$ rpki-client -vvf rpki.apnic.net/member_repository/A916AAFF/7BB8BA6CBB3A11EE87C66B0FC4F9AE02/4bzIEhAO1GAiFweJMk8cw6-_aq0.mft File: 4bzIEhAO1GAiFweJMk8cw6-_aq0.mft (raw, json) Hash identifier: N9enuiHDG26QqhqURxC0LiKiNCuMFGsBATQMCv0Xy80= Subject key identifier: B6:4E:16:E7:47:12:3E:5B:FA:02:20:A4:1A:A3:54:91:AD:08:8D:56 Authority key identifier: E1:BC:C8:12:10:0E:D4:60:22:17:07:89:32:4F:1C:C3:AF:BF:6A:AD Certificate issuer: /CN=A916AAFF/serialNumber=E1BCC812100ED46022170789324F1CC3AFBF6AAD Certificate serial: 0160 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4bzIEhAO1GAiFweJMk8cw6-_aq0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916AAFF/7BB8BA6CBB3A11EE87C66B0FC4F9AE02/4bzIEhAO1GAiFweJMk8cw6-_aq0.mft Manifest number: 0158 Signing time: Wed 05 Nov 2025 04:24:18 +0000 Manifest this update: Wed 05 Nov 2025 04:24:18 +0000 Manifest next update: Wed 12 Nov 2025 04:24:18 +0000 Files and hashes: 1: 4bzIEhAO1GAiFweJMk8cw6-_aq0.crl (hash: OA/M5pdAav6/GmdaF3VuMDJmf4TF53apfrxKPnYwfFw=) 2: 69E8AC12555811EFA88AEA24C4F9AE02.roa (hash: phqylkhfGei3IojXYcRRdYxObeB6TnyHw6jd5mx17zE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916AAFF/7BB8BA6CBB3A11EE87C66B0FC4F9AE02/4bzIEhAO1GAiFweJMk8cw6-_aq0.crl rsync://rpki.apnic.net/member_repository/A916AAFF/7BB8BA6CBB3A11EE87C66B0FC4F9AE02/4bzIEhAO1GAiFweJMk8cw6-_aq0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4bzIEhAO1GAiFweJMk8cw6-_aq0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 04:24:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 352 (0x160) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916AAFF, serialNumber=E1BCC812100ED46022170789324F1CC3AFBF6AAD Validity Not Before: Nov 5 04:24:18 2025 GMT Not After : Nov 12 04:24:18 2025 GMT Subject: CN=690ad172-14bb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:12:9f:8f:ef:90:0d:6e:e6:7e:15:00:da:cb: 2c:af:0a:8f:da:10:04:60:cd:d6:58:e8:35:f7:de: 24:57:5d:49:c7:34:a6:ab:ed:60:f3:07:4d:64:5a: f2:8b:73:e5:88:a8:b3:04:b8:69:15:e1:0f:68:26: 3c:e2:80:96:c9:a8:9e:42:58:7c:1a:82:95:8a:86: 6d:bd:d6:92:fe:a2:65:07:ec:26:74:ed:21:fe:39: b7:33:b5:7b:0a:46:18:f3:d6:bb:f8:7d:24:08:c4: f5:b5:43:d2:2a:2b:ac:a5:37:5a:d0:23:8c:c8:d8: b1:dd:f1:78:6a:a2:36:dc:7e:aa:5b:6f:0b:cd:1e: 48:48:2b:5c:86:ea:27:62:a8:8f:94:bf:d6:85:e9: 93:49:67:c8:09:0d:4f:ea:87:e8:18:a7:fa:69:31: 42:69:35:2c:89:2e:c4:f2:e2:fd:74:46:6b:80:49: 0a:32:8e:84:71:97:79:87:3b:46:f8:d4:97:b5:3b: 78:fc:79:40:14:eb:01:f5:7d:6a:7f:a9:30:ff:15: f4:37:c2:9e:ae:76:6c:aa:c2:11:48:3a:d7:f8:4e: 82:84:4c:fe:eb:73:de:bf:2f:2a:38:31:30:a1:b1: b0:3a:81:03:15:1b:fb:0c:66:4b:32:41:41:b1:ce: 4b:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:4E:16:E7:47:12:3E:5B:FA:02:20:A4:1A:A3:54:91:AD:08:8D:56 X509v3 Authority Key Identifier: keyid:E1:BC:C8:12:10:0E:D4:60:22:17:07:89:32:4F:1C:C3:AF:BF:6A:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916AAFF/7BB8BA6CBB3A11EE87C66B0FC4F9AE02/4bzIEhAO1GAiFweJMk8cw6-_aq0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4bzIEhAO1GAiFweJMk8cw6-_aq0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916AAFF/7BB8BA6CBB3A11EE87C66B0FC4F9AE02/4bzIEhAO1GAiFweJMk8cw6-_aq0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cc:6a:97:b9:c6:1c:52:3d:49:71:9e:5a:94:6f:03:56:c1:cd: 9e:1e:84:0d:7b:96:4d:70:31:00:5f:bb:30:89:18:ba:5b:c0: 1b:5e:9b:4a:20:35:8f:9c:d9:a6:f9:d4:cc:98:01:6c:7f:8c: ce:70:47:2a:de:3d:f9:6e:0c:cc:46:4f:a3:b4:ba:67:0c:47: 50:b3:59:61:af:65:d7:10:5d:61:b8:72:06:fb:56:53:0f:60: 55:79:91:dd:df:37:3f:b1:e4:3c:f5:53:2e:b6:93:bf:84:ef: ab:44:2a:be:26:e8:52:a2:35:d3:55:93:40:c2:a8:f1:b6:02: 7a:5c:62:5a:41:93:5c:aa:cb:6b:fd:e2:8b:61:ac:42:10:fb: 22:4b:e2:1f:53:70:52:e9:4e:b4:e8:65:9b:3b:a0:cc:e8:ae: bc:1e:a8:c5:ea:17:8c:7d:3d:fd:d5:68:aa:88:db:bb:d5:dd: 00:46:a6:41:b3:2d:08:62:25:09:cb:1b:e8:dd:3b:79:c7:86: 2e:e0:6a:5e:c3:a2:57:d1:48:20:c0:9f:4b:6f:62:40:c6:c1: 3f:df:07:df:cd:3a:9d:1b:62:80:c2:00:b4:30:dd:5a:2e:7c: 95:8d:39:3c:74:e5:b6:4d:4a:19:61:0a:09:13:fd:32:48:4b: 30:a5:12:0c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAWAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkFBRkYxMTAvBgNVBAUTKEUxQkNDODEyMTAwRUQ0NjAyMjE3MDc4OTMyNEYxQ0Mz QUZCRjZBQUQwHhcNMjUxMTA1MDQyNDE4WhcNMjUxMTEyMDQyNDE4WjAYMRYwFAYD VQQDEw02OTBhZDE3Mi0xNGJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAthKfj++QDW7mfhUA2sssrwqP2hAEYM3WWOg1994kV11JxzSmq+1g8wdNZFry i3PliKizBLhpFeEPaCY84oCWyaieQlh8GoKVioZtvdaS/qJlB+wmdO0h/jm3M7V7 CkYY89a7+H0kCMT1tUPSKiuspTda0COMyNix3fF4aqI23H6qW28LzR5ISCtchuon YqiPlL/WhemTSWfICQ1P6ofoGKf6aTFCaTUsiS7E8uL9dEZrgEkKMo6EcZd5hztG +NSXtTt4/HlAFOsB9X1qf6kw/xX0N8KernZsqsIRSDrX+E6ChEz+63Pevy8qODEw obGwOoEDFRv7DGZLMkFBsc5LGwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLZOFudH Ej5b+gIgpBqjVJGtCI1WMB8GA1UdIwQYMBaAFOG8yBIQDtRgIhcHiTJPHMOvv2qt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QUFGRi83QkI4QkE2Q0JC M0ExMUVFODdDNjZCMEZDNEY5QUUwMi80YnpJRWhBTzFHQWlGd2VKTWs4Y3c2LV9h cTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRieklFaEFPMUdBaUZ3ZUpNazhjdzYtX2FxMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QUFGRi83QkI4QkE2Q0JCM0ExMUVFODdDNjZCMEZDNEY5QUUwMi80YnpJRWhBTzFH QWlGd2VKTWs4Y3c2LV9hcTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDMape5xhxSPUlxnlqUbwNWwc2eHoQNe5ZNcDEAX7swiRi6W8AbXptK IDWPnNmm+dTMmAFsf4zOcEcq3j35bgzMRk+jtLpnDEdQs1lhr2XXEF1huHIG+1ZT D2BVeZHd3zc/seQ89VMutpO/hO+rRCq+JuhSojXTVZNAwqjxtgJ6XGJaQZNcqstr /eKLYaxCEPsiS+IfU3BS6U606GWbO6DM6K68HqjF6heMfT391WiqiNu71d0ARqZB sy0IYiUJyxvo3Tt5x4Yu4Gpew6JX0UggwJ9Lb2JAxsE/3wffzTqdG2KAwgC0MN1a LnyVjTk8dOW2TUoZYQoJE/0ySEswpRIM -----END CERTIFICATE-----Generated at Thu Nov 6 03:04:31 2025 by rpki-client