIUI.crl rsync://rpki.apnic.net/member_repository/A91F4C6B/278AA3E4B51F11EA9FE8BD58C4F9AE02/4mhztF-I0fXYg8F-TM9wokUWIUI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4mhztF-I0fXYg8F-TM9wokUWIUI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 20:15:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2338 (0x922) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F4C6B, serialNumber=E26873B45F88D1F5D883C17E4CCF70A245162142 Validity Not Before: Nov 2 20:15:20 2025 GMT Not After : Nov 9 20:15:20 2025 GMT Subject: CN=6907bbd8-1eae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:d5:25:3b:f0:c4:86:91:65:92:93:85:de:a7: dd:bd:e3:82:27:ba:be:95:4b:43:ae:15:6c:dc:a9: eb:8e:51:f3:6c:19:b1:98:29:a1:46:db:f0:e6:dd: 26:ca:63:d5:94:d3:3e:96:53:64:71:51:c8:d8:c9: c5:fe:c4:a4:39:ab:ce:00:9a:fd:7e:89:8b:11:f8: 91:7f:04:38:46:51:10:0d:69:b0:cd:57:64:b7:ef: 50:61:89:32:fb:8d:94:87:73:61:e5:58:31:13:1b: d1:7a:65:fe:60:07:f1:88:b6:bf:4f:64:05:5b:d7: a3:c5:27:e9:b9:09:c9:5d:8b:1f:e3:b2:59:b6:60: 3f:d2:89:f3:4b:e8:d2:3d:97:bb:ba:6b:cf:47:e5: 41:71:62:49:86:d0:bf:b4:1a:e2:b6:b0:1a:48:ad: d5:71:7b:71:7f:8a:8d:0b:05:8d:6b:0d:dc:03:69: 4a:d8:98:04:18:cd:eb:51:7f:33:85:a1:7b:31:2c: d9:01:13:69:8b:39:30:07:5e:11:41:90:dc:89:be: 1c:51:5c:04:20:a3:76:dd:4f:f8:e0:bb:b7:8a:26: 35:5f:d3:6c:53:93:07:e0:a0:7e:30:2b:81:03:bb: 0c:9d:e3:53:1f:59:b3:a5:37:d2:46:61:bb:67:73: de:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:38:7C:45:4B:7F:3C:5C:52:C4:99:08:BA:49:FF:8F:49:5F:17:58 X509v3 Authority Key Identifier: keyid:E2:68:73:B4:5F:88:D1:F5:D8:83:C1:7E:4C:CF:70:A2:45:16:21:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F4C6B/278AA3E4B51F11EA9FE8BD58C4F9AE02/4mhztF-I0fXYg8F-TM9wokUWIUI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4mhztF-I0fXYg8F-TM9wokUWIUI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F4C6B/278AA3E4B51F11EA9FE8BD58C4F9AE02/4mhztF-I0fXYg8F-TM9wokUWIUI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d1:82:71:23:45:ff:02:cd:be:0c:5e:af:a1:17:c9:aa:cb:64: 88:a4:c3:9c:f4:c0:15:02:4e:81:93:25:af:73:77:44:44:e1: 28:42:f5:a8:f3:fc:82:ef:31:d6:92:3a:d3:5b:f5:09:ca:7b: cf:4a:d3:ec:4d:ae:44:ec:cf:0e:8c:dd:21:40:3b:02:16:ab: f1:d0:df:86:d1:0c:5f:af:14:ba:fc:9b:cf:06:a7:26:ae:1f: 01:06:a1:95:e1:52:57:48:62:a0:6b:46:27:ef:bb:3f:c7:13: ed:0d:16:5d:b9:8f:cc:65:c4:fc:89:50:3b:a8:3e:3c:fb:ea: be:1b:77:3e:4c:99:19:02:3b:46:4f:67:7b:99:f4:2f:e8:30: 13:12:4d:69:93:31:65:80:97:28:c3:e6:ec:cd:c2:44:21:3a: ac:ab:00:0d:73:76:c2:bd:e2:70:df:20:5f:5e:76:7c:85:c2: bc:5f:63:ef:37:52:c4:1c:fd:a2:ea:45:cd:c7:1c:77:52:30: 0e:86:23:15:b3:dc:a0:8f:9f:ee:25:b2:6a:74:78:c1:7c:04: fe:a4:55:1c:db:7c:1c:5a:1a:3b:0d:dd:3b:51:1b:98:20:a7: 0e:51:95:cd:2e:36:90:82:c1:6c:e9:72:40:4d:5e:6f:f4:bd: 32:61:15:be -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCSIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjRDNkIxMTAvBgNVBAUTKEUyNjg3M0I0NUY4OEQxRjVEODgzQzE3RTRDQ0Y3MEEy NDUxNjIxNDIwHhcNMjUxMTAyMjAxNTIwWhcNMjUxMTA5MjAxNTIwWjAYMRYwFAYD VQQDEw02OTA3YmJkOC0xZWFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAotUlO/DEhpFlkpOF3qfdveOCJ7q+lUtDrhVs3KnrjlHzbBmxmCmhRtvw5t0m ymPVlNM+llNkcVHI2MnF/sSkOavOAJr9fomLEfiRfwQ4RlEQDWmwzVdkt+9QYYky +42Uh3Nh5VgxExvRemX+YAfxiLa/T2QFW9ejxSfpuQnJXYsf47JZtmA/0onzS+jS PZe7umvPR+VBcWJJhtC/tBritrAaSK3VcXtxf4qNCwWNaw3cA2lK2JgEGM3rUX8z haF7MSzZARNpizkwB14RQZDcib4cUVwEIKN23U/44Lu3iiY1X9NsU5MH4KB+MCuB A7sMneNTH1mzpTfSRmG7Z3PeZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEU4fEVL fzxcUsSZCLpJ/49JXxdYMB8GA1UdIwQYMBaAFOJoc7RfiNH12IPBfkzPcKJFFiFC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNEM2Qi8yNzhBQTNFNEI1 MUYxMUVBOUZFOEJENThDNEY5QUUwMi80bWh6dEYtSTBmWFlnOEYtVE05d29rVVdJ VUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRtaHp0Ri1JMGZYWWc4Ri1UTTl3b2tVV0lVSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NEM2Qi8yNzhBQTNFNEI1MUYxMUVBOUZFOEJENThDNEY5QUUwMi80bWh6dEYtSTBm WFlnOEYtVE05d29rVVdJVUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDRgnEjRf8Czb4MXq+hF8mqy2SIpMOc9MAVAk6BkyWvc3dEROEoQvWo 8/yC7zHWkjrTW/UJynvPStPsTa5E7M8OjN0hQDsCFqvx0N+G0QxfrxS6/JvPBqcm rh8BBqGV4VJXSGKga0Yn77s/xxPtDRZduY/MZcT8iVA7qD48++q+G3c+TJkZAjtG T2d7mfQv6DATEk1pkzFlgJcow+bszcJEITqsqwANc3bCveJw3yBfXnZ8hcK8X2Pv N1LEHP2i6kXNxxx3UjAOhiMVs9ygj5/uJbJqdHjBfAT+pFUc23wcWho7Dd07URuY IKcOUZXNLjaQgsFs6XJATV5v9L0yYRW+ -----END CERTIFICATE-----Generated at Mon Nov 3 18:10:06 2025 by rpki-client