$ rpki-client -vvf rpki.apnic.net/member_repository/A9111A27/662518BE6E3411EA841D426EC4F9AE02/zPWB9MM8pEQeGAfjlsXv51-oLdA.mft File: zPWB9MM8pEQeGAfjlsXv51-oLdA.mft (raw, json) Hash identifier: +Og63EB3nBt73u7xSnkiKy8O6BTlg0stA6oI+v6n5uU= Subject key identifier: 69:EA:B5:D9:17:C4:87:FB:62:BA:49:D5:3D:A0:C9:47:89:15:33:C2 Authority key identifier: CC:F5:81:F4:C3:3C:A4:44:1E:18:07:E3:96:C5:EF:E7:5F:A8:2D:D0 Certificate issuer: /CN=A9111A27/serialNumber=CCF581F4C33CA4441E1807E396C5EFE75FA82DD0 Certificate serial: 0A8A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zPWB9MM8pEQeGAfjlsXv51-oLdA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9111A27/662518BE6E3411EA841D426EC4F9AE02/zPWB9MM8pEQeGAfjlsXv51-oLdA.mft Manifest number: 0A7F Signing time: Sun 02 Nov 2025 19:34:22 +0000 Manifest this update: Sun 02 Nov 2025 19:34:22 +0000 Manifest next update: Sun 09 Nov 2025 19:34:22 +0000 Files and hashes: 1: zPWB9MM8pEQeGAfjlsXv51-oLdA.crl (hash: 2YgFq7MiLJZKIBNwh5WrpXFetfsZmyfaOGpJEB4T12Q=) 2: EECBCEBE6E3511EABDE26D73C4F9AE02.roa (hash: tiW51zPCEni34tefKfGb0te4DWKoSNtDHrcuOGks1io=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9111A27/662518BE6E3411EA841D426EC4F9AE02/zPWB9MM8pEQeGAfjlsXv51-oLdA.crl rsync://rpki.apnic.net/member_repository/A9111A27/662518BE6E3411EA841D426EC4F9AE02/zPWB9MM8pEQeGAfjlsXv51-oLdA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zPWB9MM8pEQeGAfjlsXv51-oLdA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 19:34:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2698 (0xa8a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9111A27, serialNumber=CCF581F4C33CA4441E1807E396C5EFE75FA82DD0 Validity Not Before: Nov 2 19:34:22 2025 GMT Not After : Nov 9 19:34:22 2025 GMT Subject: CN=6907b23e-44f3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:be:0f:8e:ff:b9:af:67:39:9a:6a:ef:ff:36: 20:6b:4a:bf:61:ed:ad:dc:47:0e:9f:fb:bf:d3:db: b5:dd:b6:ef:29:30:89:5a:00:76:b7:9e:89:5c:bd: 4a:00:51:f0:61:bd:e2:12:cc:da:c1:8f:9c:68:5d: 84:6b:02:19:06:ce:4e:af:a6:a3:68:24:33:b5:38: d8:fa:14:16:f5:85:ec:8b:ee:41:5c:f5:2b:ed:68: 29:5e:a7:ad:91:c3:d8:54:d3:47:e1:48:b2:e4:d6: 7d:f2:fa:99:68:2a:33:e3:5b:54:b0:73:97:6b:5f: 36:79:a4:fa:07:bb:b1:ee:93:44:ba:e7:62:b9:ff: 28:a2:99:af:8c:ca:e9:87:cc:1e:e9:22:d3:11:53: 2c:e3:d9:b8:67:1a:0d:0d:aa:f2:55:10:18:51:8f: 0a:47:05:90:06:0f:29:77:3c:78:97:f1:1a:8d:68: 8a:ec:0f:cd:d2:2b:2a:79:4b:21:0e:29:ed:c8:32: 06:ca:ba:98:d9:9a:e5:20:e0:d3:53:86:b9:29:9b: f4:d1:24:08:17:71:6c:40:93:eb:96:75:f0:a9:fb: 18:6e:a5:37:c7:c3:9f:3a:12:70:05:c8:24:e4:1d: a7:00:54:93:fc:1a:bc:c4:25:a1:c7:eb:99:8f:5c: e6:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:EA:B5:D9:17:C4:87:FB:62:BA:49:D5:3D:A0:C9:47:89:15:33:C2 X509v3 Authority Key Identifier: keyid:CC:F5:81:F4:C3:3C:A4:44:1E:18:07:E3:96:C5:EF:E7:5F:A8:2D:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9111A27/662518BE6E3411EA841D426EC4F9AE02/zPWB9MM8pEQeGAfjlsXv51-oLdA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zPWB9MM8pEQeGAfjlsXv51-oLdA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9111A27/662518BE6E3411EA841D426EC4F9AE02/zPWB9MM8pEQeGAfjlsXv51-oLdA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9b:af:f3:0e:81:01:44:7b:16:51:37:ed:31:ad:15:de:14:c4: 88:f7:6f:87:f2:96:bc:4a:a3:78:af:f8:a7:35:bb:9c:5a:35: a5:f5:8b:36:8e:4b:59:16:9b:4b:29:6a:cd:d9:ea:cd:89:a5: bd:a6:6a:a1:c7:37:30:b8:1e:0e:63:b8:c2:f7:90:39:da:b3: 25:bc:8b:2d:24:b5:22:1a:74:dd:2d:f6:43:0e:e6:19:9d:ff: d1:34:74:fb:bf:ff:b7:0b:d3:9d:10:d2:7a:06:c1:6b:0f:7d: 6b:e0:2d:d5:da:5c:d0:39:fa:7b:fb:eb:db:c9:95:94:35:97: 8d:da:69:19:e7:d0:c3:85:3d:38:a4:32:54:b0:e1:35:4c:2c: d2:55:8d:b6:ab:dd:4d:b9:5e:dd:3d:ec:7e:ff:20:89:52:91: 57:bb:53:0d:f0:2c:c9:44:b6:0c:aa:61:a4:96:1f:7d:cd:5d: bf:17:99:70:48:de:c5:9a:96:fc:95:42:3f:75:7e:8c:9e:f6: 20:5b:8c:ec:57:c5:4b:89:9b:fd:38:af:64:16:88:60:f2:96: 6d:b1:ce:a4:44:a8:68:1d:e5:59:35:78:4f:00:e7:43:03:c9: 42:30:73:18:d1:a8:f2:f6:fa:03:45:5c:72:3c:b9:68:d4:67: 10:f8:55:0a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCoowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTFBMjcxMTAvBgNVBAUTKENDRjU4MUY0QzMzQ0E0NDQxRTE4MDdFMzk2QzVFRkU3 NUZBODJERDAwHhcNMjUxMTAyMTkzNDIyWhcNMjUxMTA5MTkzNDIyWjAYMRYwFAYD VQQDEw02OTA3YjIzZS00NGYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAor4Pjv+5r2c5mmrv/zYga0q/Ye2t3EcOn/u/09u13bbvKTCJWgB2t56JXL1K AFHwYb3iEszawY+caF2EawIZBs5Or6ajaCQztTjY+hQW9YXsi+5BXPUr7WgpXqet kcPYVNNH4Uiy5NZ98vqZaCoz41tUsHOXa182eaT6B7ux7pNEuudiuf8oopmvjMrp h8we6SLTEVMs49m4ZxoNDaryVRAYUY8KRwWQBg8pdzx4l/EajWiK7A/N0isqeUsh DintyDIGyrqY2ZrlIODTU4a5KZv00SQIF3FsQJPrlnXwqfsYbqU3x8OfOhJwBcgk 5B2nAFST/Bq8xCWhx+uZj1zmuQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGnqtdkX xIf7YrpJ1T2gyUeJFTPCMB8GA1UdIwQYMBaAFMz1gfTDPKREHhgH45bF7+dfqC3Q MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMUEyNy82NjI1MThCRTZF MzQxMUVBODQxRDQyNkVDNEY5QUUwMi96UFdCOU1NOHBFUWVHQWZqbHNYdjUxLW9M ZEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pQV0I5TU04cEVRZUdBZmpsc1h2NTEtb0xkQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MUEyNy82NjI1MThCRTZFMzQxMUVBODQxRDQyNkVDNEY5QUUwMi96UFdCOU1NOHBF UWVHQWZqbHNYdjUxLW9MZEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCbr/MOgQFEexZRN+0xrRXeFMSI92+H8pa8SqN4r/inNbucWjWl9Ys2 jktZFptLKWrN2erNiaW9pmqhxzcwuB4OY7jC95A52rMlvIstJLUiGnTdLfZDDuYZ nf/RNHT7v/+3C9OdENJ6BsFrD31r4C3V2lzQOfp7++vbyZWUNZeN2mkZ59DDhT04 pDJUsOE1TCzSVY22q91NuV7dPex+/yCJUpFXu1MN8CzJRLYMqmGklh99zV2/F5lw SN7Fmpb8lUI/dX6MnvYgW4zsV8VLiZv9OK9kFohg8pZtsc6kRKhoHeVZNXhPAOdD A8lCMHMY0ajy9voDRVxyPLlo1GcQ+FUK -----END CERTIFICATE-----Generated at Mon Nov 3 18:19:34 2025 by rpki-client