$ rpki-client -vvf rpki.apnic.net/member_repository/A9149C62/84F46B68981511EFA4BD3D57C4F9AE02/z4BKbz2GoZcTpOiG1Ze03GRFaGo.mft File: z4BKbz2GoZcTpOiG1Ze03GRFaGo.mft (raw, json) Hash identifier: 0aSacULkE3mBypJ3BVTnxdAhnp7pTScMTxlvhAJkEKc= Subject key identifier: 3F:4A:E5:21:25:DE:DB:C8:A1:5C:5E:EF:82:4C:95:D3:A8:B8:35:06 Authority key identifier: CF:80:4A:6F:3D:86:A1:97:13:A4:E8:86:D5:97:B4:DC:64:45:68:6A Certificate issuer: /CN=A9149C62/serialNumber=CF804A6F3D86A19713A4E886D597B4DC6445686A Certificate serial: C7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z4BKbz2GoZcTpOiG1Ze03GRFaGo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9149C62/84F46B68981511EFA4BD3D57C4F9AE02/z4BKbz2GoZcTpOiG1Ze03GRFaGo.mft Manifest number: C3 Signing time: Mon 03 Nov 2025 05:56:27 +0000 Manifest this update: Mon 03 Nov 2025 05:56:27 +0000 Manifest next update: Mon 10 Nov 2025 05:56:27 +0000 Files and hashes: 1: z4BKbz2GoZcTpOiG1Ze03GRFaGo.crl (hash: zl4IRfx8k2sLDKR701ki6rQH60ggr8PqT45lWedyYwE=) 2: 088C9298981611EFBE510B59C4F9AE02.roa (hash: +mzl+XLmGyaMauQYRfPSe1wPo0jhs14C721ea24fx4w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9149C62/84F46B68981511EFA4BD3D57C4F9AE02/z4BKbz2GoZcTpOiG1Ze03GRFaGo.crl rsync://rpki.apnic.net/member_repository/A9149C62/84F46B68981511EFA4BD3D57C4F9AE02/z4BKbz2GoZcTpOiG1Ze03GRFaGo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z4BKbz2GoZcTpOiG1Ze03GRFaGo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 05:56:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 199 (0xc7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9149C62, serialNumber=CF804A6F3D86A19713A4E886D597B4DC6445686A Validity Not Before: Nov 3 05:56:27 2025 GMT Not After : Nov 10 05:56:27 2025 GMT Subject: CN=6908440b-2960 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:ac:28:9c:4c:e4:84:2c:fb:00:0a:5a:4e:2d: 3d:08:39:c0:8f:cc:5d:86:e5:46:a3:69:59:06:50: f0:39:d4:6e:6d:16:ee:d4:ca:40:12:9f:24:1c:a2: b7:ab:26:c9:2b:6c:ef:cb:1a:05:34:c4:36:da:e3: bd:81:49:06:eb:e8:fb:ab:af:db:c7:f9:99:cb:a3: e1:85:ed:ed:7c:af:db:79:eb:1e:ab:ca:ba:06:5d: 9e:22:cc:44:43:b9:e7:3b:ea:66:19:7f:9a:e4:00: 6e:b9:3f:ca:f7:e1:6f:1c:f5:9c:26:7a:65:5b:bc: 3c:e8:77:9b:a0:1a:11:6f:a6:23:ef:91:5c:23:3a: 29:09:13:f2:fa:bf:d8:ad:c8:cb:de:87:ef:f2:b5: 91:b1:7d:26:51:83:b6:82:9e:c6:a7:8d:97:b1:1b: 2f:e1:95:f3:a9:56:54:2a:a7:17:d0:1a:5a:f4:25: 89:e6:00:14:47:64:b2:59:2c:b4:d8:fd:9b:ed:ba: da:1d:98:76:ac:36:d1:41:92:99:f7:83:32:ff:21: 3a:e8:5e:b5:93:b8:1c:79:37:ea:e5:12:95:3c:71: d8:8c:6f:28:82:ad:8d:20:87:af:42:33:94:c0:87: aa:fe:3c:a7:2c:6d:55:cc:26:2e:bb:26:6e:61:a3: 30:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:4A:E5:21:25:DE:DB:C8:A1:5C:5E:EF:82:4C:95:D3:A8:B8:35:06 X509v3 Authority Key Identifier: keyid:CF:80:4A:6F:3D:86:A1:97:13:A4:E8:86:D5:97:B4:DC:64:45:68:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9149C62/84F46B68981511EFA4BD3D57C4F9AE02/z4BKbz2GoZcTpOiG1Ze03GRFaGo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z4BKbz2GoZcTpOiG1Ze03GRFaGo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9149C62/84F46B68981511EFA4BD3D57C4F9AE02/z4BKbz2GoZcTpOiG1Ze03GRFaGo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4a:dc:48:ae:43:44:ff:04:55:8f:c2:fe:04:16:fa:12:07:19: 7e:7a:2d:04:19:40:05:0f:47:75:11:3c:22:ab:28:0f:fe:43: c2:00:7b:91:6e:b0:6b:25:ab:e4:a8:48:8d:17:c2:db:9e:eb: 2e:ef:a9:fb:08:d2:db:1a:81:bd:ce:91:e2:ce:20:9e:14:3c: c0:ba:d1:8c:c0:4d:35:78:94:84:68:29:63:05:7a:5a:1b:5e: d2:e0:e4:cc:6a:24:aa:30:1d:87:01:ed:55:70:80:59:1e:7f: a5:97:cf:7b:b9:b4:cc:7e:64:a1:9c:61:41:ca:c9:46:5d:41: da:d8:74:e2:d3:ad:6f:f3:f2:24:3a:dd:54:8e:35:b4:e9:7d: f1:d4:f9:df:c5:00:38:71:31:bf:30:f3:b5:00:31:24:dc:34: de:57:67:42:17:9a:da:a3:d8:2f:99:5e:e8:73:94:04:27:db: 0d:a8:23:34:c7:a7:f9:ff:6e:4e:1c:68:02:98:d1:ba:2a:1a: e1:dd:ca:e8:af:45:0d:d7:b5:79:32:48:27:cd:7f:06:45:64: 8e:2f:b6:74:37:6c:de:d1:f0:98:72:67:2e:43:2b:dd:18:7e: 52:43:53:2c:a0:4b:e5:06:0f:57:6c:1a:b7:7d:5a:09:c1:cf: b3:30:48:cd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDlDNjIxMTAvBgNVBAUTKENGODA0QTZGM0Q4NkExOTcxM0E0RTg4NkQ1OTdCNERD NjQ0NTY4NkEwHhcNMjUxMTAzMDU1NjI3WhcNMjUxMTEwMDU1NjI3WjAYMRYwFAYD VQQDEw02OTA4NDQwYi0yOTYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvqwonEzkhCz7AApaTi09CDnAj8xdhuVGo2lZBlDwOdRubRbu1MpAEp8kHKK3 qybJK2zvyxoFNMQ22uO9gUkG6+j7q6/bx/mZy6Phhe3tfK/beeseq8q6Bl2eIsxE Q7nnO+pmGX+a5ABuuT/K9+FvHPWcJnplW7w86HeboBoRb6Yj75FcIzopCRPy+r/Y rcjL3ofv8rWRsX0mUYO2gp7Gp42XsRsv4ZXzqVZUKqcX0Bpa9CWJ5gAUR2SyWSy0 2P2b7braHZh2rDbRQZKZ94My/yE66F61k7gceTfq5RKVPHHYjG8ogq2NIIevQjOU wIeq/jynLG1VzCYuuyZuYaMwTwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD9K5SEl 3tvIoVxe74JMldOouDUGMB8GA1UdIwQYMBaAFM+ASm89hqGXE6TohtWXtNxkRWhq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OUM2Mi84NEY0NkI2ODk4 MTUxMUVGQTRCRDNENTdDNEY5QUUwMi96NEJLYnoyR29aY1RwT2lHMVplMDNHUkZh R28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3o0QktiejJHb1pjVHBPaUcxWmUwM0dSRmFHby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OUM2Mi84NEY0NkI2ODk4MTUxMUVGQTRCRDNENTdDNEY5QUUwMi96NEJLYnoyR29a Y1RwT2lHMVplMDNHUkZhR28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBK3EiuQ0T/BFWPwv4EFvoSBxl+ei0EGUAFD0d1ETwiqygP/kPCAHuR brBrJavkqEiNF8Lbnusu76n7CNLbGoG9zpHiziCeFDzAutGMwE01eJSEaCljBXpa G17S4OTMaiSqMB2HAe1VcIBZHn+ll897ubTMfmShnGFByslGXUHa2HTi061v8/Ik Ot1UjjW06X3x1PnfxQA4cTG/MPO1ADEk3DTeV2dCF5rao9gvmV7oc5QEJ9sNqCM0 x6f5/25OHGgCmNG6Khrh3cror0UN17V5MkgnzX8GRWSOL7Z0N2ze0fCYcmcuQyvd GH5SQ1MsoEvlBg9XbBq3fVoJwc+zMEjN -----END CERTIFICATE-----Generated at Wed Nov 5 04:46:29 2025 by rpki-client