$ rpki-client -vvf rpki.apnic.net/member_repository/A914E1A8/A40A724AB13011ED847D4981C4F9AE02/i-zDY4Bwprefbc4ioOZbsh4Ndyk.mft File: i-zDY4Bwprefbc4ioOZbsh4Ndyk.mft (raw, json) Hash identifier: gecllHiI82I+w7MgZrqlTx7KdBcmLw3kfk502YRq/rs= Subject key identifier: 1E:E6:51:20:10:96:A7:4A:B5:03:5F:21:54:2F:20:54:AD:D3:9F:41 Authority key identifier: 8B:EC:C3:63:80:70:A6:B7:9F:6D:CE:22:A0:E6:5B:B2:1E:0D:77:29 Certificate issuer: /CN=A914E1A8/serialNumber=8BECC3638070A6B79F6DCE22A0E65BB21E0D7729 Certificate serial: 0204 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i-zDY4Bwprefbc4ioOZbsh4Ndyk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E1A8/A40A724AB13011ED847D4981C4F9AE02/i-zDY4Bwprefbc4ioOZbsh4Ndyk.mft Manifest number: 01FA Signing time: Sun 19 Oct 2025 04:52:06 +0000 Manifest this update: Sun 19 Oct 2025 04:52:05 +0000 Manifest next update: Sun 26 Oct 2025 04:52:05 +0000 Files and hashes: 1: i-zDY4Bwprefbc4ioOZbsh4Ndyk.crl (hash: rlDOMD4+hRJZn1eqTuhn1Vr/ZRXLbXOn4KkaBitT2Rg=) 2: 5D35DEC8B13411EDB6BEF584C4F9AE02.roa (hash: g7Iu0qsIgHA2DsVqzJPZwAHsWDw0BvGfzGeWjQmEdZA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E1A8/A40A724AB13011ED847D4981C4F9AE02/i-zDY4Bwprefbc4ioOZbsh4Ndyk.crl rsync://rpki.apnic.net/member_repository/A914E1A8/A40A724AB13011ED847D4981C4F9AE02/i-zDY4Bwprefbc4ioOZbsh4Ndyk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i-zDY4Bwprefbc4ioOZbsh4Ndyk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 04:52:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 516 (0x204) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E1A8, serialNumber=8BECC3638070A6B79F6DCE22A0E65BB21E0D7729 Validity Not Before: Oct 19 04:52:05 2025 GMT Not After : Oct 26 04:52:05 2025 GMT Subject: CN=68f46e76-0dc1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:96:52:66:3d:40:ed:d7:59:24:35:a0:54:75: 6f:80:95:60:8a:e2:dc:2d:da:45:2d:a6:d5:62:82: f7:2d:f6:85:14:62:ae:18:4c:44:85:81:f4:74:4c: 7b:12:2c:4b:1f:3a:39:fa:24:0c:0f:0d:c1:99:7e: a4:57:30:0a:90:34:12:2a:33:47:60:c2:4f:70:95: e7:9e:e4:c2:ec:92:b7:e6:3f:66:8a:1a:45:96:54: fb:8e:60:40:bf:5a:39:4f:fe:13:48:9e:60:af:49: a6:7a:d3:e9:e9:4d:53:1a:bc:cc:82:d9:25:b2:65: 2e:1f:8f:8a:bd:63:09:5e:e4:3c:e2:8a:6d:d7:f6: 2d:71:99:f5:ff:3e:48:a0:36:df:ff:f5:54:46:7c: f4:9d:3d:2c:a2:ca:c2:15:fc:e8:f2:a4:04:a4:9b: c9:63:3b:e9:28:b5:15:bf:33:13:a8:00:4f:96:a4: 98:2a:9c:3e:25:6a:57:6d:c2:ac:c9:34:0e:f1:92: 3c:65:e9:ae:0d:6f:35:f7:74:5b:53:dc:82:8f:fe: 7b:6b:57:02:39:3f:9d:36:38:57:53:4f:2d:3b:b1: 56:7e:c5:14:90:1b:e8:f1:6b:41:06:7f:66:8c:ff: 89:ba:dd:77:81:c6:75:c8:a9:92:d3:03:a5:65:14: de:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:E6:51:20:10:96:A7:4A:B5:03:5F:21:54:2F:20:54:AD:D3:9F:41 X509v3 Authority Key Identifier: keyid:8B:EC:C3:63:80:70:A6:B7:9F:6D:CE:22:A0:E6:5B:B2:1E:0D:77:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E1A8/A40A724AB13011ED847D4981C4F9AE02/i-zDY4Bwprefbc4ioOZbsh4Ndyk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i-zDY4Bwprefbc4ioOZbsh4Ndyk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E1A8/A40A724AB13011ED847D4981C4F9AE02/i-zDY4Bwprefbc4ioOZbsh4Ndyk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 75:16:2c:a3:e2:fc:bf:7a:0a:8d:d2:5c:bf:9a:98:65:eb:46: 06:f7:a6:52:6d:c1:2b:1b:aa:95:68:a3:16:c4:47:3c:69:94: c3:59:1e:0f:d8:30:1a:fc:f5:db:6e:be:2d:9f:22:27:19:96: 06:48:49:d3:00:de:74:7d:f7:b4:78:ec:b6:30:56:ea:48:e4: 0d:e1:c8:4c:05:aa:6b:78:ce:bf:71:82:20:9b:87:70:b8:ac: f9:db:ad:d5:08:d5:5e:46:19:ac:b7:a3:2c:06:b7:dc:b5:54: 4e:89:1a:67:c8:e1:9f:75:9f:04:62:46:fc:2d:49:85:f3:f5: 2d:34:8a:1d:36:04:f7:9c:84:a5:01:c0:43:c5:5e:80:43:5d: 46:24:5c:5e:bc:3f:ca:b1:86:3e:cc:99:c1:1b:ef:8a:bc:da: e5:53:97:90:a6:a4:33:66:19:d7:3f:66:cb:37:38:93:61:43: 3b:77:e7:a4:62:74:f9:a3:5b:31:35:7f:3a:45:bd:d0:b7:ab: df:ce:60:90:7b:b8:ec:c7:26:ed:f8:ec:ce:0b:e7:8d:c7:30: 85:fd:ae:cd:f5:38:9a:41:00:a6:a2:ee:51:c5:c4:ed:d6:af: 9d:f4:6e:c9:36:4c:23:54:3d:72:65:7c:ab:b0:21:27:8b:76: 02:26:78:da -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAgQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEUxQTgxMTAvBgNVBAUTKDhCRUNDMzYzODA3MEE2Qjc5RjZEQ0UyMkEwRTY1QkIy MUUwRDc3MjkwHhcNMjUxMDE5MDQ1MjA1WhcNMjUxMDI2MDQ1MjA1WjAYMRYwFAYD VQQDEw02OGY0NmU3Ni0wZGMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA35ZSZj1A7ddZJDWgVHVvgJVgiuLcLdpFLabVYoL3LfaFFGKuGExEhYH0dEx7 EixLHzo5+iQMDw3BmX6kVzAKkDQSKjNHYMJPcJXnnuTC7JK35j9mihpFllT7jmBA v1o5T/4TSJ5gr0mmetPp6U1TGrzMgtklsmUuH4+KvWMJXuQ84opt1/YtcZn1/z5I oDbf//VURnz0nT0sosrCFfzo8qQEpJvJYzvpKLUVvzMTqABPlqSYKpw+JWpXbcKs yTQO8ZI8ZemuDW8193RbU9yCj/57a1cCOT+dNjhXU08tO7FWfsUUkBvo8WtBBn9m jP+Jut13gcZ1yKmS0wOlZRTevwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB7mUSAQ lqdKtQNfIVQvIFSt059BMB8GA1UdIwQYMBaAFIvsw2OAcKa3n23OIqDmW7IeDXcp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTFBOC9BNDBBNzI0QUIx MzAxMUVEODQ3RDQ5ODFDNEY5QUUwMi9pLXpEWTRCd3ByZWZiYzRpb09aYnNoNE5k eWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ktekRZNEJ3cHJlZmJjNGlvT1pic2g0TmR5ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RTFBOC9BNDBBNzI0QUIxMzAxMUVEODQ3RDQ5ODFDNEY5QUUwMi9pLXpEWTRCd3By ZWZiYzRpb09aYnNoNE5keWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB1Fiyj4vy/egqN0ly/mphl60YG96ZSbcErG6qVaKMWxEc8aZTDWR4P 2DAa/PXbbr4tnyInGZYGSEnTAN50ffe0eOy2MFbqSOQN4chMBapreM6/cYIgm4dw uKz5263VCNVeRhmst6MsBrfctVROiRpnyOGfdZ8EYkb8LUmF8/UtNIodNgT3nISl AcBDxV6AQ11GJFxevD/KsYY+zJnBG++KvNrlU5eQpqQzZhnXP2bLNziTYUM7d+ek YnT5o1sxNX86Rb3Qt6vfzmCQe7jsxybt+OzOC+eNxzCF/a7N9TiaQQCmou5RxcTt 1q+d9G7JNkwjVD1yZXyrsCEni3YCJnja -----END CERTIFICATE-----Generated at Mon Oct 20 04:49:52 2025 by rpki-client