$ rpki-client -vvf rpki.apnic.net/member_repository/A918036A/433AF78C46C711E9ADE9D424C4F9AE02/V4QPtEHSs0yO5pnSZHErSl4P7Y0.mft File: V4QPtEHSs0yO5pnSZHErSl4P7Y0.mft (raw, json) Hash identifier: OgJpX4vmo8UCmoz66uIrGCyAZSQWRttww8dzFybhqpg= Subject key identifier: 0C:53:4E:64:22:07:FD:8A:38:32:7B:88:F0:CA:4B:79:80:8D:42:5E Authority key identifier: 57:84:0F:B4:41:D2:B3:4C:8E:E6:99:D2:64:71:2B:4A:5E:0F:ED:8D Certificate issuer: /CN=A918036A/serialNumber=57840FB441D2B34C8EE699D264712B4A5E0FED8D Certificate serial: 108F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/V4QPtEHSs0yO5pnSZHErSl4P7Y0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918036A/433AF78C46C711E9ADE9D424C4F9AE02/V4QPtEHSs0yO5pnSZHErSl4P7Y0.mft Manifest number: 1071 Signing time: Tue 04 Nov 2025 17:28:52 +0000 Manifest this update: Tue 04 Nov 2025 17:28:51 +0000 Manifest next update: Tue 11 Nov 2025 17:28:51 +0000 Files and hashes: 1: V4QPtEHSs0yO5pnSZHErSl4P7Y0.crl (hash: 8ukRr2JJnEq6lYKZY3Drr/Xav/G5XdUSfRdv6oOqOSk=) 2: E2846570135E11EB9D58482CC4F9AE02.roa (hash: 8wnbM36mlkXO3KAhn+wvxpP3UwwkDuqXsFM8f7eC1Yc=) 3: BFF3C17CD23A11EB8E7BA35DC4F9AE02.roa (hash: 5Fsc41uF0Rk/lmtPY3W1pGuwIZpGYocCqX/4FDCWPmc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918036A/433AF78C46C711E9ADE9D424C4F9AE02/V4QPtEHSs0yO5pnSZHErSl4P7Y0.crl rsync://rpki.apnic.net/member_repository/A918036A/433AF78C46C711E9ADE9D424C4F9AE02/V4QPtEHSs0yO5pnSZHErSl4P7Y0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/V4QPtEHSs0yO5pnSZHErSl4P7Y0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 17:28:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4239 (0x108f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918036A, serialNumber=57840FB441D2B34C8EE699D264712B4A5E0FED8D Validity Not Before: Nov 4 17:28:51 2025 GMT Not After : Nov 11 17:28:51 2025 GMT Subject: CN=690a37d3-8b73 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:23:0d:94:fd:1c:aa:2c:3e:35:b5:79:f5:79: 17:ba:c7:b1:a2:4d:ef:39:aa:c2:93:04:1e:29:28: 99:ab:28:cf:58:21:38:05:16:ed:92:a6:b0:2a:16: 8b:7a:c0:7a:c2:87:56:55:dd:3f:c8:45:9a:fa:2e: 22:3c:2b:73:85:cb:9e:a9:20:3c:01:47:65:aa:30: b3:45:ce:b2:2f:65:1b:0c:e5:bf:51:dd:a4:4a:56: c2:9b:01:74:8e:7f:3e:10:17:26:7a:8b:9e:77:7d: 4f:fd:41:7e:6c:a5:ba:d7:de:dc:a9:6f:d3:20:60: 4d:03:0b:1d:ca:bc:f4:e3:be:aa:e3:91:db:04:e3: 42:38:03:b4:09:c7:33:f7:5b:14:8d:9c:54:74:b3: 98:84:07:07:bf:75:bc:85:70:1a:a0:5c:3f:89:1b: c1:b7:7c:e3:23:5a:d5:c2:20:ff:5e:46:b6:2a:bc: fa:6e:94:6a:1d:b9:f3:9a:fb:32:66:c2:c4:3a:23: f9:3f:27:04:ee:e2:a8:71:32:64:39:5b:35:f8:2e: 4c:87:cc:b4:06:5d:46:ed:75:1f:c9:7e:c5:9d:bf: 13:aa:9c:bd:5e:9b:4b:39:b5:33:96:6c:33:fb:d1: be:ae:4f:0e:ba:0a:bb:2a:8b:4a:67:f0:45:7f:16: 88:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:53:4E:64:22:07:FD:8A:38:32:7B:88:F0:CA:4B:79:80:8D:42:5E X509v3 Authority Key Identifier: keyid:57:84:0F:B4:41:D2:B3:4C:8E:E6:99:D2:64:71:2B:4A:5E:0F:ED:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918036A/433AF78C46C711E9ADE9D424C4F9AE02/V4QPtEHSs0yO5pnSZHErSl4P7Y0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/V4QPtEHSs0yO5pnSZHErSl4P7Y0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918036A/433AF78C46C711E9ADE9D424C4F9AE02/V4QPtEHSs0yO5pnSZHErSl4P7Y0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6b:dd:8d:14:8b:5b:68:29:10:00:80:4c:d1:55:f3:3d:7d:1f: 66:c5:dd:58:33:25:16:24:f8:4b:58:77:bf:60:da:32:ec:e2: ef:f6:dd:f2:f9:8d:54:ae:f5:12:f3:e5:98:bf:41:f9:12:d6: 7d:cd:a5:01:fa:b4:d3:85:64:6a:d8:97:fc:42:10:9b:48:82: cc:8d:b5:43:54:5e:92:16:a0:91:3f:81:eb:c1:87:ca:f4:88: 9a:de:d7:6d:54:39:18:ec:94:16:d5:a6:15:f9:d5:e5:da:6c: 0a:b6:96:36:51:ba:b7:18:37:80:47:a4:da:1a:dc:ad:ef:37: 78:07:65:a7:a9:64:48:b4:42:3c:a9:13:1e:3a:e8:af:c5:df: 3a:21:01:03:10:8e:ca:df:d6:72:2d:f5:e1:ee:69:7f:bd:8a: 49:87:0a:d5:61:c0:87:64:10:4b:9e:e8:c4:fe:ea:27:65:3f: 77:08:7e:ab:90:27:82:f8:94:a6:bf:6d:b8:80:d2:b3:30:ae: fd:73:d8:17:f1:91:b4:ae:92:f2:5c:8a:c7:06:fc:d3:e9:e7: 4f:c0:72:97:53:bd:87:d4:37:12:f3:ec:f0:cd:9e:e2:fc:e3: c0:8e:88:21:3c:5c:b4:97:fa:12:82:0a:6a:ee:37:2c:6f:04: 6e:13:1e:17 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEI8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODAzNkExMTAvBgNVBAUTKDU3ODQwRkI0NDFEMkIzNEM4RUU2OTlEMjY0NzEyQjRB NUUwRkVEOEQwHhcNMjUxMTA0MTcyODUxWhcNMjUxMTExMTcyODUxWjAYMRYwFAYD VQQDEw02OTBhMzdkMy04YjczMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1iMNlP0cqiw+NbV59XkXusexok3vOarCkwQeKSiZqyjPWCE4BRbtkqawKhaL esB6wodWVd0/yEWa+i4iPCtzhcueqSA8AUdlqjCzRc6yL2UbDOW/Ud2kSlbCmwF0 jn8+EBcmeoued31P/UF+bKW6197cqW/TIGBNAwsdyrz0476q45HbBONCOAO0Cccz 91sUjZxUdLOYhAcHv3W8hXAaoFw/iRvBt3zjI1rVwiD/Xka2Krz6bpRqHbnzmvsy ZsLEOiP5PycE7uKocTJkOVs1+C5Mh8y0Bl1G7XUfyX7Fnb8Tqpy9XptLObUzlmwz +9G+rk8Ougq7KotKZ/BFfxaItQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAxTTmQi B/2KODJ7iPDKS3mAjUJeMB8GA1UdIwQYMBaAFFeED7RB0rNMjuaZ0mRxK0peD+2N MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MDM2QS80MzNBRjc4QzQ2 QzcxMUU5QURFOUQ0MjRDNEY5QUUwMi9WNFFQdEVIU3MweU81cG5TWkhFclNsNFA3 WTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1Y0UVB0RUhTczB5TzVwblNaSEVyU2w0UDdZMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MDM2QS80MzNBRjc4QzQ2QzcxMUU5QURFOUQ0MjRDNEY5QUUwMi9WNFFQdEVIU3Mw eU81cG5TWkhFclNsNFA3WTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBr3Y0Ui1toKRAAgEzRVfM9fR9mxd1YMyUWJPhLWHe/YNoy7OLv9t3y +Y1UrvUS8+WYv0H5EtZ9zaUB+rTThWRq2Jf8QhCbSILMjbVDVF6SFqCRP4HrwYfK 9Iia3tdtVDkY7JQW1aYV+dXl2mwKtpY2Ubq3GDeAR6TaGtyt7zd4B2WnqWRItEI8 qRMeOuivxd86IQEDEI7K39ZyLfXh7ml/vYpJhwrVYcCHZBBLnujE/uonZT93CH6r kCeC+JSmv224gNKzMK79c9gX8ZG0rpLyXIrHBvzT6edPwHKXU72H1DcS8+zwzZ7i /OPAjoghPFy0l/oSggpq7jcsbwRuEx4X -----END CERTIFICATE-----Generated at Wed Nov 5 06:27:51 2025 by rpki-client