$ rpki-client -vvf rpki.apnic.net/member_repository/A918031D/ED463BC64EEE11EFB1D33030C4F9AE02/ZpvKCpDeWAORqO5km-TvvjbOhBg.mft File: ZpvKCpDeWAORqO5km-TvvjbOhBg.mft (raw, json) Hash identifier: kmoxA44O5woB54IU1tDl9B3CltJ9IgpJ6C832l89tcc= Subject key identifier: A8:99:8D:DD:7C:4E:7A:6C:A9:02:3E:E7:B5:F0:FF:D4:1C:A6:04:34 Authority key identifier: 66:9B:CA:0A:90:DE:58:03:91:A8:EE:64:9B:E4:EF:BE:36:CE:84:18 Certificate issuer: /CN=A918031D/serialNumber=669BCA0A90DE580391A8EE649BE4EFBE36CE8418 Certificate serial: F1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZpvKCpDeWAORqO5km-TvvjbOhBg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918031D/ED463BC64EEE11EFB1D33030C4F9AE02/ZpvKCpDeWAORqO5km-TvvjbOhBg.mft Manifest number: EE Signing time: Mon 03 Nov 2025 05:18:36 +0000 Manifest this update: Mon 03 Nov 2025 05:18:35 +0000 Manifest next update: Mon 10 Nov 2025 05:18:35 +0000 Files and hashes: 1: ZpvKCpDeWAORqO5km-TvvjbOhBg.crl (hash: 8Uk0gGJEi641J69OnR8PZWEEoSCm0yCepeJ+Ximlz4k=) 2: 314597D64EEF11EF8BACFA30C4F9AE02.roa (hash: ZL8Uf90EoIe/9cFPftTPRzJYLCEIVxaFapmNs/ZbD/8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918031D/ED463BC64EEE11EFB1D33030C4F9AE02/ZpvKCpDeWAORqO5km-TvvjbOhBg.crl rsync://rpki.apnic.net/member_repository/A918031D/ED463BC64EEE11EFB1D33030C4F9AE02/ZpvKCpDeWAORqO5km-TvvjbOhBg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZpvKCpDeWAORqO5km-TvvjbOhBg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 05:18:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 241 (0xf1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918031D, serialNumber=669BCA0A90DE580391A8EE649BE4EFBE36CE8418 Validity Not Before: Nov 3 05:18:35 2025 GMT Not After : Nov 10 05:18:35 2025 GMT Subject: CN=69083b2c-3890 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:82:52:a8:5c:b9:ec:d1:5f:11:d0:0a:74:da: b6:d8:74:fc:36:09:52:09:cc:08:2b:60:a1:cb:a2: 77:bb:4b:ed:4a:9b:48:ba:51:82:77:48:56:5b:a7: 81:36:26:9c:39:b5:3e:3d:f2:48:73:0b:ca:06:d4: ab:bb:fa:74:b5:70:b7:1e:d8:82:c3:5d:41:f0:79: 16:47:be:8d:98:f8:40:b9:c2:44:66:d7:74:15:4b: 82:fa:c8:6f:3d:25:b2:41:53:2f:a7:28:07:c0:d3: c5:ac:21:7b:02:8f:e6:ae:d3:7f:aa:45:c0:41:27: db:5f:a4:d2:dd:8f:fa:2a:dc:26:20:2a:29:8c:29: 55:4f:85:fa:b2:c8:a9:6d:ac:bf:75:a1:42:df:3d: 4f:9d:08:2d:64:bf:52:51:7d:8a:f6:a4:1c:02:fe: c5:bc:15:c1:72:1a:d3:14:39:54:60:d8:21:b5:30: e3:72:8c:ae:bd:54:f2:e3:31:ac:66:aa:9c:d8:5b: 2d:b4:64:7f:75:8c:f9:55:12:27:80:b4:19:39:5d: 2e:93:e1:f6:c5:ba:78:b0:f2:ef:c3:55:3b:e8:4d: e9:f1:78:9f:c2:75:b2:c0:fe:49:93:46:84:41:e1: 9a:81:2d:ad:53:1d:1d:ca:00:76:d2:52:c3:02:12: 6c:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:99:8D:DD:7C:4E:7A:6C:A9:02:3E:E7:B5:F0:FF:D4:1C:A6:04:34 X509v3 Authority Key Identifier: keyid:66:9B:CA:0A:90:DE:58:03:91:A8:EE:64:9B:E4:EF:BE:36:CE:84:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918031D/ED463BC64EEE11EFB1D33030C4F9AE02/ZpvKCpDeWAORqO5km-TvvjbOhBg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZpvKCpDeWAORqO5km-TvvjbOhBg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918031D/ED463BC64EEE11EFB1D33030C4F9AE02/ZpvKCpDeWAORqO5km-TvvjbOhBg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6c:41:63:45:f2:f7:48:ca:52:f8:18:05:f0:91:f1:b0:7c:2e: c6:8f:3e:b0:d1:ac:c3:c7:fa:5b:8f:96:2e:46:05:30:1c:5c: fa:5f:50:ff:13:a5:36:d6:3d:26:c6:fa:90:96:7a:2a:fd:b2: d1:35:cf:23:49:11:c4:61:93:51:83:2e:8f:91:da:e0:66:b0: 27:1d:b1:ef:4a:6c:2a:6d:10:70:b7:ab:7f:67:da:f7:d0:a5: e0:32:d6:2a:6e:51:94:9e:15:b5:ce:dc:38:f6:41:69:ed:a3: e2:6f:8d:d6:2d:6a:0b:69:cc:57:70:4e:03:79:e5:42:82:3d: ab:ba:a8:16:e1:0e:cc:f3:d7:cc:0f:21:4e:91:54:9e:c1:22: 3a:98:6f:f9:e1:7d:19:67:b8:d9:8c:49:fb:49:02:08:7a:01: 27:6e:3f:e6:9c:c0:68:28:4b:a4:45:a5:87:e5:bb:99:3b:c4: 72:9d:19:81:0c:40:0e:33:ba:77:b4:5c:68:4d:b1:ee:00:04: fd:dd:de:6b:14:73:c9:6b:7b:d7:21:fb:de:0a:cb:ca:35:92: e0:58:51:3b:cc:9c:2f:f4:cf:e1:7b:4b:5c:b5:97:0c:ff:bb: 25:ae:1c:e9:ea:e0:a0:0d:5c:33:e3:51:dc:34:20:11:b9:0e: ae:05:c7:0d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODAzMUQxMTAvBgNVBAUTKDY2OUJDQTBBOTBERTU4MDM5MUE4RUU2NDlCRTRFRkJF MzZDRTg0MTgwHhcNMjUxMTAzMDUxODM1WhcNMjUxMTEwMDUxODM1WjAYMRYwFAYD VQQDEw02OTA4M2IyYy0zODkwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq4JSqFy57NFfEdAKdNq22HT8NglSCcwIK2Chy6J3u0vtSptIulGCd0hWW6eB NiacObU+PfJIcwvKBtSru/p0tXC3HtiCw11B8HkWR76NmPhAucJEZtd0FUuC+shv PSWyQVMvpygHwNPFrCF7Ao/mrtN/qkXAQSfbX6TS3Y/6KtwmICopjClVT4X6ssip bay/daFC3z1PnQgtZL9SUX2K9qQcAv7FvBXBchrTFDlUYNghtTDjcoyuvVTy4zGs Zqqc2FsttGR/dYz5VRIngLQZOV0uk+H2xbp4sPLvw1U76E3p8XifwnWywP5Jk0aE QeGagS2tUx0dygB20lLDAhJs2QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKiZjd18 TnpsqQI+57Xw/9QcpgQ0MB8GA1UdIwQYMBaAFGabygqQ3lgDkajuZJvk7742zoQY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MDMxRC9FRDQ2M0JDNjRF RUUxMUVGQjFEMzMwMzBDNEY5QUUwMi9acHZLQ3BEZVdBT1JxTzVrbS1UdnZqYk9o QmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pwdktDcERlV0FPUnFPNWttLVR2dmpiT2hCZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MDMxRC9FRDQ2M0JDNjRFRUUxMUVGQjFEMzMwMzBDNEY5QUUwMi9acHZLQ3BEZVdB T1JxTzVrbS1UdnZqYk9oQmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBsQWNF8vdIylL4GAXwkfGwfC7Gjz6w0azDx/pbj5YuRgUwHFz6X1D/ E6U21j0mxvqQlnoq/bLRNc8jSRHEYZNRgy6PkdrgZrAnHbHvSmwqbRBwt6t/Z9r3 0KXgMtYqblGUnhW1ztw49kFp7aPib43WLWoLacxXcE4DeeVCgj2ruqgW4Q7M89fM DyFOkVSewSI6mG/54X0ZZ7jZjEn7SQIIegEnbj/mnMBoKEukRaWH5buZO8RynRmB DEAOM7p3tFxoTbHuAAT93d5rFHPJa3vXIfveCsvKNZLgWFE7zJwv9M/he0tctZcM /7slrhzp6uCgDVwz41HcNCARuQ6uBccN -----END CERTIFICATE-----Generated at Mon Nov 3 18:17:57 2025 by rpki-client