$ rpki-client -vvf rpki.apnic.net/member_repository/A9153CE9/0AB1D396F51511EB9EFE0750C4F9AE02/4JlhFVCKOtWZFdurzLaW26C0zHI.mft File: 4JlhFVCKOtWZFdurzLaW26C0zHI.mft (raw, json) Hash identifier: dAws3y8/FA+cy9HyGZA8ABZIet0P+L4CGh6d7iubBCo= Subject key identifier: 44:AC:37:F3:45:13:DF:94:8C:2A:CE:8B:17:BE:50:52:9E:53:5F:2B Authority key identifier: E0:99:61:15:50:8A:3A:D5:99:15:DB:AB:CC:B6:96:DB:A0:B4:CC:72 Certificate issuer: /CN=A9153CE9/serialNumber=E0996115508A3AD59915DBABCCB696DBA0B4CC72 Certificate serial: 05C5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4JlhFVCKOtWZFdurzLaW26C0zHI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9153CE9/0AB1D396F51511EB9EFE0750C4F9AE02/4JlhFVCKOtWZFdurzLaW26C0zHI.mft Manifest number: 05A5 Signing time: Sun 02 Nov 2025 23:12:11 +0000 Manifest this update: Sun 02 Nov 2025 23:12:11 +0000 Manifest next update: Sun 09 Nov 2025 23:12:11 +0000 Files and hashes: 1: 4JlhFVCKOtWZFdurzLaW26C0zHI.crl (hash: MU46kwtM7AX/Uui8MxKwXm5+pCDuzKJa9IYluQbHKBA=) 2: 6D655B7CAF4F11F0A741B236C4F9AE02.roa (hash: AlwCuJ0nHLLDaLbEBzwsgdR7XNh+J1HiqsbNBXBHle0=) 3: 03C7AA80F01111ED9C345840C4F9AE02.roa (hash: Am8OlNfTP5V8Kx5g/Dv+15S2O7P9HWujy6NfIY4x9VA=) 4: F650791EF01411ED9210D060C4F9AE02.roa (hash: 4IZfBEYxdxWId8yUiHx63z7AlPcjMCqr2gmuQDYBUpU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9153CE9/0AB1D396F51511EB9EFE0750C4F9AE02/4JlhFVCKOtWZFdurzLaW26C0zHI.crl rsync://rpki.apnic.net/member_repository/A9153CE9/0AB1D396F51511EB9EFE0750C4F9AE02/4JlhFVCKOtWZFdurzLaW26C0zHI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4JlhFVCKOtWZFdurzLaW26C0zHI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 23:12:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1477 (0x5c5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9153CE9, serialNumber=E0996115508A3AD59915DBABCCB696DBA0B4CC72 Validity Not Before: Nov 2 23:12:11 2025 GMT Not After : Nov 9 23:12:11 2025 GMT Subject: CN=6907e54b-84d1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:da:c0:55:bf:0f:e0:60:e8:b2:4b:73:0b:85: 61:f8:36:43:cd:f7:3e:0a:5f:6b:60:e3:41:60:13: 65:95:dd:aa:3c:c5:bb:1b:c9:c5:8d:27:c0:54:1c: 86:12:a9:75:51:a9:ae:8c:17:74:eb:ed:e3:2c:a8: 87:20:68:07:c0:38:9e:e6:35:5a:c1:2d:61:57:e2: 65:ee:19:18:80:2d:b9:56:e0:fc:80:cc:c0:25:cb: 7d:5c:e5:2b:b0:2f:dc:7b:5b:a7:78:07:ed:ce:53: c8:17:e7:07:ef:c4:e7:c8:c7:93:d5:69:15:c0:b1: 42:49:38:7e:ce:df:08:1b:75:e6:8b:0a:13:91:91: 52:c0:f9:9b:a6:9d:d5:67:89:af:1e:78:b5:19:6a: 6c:a2:af:68:07:57:04:f5:4e:9e:4f:33:e4:69:3a: 0a:64:87:d1:ed:78:5b:89:7d:28:66:ae:26:3e:56: 61:74:6c:1f:e1:26:cf:ec:3f:c6:80:ff:ed:0f:1d: f5:a9:15:e9:3b:7d:c5:a0:3e:3d:b2:fe:ff:f7:04: 05:84:22:13:26:97:11:6d:da:30:6b:f4:bf:ba:a4: 06:ea:6f:bb:d3:6e:f5:08:c7:cd:9f:0a:da:98:59: f2:20:0a:df:de:05:39:1b:75:c7:6a:ed:99:82:ab: 8c:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:AC:37:F3:45:13:DF:94:8C:2A:CE:8B:17:BE:50:52:9E:53:5F:2B X509v3 Authority Key Identifier: keyid:E0:99:61:15:50:8A:3A:D5:99:15:DB:AB:CC:B6:96:DB:A0:B4:CC:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9153CE9/0AB1D396F51511EB9EFE0750C4F9AE02/4JlhFVCKOtWZFdurzLaW26C0zHI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4JlhFVCKOtWZFdurzLaW26C0zHI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9153CE9/0AB1D396F51511EB9EFE0750C4F9AE02/4JlhFVCKOtWZFdurzLaW26C0zHI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:6c:2f:20:0a:f6:5a:8b:36:21:ea:2e:36:03:74:e1:59:41: 69:6e:98:0d:f1:6d:e6:ca:3c:96:ae:af:31:84:1e:cc:ca:a3: 81:90:25:01:ea:92:85:cd:5e:f2:3e:35:58:cb:6f:c2:3a:73: f0:36:d3:7c:89:7f:de:6f:6d:49:14:e5:ce:45:72:9f:5b:ec: a2:8d:8b:bd:98:69:8d:24:91:a3:27:1a:b2:35:c6:4a:06:df: b4:c5:5e:01:7a:58:05:69:45:18:cb:e7:46:a4:d7:bc:43:33: eb:d5:bb:6e:12:d6:1a:14:d7:a5:77:85:52:40:0e:8a:ef:b1: ee:9a:c4:5e:94:3d:04:aa:cb:02:94:52:39:c4:02:28:65:02: c6:2c:e1:e7:95:57:6b:9e:a6:d7:d8:10:65:8f:5b:ee:40:2e: 63:65:53:cb:85:7e:33:14:be:b2:e1:c6:8f:64:1c:17:2f:bc: 16:7a:b5:fb:e9:fe:6e:d5:2a:11:d0:a9:af:c0:ee:49:16:09: e8:47:d4:b6:2d:4e:df:be:6c:96:c1:3f:21:c9:5e:1b:37:be: cb:29:6a:fc:93:e7:c4:14:9e:35:19:5a:20:85:be:fc:49:98: 1e:12:ff:d9:81:0e:df:9d:43:43:67:a6:f0:59:b2:8b:6d:ab: 59:2e:01:bd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBcUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTNDRTkxMTAvBgNVBAUTKEUwOTk2MTE1NTA4QTNBRDU5OTE1REJBQkNDQjY5NkRC QTBCNENDNzIwHhcNMjUxMTAyMjMxMjExWhcNMjUxMTA5MjMxMjExWjAYMRYwFAYD VQQDEw02OTA3ZTU0Yi04NGQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3trAVb8P4GDosktzC4Vh+DZDzfc+Cl9rYONBYBNlld2qPMW7G8nFjSfAVByG Eql1UamujBd06+3jLKiHIGgHwDie5jVawS1hV+Jl7hkYgC25VuD8gMzAJct9XOUr sC/ce1uneAftzlPIF+cH78TnyMeT1WkVwLFCSTh+zt8IG3XmiwoTkZFSwPmbpp3V Z4mvHni1GWpsoq9oB1cE9U6eTzPkaToKZIfR7XhbiX0oZq4mPlZhdGwf4SbP7D/G gP/tDx31qRXpO33FoD49sv7/9wQFhCITJpcRbdowa/S/uqQG6m+70271CMfNnwra mFnyIArf3gU5G3XHau2ZgquMMQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFESsN/NF E9+UjCrOixe+UFKeU18rMB8GA1UdIwQYMBaAFOCZYRVQijrVmRXbq8y2ltugtMxy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1M0NFOS8wQUIxRDM5NkY1 MTUxMUVCOUVGRTA3NTBDNEY5QUUwMi80SmxoRlZDS090V1pGZHVyekxhVzI2QzB6 SEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRKbGhGVkNLT3RXWkZkdXJ6TGFXMjZDMHpISS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 M0NFOS8wQUIxRDM5NkY1MTUxMUVCOUVGRTA3NTBDNEY5QUUwMi80SmxoRlZDS090 V1pGZHVyekxhVzI2QzB6SEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA/bC8gCvZaizYh6i42A3ThWUFpbpgN8W3myjyWrq8xhB7MyqOBkCUB 6pKFzV7yPjVYy2/COnPwNtN8iX/eb21JFOXORXKfW+yijYu9mGmNJJGjJxqyNcZK Bt+0xV4BelgFaUUYy+dGpNe8QzPr1btuEtYaFNeld4VSQA6K77HumsRelD0EqssC lFI5xAIoZQLGLOHnlVdrnqbX2BBlj1vuQC5jZVPLhX4zFL6y4caPZBwXL7wWerX7 6f5u1SoR0KmvwO5JFgnoR9S2LU7fvmyWwT8hyV4bN77LKWr8k+fEFJ41GVoghb78 SZgeEv/ZgQ7fnUNDZ6bwWbKLbatZLgG9 -----END CERTIFICATE-----Generated at Tue Nov 4 12:34:54 2025 by rpki-client