$ rpki-client -vvf rpki.apnic.net/member_repository/A912E87E/8428B9E6A1CF11EF878E6061C4F9AE02/z3nGX0tVAQ-yXObEW4yRnbCToy0.mft File: z3nGX0tVAQ-yXObEW4yRnbCToy0.mft (raw, json) Hash identifier: t4JrfO9W7i21h6NbPhHfoDH9QoTYGXVK/4CXo4jMJDk= Subject key identifier: 5B:84:2A:33:FB:70:84:BF:4B:CD:0F:0B:A6:69:B4:E8:80:1F:A4:08 Authority key identifier: CF:79:C6:5F:4B:55:01:0F:B2:5C:E6:C4:5B:8C:91:9D:B0:93:A3:2D Certificate issuer: /CN=A912E87E/serialNumber=CF79C65F4B55010FB25CE6C45B8C919DB093A32D Certificate serial: BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z3nGX0tVAQ-yXObEW4yRnbCToy0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912E87E/8428B9E6A1CF11EF878E6061C4F9AE02/z3nGX0tVAQ-yXObEW4yRnbCToy0.mft Manifest number: B8 Signing time: Wed 05 Nov 2025 06:13:13 +0000 Manifest this update: Wed 05 Nov 2025 06:13:12 +0000 Manifest next update: Wed 12 Nov 2025 06:13:12 +0000 Files and hashes: 1: z3nGX0tVAQ-yXObEW4yRnbCToy0.crl (hash: hjmrOiAjDmEaAVFZ7mkmGfD2Sxgj7f5HnROCdekzcHw=) 2: A48892E4DE4A11EFACE66748C4F9AE02.roa (hash: pAKMszCIjt6MmJA/GOLnpRTl7JGqEZooCz2JSaSabrA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912E87E/8428B9E6A1CF11EF878E6061C4F9AE02/z3nGX0tVAQ-yXObEW4yRnbCToy0.crl rsync://rpki.apnic.net/member_repository/A912E87E/8428B9E6A1CF11EF878E6061C4F9AE02/z3nGX0tVAQ-yXObEW4yRnbCToy0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z3nGX0tVAQ-yXObEW4yRnbCToy0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 06:13:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 186 (0xba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912E87E, serialNumber=CF79C65F4B55010FB25CE6C45B8C919DB093A32D Validity Not Before: Nov 5 06:13:12 2025 GMT Not After : Nov 12 06:13:12 2025 GMT Subject: CN=690aeaf9-d792 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:37:84:80:1d:d4:ae:f5:66:14:c1:af:e5:78: 3c:76:54:26:84:c2:35:a5:8b:3c:e0:34:81:07:b2: b5:51:db:9c:be:ee:25:7d:ee:be:75:1a:42:bc:de: e2:ad:79:4f:4a:99:f0:db:7f:60:88:0a:4a:a4:9a: 74:f4:46:32:50:34:3c:94:c8:12:62:25:6c:20:0b: a9:29:3f:e4:42:b3:1c:32:ae:2e:62:2c:f1:73:ec: 15:b2:b4:ae:35:a7:a9:bd:c0:1e:24:39:42:11:9d: 27:62:e1:76:85:fa:e4:f5:73:f0:73:da:a1:fc:10: bf:f6:d0:82:3b:bb:df:d0:e7:24:7f:ad:90:db:c5: b7:0f:5d:52:86:6c:9f:3b:bf:2c:1e:44:4a:54:1f: 56:b2:d8:65:08:27:f8:7b:21:af:1b:6d:14:21:04: 1a:30:17:63:11:fc:78:57:2f:e5:80:d7:3b:d2:b8: a0:4c:33:7c:ea:b1:ee:c8:42:e2:32:6e:a6:55:55: 6b:7c:44:5f:2e:cc:0b:14:32:56:2d:54:cd:27:ab: 50:58:05:6a:58:1d:c3:10:a8:66:f7:24:6d:2f:33: f5:bf:30:70:02:d0:00:f3:21:a2:4f:c7:6e:8d:fe: c7:2d:34:08:ed:85:bc:7b:fb:c4:35:96:21:77:f0: e9:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:84:2A:33:FB:70:84:BF:4B:CD:0F:0B:A6:69:B4:E8:80:1F:A4:08 X509v3 Authority Key Identifier: keyid:CF:79:C6:5F:4B:55:01:0F:B2:5C:E6:C4:5B:8C:91:9D:B0:93:A3:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912E87E/8428B9E6A1CF11EF878E6061C4F9AE02/z3nGX0tVAQ-yXObEW4yRnbCToy0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z3nGX0tVAQ-yXObEW4yRnbCToy0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912E87E/8428B9E6A1CF11EF878E6061C4F9AE02/z3nGX0tVAQ-yXObEW4yRnbCToy0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4e:b2:9c:50:fb:52:a1:14:9c:c4:98:94:3f:7e:df:82:3a:eb: 8f:6a:4b:ac:de:46:00:01:82:78:7a:65:7b:e6:aa:89:8b:1a: 74:72:bd:7e:1e:7f:8a:4b:7a:cd:7b:1d:a0:2b:12:e7:aa:ae: 25:5b:a6:04:36:c2:64:30:c8:b9:6c:03:f6:3a:7c:4f:fa:6a: 61:44:5e:de:7f:8f:54:f8:03:cb:3f:bb:09:7f:31:89:72:08: 69:15:6b:ae:68:7e:b5:4a:5a:07:1d:e0:55:f9:22:8c:ea:57: 45:a3:16:ea:10:60:63:9b:78:dd:b7:23:fa:2c:71:01:c2:19: 4a:af:95:20:ca:e8:5c:c1:69:73:71:1b:ba:3a:4a:8e:02:df: 91:d4:55:2a:e5:23:4f:ef:ba:33:71:24:61:e2:fe:a2:5c:42: 5f:c8:7a:9a:a0:fe:b5:36:e6:4d:a3:7f:17:72:d2:f5:ed:2c: d7:ee:ed:97:c6:d0:df:85:7a:2c:2a:e0:3a:5f:1e:31:df:64: 62:87:a0:84:21:67:59:15:c6:8d:99:12:9c:dd:1e:cb:1a:9a: f7:8e:21:09:66:40:5d:b5:ac:8c:30:51:70:1d:52:4c:3a:9c: e4:24:e4:a0:91:d9:f5:fc:5d:8d:d3:b9:e5:f5:f1:0c:b4:59: d9:e8:5b:79 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkU4N0UxMTAvBgNVBAUTKENGNzlDNjVGNEI1NTAxMEZCMjVDRTZDNDVCOEM5MTlE QjA5M0EzMkQwHhcNMjUxMTA1MDYxMzEyWhcNMjUxMTEyMDYxMzEyWjAYMRYwFAYD VQQDEw02OTBhZWFmOS1kNzkyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArzeEgB3UrvVmFMGv5Xg8dlQmhMI1pYs84DSBB7K1Uducvu4lfe6+dRpCvN7i rXlPSpnw239giApKpJp09EYyUDQ8lMgSYiVsIAupKT/kQrMcMq4uYizxc+wVsrSu NaepvcAeJDlCEZ0nYuF2hfrk9XPwc9qh/BC/9tCCO7vf0Ockf62Q28W3D11Shmyf O78sHkRKVB9WsthlCCf4eyGvG20UIQQaMBdjEfx4Vy/lgNc70rigTDN86rHuyELi Mm6mVVVrfERfLswLFDJWLVTNJ6tQWAVqWB3DEKhm9yRtLzP1vzBwAtAA8yGiT8du jf7HLTQI7YW8e/vENZYhd/Dp8wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFuEKjP7 cIS/S80PC6ZptOiAH6QIMB8GA1UdIwQYMBaAFM95xl9LVQEPslzmxFuMkZ2wk6Mt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRTg3RS84NDI4QjlFNkEx Q0YxMUVGODc4RTYwNjFDNEY5QUUwMi96M25HWDB0VkFRLXlYT2JFVzR5Um5iQ1Rv eTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ozbkdYMHRWQVEteVhPYkVXNHlSbmJDVG95MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RTg3RS84NDI4QjlFNkExQ0YxMUVGODc4RTYwNjFDNEY5QUUwMi96M25HWDB0VkFR LXlYT2JFVzR5Um5iQ1RveTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBOspxQ+1KhFJzEmJQ/ft+COuuPakus3kYAAYJ4emV75qqJixp0cr1+ Hn+KS3rNex2gKxLnqq4lW6YENsJkMMi5bAP2OnxP+mphRF7ef49U+APLP7sJfzGJ cghpFWuuaH61SloHHeBV+SKM6ldFoxbqEGBjm3jdtyP6LHEBwhlKr5UgyuhcwWlz cRu6OkqOAt+R1FUq5SNP77ozcSRh4v6iXEJfyHqaoP61NuZNo38XctL17SzX7u2X xtDfhXosKuA6Xx4x32Rih6CEIWdZFcaNmRKc3R7LGpr3jiEJZkBdtayMMFFwHVJM OpzkJOSgkdn1/F2N07nl9fEMtFnZ6Ft5 -----END CERTIFICATE-----Generated at Wed Nov 5 20:59:46 2025 by rpki-client