$ rpki-client -vvf rpki.apnic.net/member_repository/A914B45F/40BB15742F6511EE95FDED56C4F9AE02/z64jGpiXN_YdrZV8wk0hNYWBjtw.mft File: z64jGpiXN_YdrZV8wk0hNYWBjtw.mft (raw, json) Hash identifier: 0Fwv3vflBJW4JebktZLQlzMgac3QIDVSqB4H8OoGGJY= Subject key identifier: E0:35:85:BD:71:28:08:D4:90:98:CB:3A:2A:55:61:5F:A9:D6:4C:4D Authority key identifier: CF:AE:23:1A:98:97:37:F6:1D:AD:95:7C:C2:4D:21:35:85:81:8E:DC Certificate issuer: /CN=A914B45F/serialNumber=CFAE231A989737F61DAD957CC24D213585818EDC Certificate serial: 01AB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z64jGpiXN_YdrZV8wk0hNYWBjtw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914B45F/40BB15742F6511EE95FDED56C4F9AE02/z64jGpiXN_YdrZV8wk0hNYWBjtw.mft Manifest number: 01A8 Signing time: Mon 03 Nov 2025 03:12:59 +0000 Manifest this update: Mon 03 Nov 2025 03:12:58 +0000 Manifest next update: Mon 10 Nov 2025 03:12:58 +0000 Files and hashes: 1: z64jGpiXN_YdrZV8wk0hNYWBjtw.crl (hash: 0PsyhUpo8MWe2O22LmXUMiXn6eqVCid4FLc868RzJNo=) 2: 578C92D62F6611EE9CAFAA58C4F9AE02.roa (hash: Q5zuiPpefsNxFRaG9cl+nmTsBfZwCymfR2pPktbzlnY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914B45F/40BB15742F6511EE95FDED56C4F9AE02/z64jGpiXN_YdrZV8wk0hNYWBjtw.crl rsync://rpki.apnic.net/member_repository/A914B45F/40BB15742F6511EE95FDED56C4F9AE02/z64jGpiXN_YdrZV8wk0hNYWBjtw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z64jGpiXN_YdrZV8wk0hNYWBjtw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 03:12:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 427 (0x1ab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914B45F, serialNumber=CFAE231A989737F61DAD957CC24D213585818EDC Validity Not Before: Nov 3 03:12:58 2025 GMT Not After : Nov 10 03:12:58 2025 GMT Subject: CN=69081dba-77fd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:90:84:35:bc:69:60:28:9f:a5:73:cc:b8:f3: 67:bd:7f:b0:04:b2:04:ba:43:67:3a:56:2f:e4:ba: 97:b3:d9:79:a4:89:50:8a:22:23:3d:e0:d7:f6:35: 2c:7f:8c:51:c5:9d:22:a3:4e:96:4f:ec:67:3b:a3: 71:ff:f1:19:e9:d7:e7:0f:93:33:f1:92:57:1c:38: 3c:aa:78:9a:4d:2e:a7:6d:d3:46:16:bf:93:ab:53: 4a:c9:e1:4e:9c:74:31:d9:b5:47:4e:37:46:6a:ba: 8e:53:b5:31:20:0e:80:2f:46:ee:47:0a:9c:79:31: 46:8e:1b:79:d6:83:e8:69:10:a4:1a:a2:e8:18:56: d3:e8:ea:d5:9e:ed:27:8a:82:13:a6:82:68:7d:a5: b5:50:86:b6:09:d6:c9:77:e1:36:66:34:06:35:87: 9c:a0:d3:c3:eb:9e:0c:3a:a1:a5:8e:da:02:03:4c: 07:ea:31:f9:9d:e8:92:2f:5c:e5:fe:e5:22:76:f1: 45:81:81:8d:f9:fc:a1:3d:2e:0c:57:e8:0e:ac:de: 98:18:04:49:12:34:1a:0d:3d:3f:34:43:4b:0a:00: dc:85:ec:12:36:0c:34:3a:23:66:f2:fc:53:5f:6d: 4a:f1:d8:be:f2:d5:88:13:07:81:97:7a:c2:c2:02: e2:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:35:85:BD:71:28:08:D4:90:98:CB:3A:2A:55:61:5F:A9:D6:4C:4D X509v3 Authority Key Identifier: keyid:CF:AE:23:1A:98:97:37:F6:1D:AD:95:7C:C2:4D:21:35:85:81:8E:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914B45F/40BB15742F6511EE95FDED56C4F9AE02/z64jGpiXN_YdrZV8wk0hNYWBjtw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z64jGpiXN_YdrZV8wk0hNYWBjtw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914B45F/40BB15742F6511EE95FDED56C4F9AE02/z64jGpiXN_YdrZV8wk0hNYWBjtw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 09:61:89:a1:f3:7f:76:7f:26:c6:3f:c6:e2:1b:91:d7:f0:0a: ca:b1:2e:a3:1c:e8:26:50:38:e8:d0:bb:d8:ac:b7:ad:be:e1: 8f:95:1f:ee:9a:5d:47:d2:b6:f5:3f:8e:8a:44:49:01:f2:06: c2:67:a7:48:25:c5:1c:33:df:43:d4:43:96:44:d2:02:3f:f3: b1:dc:9f:38:8b:7f:0b:66:a8:b9:3d:3c:dc:db:23:16:2c:04: 25:22:91:27:d0:0f:b5:55:77:60:21:95:84:2d:42:e0:74:07: 23:d8:ab:b5:97:88:f4:96:d2:25:ff:02:c3:cb:c3:da:d4:52: 45:bd:59:e3:d2:d3:12:f2:cf:ff:31:20:e6:0c:a3:14:48:71: ea:70:05:51:db:b8:a9:23:13:8d:38:dc:53:59:90:8a:b6:16: 31:53:f2:6f:dc:8a:0d:8b:bd:11:e8:d9:74:6b:29:f8:fb:c1: b5:f8:86:48:28:fb:89:38:9a:f8:c3:59:8c:50:f3:d3:cf:06: 9b:f1:01:fb:b9:b7:48:77:57:65:ff:d3:13:08:87:54:51:e9: 12:d4:d8:3f:6d:aa:29:67:52:cb:02:a8:98:74:b2:f8:05:d9: ec:49:f9:5c:a9:99:32:2a:31:07:a4:2e:26:86:22:ad:85:e7: 90:6e:22:5a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAaswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEI0NUYxMTAvBgNVBAUTKENGQUUyMzFBOTg5NzM3RjYxREFEOTU3Q0MyNEQyMTM1 ODU4MThFREMwHhcNMjUxMTAzMDMxMjU4WhcNMjUxMTEwMDMxMjU4WjAYMRYwFAYD VQQDEw02OTA4MWRiYS03N2ZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAypCENbxpYCifpXPMuPNnvX+wBLIEukNnOlYv5LqXs9l5pIlQiiIjPeDX9jUs f4xRxZ0io06WT+xnO6Nx//EZ6dfnD5Mz8ZJXHDg8qniaTS6nbdNGFr+Tq1NKyeFO nHQx2bVHTjdGarqOU7UxIA6AL0buRwqceTFGjht51oPoaRCkGqLoGFbT6OrVnu0n ioITpoJofaW1UIa2CdbJd+E2ZjQGNYecoNPD654MOqGljtoCA0wH6jH5neiSL1zl /uUidvFFgYGN+fyhPS4MV+gOrN6YGARJEjQaDT0/NENLCgDchewSNgw0OiNm8vxT X21K8di+8tWIEweBl3rCwgLinwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOA1hb1x KAjUkJjLOipVYV+p1kxNMB8GA1UdIwQYMBaAFM+uIxqYlzf2Ha2VfMJNITWFgY7c MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QjQ1Ri80MEJCMTU3NDJG NjUxMUVFOTVGREVENTZDNEY5QUUwMi96NjRqR3BpWE5fWWRyWlY4d2swaE5ZV0Jq dHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3o2NGpHcGlYTl9ZZHJaVjh3azBoTllXQmp0dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QjQ1Ri80MEJCMTU3NDJGNjUxMUVFOTVGREVENTZDNEY5QUUwMi96NjRqR3BpWE5f WWRyWlY4d2swaE5ZV0JqdHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAJYYmh8392fybGP8biG5HX8ArKsS6jHOgmUDjo0LvYrLetvuGPlR/u ml1H0rb1P46KREkB8gbCZ6dIJcUcM99D1EOWRNICP/Ox3J84i38LZqi5PTzc2yMW LAQlIpEn0A+1VXdgIZWELULgdAcj2Ku1l4j0ltIl/wLDy8Pa1FJFvVnj0tMS8s// MSDmDKMUSHHqcAVR27ipIxONONxTWZCKthYxU/Jv3IoNi70R6Nl0ayn4+8G1+IZI KPuJOJr4w1mMUPPTzwab8QH7ubdId1dl/9MTCIdUUekS1Ng/baopZ1LLAqiYdLL4 BdnsSflcqZkyKjEHpC4mhiKtheeQbiJa -----END CERTIFICATE-----Generated at Mon Nov 3 18:10:59 2025 by rpki-client