$ rpki-client -vvf rpki.apnic.net/member_repository/A912C7DC/64BA4BA8C58B11EFB87E5F33C4F9AE02/ZajQiy7I9C1Duap6QjUXK7ftFmU.mft File: ZajQiy7I9C1Duap6QjUXK7ftFmU.mft (raw, json) Hash identifier: YvDqAaJqOM9GzrpuY1y82RuNNHcliLjtu/isryaLkxQ= Subject key identifier: 15:0A:F6:8D:2A:4A:AB:1A:40:D7:8C:64:EF:67:B4:21:F5:55:90:4E Authority key identifier: 65:A8:D0:8B:2E:C8:F4:2D:43:B9:AA:7A:42:35:17:2B:B7:ED:16:65 Certificate issuer: /CN=A912C7DC/serialNumber=65A8D08B2EC8F42D43B9AA7A4235172BB7ED1665 Certificate serial: 9F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ZajQiy7I9C1Duap6QjUXK7ftFmU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912C7DC/64BA4BA8C58B11EFB87E5F33C4F9AE02/ZajQiy7I9C1Duap6QjUXK7ftFmU.mft Manifest number: 9E Signing time: Mon 03 Nov 2025 06:18:35 +0000 Manifest this update: Mon 03 Nov 2025 06:18:35 +0000 Manifest next update: Mon 10 Nov 2025 06:18:35 +0000 Files and hashes: 1: ZajQiy7I9C1Duap6QjUXK7ftFmU.crl (hash: OqLFT/CurfP0BMFi662+va+IMydT2JB+N2srubiHx+8=) 2: E29CD82EC58B11EFBA44DE34C4F9AE02.roa (hash: Dm+Qler0DP4/BlS/cktwlrkhP2z4/Lue67gvK431F+w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912C7DC/64BA4BA8C58B11EFB87E5F33C4F9AE02/ZajQiy7I9C1Duap6QjUXK7ftFmU.crl rsync://rpki.apnic.net/member_repository/A912C7DC/64BA4BA8C58B11EFB87E5F33C4F9AE02/ZajQiy7I9C1Duap6QjUXK7ftFmU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ZajQiy7I9C1Duap6QjUXK7ftFmU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 06:18:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 159 (0x9f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912C7DC, serialNumber=65A8D08B2EC8F42D43B9AA7A4235172BB7ED1665 Validity Not Before: Nov 3 06:18:35 2025 GMT Not After : Nov 10 06:18:35 2025 GMT Subject: CN=6908493b-23dd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:56:05:bc:48:5f:91:0a:fb:07:4a:f3:9b:09: d7:9e:24:0a:d4:ff:d4:40:ce:b5:70:af:e2:05:47: d0:60:5f:9f:54:81:1d:fc:f3:e1:57:4c:00:45:cf: ed:7f:2e:17:a2:55:d8:e2:fa:13:7f:7e:8f:e9:3a: f3:92:fb:6b:29:8c:16:a4:2c:22:cc:85:a7:ae:a5: af:03:7d:b1:e4:14:3a:17:23:65:84:77:86:bc:68: 28:53:22:00:2f:99:f8:f2:7d:0f:2d:00:de:e4:ad: 9c:2b:d1:5a:e7:f1:e4:96:5e:50:cf:09:79:45:16: 2a:0c:e6:6f:ff:d3:6e:53:9a:b2:95:7c:ec:ff:54: 04:a1:84:7f:e9:7f:10:72:90:c4:8f:f4:2d:41:6d: 6a:f9:00:6f:9e:3f:af:a6:9d:0e:43:26:81:b2:0f: 91:53:d0:90:46:37:4e:89:4c:72:8c:d1:a6:16:21: 35:fa:bc:2b:d7:ba:c3:4b:a0:35:c5:40:5e:4e:b4: 5a:bb:3f:e9:6a:01:0a:0a:ac:e7:57:2c:44:ae:dd: f0:ea:c5:a8:6e:d5:60:b7:08:5c:c4:a7:79:86:09: 74:f1:33:82:f3:16:86:3c:98:ed:94:48:28:f8:40: 2e:03:3c:2d:33:de:46:e4:45:7f:cf:d1:92:6d:ac: eb:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:0A:F6:8D:2A:4A:AB:1A:40:D7:8C:64:EF:67:B4:21:F5:55:90:4E X509v3 Authority Key Identifier: keyid:65:A8:D0:8B:2E:C8:F4:2D:43:B9:AA:7A:42:35:17:2B:B7:ED:16:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912C7DC/64BA4BA8C58B11EFB87E5F33C4F9AE02/ZajQiy7I9C1Duap6QjUXK7ftFmU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ZajQiy7I9C1Duap6QjUXK7ftFmU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912C7DC/64BA4BA8C58B11EFB87E5F33C4F9AE02/ZajQiy7I9C1Duap6QjUXK7ftFmU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 01:d5:12:1e:7e:96:54:d5:39:b9:d6:b6:21:1f:70:52:d8:96: 39:69:bd:d7:97:15:37:8c:6c:b4:bd:10:69:4b:be:31:fa:2f: 44:f8:69:46:97:ff:00:8d:91:b9:d9:c8:e7:80:ac:7e:76:23: c5:76:cf:07:64:03:67:7a:dd:a8:17:e2:6f:4d:2b:32:7e:2b: 06:f8:13:49:38:ea:ea:ff:41:16:2f:c5:c1:0d:d0:71:38:2d: 7e:79:23:cf:84:9a:75:d5:3e:c9:ae:d2:bf:4c:57:99:f3:ee: 86:0a:0c:54:6e:aa:60:63:98:bf:2e:97:66:e2:7a:b2:51:bf: 54:28:b9:c5:78:e0:c2:1a:cc:39:df:1d:af:cc:e0:2b:1f:0e: 2c:63:0c:08:fb:7b:a8:e1:8e:e4:3b:bc:66:e4:b5:21:0c:7a: 98:ba:61:b5:98:18:a5:53:ba:94:d7:16:ac:0e:fd:a8:80:b5: f6:92:2e:50:f2:fd:cf:d2:22:49:e9:78:dd:af:e1:3c:97:0e: 23:42:b5:2b:49:b4:f1:81:e1:be:c2:7b:c9:a4:e4:27:3c:6d: 17:62:32:b2:91:76:10:72:75:b1:3f:82:bb:ec:b0:5d:34:7b: 93:10:d3:2f:18:b0:31:17:76:b9:53:65:fb:04:cc:dc:24:dc: ea:7c:a0:da -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJ8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkM3REMxMTAvBgNVBAUTKDY1QThEMDhCMkVDOEY0MkQ0M0I5QUE3QTQyMzUxNzJC QjdFRDE2NjUwHhcNMjUxMTAzMDYxODM1WhcNMjUxMTEwMDYxODM1WjAYMRYwFAYD VQQDEw02OTA4NDkzYi0yM2RkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAulYFvEhfkQr7B0rzmwnXniQK1P/UQM61cK/iBUfQYF+fVIEd/PPhV0wARc/t fy4XolXY4voTf36P6TrzkvtrKYwWpCwizIWnrqWvA32x5BQ6FyNlhHeGvGgoUyIA L5n48n0PLQDe5K2cK9Fa5/Hkll5Qzwl5RRYqDOZv/9NuU5qylXzs/1QEoYR/6X8Q cpDEj/QtQW1q+QBvnj+vpp0OQyaBsg+RU9CQRjdOiUxyjNGmFiE1+rwr17rDS6A1 xUBeTrRauz/pagEKCqznVyxErt3w6sWobtVgtwhcxKd5hgl08TOC8xaGPJjtlEgo +EAuAzwtM95G5EV/z9GSbazriQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBUK9o0q SqsaQNeMZO9ntCH1VZBOMB8GA1UdIwQYMBaAFGWo0IsuyPQtQ7mqekI1Fyu37RZl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQzdEQy82NEJBNEJBOEM1 OEIxMUVGQjg3RTVGMzNDNEY5QUUwMi9aYWpRaXk3STlDMUR1YXA2UWpVWEs3ZnRG bVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1phalFpeTdJOUMxRHVhcDZRalVYSzdmdEZtVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QzdEQy82NEJBNEJBOEM1OEIxMUVGQjg3RTVGMzNDNEY5QUUwMi9aYWpRaXk3STlD MUR1YXA2UWpVWEs3ZnRGbVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAB1RIefpZU1Tm51rYhH3BS2JY5ab3XlxU3jGy0vRBpS74x+i9E+GlG l/8AjZG52cjngKx+diPFds8HZANnet2oF+JvTSsyfisG+BNJOOrq/0EWL8XBDdBx OC1+eSPPhJp11T7JrtK/TFeZ8+6GCgxUbqpgY5i/Lpdm4nqyUb9UKLnFeODCGsw5 3x2vzOArHw4sYwwI+3uo4Y7kO7xm5LUhDHqYumG1mBilU7qU1xasDv2ogLX2ki5Q 8v3P0iJJ6Xjdr+E8lw4jQrUrSbTxgeG+wnvJpOQnPG0XYjKykXYQcnWxP4K77LBd NHuTENMvGLAxF3a5U2X7BMzcJNzqfKDa -----END CERTIFICATE-----Generated at Tue Nov 4 21:33:42 2025 by rpki-client