$ rpki-client -vvf rpki.apnic.net/member_repository/A912E87E/8428B9E6A1CF11EF878E6061C4F9AE02/z3nGX0tVAQ-yXObEW4yRnbCToy0.mft File: z3nGX0tVAQ-yXObEW4yRnbCToy0.mft (raw, json) Hash identifier: hC7h32BkB+JIcyDUk+zdVGbgMO0GsACNXevdCHu9St0= Subject key identifier: B5:DC:F8:87:BC:30:4F:F9:28:12:CB:E6:58:E3:DB:CA:E3:53:BA:22 Authority key identifier: CF:79:C6:5F:4B:55:01:0F:B2:5C:E6:C4:5B:8C:91:9D:B0:93:A3:2D Certificate issuer: /CN=A912E87E/serialNumber=CF79C65F4B55010FB25CE6C45B8C919DB093A32D Certificate serial: A2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z3nGX0tVAQ-yXObEW4yRnbCToy0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912E87E/8428B9E6A1CF11EF878E6061C4F9AE02/z3nGX0tVAQ-yXObEW4yRnbCToy0.mft Manifest number: A0 Signing time: Wed 17 Sep 2025 06:59:18 +0000 Manifest this update: Wed 17 Sep 2025 06:59:18 +0000 Manifest next update: Wed 24 Sep 2025 06:59:18 +0000 Files and hashes: 1: z3nGX0tVAQ-yXObEW4yRnbCToy0.crl (hash: jLHkwaQr/+U2tD5GXHTnyoSgyiHNM+trqp/r6dExAmg=) 2: A48892E4DE4A11EFACE66748C4F9AE02.roa (hash: pAKMszCIjt6MmJA/GOLnpRTl7JGqEZooCz2JSaSabrA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912E87E/8428B9E6A1CF11EF878E6061C4F9AE02/z3nGX0tVAQ-yXObEW4yRnbCToy0.crl rsync://rpki.apnic.net/member_repository/A912E87E/8428B9E6A1CF11EF878E6061C4F9AE02/z3nGX0tVAQ-yXObEW4yRnbCToy0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z3nGX0tVAQ-yXObEW4yRnbCToy0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Sep 2025 06:59:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 162 (0xa2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912E87E, serialNumber=CF79C65F4B55010FB25CE6C45B8C919DB093A32D Validity Not Before: Sep 17 06:59:18 2025 GMT Not After : Sep 24 06:59:18 2025 GMT Subject: CN=68ca5c46-7beb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:f7:02:9e:e2:7b:35:24:f1:30:9f:41:66:10: 62:04:60:3b:fd:8b:48:82:54:45:44:3e:74:fd:ee: f7:d1:c6:5a:20:4c:07:82:0c:2c:7f:58:25:59:c7: db:56:ef:86:9a:7f:2e:9a:e6:7c:87:5f:ff:3a:99: ab:45:f3:ac:71:01:83:7c:40:a0:86:86:4f:58:dc: 83:e3:b7:d3:4a:8e:d9:ef:79:d5:98:33:0b:86:3c: 24:bd:a6:1e:2d:74:df:9c:8c:9d:a1:45:5f:81:0e: c3:38:18:5d:39:c1:70:bd:78:34:7d:66:04:6b:b1: 04:67:c0:5e:d8:cd:a7:05:81:c9:ea:88:06:aa:e2: 22:91:78:b9:e7:f9:a3:7c:db:92:e4:f6:a1:5b:ac: 11:73:a9:18:93:ef:22:56:3b:80:64:b1:bc:ea:65: e8:2e:ea:c3:0a:96:a9:86:d7:58:57:b5:39:cf:16: bb:a8:63:8b:d0:26:87:d4:96:0a:c8:5e:71:f2:21: 1c:61:aa:d7:ee:e6:24:10:d9:78:f2:4c:2d:cf:46: ad:67:f2:4a:07:ed:ff:0e:6f:0f:dd:32:1e:ed:52: 08:e0:35:c9:b4:23:e6:dc:30:e7:f8:f2:3f:de:5d: 10:ad:ec:2e:ec:15:72:b3:b1:10:68:54:c1:4b:6e: 77:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:DC:F8:87:BC:30:4F:F9:28:12:CB:E6:58:E3:DB:CA:E3:53:BA:22 X509v3 Authority Key Identifier: keyid:CF:79:C6:5F:4B:55:01:0F:B2:5C:E6:C4:5B:8C:91:9D:B0:93:A3:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912E87E/8428B9E6A1CF11EF878E6061C4F9AE02/z3nGX0tVAQ-yXObEW4yRnbCToy0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z3nGX0tVAQ-yXObEW4yRnbCToy0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912E87E/8428B9E6A1CF11EF878E6061C4F9AE02/z3nGX0tVAQ-yXObEW4yRnbCToy0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1c:14:15:de:3a:cf:10:be:cc:71:b5:d4:3f:f1:19:b6:4c:e3: 83:4e:1b:6d:8e:2b:d1:c2:7b:48:02:e4:8f:04:e4:67:43:da: 25:a3:00:3b:2e:48:ea:01:5b:34:56:9c:54:ab:f5:c7:dc:35: bb:68:60:11:f8:50:57:9b:15:2e:54:40:dd:09:f7:14:82:64: bd:86:06:95:af:5a:bc:7f:16:df:89:dc:58:ad:df:a4:4d:76: 4b:a6:bd:0c:84:aa:9b:d6:99:b4:b0:80:07:4c:a4:6b:c2:80: 13:d2:e9:06:2a:17:6e:3e:01:a0:a1:ae:3e:33:3c:13:9b:6d: 7a:80:49:de:4a:bd:81:64:2b:29:98:09:82:c8:b2:8a:0e:0f: ef:0a:fa:3e:32:b2:54:f0:16:5b:0f:ee:5e:14:f3:f8:2e:43: bc:17:1c:ea:82:53:a9:71:21:ae:64:b2:f1:f3:65:80:f8:13: 73:4a:64:63:67:df:b6:31:82:14:78:1a:20:a7:58:48:1a:c4: 70:fe:e3:32:64:23:8d:1b:ba:84:77:65:32:07:e3:09:04:98: d4:e2:89:25:78:4a:b8:c0:e8:5c:f7:63:da:d7:86:49:1e:b0: 7e:05:d9:c1:e9:67:2b:0c:00:12:6c:ec:0b:ca:57:d3:c8:16: 91:90:c2:41 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkU4N0UxMTAvBgNVBAUTKENGNzlDNjVGNEI1NTAxMEZCMjVDRTZDNDVCOEM5MTlE QjA5M0EzMkQwHhcNMjUwOTE3MDY1OTE4WhcNMjUwOTI0MDY1OTE4WjAYMRYwFAYD VQQDEw02OGNhNWM0Ni03YmViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv/cCnuJ7NSTxMJ9BZhBiBGA7/YtIglRFRD50/e730cZaIEwHggwsf1glWcfb Vu+Gmn8umuZ8h1//OpmrRfOscQGDfECghoZPWNyD47fTSo7Z73nVmDMLhjwkvaYe LXTfnIydoUVfgQ7DOBhdOcFwvXg0fWYEa7EEZ8Be2M2nBYHJ6ogGquIikXi55/mj fNuS5PahW6wRc6kYk+8iVjuAZLG86mXoLurDCpaphtdYV7U5zxa7qGOL0CaH1JYK yF5x8iEcYarX7uYkENl48kwtz0atZ/JKB+3/Dm8P3TIe7VII4DXJtCPm3DDn+PI/ 3l0Qrewu7BVys7EQaFTBS253yQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLXc+Ie8 ME/5KBLL5ljj28rjU7oiMB8GA1UdIwQYMBaAFM95xl9LVQEPslzmxFuMkZ2wk6Mt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRTg3RS84NDI4QjlFNkEx Q0YxMUVGODc4RTYwNjFDNEY5QUUwMi96M25HWDB0VkFRLXlYT2JFVzR5Um5iQ1Rv eTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ozbkdYMHRWQVEteVhPYkVXNHlSbmJDVG95MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RTg3RS84NDI4QjlFNkExQ0YxMUVGODc4RTYwNjFDNEY5QUUwMi96M25HWDB0VkFR LXlYT2JFVzR5Um5iQ1RveTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAcFBXeOs8QvsxxtdQ/8Rm2TOODThttjivRwntIAuSPBORnQ9olowA7 LkjqAVs0VpxUq/XH3DW7aGAR+FBXmxUuVEDdCfcUgmS9hgaVr1q8fxbfidxYrd+k TXZLpr0MhKqb1pm0sIAHTKRrwoAT0ukGKhduPgGgoa4+MzwTm216gEneSr2BZCsp mAmCyLKKDg/vCvo+MrJU8BZbD+5eFPP4LkO8FxzqglOpcSGuZLLx82WA+BNzSmRj Z9+2MYIUeBogp1hIGsRw/uMyZCONG7qEd2UyB+MJBJjU4okleEq4wOhc92Pa14ZJ HrB+BdnB6WcrDAASbOwLylfTyBaRkMJB -----END CERTIFICATE-----Generated at Fri Sep 19 02:14:56 2025 by rpki-client