$ rpki-client -vvf rpki.apnic.net/member_repository/A915A4AF/466466CA69F611EFB2B8AF50C4F9AE02/zuSHZKosFvdaBnJE66WGaXThztY.mft File: zuSHZKosFvdaBnJE66WGaXThztY.mft (raw, json) Hash identifier: AZl6R1rcAyi1n8I7MhUx7gSWi3gYmXj7kv2e7FDzl40= Subject key identifier: B0:9A:1E:A6:37:75:3E:86:79:CA:14:14:FB:7B:74:73:90:BA:9E:2F Authority key identifier: CE:E4:87:64:AA:2C:16:F7:5A:06:72:44:EB:A5:86:69:74:E1:CE:D6 Certificate issuer: /CN=A915A4AF/serialNumber=CEE48764AA2C16F75A067244EBA5866974E1CED6 Certificate serial: D9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/zuSHZKosFvdaBnJE66WGaXThztY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915A4AF/466466CA69F611EFB2B8AF50C4F9AE02/zuSHZKosFvdaBnJE66WGaXThztY.mft Manifest number: D6 Signing time: Thu 23 Oct 2025 07:36:15 +0000 Manifest this update: Thu 23 Oct 2025 07:36:14 +0000 Manifest next update: Thu 30 Oct 2025 07:36:14 +0000 Files and hashes: 1: zuSHZKosFvdaBnJE66WGaXThztY.crl (hash: Ri/LXTO1L9d6f/OeISqIkyy8fXu+x78W6Zh9VjK75sU=) 2: D4BAE68E853311F0AC0D4852C4F9AE02.roa (hash: JKusbC5VvwUuAdGYiNShuHqXM4sIB8wqjTbQ4/y/qsw=) 3: 9B22AC1269F611EFA7665A51C4F9AE02.roa (hash: Fnj7JWgwdsaeofMVq5UcxcqhmE7c7PXdT8GOJ7pFYSI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915A4AF/466466CA69F611EFB2B8AF50C4F9AE02/zuSHZKosFvdaBnJE66WGaXThztY.crl rsync://rpki.apnic.net/member_repository/A915A4AF/466466CA69F611EFB2B8AF50C4F9AE02/zuSHZKosFvdaBnJE66WGaXThztY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/zuSHZKosFvdaBnJE66WGaXThztY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 30 Oct 2025 07:36:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 217 (0xd9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915A4AF, serialNumber=CEE48764AA2C16F75A067244EBA5866974E1CED6 Validity Not Before: Oct 23 07:36:14 2025 GMT Not After : Oct 30 07:36:14 2025 GMT Subject: CN=68f9daef-9c92 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:13:a4:88:9e:ae:39:61:e8:7d:6f:70:38:37: cb:a6:82:2e:89:52:32:d1:84:93:9a:00:da:a7:d7: c6:9b:a9:6b:34:00:e0:62:69:c1:dc:76:16:f7:d4: 07:ff:a0:4e:48:25:32:62:6e:cd:b3:68:91:bb:ec: be:8e:a0:93:b3:50:d2:76:f6:57:a5:df:12:07:13: 4a:b1:26:b8:56:26:6f:ed:e7:1e:c0:3b:fd:64:4a: 86:e1:b6:42:5c:4b:33:8b:3f:9f:7a:2d:19:15:2f: 1c:06:72:10:7a:a4:cf:12:e9:cf:54:6f:82:79:3e: 4d:5b:83:7c:95:52:3c:42:e2:b5:02:e8:7e:00:2a: a5:63:9e:7e:ad:38:ac:66:cf:22:79:84:f4:31:68: c4:45:9b:4d:5f:e8:40:4d:b0:4e:f6:86:f7:4c:d1: 2b:54:b5:17:a9:08:6d:4b:68:52:f0:e6:a2:97:8a: 8d:fa:63:d0:fe:da:dc:c4:e3:38:49:82:dd:2d:53: 8f:36:9a:e9:20:95:61:b5:09:ca:69:aa:fe:00:a4: 96:29:11:a7:e9:a8:86:3e:52:aa:84:3c:00:a6:b8: a2:b1:23:61:42:17:29:57:d2:27:57:b8:ba:0f:46: 3b:a7:29:eb:fe:3a:cb:59:e3:6a:6e:59:f7:94:90: 68:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:9A:1E:A6:37:75:3E:86:79:CA:14:14:FB:7B:74:73:90:BA:9E:2F X509v3 Authority Key Identifier: keyid:CE:E4:87:64:AA:2C:16:F7:5A:06:72:44:EB:A5:86:69:74:E1:CE:D6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915A4AF/466466CA69F611EFB2B8AF50C4F9AE02/zuSHZKosFvdaBnJE66WGaXThztY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/zuSHZKosFvdaBnJE66WGaXThztY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915A4AF/466466CA69F611EFB2B8AF50C4F9AE02/zuSHZKosFvdaBnJE66WGaXThztY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 15:16:0d:57:c3:10:56:40:cc:5e:5e:14:8f:4c:75:88:2e:01: bd:62:12:2b:28:ed:f8:07:3b:b7:24:7d:9f:a4:5e:45:2c:8c: e2:5b:ec:60:bb:3a:e5:3b:ac:ad:de:7d:47:ca:30:c6:ac:12: 5a:c7:45:a1:89:c3:24:78:13:c6:b9:4a:c6:b6:4f:91:7d:67: 98:7e:48:71:92:59:c0:3e:5f:52:94:d2:f9:c5:d1:e6:d1:f0: 09:38:3f:78:43:36:e0:07:2f:59:e9:92:f4:e6:ef:2f:ee:da: 71:fc:a0:15:a2:29:38:99:02:55:69:70:ff:bc:46:1f:0f:56: 8e:9c:42:1a:db:90:06:62:cf:4a:81:f4:20:5c:c1:5d:e0:32: 6b:a0:39:78:e5:62:61:7e:44:ec:74:ad:95:86:13:fb:ac:5d: ad:56:ce:f7:b2:84:d0:fc:ad:18:68:88:7c:7c:fc:b2:dc:dc: 80:ba:11:e9:16:3c:5b:07:92:cb:ba:dc:91:cf:ed:6a:8a:1f: 74:d8:f6:47:c8:99:da:7e:09:03:2a:07:90:61:97:70:8b:63: 6b:ae:e3:d2:25:87:42:ad:ea:24:ae:1e:b5:76:d2:49:3d:b7: 06:a7:40:ad:9a:a4:00:d9:f4:ca:93:07:b9:5b:14:27:4d:ad: a5:7a:c0:72 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUE0QUYxMTAvBgNVBAUTKENFRTQ4NzY0QUEyQzE2Rjc1QTA2NzI0NEVCQTU4NjY5 NzRFMUNFRDYwHhcNMjUxMDIzMDczNjE0WhcNMjUxMDMwMDczNjE0WjAYMRYwFAYD VQQDEw02OGY5ZGFlZi05YzkyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqROkiJ6uOWHofW9wODfLpoIuiVIy0YSTmgDap9fGm6lrNADgYmnB3HYW99QH /6BOSCUyYm7Ns2iRu+y+jqCTs1DSdvZXpd8SBxNKsSa4ViZv7ecewDv9ZEqG4bZC XEsziz+fei0ZFS8cBnIQeqTPEunPVG+CeT5NW4N8lVI8QuK1Auh+ACqlY55+rTis Zs8ieYT0MWjERZtNX+hATbBO9ob3TNErVLUXqQhtS2hS8Oail4qN+mPQ/trcxOM4 SYLdLVOPNprpIJVhtQnKaar+AKSWKRGn6aiGPlKqhDwApriisSNhQhcpV9InV7i6 D0Y7pynr/jrLWeNqbln3lJBovwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLCaHqY3 dT6GecoUFPt7dHOQup4vMB8GA1UdIwQYMBaAFM7kh2SqLBb3WgZyROulhml04c7W MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QTRBRi80NjY0NjZDQTY5 RjYxMUVGQjJCOEFGNTBDNEY5QUUwMi96dVNIWktvc0Z2ZGFCbkpFNjZXR2FYVGh6 dFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3p1U0haS29zRnZkYUJuSkU2NldHYVhUaHp0WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QTRBRi80NjY0NjZDQTY5RjYxMUVGQjJCOEFGNTBDNEY5QUUwMi96dVNIWktvc0Z2 ZGFCbkpFNjZXR2FYVGh6dFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAVFg1XwxBWQMxeXhSPTHWILgG9YhIrKO34Bzu3JH2fpF5FLIziW+xg uzrlO6yt3n1HyjDGrBJax0WhicMkeBPGuUrGtk+RfWeYfkhxklnAPl9SlNL5xdHm 0fAJOD94QzbgBy9Z6ZL05u8v7tpx/KAVoik4mQJVaXD/vEYfD1aOnEIa25AGYs9K gfQgXMFd4DJroDl45WJhfkTsdK2VhhP7rF2tVs73soTQ/K0YaIh8fPyy3NyAuhHp FjxbB5LLutyRz+1qih902PZHyJnafgkDKgeQYZdwi2NrruPSJYdCreokrh61dtJJ PbcGp0CtmqQA2fTKkwe5WxQnTa2lesBy -----END CERTIFICATE-----Generated at Thu Oct 23 10:08:30 2025 by rpki-client