$ rpki-client -vvf rpki.apnic.net/member_repository/A91D462A/4CBD3F8450D511E79313AE12C4F9AE02/z3Ess4nuhNoZypgd5jD1Cf9EzUU.mft File: z3Ess4nuhNoZypgd5jD1Cf9EzUU.mft (raw, json) Hash identifier: T+wY3oG9/ZscXUrqBg24+QjJA/Mr+eczY6jOY7nolJg= Subject key identifier: A7:13:58:34:5A:20:FC:D4:B9:4D:8E:8B:EE:A2:0A:9F:89:0B:42:FE Authority key identifier: CF:71:2C:B3:89:EE:84:DA:19:CA:98:1D:E6:30:F5:09:FF:44:CD:45 Certificate issuer: /CN=A91D462A/serialNumber=CF712CB389EE84DA19CA981DE630F509FF44CD45 Certificate serial: 1A83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z3Ess4nuhNoZypgd5jD1Cf9EzUU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D462A/4CBD3F8450D511E79313AE12C4F9AE02/z3Ess4nuhNoZypgd5jD1Cf9EzUU.mft Manifest number: 1A67 Signing time: Mon 20 Oct 2025 16:39:53 +0000 Manifest this update: Mon 20 Oct 2025 16:39:53 +0000 Manifest next update: Mon 27 Oct 2025 16:39:53 +0000 Files and hashes: 1: z3Ess4nuhNoZypgd5jD1Cf9EzUU.crl (hash: YpkTgzVGiQu7Oaj1cr02AKzGjB0aTbgQD4bk/8O1064=) 2: 84559BB01D4611EDBB06705BC4F9AE02.roa (hash: nliRTAkVAtJ8FfxKEHQS9HqVovT0tZ32fPM48Sk/l8k=) 3: F39D90EE561B11EFB51A9149C4F9AE02.roa (hash: EijUWJlocJ1+GHXxh5XIDZa+yD2/CG2e199ekLmtdEY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D462A/4CBD3F8450D511E79313AE12C4F9AE02/z3Ess4nuhNoZypgd5jD1Cf9EzUU.crl rsync://rpki.apnic.net/member_repository/A91D462A/4CBD3F8450D511E79313AE12C4F9AE02/z3Ess4nuhNoZypgd5jD1Cf9EzUU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z3Ess4nuhNoZypgd5jD1Cf9EzUU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Oct 2025 16:39:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6787 (0x1a83) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D462A, serialNumber=CF712CB389EE84DA19CA981DE630F509FF44CD45 Validity Not Before: Oct 20 16:39:53 2025 GMT Not After : Oct 27 16:39:53 2025 GMT Subject: CN=68f665d9-7082 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:d4:e5:ff:54:1b:42:20:fa:e0:fc:45:30:c9: 14:38:6a:84:c0:32:18:35:18:7b:42:21:bb:fd:ea: a9:22:9f:fa:38:52:87:2b:b9:24:3b:61:ce:cc:5c: 69:7b:0e:90:12:af:5f:e4:25:14:b9:ae:0e:5b:27: 7d:d5:22:a1:29:5d:d3:bb:70:c8:31:4e:70:97:79: 6f:99:d2:ef:84:5f:67:30:a0:70:99:e3:87:4a:d8: 6b:88:af:ad:f1:25:72:0b:97:59:74:d0:08:d6:b6: 18:f7:0f:7e:bb:41:50:9b:df:d4:a4:99:4a:0a:88: f0:b6:74:bc:cf:7e:9e:a6:09:15:73:57:33:73:cf: f6:ba:ec:6c:72:ae:7e:c2:c6:3d:1d:58:2a:29:04: 4d:ed:fa:29:a6:c5:8b:57:2f:04:79:a0:e1:80:7e: f7:69:ab:85:88:f7:1e:f0:90:d9:e8:f2:a0:84:be: 19:d4:dd:de:f2:b5:e3:b5:10:a7:b1:94:d9:6a:1e: e6:f3:52:41:91:0a:f3:5f:dd:dc:39:d9:ec:ee:5b: 28:42:ef:ea:58:f9:8a:4c:00:e4:00:76:92:67:28: 1f:98:6f:a5:dc:fc:e5:f8:a8:ca:06:a1:8c:62:6a: 6c:12:35:3d:ea:29:2f:f9:2f:db:b2:f9:e9:cc:bf: df:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:13:58:34:5A:20:FC:D4:B9:4D:8E:8B:EE:A2:0A:9F:89:0B:42:FE X509v3 Authority Key Identifier: keyid:CF:71:2C:B3:89:EE:84:DA:19:CA:98:1D:E6:30:F5:09:FF:44:CD:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D462A/4CBD3F8450D511E79313AE12C4F9AE02/z3Ess4nuhNoZypgd5jD1Cf9EzUU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z3Ess4nuhNoZypgd5jD1Cf9EzUU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D462A/4CBD3F8450D511E79313AE12C4F9AE02/z3Ess4nuhNoZypgd5jD1Cf9EzUU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b2:b4:ac:45:34:1e:1c:dd:ab:5f:55:d0:62:4c:bc:05:ab:d7: d1:3d:e4:ff:9d:f1:a3:fd:27:b4:b4:29:0a:25:80:dd:21:7b: e0:31:0d:16:3c:5b:bb:f7:19:93:5a:0a:17:60:1e:24:81:a6: 12:73:b5:b8:51:72:12:f4:42:a8:64:b6:d3:1d:47:3f:b8:45: fb:c0:83:7b:0d:32:2b:31:cc:0b:05:51:f7:5e:61:fa:f5:a4: da:4c:b5:16:3b:30:26:8d:f1:b4:46:d0:95:f7:83:ed:33:e2: 6f:45:d3:59:c0:44:d9:12:b0:b8:4e:e2:cd:ea:9e:72:c8:a0: 04:76:51:28:0f:13:9a:a5:de:c8:18:c1:ad:e6:f5:14:e3:d0: e0:df:5f:b7:20:d6:ac:de:20:cc:8f:53:86:8f:2c:fa:c6:71: 03:28:11:d0:8a:f3:22:15:96:75:55:12:c8:ae:8a:ec:1a:e5: 50:43:39:2e:84:65:0a:fa:c0:2e:ef:ce:02:37:cf:05:4a:7b: bf:90:5d:a9:a5:34:80:0c:0e:d3:a9:af:61:a6:4d:a5:f4:2b: 1c:7d:16:f9:5a:b1:96:1a:af:29:5c:f2:81:26:fb:17:03:4f: e0:3b:25:bc:bd:4c:6d:00:17:53:89:fb:29:0d:d9:d3:b8:57: 1d:84:8f:75 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGoMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDQ2MkExMTAvBgNVBAUTKENGNzEyQ0IzODlFRTg0REExOUNBOTgxREU2MzBGNTA5 RkY0NENENDUwHhcNMjUxMDIwMTYzOTUzWhcNMjUxMDI3MTYzOTUzWjAYMRYwFAYD VQQDEw02OGY2NjVkOS03MDgyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArtTl/1QbQiD64PxFMMkUOGqEwDIYNRh7QiG7/eqpIp/6OFKHK7kkO2HOzFxp ew6QEq9f5CUUua4OWyd91SKhKV3Tu3DIMU5wl3lvmdLvhF9nMKBwmeOHSthriK+t 8SVyC5dZdNAI1rYY9w9+u0FQm9/UpJlKCojwtnS8z36epgkVc1czc8/2uuxscq5+ wsY9HVgqKQRN7foppsWLVy8EeaDhgH73aauFiPce8JDZ6PKghL4Z1N3e8rXjtRCn sZTZah7m81JBkQrzX93cOdns7lsoQu/qWPmKTADkAHaSZygfmG+l3Pzl+KjKBqGM YmpsEjU96ikv+S/bsvnpzL/fPwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKcTWDRa IPzUuU2Oi+6iCp+JC0L+MB8GA1UdIwQYMBaAFM9xLLOJ7oTaGcqYHeYw9Qn/RM1F MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENDYyQS80Q0JEM0Y4NDUw RDUxMUU3OTMxM0FFMTJDNEY5QUUwMi96M0VzczRudWhOb1p5cGdkNWpEMUNmOUV6 VVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ozRXNzNG51aE5vWnlwZ2Q1akQxQ2Y5RXpVVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NDYyQS80Q0JEM0Y4NDUwRDUxMUU3OTMxM0FFMTJDNEY5QUUwMi96M0VzczRudWhO b1p5cGdkNWpEMUNmOUV6VVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCytKxFNB4c3atfVdBiTLwFq9fRPeT/nfGj/Se0tCkKJYDdIXvgMQ0W PFu79xmTWgoXYB4kgaYSc7W4UXIS9EKoZLbTHUc/uEX7wIN7DTIrMcwLBVH3XmH6 9aTaTLUWOzAmjfG0RtCV94PtM+JvRdNZwETZErC4TuLN6p5yyKAEdlEoDxOapd7I GMGt5vUU49Dg31+3INas3iDMj1OGjyz6xnEDKBHQivMiFZZ1VRLIrorsGuVQQzku hGUK+sAu784CN88FSnu/kF2ppTSADA7Tqa9hpk2l9CscfRb5WrGWGq8pXPKBJvsX A0/gOyW8vUxtABdTifspDdnTuFcdhI91 -----END CERTIFICATE-----Generated at Wed Oct 22 12:12:46 2025 by rpki-client