$ rpki-client -vvf rpki.apnic.net/member_repository/A9131589/37E390A00CCC11EDB0993C15C4F9AE02/4dsvyCXsO7vnKFenPsCGoIIeIP0.mft File: 4dsvyCXsO7vnKFenPsCGoIIeIP0.mft (raw, json) Hash identifier: 4qW3+4MZsuZUuHlxNi7pyPljhcDe6Tf8YhWaHXmiYKE= Subject key identifier: 7E:EB:7E:E0:6A:5E:BB:57:F5:7E:05:53:DE:0A:6A:37:CE:4D:09:24 Authority key identifier: E1:DB:2F:C8:25:EC:3B:BB:E7:28:57:A7:3E:C0:86:A0:82:1E:20:FD Certificate issuer: /CN=A9131589/serialNumber=E1DB2FC825EC3BBBE72857A73EC086A0821E20FD Certificate serial: 02D1 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4dsvyCXsO7vnKFenPsCGoIIeIP0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9131589/37E390A00CCC11EDB0993C15C4F9AE02/4dsvyCXsO7vnKFenPsCGoIIeIP0.mft Manifest number: 02CC Signing time: Mon 03 Nov 2025 01:21:13 +0000 Manifest this update: Mon 03 Nov 2025 01:21:13 +0000 Manifest next update: Mon 10 Nov 2025 01:21:13 +0000 Files and hashes: 1: 4dsvyCXsO7vnKFenPsCGoIIeIP0.crl (hash: 2l4MtsPYVEZZAsm7sOgEv3p4g6DD17z2E7s7P+ky5os=) 2: 82759C100CCE11ED97C94316C4F9AE02.roa (hash: F2S0rE1Y9B4FArTQsvdfbYCQLr8rncdJXIVpg1O66R4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9131589/37E390A00CCC11EDB0993C15C4F9AE02/4dsvyCXsO7vnKFenPsCGoIIeIP0.crl rsync://rpki.apnic.net/member_repository/A9131589/37E390A00CCC11EDB0993C15C4F9AE02/4dsvyCXsO7vnKFenPsCGoIIeIP0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4dsvyCXsO7vnKFenPsCGoIIeIP0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 01:21:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 721 (0x2d1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9131589, serialNumber=E1DB2FC825EC3BBBE72857A73EC086A0821E20FD Validity Not Before: Nov 3 01:21:13 2025 GMT Not After : Nov 10 01:21:13 2025 GMT Subject: CN=69080389-a129 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:7a:96:d5:88:c0:50:bc:f0:68:cb:8e:1b:f3: 42:3c:b8:b4:f8:60:2b:92:0e:81:f7:ff:04:06:3a: 52:3c:90:0c:13:49:82:a8:ad:72:71:d5:fe:2f:06: 40:41:22:32:d2:d0:e4:09:fe:fa:5e:c3:fb:df:cb: aa:2a:6d:81:3a:27:26:5f:ef:56:2a:c2:a6:4c:61: 00:5a:2f:da:66:92:9f:c8:b5:bb:66:01:54:ef:d9: f3:f5:ec:4e:00:cc:45:7f:bd:c7:fd:82:99:e2:2a: 6e:89:3a:3f:8e:e0:a6:dd:bd:90:13:ea:aa:27:6a: 37:87:a6:f8:c5:e7:d2:86:81:13:59:68:21:eb:6c: ac:f5:74:16:bc:e5:ec:0e:f8:33:da:a2:3d:b5:de: 88:6c:07:12:4c:af:db:45:06:3d:24:b5:ff:98:e7: 8b:14:1e:ce:51:63:d1:21:cd:61:78:1b:02:47:be: 2d:83:ba:7b:bb:15:56:2b:80:61:f7:9c:1a:cc:b6: e8:4c:32:e7:72:71:67:89:fb:b0:11:c8:7a:ae:dd: 2b:84:48:20:93:20:cb:c8:39:99:22:70:0a:f9:c3: 85:d7:0b:41:16:99:36:a4:42:70:55:98:8b:d0:3c: 96:21:04:bd:3e:33:7c:c1:d9:f8:ba:6c:6b:65:3c: 67:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:EB:7E:E0:6A:5E:BB:57:F5:7E:05:53:DE:0A:6A:37:CE:4D:09:24 X509v3 Authority Key Identifier: keyid:E1:DB:2F:C8:25:EC:3B:BB:E7:28:57:A7:3E:C0:86:A0:82:1E:20:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9131589/37E390A00CCC11EDB0993C15C4F9AE02/4dsvyCXsO7vnKFenPsCGoIIeIP0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4dsvyCXsO7vnKFenPsCGoIIeIP0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9131589/37E390A00CCC11EDB0993C15C4F9AE02/4dsvyCXsO7vnKFenPsCGoIIeIP0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9b:98:eb:6a:99:1b:cc:84:cb:d9:7a:86:6b:f6:f1:56:98:1e: 0e:00:e8:fc:2b:27:ba:b3:a8:4f:49:e3:c6:ee:f6:b1:89:70: de:14:93:2c:4b:f2:96:34:da:c3:c9:ac:e1:15:03:c0:df:f2: ab:79:b8:e0:92:0d:84:24:c5:ea:d3:c2:c0:43:db:fa:d3:6d: 3c:f7:91:4e:04:7f:07:78:cd:bd:64:0a:8f:c8:f7:b2:60:11: 6f:0f:69:34:e6:ac:b7:5a:f7:83:fe:e5:f2:c9:6a:52:bb:60: fb:1d:b0:73:4f:ed:21:5e:bd:6e:28:25:1b:13:4b:90:d3:86: 37:0d:b8:3e:16:ad:18:fe:5c:59:3a:41:2e:4c:f5:dd:37:97: 67:60:5c:2b:5d:70:fc:ec:76:62:b5:3d:34:e1:bd:af:28:91: ee:1c:b2:a4:7f:d9:db:bd:a8:bd:77:dc:25:a5:3c:9b:01:ee: ea:da:fc:f3:66:d3:a3:00:a1:12:64:74:85:ae:ab:d2:5f:4a: 0f:56:f6:0b:2e:d1:0f:42:c4:7b:fd:d9:a4:25:d2:15:8c:03: 18:cd:90:1e:47:e1:57:67:1b:80:3f:37:ad:07:e4:c9:99:bc: 50:9d:49:a7:93:59:4d:64:f1:e0:b2:e6:2d:39:49:84:0a:85: 5e:5c:0e:0a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAtEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzE1ODkxMTAvBgNVBAUTKEUxREIyRkM4MjVFQzNCQkJFNzI4NTdBNzNFQzA4NkEw ODIxRTIwRkQwHhcNMjUxMTAzMDEyMTEzWhcNMjUxMTEwMDEyMTEzWjAYMRYwFAYD VQQDEw02OTA4MDM4OS1hMTI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArnqW1YjAULzwaMuOG/NCPLi0+GArkg6B9/8EBjpSPJAME0mCqK1ycdX+LwZA QSIy0tDkCf76XsP738uqKm2BOicmX+9WKsKmTGEAWi/aZpKfyLW7ZgFU79nz9exO AMxFf73H/YKZ4ipuiTo/juCm3b2QE+qqJ2o3h6b4xefShoETWWgh62ys9XQWvOXs Dvgz2qI9td6IbAcSTK/bRQY9JLX/mOeLFB7OUWPRIc1heBsCR74tg7p7uxVWK4Bh 95wazLboTDLncnFnifuwEch6rt0rhEggkyDLyDmZInAK+cOF1wtBFpk2pEJwVZiL 0DyWIQS9PjN8wdn4umxrZTxn0wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH7rfuBq XrtX9X4FU94KajfOTQkkMB8GA1UdIwQYMBaAFOHbL8gl7Du75yhXpz7AhqCCHiD9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMTU4OS8zN0UzOTBBMDBD Q0MxMUVEQjA5OTNDMTVDNEY5QUUwMi80ZHN2eUNYc083dm5LRmVuUHNDR29JSWVJ UDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzRkc3Z5Q1hzTzd2bktGZW5Qc0NHb0lJZUlQMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MTU4OS8zN0UzOTBBMDBDQ0MxMUVEQjA5OTNDMTVDNEY5QUUwMi80ZHN2eUNYc083 dm5LRmVuUHNDR29JSWVJUDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCbmOtqmRvMhMvZeoZr9vFWmB4OAOj8Kye6s6hPSePG7vaxiXDeFJMs S/KWNNrDyazhFQPA3/Krebjgkg2EJMXq08LAQ9v6020895FOBH8HeM29ZAqPyPey YBFvD2k05qy3WveD/uXyyWpSu2D7HbBzT+0hXr1uKCUbE0uQ04Y3Dbg+Fq0Y/lxZ OkEuTPXdN5dnYFwrXXD87HZitT004b2vKJHuHLKkf9nbvai9d9wlpTybAe7q2vzz ZtOjAKESZHSFrqvSX0oPVvYLLtEPQsR7/dmkJdIVjAMYzZAeR+FXZxuAPzetB+TJ mbxQnUmnk1lNZPHgsuYtOUmECoVeXA4K -----END CERTIFICATE-----Generated at Tue Nov 4 23:48:01 2025 by rpki-client