$ rpki-client -vvf rpki.apnic.net/member_repository/A914CBF3/1BC6EB2011E711EAB903AA79C4F9AE02/4kSeMSIgEx4udsQsfMxt0ZNRBwc.mft File: 4kSeMSIgEx4udsQsfMxt0ZNRBwc.mft (raw, json) Hash identifier: +NI9mWs+yfWEF3HI7J4V+f6l1CNLb3fVkW0DRuVB4KY= Subject key identifier: F5:78:6D:F7:C0:E5:F8:7C:07:44:A6:5F:2B:BC:91:E4:D5:D0:7D:C0 Authority key identifier: E2:44:9E:31:22:20:13:1E:2E:76:C4:2C:7C:CC:6D:D1:93:51:07:07 Certificate issuer: /CN=A914CBF3/serialNumber=E2449E312220131E2E76C42C7CCC6DD193510707 Certificate serial: 0C87 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4kSeMSIgEx4udsQsfMxt0ZNRBwc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914CBF3/1BC6EB2011E711EAB903AA79C4F9AE02/4kSeMSIgEx4udsQsfMxt0ZNRBwc.mft Manifest number: 0C64 Signing time: Tue 04 Nov 2025 18:42:36 +0000 Manifest this update: Tue 04 Nov 2025 18:42:35 +0000 Manifest next update: Tue 11 Nov 2025 18:42:35 +0000 Files and hashes: 1: 4kSeMSIgEx4udsQsfMxt0ZNRBwc.crl (hash: teOqqjYnH5/wk+OQu7Ikl/oeq2JvOwELeUQsaLKvzZk=) 2: 183DE570057A11EC822F230EC4F9AE02.roa (hash: bEfFzY9ERkUCouk5XoaucvDsVkrzcwabTIVAnbK3Eko=) 3: B32668C4D98C11EB905D7281C4F9AE02.roa (hash: +CpW1CaKQXu6MhTzl4JHCslaYOAYJXQr9xAkDiD0lq0=) 4: B688C61E2A7411F09C50DF45C4F9AE02.roa (hash: PvI9nhg15RMbIrPmzo33E5WP1sio6iu2Cas5ym98pTY=) 5: 89EA369C2A7411F09A757F45C4F9AE02.roa (hash: F9UOwIl8TIxEFQqKFxE/ZQxprBW29nR8LDsUajtcNxA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914CBF3/1BC6EB2011E711EAB903AA79C4F9AE02/4kSeMSIgEx4udsQsfMxt0ZNRBwc.crl rsync://rpki.apnic.net/member_repository/A914CBF3/1BC6EB2011E711EAB903AA79C4F9AE02/4kSeMSIgEx4udsQsfMxt0ZNRBwc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4kSeMSIgEx4udsQsfMxt0ZNRBwc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 18:42:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3207 (0xc87) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914CBF3, serialNumber=E2449E312220131E2E76C42C7CCC6DD193510707 Validity Not Before: Nov 4 18:42:35 2025 GMT Not After : Nov 11 18:42:35 2025 GMT Subject: CN=690a491c-f9ab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:c3:3b:4c:4c:a7:41:dc:eb:27:ee:ca:4c:96: d1:f9:4e:98:6e:49:ef:39:54:d8:03:b7:6b:5d:28: ac:53:78:f4:47:b2:76:17:fb:9a:61:c7:9b:78:7f: a2:ec:17:5d:d5:7d:10:0d:9c:3d:4c:18:ae:dd:5f: 23:bf:e6:e3:fb:9b:eb:97:cf:d0:b4:01:82:c3:bf: 03:82:42:61:df:2a:20:36:56:10:c3:4d:83:89:93: 00:35:df:e5:19:15:e6:4b:6b:c7:3e:e9:f5:35:ce: f6:88:f6:7b:90:4a:85:f7:fb:8f:c6:20:02:56:36: 95:a5:8c:30:80:37:97:7f:6e:28:92:cf:93:7c:56: f0:3a:05:e7:d8:45:e3:32:a0:7f:2b:a2:ad:92:27: be:a8:34:f2:43:03:23:c4:f7:62:7e:0a:ff:10:d2: 91:cf:e5:45:ef:49:f4:c2:9b:ba:d2:0f:b0:f6:13: 50:77:91:15:4b:f7:9c:42:43:cb:67:90:75:f6:fd: 34:7a:94:5f:88:da:c3:53:df:ba:74:48:59:f8:53: 0e:99:b7:21:59:cb:57:0b:89:ad:f1:d6:ac:3c:84: a8:77:2f:76:dd:d2:1f:57:9f:da:1a:89:71:91:f1: 16:0f:c7:84:7c:d2:5a:b3:a2:60:16:f7:7c:2e:5e: c9:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:78:6D:F7:C0:E5:F8:7C:07:44:A6:5F:2B:BC:91:E4:D5:D0:7D:C0 X509v3 Authority Key Identifier: keyid:E2:44:9E:31:22:20:13:1E:2E:76:C4:2C:7C:CC:6D:D1:93:51:07:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914CBF3/1BC6EB2011E711EAB903AA79C4F9AE02/4kSeMSIgEx4udsQsfMxt0ZNRBwc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4kSeMSIgEx4udsQsfMxt0ZNRBwc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914CBF3/1BC6EB2011E711EAB903AA79C4F9AE02/4kSeMSIgEx4udsQsfMxt0ZNRBwc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 63:ec:bc:ad:68:48:d5:64:96:b1:d3:c2:f0:cc:6f:51:cc:73: f1:22:28:5f:f8:b0:79:26:1b:0f:68:1b:fe:1e:f0:c1:bb:3b: c1:85:80:eb:a5:8f:0e:3a:05:cc:87:8e:a1:04:eb:80:6d:b3: 2e:72:21:63:51:14:04:73:4d:ac:2d:43:c7:60:f7:77:a5:a5: 4f:cb:48:7d:b8:57:69:0c:82:36:05:3e:68:56:6e:d9:dd:1b: 32:3c:b0:41:fe:f0:ae:fa:8a:2f:a3:81:ba:7c:1d:56:ef:af: 28:28:4f:87:7d:eb:11:f5:2a:7b:fd:05:b5:88:23:b4:b7:3d: 9b:61:db:7a:9a:8f:81:86:0e:72:8c:31:ca:1d:f0:7d:8c:13: 6e:fa:09:fb:5c:68:32:b0:3b:88:3d:83:8f:0e:d8:0e:29:52: a3:ba:c5:c2:0e:55:55:b9:9e:33:b7:20:7f:a7:2f:48:cc:7c: 93:bd:06:22:ea:19:70:94:79:9b:ba:8a:57:5d:28:15:e9:a0: 17:0f:4f:d3:f2:ff:c8:cc:a9:d8:46:96:99:21:a0:99:b8:1c: 5f:13:2c:55:d8:27:71:62:1d:3f:56:f8:f1:30:19:66:17:a0: aa:bb:61:e7:ea:53:52:68:b0:36:00:89:a0:43:15:23:24:48: 38:b9:55:69 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDIcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NENCRjMxMTAvBgNVBAUTKEUyNDQ5RTMxMjIyMDEzMUUyRTc2QzQyQzdDQ0M2REQx OTM1MTA3MDcwHhcNMjUxMTA0MTg0MjM1WhcNMjUxMTExMTg0MjM1WjAYMRYwFAYD VQQDEw02OTBhNDkxYy1mOWFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0sM7TEynQdzrJ+7KTJbR+U6YbknvOVTYA7drXSisU3j0R7J2F/uaYcebeH+i 7Bdd1X0QDZw9TBiu3V8jv+bj+5vrl8/QtAGCw78DgkJh3yogNlYQw02DiZMANd/l GRXmS2vHPun1Nc72iPZ7kEqF9/uPxiACVjaVpYwwgDeXf24oks+TfFbwOgXn2EXj MqB/K6Ktkie+qDTyQwMjxPdifgr/ENKRz+VF70n0wpu60g+w9hNQd5EVS/ecQkPL Z5B19v00epRfiNrDU9+6dEhZ+FMOmbchWctXC4mt8dasPISody923dIfV5/aGolx kfEWD8eEfNJas6JgFvd8Ll7JpQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPV4bffA 5fh8B0SmXyu8keTV0H3AMB8GA1UdIwQYMBaAFOJEnjEiIBMeLnbELHzMbdGTUQcH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0Q0JGMy8xQkM2RUIyMDEx RTcxMUVBQjkwM0FBNzlDNEY5QUUwMi80a1NlTVNJZ0V4NHVkc1FzZk14dDBaTlJC d2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRrU2VNU0lnRXg0dWRzUXNmTXh0MFpOUkJ3Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 Q0JGMy8xQkM2RUIyMDExRTcxMUVBQjkwM0FBNzlDNEY5QUUwMi80a1NlTVNJZ0V4 NHVkc1FzZk14dDBaTlJCd2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBj7LytaEjVZJax08LwzG9RzHPxIihf+LB5JhsPaBv+HvDBuzvBhYDr pY8OOgXMh46hBOuAbbMuciFjURQEc02sLUPHYPd3paVPy0h9uFdpDII2BT5oVm7Z 3RsyPLBB/vCu+oovo4G6fB1W768oKE+HfesR9Sp7/QW1iCO0tz2bYdt6mo+Bhg5y jDHKHfB9jBNu+gn7XGgysDuIPYOPDtgOKVKjusXCDlVVuZ4ztyB/py9IzHyTvQYi 6hlwlHmbuopXXSgV6aAXD0/T8v/IzKnYRpaZIaCZuBxfEyxV2CdxYh0/VvjxMBlm F6Cqu2Hn6lNSaLA2AImgQxUjJEg4uVVp -----END CERTIFICATE-----Generated at Wed Nov 5 03:41:09 2025 by rpki-client