$ rpki-client -vvf rpki.apnic.net/member_repository/A916EBCB/E8D695AC192611EAA3361C7BC4F9AE02/zDaQ-JbvVnMRU1vERN8et0H9i7Q.mft File: zDaQ-JbvVnMRU1vERN8et0H9i7Q.mft (raw, json) Hash identifier: p5qGSCCBvQoZNsKadxg65fwnq82nVklplK2AhTfMUKY= Subject key identifier: 27:E8:9A:FB:9A:F6:A7:78:81:0F:A9:BA:F0:37:42:3A:81:15:AC:64 Authority key identifier: CC:36:90:F8:96:EF:56:73:11:53:5B:C4:44:DF:1E:B7:41:FD:8B:B4 Certificate issuer: /CN=A916EBCB/serialNumber=CC3690F896EF567311535BC444DF1EB741FD8BB4 Certificate serial: 0C33 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zDaQ-JbvVnMRU1vERN8et0H9i7Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916EBCB/E8D695AC192611EAA3361C7BC4F9AE02/zDaQ-JbvVnMRU1vERN8et0H9i7Q.mft Manifest number: 0C2B Signing time: Tue 04 Nov 2025 18:47:42 +0000 Manifest this update: Tue 04 Nov 2025 18:47:42 +0000 Manifest next update: Tue 11 Nov 2025 18:47:42 +0000 Files and hashes: 1: zDaQ-JbvVnMRU1vERN8et0H9i7Q.crl (hash: m5aH9V9rBuxcyejppm9nuyBrZMTRUIOtqqgmEZ1yhgY=) 2: 81C5BFF8192811EA9B88D87DC4F9AE02.roa (hash: ZawsauuQVy3/xITjsqsOJpATtDgEASJhh1tB3zSZBaE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916EBCB/E8D695AC192611EAA3361C7BC4F9AE02/zDaQ-JbvVnMRU1vERN8et0H9i7Q.crl rsync://rpki.apnic.net/member_repository/A916EBCB/E8D695AC192611EAA3361C7BC4F9AE02/zDaQ-JbvVnMRU1vERN8et0H9i7Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zDaQ-JbvVnMRU1vERN8et0H9i7Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 18:47:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3123 (0xc33) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916EBCB, serialNumber=CC3690F896EF567311535BC444DF1EB741FD8BB4 Validity Not Before: Nov 4 18:47:42 2025 GMT Not After : Nov 11 18:47:42 2025 GMT Subject: CN=690a4a4e-6ed3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:10:c2:da:64:70:a2:79:3d:9a:ad:48:bb:4b: 9b:a0:f0:43:b0:7e:27:e8:d6:82:92:94:1d:9a:cc: ce:96:15:57:9a:58:62:8d:53:1f:c4:d7:4f:7a:00: 7e:9c:3d:76:32:94:01:c7:1a:1d:8f:6b:78:52:9e: f8:7d:be:81:44:60:34:8c:00:d1:31:98:06:db:2e: 2c:ff:7e:51:cf:6b:58:04:6e:fc:98:14:32:7f:e4: a2:bb:26:76:b1:f7:62:4b:26:ac:32:65:6e:b7:48: eb:d0:bb:7d:81:0b:c4:eb:97:58:bc:a3:1a:bd:46: c8:34:27:01:69:18:df:2e:0b:01:fa:14:55:c4:f4: 86:3a:61:8d:1f:37:f2:86:65:31:0e:be:74:d3:a5: 12:f7:35:a0:7e:5f:1a:48:87:14:cc:72:58:e7:79: 1f:02:ae:3f:8c:d5:63:05:74:38:9f:ef:27:ab:69: ed:5a:f7:d8:e5:30:51:eb:7e:87:2c:af:27:f4:47: f0:f7:f8:43:e3:dc:64:6c:7e:93:ea:8a:73:71:7b: 33:d1:cd:ff:7d:84:72:b7:7f:26:d1:70:0a:8b:89: 84:04:5b:73:6e:51:b4:3e:29:88:3c:dd:fe:d0:fd: f0:19:03:eb:0d:97:da:15:ce:ef:e9:ef:2e:9c:8e: 66:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:E8:9A:FB:9A:F6:A7:78:81:0F:A9:BA:F0:37:42:3A:81:15:AC:64 X509v3 Authority Key Identifier: keyid:CC:36:90:F8:96:EF:56:73:11:53:5B:C4:44:DF:1E:B7:41:FD:8B:B4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916EBCB/E8D695AC192611EAA3361C7BC4F9AE02/zDaQ-JbvVnMRU1vERN8et0H9i7Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zDaQ-JbvVnMRU1vERN8et0H9i7Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916EBCB/E8D695AC192611EAA3361C7BC4F9AE02/zDaQ-JbvVnMRU1vERN8et0H9i7Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ac:be:1c:eb:64:67:05:d4:04:0e:54:de:65:ff:a4:e4:73:d9: 23:08:84:b1:1c:3e:12:a4:20:97:ad:08:5a:87:a4:4d:5a:05: df:49:f0:51:99:0e:c2:8b:36:87:f4:2d:f3:6d:9c:90:90:71: 62:0d:e9:3a:0b:02:47:65:e1:d0:fa:7e:c0:b5:1b:51:27:95: 08:cf:2a:f7:54:34:b2:d8:ed:cf:46:83:fb:10:37:15:ec:34: 16:35:99:13:9f:8d:7f:0f:f8:68:26:0f:44:66:c9:d4:a1:05: 38:2f:bf:35:5f:ff:f9:13:6c:65:99:65:ab:81:29:e2:93:ea: 2f:0f:58:ce:e0:d4:c4:e5:13:26:c6:bc:79:07:41:8b:97:3f: c5:fa:90:9d:5d:f5:51:2e:7a:e0:8e:1e:f6:f0:cb:d5:c2:86: a6:8c:eb:8e:68:58:66:11:15:1d:46:da:91:7d:57:b3:d3:13: dd:c9:d4:a4:12:1d:57:86:99:ea:a7:8b:a5:77:00:ca:9d:e1: dd:48:97:f8:fb:90:11:7f:6a:6c:17:a4:17:a9:52:8f:e6:8b: 97:8e:6e:a0:4b:8c:fa:ea:ea:8e:db:3e:b3:22:02:41:50:64: 8e:76:3c:36:6c:36:80:ce:86:be:ee:fd:b6:00:1c:e6:67:6d: 24:6e:4a:03 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDDMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkVCQ0IxMTAvBgNVBAUTKENDMzY5MEY4OTZFRjU2NzMxMTUzNUJDNDQ0REYxRUI3 NDFGRDhCQjQwHhcNMjUxMTA0MTg0NzQyWhcNMjUxMTExMTg0NzQyWjAYMRYwFAYD VQQDEw02OTBhNGE0ZS02ZWQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuRDC2mRwonk9mq1Iu0uboPBDsH4n6NaCkpQdmszOlhVXmlhijVMfxNdPegB+ nD12MpQBxxodj2t4Up74fb6BRGA0jADRMZgG2y4s/35Rz2tYBG78mBQyf+SiuyZ2 sfdiSyasMmVut0jr0Lt9gQvE65dYvKMavUbINCcBaRjfLgsB+hRVxPSGOmGNHzfy hmUxDr5006US9zWgfl8aSIcUzHJY53kfAq4/jNVjBXQ4n+8nq2ntWvfY5TBR636H LK8n9Efw9/hD49xkbH6T6opzcXsz0c3/fYRyt38m0XAKi4mEBFtzblG0PimIPN3+ 0P3wGQPrDZfaFc7v6e8unI5mAwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCfomvua 9qd4gQ+puvA3QjqBFaxkMB8GA1UdIwQYMBaAFMw2kPiW71ZzEVNbxETfHrdB/Yu0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RUJDQi9FOEQ2OTVBQzE5 MjYxMUVBQTMzNjFDN0JDNEY5QUUwMi96RGFRLUpidlZuTVJVMXZFUk44ZXQwSDlp N1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pEYVEtSmJ2Vm5NUlUxdkVSTjhldDBIOWk3US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 RUJDQi9FOEQ2OTVBQzE5MjYxMUVBQTMzNjFDN0JDNEY5QUUwMi96RGFRLUpidlZu TVJVMXZFUk44ZXQwSDlpN1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCsvhzrZGcF1AQOVN5l/6Tkc9kjCISxHD4SpCCXrQhah6RNWgXfSfBR mQ7CizaH9C3zbZyQkHFiDek6CwJHZeHQ+n7AtRtRJ5UIzyr3VDSy2O3PRoP7EDcV 7DQWNZkTn41/D/hoJg9EZsnUoQU4L781X//5E2xlmWWrgSnik+ovD1jO4NTE5RMm xrx5B0GLlz/F+pCdXfVRLnrgjh728MvVwoamjOuOaFhmERUdRtqRfVez0xPdydSk Eh1Xhpnqp4uldwDKneHdSJf4+5ARf2psF6QXqVKP5ouXjm6gS4z66uqO2z6zIgJB UGSOdjw2bDaAzoa+7v22ABzmZ20kbkoD -----END CERTIFICATE-----Generated at Wed Nov 5 12:24:04 2025 by rpki-client