$ rpki-client -vvf rpki.apnic.net/member_repository/A916523A/E75B878C4CDD11F0BFA08F80C4F9AE02/zES2e9GPRfbhN63kcxM1pVGmYSc.mft File: zES2e9GPRfbhN63kcxM1pVGmYSc.mft (raw, json) Hash identifier: w7ETUxftVxKBeFEC+rEKvX/6PZNOxMvJjshKMCfyhBw= Subject key identifier: 78:20:B1:C5:60:06:C6:1E:53:D4:14:B7:C5:58:D1:B7:60:88:0E:07 Authority key identifier: CC:44:B6:7B:D1:8F:45:F6:E1:37:AD:E4:73:13:35:A5:51:A6:61:27 Certificate issuer: /CN=A916523A/serialNumber=CC44B67BD18F45F6E137ADE4731335A551A66127 Certificate serial: 48 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zES2e9GPRfbhN63kcxM1pVGmYSc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916523A/E75B878C4CDD11F0BFA08F80C4F9AE02/zES2e9GPRfbhN63kcxM1pVGmYSc.mft Manifest number: 47 Signing time: Mon 03 Nov 2025 07:21:42 +0000 Manifest this update: Mon 03 Nov 2025 07:21:41 +0000 Manifest next update: Mon 10 Nov 2025 07:21:41 +0000 Files and hashes: 1: zES2e9GPRfbhN63kcxM1pVGmYSc.crl (hash: vWucvpOSOa+sVytN//Xw/43KIgAEt7cMFY6q7WmCLXY=) 2: 469F3FE44CDF11F08D2EFF16C4F9AE02.roa (hash: V/fASBu8lY37YHb4lDAmyOYyJCBMY5CbifIBgISs7Nk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916523A/E75B878C4CDD11F0BFA08F80C4F9AE02/zES2e9GPRfbhN63kcxM1pVGmYSc.crl rsync://rpki.apnic.net/member_repository/A916523A/E75B878C4CDD11F0BFA08F80C4F9AE02/zES2e9GPRfbhN63kcxM1pVGmYSc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zES2e9GPRfbhN63kcxM1pVGmYSc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 07:21:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72 (0x48) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916523A, serialNumber=CC44B67BD18F45F6E137ADE4731335A551A66127 Validity Not Before: Nov 3 07:21:41 2025 GMT Not After : Nov 10 07:21:41 2025 GMT Subject: CN=69085806-7244 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:b6:af:c4:f7:dd:d8:ea:47:f9:66:44:29:66: 6e:0a:ef:e6:19:62:16:f7:09:4e:57:eb:d3:e3:58: bc:43:22:09:b2:d8:9b:1a:a6:ae:bb:9b:90:2b:49: 8e:7f:57:e0:f8:8a:91:06:05:63:01:fa:c4:63:73: 13:cb:ac:47:f1:80:a4:93:9c:75:c9:a8:5a:87:88: 99:67:74:4d:64:f2:b8:52:ce:8c:8b:82:b8:07:83: e6:e4:73:1c:60:c9:22:1d:ac:c0:0c:f1:d7:62:53: 46:0e:3a:16:ff:68:39:cf:e0:77:0a:06:8d:c8:e4: 1e:cb:18:7b:fd:b5:d8:83:30:a2:82:6c:1b:df:bd: 31:68:82:ac:d5:6c:6d:0a:42:c0:23:e7:0e:9e:1f: ab:54:ce:05:8b:19:5c:76:67:76:4a:84:e3:36:14: 25:ea:dc:da:ce:8a:1f:40:cf:bf:a2:83:e2:d8:9d: d4:7d:d5:73:77:8e:11:d0:93:b5:bc:a0:d7:b0:de: af:d3:f1:1f:ef:ee:63:fe:51:9d:63:9e:fe:6c:22: 9d:80:26:fc:7f:ce:9d:ed:b7:26:c6:3c:09:0a:48: 23:17:a3:bd:2f:eb:48:a8:25:87:3f:b3:07:2f:c5: b5:68:d3:57:ca:c8:ae:47:ab:6d:15:b9:1b:bf:09: 24:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:20:B1:C5:60:06:C6:1E:53:D4:14:B7:C5:58:D1:B7:60:88:0E:07 X509v3 Authority Key Identifier: keyid:CC:44:B6:7B:D1:8F:45:F6:E1:37:AD:E4:73:13:35:A5:51:A6:61:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916523A/E75B878C4CDD11F0BFA08F80C4F9AE02/zES2e9GPRfbhN63kcxM1pVGmYSc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zES2e9GPRfbhN63kcxM1pVGmYSc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916523A/E75B878C4CDD11F0BFA08F80C4F9AE02/zES2e9GPRfbhN63kcxM1pVGmYSc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9c:64:f8:24:5c:33:bd:54:33:18:5b:2c:49:a4:7b:4c:a6:90: 57:b9:dd:38:f9:31:c9:6a:de:02:3f:0c:7d:2f:0d:64:7e:9f: d0:92:e3:03:d3:de:46:66:e4:9e:b3:fa:d8:4e:54:d9:f9:b8: a1:d9:33:6f:86:91:3b:c9:93:bb:db:d9:eb:72:34:cf:30:73: 2d:d3:29:97:05:0d:b7:df:a3:ac:28:df:bf:4f:a3:74:a1:80: bd:76:3d:51:81:23:58:ac:1e:41:31:7b:83:54:bb:1c:2a:f5: 85:dc:c8:b5:f7:f8:1c:7b:0c:a9:31:80:a6:b6:3c:09:c7:81: 15:18:fd:c3:0b:24:51:37:6f:dc:a6:58:df:cc:fa:bb:aa:9f: 21:f0:e4:95:a2:65:3a:17:f0:1b:a6:74:0e:b6:59:ea:88:f2: dd:58:5f:74:0a:dc:33:42:d8:fc:68:cd:c1:aa:ba:35:09:16: 00:2d:f8:10:b3:f0:1c:e2:78:57:77:21:76:15:ce:f6:d1:84: 17:70:b6:f5:2c:9e:b5:8b:b2:2a:ed:a7:b8:e8:e1:f1:0f:5d: 8f:3b:bf:87:27:73:4c:03:27:87:36:4c:45:69:3c:dd:0d:18: 8b:ba:01:66:73:8d:51:68:9d:14:c2:7b:51:36:66:05:3d:4e: b5:60:dd:ed -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBSDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 NTIzQTExMC8GA1UEBRMoQ0M0NEI2N0JEMThGNDVGNkUxMzdBREU0NzMxMzM1QTU1 MUE2NjEyNzAeFw0yNTExMDMwNzIxNDFaFw0yNTExMTAwNzIxNDFaMBgxFjAUBgNV BAMTDTY5MDg1ODA2LTcyNDQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCvtq/E993Y6kf5ZkQpZm4K7+YZYhb3CU5X69PjWLxDIgmy2Jsapq67m5ArSY5/ V+D4ipEGBWMB+sRjcxPLrEfxgKSTnHXJqFqHiJlndE1k8rhSzoyLgrgHg+bkcxxg ySIdrMAM8ddiU0YOOhb/aDnP4HcKBo3I5B7LGHv9tdiDMKKCbBvfvTFogqzVbG0K QsAj5w6eH6tUzgWLGVx2Z3ZKhOM2FCXq3NrOih9Az7+ig+LYndR91XN3jhHQk7W8 oNew3q/T8R/v7mP+UZ1jnv5sIp2AJvx/zp3ttybGPAkKSCMXo70v60ioJYc/swcv xbVo01fKyK5Hq20VuRu/CSRzAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUeCCxxWAG xh5T1BS3xVjRt2CIDgcwHwYDVR0jBBgwFoAUzES2e9GPRfbhN63kcxM1pVGmYScw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY1MjNBL0U3NUI4NzhDNENE RDExRjBCRkEwOEY4MEM0RjlBRTAyL3pFUzJlOUdQUmZiaE42M2tjeE0xcFZHbVlT Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvekVTMmU5R1BSZmJoTjYza2N4TTFwVkdtWVNjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY1 MjNBL0U3NUI4NzhDNENERDExRjBCRkEwOEY4MEM0RjlBRTAyL3pFUzJlOUdQUmZi aE42M2tjeE0xcFZHbVlTYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJxk+CRcM71UMxhbLEmke0ymkFe53Tj5Mclq3gI/DH0vDWR+n9CS4wPT 3kZm5J6z+thOVNn5uKHZM2+GkTvJk7vb2etyNM8wcy3TKZcFDbffo6wo379Po3Sh gL12PVGBI1isHkExe4NUuxwq9YXcyLX3+Bx7DKkxgKa2PAnHgRUY/cMLJFE3b9ym WN/M+ruqnyHw5JWiZToX8BumdA62WeqI8t1YX3QK3DNC2PxozcGqujUJFgAt+BCz 8BzieFd3IXYVzvbRhBdwtvUsnrWLsirtp7jo4fEPXY87v4cnc0wDJ4c2TEVpPN0N GIu6AWZzjVFonRTCe1E2ZgU9TrVg3e0= -----END CERTIFICATE-----Generated at Wed Nov 5 03:54:29 2025 by rpki-client