$ rpki-client -vvf rpki.apnic.net/member_repository/A91EB1BE/5A57786CC0C811E8AE805334C4F9AE02/4CEd1HfFtNoX56IChgOs2OcWZrU.mft File: 4CEd1HfFtNoX56IChgOs2OcWZrU.mft (raw, json) Hash identifier: 7Ghovcb+HSlqye/hCv+Ky7YUbTveuIDw2OS10cdvAkU= Subject key identifier: 7B:ED:75:B5:DB:9E:98:46:A0:BB:40:34:3F:73:A2:1F:21:3A:2B:CA Authority key identifier: E0:21:1D:D4:77:C5:B4:DA:17:E7:A2:02:86:03:AC:D8:E7:16:66:B5 Certificate issuer: /CN=A91EB1BE/serialNumber=E0211DD477C5B4DA17E7A2028603ACD8E71666B5 Certificate serial: 1329 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4CEd1HfFtNoX56IChgOs2OcWZrU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EB1BE/5A57786CC0C811E8AE805334C4F9AE02/4CEd1HfFtNoX56IChgOs2OcWZrU.mft Manifest number: 1317 Signing time: Tue 04 Nov 2025 17:35:37 +0000 Manifest this update: Tue 04 Nov 2025 17:35:36 +0000 Manifest next update: Tue 11 Nov 2025 17:35:36 +0000 Files and hashes: 1: 4CEd1HfFtNoX56IChgOs2OcWZrU.crl (hash: JLwu2K2piJgZuAW7bo1bRwjxJsorJQiZZdR2WbEaaPQ=) 2: 31E1DE72B04B11EE9F3B384BC4F9AE02.roa (hash: 0/XyD86MMGDFZWji3u5g4rHGi/klL7pxbtniJ4b3GEs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EB1BE/5A57786CC0C811E8AE805334C4F9AE02/4CEd1HfFtNoX56IChgOs2OcWZrU.crl rsync://rpki.apnic.net/member_repository/A91EB1BE/5A57786CC0C811E8AE805334C4F9AE02/4CEd1HfFtNoX56IChgOs2OcWZrU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4CEd1HfFtNoX56IChgOs2OcWZrU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 17:35:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4905 (0x1329) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EB1BE, serialNumber=E0211DD477C5B4DA17E7A2028603ACD8E71666B5 Validity Not Before: Nov 4 17:35:36 2025 GMT Not After : Nov 11 17:35:36 2025 GMT Subject: CN=690a3969-08b0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:11:34:1c:bd:aa:13:2b:72:bb:25:1c:55:51: e6:70:05:e8:5b:0b:3b:60:88:ef:f3:72:bf:aa:b0: 57:1c:4c:b4:a9:5c:1c:d8:69:1f:fc:72:72:9b:e9: 46:94:5a:10:1e:9e:cf:da:9a:37:fb:da:82:ed:af: a6:03:b4:01:b3:d2:5d:d0:6f:26:f7:40:cf:aa:e7: e2:ef:6d:e1:8c:6b:23:ce:0b:be:85:d9:26:c8:78: dd:89:32:17:11:d6:a2:a2:81:a7:e3:33:1a:7d:da: 26:a0:34:d2:e3:57:67:1e:ed:20:b2:f9:2e:95:8a: d1:8a:40:ef:58:e6:8a:36:c6:23:de:e6:12:28:a0: 42:98:b4:3a:37:4d:3a:db:78:21:ab:af:f1:74:13: 9e:38:92:74:8b:25:71:27:e0:93:04:0c:0f:83:4c: e4:f5:12:4e:9b:7f:5f:24:12:c3:51:98:81:b8:5a: fc:3b:3d:c4:25:48:d4:eb:e0:5d:25:f8:c5:29:0f: f5:d7:be:6e:e6:96:32:20:dd:fd:58:c1:7e:1c:9b: 99:2d:a1:02:e7:83:fd:91:32:66:02:ec:10:73:61: 02:d5:e6:2b:bf:48:c5:e6:e3:f8:60:c7:5b:60:19: 37:c3:6f:81:ab:dd:98:fe:fc:77:ef:ad:fd:87:9a: d8:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:ED:75:B5:DB:9E:98:46:A0:BB:40:34:3F:73:A2:1F:21:3A:2B:CA X509v3 Authority Key Identifier: keyid:E0:21:1D:D4:77:C5:B4:DA:17:E7:A2:02:86:03:AC:D8:E7:16:66:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EB1BE/5A57786CC0C811E8AE805334C4F9AE02/4CEd1HfFtNoX56IChgOs2OcWZrU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4CEd1HfFtNoX56IChgOs2OcWZrU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EB1BE/5A57786CC0C811E8AE805334C4F9AE02/4CEd1HfFtNoX56IChgOs2OcWZrU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 73:5d:4f:83:6f:ec:20:7f:2c:e1:40:09:43:65:6e:c6:8f:d6: d5:a3:8f:9d:02:b5:57:8c:91:3c:f4:c6:b5:b0:0b:a8:e2:00: f3:d6:9f:52:b9:ad:f5:01:13:9b:52:9b:3e:14:04:99:af:7a: bc:77:2f:ff:16:1a:68:b7:ac:04:11:53:f6:46:6e:2d:87:44: 4e:a1:21:cd:c3:e4:85:28:eb:34:47:e9:b3:cb:fc:a4:e6:45: fd:d2:71:46:48:77:5f:84:1b:86:6d:55:22:44:9e:2f:e2:b3: fc:73:0f:1d:40:fb:71:0e:ce:6f:03:dd:b6:3a:b3:b1:e4:24: 4d:9a:e6:e7:fe:2c:fa:f8:30:4e:9d:f9:13:d0:97:a5:54:44: 10:fe:67:5a:c7:03:c3:e2:4d:67:7c:c1:2f:c5:53:83:6f:b1: 6c:9d:40:c8:bf:db:d0:bb:a7:47:11:7f:80:b0:6c:4b:5c:a3: 55:b7:48:5e:d4:a1:2a:c4:d2:7f:df:7e:72:d7:9f:a9:b3:8d: 3d:ee:1a:d5:c4:ac:cd:4a:f5:a8:48:87:72:98:20:6c:f3:c5: a8:f4:cd:b3:8b:e9:7e:62:d2:43:b0:4d:0f:83:7a:5b:c9:ee: 67:e7:08:f4:9c:70:f7:df:58:43:08:13:79:29:b2:b6:1c:64: 56:88:88:11 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEykwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUIxQkUxMTAvBgNVBAUTKEUwMjExREQ0NzdDNUI0REExN0U3QTIwMjg2MDNBQ0Q4 RTcxNjY2QjUwHhcNMjUxMTA0MTczNTM2WhcNMjUxMTExMTczNTM2WjAYMRYwFAYD VQQDEw02OTBhMzk2OS0wOGIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2RE0HL2qEytyuyUcVVHmcAXoWws7YIjv83K/qrBXHEy0qVwc2Gkf/HJym+lG lFoQHp7P2po3+9qC7a+mA7QBs9Jd0G8m90DPqufi723hjGsjzgu+hdkmyHjdiTIX EdaiooGn4zMafdomoDTS41dnHu0gsvkulYrRikDvWOaKNsYj3uYSKKBCmLQ6N006 23ghq6/xdBOeOJJ0iyVxJ+CTBAwPg0zk9RJOm39fJBLDUZiBuFr8Oz3EJUjU6+Bd JfjFKQ/1175u5pYyIN39WMF+HJuZLaEC54P9kTJmAuwQc2EC1eYrv0jF5uP4YMdb YBk3w2+Bq92Y/vx37639h5rYhQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHvtdbXb nphGoLtAND9zoh8hOivKMB8GA1UdIwQYMBaAFOAhHdR3xbTaF+eiAoYDrNjnFma1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQjFCRS81QTU3Nzg2Q0Mw QzgxMUU4QUU4MDUzMzRDNEY5QUUwMi80Q0VkMUhmRnROb1g1NklDaGdPczJPY1da clUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRDRWQxSGZGdE5vWDU2SUNoZ09zMk9jV1pyVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QjFCRS81QTU3Nzg2Q0MwQzgxMUU4QUU4MDUzMzRDNEY5QUUwMi80Q0VkMUhmRnRO b1g1NklDaGdPczJPY1daclUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBzXU+Db+wgfyzhQAlDZW7Gj9bVo4+dArVXjJE89Ma1sAuo4gDz1p9S ua31ARObUps+FASZr3q8dy//Fhpot6wEEVP2Rm4th0ROoSHNw+SFKOs0R+mzy/yk 5kX90nFGSHdfhBuGbVUiRJ4v4rP8cw8dQPtxDs5vA922OrOx5CRNmubn/iz6+DBO nfkT0JelVEQQ/mdaxwPD4k1nfMEvxVODb7FsnUDIv9vQu6dHEX+AsGxLXKNVt0he 1KEqxNJ/335y15+ps4097hrVxKzNSvWoSIdymCBs88Wo9M2zi+l+YtJDsE0Pg3pb ye5n5wj0nHD331hDCBN5KbK2HGRWiIgR -----END CERTIFICATE-----Generated at Wed Nov 5 19:47:40 2025 by rpki-client