$ rpki-client -vvf rpki.apnic.net/member_repository/A9143FF5/013969B4201C11EC8A173C2CC4F9AE02/pZmI7E1t1bpqMPhmUatWLBimo04.mft File: pZmI7E1t1bpqMPhmUatWLBimo04.mft (raw, json) Hash identifier: 2njhnL4/35t9xwDzIySjAo5JAcHaVu4PVHDkmYBgxtY= Subject key identifier: 61:47:40:F9:B5:BD:FB:66:72:BB:5E:1F:0F:33:0E:88:B2:76:2C:C3 Authority key identifier: A5:99:88:EC:4D:6D:D5:BA:6A:30:F8:66:51:AB:56:2C:18:A6:A3:4E Certificate issuer: /CN=A9143FF5/serialNumber=A59988EC4D6DD5BA6A30F86651AB562C18A6A34E Certificate serial: 051F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pZmI7E1t1bpqMPhmUatWLBimo04.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9143FF5/013969B4201C11EC8A173C2CC4F9AE02/pZmI7E1t1bpqMPhmUatWLBimo04.mft Manifest number: 051A Signing time: Sun 19 Oct 2025 01:19:08 +0000 Manifest this update: Sun 19 Oct 2025 01:19:07 +0000 Manifest next update: Sun 26 Oct 2025 01:19:07 +0000 Files and hashes: 1: pZmI7E1t1bpqMPhmUatWLBimo04.crl (hash: v0KURFV6JfF1J7ErVuw/tA35TFspzo+06LRy7TuODcA=) 2: A027E062300911ECAE581534C4F9AE02.roa (hash: krTyx4GXgFlPzZ2i1hVEEfK54ydEVTwtrf/GVqS5/WA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9143FF5/013969B4201C11EC8A173C2CC4F9AE02/pZmI7E1t1bpqMPhmUatWLBimo04.crl rsync://rpki.apnic.net/member_repository/A9143FF5/013969B4201C11EC8A173C2CC4F9AE02/pZmI7E1t1bpqMPhmUatWLBimo04.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pZmI7E1t1bpqMPhmUatWLBimo04.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 01:19:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1311 (0x51f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9143FF5, serialNumber=A59988EC4D6DD5BA6A30F86651AB562C18A6A34E Validity Not Before: Oct 19 01:19:07 2025 GMT Not After : Oct 26 01:19:07 2025 GMT Subject: CN=68f43c8b-9249 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:d8:09:b3:51:a0:a7:0f:60:a9:16:3d:a5:c7: d5:06:b0:8a:41:fe:38:a6:df:e0:5e:4c:f4:5e:c2: 10:ee:03:dc:8d:9f:2b:bd:4a:11:e3:70:41:5f:33: 8a:b6:b4:a8:62:b6:07:55:56:72:53:bf:6b:04:98: 93:d2:59:f5:9c:93:8b:61:13:4f:72:1b:f3:8a:0c: c2:2d:f1:17:0b:59:86:d6:e4:dd:73:b6:ef:ec:7c: 6d:a2:1b:4b:24:63:6c:d2:c5:6e:a8:d5:54:07:4f: e6:9f:be:cb:c7:63:89:95:6c:c2:bb:e1:21:4b:4c: ea:4f:9b:36:c2:5f:9e:29:ec:25:a5:03:38:0b:69: 87:b9:49:24:e2:4b:49:92:f7:e3:42:4f:f4:de:db: 44:46:f1:8e:87:39:2a:c6:a5:c2:9b:c2:8c:ef:43: e2:a1:33:1e:09:90:bb:c9:ea:ec:0c:9a:9a:25:d2: fd:c2:c0:f6:f5:8c:4d:2e:3c:8d:91:3f:2a:ac:ee: 0a:71:fd:42:90:69:bc:96:07:ba:d5:47:d4:49:d7: c1:db:49:3e:6f:56:1b:5f:5f:92:dc:20:23:a4:65: 33:8a:67:33:d2:1c:ad:24:f3:a2:96:90:4e:b4:31: 39:73:8d:79:b5:eb:7d:6b:b6:56:02:3c:19:87:80: f2:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:47:40:F9:B5:BD:FB:66:72:BB:5E:1F:0F:33:0E:88:B2:76:2C:C3 X509v3 Authority Key Identifier: keyid:A5:99:88:EC:4D:6D:D5:BA:6A:30:F8:66:51:AB:56:2C:18:A6:A3:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9143FF5/013969B4201C11EC8A173C2CC4F9AE02/pZmI7E1t1bpqMPhmUatWLBimo04.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pZmI7E1t1bpqMPhmUatWLBimo04.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9143FF5/013969B4201C11EC8A173C2CC4F9AE02/pZmI7E1t1bpqMPhmUatWLBimo04.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0c:53:00:eb:77:4c:4f:cc:4c:0c:83:2c:cd:3e:24:eb:45:ae: a2:dc:f3:4a:d1:cf:bd:03:d0:3d:d8:04:23:72:04:9f:c4:c8: f9:6e:58:83:f5:0b:5c:4d:cf:42:83:14:09:7f:c6:f5:73:4b: 62:94:d7:09:08:bd:d6:4b:7f:0f:47:87:b5:e6:de:e1:e5:63: 6a:26:06:f3:02:94:c0:d4:31:0e:27:1b:89:f0:f7:ce:20:5a: a7:9d:fe:55:37:91:63:a6:1d:62:d0:17:1b:e1:c8:d7:ee:f4: 0b:ee:12:ac:40:1e:0a:9e:8c:eb:e8:45:e6:5c:26:05:76:17: 82:dd:69:3f:ea:f4:73:d9:d2:22:f8:60:e6:b4:02:a1:94:fc: 00:f3:4d:7a:01:97:55:b8:4c:f6:aa:9a:74:b9:4c:1e:11:db: 1b:c6:29:89:a0:5a:a9:ce:5c:7d:99:1b:00:0e:74:c0:55:66: d9:81:f6:c7:d1:81:fa:b3:4d:ad:bc:b9:aa:27:92:c8:be:42: 7c:36:79:cc:d1:71:b6:45:29:67:ec:82:19:99:cd:00:3f:f9: c5:8d:ab:2d:b8:c4:ad:40:8e:00:a2:80:9d:be:cc:a8:86:bd: a6:0f:b5:17:8e:63:cc:ef:13:3d:3a:3b:5e:9f:07:07:6c:51: 33:c9:3c:1d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBR8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDNGRjUxMTAvBgNVBAUTKEE1OTk4OEVDNEQ2REQ1QkE2QTMwRjg2NjUxQUI1NjJD MThBNkEzNEUwHhcNMjUxMDE5MDExOTA3WhcNMjUxMDI2MDExOTA3WjAYMRYwFAYD VQQDEw02OGY0M2M4Yi05MjQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAudgJs1Ggpw9gqRY9pcfVBrCKQf44pt/gXkz0XsIQ7gPcjZ8rvUoR43BBXzOK trSoYrYHVVZyU79rBJiT0ln1nJOLYRNPchvzigzCLfEXC1mG1uTdc7bv7HxtohtL JGNs0sVuqNVUB0/mn77Lx2OJlWzCu+EhS0zqT5s2wl+eKewlpQM4C2mHuUkk4ktJ kvfjQk/03ttERvGOhzkqxqXCm8KM70PioTMeCZC7yersDJqaJdL9wsD29YxNLjyN kT8qrO4Kcf1CkGm8lge61UfUSdfB20k+b1YbX1+S3CAjpGUzimcz0hytJPOilpBO tDE5c415tet9a7ZWAjwZh4DymQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGFHQPm1 vftmcrteHw8zDoiydizDMB8GA1UdIwQYMBaAFKWZiOxNbdW6ajD4ZlGrViwYpqNO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0M0ZGNS8wMTM5NjlCNDIw MUMxMUVDOEExNzNDMkNDNEY5QUUwMi9wWm1JN0UxdDFicHFNUGhtVWF0V0xCaW1v MDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BabUk3RTF0MWJwcU1QaG1VYXRXTEJpbW8wNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 M0ZGNS8wMTM5NjlCNDIwMUMxMUVDOEExNzNDMkNDNEY5QUUwMi9wWm1JN0UxdDFi cHFNUGhtVWF0V0xCaW1vMDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAMUwDrd0xPzEwMgyzNPiTrRa6i3PNK0c+9A9A92AQjcgSfxMj5bliD 9QtcTc9CgxQJf8b1c0tilNcJCL3WS38PR4e15t7h5WNqJgbzApTA1DEOJxuJ8PfO IFqnnf5VN5Fjph1i0Bcb4cjX7vQL7hKsQB4Knozr6EXmXCYFdheC3Wk/6vRz2dIi +GDmtAKhlPwA8016AZdVuEz2qpp0uUweEdsbximJoFqpzlx9mRsADnTAVWbZgfbH 0YH6s02tvLmqJ5LIvkJ8NnnM0XG2RSln7IIZmc0AP/nFjastuMStQI4AooCdvsyo hr2mD7UXjmPM7xM9OjtenwcHbFEzyTwd -----END CERTIFICATE-----Generated at Sun Oct 19 23:31:08 2025 by rpki-client