$ rpki-client -vvf rpki.apnic.net/member_repository/A9111A27/662518BE6E3411EA841D426EC4F9AE02/zPWB9MM8pEQeGAfjlsXv51-oLdA.mft File: zPWB9MM8pEQeGAfjlsXv51-oLdA.mft (raw, json) Hash identifier: 6a48dBk/z3ZgHy8CKQV5P+DqNQ05vcEm2wmK8nqj9IQ= Subject key identifier: 3E:D5:F0:A3:C1:DF:56:9C:D3:37:F5:94:06:FC:F7:A4:B2:6A:9D:60 Authority key identifier: CC:F5:81:F4:C3:3C:A4:44:1E:18:07:E3:96:C5:EF:E7:5F:A8:2D:D0 Certificate issuer: /CN=A9111A27/serialNumber=CCF581F4C33CA4441E1807E396C5EFE75FA82DD0 Certificate serial: 0A83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zPWB9MM8pEQeGAfjlsXv51-oLdA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9111A27/662518BE6E3411EA841D426EC4F9AE02/zPWB9MM8pEQeGAfjlsXv51-oLdA.mft Manifest number: 0A78 Signing time: Mon 20 Oct 2025 20:23:45 +0000 Manifest this update: Mon 20 Oct 2025 20:23:44 +0000 Manifest next update: Mon 27 Oct 2025 20:23:44 +0000 Files and hashes: 1: zPWB9MM8pEQeGAfjlsXv51-oLdA.crl (hash: nNtvV+YjsnDU4w88Doe0Vvxe6TeT8oKjYZ1uQAMEK6w=) 2: EECBCEBE6E3511EABDE26D73C4F9AE02.roa (hash: tiW51zPCEni34tefKfGb0te4DWKoSNtDHrcuOGks1io=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9111A27/662518BE6E3411EA841D426EC4F9AE02/zPWB9MM8pEQeGAfjlsXv51-oLdA.crl rsync://rpki.apnic.net/member_repository/A9111A27/662518BE6E3411EA841D426EC4F9AE02/zPWB9MM8pEQeGAfjlsXv51-oLdA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zPWB9MM8pEQeGAfjlsXv51-oLdA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Oct 2025 20:23:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2691 (0xa83) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9111A27, serialNumber=CCF581F4C33CA4441E1807E396C5EFE75FA82DD0 Validity Not Before: Oct 20 20:23:44 2025 GMT Not After : Oct 27 20:23:44 2025 GMT Subject: CN=68f69a50-26e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:4e:ea:11:85:f8:1b:4a:a9:ce:3a:ab:7b:00: 81:c5:cb:71:30:8b:82:ea:66:b0:63:08:58:46:20: 4b:8e:5b:76:f1:39:b3:8e:1c:bf:2a:ef:c0:b7:c1: 03:c3:81:56:b2:be:24:17:ce:47:17:3a:ba:01:e2: 36:4f:34:92:0d:50:73:a7:3a:5f:20:b5:01:45:56: a8:fb:20:98:93:f0:cc:90:84:c4:68:21:51:37:d5: 10:05:6c:33:19:de:69:52:08:b2:de:cc:6d:60:18: 4f:59:4f:04:81:29:a2:1e:64:bb:ba:c2:b6:f5:fe: 73:25:14:22:cc:82:ed:c6:d2:f2:5a:17:77:e3:29: 77:ab:d1:3e:ce:de:1e:d2:e9:2f:10:db:76:97:cc: 77:77:34:af:27:62:fc:8d:0c:75:01:b8:a1:f5:e7: d5:82:ef:19:f9:53:c5:37:f7:68:cd:8f:6c:54:64: 40:48:8d:a2:57:4d:03:75:fc:e6:30:54:e9:b7:e9: 0b:4f:ca:bc:f6:92:58:e4:4d:59:64:95:d5:cd:b4: 7a:b3:35:e3:2d:17:c3:02:eb:7c:6d:94:8a:aa:a7: 7a:c4:6f:b9:d4:6c:8e:86:15:f2:5d:3a:cb:02:42: 30:12:ba:ed:7b:17:d5:69:27:7d:fa:3e:71:4e:05: 91:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:D5:F0:A3:C1:DF:56:9C:D3:37:F5:94:06:FC:F7:A4:B2:6A:9D:60 X509v3 Authority Key Identifier: keyid:CC:F5:81:F4:C3:3C:A4:44:1E:18:07:E3:96:C5:EF:E7:5F:A8:2D:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9111A27/662518BE6E3411EA841D426EC4F9AE02/zPWB9MM8pEQeGAfjlsXv51-oLdA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zPWB9MM8pEQeGAfjlsXv51-oLdA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9111A27/662518BE6E3411EA841D426EC4F9AE02/zPWB9MM8pEQeGAfjlsXv51-oLdA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0d:75:ba:8d:88:6e:e4:a5:04:ed:e5:ae:18:b9:0e:91:53:4a: 80:9c:38:77:f4:6b:ab:50:7f:88:01:9f:39:d0:e1:e0:c6:b6: 91:90:e5:3a:86:85:35:b6:02:03:51:1a:4b:ea:df:38:99:55: ee:b8:99:26:b6:98:fe:d4:05:3b:64:9b:4b:c2:79:60:c9:3a: 11:fc:9c:64:10:ce:72:63:01:93:c4:d5:1f:77:0f:b8:86:12: 1d:4f:2b:0a:f0:a9:a0:df:5a:d7:dc:fb:5d:dd:47:8f:8e:e2: 49:14:dd:0b:e1:af:8a:e0:21:26:b0:ac:00:e4:8e:9b:28:1a: c4:43:24:46:6b:c7:d1:8a:e3:cb:08:d3:af:7f:d3:08:e6:72: 25:65:73:04:53:c5:5e:52:d4:2b:93:b4:1a:6f:a1:56:6d:7c: 03:6e:d9:2c:9b:74:86:45:13:89:42:ef:6c:45:82:14:09:3c: 40:cb:12:cf:f9:3d:0b:a3:4f:c3:12:14:b4:25:55:05:89:4b: 1b:c0:7f:2c:f2:eb:25:12:db:d5:c1:24:c7:63:9f:e9:e0:8e: 86:f3:05:ce:b5:c7:06:c0:52:6b:a5:8d:61:29:b1:19:48:29: 63:75:db:fd:67:dc:ed:93:3e:d7:8c:7d:31:24:50:f2:8c:28: 25:0e:81:f2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCoMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTFBMjcxMTAvBgNVBAUTKENDRjU4MUY0QzMzQ0E0NDQxRTE4MDdFMzk2QzVFRkU3 NUZBODJERDAwHhcNMjUxMDIwMjAyMzQ0WhcNMjUxMDI3MjAyMzQ0WjAYMRYwFAYD VQQDEw02OGY2OWE1MC0yNmUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtE7qEYX4G0qpzjqrewCBxctxMIuC6mawYwhYRiBLjlt28Tmzjhy/Ku/At8ED w4FWsr4kF85HFzq6AeI2TzSSDVBzpzpfILUBRVao+yCYk/DMkITEaCFRN9UQBWwz Gd5pUgiy3sxtYBhPWU8EgSmiHmS7usK29f5zJRQizILtxtLyWhd34yl3q9E+zt4e 0ukvENt2l8x3dzSvJ2L8jQx1Abih9efVgu8Z+VPFN/dozY9sVGRASI2iV00Ddfzm MFTpt+kLT8q89pJY5E1ZZJXVzbR6szXjLRfDAut8bZSKqqd6xG+51GyOhhXyXTrL AkIwErrtexfVaSd9+j5xTgWRrwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD7V8KPB 31ac0zf1lAb896Syap1gMB8GA1UdIwQYMBaAFMz1gfTDPKREHhgH45bF7+dfqC3Q MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMUEyNy82NjI1MThCRTZF MzQxMUVBODQxRDQyNkVDNEY5QUUwMi96UFdCOU1NOHBFUWVHQWZqbHNYdjUxLW9M ZEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pQV0I5TU04cEVRZUdBZmpsc1h2NTEtb0xkQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MUEyNy82NjI1MThCRTZFMzQxMUVBODQxRDQyNkVDNEY5QUUwMi96UFdCOU1NOHBF UWVHQWZqbHNYdjUxLW9MZEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQANdbqNiG7kpQTt5a4YuQ6RU0qAnDh39GurUH+IAZ850OHgxraRkOU6 hoU1tgIDURpL6t84mVXuuJkmtpj+1AU7ZJtLwnlgyToR/JxkEM5yYwGTxNUfdw+4 hhIdTysK8Kmg31rX3Ptd3UePjuJJFN0L4a+K4CEmsKwA5I6bKBrEQyRGa8fRiuPL CNOvf9MI5nIlZXMEU8VeUtQrk7Qab6FWbXwDbtksm3SGRROJQu9sRYIUCTxAyxLP +T0Lo0/DEhS0JVUFiUsbwH8s8uslEtvVwSTHY5/p4I6G8wXOtccGwFJrpY1hKbEZ SCljddv9Z9ztkz7XjH0xJFDyjCglDoHy -----END CERTIFICATE-----Generated at Tue Oct 21 01:02:48 2025 by rpki-client