$ rpki-client -vvf rpki.apnic.net/member_repository/A913664F/1E0854AEDD7D11ED91A0464DC4F9AE02/2ZAsTpRyx61QgoEvp9B3FGq3y5w.mft File: 2ZAsTpRyx61QgoEvp9B3FGq3y5w.mft (raw, json) Hash identifier: Q7Shmc7PmJ3auBc/Nl5vI7fJQjwc3XnGa6dYDDXR7BQ= Subject key identifier: 64:3E:1A:D4:E0:A2:BF:E2:23:49:5E:2E:0F:EB:7F:4D:3D:09:41:64 Authority key identifier: D9:90:2C:4E:94:72:C7:AD:50:82:81:2F:A7:D0:77:14:6A:B7:CB:9C Certificate issuer: /CN=A913664F/serialNumber=D9902C4E9472C7AD5082812FA7D077146AB7CB9C Certificate serial: 01E5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2ZAsTpRyx61QgoEvp9B3FGq3y5w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913664F/1E0854AEDD7D11ED91A0464DC4F9AE02/2ZAsTpRyx61QgoEvp9B3FGq3y5w.mft Manifest number: 01D5 Signing time: Tue 07 Oct 2025 03:05:50 +0000 Manifest this update: Tue 07 Oct 2025 03:05:49 +0000 Manifest next update: Tue 14 Oct 2025 03:05:49 +0000 Files and hashes: 1: 2ZAsTpRyx61QgoEvp9B3FGq3y5w.crl (hash: 7/2uKOf+O3vRnklyxdZ6YLQ1f/B+QfJ3+jFTgT/0vPw=) 2: D2677928DD9811EDB2BBBA09C4F9AE02.roa (hash: pVr+bUV7osuNpKcdEe2SU8B4kCWvORQSGGyqBngWkWY=) 3: D1DDFDECDD9811EDB2BBBA09C4F9AE02.roa (hash: ou5M00utddUa9B9T2ZjIX4AhXtQUSSATyN+Uf1fiHwE=) 4: B1E75D08DD7F11ED815F9B4DC4F9AE02.roa (hash: m0+29/xOQkLY0SUQkzyArE5bZt0Gpa6rpxJzQEzTpmY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913664F/1E0854AEDD7D11ED91A0464DC4F9AE02/2ZAsTpRyx61QgoEvp9B3FGq3y5w.crl rsync://rpki.apnic.net/member_repository/A913664F/1E0854AEDD7D11ED91A0464DC4F9AE02/2ZAsTpRyx61QgoEvp9B3FGq3y5w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2ZAsTpRyx61QgoEvp9B3FGq3y5w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Oct 2025 03:05:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 485 (0x1e5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913664F, serialNumber=D9902C4E9472C7AD5082812FA7D077146AB7CB9C Validity Not Before: Oct 7 03:05:49 2025 GMT Not After : Oct 14 03:05:49 2025 GMT Subject: CN=68e4838d-05eb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:14:99:e6:a0:4f:c3:e2:92:a9:b9:92:64:5a: 9d:c6:6a:a0:a2:4b:cb:e8:86:53:01:09:2d:28:68: 53:f3:fe:44:50:b6:be:aa:40:36:80:0e:c3:60:27: 02:47:3d:12:95:cd:75:4e:a1:a2:7d:e3:ef:d8:9c: 9d:96:cb:87:f4:36:7d:db:47:74:df:06:fc:b2:1b: 39:85:dd:f5:2a:87:fa:67:7b:6d:52:8c:4e:3f:f6: 94:de:ad:f5:19:ea:8e:53:1e:fa:f4:17:67:b8:43: 08:13:b4:a9:aa:06:9e:78:39:42:32:f9:40:8f:2c: a2:cc:0e:32:5a:36:b8:a5:c6:c9:d3:6f:f4:3b:8a: ff:bc:29:27:3a:fc:a7:64:50:19:62:2b:b1:6e:1a: fe:0c:98:42:3b:2a:f8:36:cd:a7:7f:06:a1:9d:ee: cc:ae:7c:6b:e3:03:75:3f:47:8e:d9:e4:b5:d0:7f: ec:97:57:1b:84:42:f5:fe:d0:31:55:81:68:57:90: 14:d5:d2:d9:66:dc:21:80:22:d8:86:f8:1d:c8:d9: ab:fb:bb:cb:15:c4:4f:e4:a5:5e:40:41:8d:d7:56: a6:15:9b:41:0d:05:6a:f4:26:47:df:91:cc:83:d1: f4:29:ca:1f:7b:c8:b1:9e:ef:11:3e:6e:a3:c7:f6: d2:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:3E:1A:D4:E0:A2:BF:E2:23:49:5E:2E:0F:EB:7F:4D:3D:09:41:64 X509v3 Authority Key Identifier: keyid:D9:90:2C:4E:94:72:C7:AD:50:82:81:2F:A7:D0:77:14:6A:B7:CB:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913664F/1E0854AEDD7D11ED91A0464DC4F9AE02/2ZAsTpRyx61QgoEvp9B3FGq3y5w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2ZAsTpRyx61QgoEvp9B3FGq3y5w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913664F/1E0854AEDD7D11ED91A0464DC4F9AE02/2ZAsTpRyx61QgoEvp9B3FGq3y5w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 02:69:3c:da:4e:6d:26:a2:2b:e7:e9:a7:ff:da:65:c5:d9:9b: 78:5c:4b:12:ab:67:81:a7:9e:3c:50:5b:ca:4f:b0:60:da:96: e5:0f:54:23:57:ae:d9:5d:c1:d5:67:a9:c5:31:8c:b2:13:1b: 08:94:00:f6:99:d5:9d:d5:af:5e:80:95:66:98:85:01:9e:28: 3a:8d:05:35:c6:7a:c9:6a:e3:a6:8c:c7:76:63:51:8f:e8:02: a5:ef:1f:6c:10:ae:79:57:b8:5f:7b:dd:5d:21:9a:17:41:94: 5e:c1:1d:77:85:53:dd:9d:1c:c9:0d:4e:29:96:0f:bf:fd:10: fc:89:7c:ea:32:60:be:04:10:3b:eb:f7:ba:73:f4:f8:3f:96: f5:61:5d:b2:c7:b0:4e:cd:ca:68:ed:6e:a8:a6:f0:9b:b2:31: 45:3c:6a:88:0b:f2:e7:0c:ad:63:cf:2c:50:41:3f:73:e4:1a: 91:f4:5f:2e:38:ec:95:b0:41:e5:d1:a7:c4:cd:8d:7f:01:4f: 7d:54:1e:09:7c:d9:b3:86:8b:46:ad:b8:44:b0:ca:4e:01:cc: f1:9e:6a:d6:a2:2d:fa:7f:e2:e7:2e:c2:3b:c4:be:fe:2c:d6: 2d:0c:fa:0a:ed:94:48:f5:3d:6a:e7:8d:c6:b0:76:90:4b:06: 4f:6f:98:e6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAeUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzY2NEYxMTAvBgNVBAUTKEQ5OTAyQzRFOTQ3MkM3QUQ1MDgyODEyRkE3RDA3NzE0 NkFCN0NCOUMwHhcNMjUxMDA3MDMwNTQ5WhcNMjUxMDE0MDMwNTQ5WjAYMRYwFAYD VQQDEw02OGU0ODM4ZC0wNWViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyhSZ5qBPw+KSqbmSZFqdxmqgokvL6IZTAQktKGhT8/5EULa+qkA2gA7DYCcC Rz0Slc11TqGifePv2JydlsuH9DZ920d03wb8shs5hd31Kof6Z3ttUoxOP/aU3q31 GeqOUx769BdnuEMIE7SpqgaeeDlCMvlAjyyizA4yWja4pcbJ02/0O4r/vCknOvyn ZFAZYiuxbhr+DJhCOyr4Ns2nfwahne7Mrnxr4wN1P0eO2eS10H/sl1cbhEL1/tAx VYFoV5AU1dLZZtwhgCLYhvgdyNmr+7vLFcRP5KVeQEGN11amFZtBDQVq9CZH35HM g9H0Kcofe8ixnu8RPm6jx/bSnQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGQ+GtTg or/iI0leLg/rf009CUFkMB8GA1UdIwQYMBaAFNmQLE6UcsetUIKBL6fQdxRqt8uc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNjY0Ri8xRTA4NTRBRURE N0QxMUVEOTFBMDQ2NERDNEY5QUUwMi8yWkFzVHBSeXg2MVFnb0V2cDlCM0ZHcTN5 NXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJaQXNUcFJ5eDYxUWdvRXZwOUIzRkdxM3k1dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NjY0Ri8xRTA4NTRBRUREN0QxMUVEOTFBMDQ2NERDNEY5QUUwMi8yWkFzVHBSeXg2 MVFnb0V2cDlCM0ZHcTN5NXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQACaTzaTm0moivn6af/2mXF2Zt4XEsSq2eBp548UFvKT7Bg2pblD1Qj V67ZXcHVZ6nFMYyyExsIlAD2mdWd1a9egJVmmIUBnig6jQU1xnrJauOmjMd2Y1GP 6AKl7x9sEK55V7hfe91dIZoXQZRewR13hVPdnRzJDU4plg+//RD8iXzqMmC+BBA7 6/e6c/T4P5b1YV2yx7BOzcpo7W6opvCbsjFFPGqIC/LnDK1jzyxQQT9z5BqR9F8u OOyVsEHl0afEzY1/AU99VB4JfNmzhotGrbhEsMpOAczxnmrWoi36f+LnLsI7xL7+ LNYtDPoK7ZRI9T1q543GsHaQSwZPb5jm -----END CERTIFICATE-----Generated at Wed Oct 8 13:41:47 2025 by rpki-client