$ rpki-client -vvf rpki.apnic.net/member_repository/A915451D/5CB1EA06B88E11EABA33AC61C4F9AE02/Zctcy-UxzE70Kh0wffe0XLDpdNk.mft File: Zctcy-UxzE70Kh0wffe0XLDpdNk.mft (raw, json) Hash identifier: S4tYbhMI6cKTB8Z4sJyErqJZ2QY+fSNwN3GBlVJ5hko= Subject key identifier: D6:52:D3:9E:47:34:E4:39:6C:54:F4:D9:1C:62:7F:5A:60:0F:E0:CA Authority key identifier: 65:CB:5C:CB:E5:31:CC:4E:F4:2A:1D:30:7D:F7:B4:5C:B0:E9:74:D9 Certificate issuer: /CN=A915451D/serialNumber=65CB5CCBE531CC4EF42A1D307DF7B45CB0E974D9 Certificate serial: 08FE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Zctcy-UxzE70Kh0wffe0XLDpdNk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915451D/5CB1EA06B88E11EABA33AC61C4F9AE02/Zctcy-UxzE70Kh0wffe0XLDpdNk.mft Manifest number: 08F8 Signing time: Sun 02 Nov 2025 20:16:44 +0000 Manifest this update: Sun 02 Nov 2025 20:16:43 +0000 Manifest next update: Sun 09 Nov 2025 20:16:43 +0000 Files and hashes: 1: Zctcy-UxzE70Kh0wffe0XLDpdNk.crl (hash: y93hI4VYMNzBW1/U7OszwkrAyAnG2dQk85GVRqF7vwg=) 2: 593FC45EB89011EA8C060064C4F9AE02.roa (hash: GNTtQ5EmAt4jwHyNzDkJrVxnNcCezotTwTzcnNPHMDI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915451D/5CB1EA06B88E11EABA33AC61C4F9AE02/Zctcy-UxzE70Kh0wffe0XLDpdNk.crl rsync://rpki.apnic.net/member_repository/A915451D/5CB1EA06B88E11EABA33AC61C4F9AE02/Zctcy-UxzE70Kh0wffe0XLDpdNk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Zctcy-UxzE70Kh0wffe0XLDpdNk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 20:16:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2302 (0x8fe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915451D, serialNumber=65CB5CCBE531CC4EF42A1D307DF7B45CB0E974D9 Validity Not Before: Nov 2 20:16:43 2025 GMT Not After : Nov 9 20:16:43 2025 GMT Subject: CN=6907bc2c-569a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:01:01:bf:3c:14:aa:df:16:f5:2c:3a:4d:6d: ea:7f:4b:6e:47:0a:cb:4a:d7:f4:25:b0:09:54:78: 66:6b:45:75:46:63:62:1a:62:a6:0b:7f:1c:ef:29: a1:3a:60:d5:20:d6:8d:95:7c:92:46:f3:35:03:00: 19:41:88:ab:f3:e9:4a:88:1e:b3:08:58:ce:11:da: 18:36:5a:07:2b:93:93:4c:2f:0e:88:7b:c9:40:04: a0:b9:43:ae:2f:6f:19:81:a5:33:3d:dc:24:17:ef: e6:a5:9d:f1:7a:df:bf:e0:64:f7:57:0c:bf:13:18: a3:87:46:90:60:6c:e1:00:b3:f8:12:10:ad:14:75: fe:18:79:7e:ed:e2:e3:26:db:20:a5:d4:76:59:82: fd:0b:ba:6a:c2:c0:16:7b:ae:9c:e7:2d:6c:99:d6: 9d:97:09:f9:3f:c5:b1:75:28:45:d8:f4:3b:55:9a: 85:b3:ff:eb:b0:46:06:a5:da:02:7b:11:25:49:b3: fd:7f:07:c0:e1:87:6c:e3:7f:c4:48:ef:d3:83:b1: d3:9c:7a:c0:08:0d:1d:59:8c:db:11:69:14:4a:b4: db:c7:1b:fc:cb:74:6e:ab:4d:61:42:e3:5b:b1:a0: 84:32:fa:e8:56:19:bb:60:2d:dc:37:50:58:fe:d9: 02:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:52:D3:9E:47:34:E4:39:6C:54:F4:D9:1C:62:7F:5A:60:0F:E0:CA X509v3 Authority Key Identifier: keyid:65:CB:5C:CB:E5:31:CC:4E:F4:2A:1D:30:7D:F7:B4:5C:B0:E9:74:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915451D/5CB1EA06B88E11EABA33AC61C4F9AE02/Zctcy-UxzE70Kh0wffe0XLDpdNk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Zctcy-UxzE70Kh0wffe0XLDpdNk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915451D/5CB1EA06B88E11EABA33AC61C4F9AE02/Zctcy-UxzE70Kh0wffe0XLDpdNk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 76:28:55:7f:ee:ea:2a:44:23:da:c7:66:2e:3c:8f:cd:bc:98: 12:d4:47:b0:3c:78:a3:f7:cd:62:df:7b:b1:f3:6c:fa:ee:e2: 48:19:96:54:6a:d5:ea:e3:93:d6:df:6a:6f:2f:6f:b3:f4:0b: 04:6e:23:f3:98:73:d6:36:d8:b3:72:81:1c:9c:3f:99:ae:93: 9b:98:f4:94:5f:41:50:a5:5a:d0:96:c6:b7:fe:09:85:80:2b: fd:fd:94:5e:3f:cd:5b:6a:f9:25:aa:e2:dd:8f:21:8f:3c:9a: 0d:e3:39:68:a8:4f:52:86:2f:03:0b:0d:3c:f0:6f:cd:ad:89: 6a:09:70:6f:3b:89:c5:7a:7b:3b:b2:f2:72:7c:f8:3c:de:26: ab:4e:e0:a5:3e:f1:c4:8c:68:9e:8b:a4:a7:9d:60:fe:95:6c: 6d:d6:b6:cf:c9:dd:5c:7f:9c:97:73:f0:e3:d8:b5:35:04:58: eb:8e:02:e6:51:62:b2:8d:40:57:75:ea:52:58:e7:ec:fe:a6: 08:0e:f9:90:80:92:03:9d:9c:e8:2e:6b:bb:25:4e:a5:fd:27: 10:b9:68:c3:27:c1:88:a3:84:b3:e0:98:e7:15:96:bd:b9:fb: 25:fd:14:4c:98:cd:e9:9f:90:67:21:8a:cb:d0:f6:c1:60:47: 02:ba:85:dd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCP4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTQ1MUQxMTAvBgNVBAUTKDY1Q0I1Q0NCRTUzMUNDNEVGNDJBMUQzMDdERjdCNDVD QjBFOTc0RDkwHhcNMjUxMTAyMjAxNjQzWhcNMjUxMTA5MjAxNjQzWjAYMRYwFAYD VQQDEw02OTA3YmMyYy01NjlhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvwEBvzwUqt8W9Sw6TW3qf0tuRwrLStf0JbAJVHhma0V1RmNiGmKmC38c7ymh OmDVINaNlXySRvM1AwAZQYir8+lKiB6zCFjOEdoYNloHK5OTTC8OiHvJQASguUOu L28ZgaUzPdwkF+/mpZ3xet+/4GT3Vwy/Exijh0aQYGzhALP4EhCtFHX+GHl+7eLj JtsgpdR2WYL9C7pqwsAWe66c5y1smdadlwn5P8WxdShF2PQ7VZqFs//rsEYGpdoC exElSbP9fwfA4Yds43/ESO/Tg7HTnHrACA0dWYzbEWkUSrTbxxv8y3Ruq01hQuNb saCEMvroVhm7YC3cN1BY/tkC3QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNZS055H NOQ5bFT02Rxif1pgD+DKMB8GA1UdIwQYMBaAFGXLXMvlMcxO9CodMH33tFyw6XTZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NDUxRC81Q0IxRUEwNkI4 OEUxMUVBQkEzM0FDNjFDNEY5QUUwMi9aY3RjeS1VeHpFNzBLaDB3ZmZlMFhMRHBk TmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pjdGN5LVV4ekU3MEtoMHdmZmUwWExEcGROay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NDUxRC81Q0IxRUEwNkI4OEUxMUVBQkEzM0FDNjFDNEY5QUUwMi9aY3RjeS1VeHpF NzBLaDB3ZmZlMFhMRHBkTmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB2KFV/7uoqRCPax2YuPI/NvJgS1EewPHij981i33ux82z67uJIGZZU atXq45PW32pvL2+z9AsEbiPzmHPWNtizcoEcnD+ZrpObmPSUX0FQpVrQlsa3/gmF gCv9/ZReP81bavklquLdjyGPPJoN4zloqE9Shi8DCw088G/NrYlqCXBvO4nFens7 svJyfPg83iarTuClPvHEjGiei6SnnWD+lWxt1rbPyd1cf5yXc/Dj2LU1BFjrjgLm UWKyjUBXdepSWOfs/qYIDvmQgJIDnZzoLmu7JU6l/ScQuWjDJ8GIo4Sz4JjnFZa9 ufsl/RRMmM3pn5BnIYrL0PbBYEcCuoXd -----END CERTIFICATE-----Generated at Mon Nov 3 18:14:38 2025 by rpki-client