$ rpki-client -vvf rpki.apnic.net/member_repository/A9136C5E/3EA6A250B97011ED8918467CC4F9AE02/znA-TvnfLr44ZQpwSkoBnCpmQ1A.mft File: znA-TvnfLr44ZQpwSkoBnCpmQ1A.mft (raw, json) Hash identifier: znZ/tOFL8mi+Cf6ncxTsfX4nblSK5M50iaWPEgkFo0c= Subject key identifier: FB:D8:F3:C5:79:40:51:42:16:6D:BC:33:FB:F0:7D:9D:01:11:A8:72 Authority key identifier: CE:70:3E:4E:F9:DF:2E:BE:38:65:0A:70:4A:4A:01:9C:2A:66:43:50 Certificate issuer: /CN=A9136C5E/serialNumber=CE703E4EF9DF2EBE38650A704A4A019C2A664350 Certificate serial: 01FA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/znA-TvnfLr44ZQpwSkoBnCpmQ1A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9136C5E/3EA6A250B97011ED8918467CC4F9AE02/znA-TvnfLr44ZQpwSkoBnCpmQ1A.mft Manifest number: 01F6 Signing time: Mon 03 Nov 2025 02:27:19 +0000 Manifest this update: Mon 03 Nov 2025 02:27:19 +0000 Manifest next update: Mon 10 Nov 2025 02:27:19 +0000 Files and hashes: 1: znA-TvnfLr44ZQpwSkoBnCpmQ1A.crl (hash: kXLL32kFrbRqq/8k69/c9IWXfO7qhDpwGz7TWvFcHw8=) 2: 9BCEEFF4BC6911ED9B0FC554C4F9AE02.roa (hash: vkUKnag58zCpuCP8+f6HBj43+NKzxFLQMFl2RAEd1t8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9136C5E/3EA6A250B97011ED8918467CC4F9AE02/znA-TvnfLr44ZQpwSkoBnCpmQ1A.crl rsync://rpki.apnic.net/member_repository/A9136C5E/3EA6A250B97011ED8918467CC4F9AE02/znA-TvnfLr44ZQpwSkoBnCpmQ1A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/znA-TvnfLr44ZQpwSkoBnCpmQ1A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 02:27:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 506 (0x1fa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9136C5E, serialNumber=CE703E4EF9DF2EBE38650A704A4A019C2A664350 Validity Not Before: Nov 3 02:27:19 2025 GMT Not After : Nov 10 02:27:19 2025 GMT Subject: CN=69081307-66f6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:b9:34:ea:7e:81:90:79:dd:1f:c0:be:7b:d4: a3:8e:0b:bc:fc:87:ee:da:f0:2b:c5:3d:18:81:78: 13:d2:0f:9a:10:7f:76:79:b7:d8:1e:e0:89:a5:bc: 62:07:36:63:a5:58:fe:32:41:5c:49:ad:02:b5:1d: 83:87:2f:0d:61:d0:a1:a2:31:88:47:e9:cb:45:00: 0e:ac:45:22:84:bc:af:3d:11:ef:ee:02:13:ba:e4: a7:30:d2:d3:cf:60:9e:ca:5b:48:c2:db:b6:70:2a: 4a:fa:ad:bc:b1:bc:6f:8a:3b:f1:6a:28:5e:18:8b: 79:ae:a7:56:9a:cc:af:05:3a:90:ff:2b:33:7e:04: d1:74:26:0e:e6:da:4a:c0:ee:5e:b3:d1:5d:49:5c: 23:df:59:cf:e3:c8:d6:34:39:94:c4:f6:cc:0d:15: 82:c0:30:1c:15:c0:d4:5c:92:70:e1:da:37:91:fe: 73:db:bb:02:16:00:33:cb:30:8f:ad:6a:b6:45:76: 2b:76:cf:40:4a:7a:73:b9:24:c1:af:23:e7:04:e3: 31:f5:06:d2:99:1a:5f:ad:36:f4:81:d3:33:68:5e: b7:42:20:eb:ae:2f:63:e0:32:0c:37:af:e9:31:9c: 23:74:c3:52:1a:34:b4:70:bb:36:f8:c9:e6:8f:52: 9b:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:D8:F3:C5:79:40:51:42:16:6D:BC:33:FB:F0:7D:9D:01:11:A8:72 X509v3 Authority Key Identifier: keyid:CE:70:3E:4E:F9:DF:2E:BE:38:65:0A:70:4A:4A:01:9C:2A:66:43:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9136C5E/3EA6A250B97011ED8918467CC4F9AE02/znA-TvnfLr44ZQpwSkoBnCpmQ1A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/znA-TvnfLr44ZQpwSkoBnCpmQ1A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9136C5E/3EA6A250B97011ED8918467CC4F9AE02/znA-TvnfLr44ZQpwSkoBnCpmQ1A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 62:c2:9a:6d:ab:76:2f:dc:eb:e7:58:ed:37:e3:23:a5:09:f7: 7c:4f:92:10:5d:c2:ea:6d:69:48:7d:d2:be:0c:be:a5:59:8a: d4:09:d1:35:b5:21:99:71:f5:55:11:a4:0b:21:35:1c:62:0b: ee:b7:35:13:13:aa:e3:25:3a:10:89:ac:72:8a:36:52:07:cc: fd:65:87:bb:60:1d:5d:39:58:83:81:d3:9e:fb:84:e2:bf:76: 8c:c7:f9:16:e0:c5:ce:88:2d:f8:26:12:b4:32:35:34:ac:59: 54:36:21:cf:f7:a6:d6:cc:85:51:68:b3:fc:33:5f:6f:79:82: 70:63:83:4a:c8:ec:14:3e:5d:69:94:ab:77:b1:d8:ff:00:6d: 65:8e:5f:65:f4:60:9c:e0:e2:d8:26:e8:81:1d:5f:2a:21:d0: aa:43:e0:bd:68:d6:18:96:18:04:a7:e8:5f:2c:37:57:d2:ce: bf:9d:dc:66:18:c2:a8:09:39:a9:9d:48:f6:2c:27:e0:44:27: b6:f7:d1:d9:d3:d5:1b:a0:94:16:5c:68:bb:34:3c:2d:77:6c: 5a:99:0c:ff:6e:1d:80:1e:28:d7:2c:08:b1:0a:1e:41:34:87: 10:83:38:70:e6:78:10:3d:cd:33:5c:21:6f:37:7b:bc:b8:0e: 6a:1b:0e:bf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAfowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzZDNUUxMTAvBgNVBAUTKENFNzAzRTRFRjlERjJFQkUzODY1MEE3MDRBNEEwMTlD MkE2NjQzNTAwHhcNMjUxMTAzMDIyNzE5WhcNMjUxMTEwMDIyNzE5WjAYMRYwFAYD VQQDEw02OTA4MTMwNy02NmY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw7k06n6BkHndH8C+e9Sjjgu8/Ifu2vArxT0YgXgT0g+aEH92ebfYHuCJpbxi BzZjpVj+MkFcSa0CtR2Dhy8NYdChojGIR+nLRQAOrEUihLyvPRHv7gITuuSnMNLT z2CeyltIwtu2cCpK+q28sbxvijvxaiheGIt5rqdWmsyvBTqQ/yszfgTRdCYO5tpK wO5es9FdSVwj31nP48jWNDmUxPbMDRWCwDAcFcDUXJJw4do3kf5z27sCFgAzyzCP rWq2RXYrds9ASnpzuSTBryPnBOMx9QbSmRpfrTb0gdMzaF63QiDrri9j4DIMN6/p MZwjdMNSGjS0cLs2+Mnmj1KbSwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPvY88V5 QFFCFm28M/vwfZ0BEahyMB8GA1UdIwQYMBaAFM5wPk753y6+OGUKcEpKAZwqZkNQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNkM1RS8zRUE2QTI1MEI5 NzAxMUVEODkxODQ2N0NDNEY5QUUwMi96bkEtVHZuZkxyNDRaUXB3U2tvQm5DcG1R MUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3puQS1Udm5mTHI0NFpRcHdTa29CbkNwbVExQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NkM1RS8zRUE2QTI1MEI5NzAxMUVEODkxODQ2N0NDNEY5QUUwMi96bkEtVHZuZkxy NDRaUXB3U2tvQm5DcG1RMUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBiwpptq3Yv3OvnWO034yOlCfd8T5IQXcLqbWlIfdK+DL6lWYrUCdE1 tSGZcfVVEaQLITUcYgvutzUTE6rjJToQiaxyijZSB8z9ZYe7YB1dOViDgdOe+4Ti v3aMx/kW4MXOiC34JhK0MjU0rFlUNiHP96bWzIVRaLP8M19veYJwY4NKyOwUPl1p lKt3sdj/AG1ljl9l9GCc4OLYJuiBHV8qIdCqQ+C9aNYYlhgEp+hfLDdX0s6/ndxm GMKoCTmpnUj2LCfgRCe299HZ09UboJQWXGi7NDwtd2xamQz/bh2AHijXLAixCh5B NIcQgzhw5ngQPc0zXCFvN3u8uA5qGw6/ -----END CERTIFICATE-----Generated at Tue Nov 4 16:03:58 2025 by rpki-client