$ rpki-client -vvf rpki.apnic.net/member_repository/A9129D4A/248103A4AC9611E6A561A315C4F9AE02/ZGscQagf9-WCtezcHO9UzmEVJWM.mft File: ZGscQagf9-WCtezcHO9UzmEVJWM.mft (raw, json) Hash identifier: h6MToubl+Roivnboq6gEgnOjVQ+M07cPjUfP/qJ1KJY= Subject key identifier: 7A:D6:38:63:95:6E:AF:E2:6E:B0:6F:D7:F5:C2:AB:F0:EE:52:4C:CA Authority key identifier: 64:6B:1C:41:A8:1F:F7:E5:82:B5:EC:DC:1C:EF:54:CE:61:15:25:63 Certificate issuer: /CN=A9129D4A/serialNumber=646B1C41A81FF7E582B5ECDC1CEF54CE61152563 Certificate serial: 1DAE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZGscQagf9-WCtezcHO9UzmEVJWM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9129D4A/248103A4AC9611E6A561A315C4F9AE02/ZGscQagf9-WCtezcHO9UzmEVJWM.mft Manifest number: 1DA3 Signing time: Tue 04 Nov 2025 16:13:03 +0000 Manifest this update: Tue 04 Nov 2025 16:13:02 +0000 Manifest next update: Tue 11 Nov 2025 16:13:02 +0000 Files and hashes: 1: ZGscQagf9-WCtezcHO9UzmEVJWM.crl (hash: 9XfES/SQo6zwlww4vcxFiIYsXFI6hnj2U1GeL6j2ELY=) 2: 810AF2B0AC9611E6A37EC415C4F9AE02.roa (hash: djmV6ni7hy6C8m5F1gtlxw3KFQjLB6LT9Z3a9xMILMs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9129D4A/248103A4AC9611E6A561A315C4F9AE02/ZGscQagf9-WCtezcHO9UzmEVJWM.crl rsync://rpki.apnic.net/member_repository/A9129D4A/248103A4AC9611E6A561A315C4F9AE02/ZGscQagf9-WCtezcHO9UzmEVJWM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZGscQagf9-WCtezcHO9UzmEVJWM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 16:13:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7598 (0x1dae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9129D4A, serialNumber=646B1C41A81FF7E582B5ECDC1CEF54CE61152563 Validity Not Before: Nov 4 16:13:02 2025 GMT Not After : Nov 11 16:13:02 2025 GMT Subject: CN=690a260f-168f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:75:f8:e0:92:5e:3c:87:eb:b6:24:50:d1:91: 49:ae:73:5e:d6:b9:bd:cd:9f:45:f1:af:ce:29:5c: 17:45:a9:9b:42:f7:ba:78:6d:c6:71:5d:92:df:70: 7d:ed:4e:13:72:39:4e:c3:66:d9:29:0b:c2:e6:da: 54:28:16:71:9c:0e:a9:20:ce:09:d7:fc:be:8a:af: f6:40:06:88:9a:29:fa:0a:89:4e:f1:b7:3f:dd:52: 0e:96:0e:52:a5:7a:84:ab:2f:59:17:76:b0:bc:06: 3c:72:86:8e:6e:a2:21:74:19:10:12:cd:65:1e:9d: 5d:0c:ca:fc:dc:07:56:c7:39:b2:ba:01:67:c0:de: f2:91:7f:02:38:2c:72:6f:d5:ab:0d:68:6b:7e:18: 7a:f5:d7:0b:29:1e:02:c1:b5:38:56:87:03:54:ed: db:18:4f:39:71:1f:43:bb:80:33:d3:25:fb:43:2b: 4d:57:cd:50:44:2b:31:a2:24:14:48:30:62:24:d6: d0:3a:44:60:c4:ad:2c:51:b5:98:bf:f7:7d:f4:9d: 36:3e:75:7c:62:e5:0a:3d:36:45:1f:7d:ba:3d:b3: c8:22:a2:89:64:f1:dc:c1:a8:1c:70:c5:f5:a9:c8: f3:3b:84:8c:48:b3:ac:70:81:77:fd:3f:12:58:e5: 95:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:D6:38:63:95:6E:AF:E2:6E:B0:6F:D7:F5:C2:AB:F0:EE:52:4C:CA X509v3 Authority Key Identifier: keyid:64:6B:1C:41:A8:1F:F7:E5:82:B5:EC:DC:1C:EF:54:CE:61:15:25:63 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9129D4A/248103A4AC9611E6A561A315C4F9AE02/ZGscQagf9-WCtezcHO9UzmEVJWM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZGscQagf9-WCtezcHO9UzmEVJWM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9129D4A/248103A4AC9611E6A561A315C4F9AE02/ZGscQagf9-WCtezcHO9UzmEVJWM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5c:55:ee:fa:d0:e9:cb:53:7a:cc:05:60:23:4f:54:2c:0f:d5: e1:d7:09:64:d1:51:0c:79:5e:6f:b5:d3:af:98:3b:98:2e:ad: 91:f0:71:ea:07:ca:68:15:01:d7:b1:d8:77:d2:f9:50:35:12: 10:cb:91:b2:b0:72:7b:0b:ab:ba:39:d6:69:04:b8:66:eb:57: 85:e8:fd:23:0d:73:f3:0b:5f:e7:ab:c9:cb:52:a3:d4:fe:2e: 31:19:e3:18:5e:dd:d5:78:b7:56:96:b1:3b:89:29:f7:69:aa: 4f:de:ae:d7:1e:67:4a:1a:ec:13:6b:12:90:9e:d8:d0:66:a3: aa:7e:a9:04:7c:54:eb:60:99:b1:c5:8c:77:57:ca:37:d9:f1: e5:ab:84:c5:6d:7d:a2:8d:2c:a4:2b:3d:91:ae:39:f1:dc:b0: 5a:d5:b1:bf:db:1b:2c:bd:09:19:3b:4e:93:c8:24:8d:b3:3d: 68:b3:2c:a3:e2:55:1c:7c:0c:bc:b4:ec:ef:03:d0:89:ad:ed: 01:b3:6a:cc:a5:c8:c2:ec:79:63:cd:63:f5:69:ff:99:d7:ac: 41:b8:d5:4e:09:55:e1:ec:14:78:50:37:05:82:92:ac:81:fc: 39:1a:cb:fc:83:4c:b2:4a:97:64:8b:27:6f:55:83:32:88:6f: 90:98:47:58 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHa4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjlENEExMTAvBgNVBAUTKDY0NkIxQzQxQTgxRkY3RTU4MkI1RUNEQzFDRUY1NENF NjExNTI1NjMwHhcNMjUxMTA0MTYxMzAyWhcNMjUxMTExMTYxMzAyWjAYMRYwFAYD VQQDEw02OTBhMjYwZi0xNjhmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3XX44JJePIfrtiRQ0ZFJrnNe1rm9zZ9F8a/OKVwXRambQve6eG3GcV2S33B9 7U4TcjlOw2bZKQvC5tpUKBZxnA6pIM4J1/y+iq/2QAaImin6ColO8bc/3VIOlg5S pXqEqy9ZF3awvAY8coaObqIhdBkQEs1lHp1dDMr83AdWxzmyugFnwN7ykX8COCxy b9WrDWhrfhh69dcLKR4CwbU4VocDVO3bGE85cR9Du4Az0yX7QytNV81QRCsxoiQU SDBiJNbQOkRgxK0sUbWYv/d99J02PnV8YuUKPTZFH326PbPIIqKJZPHcwagccMX1 qcjzO4SMSLOscIF3/T8SWOWVOwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHrWOGOV bq/ibrBv1/XCq/DuUkzKMB8GA1UdIwQYMBaAFGRrHEGoH/flgrXs3BzvVM5hFSVj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOUQ0QS8yNDgxMDNBNEFD OTYxMUU2QTU2MUEzMTVDNEY5QUUwMi9aR3NjUWFnZjktV0N0ZXpjSE85VXptRVZK V00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pHc2NRYWdmOS1XQ3RlemNITzlVem1FVkpXTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy OUQ0QS8yNDgxMDNBNEFDOTYxMUU2QTU2MUEzMTVDNEY5QUUwMi9aR3NjUWFnZjkt V0N0ZXpjSE85VXptRVZKV00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBcVe760OnLU3rMBWAjT1QsD9Xh1wlk0VEMeV5vtdOvmDuYLq2R8HHq B8poFQHXsdh30vlQNRIQy5GysHJ7C6u6OdZpBLhm61eF6P0jDXPzC1/nq8nLUqPU /i4xGeMYXt3VeLdWlrE7iSn3aapP3q7XHmdKGuwTaxKQntjQZqOqfqkEfFTrYJmx xYx3V8o32fHlq4TFbX2ijSykKz2Rrjnx3LBa1bG/2xssvQkZO06TyCSNsz1osyyj 4lUcfAy8tOzvA9CJre0Bs2rMpcjC7HljzWP1af+Z16xBuNVOCVXh7BR4UDcFgpKs gfw5Gsv8g0yySpdkiydvVYMyiG+QmEdY -----END CERTIFICATE-----Generated at Wed Nov 5 00:24:01 2025 by rpki-client