$ rpki-client -vvf rpki.apnic.net/member_repository/A9182047/33ADB3E66E0011EC9A63BD6AC4F9AE02/ZQEq8FcQhrnqswNG9iS2MSpVHDg.mft File: ZQEq8FcQhrnqswNG9iS2MSpVHDg.mft (raw, json) Hash identifier: HkVBSg/L6QGsem+XyHpevEURov1pdNwu3DhBnuz2ZDc= Subject key identifier: 0E:F9:85:31:1D:23:6F:9D:F1:E4:AE:F5:C7:79:3F:5F:3C:9B:E2:CE Authority key identifier: 65:01:2A:F0:57:10:86:B9:EA:B3:03:46:F6:24:B6:31:2A:55:1C:38 Certificate issuer: /CN=A9182047/serialNumber=65012AF0571086B9EAB30346F624B6312A551C38 Certificate serial: 0469 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZQEq8FcQhrnqswNG9iS2MSpVHDg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9182047/33ADB3E66E0011EC9A63BD6AC4F9AE02/ZQEq8FcQhrnqswNG9iS2MSpVHDg.mft Manifest number: 0459 Signing time: Fri 19 Sep 2025 00:37:22 +0000 Manifest this update: Fri 19 Sep 2025 00:37:22 +0000 Manifest next update: Fri 26 Sep 2025 00:37:22 +0000 Files and hashes: 1: ZQEq8FcQhrnqswNG9iS2MSpVHDg.crl (hash: Hxs99qV3X7VWiS0wjWE66Tn8mP83A19kqHTvTb3RtDg=) 2: AA9C9BB8C92C11EF86608311C4F9AE02.roa (hash: m0D1A61qLoA//vf/I6KyJ5ofH8LCEJEjAffkeen66nM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9182047/33ADB3E66E0011EC9A63BD6AC4F9AE02/ZQEq8FcQhrnqswNG9iS2MSpVHDg.crl rsync://rpki.apnic.net/member_repository/A9182047/33ADB3E66E0011EC9A63BD6AC4F9AE02/ZQEq8FcQhrnqswNG9iS2MSpVHDg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZQEq8FcQhrnqswNG9iS2MSpVHDg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Sep 2025 00:37:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1129 (0x469) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9182047, serialNumber=65012AF0571086B9EAB30346F624B6312A551C38 Validity Not Before: Sep 19 00:37:22 2025 GMT Not After : Sep 26 00:37:22 2025 GMT Subject: CN=68cca5c2-b348 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:93:60:42:7f:c1:2d:4f:57:86:31:fa:e2:91: e9:c1:47:af:1a:89:fe:95:aa:4c:dd:08:9e:c8:9b: b7:d0:6e:e7:2e:99:a7:3d:f7:3c:91:d3:45:15:79: 12:1a:58:f6:a0:9d:ec:04:82:b9:01:b1:82:04:7e: a4:ac:70:45:6b:e4:92:e2:53:42:75:ca:a1:4b:dd: fa:00:82:07:cc:17:64:d8:2d:81:69:c8:b0:86:46: 60:90:43:a8:05:8a:2f:bf:94:a9:c5:f0:54:d5:78: 8a:32:90:d4:08:e5:f1:24:b3:39:71:3d:aa:3c:2a: ce:b5:6d:9e:b1:e9:c1:cc:06:4a:32:3b:a0:17:27: fe:a5:df:b3:3a:8c:d3:cb:25:ee:93:66:d0:46:81: 0a:3a:50:fa:75:76:7a:15:7f:54:5d:98:4b:89:f4: f7:fe:f8:7c:2a:5d:8a:30:7b:ff:22:4d:64:4c:51: 98:f2:79:a4:8c:c0:bd:98:a0:7f:d0:ec:5e:2d:47: d4:28:2b:ca:8d:3f:09:6a:44:6a:ba:26:bf:e8:d8: 8a:a6:e6:9b:dc:ec:81:12:db:06:92:17:a0:dc:51: af:57:04:ed:04:7f:c7:0f:71:2a:e6:86:49:43:59: f2:b7:6b:45:be:b4:f5:13:8e:05:db:2c:58:2c:fa: 0a:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:F9:85:31:1D:23:6F:9D:F1:E4:AE:F5:C7:79:3F:5F:3C:9B:E2:CE X509v3 Authority Key Identifier: keyid:65:01:2A:F0:57:10:86:B9:EA:B3:03:46:F6:24:B6:31:2A:55:1C:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9182047/33ADB3E66E0011EC9A63BD6AC4F9AE02/ZQEq8FcQhrnqswNG9iS2MSpVHDg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZQEq8FcQhrnqswNG9iS2MSpVHDg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9182047/33ADB3E66E0011EC9A63BD6AC4F9AE02/ZQEq8FcQhrnqswNG9iS2MSpVHDg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 76:34:84:e0:46:b1:55:49:ce:c3:9a:b0:e7:c4:cd:b5:84:93: 14:3f:2a:38:eb:a7:92:2c:22:5e:a1:e1:56:e4:ae:07:d2:08: 34:b7:b2:11:11:dc:ce:93:2a:96:76:08:b2:32:2e:65:28:e9: 29:26:e5:17:e2:e2:46:ca:75:0c:e8:e3:a5:1c:53:e4:76:c0: 89:b5:e9:aa:e2:7d:cb:35:46:59:04:60:bd:db:90:db:79:4e: fd:89:57:18:82:2c:38:e6:83:da:64:54:eb:18:98:07:19:a0: 7c:5c:02:00:5b:5e:00:94:e3:6d:a2:10:e1:d9:7f:11:ce:28: 32:da:3f:6d:93:dc:0c:e7:61:5a:72:23:65:7d:62:88:a6:c2: b3:6a:5c:0a:f2:9e:7c:83:78:8e:f0:e3:f8:19:b6:61:ac:24: 53:24:ab:27:f7:b0:02:91:d9:81:9d:37:cd:0d:25:a1:79:1e: ec:36:67:2f:55:aa:76:b7:e5:e1:0f:c5:f6:c7:48:d1:25:24: 9d:e9:96:ff:3a:01:9c:5e:d2:e1:f0:6c:db:d9:a7:d3:3f:70: f8:63:06:d0:50:45:42:16:d3:2a:7e:80:cc:3e:2f:cb:64:15: 25:15:e9:3f:e3:a9:51:d3:1c:4a:83:0a:d2:25:90:3c:b8:d6: 13:49:17:5e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBGkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODIwNDcxMTAvBgNVBAUTKDY1MDEyQUYwNTcxMDg2QjlFQUIzMDM0NkY2MjRCNjMx MkE1NTFDMzgwHhcNMjUwOTE5MDAzNzIyWhcNMjUwOTI2MDAzNzIyWjAYMRYwFAYD VQQDEw02OGNjYTVjMi1iMzQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnZNgQn/BLU9XhjH64pHpwUevGon+lapM3QieyJu30G7nLpmnPfc8kdNFFXkS Glj2oJ3sBIK5AbGCBH6krHBFa+SS4lNCdcqhS936AIIHzBdk2C2BaciwhkZgkEOo BYovv5SpxfBU1XiKMpDUCOXxJLM5cT2qPCrOtW2esenBzAZKMjugFyf+pd+zOozT yyXuk2bQRoEKOlD6dXZ6FX9UXZhLifT3/vh8Kl2KMHv/Ik1kTFGY8nmkjMC9mKB/ 0OxeLUfUKCvKjT8JakRquia/6NiKpuab3OyBEtsGkheg3FGvVwTtBH/HD3Eq5oZJ Q1nyt2tFvrT1E44F2yxYLPoKxwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA75hTEd I2+d8eSu9cd5P188m+LOMB8GA1UdIwQYMBaAFGUBKvBXEIa56rMDRvYktjEqVRw4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MjA0Ny8zM0FEQjNFNjZF MDAxMUVDOUE2M0JENkFDNEY5QUUwMi9aUUVxOEZjUWhybnFzd05HOWlTMk1TcFZI RGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pRRXE4RmNRaHJucXN3Tkc5aVMyTVNwVkhEZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MjA0Ny8zM0FEQjNFNjZFMDAxMUVDOUE2M0JENkFDNEY5QUUwMi9aUUVxOEZjUWhy bnFzd05HOWlTMk1TcFZIRGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB2NITgRrFVSc7DmrDnxM21hJMUPyo466eSLCJeoeFW5K4H0gg0t7IR EdzOkyqWdgiyMi5lKOkpJuUX4uJGynUM6OOlHFPkdsCJtemq4n3LNUZZBGC925Db eU79iVcYgiw45oPaZFTrGJgHGaB8XAIAW14AlONtohDh2X8Rzigy2j9tk9wM52Fa ciNlfWKIpsKzalwK8p58g3iO8OP4GbZhrCRTJKsn97ACkdmBnTfNDSWheR7sNmcv Vap2t+XhD8X2x0jRJSSd6Zb/OgGcXtLh8Gzb2afTP3D4YwbQUEVCFtMqfoDMPi/L ZBUlFek/46lR0xxKgwrSJZA8uNYTSRde -----END CERTIFICATE-----Generated at Fri Sep 19 09:26:15 2025 by rpki-client