$ rpki-client -vvf rpki.apnic.net/member_repository/A9129D4A/248103A4AC9611E6A561A315C4F9AE02/ZGscQagf9-WCtezcHO9UzmEVJWM.mft File: ZGscQagf9-WCtezcHO9UzmEVJWM.mft (raw, json) Hash identifier: A2gqPOQNcaqIACXfkKFQa2uoqG3tfrME6FzXjOmpnq4= Subject key identifier: A1:DB:5D:20:93:1C:35:B5:D1:11:E2:7F:6F:91:BE:84:47:95:88:F6 Authority key identifier: 64:6B:1C:41:A8:1F:F7:E5:82:B5:EC:DC:1C:EF:54:CE:61:15:25:63 Certificate issuer: /CN=A9129D4A/serialNumber=646B1C41A81FF7E582B5ECDC1CEF54CE61152563 Certificate serial: 1DA5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZGscQagf9-WCtezcHO9UzmEVJWM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9129D4A/248103A4AC9611E6A561A315C4F9AE02/ZGscQagf9-WCtezcHO9UzmEVJWM.mft Manifest number: 1D9A Signing time: Sat 18 Oct 2025 16:25:34 +0000 Manifest this update: Sat 18 Oct 2025 16:25:33 +0000 Manifest next update: Sat 25 Oct 2025 16:25:33 +0000 Files and hashes: 1: ZGscQagf9-WCtezcHO9UzmEVJWM.crl (hash: 3Crlh7ORlyr56fCuXPKCmKxGcLkXvEusRkZYYw5vf8U=) 2: 810AF2B0AC9611E6A37EC415C4F9AE02.roa (hash: djmV6ni7hy6C8m5F1gtlxw3KFQjLB6LT9Z3a9xMILMs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9129D4A/248103A4AC9611E6A561A315C4F9AE02/ZGscQagf9-WCtezcHO9UzmEVJWM.crl rsync://rpki.apnic.net/member_repository/A9129D4A/248103A4AC9611E6A561A315C4F9AE02/ZGscQagf9-WCtezcHO9UzmEVJWM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZGscQagf9-WCtezcHO9UzmEVJWM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 16:25:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7589 (0x1da5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9129D4A, serialNumber=646B1C41A81FF7E582B5ECDC1CEF54CE61152563 Validity Not Before: Oct 18 16:25:33 2025 GMT Not After : Oct 25 16:25:33 2025 GMT Subject: CN=68f3bf7e-fb51 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:26:ce:03:32:f8:7c:c6:96:c9:3e:59:55:e9: cf:40:a0:52:70:ab:5f:fc:43:fd:98:b7:7a:cd:7d: f4:e4:d6:3d:50:99:70:02:de:dc:ae:85:a4:00:f3: 04:c5:1f:45:3d:1e:16:8d:fe:c3:67:4b:ca:80:5c: 33:12:cd:e2:38:11:2e:e1:d3:b8:0d:e5:32:15:ab: 31:81:fd:fb:da:f9:54:d7:56:70:4f:27:9b:c2:a8: 36:d8:7b:0f:c6:9f:cc:0f:78:bb:c7:04:85:47:10: b9:72:9d:94:64:18:ff:a9:16:b9:3f:83:99:e8:7d: fc:90:f2:40:75:fa:33:3f:a7:d0:74:38:87:07:c5: 16:2e:2c:4b:b7:e2:65:2c:1c:8b:e3:b9:f9:5c:1e: 7e:c1:65:f0:ee:17:fb:e1:02:a6:4b:f0:02:0c:8b: d3:6b:87:4f:8e:0b:be:3d:8a:20:02:cb:93:f3:c7: bd:97:40:74:23:ec:17:5e:77:89:ec:a1:d4:4f:d7: a1:db:33:44:2b:af:f7:f7:86:ab:64:85:80:8b:a3: ae:ec:7c:d6:14:4d:0c:fa:cb:6a:a5:98:e6:36:a0: 10:f2:d9:a7:70:8a:6f:c9:65:c7:c0:62:19:04:a6: ba:75:7c:7a:94:6f:e3:ce:65:be:43:2a:ee:1f:51: fa:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:DB:5D:20:93:1C:35:B5:D1:11:E2:7F:6F:91:BE:84:47:95:88:F6 X509v3 Authority Key Identifier: keyid:64:6B:1C:41:A8:1F:F7:E5:82:B5:EC:DC:1C:EF:54:CE:61:15:25:63 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9129D4A/248103A4AC9611E6A561A315C4F9AE02/ZGscQagf9-WCtezcHO9UzmEVJWM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZGscQagf9-WCtezcHO9UzmEVJWM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9129D4A/248103A4AC9611E6A561A315C4F9AE02/ZGscQagf9-WCtezcHO9UzmEVJWM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8f:dd:95:b2:bb:ba:6c:0b:8b:61:c5:49:99:75:c8:b3:27:54: f0:7e:4b:7c:24:5e:bc:8a:fe:3d:99:80:4f:04:33:79:b8:e7: f7:9c:28:ca:a6:f8:88:bb:12:8e:5a:47:99:2c:8c:bc:33:57: 02:1e:67:da:8e:4c:22:43:b5:af:a6:c1:f9:d5:b3:4c:3e:f7: fe:23:8b:62:40:d1:bb:33:a5:0c:48:2a:b2:c9:c0:0a:5a:35: 4c:81:79:6e:8e:b9:d1:69:6e:69:89:3e:a8:cf:f7:98:2f:09: 2c:55:26:b1:76:00:bd:94:e3:55:72:6d:30:10:59:21:11:16: 4b:05:02:46:79:8c:9e:b5:fb:50:67:c0:9b:6d:0e:64:96:65: 8f:e6:30:32:17:a8:25:c8:4f:b6:33:5d:1a:ff:1a:9d:da:7d: b8:b2:b2:aa:69:5c:e5:e1:00:ca:d6:19:13:1f:c6:5b:a3:a3: eb:8c:d8:6e:fd:e5:d3:3b:73:26:e5:4b:f2:73:12:5a:6f:07: 3f:b8:bb:9b:d3:f5:4e:bb:df:18:0e:77:b8:16:7c:b1:9a:b3: c6:1f:62:9b:54:25:fa:eb:54:f7:da:5e:20:c6:3d:8f:bc:fc: 4f:ef:c0:69:74:5a:01:58:67:a0:8a:70:07:ca:f1:2a:4c:30: d8:09:e8:7e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHaUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjlENEExMTAvBgNVBAUTKDY0NkIxQzQxQTgxRkY3RTU4MkI1RUNEQzFDRUY1NENF NjExNTI1NjMwHhcNMjUxMDE4MTYyNTMzWhcNMjUxMDI1MTYyNTMzWjAYMRYwFAYD VQQDEw02OGYzYmY3ZS1mYjUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxybOAzL4fMaWyT5ZVenPQKBScKtf/EP9mLd6zX305NY9UJlwAt7croWkAPME xR9FPR4Wjf7DZ0vKgFwzEs3iOBEu4dO4DeUyFasxgf372vlU11ZwTyebwqg22HsP xp/MD3i7xwSFRxC5cp2UZBj/qRa5P4OZ6H38kPJAdfozP6fQdDiHB8UWLixLt+Jl LByL47n5XB5+wWXw7hf74QKmS/ACDIvTa4dPjgu+PYogAsuT88e9l0B0I+wXXneJ 7KHUT9eh2zNEK6/394arZIWAi6Ou7HzWFE0M+stqpZjmNqAQ8tmncIpvyWXHwGIZ BKa6dXx6lG/jzmW+QyruH1H6JwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKHbXSCT HDW10RHif2+RvoRHlYj2MB8GA1UdIwQYMBaAFGRrHEGoH/flgrXs3BzvVM5hFSVj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOUQ0QS8yNDgxMDNBNEFD OTYxMUU2QTU2MUEzMTVDNEY5QUUwMi9aR3NjUWFnZjktV0N0ZXpjSE85VXptRVZK V00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pHc2NRYWdmOS1XQ3RlemNITzlVem1FVkpXTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy OUQ0QS8yNDgxMDNBNEFDOTYxMUU2QTU2MUEzMTVDNEY5QUUwMi9aR3NjUWFnZjkt V0N0ZXpjSE85VXptRVZKV00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCP3ZWyu7psC4thxUmZdcizJ1Twfkt8JF68iv49mYBPBDN5uOf3nCjK pviIuxKOWkeZLIy8M1cCHmfajkwiQ7WvpsH51bNMPvf+I4tiQNG7M6UMSCqyycAK WjVMgXlujrnRaW5piT6oz/eYLwksVSaxdgC9lONVcm0wEFkhERZLBQJGeYyetftQ Z8CbbQ5klmWP5jAyF6glyE+2M10a/xqd2n24srKqaVzl4QDK1hkTH8Zbo6PrjNhu /eXTO3Mm5UvycxJabwc/uLub0/VOu98YDne4FnyxmrPGH2KbVCX661T32l4gxj2P vPxP78BpdFoBWGeginAHyvEqTDDYCeh+ -----END CERTIFICATE-----Generated at Mon Oct 20 11:32:36 2025 by rpki-client