$ rpki-client -vvf rpki.apnic.net/member_repository/A914B45F/40BB15742F6511EE95FDED56C4F9AE02/z64jGpiXN_YdrZV8wk0hNYWBjtw.mft File: z64jGpiXN_YdrZV8wk0hNYWBjtw.mft (raw, json) Hash identifier: 7sEvfMJAAR9zwskj4Do/Q0//q2hI8nbC+5trcFLj9iM= Subject key identifier: 71:AE:49:94:B8:D3:9B:94:5E:DC:59:BE:F5:7A:DB:FE:A5:71:A1:7E Authority key identifier: CF:AE:23:1A:98:97:37:F6:1D:AD:95:7C:C2:4D:21:35:85:81:8E:DC Certificate issuer: /CN=A914B45F/serialNumber=CFAE231A989737F61DAD957CC24D213585818EDC Certificate serial: 01AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z64jGpiXN_YdrZV8wk0hNYWBjtw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914B45F/40BB15742F6511EE95FDED56C4F9AE02/z64jGpiXN_YdrZV8wk0hNYWBjtw.mft Manifest number: 01A9 Signing time: Wed 05 Nov 2025 03:20:27 +0000 Manifest this update: Wed 05 Nov 2025 03:20:27 +0000 Manifest next update: Wed 12 Nov 2025 03:20:27 +0000 Files and hashes: 1: z64jGpiXN_YdrZV8wk0hNYWBjtw.crl (hash: TD5cnBCiEBeQF4o9pS4Gg1LNFhydXQOYjGjhbhBN53U=) 2: 578C92D62F6611EE9CAFAA58C4F9AE02.roa (hash: Q5zuiPpefsNxFRaG9cl+nmTsBfZwCymfR2pPktbzlnY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914B45F/40BB15742F6511EE95FDED56C4F9AE02/z64jGpiXN_YdrZV8wk0hNYWBjtw.crl rsync://rpki.apnic.net/member_repository/A914B45F/40BB15742F6511EE95FDED56C4F9AE02/z64jGpiXN_YdrZV8wk0hNYWBjtw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z64jGpiXN_YdrZV8wk0hNYWBjtw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 03:20:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 428 (0x1ac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914B45F, serialNumber=CFAE231A989737F61DAD957CC24D213585818EDC Validity Not Before: Nov 5 03:20:27 2025 GMT Not After : Nov 12 03:20:27 2025 GMT Subject: CN=690ac27b-e2fc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:4c:10:7f:71:78:51:9e:8f:91:63:75:81:1d: bc:f8:91:d8:54:76:95:7f:41:61:25:61:ac:8c:62: 66:3c:d3:9c:ca:6f:cd:4a:82:6f:29:b0:c0:b5:64: 67:fd:34:4d:c7:8b:81:22:ed:5e:65:b5:b9:0a:82: 25:c0:2c:56:db:f5:e5:ed:f7:6e:ae:9a:54:07:c6: 20:00:0a:6e:42:fa:fe:ba:11:a2:9f:03:17:01:fd: 3f:91:fb:88:d3:46:d8:d5:6d:7a:8c:8e:39:6e:c7: f4:44:a3:fd:fd:eb:95:e1:67:dc:fc:01:b5:9f:72: 9f:00:4b:23:58:c1:8b:e8:78:72:3e:65:ea:c5:d1: 28:bc:e0:1f:22:6f:e7:ac:0b:0f:da:d0:ac:52:90: b9:f1:04:14:e2:ee:a2:b2:67:bb:d3:05:ed:08:1f: 13:c8:a5:b6:88:80:c0:0c:cd:6f:3f:d4:27:f0:bd: 96:9e:98:6f:2e:92:4c:c7:51:f2:2d:90:3e:e5:bc: 14:08:d0:6f:3b:a4:9f:52:33:09:9f:52:1d:1f:e7: 8c:07:4b:b3:5c:01:04:7f:04:3a:5a:49:ea:44:a4: 7a:aa:a7:0f:3a:b0:42:74:1f:9b:a2:b5:28:ea:db: df:0a:a0:75:a2:19:d5:c7:fa:5f:d8:ff:fa:fe:a2: 68:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:AE:49:94:B8:D3:9B:94:5E:DC:59:BE:F5:7A:DB:FE:A5:71:A1:7E X509v3 Authority Key Identifier: keyid:CF:AE:23:1A:98:97:37:F6:1D:AD:95:7C:C2:4D:21:35:85:81:8E:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914B45F/40BB15742F6511EE95FDED56C4F9AE02/z64jGpiXN_YdrZV8wk0hNYWBjtw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z64jGpiXN_YdrZV8wk0hNYWBjtw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914B45F/40BB15742F6511EE95FDED56C4F9AE02/z64jGpiXN_YdrZV8wk0hNYWBjtw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3e:e5:61:57:32:f0:10:4f:d8:ac:c6:74:3b:11:a4:fa:f5:e5: 2b:3a:1b:99:95:0b:bf:c9:6c:db:a7:d7:19:23:79:c9:49:d6: e8:2b:43:a8:3c:f4:d1:e9:ff:f7:43:aa:5c:87:56:94:a5:e3: 6a:bd:93:be:03:81:74:24:37:72:25:77:67:82:89:06:3d:46: fc:40:55:f8:1d:97:21:d6:01:23:95:1f:a5:4a:d5:7e:fa:f9: f2:d0:74:e5:8c:74:0f:cf:f2:c8:09:5a:09:df:0d:29:48:f7: 9e:c1:5a:d0:73:60:52:72:83:96:1a:7d:04:ab:e3:fd:07:11: dc:26:03:72:ab:c3:27:06:3e:37:3a:48:e6:63:16:70:a7:77: b8:d5:68:10:e8:77:bf:ba:5a:5b:5d:59:10:7f:ed:b8:f5:57: b1:e2:b9:bd:9e:76:75:5b:88:10:bf:76:1e:ec:30:8b:a8:03: e5:15:76:47:b7:a1:e4:8c:7b:b8:6e:66:84:12:61:79:45:6d: 39:05:37:d5:b0:ce:5f:10:56:de:38:4b:db:64:9b:27:70:a0: 2b:54:37:2a:aa:96:4f:3f:0c:6a:f9:4c:3b:12:8a:99:1f:2d: 29:e3:40:f1:26:b0:63:51:10:c9:62:cc:b4:67:e6:2f:33:aa: 63:4a:1f:f6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAawwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEI0NUYxMTAvBgNVBAUTKENGQUUyMzFBOTg5NzM3RjYxREFEOTU3Q0MyNEQyMTM1 ODU4MThFREMwHhcNMjUxMTA1MDMyMDI3WhcNMjUxMTEyMDMyMDI3WjAYMRYwFAYD VQQDEw02OTBhYzI3Yi1lMmZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwkwQf3F4UZ6PkWN1gR28+JHYVHaVf0FhJWGsjGJmPNOcym/NSoJvKbDAtWRn /TRNx4uBIu1eZbW5CoIlwCxW2/Xl7fdurppUB8YgAApuQvr+uhGinwMXAf0/kfuI 00bY1W16jI45bsf0RKP9/euV4Wfc/AG1n3KfAEsjWMGL6HhyPmXqxdEovOAfIm/n rAsP2tCsUpC58QQU4u6isme70wXtCB8TyKW2iIDADM1vP9Qn8L2WnphvLpJMx1Hy LZA+5bwUCNBvO6SfUjMJn1IdH+eMB0uzXAEEfwQ6WknqRKR6qqcPOrBCdB+borUo 6tvfCqB1ohnVx/pf2P/6/qJohQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHGuSZS4 05uUXtxZvvV62/6lcaF+MB8GA1UdIwQYMBaAFM+uIxqYlzf2Ha2VfMJNITWFgY7c MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QjQ1Ri80MEJCMTU3NDJG NjUxMUVFOTVGREVENTZDNEY5QUUwMi96NjRqR3BpWE5fWWRyWlY4d2swaE5ZV0Jq dHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3o2NGpHcGlYTl9ZZHJaVjh3azBoTllXQmp0dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QjQ1Ri80MEJCMTU3NDJGNjUxMUVFOTVGREVENTZDNEY5QUUwMi96NjRqR3BpWE5f WWRyWlY4d2swaE5ZV0JqdHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA+5WFXMvAQT9isxnQ7EaT69eUrOhuZlQu/yWzbp9cZI3nJSdboK0Oo PPTR6f/3Q6pch1aUpeNqvZO+A4F0JDdyJXdngokGPUb8QFX4HZch1gEjlR+lStV+ +vny0HTljHQPz/LICVoJ3w0pSPeewVrQc2BScoOWGn0Eq+P9BxHcJgNyq8MnBj43 OkjmYxZwp3e41WgQ6He/ulpbXVkQf+249Vex4rm9nnZ1W4gQv3Ye7DCLqAPlFXZH t6HkjHu4bmaEEmF5RW05BTfVsM5fEFbeOEvbZJsncKArVDcqqpZPPwxq+Uw7EoqZ Hy0p40DxJrBjURDJYsy0Z+YvM6pjSh/2 -----END CERTIFICATE-----Generated at Wed Nov 5 17:19:13 2025 by rpki-client