$ rpki-client -vvf rpki.apnic.net/member_repository/A91A12C4/F319EDC26C1711EFBDBFD50BC4F9AE02/z8CATaxP_3oipAThDphkpxHeGck.mft File: z8CATaxP_3oipAThDphkpxHeGck.mft (raw, json) Hash identifier: BO5saSfhN5DcCnuVaoI6ING/mxZHObndCg8DuqV9kRg= Subject key identifier: CB:5D:1F:F6:CB:A7:27:F9:DB:71:C1:1B:90:26:93:CB:AC:6E:F9:29 Authority key identifier: CF:C0:80:4D:AC:4F:FF:7A:22:A4:04:E1:0E:98:64:A7:11:DE:19:C9 Certificate issuer: /CN=A91A12C4/serialNumber=CFC0804DAC4FFF7A22A404E10E9864A711DE19C9 Certificate serial: DC Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/z8CATaxP_3oipAThDphkpxHeGck.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A12C4/F319EDC26C1711EFBDBFD50BC4F9AE02/z8CATaxP_3oipAThDphkpxHeGck.mft Manifest number: DA Signing time: Mon 03 Nov 2025 05:34:38 +0000 Manifest this update: Mon 03 Nov 2025 05:34:38 +0000 Manifest next update: Mon 10 Nov 2025 05:34:38 +0000 Files and hashes: 1: z8CATaxP_3oipAThDphkpxHeGck.crl (hash: gK4ZWc02nc3myJNjpjq8550XetMEpKCUqSyL3SNniCE=) 2: BCA395126C1811EFAFBE6B0FC4F9AE02.roa (hash: xTh/XECRIgCR6mcMb4Sy7r1o1s9piU8w2MVo6gmyMfs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A12C4/F319EDC26C1711EFBDBFD50BC4F9AE02/z8CATaxP_3oipAThDphkpxHeGck.crl rsync://rpki.apnic.net/member_repository/A91A12C4/F319EDC26C1711EFBDBFD50BC4F9AE02/z8CATaxP_3oipAThDphkpxHeGck.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/z8CATaxP_3oipAThDphkpxHeGck.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 05:34:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 220 (0xdc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A12C4, serialNumber=CFC0804DAC4FFF7A22A404E10E9864A711DE19C9 Validity Not Before: Nov 3 05:34:38 2025 GMT Not After : Nov 10 05:34:38 2025 GMT Subject: CN=69083eee-540f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:af:61:20:38:f1:e7:15:15:18:fa:d6:8e:7a: 7e:43:e0:c2:b9:d2:74:28:45:00:47:cd:86:64:49: d7:79:47:18:35:fc:b8:f4:28:47:1a:ae:1c:bc:96: 8d:91:e9:a2:c5:bb:a2:14:95:6e:b5:f9:88:c6:92: ea:1e:ac:c6:46:c9:e4:92:bf:9f:fe:98:f7:a2:ae: 84:06:05:4d:6b:4c:4b:da:d0:2d:7b:76:e5:f4:c9: e3:57:f6:9a:58:8f:f6:37:67:8f:62:9c:0b:ed:b4: 6f:58:c4:d8:fb:11:38:4e:01:cd:1d:fa:ab:5d:94: 1c:de:f3:bb:16:df:46:ef:39:34:26:1a:b2:67:15: ec:05:51:1d:7e:22:7f:10:28:6c:98:96:bf:1c:82: 34:4d:cd:f9:ed:b7:a1:3c:83:32:74:f9:46:2a:c0: 4f:88:36:82:6e:84:fd:42:c1:61:7c:2b:1d:d2:2e: 5f:63:31:a8:e1:fe:a5:5d:d8:e4:09:22:de:44:c8: 78:1a:ff:3f:16:c1:e2:1a:52:8d:65:81:d0:63:35: be:66:52:89:6d:9d:be:01:ec:c7:8d:80:2a:6a:9c: 4c:b5:15:22:a8:9a:b0:1f:03:d3:6a:d3:8c:93:4b: 8c:58:e2:5d:82:e8:e2:d9:e9:47:af:1d:9d:bf:3f: 68:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:5D:1F:F6:CB:A7:27:F9:DB:71:C1:1B:90:26:93:CB:AC:6E:F9:29 X509v3 Authority Key Identifier: keyid:CF:C0:80:4D:AC:4F:FF:7A:22:A4:04:E1:0E:98:64:A7:11:DE:19:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A12C4/F319EDC26C1711EFBDBFD50BC4F9AE02/z8CATaxP_3oipAThDphkpxHeGck.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/z8CATaxP_3oipAThDphkpxHeGck.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A12C4/F319EDC26C1711EFBDBFD50BC4F9AE02/z8CATaxP_3oipAThDphkpxHeGck.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 47:cb:61:14:b3:11:1c:64:f4:23:c5:58:af:c6:01:d2:33:77: 0a:d3:e3:b6:94:d6:1c:e1:44:52:ac:ab:5e:9f:fe:58:34:c9: 64:ac:8c:89:5e:02:02:8d:69:02:57:b7:f5:aa:87:ad:79:c7: ed:75:4d:92:e2:6f:ca:26:bc:f3:7e:43:8a:0f:c6:5f:b8:38: f2:25:f6:b3:ab:e5:ae:85:b9:7c:fa:1c:aa:c3:b2:04:6a:7f: a0:d7:de:b2:36:05:af:93:ad:77:e3:e6:42:b1:b5:3b:06:7f: be:e3:ed:7b:60:5a:38:25:79:ab:50:66:6a:65:7f:76:a5:f0: e5:58:fc:bd:40:53:69:f7:d8:55:a5:bb:fa:bc:f1:05:dd:9d: 80:a0:51:b1:03:55:fb:3b:bc:03:81:3a:3c:42:77:05:ea:d7: e6:0e:d5:cd:22:ff:f0:49:1c:f2:e7:ec:f3:82:72:f7:dd:c9: 12:18:5e:5f:a2:83:13:5e:de:8d:77:b3:6c:62:3d:1a:87:e4: 81:19:51:a0:a6:b9:a1:63:0b:89:5e:ad:63:bd:05:84:6d:f1: 73:72:1b:da:92:3f:d2:14:58:59:26:87:88:fa:7b:8c:e6:da: 27:1f:9b:2a:62:a4:43:49:74:bb:57:9a:72:58:24:be:4a:cb: 6e:7f:ab:00 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTEyQzQxMTAvBgNVBAUTKENGQzA4MDREQUM0RkZGN0EyMkE0MDRFMTBFOTg2NEE3 MTFERTE5QzkwHhcNMjUxMTAzMDUzNDM4WhcNMjUxMTEwMDUzNDM4WjAYMRYwFAYD VQQDEw02OTA4M2VlZS01NDBmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuq9hIDjx5xUVGPrWjnp+Q+DCudJ0KEUAR82GZEnXeUcYNfy49ChHGq4cvJaN kemixbuiFJVutfmIxpLqHqzGRsnkkr+f/pj3oq6EBgVNa0xL2tAte3bl9MnjV/aa WI/2N2ePYpwL7bRvWMTY+xE4TgHNHfqrXZQc3vO7Ft9G7zk0JhqyZxXsBVEdfiJ/ EChsmJa/HII0Tc357behPIMydPlGKsBPiDaCboT9QsFhfCsd0i5fYzGo4f6lXdjk CSLeRMh4Gv8/FsHiGlKNZYHQYzW+ZlKJbZ2+AezHjYAqapxMtRUiqJqwHwPTatOM k0uMWOJdguji2elHrx2dvz9oIwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMtdH/bL pyf523HBG5Amk8usbvkpMB8GA1UdIwQYMBaAFM/AgE2sT/96IqQE4Q6YZKcR3hnJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMTJDNC9GMzE5RURDMjZD MTcxMUVGQkRCRkQ1MEJDNEY5QUUwMi96OENBVGF4UF8zb2lwQVRoRHBoa3B4SGVH Y2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3o4Q0FUYXhQXzNvaXBBVGhEcGhrcHhIZUdjay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MTJDNC9GMzE5RURDMjZDMTcxMUVGQkRCRkQ1MEJDNEY5QUUwMi96OENBVGF4UF8z b2lwQVRoRHBoa3B4SGVHY2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBHy2EUsxEcZPQjxVivxgHSM3cK0+O2lNYc4URSrKten/5YNMlkrIyJ XgICjWkCV7f1qoetecftdU2S4m/KJrzzfkOKD8ZfuDjyJfazq+Wuhbl8+hyqw7IE an+g196yNgWvk6134+ZCsbU7Bn++4+17YFo4JXmrUGZqZX92pfDlWPy9QFNp99hV pbv6vPEF3Z2AoFGxA1X7O7wDgTo8QncF6tfmDtXNIv/wSRzy5+zzgnL33ckSGF5f ooMTXt6Nd7NsYj0ah+SBGVGgprmhYwuJXq1jvQWEbfFzchvakj/SFFhZJoeI+nuM 5tonH5sqYqRDSXS7V5pyWCS+Sstuf6sA -----END CERTIFICATE-----Generated at Tue Nov 4 22:41:59 2025 by rpki-client