$ rpki-client -vvf rpki.apnic.net/member_repository/A914D249/76CE8456E02511ECB2FB0E27C4F9AE02/zQysDn6E4-geSHYXTiwhQIUJQmk.mft File: zQysDn6E4-geSHYXTiwhQIUJQmk.mft (raw, json) Hash identifier: CHXzfaYJqZiridS6gZKPlTSWgNogfRhpV/JMVSfPZ7g= Subject key identifier: 59:C3:CD:06:B4:F7:E4:A5:56:4A:23:0C:CC:54:AD:D4:C2:61:A3:AB Authority key identifier: CD:0C:AC:0E:7E:84:E3:E8:1E:48:76:17:4E:2C:21:40:85:09:42:69 Certificate issuer: /CN=A914D249/serialNumber=CD0CAC0E7E84E3E81E4876174E2C214085094269 Certificate serial: 035A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zQysDn6E4-geSHYXTiwhQIUJQmk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914D249/76CE8456E02511ECB2FB0E27C4F9AE02/zQysDn6E4-geSHYXTiwhQIUJQmk.mft Manifest number: 034F Signing time: Mon 03 Nov 2025 00:59:39 +0000 Manifest this update: Mon 03 Nov 2025 00:59:38 +0000 Manifest next update: Mon 10 Nov 2025 00:59:38 +0000 Files and hashes: 1: zQysDn6E4-geSHYXTiwhQIUJQmk.crl (hash: 6mi4VhdwKhQL4UqO7AHMsj4K521vsGgM2VHUcfvazh8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914D249/76CE8456E02511ECB2FB0E27C4F9AE02/zQysDn6E4-geSHYXTiwhQIUJQmk.crl rsync://rpki.apnic.net/member_repository/A914D249/76CE8456E02511ECB2FB0E27C4F9AE02/zQysDn6E4-geSHYXTiwhQIUJQmk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zQysDn6E4-geSHYXTiwhQIUJQmk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 00:59:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 858 (0x35a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914D249, serialNumber=CD0CAC0E7E84E3E81E4876174E2C214085094269 Validity Not Before: Nov 3 00:59:38 2025 GMT Not After : Nov 10 00:59:38 2025 GMT Subject: CN=6907fe7b-7c7e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:32:f9:a5:d8:95:50:a1:4d:11:e4:79:1c:ae: bc:58:f3:5f:b6:a8:6a:12:3a:39:45:47:aa:7a:8d: 10:dd:42:e2:94:4c:6c:02:11:bd:07:e2:22:b5:0a: 93:86:d6:f0:98:f9:c9:24:90:72:8f:d6:d3:f7:9a: 66:59:f1:3e:83:6b:89:64:74:42:ba:a9:a9:ad:b6: ff:b1:6c:42:eb:64:b6:c7:66:81:a2:c2:a1:85:09: cd:70:87:b4:2c:9f:5d:55:2a:0a:e3:3d:f3:ff:14: 33:c7:1c:81:34:6d:5a:36:78:fe:a6:ef:86:b1:ff: b3:7c:f2:b2:60:18:f3:ef:8a:b7:9c:00:86:6d:a2: a6:7e:64:4a:79:c3:a0:87:bb:dd:26:be:45:53:e5: 10:19:06:44:22:c2:97:ab:cf:ca:c9:c0:ea:22:9c: 25:b6:4b:42:ea:aa:fd:39:d7:a5:6a:96:10:6c:3f: 08:a5:42:01:ab:e3:ac:ef:85:98:79:44:d3:97:bc: 3e:43:03:37:23:9d:98:60:c4:df:33:19:14:6a:7a: ff:6e:44:1e:02:51:86:92:55:b7:07:22:f8:31:8f: 2b:68:da:3e:a9:94:55:c3:62:4c:7f:a1:df:16:80: 43:e9:08:d2:fe:8a:25:76:42:72:08:21:66:6f:ca: 64:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:C3:CD:06:B4:F7:E4:A5:56:4A:23:0C:CC:54:AD:D4:C2:61:A3:AB X509v3 Authority Key Identifier: keyid:CD:0C:AC:0E:7E:84:E3:E8:1E:48:76:17:4E:2C:21:40:85:09:42:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914D249/76CE8456E02511ECB2FB0E27C4F9AE02/zQysDn6E4-geSHYXTiwhQIUJQmk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zQysDn6E4-geSHYXTiwhQIUJQmk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914D249/76CE8456E02511ECB2FB0E27C4F9AE02/zQysDn6E4-geSHYXTiwhQIUJQmk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1f:58:c9:ad:c9:d6:8d:17:b7:53:c3:2a:3b:33:ad:8b:a3:d0: e8:cc:ff:8f:24:d2:e3:16:a7:56:24:9f:b7:e4:01:f3:da:0c: 79:f2:dc:fc:2b:3c:b5:ec:92:45:d7:58:e9:c5:08:5e:5d:a0: 57:c7:e5:d1:19:9a:d0:c1:1f:01:75:ed:b4:d8:67:2e:ff:5e: 57:87:0e:f2:ec:fe:7f:70:55:bf:61:f1:26:17:99:56:54:4d: e7:34:4e:da:d9:0a:00:3e:52:12:9b:80:0e:49:d6:f3:42:8e: 93:c6:eb:49:f9:b0:e8:d0:02:5f:a1:b7:54:e2:02:3e:c9:a4: 53:79:0c:4d:d8:cc:dd:95:01:4b:e4:0d:fd:b9:0d:36:75:34: ca:e2:ae:c6:65:62:80:4e:e8:25:05:0e:cc:39:23:f7:25:5b: 14:0f:8b:33:51:5c:5a:7e:eb:dd:c5:02:9b:7c:5e:27:50:a0: b7:b4:dd:b1:19:17:b4:01:53:8d:ee:41:87:6b:6a:5d:53:22: 95:ea:da:a6:b9:68:36:9b:7f:14:f5:29:a2:b9:27:1a:5b:a6: 7a:76:09:14:e1:4e:60:2c:18:be:db:8b:59:3a:06:75:b2:18: 7b:5c:bd:bd:3a:44:80:6b:2b:b3:c5:11:69:ff:09:d4:97:3d: a8:47:b7:db -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA1owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEQyNDkxMTAvBgNVBAUTKENEMENBQzBFN0U4NEUzRTgxRTQ4NzYxNzRFMkMyMTQw ODUwOTQyNjkwHhcNMjUxMTAzMDA1OTM4WhcNMjUxMTEwMDA1OTM4WjAYMRYwFAYD VQQDEw02OTA3ZmU3Yi03YzdlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1jL5pdiVUKFNEeR5HK68WPNftqhqEjo5RUeqeo0Q3ULilExsAhG9B+IitQqT htbwmPnJJJByj9bT95pmWfE+g2uJZHRCuqmprbb/sWxC62S2x2aBosKhhQnNcIe0 LJ9dVSoK4z3z/xQzxxyBNG1aNnj+pu+Gsf+zfPKyYBjz74q3nACGbaKmfmRKecOg h7vdJr5FU+UQGQZEIsKXq8/KycDqIpwltktC6qr9OdelapYQbD8IpUIBq+Os74WY eUTTl7w+QwM3I52YYMTfMxkUanr/bkQeAlGGklW3ByL4MY8raNo+qZRVw2JMf6Hf FoBD6QjS/ooldkJyCCFmb8pk9wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFnDzQa0 9+SlVkojDMxUrdTCYaOrMB8GA1UdIwQYMBaAFM0MrA5+hOPoHkh2F04sIUCFCUJp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RDI0OS83NkNFODQ1NkUw MjUxMUVDQjJGQjBFMjdDNEY5QUUwMi96UXlzRG42RTQtZ2VTSFlYVGl3aFFJVUpR bWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pReXNEbjZFNC1nZVNIWVhUaXdoUUlVSlFtay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RDI0OS83NkNFODQ1NkUwMjUxMUVDQjJGQjBFMjdDNEY5QUUwMi96UXlzRG42RTQt Z2VTSFlYVGl3aFFJVUpRbWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAfWMmtydaNF7dTwyo7M62Lo9DozP+PJNLjFqdWJJ+35AHz2gx58tz8 Kzy17JJF11jpxQheXaBXx+XRGZrQwR8Bde202Gcu/15Xhw7y7P5/cFW/YfEmF5lW VE3nNE7a2QoAPlISm4AOSdbzQo6TxutJ+bDo0AJfobdU4gI+yaRTeQxN2MzdlQFL 5A39uQ02dTTK4q7GZWKATuglBQ7MOSP3JVsUD4szUVxafuvdxQKbfF4nUKC3tN2x GRe0AVON7kGHa2pdUyKV6tqmuWg2m38U9SmiuScaW6Z6dgkU4U5gLBi+24tZOgZ1 shh7XL29OkSAayuzxRFp/wnUlz2oR7fb -----END CERTIFICATE-----Generated at Mon Nov 3 18:19:25 2025 by rpki-client