$ rpki-client -vvf rpki.apnic.net/member_repository/A916D4BE/6A8F71366D4E11EC9CB8CE0AC4F9AE02/zUj-vyb-JJ4FS_1ErpT8WMDo4Kc.mft File: zUj-vyb-JJ4FS_1ErpT8WMDo4Kc.mft (raw, json) Hash identifier: o4+HD6GSnzxSC+QtIPplVgPUYM5lG78QOHc3oGAgsjU= Subject key identifier: 62:DD:D1:F7:2C:A5:27:EF:F8:17:28:CF:D4:A1:33:60:73:8E:A5:C8 Authority key identifier: CD:48:FE:BF:26:FE:24:9E:05:4B:FD:44:AE:94:FC:58:C0:E8:E0:A7 Certificate issuer: /CN=A916D4BE/serialNumber=CD48FEBF26FE249E054BFD44AE94FC58C0E8E0A7 Certificate serial: 0487 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zUj-vyb-JJ4FS_1ErpT8WMDo4Kc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916D4BE/6A8F71366D4E11EC9CB8CE0AC4F9AE02/zUj-vyb-JJ4FS_1ErpT8WMDo4Kc.mft Manifest number: 0478 Signing time: Wed 05 Nov 2025 00:15:45 +0000 Manifest this update: Wed 05 Nov 2025 00:15:45 +0000 Manifest next update: Wed 12 Nov 2025 00:15:45 +0000 Files and hashes: 1: zUj-vyb-JJ4FS_1ErpT8WMDo4Kc.crl (hash: ReDX/HD5Nvu4gd1pxbHb49/45YkiEUGnNaFNYriD8O4=) 2: 3A6B56D0E03411EF9FB2E824C4F9AE02.roa (hash: qN4SUiNR7v9xxP/o2Fq/7o1FjEvOjysHOQYMeRV70PA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916D4BE/6A8F71366D4E11EC9CB8CE0AC4F9AE02/zUj-vyb-JJ4FS_1ErpT8WMDo4Kc.crl rsync://rpki.apnic.net/member_repository/A916D4BE/6A8F71366D4E11EC9CB8CE0AC4F9AE02/zUj-vyb-JJ4FS_1ErpT8WMDo4Kc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zUj-vyb-JJ4FS_1ErpT8WMDo4Kc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 00:15:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1159 (0x487) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916D4BE, serialNumber=CD48FEBF26FE249E054BFD44AE94FC58C0E8E0A7 Validity Not Before: Nov 5 00:15:45 2025 GMT Not After : Nov 12 00:15:45 2025 GMT Subject: CN=690a9731-8e6e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:10:f0:99:20:08:c4:ad:32:a4:c5:ea:3e:c1: 99:c6:e9:96:d6:af:b6:bf:2b:21:16:36:2e:ef:ce: 36:03:82:a5:20:b3:57:96:fc:0b:29:28:c5:6f:72: 95:cf:a1:39:fa:c6:6e:34:b9:af:ee:2c:b7:e0:3b: b8:1c:ba:d7:e4:90:ec:b4:c9:a0:4b:5f:f8:87:2a: b5:71:1c:cb:d1:a3:58:aa:bb:5f:8d:32:4e:e2:0e: dc:07:40:84:d4:19:26:ad:8e:15:e6:d6:8c:55:17: 77:a5:31:58:16:77:5d:e7:c8:0e:4c:95:5c:51:ad: 8b:e4:01:2d:1d:c1:7b:f1:b6:47:e9:d5:c1:d8:fb: e6:00:ab:76:97:27:34:2f:b7:7e:89:45:59:2f:f8: 49:ec:68:95:e8:75:aa:c0:27:74:0b:37:e3:2e:96: c5:90:9f:96:7c:7b:9e:f1:05:63:cd:b7:f7:a0:35: a2:fa:18:2d:38:f1:25:95:59:ee:14:46:68:10:df: 9e:96:6c:f6:d8:b3:0c:fe:a9:c8:8a:e8:08:7f:aa: b5:4b:04:23:2e:e1:ec:74:d2:d8:ed:92:08:39:f1: f6:b1:44:bc:d9:6d:88:2c:1c:af:52:c7:c9:2e:bf: eb:a4:0f:d6:7b:d2:f7:4a:22:7d:0a:0a:de:dc:6d: 13:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:DD:D1:F7:2C:A5:27:EF:F8:17:28:CF:D4:A1:33:60:73:8E:A5:C8 X509v3 Authority Key Identifier: keyid:CD:48:FE:BF:26:FE:24:9E:05:4B:FD:44:AE:94:FC:58:C0:E8:E0:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916D4BE/6A8F71366D4E11EC9CB8CE0AC4F9AE02/zUj-vyb-JJ4FS_1ErpT8WMDo4Kc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zUj-vyb-JJ4FS_1ErpT8WMDo4Kc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916D4BE/6A8F71366D4E11EC9CB8CE0AC4F9AE02/zUj-vyb-JJ4FS_1ErpT8WMDo4Kc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ba:b8:91:07:27:d4:13:c9:78:22:5b:e2:b3:ee:03:a5:6b:f7: 66:96:5d:bc:d8:01:c8:2b:1e:92:7a:f8:e4:84:ec:87:eb:f4: 5e:65:b8:04:96:5b:5d:d4:fc:9d:b4:26:ea:f5:7f:36:6f:6b: 2a:a9:38:1e:48:74:4a:2b:6f:ae:ba:f1:5d:05:5b:25:4b:dd: a0:48:ef:ff:a9:d7:cc:21:af:0f:41:a0:c3:42:ec:17:66:fa: 13:32:cc:19:7c:5f:53:91:6f:ee:c2:b1:52:2b:ae:25:64:e2: 35:b6:84:eb:95:db:74:4c:bb:66:56:c5:2b:33:6b:5b:6f:69: 64:6e:9c:12:c6:ec:7b:f8:56:71:80:87:09:40:ed:02:f9:95: d5:aa:73:a4:5f:0a:c8:2c:ad:0a:b4:48:07:45:05:86:05:c6: ac:24:3f:44:bf:ef:96:54:6b:54:b5:72:02:ff:23:aa:b8:88: 6a:d1:95:9f:a9:b0:d6:e5:7e:83:b9:60:57:70:9f:a3:fc:d5: c1:cb:e2:b7:27:51:0f:7f:74:26:73:79:e9:47:03:05:c7:d9: 20:02:9e:83:6e:2c:fa:5a:61:a2:17:c7:03:7f:e7:14:27:a0: 3a:42:34:e9:15:04:23:96:88:63:12:7a:7e:db:0e:6a:0e:b1: d1:0b:54:48 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBIcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkQ0QkUxMTAvBgNVBAUTKENENDhGRUJGMjZGRTI0OUUwNTRCRkQ0NEFFOTRGQzU4 QzBFOEUwQTcwHhcNMjUxMTA1MDAxNTQ1WhcNMjUxMTEyMDAxNTQ1WjAYMRYwFAYD VQQDEw02OTBhOTczMS04ZTZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtBDwmSAIxK0ypMXqPsGZxumW1q+2vyshFjYu7842A4KlILNXlvwLKSjFb3KV z6E5+sZuNLmv7iy34Du4HLrX5JDstMmgS1/4hyq1cRzL0aNYqrtfjTJO4g7cB0CE 1BkmrY4V5taMVRd3pTFYFndd58gOTJVcUa2L5AEtHcF78bZH6dXB2PvmAKt2lyc0 L7d+iUVZL/hJ7GiV6HWqwCd0CzfjLpbFkJ+WfHue8QVjzbf3oDWi+hgtOPEllVnu FEZoEN+elmz22LMM/qnIiugIf6q1SwQjLuHsdNLY7ZIIOfH2sUS82W2ILByvUsfJ Lr/rpA/We9L3SiJ9Cgre3G0TvQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGLd0fcs pSfv+Bcoz9ShM2BzjqXIMB8GA1UdIwQYMBaAFM1I/r8m/iSeBUv9RK6U/FjA6OCn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RDRCRS82QThGNzEzNjZE NEUxMUVDOUNCOENFMEFDNEY5QUUwMi96VWotdnliLUpKNEZTXzFFcnBUOFdNRG80 S2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pVai12eWItSko0RlNfMUVycFQ4V01EbzRLYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 RDRCRS82QThGNzEzNjZENEUxMUVDOUNCOENFMEFDNEY5QUUwMi96VWotdnliLUpK NEZTXzFFcnBUOFdNRG80S2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC6uJEHJ9QTyXgiW+Kz7gOla/dmll282AHIKx6SevjkhOyH6/ReZbgE lltd1PydtCbq9X82b2sqqTgeSHRKK2+uuvFdBVslS92gSO//qdfMIa8PQaDDQuwX ZvoTMswZfF9TkW/uwrFSK64lZOI1toTrldt0TLtmVsUrM2tbb2lkbpwSxux7+FZx gIcJQO0C+ZXVqnOkXwrILK0KtEgHRQWGBcasJD9Ev++WVGtUtXIC/yOquIhq0ZWf qbDW5X6DuWBXcJ+j/NXBy+K3J1EPf3Qmc3npRwMFx9kgAp6Dbiz6WmGiF8cDf+cU J6A6QjTpFQQjlohjEnp+2w5qDrHRC1RI -----END CERTIFICATE-----Generated at Wed Nov 5 09:30:47 2025 by rpki-client