$ rpki-client -vvf rpki.apnic.net/member_repository/A917ACA8/F9714AE6AAFA11EEA221E72EC4F9AE02/zmNwmX29E9IOXsYWW1qe46KCprA.mft File: zmNwmX29E9IOXsYWW1qe46KCprA.mft (raw, json) Hash identifier: TBg1+vVP2f7Jy26bXaUJQmr4X9G9oYifXXvp4DP8jfQ= Subject key identifier: A4:23:A2:CC:4D:F5:D4:A7:EB:60:E0:B5:D9:57:D7:E6:CD:01:75:C8 Authority key identifier: CE:63:70:99:7D:BD:13:D2:0E:5E:C6:16:5B:5A:9E:E3:A2:82:A6:B0 Certificate issuer: /CN=A917ACA8/serialNumber=CE6370997DBD13D20E5EC6165B5A9EE3A282A6B0 Certificate serial: 0173 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zmNwmX29E9IOXsYWW1qe46KCprA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ACA8/F9714AE6AAFA11EEA221E72EC4F9AE02/zmNwmX29E9IOXsYWW1qe46KCprA.mft Manifest number: 0167 Signing time: Wed 05 Nov 2025 04:15:02 +0000 Manifest this update: Wed 05 Nov 2025 04:15:01 +0000 Manifest next update: Wed 12 Nov 2025 04:15:01 +0000 Files and hashes: 1: zmNwmX29E9IOXsYWW1qe46KCprA.crl (hash: 8cTFEqxiQnsGXA03Y/5ETJ8XyAt/EjJcS7JTaILSL6k=) 2: 830F1BDA978411F08BB09F58C4F9AE02.roa (hash: FpYEPHuQF99JDKCuUc3yqcVj2WEdBYJEb7SK3ufBnnQ=) 3: 4D73A1D0978411F08E9E8257C4F9AE02.roa (hash: vFJD24sm3q+X0tzldJmiXgclrTTUTfBHbE5J1wRCfmQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ACA8/F9714AE6AAFA11EEA221E72EC4F9AE02/zmNwmX29E9IOXsYWW1qe46KCprA.crl rsync://rpki.apnic.net/member_repository/A917ACA8/F9714AE6AAFA11EEA221E72EC4F9AE02/zmNwmX29E9IOXsYWW1qe46KCprA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zmNwmX29E9IOXsYWW1qe46KCprA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 04:15:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 371 (0x173) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ACA8, serialNumber=CE6370997DBD13D20E5EC6165B5A9EE3A282A6B0 Validity Not Before: Nov 5 04:15:01 2025 GMT Not After : Nov 12 04:15:01 2025 GMT Subject: CN=690acf46-a8cd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:11:74:a2:a9:3a:79:35:47:42:9b:bf:7d:38: 45:ab:e1:62:ae:06:06:bf:a4:01:82:85:95:93:2e: 8c:82:77:97:f6:ac:28:10:30:10:5b:e5:fd:04:d1: 2e:a8:00:99:12:55:48:b1:c8:a0:4d:07:54:e5:84: 01:f3:63:c9:9e:c7:72:08:3e:79:d3:15:e5:fa:9c: 87:25:80:77:08:f7:1a:3f:4d:15:14:79:c9:6d:50: 19:09:8b:c5:6a:ab:eb:fc:b5:2b:3b:a0:a9:72:f9: 55:e7:3a:19:56:c2:a7:01:ce:35:e5:df:eb:6b:e9: 0b:51:83:70:5f:20:00:1d:7f:09:16:cc:6e:d4:c4: b5:27:02:7d:a7:88:c9:8a:ee:63:82:4c:a4:90:e9: 38:a2:3f:7c:9f:15:40:84:fe:17:93:cb:82:88:68: 0b:28:9b:ae:1d:e4:bd:32:a2:a9:42:f5:11:b8:2b: 94:5e:84:60:29:99:6a:93:21:2e:56:34:87:9d:e6: 7c:0b:e9:27:8e:f7:a5:bc:f0:fb:52:37:07:7b:05: d0:1e:63:0c:02:4c:22:e9:c3:ad:51:48:e3:0d:df: 4e:29:85:5b:a2:05:bb:03:02:68:4e:b1:aa:0e:21: d3:a9:ec:bf:23:8f:6b:19:a5:f1:3f:58:eb:ea:06: b4:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:23:A2:CC:4D:F5:D4:A7:EB:60:E0:B5:D9:57:D7:E6:CD:01:75:C8 X509v3 Authority Key Identifier: keyid:CE:63:70:99:7D:BD:13:D2:0E:5E:C6:16:5B:5A:9E:E3:A2:82:A6:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ACA8/F9714AE6AAFA11EEA221E72EC4F9AE02/zmNwmX29E9IOXsYWW1qe46KCprA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zmNwmX29E9IOXsYWW1qe46KCprA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ACA8/F9714AE6AAFA11EEA221E72EC4F9AE02/zmNwmX29E9IOXsYWW1qe46KCprA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 62:46:38:07:e6:14:11:04:e8:bc:26:2d:7e:6d:c3:07:1a:f9: 5c:07:24:e9:3b:db:f1:84:a0:df:26:03:b7:53:66:ca:7f:9c: e3:38:eb:b6:51:cd:57:9b:c7:c7:3a:03:30:03:95:61:a4:30: 6c:7c:e2:0b:a1:4d:55:64:d3:a6:92:da:f2:11:78:34:b8:a4: f3:07:66:89:06:d2:14:11:7d:f8:b2:da:92:e8:49:bc:68:eb: 4e:b6:d9:1c:e2:27:12:16:4d:bd:f7:47:6f:90:7e:c8:66:2a: 0d:b3:5b:38:24:25:0c:72:af:f3:51:a0:61:08:36:c4:a4:a8: de:f7:5a:a6:08:72:ee:c5:d4:fe:6e:61:29:b6:f5:5d:27:1a: 4d:6f:d1:cd:dd:7e:fd:12:89:a4:2c:b7:fa:35:c6:f9:78:d8: ab:47:24:5a:76:6c:d0:9d:a5:ae:72:74:1a:ad:fd:69:2d:42: 63:ad:78:83:bc:79:e5:2d:84:d8:c8:53:d2:5c:06:38:6e:02: c8:61:39:89:3d:6a:75:c3:d5:df:b6:5d:f5:d1:11:55:c9:ad: d2:b9:7e:59:5d:d2:50:05:9a:db:ef:63:03:64:08:0b:da:73: a1:45:92:0e:dc:19:64:75:b5:9a:40:d9:b8:ec:b2:6f:bf:84: 49:33:32:31 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0FDQTgxMTAvBgNVBAUTKENFNjM3MDk5N0RCRDEzRDIwRTVFQzYxNjVCNUE5RUUz QTI4MkE2QjAwHhcNMjUxMTA1MDQxNTAxWhcNMjUxMTEyMDQxNTAxWjAYMRYwFAYD VQQDEw02OTBhY2Y0Ni1hOGNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyBF0oqk6eTVHQpu/fThFq+FirgYGv6QBgoWVky6MgneX9qwoEDAQW+X9BNEu qACZElVIscigTQdU5YQB82PJnsdyCD550xXl+pyHJYB3CPcaP00VFHnJbVAZCYvF aqvr/LUrO6CpcvlV5zoZVsKnAc415d/ra+kLUYNwXyAAHX8JFsxu1MS1JwJ9p4jJ iu5jgkykkOk4oj98nxVAhP4Xk8uCiGgLKJuuHeS9MqKpQvURuCuUXoRgKZlqkyEu VjSHneZ8C+knjvelvPD7UjcHewXQHmMMAkwi6cOtUUjjDd9OKYVbogW7AwJoTrGq DiHTqey/I49rGaXxP1jr6ga0kwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKQjosxN 9dSn62DgtdlX1+bNAXXIMB8GA1UdIwQYMBaAFM5jcJl9vRPSDl7GFltanuOigqaw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QUNBOC9GOTcxNEFFNkFB RkExMUVFQTIyMUU3MkVDNEY5QUUwMi96bU53bVgyOUU5SU9Yc1lXVzFxZTQ2S0Nw ckEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ptTndtWDI5RTlJT1hzWVdXMXFlNDZLQ3ByQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QUNBOC9GOTcxNEFFNkFBRkExMUVFQTIyMUU3MkVDNEY5QUUwMi96bU53bVgyOUU5 SU9Yc1lXVzFxZTQ2S0NwckEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBiRjgH5hQRBOi8Ji1+bcMHGvlcByTpO9vxhKDfJgO3U2bKf5zjOOu2 Uc1Xm8fHOgMwA5VhpDBsfOILoU1VZNOmktryEXg0uKTzB2aJBtIUEX34stqS6Em8 aOtOttkc4icSFk2990dvkH7IZioNs1s4JCUMcq/zUaBhCDbEpKje91qmCHLuxdT+ bmEptvVdJxpNb9HN3X79EomkLLf6Ncb5eNirRyRadmzQnaWucnQarf1pLUJjrXiD vHnlLYTYyFPSXAY4bgLIYTmJPWp1w9Xftl310RFVya3SuX5ZXdJQBZrb72MDZAgL 2nOhRZIO3BlkdbWaQNm47LJvv4RJMzIx -----END CERTIFICATE-----Generated at Wed Nov 5 11:57:44 2025 by rpki-client