$ rpki-client -vvf rpki.apnic.net/member_repository/A9152E29/AD33401C04FF11EAB58CB823C4F9AE02/Z7qlic6898PyfVPZjqxMEEzAkTU.mft File: Z7qlic6898PyfVPZjqxMEEzAkTU.mft (raw, json) Hash identifier: 1mIb0F6HW/gpDsms5PUPT9SJMxp0RxALnXTfOcageJs= Subject key identifier: E6:4C:29:40:97:3A:B3:F2:BF:79:0F:2C:D4:35:57:CE:9D:E3:7E:21 Authority key identifier: 67:BA:A5:89:CE:BC:F7:C3:F2:7D:53:D9:8E:AC:4C:10:4C:C0:91:35 Certificate issuer: /CN=A9152E29/serialNumber=67BAA589CEBCF7C3F27D53D98EAC4C104CC09135 Certificate serial: 0C9C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Z7qlic6898PyfVPZjqxMEEzAkTU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9152E29/AD33401C04FF11EAB58CB823C4F9AE02/Z7qlic6898PyfVPZjqxMEEzAkTU.mft Manifest number: 0C95 Signing time: Tue 04 Nov 2025 18:24:21 +0000 Manifest this update: Tue 04 Nov 2025 18:24:20 +0000 Manifest next update: Tue 11 Nov 2025 18:24:20 +0000 Files and hashes: 1: Z7qlic6898PyfVPZjqxMEEzAkTU.crl (hash: 5w7XGuQs3Q3XeL9e85iTk5VYuX5kPfvIIlEOKWCi9BQ=) 2: 94EA7370050111EA9BDD372BC4F9AE02.roa (hash: QfGMdR7Uov5mHwO7nve3pQizSQl2DkOhX5cYoqv4O50=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9152E29/AD33401C04FF11EAB58CB823C4F9AE02/Z7qlic6898PyfVPZjqxMEEzAkTU.crl rsync://rpki.apnic.net/member_repository/A9152E29/AD33401C04FF11EAB58CB823C4F9AE02/Z7qlic6898PyfVPZjqxMEEzAkTU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Z7qlic6898PyfVPZjqxMEEzAkTU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 18:24:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3228 (0xc9c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9152E29, serialNumber=67BAA589CEBCF7C3F27D53D98EAC4C104CC09135 Validity Not Before: Nov 4 18:24:20 2025 GMT Not After : Nov 11 18:24:20 2025 GMT Subject: CN=690a44d4-fe44 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:fa:78:73:33:97:a4:10:a9:da:a0:c0:cc:f4: ff:55:a4:b6:b1:54:ea:db:ab:d3:e4:80:bd:59:ad: 61:a4:f4:96:78:0c:a7:5f:59:29:95:0d:f2:a6:1b: 12:e3:15:2e:d8:3c:a8:14:c5:54:fd:49:31:3d:5b: d7:8b:72:e9:71:19:53:18:35:7e:40:f0:af:46:15: b6:12:dd:9b:3d:9b:52:86:1f:62:1c:be:da:f5:3f: 0f:d2:89:a6:81:16:f5:15:f3:93:2b:ce:5c:a6:1f: 5c:a5:e5:45:1f:37:5e:90:a1:d6:11:92:e7:3a:82: 9a:71:94:39:29:92:0f:51:7c:5e:80:42:1c:55:ee: 3d:c4:de:8b:27:44:8a:1c:4e:e6:73:39:e4:4e:55: f6:5d:d6:dd:a4:89:5d:b5:ff:a8:9f:65:ba:78:63: 37:77:45:e7:49:6a:a3:a6:e1:4e:cc:38:b8:bc:67: eb:3a:86:81:3e:dd:a4:50:ae:13:b6:d1:fb:3d:ee: 6a:7e:52:bd:51:62:37:ed:0f:8f:75:fe:90:9b:94: c8:26:c0:f0:dc:76:f4:b0:3d:11:e3:86:ab:d9:7a: 5a:4b:fd:82:d9:49:55:a2:6a:5a:de:69:b1:aa:5a: 32:ff:d2:b8:bf:1a:f9:f8:e2:ce:19:c3:47:d0:c2: e1:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:4C:29:40:97:3A:B3:F2:BF:79:0F:2C:D4:35:57:CE:9D:E3:7E:21 X509v3 Authority Key Identifier: keyid:67:BA:A5:89:CE:BC:F7:C3:F2:7D:53:D9:8E:AC:4C:10:4C:C0:91:35 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9152E29/AD33401C04FF11EAB58CB823C4F9AE02/Z7qlic6898PyfVPZjqxMEEzAkTU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Z7qlic6898PyfVPZjqxMEEzAkTU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9152E29/AD33401C04FF11EAB58CB823C4F9AE02/Z7qlic6898PyfVPZjqxMEEzAkTU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0d:c0:4c:54:a2:9d:28:ed:9d:eb:96:88:65:43:15:ac:70:01: 9d:7c:cd:ad:82:2e:ec:fa:70:ec:1c:a6:42:8d:82:9d:14:af: 90:d3:c2:32:ae:25:b8:ea:88:1a:a1:c4:80:3e:6d:17:67:cd: 5c:df:6f:84:db:dd:c8:f4:09:44:30:ab:d1:21:fe:c8:ea:b1: 76:3a:7b:91:ba:cc:66:39:63:6e:fb:0f:45:6b:7f:82:1b:c5: 87:21:91:35:5d:f4:69:73:b9:4f:5c:e6:ff:a8:6c:1c:f9:54: c9:f3:08:be:61:bf:20:5a:3a:bd:d2:8e:23:c3:05:07:e6:23: 00:52:c2:55:91:74:f9:ef:30:ab:20:f1:93:d2:3c:4c:28:0f: 08:55:27:73:b8:0c:2d:39:61:a6:a9:03:78:00:3b:b9:11:37: 7c:f3:db:c6:c4:fb:1e:19:8b:59:7f:53:73:eb:41:e5:8b:a1: e2:5a:6a:2e:3c:a9:be:d7:7a:2c:83:7f:2f:f0:f7:e2:c3:ff: 82:27:41:ca:d0:c5:c0:ac:0e:c0:05:df:c9:0a:1c:1a:5a:16: f1:a4:80:66:dc:4e:d1:64:80:19:62:ff:e3:17:c9:20:59:98: 16:79:48:d7:70:89:f0:b1:b1:36:fc:73:e2:85:00:3d:3a:7d: ae:cf:c3:d6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDJwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTJFMjkxMTAvBgNVBAUTKDY3QkFBNTg5Q0VCQ0Y3QzNGMjdENTNEOThFQUM0QzEw NENDMDkxMzUwHhcNMjUxMTA0MTgyNDIwWhcNMjUxMTExMTgyNDIwWjAYMRYwFAYD VQQDEw02OTBhNDRkNC1mZTQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4fp4czOXpBCp2qDAzPT/VaS2sVTq26vT5IC9Wa1hpPSWeAynX1kplQ3yphsS 4xUu2DyoFMVU/UkxPVvXi3LpcRlTGDV+QPCvRhW2Et2bPZtShh9iHL7a9T8P0omm gRb1FfOTK85cph9cpeVFHzdekKHWEZLnOoKacZQ5KZIPUXxegEIcVe49xN6LJ0SK HE7mcznkTlX2XdbdpIldtf+on2W6eGM3d0XnSWqjpuFOzDi4vGfrOoaBPt2kUK4T ttH7Pe5qflK9UWI37Q+Pdf6Qm5TIJsDw3Hb0sD0R44ar2XpaS/2C2UlVompa3mmx qloy/9K4vxr5+OLOGcNH0MLhAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOZMKUCX OrPyv3kPLNQ1V86d434hMB8GA1UdIwQYMBaAFGe6pYnOvPfD8n1T2Y6sTBBMwJE1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MkUyOS9BRDMzNDAxQzA0 RkYxMUVBQjU4Q0I4MjNDNEY5QUUwMi9aN3FsaWM2ODk4UHlmVlBaanF4TUVFekFr VFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1o3cWxpYzY4OThQeWZWUFpqcXhNRUV6QWtUVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MkUyOS9BRDMzNDAxQzA0RkYxMUVBQjU4Q0I4MjNDNEY5QUUwMi9aN3FsaWM2ODk4 UHlmVlBaanF4TUVFekFrVFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQANwExUop0o7Z3rlohlQxWscAGdfM2tgi7s+nDsHKZCjYKdFK+Q08Iy riW46ogaocSAPm0XZ81c32+E293I9AlEMKvRIf7I6rF2OnuRusxmOWNu+w9Fa3+C G8WHIZE1XfRpc7lPXOb/qGwc+VTJ8wi+Yb8gWjq90o4jwwUH5iMAUsJVkXT57zCr IPGT0jxMKA8IVSdzuAwtOWGmqQN4ADu5ETd889vGxPseGYtZf1Nz60Hli6HiWmou PKm+13osg38v8Pfiw/+CJ0HK0MXArA7ABd/JChwaWhbxpIBm3E7RZIAZYv/jF8kg WZgWeUjXcInwsbE2/HPihQA9On2uz8PW -----END CERTIFICATE-----Generated at Tue Nov 4 20:19:40 2025 by rpki-client