$ rpki-client -vvf rpki.apnic.net/member_repository/A9172D91/EA672A5C19E711E8B243D57CC4F9AE02/4u3kp-qXJminlbJ7qdyH9LkNqJc.mft File: 4u3kp-qXJminlbJ7qdyH9LkNqJc.mft (raw, json) Hash identifier: JFOwgP8m5YKrGwhZocoagWUi447w+wd0Y9jFjEMBBrM= Subject key identifier: DB:DC:17:FD:CB:85:F9:CD:59:F8:65:7A:5F:07:7D:61:49:35:B0:02 Authority key identifier: E2:ED:E4:A7:EA:97:26:68:A7:95:B2:7B:A9:DC:87:F4:B9:0D:A8:97 Certificate issuer: /CN=A9172D91/serialNumber=E2EDE4A7EA972668A795B27BA9DC87F4B90DA897 Certificate serial: 16CD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4u3kp-qXJminlbJ7qdyH9LkNqJc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9172D91/EA672A5C19E711E8B243D57CC4F9AE02/4u3kp-qXJminlbJ7qdyH9LkNqJc.mft Manifest number: 168B Signing time: Tue 04 Nov 2025 16:49:01 +0000 Manifest this update: Tue 04 Nov 2025 16:49:01 +0000 Manifest next update: Tue 11 Nov 2025 16:49:01 +0000 Files and hashes: 1: 4u3kp-qXJminlbJ7qdyH9LkNqJc.crl (hash: esoLLd/901pxgqiSXKxlXtvyM690kUEMZelpSGOgm8U=) 2: 854D304E0C9B11EC8433FE7AC4F9AE02.roa (hash: 3RtBD83ZJNmQpXwmbagiYu3nHPOh0MloLGGIQPhUGxM=) 3: 56C8FCACE38011EFBF195482C4F9AE02.roa (hash: J0L9nDFdFV6ZiImc3zHe9UUNBLYublvIh0RA4SsVHPQ=) 4: 9C79DBD23E7911EBBFFAC96BC4F9AE02.roa (hash: Oe+nCjRXmGLUG9jUiGqdGqfQAZRPEdEXa9ffB5a1tlY=) 5: 2357FC145F8D11EF94E7303FC4F9AE02.roa (hash: XuW38uZAfeN4keo/onpljpRS5BHBZ8INJxFDXHjJZ6w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9172D91/EA672A5C19E711E8B243D57CC4F9AE02/4u3kp-qXJminlbJ7qdyH9LkNqJc.crl rsync://rpki.apnic.net/member_repository/A9172D91/EA672A5C19E711E8B243D57CC4F9AE02/4u3kp-qXJminlbJ7qdyH9LkNqJc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4u3kp-qXJminlbJ7qdyH9LkNqJc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 16:49:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5837 (0x16cd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9172D91, serialNumber=E2EDE4A7EA972668A795B27BA9DC87F4B90DA897 Validity Not Before: Nov 4 16:49:01 2025 GMT Not After : Nov 11 16:49:01 2025 GMT Subject: CN=690a2e7d-35f3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:b7:f0:fb:0b:00:7e:48:48:c1:b8:98:dc:cf: bb:43:d3:8c:32:a5:b9:8e:3a:da:32:1a:54:5b:47: 03:e4:a7:2b:3d:4f:98:71:92:36:89:ff:2b:e6:63: 0e:47:2b:ef:2e:f8:e2:7a:b2:29:e6:da:a5:81:e2: 97:73:fa:1a:d6:96:fe:05:00:68:02:5f:87:93:3c: bf:49:87:82:af:04:4b:49:42:b1:6b:e8:bf:5f:8f: a5:c2:72:3a:81:44:cd:e2:fb:ad:4a:0a:25:74:83: 6b:0c:d3:8b:0b:ee:bc:1a:2b:0c:a1:71:52:a1:b8: ed:c4:ff:35:c5:39:0d:d5:f6:18:aa:24:a2:ee:e5: 1b:cc:63:8c:9a:2e:ce:01:2e:96:e8:03:b9:2e:94: 7d:25:c1:ce:48:66:02:01:00:5f:25:7f:ce:00:fb: ef:71:e7:a3:6f:12:7e:04:0b:98:5d:51:f3:5b:30: 26:3b:5e:05:a9:1d:89:44:5a:b3:c0:91:51:c1:67: 5f:72:28:81:3a:d9:cc:b7:25:6e:7f:76:bb:d5:35: e3:29:5a:62:ec:ec:1d:bb:ed:11:46:da:cd:34:44: f7:d4:76:e4:a2:bc:82:08:26:af:f4:db:f4:53:ed: bd:13:ad:b8:f3:6b:fa:a1:da:89:b2:b0:e8:b7:0e: 9b:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:DC:17:FD:CB:85:F9:CD:59:F8:65:7A:5F:07:7D:61:49:35:B0:02 X509v3 Authority Key Identifier: keyid:E2:ED:E4:A7:EA:97:26:68:A7:95:B2:7B:A9:DC:87:F4:B9:0D:A8:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9172D91/EA672A5C19E711E8B243D57CC4F9AE02/4u3kp-qXJminlbJ7qdyH9LkNqJc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4u3kp-qXJminlbJ7qdyH9LkNqJc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9172D91/EA672A5C19E711E8B243D57CC4F9AE02/4u3kp-qXJminlbJ7qdyH9LkNqJc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 67:fa:ae:14:b6:e3:51:8d:1f:c1:75:72:a3:8f:7f:85:47:65: 48:34:20:cc:ea:39:ef:04:1b:06:e0:56:78:52:a7:c3:0c:17: c5:8e:23:ac:7b:29:27:83:55:e5:c7:65:a3:88:90:be:eb:4c: 18:a1:51:c8:c8:79:be:fa:c3:2c:36:77:51:f3:f6:67:56:c1: 2c:72:3e:d3:20:73:61:98:50:30:e4:b6:ba:71:0c:09:66:a3: 53:d9:12:e8:dc:0e:c1:23:15:d2:76:2c:5c:6d:fe:30:f6:73: ac:31:87:2d:35:77:47:3a:56:cd:4c:84:cb:d8:2c:72:af:71: 4c:8f:e2:43:ef:b1:a0:b6:79:70:81:1a:d0:9a:1c:92:62:76: ee:d7:45:6c:20:ff:89:75:77:8d:de:67:69:db:77:16:9e:6a: d5:8a:ec:de:c8:ad:1f:c2:70:da:8d:22:5c:cc:5a:d3:70:fb: b9:a3:a2:92:0f:96:6b:b5:5c:82:12:09:a4:46:4e:b9:8a:26: c4:08:0c:4a:e9:ee:db:47:39:91:7f:71:17:da:f1:3d:9a:24: 47:8a:75:3f:fd:42:fc:79:90:d5:89:7a:dc:7e:1d:b3:52:61: 96:f8:fe:0b:a8:fb:63:75:0c:4b:55:51:76:ed:70:ef:b5:e0: 81:21:ed:6a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFs0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzJEOTExMTAvBgNVBAUTKEUyRURFNEE3RUE5NzI2NjhBNzk1QjI3QkE5REM4N0Y0 QjkwREE4OTcwHhcNMjUxMTA0MTY0OTAxWhcNMjUxMTExMTY0OTAxWjAYMRYwFAYD VQQDEw02OTBhMmU3ZC0zNWYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzbfw+wsAfkhIwbiY3M+7Q9OMMqW5jjraMhpUW0cD5KcrPU+YcZI2if8r5mMO RyvvLvjierIp5tqlgeKXc/oa1pb+BQBoAl+Hkzy/SYeCrwRLSUKxa+i/X4+lwnI6 gUTN4vutSgoldINrDNOLC+68GisMoXFSobjtxP81xTkN1fYYqiSi7uUbzGOMmi7O AS6W6AO5LpR9JcHOSGYCAQBfJX/OAPvvceejbxJ+BAuYXVHzWzAmO14FqR2JRFqz wJFRwWdfciiBOtnMtyVuf3a71TXjKVpi7Owdu+0RRtrNNET31HbkoryCCCav9Nv0 U+29E62482v6odqJsrDotw6bqwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNvcF/3L hfnNWfhlel8HfWFJNbACMB8GA1UdIwQYMBaAFOLt5KfqlyZop5Wye6nch/S5DaiX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MkQ5MS9FQTY3MkE1QzE5 RTcxMUU4QjI0M0Q1N0NDNEY5QUUwMi80dTNrcC1xWEptaW5sYko3cWR5SDlMa05x SmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzR1M2twLXFYSm1pbmxiSjdxZHlIOUxrTnFKYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MkQ5MS9FQTY3MkE1QzE5RTcxMUU4QjI0M0Q1N0NDNEY5QUUwMi80dTNrcC1xWEpt aW5sYko3cWR5SDlMa05xSmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBn+q4UtuNRjR/BdXKjj3+FR2VINCDM6jnvBBsG4FZ4UqfDDBfFjiOs eykng1Xlx2WjiJC+60wYoVHIyHm++sMsNndR8/ZnVsEscj7TIHNhmFAw5La6cQwJ ZqNT2RLo3A7BIxXSdixcbf4w9nOsMYctNXdHOlbNTITL2Cxyr3FMj+JD77Ggtnlw gRrQmhySYnbu10VsIP+JdXeN3mdp23cWnmrViuzeyK0fwnDajSJczFrTcPu5o6KS D5ZrtVyCEgmkRk65iibECAxK6e7bRzmRf3EX2vE9miRHinU//UL8eZDViXrcfh2z UmGW+P4LqPtjdQxLVVF27XDvteCBIe1q -----END CERTIFICATE-----Generated at Wed Nov 5 08:28:41 2025 by rpki-client