$ rpki-client -vvf rpki.apnic.net/member_repository/A918F1C9/6A57AB8C7F9511EAB0ED8537C4F9AE02/3kzpYKOTCrTCJ_zo-FfAhBl_CNA.mft File: 3kzpYKOTCrTCJ_zo-FfAhBl_CNA.mft (raw, json) Hash identifier: PVJxEX06l173EvUVuqepIYfuo74O11ufIvOFHN1ZBAc= Subject key identifier: 94:43:11:9E:D9:D9:18:13:34:C1:F9:8F:24:CD:7A:0C:15:6D:3D:C9 Authority key identifier: DE:4C:E9:60:A3:93:0A:B4:C2:27:FC:E8:F8:57:C0:84:19:7F:08:D0 Certificate issuer: /CN=A918F1C9/serialNumber=DE4CE960A3930AB4C227FCE8F857C084197F08D0 Certificate serial: 8F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3kzpYKOTCrTCJ_zo-FfAhBl_CNA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918F1C9/6A57AB8C7F9511EAB0ED8537C4F9AE02/3kzpYKOTCrTCJ_zo-FfAhBl_CNA.mft Manifest number: 0AC9 Signing time: Sun 02 Nov 2025 19:44:19 +0000 Manifest this update: Sun 02 Nov 2025 19:44:18 +0000 Manifest next update: Sun 09 Nov 2025 19:44:18 +0000 Files and hashes: 1: 3kzpYKOTCrTCJ_zo-FfAhBl_CNA.crl (hash: iT5IWBU1c6plFRnJ+pcZMjFRQIDKUiWIU+Uxc3LCDfc=) 2: 93E4B52CE43E11EF91571D16C4F9AE02.roa (hash: bxEMXPw0Uf6AR6ksTo+EYnAV7IQpuoAnSjrI4XOmEWM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918F1C9/6A57AB8C7F9511EAB0ED8537C4F9AE02/3kzpYKOTCrTCJ_zo-FfAhBl_CNA.crl rsync://rpki.apnic.net/member_repository/A918F1C9/6A57AB8C7F9511EAB0ED8537C4F9AE02/3kzpYKOTCrTCJ_zo-FfAhBl_CNA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3kzpYKOTCrTCJ_zo-FfAhBl_CNA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 19:44:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 143 (0x8f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918F1C9, serialNumber=DE4CE960A3930AB4C227FCE8F857C084197F08D0 Validity Not Before: Nov 2 19:44:18 2025 GMT Not After : Nov 9 19:44:18 2025 GMT Subject: CN=6907b493-ba97 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:7b:c5:f7:ed:ec:e4:6a:60:2e:f0:c0:72:af: 28:75:b5:68:65:dd:89:b0:3f:56:ea:f8:91:1c:3b: 00:87:74:23:36:3f:76:87:e0:e9:85:62:52:20:d4: 57:48:67:29:5f:68:53:8c:ff:3a:34:9a:05:d1:74: 1c:e5:a0:72:a3:36:d6:c1:28:51:7b:1d:ab:28:2b: 2b:32:9d:d2:71:85:85:0d:d3:1e:d1:1d:f7:75:c3: 63:e6:a6:91:96:07:b8:85:e2:8d:cc:7e:7f:84:d5: fd:81:40:53:fd:bb:a1:24:04:e6:ce:16:0f:73:30: 7b:db:6b:5a:c5:e7:bc:0c:1e:99:c6:b2:55:4b:81: c3:e0:3b:51:7e:a2:f0:bb:ef:0e:9c:d7:bd:44:2e: 72:6f:47:aa:8d:24:f6:a2:74:d6:4e:16:c9:56:97: 0d:4b:6b:03:eb:f3:20:61:71:d8:dc:b8:04:51:62: 6d:35:5e:1a:19:fc:fd:58:26:86:7f:3d:81:96:b3: 6a:72:2b:ad:0a:e2:e8:a4:1f:c2:8c:3d:32:77:e5: 95:35:61:6a:75:c9:81:73:28:0d:62:87:5d:c5:00: d2:91:a5:1c:17:2f:b9:8e:01:e6:eb:85:3e:45:02: fd:2d:e7:e9:db:cb:5a:cd:79:21:26:2f:19:b2:6a: 07:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:43:11:9E:D9:D9:18:13:34:C1:F9:8F:24:CD:7A:0C:15:6D:3D:C9 X509v3 Authority Key Identifier: keyid:DE:4C:E9:60:A3:93:0A:B4:C2:27:FC:E8:F8:57:C0:84:19:7F:08:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918F1C9/6A57AB8C7F9511EAB0ED8537C4F9AE02/3kzpYKOTCrTCJ_zo-FfAhBl_CNA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3kzpYKOTCrTCJ_zo-FfAhBl_CNA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918F1C9/6A57AB8C7F9511EAB0ED8537C4F9AE02/3kzpYKOTCrTCJ_zo-FfAhBl_CNA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4d:82:55:6f:98:e2:e8:78:8b:1e:fb:29:92:2c:d7:8b:80:c9: 26:9b:0f:4b:45:b0:78:6f:52:4c:8b:23:6a:79:35:6e:84:d3: 09:6f:20:7c:d2:77:86:8c:f0:84:ec:b0:ce:ff:0d:b5:a4:e8: e4:90:02:08:69:b5:6d:e9:85:8d:54:2a:03:7f:ed:55:4f:db: b2:2b:94:1a:90:cf:33:f6:a5:2b:2d:5a:6a:05:03:4a:c7:51: 60:03:5b:f3:c5:3f:11:7f:aa:2d:37:da:eb:3c:42:d9:fa:83: aa:2f:31:0e:ba:9c:df:24:06:7b:73:35:37:d6:c4:21:88:91: 55:1a:9f:ba:36:08:97:22:9c:65:65:90:1a:59:15:2d:cd:49: 56:d6:91:16:bd:78:39:7d:9e:4e:a7:ea:24:a0:1a:05:f3:6b: 75:61:90:2f:3f:f5:6a:42:69:5a:80:7f:5c:26:5a:ba:2d:e6: 52:ca:14:40:e5:0d:2e:b8:a2:35:2d:e9:ce:fd:08:70:0d:cf: 8e:e8:c0:f6:82:ac:ff:da:91:c7:5d:6c:ba:32:21:f8:74:5a: d5:df:80:84:5e:8b:01:66:b6:3e:9c:a4:56:cb:0d:a3:b3:6f: 43:af:01:96:c1:1a:de:d4:26:b8:6c:25:0f:57:e0:97:24:d3: 0f:c1:26:2a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAI8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEYxQzkxMTAvBgNVBAUTKERFNENFOTYwQTM5MzBBQjRDMjI3RkNFOEY4NTdDMDg0 MTk3RjA4RDAwHhcNMjUxMTAyMTk0NDE4WhcNMjUxMTA5MTk0NDE4WjAYMRYwFAYD VQQDEw02OTA3YjQ5My1iYTk3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuXvF9+3s5GpgLvDAcq8odbVoZd2JsD9W6viRHDsAh3QjNj92h+DphWJSINRX SGcpX2hTjP86NJoF0XQc5aByozbWwShRex2rKCsrMp3ScYWFDdMe0R33dcNj5qaR lge4heKNzH5/hNX9gUBT/buhJATmzhYPczB722taxee8DB6ZxrJVS4HD4DtRfqLw u+8OnNe9RC5yb0eqjST2onTWThbJVpcNS2sD6/MgYXHY3LgEUWJtNV4aGfz9WCaG fz2BlrNqciutCuLopB/CjD0yd+WVNWFqdcmBcygNYoddxQDSkaUcFy+5jgHm64U+ RQL9Lefp28tazXkhJi8ZsmoHqwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJRDEZ7Z 2RgTNMH5jyTNegwVbT3JMB8GA1UdIwQYMBaAFN5M6WCjkwq0wif86PhXwIQZfwjQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RjFDOS82QTU3QUI4QzdG OTUxMUVBQjBFRDg1MzdDNEY5QUUwMi8za3pwWUtPVENyVENKX3pvLUZmQWhCbF9D TkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNrenBZS09UQ3JUQ0pfem8tRmZBaEJsX0NOQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RjFDOS82QTU3QUI4QzdGOTUxMUVBQjBFRDg1MzdDNEY5QUUwMi8za3pwWUtPVENy VENKX3pvLUZmQWhCbF9DTkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBNglVvmOLoeIse+ymSLNeLgMkmmw9LRbB4b1JMiyNqeTVuhNMJbyB8 0neGjPCE7LDO/w21pOjkkAIIabVt6YWNVCoDf+1VT9uyK5QakM8z9qUrLVpqBQNK x1FgA1vzxT8Rf6otN9rrPELZ+oOqLzEOupzfJAZ7czU31sQhiJFVGp+6NgiXIpxl ZZAaWRUtzUlW1pEWvXg5fZ5Op+okoBoF82t1YZAvP/VqQmlagH9cJlq6LeZSyhRA 5Q0uuKI1LenO/QhwDc+O6MD2gqz/2pHHXWy6MiH4dFrV34CEXosBZrY+nKRWyw2j s29DrwGWwRre1Ca4bCUPV+CXJNMPwSYq -----END CERTIFICATE-----Generated at Mon Nov 3 18:11:08 2025 by rpki-client