$ rpki-client -vvf rpki.apnic.net/member_repository/A914E1A8/A40A724AB13011ED847D4981C4F9AE02/i-zDY4Bwprefbc4ioOZbsh4Ndyk.mft File: i-zDY4Bwprefbc4ioOZbsh4Ndyk.mft (raw, json) Hash identifier: PI9LjM4ZD/Wkea/QDrvoPFxD55hFuPtx3Rz8BcGQUHQ= Subject key identifier: 91:F9:85:22:24:C5:C8:33:88:EA:E9:07:35:2C:6A:84:80:8A:EF:0A Authority key identifier: 8B:EC:C3:63:80:70:A6:B7:9F:6D:CE:22:A0:E6:5B:B2:1E:0D:77:29 Certificate issuer: /CN=A914E1A8/serialNumber=8BECC3638070A6B79F6DCE22A0E65BB21E0D7729 Certificate serial: 020F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i-zDY4Bwprefbc4ioOZbsh4Ndyk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E1A8/A40A724AB13011ED847D4981C4F9AE02/i-zDY4Bwprefbc4ioOZbsh4Ndyk.mft Manifest number: 0204 Signing time: Wed 05 Nov 2025 02:32:33 +0000 Manifest this update: Wed 05 Nov 2025 02:32:32 +0000 Manifest next update: Wed 12 Nov 2025 02:32:32 +0000 Files and hashes: 1: i-zDY4Bwprefbc4ioOZbsh4Ndyk.crl (hash: 4MnA3ryLB59UH+qlLZgWOmMFPcRVgOGtIMHVTXFF0/I=) 2: E0161160B62611F09361D512C4F9AE02.roa (hash: oqAcxNJdUwMfW9QrHvtcdri8qImgUr71bAKxLPHs2hk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E1A8/A40A724AB13011ED847D4981C4F9AE02/i-zDY4Bwprefbc4ioOZbsh4Ndyk.crl rsync://rpki.apnic.net/member_repository/A914E1A8/A40A724AB13011ED847D4981C4F9AE02/i-zDY4Bwprefbc4ioOZbsh4Ndyk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i-zDY4Bwprefbc4ioOZbsh4Ndyk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 02:32:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 527 (0x20f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E1A8, serialNumber=8BECC3638070A6B79F6DCE22A0E65BB21E0D7729 Validity Not Before: Nov 5 02:32:32 2025 GMT Not After : Nov 12 02:32:32 2025 GMT Subject: CN=690ab740-bb21 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:f6:b7:be:af:d3:30:7a:8e:07:67:33:e1:f9: aa:73:47:0a:3f:cc:7b:f6:22:c8:5a:bc:b2:76:6f: 60:b1:41:69:1c:3b:8b:90:d0:a8:a4:56:8e:a1:c8: b7:d5:b6:99:04:f2:a6:8c:8d:42:08:10:b9:6b:13: d2:79:77:35:d3:d0:37:01:97:c7:e3:91:ec:2d:97: 81:26:4b:0d:0a:7a:21:ab:0a:4c:61:68:53:1f:0d: d0:43:6d:e7:75:be:d8:f8:10:cf:c3:2e:47:18:8e: 95:1a:13:1e:30:58:2a:8c:ce:f5:0e:48:41:f4:84: 5a:3f:84:40:2b:c0:0f:91:56:3c:2a:69:ac:86:36: 9e:17:3f:17:cb:58:05:b0:27:3c:14:0c:bb:5e:7c: c4:20:6f:e4:25:d2:7e:17:f2:e9:4e:87:f9:e3:c5: ef:72:eb:3f:cc:fc:a3:02:96:5b:ce:76:6a:45:90: 5e:e3:48:9b:a8:53:44:ee:14:7f:cb:6b:ed:1a:a8: 63:02:75:c0:ff:2e:26:7d:62:4e:83:c6:eb:3c:02: 73:a0:e5:a5:2b:71:43:eb:ed:22:62:9f:ea:02:dd: bb:8c:8e:e2:c4:aa:71:7a:d0:84:cd:f6:38:1b:b1: 1e:e4:48:14:b8:a0:b3:04:7e:f4:75:c3:74:58:d9: 17:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:F9:85:22:24:C5:C8:33:88:EA:E9:07:35:2C:6A:84:80:8A:EF:0A X509v3 Authority Key Identifier: keyid:8B:EC:C3:63:80:70:A6:B7:9F:6D:CE:22:A0:E6:5B:B2:1E:0D:77:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E1A8/A40A724AB13011ED847D4981C4F9AE02/i-zDY4Bwprefbc4ioOZbsh4Ndyk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i-zDY4Bwprefbc4ioOZbsh4Ndyk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E1A8/A40A724AB13011ED847D4981C4F9AE02/i-zDY4Bwprefbc4ioOZbsh4Ndyk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption e9:7e:69:20:15:dd:b1:4c:d1:98:32:52:3e:ab:ab:66:84:7d: 84:5b:84:63:91:f4:47:ba:84:a5:a6:cc:31:f3:a5:21:ce:b3: a5:b7:dc:b5:3b:20:56:85:65:8c:11:64:1a:e7:77:a9:7c:90: 88:89:03:b3:d5:84:90:2d:0c:77:d1:e5:31:05:47:0c:79:c6: 11:89:0e:b2:eb:59:f7:2e:98:23:0d:2b:ba:65:07:6f:42:97: fd:42:90:6f:87:94:16:6e:93:41:9a:96:fe:d4:4e:88:d4:46: d8:59:f2:3a:8a:27:b5:cd:8e:19:d7:6f:9a:0a:6b:90:fe:ec: 96:4c:a8:50:d2:0e:38:74:45:94:4a:59:d3:8e:b6:b5:d3:38: 99:42:b6:2a:3a:9b:fb:26:93:f1:a8:40:e9:01:96:b4:83:80: db:06:09:79:71:0e:7c:d9:fc:f7:c9:15:af:39:46:4a:67:31: 51:5c:88:c3:ed:de:32:21:51:14:94:e4:e1:ed:a6:12:25:71: b2:92:5c:cb:dc:10:0f:06:8c:c7:f5:c1:9e:91:bb:47:ba:2f: b6:fc:31:a7:30:c7:16:2e:83:fe:54:9b:8b:f8:f1:b0:68:c1: 14:42:aa:ec:23:bf:70:9e:ce:68:12:fd:05:21:98:76:46:30: 8f:bf:84:85 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAg8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEUxQTgxMTAvBgNVBAUTKDhCRUNDMzYzODA3MEE2Qjc5RjZEQ0UyMkEwRTY1QkIy MUUwRDc3MjkwHhcNMjUxMTA1MDIzMjMyWhcNMjUxMTEyMDIzMjMyWjAYMRYwFAYD VQQDEw02OTBhYjc0MC1iYjIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApPa3vq/TMHqOB2cz4fmqc0cKP8x79iLIWryydm9gsUFpHDuLkNCopFaOoci3 1baZBPKmjI1CCBC5axPSeXc109A3AZfH45HsLZeBJksNCnohqwpMYWhTHw3QQ23n db7Y+BDPwy5HGI6VGhMeMFgqjM71DkhB9IRaP4RAK8APkVY8KmmshjaeFz8Xy1gF sCc8FAy7XnzEIG/kJdJ+F/LpTof548Xvcus/zPyjApZbznZqRZBe40ibqFNE7hR/ y2vtGqhjAnXA/y4mfWJOg8brPAJzoOWlK3FD6+0iYp/qAt27jI7ixKpxetCEzfY4 G7Ee5EgUuKCzBH70dcN0WNkXwwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJH5hSIk xcgziOrpBzUsaoSAiu8KMB8GA1UdIwQYMBaAFIvsw2OAcKa3n23OIqDmW7IeDXcp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTFBOC9BNDBBNzI0QUIx MzAxMUVEODQ3RDQ5ODFDNEY5QUUwMi9pLXpEWTRCd3ByZWZiYzRpb09aYnNoNE5k eWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ktekRZNEJ3cHJlZmJjNGlvT1pic2g0TmR5ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RTFBOC9BNDBBNzI0QUIxMzAxMUVEODQ3RDQ5ODFDNEY5QUUwMi9pLXpEWTRCd3By ZWZiYzRpb09aYnNoNE5keWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDpfmkgFd2xTNGYMlI+q6tmhH2EW4RjkfRHuoSlpswx86UhzrOlt9y1 OyBWhWWMEWQa53epfJCIiQOz1YSQLQx30eUxBUcMecYRiQ6y61n3LpgjDSu6ZQdv Qpf9QpBvh5QWbpNBmpb+1E6I1EbYWfI6iie1zY4Z12+aCmuQ/uyWTKhQ0g44dEWU SlnTjra10ziZQrYqOpv7JpPxqEDpAZa0g4DbBgl5cQ582fz3yRWvOUZKZzFRXIjD 7d4yIVEUlOTh7aYSJXGyklzL3BAPBozH9cGekbtHui+2/DGnMMcWLoP+VJuL+PGw aMEUQqrsI79wns5oEv0FIZh2RjCPv4SF -----END CERTIFICATE-----Generated at Wed Nov 5 11:57:02 2025 by rpki-client