$ rpki-client -vvf rpki.apnic.net/member_repository/A912519D/B8280664C75A11EB81E99E19C4F9AE02/ZrnYT0M2qJ2E0eAuggp5aG4eUsQ.mft File: ZrnYT0M2qJ2E0eAuggp5aG4eUsQ.mft (raw, json) Hash identifier: Z/A/OyLWY9Q+MYaS2ANNBYvBpTubDoqd3Gs0Q5PjOJ0= Subject key identifier: 13:84:EA:63:EB:B9:72:81:24:78:22:B5:E6:DD:62:1F:FE:2A:67:AF Authority key identifier: 66:B9:D8:4F:43:36:A8:9D:84:D1:E0:2E:82:0A:79:68:6E:1E:52:C4 Certificate issuer: /CN=A912519D/serialNumber=66B9D84F4336A89D84D1E02E820A79686E1E52C4 Certificate serial: 0608 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZrnYT0M2qJ2E0eAuggp5aG4eUsQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912519D/B8280664C75A11EB81E99E19C4F9AE02/ZrnYT0M2qJ2E0eAuggp5aG4eUsQ.mft Manifest number: 0603 Signing time: Sun 02 Nov 2025 22:52:52 +0000 Manifest this update: Sun 02 Nov 2025 22:52:52 +0000 Manifest next update: Sun 09 Nov 2025 22:52:52 +0000 Files and hashes: 1: ZrnYT0M2qJ2E0eAuggp5aG4eUsQ.crl (hash: Kb9xjbkwSaNk7ZN7eIpALbVznauvgfCbFB5qso1ex+0=) 2: 10581DEAC75D11EBB00EBD1AC4F9AE02.roa (hash: JmgPCoqfxLnmCXZ9Kqg1cLPcucyGnFbjlpBzEMSmBKg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912519D/B8280664C75A11EB81E99E19C4F9AE02/ZrnYT0M2qJ2E0eAuggp5aG4eUsQ.crl rsync://rpki.apnic.net/member_repository/A912519D/B8280664C75A11EB81E99E19C4F9AE02/ZrnYT0M2qJ2E0eAuggp5aG4eUsQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZrnYT0M2qJ2E0eAuggp5aG4eUsQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 22:52:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1544 (0x608) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912519D, serialNumber=66B9D84F4336A89D84D1E02E820A79686E1E52C4 Validity Not Before: Nov 2 22:52:52 2025 GMT Not After : Nov 9 22:52:52 2025 GMT Subject: CN=6907e0c4-454b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:e1:17:df:bd:b4:21:75:dd:8a:e6:45:8b:39: 1b:c7:b1:0e:24:e8:a3:ea:12:2b:42:96:ad:2e:2b: d0:1d:41:60:04:fe:e8:6f:43:98:73:e0:5f:f1:c6: 5f:ed:c2:fe:64:e7:4c:8d:88:d7:47:a6:b9:b7:0f: 4f:32:51:5f:cd:07:53:5b:23:96:3c:27:7d:92:b1: 7b:d9:31:52:6b:2a:d9:46:21:c6:a8:3d:78:dd:7c: 7b:11:f8:4e:e6:c2:0b:21:63:90:3f:17:cf:a6:f7: b9:ca:95:7e:9f:6a:ad:56:ee:b2:ae:20:14:56:f8: d8:98:c3:db:ee:c3:c8:94:41:b0:16:bc:8b:ad:c2: 3e:ae:cd:d2:09:79:f2:9d:f1:9c:8a:01:0f:9b:b5: 51:30:52:22:28:7c:03:85:64:21:c5:17:f8:7b:9c: 7b:28:61:9d:4b:b6:dc:f5:49:49:f7:3f:9c:c3:dd: 76:15:49:aa:69:4c:26:b3:96:31:c7:f2:e8:53:6d: 33:e0:06:be:3f:7d:a6:ff:c6:5b:40:e5:5c:0d:cf: 6f:66:bc:d8:3b:96:a4:36:77:44:42:74:7d:a0:cd: 9a:09:77:2c:7f:ef:5b:f9:21:a4:ee:d3:73:53:55: e1:d6:43:54:ba:3e:6d:e8:b1:67:4a:67:34:5b:1c: 60:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:84:EA:63:EB:B9:72:81:24:78:22:B5:E6:DD:62:1F:FE:2A:67:AF X509v3 Authority Key Identifier: keyid:66:B9:D8:4F:43:36:A8:9D:84:D1:E0:2E:82:0A:79:68:6E:1E:52:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912519D/B8280664C75A11EB81E99E19C4F9AE02/ZrnYT0M2qJ2E0eAuggp5aG4eUsQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZrnYT0M2qJ2E0eAuggp5aG4eUsQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912519D/B8280664C75A11EB81E99E19C4F9AE02/ZrnYT0M2qJ2E0eAuggp5aG4eUsQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b0:c3:e4:9d:3d:3e:ba:48:63:0f:57:5c:e4:bd:37:06:28:c3: 2e:11:82:77:a8:91:df:23:aa:ac:35:3a:9f:48:bb:fc:f0:86: b1:cc:f2:b6:e3:10:3a:8b:f7:b1:c9:af:a5:43:ba:fe:5c:de: 3f:68:71:7b:b7:62:d5:54:7b:96:1c:e8:88:88:fc:59:cf:40: 70:5b:d1:ff:db:a6:89:2b:b9:90:5b:67:b8:df:f1:20:d2:c7: 77:ee:d1:70:f1:47:2d:b5:f3:e5:2e:81:9b:3e:14:72:4c:fb: 73:6d:5e:13:54:4e:31:b9:74:63:84:e8:19:17:d3:b8:a1:43: cf:01:f6:04:d7:3b:3a:3e:ec:44:84:94:0c:d3:2c:88:be:b0: eb:13:7b:61:bb:15:df:03:b7:74:5d:5a:d7:de:04:30:1a:06: 9e:50:98:8e:ff:b6:fc:e3:bc:c6:5b:e3:0a:9e:ec:36:26:cf: fd:83:9a:87:e8:ca:d9:0e:29:5e:46:aa:0b:18:d9:fe:76:ad: 04:0f:c0:65:4c:82:23:ed:d5:ed:64:5e:d8:44:a6:43:60:1b: 45:ae:46:c8:89:24:0a:1b:68:18:c3:97:13:6b:63:60:04:aa: aa:24:f0:80:c9:c6:34:a4:ae:e2:8a:74:c6:64:0a:3b:ec:43: 26:ba:26:c6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBggwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjUxOUQxMTAvBgNVBAUTKDY2QjlEODRGNDMzNkE4OUQ4NEQxRTAyRTgyMEE3OTY4 NkUxRTUyQzQwHhcNMjUxMTAyMjI1MjUyWhcNMjUxMTA5MjI1MjUyWjAYMRYwFAYD VQQDEw02OTA3ZTBjNC00NTRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0eEX3720IXXdiuZFizkbx7EOJOij6hIrQpatLivQHUFgBP7ob0OYc+Bf8cZf 7cL+ZOdMjYjXR6a5tw9PMlFfzQdTWyOWPCd9krF72TFSayrZRiHGqD143Xx7EfhO 5sILIWOQPxfPpve5ypV+n2qtVu6yriAUVvjYmMPb7sPIlEGwFryLrcI+rs3SCXny nfGcigEPm7VRMFIiKHwDhWQhxRf4e5x7KGGdS7bc9UlJ9z+cw912FUmqaUwms5Yx x/LoU20z4Aa+P32m/8ZbQOVcDc9vZrzYO5akNndEQnR9oM2aCXcsf+9b+SGk7tNz U1Xh1kNUuj5t6LFnSmc0WxxgrQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBOE6mPr uXKBJHgitebdYh/+KmevMB8GA1UdIwQYMBaAFGa52E9DNqidhNHgLoIKeWhuHlLE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNTE5RC9CODI4MDY2NEM3 NUExMUVCODFFOTlFMTlDNEY5QUUwMi9acm5ZVDBNMnFKMkUwZUF1Z2dwNWFHNGVV c1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pybllUME0ycUoyRTBlQXVnZ3A1YUc0ZVVzUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NTE5RC9CODI4MDY2NEM3NUExMUVCODFFOTlFMTlDNEY5QUUwMi9acm5ZVDBNMnFK MkUwZUF1Z2dwNWFHNGVVc1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCww+SdPT66SGMPV1zkvTcGKMMuEYJ3qJHfI6qsNTqfSLv88IaxzPK2 4xA6i/exya+lQ7r+XN4/aHF7t2LVVHuWHOiIiPxZz0BwW9H/26aJK7mQW2e43/Eg 0sd37tFw8UcttfPlLoGbPhRyTPtzbV4TVE4xuXRjhOgZF9O4oUPPAfYE1zs6PuxE hJQM0yyIvrDrE3thuxXfA7d0XVrX3gQwGgaeUJiO/7b847zGW+MKnuw2Js/9g5qH 6MrZDileRqoLGNn+dq0ED8BlTIIj7dXtZF7YRKZDYBtFrkbIiSQKG2gYw5cTa2Ng BKqqJPCAycY0pK7iinTGZAo77EMmuibG -----END CERTIFICATE-----Generated at Tue Nov 4 16:13:27 2025 by rpki-client