$ rpki-client -vvf rpki.apnic.net/member_repository/A915E005/9BE781FEC69911E5B0AFE54EC4F9AE02/4Cvu6I2DW9DkJUygjXwDvFcZdIQ.mft File: 4Cvu6I2DW9DkJUygjXwDvFcZdIQ.mft (raw, json) Hash identifier: H8i4SBxkKNHn5QByfx66Qzv5E/c8woOGEJUtyD5baAI= Subject key identifier: 7C:E0:EE:0B:08:D6:C5:CB:38:EC:3F:7E:65:87:EE:30:DB:9D:AF:F0 Authority key identifier: E0:2B:EE:E8:8D:83:5B:D0:E4:25:4C:A0:8D:7C:03:BC:57:19:74:84 Certificate issuer: /CN=A915E005/serialNumber=E02BEEE88D835BD0E4254CA08D7C03BC57197484 Certificate serial: 2253 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4Cvu6I2DW9DkJUygjXwDvFcZdIQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915E005/9BE781FEC69911E5B0AFE54EC4F9AE02/4Cvu6I2DW9DkJUygjXwDvFcZdIQ.mft Manifest number: 2243 Signing time: Tue 04 Nov 2025 15:56:52 +0000 Manifest this update: Tue 04 Nov 2025 15:56:52 +0000 Manifest next update: Tue 11 Nov 2025 15:56:52 +0000 Files and hashes: 1: 4Cvu6I2DW9DkJUygjXwDvFcZdIQ.crl (hash: zCjLXYqjpMEhKojzqLkKS+e4eCYEvIshtBJ757zQetA=) 2: CD4CD0B654F311E7AC64ED3AC4F9AE02.roa (hash: iH2xmS1GVsSNNCZWscwdxJt8FMGLF9Yh7e5xIVsXSm8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915E005/9BE781FEC69911E5B0AFE54EC4F9AE02/4Cvu6I2DW9DkJUygjXwDvFcZdIQ.crl rsync://rpki.apnic.net/member_repository/A915E005/9BE781FEC69911E5B0AFE54EC4F9AE02/4Cvu6I2DW9DkJUygjXwDvFcZdIQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4Cvu6I2DW9DkJUygjXwDvFcZdIQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 15:56:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8787 (0x2253) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915E005, serialNumber=E02BEEE88D835BD0E4254CA08D7C03BC57197484 Validity Not Before: Nov 4 15:56:52 2025 GMT Not After : Nov 11 15:56:52 2025 GMT Subject: CN=690a2244-b818 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:d2:e0:a9:4c:c4:80:76:20:b9:6f:90:37:32: bd:6a:dd:ac:d0:b2:4e:57:a5:85:1d:d2:b7:f2:a3: ec:ac:43:8b:5d:4d:11:c2:3a:25:e3:94:33:81:f5: ba:9c:15:7c:dd:d9:95:5a:f4:81:b5:d0:ee:60:49: f5:dd:de:27:53:56:08:86:6f:96:b9:1e:5a:c2:dd: c0:f4:81:7a:d1:f6:b8:63:c0:4b:09:6c:5f:a9:11: a8:60:1e:49:6d:6e:9d:57:98:92:32:c8:96:a8:16: 46:66:04:8e:1a:e7:69:2e:a0:6a:50:07:b1:9a:c8: a7:e0:89:b6:9e:91:da:3b:b7:c0:25:7b:59:6f:dd: a6:f1:2d:19:f3:20:ab:4a:57:be:84:f4:df:b3:52: 23:87:67:1b:db:3b:1c:b2:a9:91:5e:97:e6:ac:38: 0c:09:18:5d:10:5c:3f:95:ca:3a:5e:6d:79:27:75: 95:5c:dc:c0:82:4e:df:40:b6:ea:9b:2d:ec:42:30: 17:03:49:ad:20:3f:bb:53:d0:55:d4:9e:4f:5f:57: 79:43:b1:c0:dd:f1:3c:a2:60:fc:bd:73:ad:e5:a8: 30:98:1e:69:ba:67:de:e9:fe:84:ab:8b:a4:47:2c: 67:7e:cf:8c:ab:72:20:0c:91:56:e2:a6:b4:2c:d5: fd:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:E0:EE:0B:08:D6:C5:CB:38:EC:3F:7E:65:87:EE:30:DB:9D:AF:F0 X509v3 Authority Key Identifier: keyid:E0:2B:EE:E8:8D:83:5B:D0:E4:25:4C:A0:8D:7C:03:BC:57:19:74:84 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915E005/9BE781FEC69911E5B0AFE54EC4F9AE02/4Cvu6I2DW9DkJUygjXwDvFcZdIQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4Cvu6I2DW9DkJUygjXwDvFcZdIQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915E005/9BE781FEC69911E5B0AFE54EC4F9AE02/4Cvu6I2DW9DkJUygjXwDvFcZdIQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c1:63:d6:18:5e:ec:b9:f3:28:5e:89:4a:78:ca:21:e8:59:76: c7:b7:3b:c5:91:46:c4:32:fc:7f:d7:7b:ff:fe:21:d4:81:c2: 0f:d7:5b:a2:b2:77:43:fe:02:08:c8:c6:21:1a:4e:e9:11:8a: fb:25:b4:f8:0e:c9:e4:78:91:9a:84:d8:6e:9f:89:c4:fc:57: 71:d9:0a:db:88:b5:84:77:83:2b:19:b8:bc:c2:4f:f3:73:9f: a7:ce:79:f9:58:6e:65:21:1c:53:8d:f1:08:2d:76:b0:5e:c8: 38:cb:8e:2a:c7:48:34:64:15:f8:49:c5:76:a6:22:5e:89:ef: 4d:55:47:a5:6d:65:9b:7a:74:0a:d2:fb:db:1e:44:da:00:76: 67:1c:e6:c7:d8:f4:96:fb:c8:ef:8d:bb:b4:8b:41:7f:90:3b: b1:1b:c7:33:86:3c:c6:ab:e2:7e:29:56:ce:3c:96:3d:e2:20: 5d:a6:e7:cb:0f:da:27:ea:ab:1f:0c:d1:bc:66:b1:03:9a:14: 14:8e:a0:ff:cd:d8:4b:73:79:52:c5:25:f1:bd:02:9c:bc:ac: 7a:ba:2a:bd:c9:01:0b:10:16:2d:6a:a8:92:e9:29:66:c4:f2: e9:cf:26:7c:1f:03:f5:19:57:d8:e9:e7:ae:f8:74:04:6a:16: 3a:ea:74:d0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIlMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUUwMDUxMTAvBgNVBAUTKEUwMkJFRUU4OEQ4MzVCRDBFNDI1NENBMDhEN0MwM0JD NTcxOTc0ODQwHhcNMjUxMTA0MTU1NjUyWhcNMjUxMTExMTU1NjUyWjAYMRYwFAYD VQQDEw02OTBhMjI0NC1iODE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvNLgqUzEgHYguW+QNzK9at2s0LJOV6WFHdK38qPsrEOLXU0Rwjol45QzgfW6 nBV83dmVWvSBtdDuYEn13d4nU1YIhm+WuR5awt3A9IF60fa4Y8BLCWxfqRGoYB5J bW6dV5iSMsiWqBZGZgSOGudpLqBqUAexmsin4Im2npHaO7fAJXtZb92m8S0Z8yCr Sle+hPTfs1Ijh2cb2zscsqmRXpfmrDgMCRhdEFw/lco6Xm15J3WVXNzAgk7fQLbq my3sQjAXA0mtID+7U9BV1J5PX1d5Q7HA3fE8omD8vXOt5agwmB5pumfe6f6Eq4uk Ryxnfs+Mq3IgDJFW4qa0LNX9JQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHzg7gsI 1sXLOOw/fmWH7jDbna/wMB8GA1UdIwQYMBaAFOAr7uiNg1vQ5CVMoI18A7xXGXSE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RTAwNS85QkU3ODFGRUM2 OTkxMUU1QjBBRkU1NEVDNEY5QUUwMi80Q3Z1NkkyRFc5RGtKVXlnalh3RHZGY1pk SVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRDdnU2STJEVzlEa0pVeWdqWHdEdkZjWmRJUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RTAwNS85QkU3ODFGRUM2OTkxMUU1QjBBRkU1NEVDNEY5QUUwMi80Q3Z1NkkyRFc5 RGtKVXlnalh3RHZGY1pkSVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDBY9YYXuy58yheiUp4yiHoWXbHtzvFkUbEMvx/13v//iHUgcIP11ui sndD/gIIyMYhGk7pEYr7JbT4DsnkeJGahNhun4nE/Fdx2QrbiLWEd4MrGbi8wk/z c5+nznn5WG5lIRxTjfEILXawXsg4y44qx0g0ZBX4ScV2piJeie9NVUelbWWbenQK 0vvbHkTaAHZnHObH2PSW+8jvjbu0i0F/kDuxG8czhjzGq+J+KVbOPJY94iBdpufL D9on6qsfDNG8ZrEDmhQUjqD/zdhLc3lSxSXxvQKcvKx6uiq9yQELEBYtaqiS6Slm xPLpzyZ8HwP1GVfY6eeu+HQEahY66nTQ -----END CERTIFICATE-----Generated at Wed Nov 5 05:49:52 2025 by rpki-client