$ rpki-client -vvf rpki.apnic.net/member_repository/A9151932/521C8E5C720711EF9DC8BA21C4F9AE02/ZeF3DniFUQoYzpDYqt2e3n1bNVM.mft File: ZeF3DniFUQoYzpDYqt2e3n1bNVM.mft (raw, json) Hash identifier: W8GweKDGAuNiUC9AY4okZr9s8cZudS1KydrHwIf/NK4= Subject key identifier: 4F:70:1E:74:60:15:D5:E2:FE:6E:B2:10:50:9B:B5:CB:43:8F:3A:2A Authority key identifier: 65:E1:77:0E:78:85:51:0A:18:CE:90:D8:AA:DD:9E:DE:7D:5B:35:53 Certificate issuer: /CN=A9151932/serialNumber=65E1770E7885510A18CE90D8AADD9EDE7D5B3553 Certificate serial: E2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZeF3DniFUQoYzpDYqt2e3n1bNVM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9151932/521C8E5C720711EF9DC8BA21C4F9AE02/ZeF3DniFUQoYzpDYqt2e3n1bNVM.mft Manifest number: DD Signing time: Sun 19 Oct 2025 08:47:41 +0000 Manifest this update: Sun 19 Oct 2025 08:47:40 +0000 Manifest next update: Sun 26 Oct 2025 08:47:40 +0000 Files and hashes: 1: ZeF3DniFUQoYzpDYqt2e3n1bNVM.crl (hash: +LYD0O0PkaE1hDWDRc1K5cNk9dUsBG88B803m1B9kXo=) 2: 747C668ECCD911EF9B52C877C4F9AE02.roa (hash: m3GeVlgQwLSASq7XBSa8f1Uvp0nte9cJZ6MnwsMfEFs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9151932/521C8E5C720711EF9DC8BA21C4F9AE02/ZeF3DniFUQoYzpDYqt2e3n1bNVM.crl rsync://rpki.apnic.net/member_repository/A9151932/521C8E5C720711EF9DC8BA21C4F9AE02/ZeF3DniFUQoYzpDYqt2e3n1bNVM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZeF3DniFUQoYzpDYqt2e3n1bNVM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 08:47:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 226 (0xe2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9151932, serialNumber=65E1770E7885510A18CE90D8AADD9EDE7D5B3553 Validity Not Before: Oct 19 08:47:40 2025 GMT Not After : Oct 26 08:47:40 2025 GMT Subject: CN=68f4a5ac-37f3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:ad:39:de:aa:5d:37:e4:61:1a:e9:f1:36:ad: ac:a4:1f:a8:87:36:a8:1c:5c:b9:1f:46:df:be:30: e3:c1:22:a6:18:a6:d5:b9:4c:db:88:e2:06:a2:12: fd:fe:27:f0:ee:a3:a8:70:5e:64:0f:da:37:f9:85: ab:30:a7:59:64:b1:aa:a8:93:41:26:5f:fa:68:fb: 7c:67:9a:e3:2c:b0:e5:2d:e1:0f:e7:71:a0:47:9c: 0d:39:e5:01:b4:46:73:e4:1b:b9:20:c9:5f:35:f6: 4d:63:6e:62:8b:fa:c8:36:03:5a:c7:1f:ae:8d:7d: 60:82:84:98:92:94:a0:cd:ea:99:6c:59:08:b9:ca: 73:72:47:df:99:0a:0f:23:33:94:9d:f0:29:59:27: fa:84:e5:e3:7b:b8:43:5a:e5:c3:9a:9a:8b:15:4d: 4f:a9:c0:65:ec:fa:fa:b8:e4:c2:0e:3a:b9:77:37: 0f:d6:84:b6:7e:6d:49:8c:10:5d:e5:57:f1:73:ab: 80:f3:88:a1:6e:fb:11:60:14:f2:6f:e2:43:47:d6: cb:eb:ad:3b:b9:b9:61:fe:21:00:fc:5a:57:4a:62: c0:d7:26:fd:3b:56:f9:cf:4b:2b:7c:96:1a:aa:3d: 76:7f:3c:54:4c:ce:58:70:a0:e9:1b:33:b9:40:f6: 13:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:70:1E:74:60:15:D5:E2:FE:6E:B2:10:50:9B:B5:CB:43:8F:3A:2A X509v3 Authority Key Identifier: keyid:65:E1:77:0E:78:85:51:0A:18:CE:90:D8:AA:DD:9E:DE:7D:5B:35:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9151932/521C8E5C720711EF9DC8BA21C4F9AE02/ZeF3DniFUQoYzpDYqt2e3n1bNVM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZeF3DniFUQoYzpDYqt2e3n1bNVM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9151932/521C8E5C720711EF9DC8BA21C4F9AE02/ZeF3DniFUQoYzpDYqt2e3n1bNVM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 50:1e:c8:00:47:2a:a3:c5:c1:94:33:37:f3:f4:7e:fb:36:5f: e5:f6:0c:88:08:c4:82:f7:02:03:3a:63:02:c9:12:ea:f2:1e: 91:ae:f8:20:b9:97:97:30:32:71:34:5c:14:ad:fd:4e:a7:31: 04:a7:50:14:b7:4f:85:03:fc:05:09:bb:88:48:38:58:06:c3: 55:46:3d:0c:f1:e8:7a:e2:c0:7a:ae:b1:b2:d6:56:14:de:9d: 3e:b9:56:d8:bf:3c:28:ea:d3:a0:e2:a1:8c:f0:36:c5:b9:b1: c0:a8:38:a1:9f:89:f6:74:8a:31:70:7f:c7:ee:a7:de:29:65: 53:3e:b6:f9:4f:1a:13:2a:fc:33:bc:a8:29:3a:62:87:8c:ca: 11:3b:b3:e1:6b:e1:3d:7d:23:24:e4:f6:f6:2a:24:46:87:21: 95:38:bc:7f:45:e6:0c:28:01:a3:44:2e:ff:06:71:63:5f:4f: 5f:0a:f2:9c:65:4c:62:73:5a:5f:7c:7e:e4:46:b0:ab:e4:6a: 20:e1:82:ce:88:14:50:42:26:2c:1c:64:6f:d1:77:b8:6e:b2: e6:6d:7f:91:8e:8c:94:75:fa:40:04:96:75:c8:ba:b8:df:08: 20:87:71:bf:e1:fc:8b:d4:72:be:4c:6c:dc:00:46:13:a9:b0: 14:ba:1b:de -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTE5MzIxMTAvBgNVBAUTKDY1RTE3NzBFNzg4NTUxMEExOENFOTBEOEFBREQ5RURF N0Q1QjM1NTMwHhcNMjUxMDE5MDg0NzQwWhcNMjUxMDI2MDg0NzQwWjAYMRYwFAYD VQQDEw02OGY0YTVhYy0zN2YzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6a053qpdN+RhGunxNq2spB+ohzaoHFy5H0bfvjDjwSKmGKbVuUzbiOIGohL9 /ifw7qOocF5kD9o3+YWrMKdZZLGqqJNBJl/6aPt8Z5rjLLDlLeEP53GgR5wNOeUB tEZz5Bu5IMlfNfZNY25ii/rINgNaxx+ujX1ggoSYkpSgzeqZbFkIucpzckffmQoP IzOUnfApWSf6hOXje7hDWuXDmpqLFU1PqcBl7Pr6uOTCDjq5dzcP1oS2fm1JjBBd 5Vfxc6uA84ihbvsRYBTyb+JDR9bL6607ublh/iEA/FpXSmLA1yb9O1b5z0srfJYa qj12fzxUTM5YcKDpGzO5QPYTAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE9wHnRg FdXi/m6yEFCbtctDjzoqMB8GA1UdIwQYMBaAFGXhdw54hVEKGM6Q2Krdnt59WzVT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MTkzMi81MjFDOEU1Qzcy MDcxMUVGOURDOEJBMjFDNEY5QUUwMi9aZUYzRG5pRlVRb1l6cERZcXQyZTNuMWJO Vk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1plRjNEbmlGVVFvWXpwRFlxdDJlM24xYk5WTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MTkzMi81MjFDOEU1QzcyMDcxMUVGOURDOEJBMjFDNEY5QUUwMi9aZUYzRG5pRlVR b1l6cERZcXQyZTNuMWJOVk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBQHsgARyqjxcGUMzfz9H77Nl/l9gyICMSC9wIDOmMCyRLq8h6Rrvgg uZeXMDJxNFwUrf1OpzEEp1AUt0+FA/wFCbuISDhYBsNVRj0M8eh64sB6rrGy1lYU 3p0+uVbYvzwo6tOg4qGM8DbFubHAqDihn4n2dIoxcH/H7qfeKWVTPrb5TxoTKvwz vKgpOmKHjMoRO7Pha+E9fSMk5Pb2KiRGhyGVOLx/ReYMKAGjRC7/BnFjX09fCvKc ZUxic1pffH7kRrCr5Gog4YLOiBRQQiYsHGRv0Xe4brLmbX+RjoyUdfpABJZ1yLq4 3wggh3G/4fyL1HK+TGzcAEYTqbAUuhve -----END CERTIFICATE-----Generated at Mon Oct 20 17:24:16 2025 by rpki-client