$ rpki-client -vvf rpki.apnic.net/member_repository/A91C7F6A/067925007F4211EDB4E78C86C4F9AE02/4z23k7vv5Gy8912zTnCUJ6cu8PM.mft File: 4z23k7vv5Gy8912zTnCUJ6cu8PM.mft (raw, json) Hash identifier: toozJe/YYs62AogitP48o1GG1A4nYNLm+eEdonG0tlw= Subject key identifier: C3:BA:26:4E:51:05:B3:6B:58:5B:96:84:17:B5:A7:8A:C4:3E:78:98 Authority key identifier: E3:3D:B7:93:BB:EF:E4:6C:BC:F7:5D:B3:4E:70:94:27:A7:2E:F0:F3 Certificate issuer: /CN=A91C7F6A/serialNumber=E33DB793BBEFE46CBCF75DB34E709427A72EF0F3 Certificate serial: 0220 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4z23k7vv5Gy8912zTnCUJ6cu8PM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C7F6A/067925007F4211EDB4E78C86C4F9AE02/4z23k7vv5Gy8912zTnCUJ6cu8PM.mft Manifest number: 021B Signing time: Mon 03 Nov 2025 02:08:31 +0000 Manifest this update: Mon 03 Nov 2025 02:08:31 +0000 Manifest next update: Mon 10 Nov 2025 02:08:31 +0000 Files and hashes: 1: 4z23k7vv5Gy8912zTnCUJ6cu8PM.crl (hash: I9ZzwezWsw0hvt9UsungdBlu4/IxU1CoFtfdsU7Pl9A=) 2: 81D5DEE47F5D11EDB4309B54C4F9AE02.roa (hash: Hy6T8zhOl3f+SHukkt0PutGPxcTAN5g9mi9bO48HFgw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C7F6A/067925007F4211EDB4E78C86C4F9AE02/4z23k7vv5Gy8912zTnCUJ6cu8PM.crl rsync://rpki.apnic.net/member_repository/A91C7F6A/067925007F4211EDB4E78C86C4F9AE02/4z23k7vv5Gy8912zTnCUJ6cu8PM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4z23k7vv5Gy8912zTnCUJ6cu8PM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 02:08:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 544 (0x220) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C7F6A, serialNumber=E33DB793BBEFE46CBCF75DB34E709427A72EF0F3 Validity Not Before: Nov 3 02:08:31 2025 GMT Not After : Nov 10 02:08:31 2025 GMT Subject: CN=69080e9f-7e57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:2c:44:86:3e:6c:45:31:bf:b5:ff:57:42:cf: 3d:46:56:40:30:e1:68:2e:f6:34:5b:4e:42:40:4b: 5e:f3:d2:b0:2d:d6:da:04:1c:ce:96:ac:27:44:61: d4:95:eb:a2:39:dc:03:9b:30:5f:c8:b0:77:38:6b: 71:91:17:56:97:43:fe:cc:68:b5:3b:81:7a:40:f0: 6e:34:29:06:41:41:08:87:42:a7:af:97:ca:b1:e5: 13:73:2f:67:f7:aa:ec:a6:cd:81:8b:aa:aa:5c:73: 29:44:54:4d:d6:1b:8b:c5:8d:0f:37:1d:7a:37:0c: e8:f5:eb:15:4d:8e:c8:c1:93:30:0f:34:33:e9:da: 8c:f0:71:db:69:32:d2:eb:fb:5d:a8:f3:36:37:8d: 5d:c1:ab:35:51:2e:3b:0d:0b:d8:ea:9d:aa:ed:0b: e4:af:95:2a:ce:16:da:39:18:69:7a:c0:35:55:22: c3:13:14:63:c0:f9:5f:6a:5b:39:09:45:68:a3:84: 69:df:56:c1:a2:db:21:f3:0a:6e:7d:b0:d7:0e:9a: 40:3d:9d:07:b0:e7:db:22:be:64:07:e8:ab:ce:24: 31:4f:f1:b6:9a:c1:c7:9c:86:ff:95:43:3f:ae:53: 8f:5c:4d:59:75:ed:36:74:24:a0:0c:1f:4d:dd:65: 9d:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:BA:26:4E:51:05:B3:6B:58:5B:96:84:17:B5:A7:8A:C4:3E:78:98 X509v3 Authority Key Identifier: keyid:E3:3D:B7:93:BB:EF:E4:6C:BC:F7:5D:B3:4E:70:94:27:A7:2E:F0:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C7F6A/067925007F4211EDB4E78C86C4F9AE02/4z23k7vv5Gy8912zTnCUJ6cu8PM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4z23k7vv5Gy8912zTnCUJ6cu8PM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C7F6A/067925007F4211EDB4E78C86C4F9AE02/4z23k7vv5Gy8912zTnCUJ6cu8PM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9c:15:c8:28:18:40:62:74:ad:ab:88:f2:22:eb:26:a8:2e:cb: fa:33:da:ce:d8:20:fd:13:88:f1:0f:5d:8a:4b:ed:26:2e:c6: ad:61:7d:27:1a:e7:69:06:51:6e:cb:ba:d8:aa:eb:e1:0f:fc: 46:e9:0a:c1:5c:d2:36:4d:3f:13:3b:20:6d:8d:88:08:37:bc: 81:30:5d:a0:68:99:35:6d:1a:19:c8:ee:47:04:6e:a6:46:cb: c8:81:a5:f7:38:5d:ad:0d:be:2a:a9:ab:a6:bb:a8:95:89:1b: 0e:19:a6:89:d3:11:43:a3:86:03:27:c0:db:bd:0e:6c:a9:9c: 56:c6:78:37:3f:52:d3:a0:39:35:08:68:b1:a3:38:96:a1:89: fe:91:e0:bc:29:ae:10:9d:97:42:fa:23:2c:82:45:2d:8d:94: fb:b3:c5:64:94:fb:46:53:fd:6a:39:20:8e:a4:a2:b2:1c:6a: d7:50:df:3f:b7:e6:67:af:6c:e7:5c:97:24:41:23:9e:18:7d: 38:c7:c7:ab:15:6d:96:4f:2c:e1:ef:00:00:bb:64:e7:67:3c: c7:8d:5f:5d:0d:1c:d7:16:0b:fb:1a:e2:ea:4a:b3:25:f3:d6: 1e:7c:29:ce:57:ab:79:5c:96:ac:47:ca:87:d1:8d:51:0b:b3: f4:83:60:ab -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAiAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzdGNkExMTAvBgNVBAUTKEUzM0RCNzkzQkJFRkU0NkNCQ0Y3NURCMzRFNzA5NDI3 QTcyRUYwRjMwHhcNMjUxMTAzMDIwODMxWhcNMjUxMTEwMDIwODMxWjAYMRYwFAYD VQQDEw02OTA4MGU5Zi03ZTU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtSxEhj5sRTG/tf9XQs89RlZAMOFoLvY0W05CQEte89KwLdbaBBzOlqwnRGHU leuiOdwDmzBfyLB3OGtxkRdWl0P+zGi1O4F6QPBuNCkGQUEIh0Knr5fKseUTcy9n 96rsps2Bi6qqXHMpRFRN1huLxY0PNx16Nwzo9esVTY7IwZMwDzQz6dqM8HHbaTLS 6/tdqPM2N41dwas1US47DQvY6p2q7Qvkr5UqzhbaORhpesA1VSLDExRjwPlfals5 CUVoo4Rp31bBotsh8wpufbDXDppAPZ0HsOfbIr5kB+irziQxT/G2msHHnIb/lUM/ rlOPXE1Zde02dCSgDB9N3WWdSwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMO6Jk5R BbNrWFuWhBe1p4rEPniYMB8GA1UdIwQYMBaAFOM9t5O77+RsvPdds05wlCenLvDz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDN0Y2QS8wNjc5MjUwMDdG NDIxMUVEQjRFNzhDODZDNEY5QUUwMi80ejIzazd2djVHeTg5MTJ6VG5DVUo2Y3U4 UE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzR6MjNrN3Z2NUd5ODkxMnpUbkNVSjZjdThQTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD N0Y2QS8wNjc5MjUwMDdGNDIxMUVEQjRFNzhDODZDNEY5QUUwMi80ejIzazd2djVH eTg5MTJ6VG5DVUo2Y3U4UE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCcFcgoGEBidK2riPIi6yaoLsv6M9rO2CD9E4jxD12KS+0mLsatYX0n GudpBlFuy7rYquvhD/xG6QrBXNI2TT8TOyBtjYgIN7yBMF2gaJk1bRoZyO5HBG6m RsvIgaX3OF2tDb4qqaumu6iViRsOGaaJ0xFDo4YDJ8DbvQ5sqZxWxng3P1LToDk1 CGixoziWoYn+keC8Ka4QnZdC+iMsgkUtjZT7s8VklPtGU/1qOSCOpKKyHGrXUN8/ t+Znr2znXJckQSOeGH04x8erFW2WTyzh7wAAu2TnZzzHjV9dDRzXFgv7GuLqSrMl 89YefCnOV6t5XJasR8qH0Y1RC7P0g2Cr -----END CERTIFICATE-----Generated at Wed Nov 5 01:43:10 2025 by rpki-client