$ rpki-client -vvf rpki.apnic.net/member_repository/A917F0AF/2D7A7E0ECC4F11EFA89A8F14C4F9AE02/4RQ3jak0hhRp9JXZdZjg8AKJwzA.mft File: 4RQ3jak0hhRp9JXZdZjg8AKJwzA.mft (raw, json) Hash identifier: RnJxSzQU+Yu+z1+OkQYlEhs4yUGHnSbwz4rRsFS4rcg= Subject key identifier: CA:8D:90:D7:D4:DE:C5:36:B4:3A:E9:E1:13:68:43:E9:F1:CC:8B:BB Authority key identifier: E1:14:37:8D:A9:34:86:14:69:F4:95:D9:75:98:E0:F0:02:89:C3:30 Certificate issuer: /CN=A917F0AF/serialNumber=E114378DA934861469F495D97598E0F00289C330 Certificate serial: 9F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4RQ3jak0hhRp9JXZdZjg8AKJwzA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917F0AF/2D7A7E0ECC4F11EFA89A8F14C4F9AE02/4RQ3jak0hhRp9JXZdZjg8AKJwzA.mft Manifest number: 9D Signing time: Mon 03 Nov 2025 06:22:30 +0000 Manifest this update: Mon 03 Nov 2025 06:22:30 +0000 Manifest next update: Mon 10 Nov 2025 06:22:30 +0000 Files and hashes: 1: 4RQ3jak0hhRp9JXZdZjg8AKJwzA.crl (hash: UchNpezIWlI2XdO4SNprXo375LtNoiKbQNe/WE33d3c=) 2: 27E5184CCC6211EFA20BEE1BC4F9AE02.roa (hash: ICu/yjGLx5mxYSM0WJFCxUELVponO7X2E1rDJr+HfU4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917F0AF/2D7A7E0ECC4F11EFA89A8F14C4F9AE02/4RQ3jak0hhRp9JXZdZjg8AKJwzA.crl rsync://rpki.apnic.net/member_repository/A917F0AF/2D7A7E0ECC4F11EFA89A8F14C4F9AE02/4RQ3jak0hhRp9JXZdZjg8AKJwzA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4RQ3jak0hhRp9JXZdZjg8AKJwzA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 06:22:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 159 (0x9f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917F0AF, serialNumber=E114378DA934861469F495D97598E0F00289C330 Validity Not Before: Nov 3 06:22:30 2025 GMT Not After : Nov 10 06:22:30 2025 GMT Subject: CN=69084a26-40a7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:ba:68:6f:86:72:84:c5:89:d4:39:d8:86:0f: 9c:fb:e7:b4:7c:4b:99:88:7c:5a:cc:88:6e:89:99: 6c:99:11:b5:c8:cc:19:1d:12:b5:d5:59:d8:f4:12: 32:38:32:ac:6c:87:8c:92:0f:1e:dd:c2:99:8a:77: c9:d4:c2:cd:e5:b3:6a:76:c7:53:30:db:34:00:a5: a5:9e:ff:df:54:dc:71:57:64:9e:3c:f5:f2:a3:dd: 2f:ca:a2:b4:0e:f6:b1:7c:00:81:92:e8:6d:4b:10: 6a:c2:68:36:ac:20:ac:4d:a6:c9:b0:f6:f2:25:6c: 06:49:78:aa:44:de:01:24:51:5b:7b:ae:71:87:4b: 90:e6:a4:d7:e4:69:5f:61:74:df:24:77:87:19:d0: 4d:b5:cf:d7:c3:f6:5e:cf:0c:65:89:79:7b:59:5c: 2b:ea:54:ee:ce:2a:d9:fd:25:11:a3:8d:bb:9b:db: e1:a7:2e:51:9f:70:09:85:1f:65:10:79:cb:9b:31: a3:b1:14:3a:84:8d:f8:85:25:39:1b:52:47:e7:41: b9:e7:0d:ba:72:ce:ea:16:95:e4:bc:3f:f0:a2:05: e6:d7:77:bc:28:87:1b:9e:81:1d:d3:f2:75:41:87: ed:fb:72:39:73:1e:b6:78:4b:f5:79:a3:f7:36:77: 22:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:8D:90:D7:D4:DE:C5:36:B4:3A:E9:E1:13:68:43:E9:F1:CC:8B:BB X509v3 Authority Key Identifier: keyid:E1:14:37:8D:A9:34:86:14:69:F4:95:D9:75:98:E0:F0:02:89:C3:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917F0AF/2D7A7E0ECC4F11EFA89A8F14C4F9AE02/4RQ3jak0hhRp9JXZdZjg8AKJwzA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4RQ3jak0hhRp9JXZdZjg8AKJwzA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917F0AF/2D7A7E0ECC4F11EFA89A8F14C4F9AE02/4RQ3jak0hhRp9JXZdZjg8AKJwzA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 69:80:92:fb:77:c1:4a:b6:17:7a:c6:03:4c:c3:2f:e8:9f:38: 5f:11:20:40:7f:82:04:34:c5:50:ae:a0:33:c4:8b:6f:95:c1: 22:e3:7a:e5:3d:58:e8:55:d2:11:6e:91:bb:85:6e:88:18:1f: 8f:04:74:4a:b9:d4:25:85:87:69:8f:78:15:fb:1d:b6:7d:8c: 7e:29:2a:e3:fe:22:99:eb:43:bf:a1:f2:49:4f:38:5f:48:42: 85:5f:a8:f8:25:87:7a:49:3a:17:cb:7b:50:29:82:22:3e:d0: b6:89:16:6c:ff:07:a4:93:a8:f5:97:5e:15:71:ef:40:b6:fa: ba:a8:6d:08:6e:a0:06:4c:4b:cd:50:d4:07:c1:36:be:f3:34: a1:61:90:f5:51:0b:f0:41:35:b2:c3:f4:bf:56:34:b1:9e:47: 27:aa:b8:f9:19:3c:d5:8e:77:35:10:58:e6:8b:1e:a1:9f:a5: 48:d1:87:48:ea:23:5a:56:23:28:d5:9a:51:c6:5e:d9:f4:08: 3b:f6:68:bd:2b:56:63:e7:af:6f:35:d4:cc:24:d3:17:e6:96: 96:25:43:2a:af:b4:05:61:67:73:e0:0e:f2:33:0b:d8:72:cf: c9:8b:b3:12:06:a6:49:29:ee:3a:1b:58:1d:27:ea:fa:f8:73: 87:ca:31:0d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJ8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0YwQUYxMTAvBgNVBAUTKEUxMTQzNzhEQTkzNDg2MTQ2OUY0OTVEOTc1OThFMEYw MDI4OUMzMzAwHhcNMjUxMTAzMDYyMjMwWhcNMjUxMTEwMDYyMjMwWjAYMRYwFAYD VQQDEw02OTA4NGEyNi00MGE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzLpob4ZyhMWJ1DnYhg+c++e0fEuZiHxazIhuiZlsmRG1yMwZHRK11VnY9BIy ODKsbIeMkg8e3cKZinfJ1MLN5bNqdsdTMNs0AKWlnv/fVNxxV2SePPXyo90vyqK0 DvaxfACBkuhtSxBqwmg2rCCsTabJsPbyJWwGSXiqRN4BJFFbe65xh0uQ5qTX5Glf YXTfJHeHGdBNtc/Xw/ZezwxliXl7WVwr6lTuzirZ/SURo427m9vhpy5Rn3AJhR9l EHnLmzGjsRQ6hI34hSU5G1JH50G55w26cs7qFpXkvD/wogXm13e8KIcbnoEd0/J1 QYft+3I5cx62eEv1eaP3NnciCwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMqNkNfU 3sU2tDrp4RNoQ+nxzIu7MB8GA1UdIwQYMBaAFOEUN42pNIYUafSV2XWY4PACicMw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RjBBRi8yRDdBN0UwRUND NEYxMUVGQTg5QThGMTRDNEY5QUUwMi80UlEzamFrMGhoUnA5SlhaZFpqZzhBS0p3 ekEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRSUTNqYWswaGhScDlKWFpkWmpnOEFLSnd6QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RjBBRi8yRDdBN0UwRUNDNEYxMUVGQTg5QThGMTRDNEY5QUUwMi80UlEzamFrMGho UnA5SlhaZFpqZzhBS0p3ekEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBpgJL7d8FKthd6xgNMwy/onzhfESBAf4IENMVQrqAzxItvlcEi43rl PVjoVdIRbpG7hW6IGB+PBHRKudQlhYdpj3gV+x22fYx+KSrj/iKZ60O/ofJJTzhf SEKFX6j4JYd6SToXy3tQKYIiPtC2iRZs/wekk6j1l14Vce9Atvq6qG0IbqAGTEvN UNQHwTa+8zShYZD1UQvwQTWyw/S/VjSxnkcnqrj5GTzVjnc1EFjmix6hn6VI0YdI 6iNaViMo1ZpRxl7Z9Ag79mi9K1Zj569vNdTMJNMX5paWJUMqr7QFYWdz4A7yMwvY cs/Ji7MSBqZJKe46G1gdJ+r6+HOHyjEN -----END CERTIFICATE-----Generated at Tue Nov 4 02:19:40 2025 by rpki-client