$ rpki-client -vvf rpki.apnic.net/member_repository/A9197FDB/657E4074DA3611EB84E6A349C4F9AE02/4AJb-TLnFuGh-K-QECEcQRCE_J0.mft File: 4AJb-TLnFuGh-K-QECEcQRCE_J0.mft (raw, json) Hash identifier: LTW8HQeVxgyjXrGmF0lOeCHdpeQfi/fCtVSvec7v+Cc= Subject key identifier: BE:23:C7:E2:57:FB:DF:21:80:9C:17:14:3F:C6:58:BB:DB:67:E0:B7 Authority key identifier: E0:02:5B:F9:32:E7:16:E1:A1:F8:AF:90:10:21:1C:41:10:84:FC:9D Certificate issuer: /CN=A9197FDB/serialNumber=E0025BF932E716E1A1F8AF9010211C411084FC9D Certificate serial: 05DD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4AJb-TLnFuGh-K-QECEcQRCE_J0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9197FDB/657E4074DA3611EB84E6A349C4F9AE02/4AJb-TLnFuGh-K-QECEcQRCE_J0.mft Manifest number: 05D6 Signing time: Sun 02 Nov 2025 23:02:00 +0000 Manifest this update: Sun 02 Nov 2025 23:01:59 +0000 Manifest next update: Sun 09 Nov 2025 23:01:59 +0000 Files and hashes: 1: 4AJb-TLnFuGh-K-QECEcQRCE_J0.crl (hash: Bvmkr52849aWHBqpKgpT9pTRav8tTunRXIDDVYEbZBU=) 2: 0A1FAC405BB211EEAD06B243C4F9AE02.roa (hash: +Nf3CbeJiQCKoMqVOr8fCtBhRD9vFNzRUGK/YqqHHSM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9197FDB/657E4074DA3611EB84E6A349C4F9AE02/4AJb-TLnFuGh-K-QECEcQRCE_J0.crl rsync://rpki.apnic.net/member_repository/A9197FDB/657E4074DA3611EB84E6A349C4F9AE02/4AJb-TLnFuGh-K-QECEcQRCE_J0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4AJb-TLnFuGh-K-QECEcQRCE_J0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 23:01:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1501 (0x5dd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9197FDB, serialNumber=E0025BF932E716E1A1F8AF9010211C411084FC9D Validity Not Before: Nov 2 23:01:59 2025 GMT Not After : Nov 9 23:01:59 2025 GMT Subject: CN=6907e2e7-fc2e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:aa:7f:47:15:79:3b:0e:97:34:98:19:6f:6b: a0:53:66:bd:e4:f0:23:2e:07:6e:03:46:ed:25:a5: 30:b5:d3:86:25:37:d6:6a:91:30:28:6e:08:5b:be: b0:69:7f:33:c5:c4:96:ae:97:35:b2:ff:30:58:c3: 9e:d6:94:88:5d:49:36:75:70:f3:1e:71:f6:b7:25: 75:20:3c:48:a1:fa:3c:61:65:8c:61:b9:70:fb:c2: 1b:6f:d2:0b:90:50:87:89:96:7f:2b:04:7e:30:da: c8:7e:c2:e7:d4:61:cf:21:11:76:ef:b4:10:df:70: 8f:d4:ab:47:5e:f9:02:8b:74:5c:35:f7:29:3c:78: 23:e4:35:90:cc:42:db:08:09:ab:6e:9a:8e:b7:a3: 14:c3:5d:23:ea:2f:af:dc:a2:44:81:53:0c:86:e7: e1:6b:30:1f:63:ff:b8:38:63:70:77:eb:fa:87:1c: 6a:09:9f:fd:f5:46:b1:de:93:e3:82:06:b0:75:1e: c6:c8:11:e5:51:1b:ed:21:74:4e:f5:da:b6:0c:02: e2:4d:0f:a6:1b:85:41:3b:eb:97:2e:30:3e:5b:cf: 01:3d:e4:37:28:7a:57:1f:4b:03:55:8e:ac:b5:9f: c8:5c:f6:36:80:bf:81:30:e2:c5:a5:d3:df:6f:8b: 9d:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:23:C7:E2:57:FB:DF:21:80:9C:17:14:3F:C6:58:BB:DB:67:E0:B7 X509v3 Authority Key Identifier: keyid:E0:02:5B:F9:32:E7:16:E1:A1:F8:AF:90:10:21:1C:41:10:84:FC:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9197FDB/657E4074DA3611EB84E6A349C4F9AE02/4AJb-TLnFuGh-K-QECEcQRCE_J0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4AJb-TLnFuGh-K-QECEcQRCE_J0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9197FDB/657E4074DA3611EB84E6A349C4F9AE02/4AJb-TLnFuGh-K-QECEcQRCE_J0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 26:82:a2:57:c6:26:53:5a:04:66:ea:24:58:19:13:62:e6:15: b7:06:86:2c:bb:bb:99:70:ab:4a:4d:8c:fb:c4:53:a8:5e:aa: 30:f5:e2:c7:c6:c1:24:c7:7c:bf:3e:7a:17:fa:5a:fa:03:14: 60:8d:2b:7f:c6:d3:f1:94:90:ba:80:b4:4d:25:03:67:7f:1c: 14:cc:ee:e1:b2:ae:8e:1b:fb:be:d4:54:22:01:83:14:06:2b: d5:d3:04:97:fb:82:25:a5:e2:0c:49:a6:03:85:9f:bf:0e:a5: 60:a8:8a:f8:c2:72:1f:d4:96:1c:44:b2:f8:69:1d:0a:24:8a: 52:e5:6d:46:22:a5:3b:60:be:d2:39:95:0f:ef:b8:45:c9:04: 39:8e:9e:75:71:0e:b3:b1:ff:b6:b6:a9:07:19:cf:11:12:cd: 78:b6:0e:cc:80:9a:2f:11:40:ed:b7:90:6f:00:ec:30:5d:fd: 21:1f:75:c9:0d:15:0b:81:74:79:a2:16:65:88:a5:8b:13:e1: 6d:56:f7:bd:d5:09:10:58:27:f3:3b:dc:f5:98:5a:04:56:4b: 95:2b:b5:a0:a8:82:3f:5e:f5:d5:54:2d:6d:96:0b:13:55:4a: de:72:dc:68:69:43:63:c6:5e:47:89:9e:d2:2f:6c:86:11:24: 91:31:6a:bf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBd0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTdGREIxMTAvBgNVBAUTKEUwMDI1QkY5MzJFNzE2RTFBMUY4QUY5MDEwMjExQzQx MTA4NEZDOUQwHhcNMjUxMTAyMjMwMTU5WhcNMjUxMTA5MjMwMTU5WjAYMRYwFAYD VQQDEw02OTA3ZTJlNy1mYzJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1ap/RxV5Ow6XNJgZb2ugU2a95PAjLgduA0btJaUwtdOGJTfWapEwKG4IW76w aX8zxcSWrpc1sv8wWMOe1pSIXUk2dXDzHnH2tyV1IDxIofo8YWWMYblw+8Ibb9IL kFCHiZZ/KwR+MNrIfsLn1GHPIRF277QQ33CP1KtHXvkCi3RcNfcpPHgj5DWQzELb CAmrbpqOt6MUw10j6i+v3KJEgVMMhufhazAfY/+4OGNwd+v6hxxqCZ/99Uax3pPj ggawdR7GyBHlURvtIXRO9dq2DALiTQ+mG4VBO+uXLjA+W88BPeQ3KHpXH0sDVY6s tZ/IXPY2gL+BMOLFpdPfb4udcwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL4jx+JX +98hgJwXFD/GWLvbZ+C3MB8GA1UdIwQYMBaAFOACW/ky5xbhofivkBAhHEEQhPyd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5N0ZEQi82NTdFNDA3NERB MzYxMUVCODRFNkEzNDlDNEY5QUUwMi80QUpiLVRMbkZ1R2gtSy1RRUNFY1FSQ0Vf SjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRBSmItVExuRnVHaC1LLVFFQ0VjUVJDRV9KMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 N0ZEQi82NTdFNDA3NERBMzYxMUVCODRFNkEzNDlDNEY5QUUwMi80QUpiLVRMbkZ1 R2gtSy1RRUNFY1FSQ0VfSjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAmgqJXxiZTWgRm6iRYGRNi5hW3BoYsu7uZcKtKTYz7xFOoXqow9eLH xsEkx3y/PnoX+lr6AxRgjSt/xtPxlJC6gLRNJQNnfxwUzO7hsq6OG/u+1FQiAYMU BivV0wSX+4IlpeIMSaYDhZ+/DqVgqIr4wnIf1JYcRLL4aR0KJIpS5W1GIqU7YL7S OZUP77hFyQQ5jp51cQ6zsf+2tqkHGc8REs14tg7MgJovEUDtt5BvAOwwXf0hH3XJ DRULgXR5ohZliKWLE+FtVve91QkQWCfzO9z1mFoEVkuVK7WgqII/XvXVVC1tlgsT VUrectxoaUNjxl5HiZ7SL2yGESSRMWq/ -----END CERTIFICATE-----Generated at Tue Nov 4 08:05:31 2025 by rpki-client