$ rpki-client -vvf rpki.apnic.net/member_repository/A9136C5E/3EA6A250B97011ED8918467CC4F9AE02/znA-TvnfLr44ZQpwSkoBnCpmQ1A.mft File: znA-TvnfLr44ZQpwSkoBnCpmQ1A.mft (raw, json) Hash identifier: UlEm7DuAQDAi4LgisTEriG9b+Muvlspp7BfY0Khti7Y= Subject key identifier: 8B:CE:27:41:38:88:33:87:9F:A6:27:ED:5D:47:AB:FC:11:F2:86:95 Authority key identifier: CE:70:3E:4E:F9:DF:2E:BE:38:65:0A:70:4A:4A:01:9C:2A:66:43:50 Certificate issuer: /CN=A9136C5E/serialNumber=CE703E4EF9DF2EBE38650A704A4A019C2A664350 Certificate serial: 01F2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/znA-TvnfLr44ZQpwSkoBnCpmQ1A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9136C5E/3EA6A250B97011ED8918467CC4F9AE02/znA-TvnfLr44ZQpwSkoBnCpmQ1A.mft Manifest number: 01EE Signing time: Sun 19 Oct 2025 04:55:51 +0000 Manifest this update: Sun 19 Oct 2025 04:55:51 +0000 Manifest next update: Sun 26 Oct 2025 04:55:51 +0000 Files and hashes: 1: znA-TvnfLr44ZQpwSkoBnCpmQ1A.crl (hash: MoC5+DreHLZGEXZHRBZCdDDi7PVd6nLuaeTT+4mU2og=) 2: 9BCEEFF4BC6911ED9B0FC554C4F9AE02.roa (hash: vkUKnag58zCpuCP8+f6HBj43+NKzxFLQMFl2RAEd1t8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9136C5E/3EA6A250B97011ED8918467CC4F9AE02/znA-TvnfLr44ZQpwSkoBnCpmQ1A.crl rsync://rpki.apnic.net/member_repository/A9136C5E/3EA6A250B97011ED8918467CC4F9AE02/znA-TvnfLr44ZQpwSkoBnCpmQ1A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/znA-TvnfLr44ZQpwSkoBnCpmQ1A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 04:55:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 498 (0x1f2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9136C5E, serialNumber=CE703E4EF9DF2EBE38650A704A4A019C2A664350 Validity Not Before: Oct 19 04:55:51 2025 GMT Not After : Oct 26 04:55:51 2025 GMT Subject: CN=68f46f57-90c9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:6f:f7:86:f7:89:e7:72:82:eb:a2:be:af:a5: ae:35:77:bd:24:d4:db:9e:78:ac:10:c2:4f:5b:65: 84:81:4e:24:76:8e:54:1f:ea:10:be:db:20:c9:7e: bf:77:72:10:72:e9:3c:22:77:03:58:94:66:9e:fd: 4e:e0:a4:da:4c:ba:87:77:e0:7c:a3:b8:94:7b:d4: ef:1f:84:26:54:51:a2:fb:b5:b4:db:40:84:2e:7f: 94:e1:86:8d:9a:4b:d0:2e:b9:b2:6f:90:a9:c2:b4: 86:63:43:05:d9:10:5a:e8:e1:84:0e:c8:d1:97:a1: 52:41:ae:d0:94:03:aa:c6:47:57:3a:6b:ea:d7:90: cb:bc:e6:eb:55:51:7d:90:02:46:a5:91:9f:7d:ae: 46:3e:41:1a:d1:ab:e0:31:93:1c:3b:00:fb:03:60: 2d:1a:da:25:39:88:e9:4a:81:70:9f:5b:53:ae:4a: 91:c2:a2:a2:ac:a2:6c:de:a7:1b:16:fc:da:6c:cf: 3b:c6:4e:a5:c4:30:98:a5:a7:15:92:d5:05:d4:c8: a2:24:d6:0c:5b:7e:56:81:d0:d1:5b:e5:65:c1:ed: 88:96:e2:8b:b0:cb:cc:da:38:41:8e:5f:19:c8:41: 9e:ff:67:88:0c:79:53:b2:73:8f:23:6e:ec:b8:71: f0:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:CE:27:41:38:88:33:87:9F:A6:27:ED:5D:47:AB:FC:11:F2:86:95 X509v3 Authority Key Identifier: keyid:CE:70:3E:4E:F9:DF:2E:BE:38:65:0A:70:4A:4A:01:9C:2A:66:43:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9136C5E/3EA6A250B97011ED8918467CC4F9AE02/znA-TvnfLr44ZQpwSkoBnCpmQ1A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/znA-TvnfLr44ZQpwSkoBnCpmQ1A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9136C5E/3EA6A250B97011ED8918467CC4F9AE02/znA-TvnfLr44ZQpwSkoBnCpmQ1A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4e:60:46:7f:87:fc:24:fe:fc:22:eb:bf:22:6d:aa:af:ad:c7: f1:5f:2a:f7:45:47:dd:24:5e:e8:59:c5:ef:4a:d9:b3:aa:6a: 0b:10:b0:c0:98:0c:b9:d4:da:e4:ec:3c:b7:10:1a:d4:67:62: 0f:10:ac:58:9b:18:f7:a1:3d:ab:c7:4e:73:a0:1e:0f:fc:2e: d9:c9:ca:06:ac:70:3f:d8:24:de:34:ac:bc:7d:e3:89:81:d5: 24:eb:63:50:da:07:67:1e:3b:5b:dd:6d:e1:dc:d0:4c:e2:7e: 2a:ce:b0:4e:d3:6b:b8:f9:16:ad:a9:8b:79:4f:56:fb:b2:b8: 35:f4:59:3a:f1:aa:f9:ed:54:eb:85:e2:69:d6:1e:46:8b:3e: 2f:2d:d4:91:63:fe:b8:a9:56:98:9f:a6:61:80:e8:b6:c3:d7: ef:20:b8:80:6b:e9:87:1f:58:2b:8f:b1:6a:41:c8:a5:da:63: f6:2d:15:43:42:a2:a0:2e:47:e7:41:89:1e:5d:50:04:2f:d8: bd:44:43:60:c4:92:0f:8c:be:ba:4c:16:04:17:44:62:bd:36: 83:17:31:fc:ff:6b:69:19:32:80:cb:0f:68:94:ff:49:be:88: c5:65:0e:8e:49:14:04:e0:63:08:44:a4:c3:bd:cf:c0:53:41: ef:e2:6d:08 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAfIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzZDNUUxMTAvBgNVBAUTKENFNzAzRTRFRjlERjJFQkUzODY1MEE3MDRBNEEwMTlD MkE2NjQzNTAwHhcNMjUxMDE5MDQ1NTUxWhcNMjUxMDI2MDQ1NTUxWjAYMRYwFAYD VQQDEw02OGY0NmY1Ny05MGM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA52/3hveJ53KC66K+r6WuNXe9JNTbnnisEMJPW2WEgU4kdo5UH+oQvtsgyX6/ d3IQcuk8IncDWJRmnv1O4KTaTLqHd+B8o7iUe9TvH4QmVFGi+7W020CELn+U4YaN mkvQLrmyb5CpwrSGY0MF2RBa6OGEDsjRl6FSQa7QlAOqxkdXOmvq15DLvObrVVF9 kAJGpZGffa5GPkEa0avgMZMcOwD7A2AtGtolOYjpSoFwn1tTrkqRwqKirKJs3qcb FvzabM87xk6lxDCYpacVktUF1MiiJNYMW35WgdDRW+Vlwe2IluKLsMvM2jhBjl8Z yEGe/2eIDHlTsnOPI27suHHwWQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIvOJ0E4 iDOHn6Yn7V1Hq/wR8oaVMB8GA1UdIwQYMBaAFM5wPk753y6+OGUKcEpKAZwqZkNQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNkM1RS8zRUE2QTI1MEI5 NzAxMUVEODkxODQ2N0NDNEY5QUUwMi96bkEtVHZuZkxyNDRaUXB3U2tvQm5DcG1R MUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3puQS1Udm5mTHI0NFpRcHdTa29CbkNwbVExQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NkM1RS8zRUE2QTI1MEI5NzAxMUVEODkxODQ2N0NDNEY5QUUwMi96bkEtVHZuZkxy NDRaUXB3U2tvQm5DcG1RMUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBOYEZ/h/wk/vwi678ibaqvrcfxXyr3RUfdJF7oWcXvStmzqmoLELDA mAy51Nrk7Dy3EBrUZ2IPEKxYmxj3oT2rx05zoB4P/C7ZycoGrHA/2CTeNKy8feOJ gdUk62NQ2gdnHjtb3W3h3NBM4n4qzrBO02u4+RatqYt5T1b7srg19Fk68ar57VTr heJp1h5Giz4vLdSRY/64qVaYn6ZhgOi2w9fvILiAa+mHH1grj7FqQcil2mP2LRVD QqKgLkfnQYkeXVAEL9i9RENgxJIPjL66TBYEF0RivTaDFzH8/2tpGTKAyw9olP9J vojFZQ6OSRQE4GMIRKTDvc/AU0Hv4m0I -----END CERTIFICATE-----Generated at Mon Oct 20 22:24:58 2025 by rpki-client