$ rpki-client -vvf rpki.apnic.net/member_repository/A9182047/33ADB3E66E0011EC9A63BD6AC4F9AE02/ZQEq8FcQhrnqswNG9iS2MSpVHDg.mft File: ZQEq8FcQhrnqswNG9iS2MSpVHDg.mft (raw, json) Hash identifier: wwfgygXr6KTn0os4fQjo9/NcjCW+d97x7GKUCTWA+yk= Subject key identifier: B6:81:92:EA:84:D4:B2:8B:BD:B4:06:47:7C:F6:15:B6:74:32:4C:76 Authority key identifier: 65:01:2A:F0:57:10:86:B9:EA:B3:03:46:F6:24:B6:31:2A:55:1C:38 Certificate issuer: /CN=A9182047/serialNumber=65012AF0571086B9EAB30346F624B6312A551C38 Certificate serial: 0480 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZQEq8FcQhrnqswNG9iS2MSpVHDg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9182047/33ADB3E66E0011EC9A63BD6AC4F9AE02/ZQEq8FcQhrnqswNG9iS2MSpVHDg.mft Manifest number: 0470 Signing time: Wed 05 Nov 2025 00:16:00 +0000 Manifest this update: Wed 05 Nov 2025 00:15:59 +0000 Manifest next update: Wed 12 Nov 2025 00:15:59 +0000 Files and hashes: 1: ZQEq8FcQhrnqswNG9iS2MSpVHDg.crl (hash: EbmdD8Rw0gzEFsTa42xjAw/RP3GJCUCc0hVF3LbBTzg=) 2: AA9C9BB8C92C11EF86608311C4F9AE02.roa (hash: m0D1A61qLoA//vf/I6KyJ5ofH8LCEJEjAffkeen66nM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9182047/33ADB3E66E0011EC9A63BD6AC4F9AE02/ZQEq8FcQhrnqswNG9iS2MSpVHDg.crl rsync://rpki.apnic.net/member_repository/A9182047/33ADB3E66E0011EC9A63BD6AC4F9AE02/ZQEq8FcQhrnqswNG9iS2MSpVHDg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZQEq8FcQhrnqswNG9iS2MSpVHDg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 00:15:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1152 (0x480) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9182047, serialNumber=65012AF0571086B9EAB30346F624B6312A551C38 Validity Not Before: Nov 5 00:15:59 2025 GMT Not After : Nov 12 00:15:59 2025 GMT Subject: CN=690a9740-3826 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:e2:27:06:9f:4b:2c:20:00:1a:02:7d:e8:c2: 1e:c6:29:24:41:ac:b1:b0:09:36:87:8f:db:84:68: b6:b3:71:ec:31:b9:0a:06:f2:cc:59:91:fa:1f:c9: bc:83:ab:41:d3:78:a1:e7:81:b8:56:0e:28:e9:f3: 89:ce:6e:49:e5:5b:1a:0b:47:d4:f2:2c:22:0e:94: a1:b7:38:a6:fc:e8:98:11:f3:54:9a:b9:42:05:fe: b2:41:1d:24:f5:8f:15:30:bd:c6:e2:40:26:93:63: 2d:4d:2d:b9:34:26:73:fa:11:5e:75:b1:07:2d:da: d2:40:4c:60:ce:4c:1d:06:02:2e:a2:6e:31:81:70: ba:5d:91:f7:26:05:1d:ca:4e:11:d0:52:48:0b:52: aa:42:95:fc:cb:c2:ac:c4:ec:c3:93:e7:18:82:10: e3:4e:2e:0b:07:53:e3:53:4d:eb:0d:8a:96:21:c5: 7a:8b:2c:29:a6:fe:00:e3:e4:be:21:7e:14:d7:4e: 4a:5b:fd:b3:ce:af:b0:fc:5d:6e:80:1c:d8:e1:de: 76:3a:44:ef:07:69:ce:f4:88:83:a2:02:96:f1:ea: ec:90:47:89:3d:f0:02:b8:d6:c3:b7:9d:d1:bf:d3: b9:bf:97:32:0c:c1:91:db:9a:0d:37:8b:e0:04:db: 3e:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:81:92:EA:84:D4:B2:8B:BD:B4:06:47:7C:F6:15:B6:74:32:4C:76 X509v3 Authority Key Identifier: keyid:65:01:2A:F0:57:10:86:B9:EA:B3:03:46:F6:24:B6:31:2A:55:1C:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9182047/33ADB3E66E0011EC9A63BD6AC4F9AE02/ZQEq8FcQhrnqswNG9iS2MSpVHDg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZQEq8FcQhrnqswNG9iS2MSpVHDg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9182047/33ADB3E66E0011EC9A63BD6AC4F9AE02/ZQEq8FcQhrnqswNG9iS2MSpVHDg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 91:d7:87:d4:9e:41:94:49:15:b0:56:91:f3:9e:3c:cd:78:a6: ec:a7:3e:4d:81:44:29:86:93:22:44:1e:5a:0c:92:57:9c:f3: 7a:62:a8:48:91:df:63:5e:df:e4:6b:1d:36:5d:3b:31:f5:81: 8e:9c:2d:54:d4:71:de:41:90:46:0d:82:13:6e:b3:bc:28:17: 34:62:e8:06:ca:3b:d2:a6:cc:56:4b:6b:36:64:83:32:9c:ef: 4b:aa:08:8c:bb:3a:b6:dc:06:fd:8d:2b:b2:bf:ed:95:da:56: fa:f9:c5:94:6c:e5:48:0e:5f:cd:60:8f:91:c8:74:b5:1a:34: 7e:38:6e:a5:08:cc:c9:19:c9:c5:2a:39:27:3c:95:7d:de:64: 7f:ef:27:16:2d:c1:36:c7:75:06:f2:60:56:60:16:95:68:4c: 19:6f:63:6c:ba:73:22:a4:93:a8:6f:26:1c:9d:0d:e4:6c:5c: 9d:1b:6e:ff:31:96:83:44:ee:83:46:aa:8d:9a:7d:e8:2e:9f: 4e:86:f2:1d:4f:a2:cf:36:50:60:8c:1c:e2:81:fe:68:0e:e7: ff:0d:b6:29:07:c2:fc:b5:94:88:d5:d3:08:2f:26:fc:83:f8: 52:11:7b:ff:04:4f:ec:a9:ca:21:ea:c5:05:6d:24:20:72:5d: 8e:25:3c:3e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBIAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODIwNDcxMTAvBgNVBAUTKDY1MDEyQUYwNTcxMDg2QjlFQUIzMDM0NkY2MjRCNjMx MkE1NTFDMzgwHhcNMjUxMTA1MDAxNTU5WhcNMjUxMTEyMDAxNTU5WjAYMRYwFAYD VQQDEw02OTBhOTc0MC0zODI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnuInBp9LLCAAGgJ96MIexikkQayxsAk2h4/bhGi2s3HsMbkKBvLMWZH6H8m8 g6tB03ih54G4Vg4o6fOJzm5J5VsaC0fU8iwiDpShtzim/OiYEfNUmrlCBf6yQR0k 9Y8VML3G4kAmk2MtTS25NCZz+hFedbEHLdrSQExgzkwdBgIuom4xgXC6XZH3JgUd yk4R0FJIC1KqQpX8y8KsxOzDk+cYghDjTi4LB1PjU03rDYqWIcV6iywppv4A4+S+ IX4U105KW/2zzq+w/F1ugBzY4d52OkTvB2nO9IiDogKW8erskEeJPfACuNbDt53R v9O5v5cyDMGR25oNN4vgBNs+VQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLaBkuqE 1LKLvbQGR3z2FbZ0Mkx2MB8GA1UdIwQYMBaAFGUBKvBXEIa56rMDRvYktjEqVRw4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MjA0Ny8zM0FEQjNFNjZF MDAxMUVDOUE2M0JENkFDNEY5QUUwMi9aUUVxOEZjUWhybnFzd05HOWlTMk1TcFZI RGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pRRXE4RmNRaHJucXN3Tkc5aVMyTVNwVkhEZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MjA0Ny8zM0FEQjNFNjZFMDAxMUVDOUE2M0JENkFDNEY5QUUwMi9aUUVxOEZjUWhy bnFzd05HOWlTMk1TcFZIRGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCR14fUnkGUSRWwVpHznjzNeKbspz5NgUQphpMiRB5aDJJXnPN6YqhI kd9jXt/kax02XTsx9YGOnC1U1HHeQZBGDYITbrO8KBc0YugGyjvSpsxWS2s2ZIMy nO9LqgiMuzq23Ab9jSuyv+2V2lb6+cWUbOVIDl/NYI+RyHS1GjR+OG6lCMzJGcnF KjknPJV93mR/7ycWLcE2x3UG8mBWYBaVaEwZb2NsunMipJOobyYcnQ3kbFydG27/ MZaDRO6DRqqNmn3oLp9OhvIdT6LPNlBgjBzigf5oDuf/DbYpB8L8tZSI1dMILyb8 g/hSEXv/BE/sqcoh6sUFbSQgcl2OJTw+ -----END CERTIFICATE-----Generated at Wed Nov 5 19:32:38 2025 by rpki-client