$ rpki-client -vvf rpki.apnic.net/member_repository/A914B45F/40BB15742F6511EE95FDED56C4F9AE02/z64jGpiXN_YdrZV8wk0hNYWBjtw.mft File: z64jGpiXN_YdrZV8wk0hNYWBjtw.mft (raw, json) Hash identifier: +Xouw0seN3W4ToJMOWLI1gSuS3SXkQSE0lyK8/z7CT0= Subject key identifier: B7:05:F0:3E:A9:6A:CE:CB:5B:DD:AB:AB:A9:0C:20:C3:E4:59:8F:19 Authority key identifier: CF:AE:23:1A:98:97:37:F6:1D:AD:95:7C:C2:4D:21:35:85:81:8E:DC Certificate issuer: /CN=A914B45F/serialNumber=CFAE231A989737F61DAD957CC24D213585818EDC Certificate serial: 01A4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z64jGpiXN_YdrZV8wk0hNYWBjtw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914B45F/40BB15742F6511EE95FDED56C4F9AE02/z64jGpiXN_YdrZV8wk0hNYWBjtw.mft Manifest number: 01A1 Signing time: Sun 19 Oct 2025 05:50:31 +0000 Manifest this update: Sun 19 Oct 2025 05:50:31 +0000 Manifest next update: Sun 26 Oct 2025 05:50:31 +0000 Files and hashes: 1: z64jGpiXN_YdrZV8wk0hNYWBjtw.crl (hash: AAB/sIgGpM0rt0tvhzJKA2BotRidkhmpdQRA7s2HhSs=) 2: 578C92D62F6611EE9CAFAA58C4F9AE02.roa (hash: Q5zuiPpefsNxFRaG9cl+nmTsBfZwCymfR2pPktbzlnY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914B45F/40BB15742F6511EE95FDED56C4F9AE02/z64jGpiXN_YdrZV8wk0hNYWBjtw.crl rsync://rpki.apnic.net/member_repository/A914B45F/40BB15742F6511EE95FDED56C4F9AE02/z64jGpiXN_YdrZV8wk0hNYWBjtw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z64jGpiXN_YdrZV8wk0hNYWBjtw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 05:50:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 420 (0x1a4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914B45F, serialNumber=CFAE231A989737F61DAD957CC24D213585818EDC Validity Not Before: Oct 19 05:50:31 2025 GMT Not After : Oct 26 05:50:31 2025 GMT Subject: CN=68f47c27-ae3f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:fe:df:ff:d1:d5:45:7c:30:68:93:bd:9c:62: db:a6:a5:a9:23:a2:19:33:b3:1c:e7:7d:b9:72:68: cd:7c:c6:0d:4c:6c:bb:f0:3d:db:c9:1a:b1:c2:76: 03:e4:e6:6b:ad:ae:c4:d5:43:0a:fa:b7:19:c5:d2: 5b:38:61:3b:41:99:00:0f:51:5c:b1:cc:e8:86:ce: 33:13:fe:ff:0b:f5:a0:e9:9b:24:d9:91:ad:cd:7d: eb:e3:16:82:10:87:22:a7:6a:e2:d2:45:05:19:b3: 7a:af:41:df:41:f0:49:24:25:55:de:58:32:29:54: 38:f8:90:8c:01:88:25:dc:09:21:8d:dc:5d:ee:14: 1e:da:23:91:f3:bb:db:5d:23:a3:d9:de:f8:ea:db: 11:0d:3c:2b:03:2a:a3:3b:30:c3:33:25:b0:45:ae: 20:6b:2d:bf:2e:32:ba:4b:44:b6:99:9f:8f:aa:32: c5:31:02:3a:78:04:de:4f:da:e5:3e:c7:5d:56:34: 1c:52:64:83:18:ac:6c:c7:37:a2:5c:bc:5c:19:7e: e9:78:0b:6d:54:8a:a4:25:30:de:2f:63:f6:1f:2f: 94:b8:e0:d9:6d:14:b1:e3:89:6e:83:d1:c0:2a:54: 76:a5:14:a4:7c:01:11:5e:0b:8f:eb:0b:88:bd:32: 76:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:05:F0:3E:A9:6A:CE:CB:5B:DD:AB:AB:A9:0C:20:C3:E4:59:8F:19 X509v3 Authority Key Identifier: keyid:CF:AE:23:1A:98:97:37:F6:1D:AD:95:7C:C2:4D:21:35:85:81:8E:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914B45F/40BB15742F6511EE95FDED56C4F9AE02/z64jGpiXN_YdrZV8wk0hNYWBjtw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z64jGpiXN_YdrZV8wk0hNYWBjtw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914B45F/40BB15742F6511EE95FDED56C4F9AE02/z64jGpiXN_YdrZV8wk0hNYWBjtw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c2:82:c4:02:db:5d:b6:6c:53:f6:48:11:a9:03:b9:da:50:5c: dd:8e:c4:65:4b:bc:e7:6c:36:89:7e:03:6d:15:3a:e4:84:38: b7:77:2d:0d:a2:95:be:d5:dc:c2:ac:ae:a7:fe:aa:f0:a6:61: 3a:02:e8:e5:07:69:5c:7b:53:31:78:59:24:40:2f:65:83:08: 48:67:f3:e7:1d:e5:19:66:46:87:e6:18:de:67:fc:35:1c:3b: d9:93:b8:a9:8e:eb:e1:25:d6:36:4f:c1:46:b8:57:9b:5c:a1: 75:fd:e6:ce:4d:66:c7:76:45:3f:8b:be:17:f0:28:20:92:78: 27:43:59:95:39:97:48:1a:d3:f5:1d:88:9e:fb:3d:e7:4b:a5: f9:79:3d:72:f2:17:f0:4a:8f:bd:b0:2f:b9:a9:6e:3b:ac:27: e2:eb:22:57:bc:18:85:64:54:1b:3c:22:fd:97:23:45:c6:41: 31:e1:43:f2:24:cb:55:fa:a4:f5:86:b2:d4:b6:f7:1f:d0:54: 92:e6:93:bb:78:0c:9e:0d:a2:3b:40:01:b5:6f:4d:eb:2f:d6: e9:95:be:cd:d8:0e:0c:6c:00:9e:c3:d5:3a:ba:af:bc:cd:bc: 3e:25:89:fc:52:df:14:f1:ee:1c:23:44:ad:5d:da:51:10:7c: 6f:d0:10:04 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAaQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEI0NUYxMTAvBgNVBAUTKENGQUUyMzFBOTg5NzM3RjYxREFEOTU3Q0MyNEQyMTM1 ODU4MThFREMwHhcNMjUxMDE5MDU1MDMxWhcNMjUxMDI2MDU1MDMxWjAYMRYwFAYD VQQDEw02OGY0N2MyNy1hZTNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt/7f/9HVRXwwaJO9nGLbpqWpI6IZM7Mc5325cmjNfMYNTGy78D3byRqxwnYD 5OZrra7E1UMK+rcZxdJbOGE7QZkAD1Fcsczohs4zE/7/C/Wg6Zsk2ZGtzX3r4xaC EIcip2ri0kUFGbN6r0HfQfBJJCVV3lgyKVQ4+JCMAYgl3Akhjdxd7hQe2iOR87vb XSOj2d746tsRDTwrAyqjOzDDMyWwRa4gay2/LjK6S0S2mZ+PqjLFMQI6eATeT9rl PsddVjQcUmSDGKxsxzeiXLxcGX7peAttVIqkJTDeL2P2Hy+UuODZbRSx44lug9HA KlR2pRSkfAERXguP6wuIvTJ2AwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLcF8D6p as7LW92rq6kMIMPkWY8ZMB8GA1UdIwQYMBaAFM+uIxqYlzf2Ha2VfMJNITWFgY7c MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QjQ1Ri80MEJCMTU3NDJG NjUxMUVFOTVGREVENTZDNEY5QUUwMi96NjRqR3BpWE5fWWRyWlY4d2swaE5ZV0Jq dHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3o2NGpHcGlYTl9ZZHJaVjh3azBoTllXQmp0dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QjQ1Ri80MEJCMTU3NDJGNjUxMUVFOTVGREVENTZDNEY5QUUwMi96NjRqR3BpWE5f WWRyWlY4d2swaE5ZV0JqdHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDCgsQC2122bFP2SBGpA7naUFzdjsRlS7znbDaJfgNtFTrkhDi3dy0N opW+1dzCrK6n/qrwpmE6AujlB2lce1MxeFkkQC9lgwhIZ/PnHeUZZkaH5hjeZ/w1 HDvZk7ipjuvhJdY2T8FGuFebXKF1/ebOTWbHdkU/i74X8CggkngnQ1mVOZdIGtP1 HYie+z3nS6X5eT1y8hfwSo+9sC+5qW47rCfi6yJXvBiFZFQbPCL9lyNFxkEx4UPy JMtV+qT1hrLUtvcf0FSS5pO7eAyeDaI7QAG1b03rL9bplb7N2A4MbACew9U6uq+8 zbw+JYn8Ut8U8e4cI0StXdpREHxv0BAE -----END CERTIFICATE-----Generated at Mon Oct 20 05:57:27 2025 by rpki-client