$ rpki-client -vvf rpki.apnic.net/member_repository/A9170C53/CE445BD0DA5B11ED96747C5AC4F9AE02/4dFD2djqAiJMHLDJFey4TuKLWqo.mft File: 4dFD2djqAiJMHLDJFey4TuKLWqo.mft (raw, json) Hash identifier: Emb/JI6hnNRDQjty95O6BX9jqv51JkJjr10fL/ipL14= Subject key identifier: C9:7E:B9:4C:BF:46:24:9D:2A:36:DA:EE:C1:DF:00:82:F9:7D:32:45 Authority key identifier: E1:D1:43:D9:D8:EA:02:22:4C:1C:B0:C9:15:EC:B8:4E:E2:8B:5A:AA Certificate issuer: /CN=A9170C53/serialNumber=E1D143D9D8EA02224C1CB0C915ECB84EE28B5AAA Certificate serial: 01EF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4dFD2djqAiJMHLDJFey4TuKLWqo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170C53/CE445BD0DA5B11ED96747C5AC4F9AE02/4dFD2djqAiJMHLDJFey4TuKLWqo.mft Manifest number: 01E2 Signing time: Wed 05 Nov 2025 02:49:06 +0000 Manifest this update: Wed 05 Nov 2025 02:49:05 +0000 Manifest next update: Wed 12 Nov 2025 02:49:05 +0000 Files and hashes: 1: 4dFD2djqAiJMHLDJFey4TuKLWqo.crl (hash: uYf+cFER1xTLSaA1TX7ZnYe3RGhUoWndE9B28R0HFq4=) 2: 916EFEE0DA6011ED9BC6175FC4F9AE02.roa (hash: RDPi47SZcDAz4xmQe0PzevESUJOCnp77k9KEsG3kOPw=) 3: 9283C1F8DA6011ED9BC6175FC4F9AE02.roa (hash: 4ZxnpGjaykPQCM8pL2N1CRQo3+QNzrfE6n7zpJytINg=) 4: 90AE648CDA6011ED9BC6175FC4F9AE02.roa (hash: +lHlOLbl/5RnNOcPx8/sJld2TYpyfZTtFIxadDBZYdU=) 5: 91FAB1ECDA6011ED9BC6175FC4F9AE02.roa (hash: v8W7oHHzaQTWG5Q9zg44OzZnUjsO7rk1vnHeE+xeDvw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170C53/CE445BD0DA5B11ED96747C5AC4F9AE02/4dFD2djqAiJMHLDJFey4TuKLWqo.crl rsync://rpki.apnic.net/member_repository/A9170C53/CE445BD0DA5B11ED96747C5AC4F9AE02/4dFD2djqAiJMHLDJFey4TuKLWqo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4dFD2djqAiJMHLDJFey4TuKLWqo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 02:49:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 495 (0x1ef) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170C53, serialNumber=E1D143D9D8EA02224C1CB0C915ECB84EE28B5AAA Validity Not Before: Nov 5 02:49:05 2025 GMT Not After : Nov 12 02:49:05 2025 GMT Subject: CN=690abb21-66ad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:9e:a7:f8:1c:e9:38:17:3a:8f:81:ca:49:a8: c6:05:1e:4d:25:91:da:4a:d6:8a:52:5a:bf:2b:53: 6a:53:05:43:ad:0d:be:2e:1d:ec:d9:ea:14:f9:f6: 60:86:9c:f3:4b:0c:85:17:c9:30:13:97:5e:75:74: 64:b7:d4:12:bd:c1:1c:fc:52:ec:71:84:51:c0:67: 84:69:f2:2f:1a:25:d9:7f:b6:15:f8:32:d6:0a:0c: a6:6e:c1:68:40:c2:d0:88:0f:ca:e8:25:f5:06:7e: a1:2d:0e:dd:92:68:7e:59:93:f0:07:a1:5a:44:13: 87:6e:bc:56:22:b5:de:b7:0d:13:1c:55:a2:ae:23: 26:9e:ba:43:26:04:86:83:0c:e4:b6:ca:87:cb:6c: 31:65:70:e2:0a:0a:1c:03:13:c9:27:14:00:b6:7f: 16:b3:0d:32:ca:0f:3a:74:3c:6d:1b:98:5e:e2:a2: 26:8c:13:f6:f6:f3:5c:2d:c2:f5:5c:5f:78:8e:17: 57:5b:c5:60:4a:5f:5c:96:cf:67:e6:c2:35:d4:0d: 07:f0:78:9f:d6:13:0b:ff:2d:1c:1d:81:17:c2:47: 12:62:f8:de:92:6f:1b:46:70:40:18:f7:ae:d9:dd: b1:b9:8f:8f:35:dc:68:44:27:1f:ec:43:c6:c2:6c: 7e:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:7E:B9:4C:BF:46:24:9D:2A:36:DA:EE:C1:DF:00:82:F9:7D:32:45 X509v3 Authority Key Identifier: keyid:E1:D1:43:D9:D8:EA:02:22:4C:1C:B0:C9:15:EC:B8:4E:E2:8B:5A:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170C53/CE445BD0DA5B11ED96747C5AC4F9AE02/4dFD2djqAiJMHLDJFey4TuKLWqo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4dFD2djqAiJMHLDJFey4TuKLWqo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170C53/CE445BD0DA5B11ED96747C5AC4F9AE02/4dFD2djqAiJMHLDJFey4TuKLWqo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8c:24:af:80:72:06:5a:d3:5a:9c:33:2f:c5:10:4c:c7:09:6d: 0c:c0:37:8a:eb:c9:38:00:02:74:b5:60:f3:aa:88:a4:43:3d: ef:d8:a4:b0:75:df:8c:b2:0b:bd:c8:78:39:4b:09:6d:6b:ac: 30:80:54:c2:74:99:0a:c2:1a:72:85:a5:28:f7:02:f1:a3:5e: 70:55:26:6c:11:1b:25:6f:e7:7a:89:6d:2f:64:8e:b5:75:38: 9e:cf:fb:35:e4:4e:da:60:85:2a:65:74:a7:47:98:a3:23:54: e3:d8:cb:81:91:fb:86:d0:9c:00:8c:0e:38:71:df:6f:59:06: 78:49:e6:7a:41:01:1e:af:6c:ed:98:23:bd:e2:41:1c:c7:b2: 63:e6:fa:cb:7d:91:05:e6:61:46:72:ac:73:27:a3:75:3a:44: 2f:bf:52:90:eb:7e:02:e2:cd:65:d2:5d:52:cc:49:08:99:6a: 1b:9f:9c:31:a8:d6:45:a8:6c:94:fa:40:ff:83:d6:f5:db:29: fe:28:d8:38:8e:1a:e9:ff:83:05:86:e6:0b:49:0b:b1:33:12: 0e:99:dd:9d:95:0a:a4:12:58:e6:48:95:84:03:02:10:d2:86: df:81:1c:2f:58:b2:78:ce:d4:cc:76:55:74:02:b3:d1:05:44: ed:c9:3e:f6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAe8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzBDNTMxMTAvBgNVBAUTKEUxRDE0M0Q5RDhFQTAyMjI0QzFDQjBDOTE1RUNCODRF RTI4QjVBQUEwHhcNMjUxMTA1MDI0OTA1WhcNMjUxMTEyMDI0OTA1WjAYMRYwFAYD VQQDEw02OTBhYmIyMS02NmFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs56n+BzpOBc6j4HKSajGBR5NJZHaStaKUlq/K1NqUwVDrQ2+Lh3s2eoU+fZg hpzzSwyFF8kwE5dedXRkt9QSvcEc/FLscYRRwGeEafIvGiXZf7YV+DLWCgymbsFo QMLQiA/K6CX1Bn6hLQ7dkmh+WZPwB6FaRBOHbrxWIrXetw0THFWiriMmnrpDJgSG gwzktsqHy2wxZXDiCgocAxPJJxQAtn8Wsw0yyg86dDxtG5he4qImjBP29vNcLcL1 XF94jhdXW8VgSl9cls9n5sI11A0H8Hif1hML/y0cHYEXwkcSYvjekm8bRnBAGPeu 2d2xuY+PNdxoRCcf7EPGwmx+uwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMl+uUy/ RiSdKjba7sHfAIL5fTJFMB8GA1UdIwQYMBaAFOHRQ9nY6gIiTBywyRXsuE7ii1qq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MEM1My9DRTQ0NUJEMERB NUIxMUVEOTY3NDdDNUFDNEY5QUUwMi80ZEZEMmRqcUFpSk1ITERKRmV5NFR1S0xX cW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRkRkQyZGpxQWlKTUhMREpGZXk0VHVLTFdxby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MEM1My9DRTQ0NUJEMERBNUIxMUVEOTY3NDdDNUFDNEY5QUUwMi80ZEZEMmRqcUFp Sk1ITERKRmV5NFR1S0xXcW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCMJK+AcgZa01qcMy/FEEzHCW0MwDeK68k4AAJ0tWDzqoikQz3v2KSw dd+Msgu9yHg5Swlta6wwgFTCdJkKwhpyhaUo9wLxo15wVSZsERslb+d6iW0vZI61 dTiez/s15E7aYIUqZXSnR5ijI1Tj2MuBkfuG0JwAjA44cd9vWQZ4SeZ6QQEer2zt mCO94kEcx7Jj5vrLfZEF5mFGcqxzJ6N1OkQvv1KQ634C4s1l0l1SzEkImWobn5wx qNZFqGyU+kD/g9b12yn+KNg4jhrp/4MFhuYLSQuxMxIOmd2dlQqkEljmSJWEAwIQ 0obfgRwvWLJ4ztTMdlV0ArPRBUTtyT72 -----END CERTIFICATE-----Generated at Wed Nov 5 18:09:14 2025 by rpki-client