$ rpki-client -vvf rpki.apnic.net/member_repository/A9172A52/3E76D7EE981911EFB0D0DD34C4F9AE02/Z0rFfAmYdqBmVxgLNOJObu6IRBE.mft File: Z0rFfAmYdqBmVxgLNOJObu6IRBE.mft (raw, json) Hash identifier: 4AibWOyrkVW9kaxRyo6dR3I1fWawJ+OyadkASgSiBh8= Subject key identifier: 69:4F:31:6D:80:E8:57:E8:5A:08:BB:13:CA:3B:96:23:4B:C0:B4:47 Authority key identifier: 67:4A:C5:7C:09:98:76:A0:66:57:18:0B:34:E2:4E:6E:EE:88:44:11 Certificate issuer: /CN=A9172A52/serialNumber=674AC57C099876A06657180B34E24E6EEE884411 Certificate serial: EF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Z0rFfAmYdqBmVxgLNOJObu6IRBE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9172A52/3E76D7EE981911EFB0D0DD34C4F9AE02/Z0rFfAmYdqBmVxgLNOJObu6IRBE.mft Manifest number: D2 Signing time: Tue 07 Oct 2025 06:20:52 +0000 Manifest this update: Tue 07 Oct 2025 06:20:52 +0000 Manifest next update: Tue 14 Oct 2025 06:20:52 +0000 Files and hashes: 1: Z0rFfAmYdqBmVxgLNOJObu6IRBE.crl (hash: p9YItcKzH2rN3npUIzy41cWKF/DTxl2p0QKUpAXGN6E=) 2: 64F7DCE4D3BD11EFA52FF783C4F9AE02.roa (hash: YhVERhvtXXcrFTyDSv5Qa1F1feLk9QH6JfzQdvzKgMI=) 3: 5F80F96C9A6F11EF8D9BD80FC4F9AE02.roa (hash: x/GxynEkpXLSNWmZVbITUGXMZJMGzB1C/0SmBXF5ZvU=) 4: 65BB3518D3BD11EFA52FF783C4F9AE02.roa (hash: i/EZaFvZG8APBZoGgzEqNCc2JUzVAPKb3k4/6st6F+k=) 5: 6AA381F62A8011F087319941C4F9AE02.roa (hash: edOe4Pd+g7p8X6EYnFF9uJf2QAgork21e9Vqmz6PKRs=) 6: 24A183BCCD7211EFA468C80CC4F9AE02.roa (hash: +ZgXH0MqLEQm5yXWS3q+WYKasl3Na26eLGiM5UthVjU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9172A52/3E76D7EE981911EFB0D0DD34C4F9AE02/Z0rFfAmYdqBmVxgLNOJObu6IRBE.crl rsync://rpki.apnic.net/member_repository/A9172A52/3E76D7EE981911EFB0D0DD34C4F9AE02/Z0rFfAmYdqBmVxgLNOJObu6IRBE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Z0rFfAmYdqBmVxgLNOJObu6IRBE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Oct 2025 06:20:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 239 (0xef) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9172A52, serialNumber=674AC57C099876A06657180B34E24E6EEE884411 Validity Not Before: Oct 7 06:20:52 2025 GMT Not After : Oct 14 06:20:52 2025 GMT Subject: CN=68e4b144-a2f0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:84:e7:fe:ab:aa:04:57:79:d2:3b:d3:96:e4: 9f:08:d4:71:89:60:ee:9e:46:36:0f:fa:6c:e2:3b: d6:17:1d:95:aa:0d:be:47:31:d7:56:60:db:fc:3f: 5d:35:3a:12:5e:bc:51:69:68:12:4d:1c:12:40:8e: 3b:e7:d4:90:f5:20:92:25:26:08:e6:f2:03:80:57: 71:0e:4d:ec:f1:f8:03:e0:35:13:54:4f:ee:77:9f: 6a:39:d1:0b:e7:5f:00:6a:43:9c:57:01:7e:d0:5b: e0:ba:66:56:08:42:3b:d9:b0:30:71:13:47:4b:71: 49:7d:a4:fb:2f:6c:53:6c:0f:a7:dd:45:6d:4c:eb: 69:50:21:52:20:ff:be:ce:27:29:44:ce:40:01:32: e3:7a:40:f6:d2:4c:c9:25:0e:22:9f:43:94:db:e9: 32:cd:3a:f9:0e:f6:5c:73:78:d5:c6:7d:04:49:b3: 23:0c:ac:1b:7b:8c:58:b8:3c:38:74:c5:23:68:55: 83:fc:6f:a5:aa:f4:f9:16:a4:e9:c7:c6:f2:55:46: ec:3a:3c:68:6c:9f:f2:53:6a:65:f1:d7:7c:d3:b0: 77:6c:7b:ba:09:01:76:77:17:59:83:89:b4:33:23: 66:5e:0a:1b:ac:41:c1:61:ba:c2:6a:d5:36:0e:a2: 47:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:4F:31:6D:80:E8:57:E8:5A:08:BB:13:CA:3B:96:23:4B:C0:B4:47 X509v3 Authority Key Identifier: keyid:67:4A:C5:7C:09:98:76:A0:66:57:18:0B:34:E2:4E:6E:EE:88:44:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9172A52/3E76D7EE981911EFB0D0DD34C4F9AE02/Z0rFfAmYdqBmVxgLNOJObu6IRBE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Z0rFfAmYdqBmVxgLNOJObu6IRBE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9172A52/3E76D7EE981911EFB0D0DD34C4F9AE02/Z0rFfAmYdqBmVxgLNOJObu6IRBE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1d:9e:cf:e6:76:12:d5:63:48:1a:bd:c9:23:78:5a:25:42:3b: 58:42:06:19:11:70:b9:c6:8b:4d:92:e8:77:8b:0c:dd:5e:04: f7:86:2e:06:65:28:2e:db:1e:1e:72:84:3e:01:96:a2:37:12: 88:f1:ab:7a:86:75:0c:e7:4a:83:5e:02:78:3e:4a:30:24:cd: 0b:8b:19:e1:94:6f:7c:19:f7:fb:04:91:05:b3:c1:42:fd:53: c7:a9:e6:8a:eb:0c:4e:81:0a:1d:99:22:0a:8b:f8:da:c7:da: 0b:4b:ac:5e:a6:c3:7e:c9:4b:cd:c6:14:3b:6d:9c:13:be:b9: 83:6e:a3:20:ea:a3:78:79:bf:8c:bf:f6:ca:97:b1:d5:74:d3: 06:1d:d4:d6:6e:f8:fa:35:8c:bc:54:0e:44:d2:17:f6:8d:33: a0:9d:73:45:53:02:f2:f9:d5:a2:72:8b:51:c6:59:71:f0:1b: e9:3d:18:4b:7c:15:05:c7:db:58:eb:58:63:3e:33:86:bd:7b: 31:1c:26:62:af:28:77:7b:b4:fc:1d:68:98:cb:4a:6a:04:85: 72:13:c2:af:ad:de:4b:bd:74:c4:5e:04:82:6a:d4:ce:42:37: 0d:f8:cb:eb:78:b2:85:37:1c:f1:ad:6d:91:c9:e2:de:47:c1: 2b:5e:18:92 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAO8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzJBNTIxMTAvBgNVBAUTKDY3NEFDNTdDMDk5ODc2QTA2NjU3MTgwQjM0RTI0RTZF RUU4ODQ0MTEwHhcNMjUxMDA3MDYyMDUyWhcNMjUxMDE0MDYyMDUyWjAYMRYwFAYD VQQDEw02OGU0YjE0NC1hMmYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA14Tn/quqBFd50jvTluSfCNRxiWDunkY2D/ps4jvWFx2Vqg2+RzHXVmDb/D9d NToSXrxRaWgSTRwSQI4759SQ9SCSJSYI5vIDgFdxDk3s8fgD4DUTVE/ud59qOdEL 518AakOcVwF+0FvgumZWCEI72bAwcRNHS3FJfaT7L2xTbA+n3UVtTOtpUCFSIP++ zicpRM5AATLjekD20kzJJQ4in0OU2+kyzTr5DvZcc3jVxn0ESbMjDKwbe4xYuDw4 dMUjaFWD/G+lqvT5FqTpx8byVUbsOjxobJ/yU2pl8dd807B3bHu6CQF2dxdZg4m0 MyNmXgobrEHBYbrCatU2DqJHPQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGlPMW2A 6FfoWgi7E8o7liNLwLRHMB8GA1UdIwQYMBaAFGdKxXwJmHagZlcYCzTiTm7uiEQR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MkE1Mi8zRTc2RDdFRTk4 MTkxMUVGQjBEMEREMzRDNEY5QUUwMi9aMHJGZkFtWWRxQm1WeGdMTk9KT2J1NklS QkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1owckZmQW1ZZHFCbVZ4Z0xOT0pPYnU2SVJCRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MkE1Mi8zRTc2RDdFRTk4MTkxMUVGQjBEMEREMzRDNEY5QUUwMi9aMHJGZkFtWWRx Qm1WeGdMTk9KT2J1NklSQkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAdns/mdhLVY0gavckjeFolQjtYQgYZEXC5xotNkuh3iwzdXgT3hi4G ZSgu2x4ecoQ+AZaiNxKI8at6hnUM50qDXgJ4PkowJM0LixnhlG98Gff7BJEFs8FC /VPHqeaK6wxOgQodmSIKi/jax9oLS6xepsN+yUvNxhQ7bZwTvrmDbqMg6qN4eb+M v/bKl7HVdNMGHdTWbvj6NYy8VA5E0hf2jTOgnXNFUwLy+dWicotRxllx8BvpPRhL fBUFx9tY61hjPjOGvXsxHCZiryh3e7T8HWiYy0pqBIVyE8Kvrd5LvXTEXgSCatTO QjcN+MvreLKFNxzxrW2RyeLeR8ErXhiS -----END CERTIFICATE-----Generated at Thu Oct 9 01:26:59 2025 by rpki-client