$ rpki-client -vvf rpki.apnic.net/member_repository/A91A12C4/F319EDC26C1711EFBDBFD50BC4F9AE02/z8CATaxP_3oipAThDphkpxHeGck.mft File: z8CATaxP_3oipAThDphkpxHeGck.mft (raw, json) Hash identifier: KmCHejbDuIcJRj39ZYHK9OzVnJhkLBpX948/GPWUEcU= Subject key identifier: F9:CD:A2:0F:5A:EA:BB:C7:91:B3:EF:E3:61:7F:9F:F8:CF:04:D6:57 Authority key identifier: CF:C0:80:4D:AC:4F:FF:7A:22:A4:04:E1:0E:98:64:A7:11:DE:19:C9 Certificate issuer: /CN=A91A12C4/serialNumber=CFC0804DAC4FFF7A22A404E10E9864A711DE19C9 Certificate serial: D4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/z8CATaxP_3oipAThDphkpxHeGck.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A12C4/F319EDC26C1711EFBDBFD50BC4F9AE02/z8CATaxP_3oipAThDphkpxHeGck.mft Manifest number: D2 Signing time: Fri 17 Oct 2025 08:55:50 +0000 Manifest this update: Fri 17 Oct 2025 08:55:49 +0000 Manifest next update: Fri 24 Oct 2025 08:55:49 +0000 Files and hashes: 1: z8CATaxP_3oipAThDphkpxHeGck.crl (hash: IWDCof61bBRmsp9v/alynm4juRgEQUNubgD8HiTO48w=) 2: BCA395126C1811EFAFBE6B0FC4F9AE02.roa (hash: xTh/XECRIgCR6mcMb4Sy7r1o1s9piU8w2MVo6gmyMfs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A12C4/F319EDC26C1711EFBDBFD50BC4F9AE02/z8CATaxP_3oipAThDphkpxHeGck.crl rsync://rpki.apnic.net/member_repository/A91A12C4/F319EDC26C1711EFBDBFD50BC4F9AE02/z8CATaxP_3oipAThDphkpxHeGck.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/z8CATaxP_3oipAThDphkpxHeGck.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Oct 2025 08:55:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 212 (0xd4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A12C4, serialNumber=CFC0804DAC4FFF7A22A404E10E9864A711DE19C9 Validity Not Before: Oct 17 08:55:49 2025 GMT Not After : Oct 24 08:55:49 2025 GMT Subject: CN=68f20495-d786 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:95:a5:0a:be:e8:3e:98:0d:0f:32:77:3e:ff: a2:9c:16:d2:81:e7:66:c8:19:f3:33:33:f1:9a:3d: 95:89:b8:45:f0:9a:1c:13:ae:d8:8d:ea:97:f8:d5: 45:d5:61:d2:f5:3d:37:14:8b:2c:6f:86:6d:62:a8: 0d:43:d3:1e:26:c7:6a:9c:4e:cd:58:27:87:71:fd: b9:b4:04:56:ec:ce:2c:ba:dd:c7:a2:06:48:f8:53: f6:89:67:e1:2f:32:6e:bf:05:f0:fd:1d:5c:7d:73: f2:cf:8a:94:39:6d:56:e5:f0:2c:9c:a1:89:de:50: 49:05:00:8f:e0:95:ad:1b:49:d1:e2:48:14:c3:3a: de:85:4b:57:a7:ac:5b:ce:03:54:b1:9a:4c:a1:b5: d0:8d:d5:1d:98:b4:cc:a6:ad:5b:9a:fb:6a:51:3c: 75:6a:ef:95:b6:41:88:a5:52:1d:93:5f:56:b0:ef: 7b:c9:7a:6f:d9:82:9f:b0:76:36:b8:a2:e2:7d:d9: 36:bd:2e:52:67:44:f1:76:84:90:7f:d6:b2:34:4f: b9:88:ff:08:3c:36:5a:3b:eb:17:ee:97:3e:bb:e7: c8:80:c0:78:09:04:ae:a5:35:f7:56:21:bb:93:6a: fd:3c:9a:a8:30:0c:4a:c2:1c:89:1d:bd:e9:fe:a8: 5f:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:CD:A2:0F:5A:EA:BB:C7:91:B3:EF:E3:61:7F:9F:F8:CF:04:D6:57 X509v3 Authority Key Identifier: keyid:CF:C0:80:4D:AC:4F:FF:7A:22:A4:04:E1:0E:98:64:A7:11:DE:19:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A12C4/F319EDC26C1711EFBDBFD50BC4F9AE02/z8CATaxP_3oipAThDphkpxHeGck.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/z8CATaxP_3oipAThDphkpxHeGck.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A12C4/F319EDC26C1711EFBDBFD50BC4F9AE02/z8CATaxP_3oipAThDphkpxHeGck.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 03:c0:0b:85:e2:02:de:9c:8d:47:f3:ea:e7:c9:6c:19:9c:8b: be:17:7e:ae:9c:06:ed:48:8c:0a:3a:d2:28:42:c0:9a:89:eb: 76:f0:e6:6a:87:71:60:94:84:48:b9:c2:5c:bf:f3:37:a7:8b: 74:68:61:bf:5f:27:0c:bd:cf:4b:70:41:d3:a6:22:4b:9d:3e: c0:92:f2:f4:0f:f6:44:65:06:a2:79:4d:05:18:68:7d:1b:07: b2:57:a1:35:5c:5b:78:11:54:26:5e:40:0a:e6:26:1b:70:c4: e2:cb:d0:fb:d5:69:3a:ca:4c:e0:76:e7:12:81:59:bb:94:70: d2:bd:41:d1:6a:83:ea:74:3b:11:2f:0e:09:f1:fe:f6:72:e4: 81:3d:7b:1e:9c:98:2d:8b:ab:fb:23:b2:bd:23:5c:52:fc:84: 5f:de:96:1c:09:14:79:fe:9d:46:36:99:a4:82:54:ff:0d:ce: 48:b5:87:cb:d0:3e:11:3c:7d:b1:16:a8:c0:66:ab:75:6e:16: 5f:aa:c0:ce:54:e9:1f:11:85:f2:37:32:df:27:f1:1e:92:84: af:aa:53:36:dc:ed:b2:7a:fb:54:4a:22:4b:f1:11:2f:7d:ef: 7a:ac:7c:0a:74:59:52:25:6f:c4:bf:6d:c2:9b:73:48:a6:bf: f7:78:27:c5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTEyQzQxMTAvBgNVBAUTKENGQzA4MDREQUM0RkZGN0EyMkE0MDRFMTBFOTg2NEE3 MTFERTE5QzkwHhcNMjUxMDE3MDg1NTQ5WhcNMjUxMDI0MDg1NTQ5WjAYMRYwFAYD VQQDEw02OGYyMDQ5NS1kNzg2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt5WlCr7oPpgNDzJ3Pv+inBbSgedmyBnzMzPxmj2VibhF8JocE67YjeqX+NVF 1WHS9T03FIssb4ZtYqgNQ9MeJsdqnE7NWCeHcf25tARW7M4sut3HogZI+FP2iWfh LzJuvwXw/R1cfXPyz4qUOW1W5fAsnKGJ3lBJBQCP4JWtG0nR4kgUwzrehUtXp6xb zgNUsZpMobXQjdUdmLTMpq1bmvtqUTx1au+VtkGIpVIdk19WsO97yXpv2YKfsHY2 uKLifdk2vS5SZ0TxdoSQf9ayNE+5iP8IPDZaO+sX7pc+u+fIgMB4CQSupTX3ViG7 k2r9PJqoMAxKwhyJHb3p/qhfpQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPnNog9a 6rvHkbPv42F/n/jPBNZXMB8GA1UdIwQYMBaAFM/AgE2sT/96IqQE4Q6YZKcR3hnJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMTJDNC9GMzE5RURDMjZD MTcxMUVGQkRCRkQ1MEJDNEY5QUUwMi96OENBVGF4UF8zb2lwQVRoRHBoa3B4SGVH Y2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3o4Q0FUYXhQXzNvaXBBVGhEcGhrcHhIZUdjay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MTJDNC9GMzE5RURDMjZDMTcxMUVGQkRCRkQ1MEJDNEY5QUUwMi96OENBVGF4UF8z b2lwQVRoRHBoa3B4SGVHY2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQADwAuF4gLenI1H8+rnyWwZnIu+F36unAbtSIwKOtIoQsCaiet28OZq h3FglIRIucJcv/M3p4t0aGG/XycMvc9LcEHTpiJLnT7AkvL0D/ZEZQaieU0FGGh9 GweyV6E1XFt4EVQmXkAK5iYbcMTiy9D71Wk6ykzgducSgVm7lHDSvUHRaoPqdDsR Lw4J8f72cuSBPXsenJgti6v7I7K9I1xS/IRf3pYcCRR5/p1GNpmkglT/Dc5ItYfL 0D4RPH2xFqjAZqt1bhZfqsDOVOkfEYXyNzLfJ/EekoSvqlM23O2yevtUSiJL8REv fe96rHwKdFlSJW/Ev23Cm3NIpr/3eCfF -----END CERTIFICATE-----Generated at Sat Oct 18 23:32:27 2025 by rpki-client