$ rpki-client -vvf rpki.apnic.net/member_repository/A9154D26/C00D9726413B11ECB06AE030C4F9AE02/zaA_ZfTTOjOZaZc_apvQfa-eNyQ.mft File: zaA_ZfTTOjOZaZc_apvQfa-eNyQ.mft (raw, json) Hash identifier: cN+ppZezxF53BpCN/R+IoTivOwty0Ch2Ot+GWptyVVA= Subject key identifier: 7D:98:7A:50:B2:1E:3F:FD:16:C4:53:59:DA:5D:C8:61:FE:3D:48:16 Authority key identifier: CD:A0:3F:65:F4:D3:3A:33:99:69:97:3F:6A:9B:D0:7D:AF:9E:37:24 Certificate issuer: /CN=A9154D26/serialNumber=CDA03F65F4D33A339969973F6A9BD07DAF9E3724 Certificate serial: 04DD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zaA_ZfTTOjOZaZc_apvQfa-eNyQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9154D26/C00D9726413B11ECB06AE030C4F9AE02/zaA_ZfTTOjOZaZc_apvQfa-eNyQ.mft Manifest number: 04D0 Signing time: Sun 19 Oct 2025 01:38:44 +0000 Manifest this update: Sun 19 Oct 2025 01:38:43 +0000 Manifest next update: Sun 26 Oct 2025 01:38:43 +0000 Files and hashes: 1: zaA_ZfTTOjOZaZc_apvQfa-eNyQ.crl (hash: hIMCfVRiYcHI9uRfNWNbvO+PYaYUTrj/4+qTcoE67mE=) 2: AA5485827F3611ECBED94963C4F9AE02.roa (hash: L7q5MhSYBL7XAFYcbCU7483l92C9DWVyV5PtuFnvCCo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9154D26/C00D9726413B11ECB06AE030C4F9AE02/zaA_ZfTTOjOZaZc_apvQfa-eNyQ.crl rsync://rpki.apnic.net/member_repository/A9154D26/C00D9726413B11ECB06AE030C4F9AE02/zaA_ZfTTOjOZaZc_apvQfa-eNyQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zaA_ZfTTOjOZaZc_apvQfa-eNyQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 01:38:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1245 (0x4dd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9154D26, serialNumber=CDA03F65F4D33A339969973F6A9BD07DAF9E3724 Validity Not Before: Oct 19 01:38:43 2025 GMT Not After : Oct 26 01:38:43 2025 GMT Subject: CN=68f44123-346e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:ef:89:2e:79:61:7d:c9:c5:cc:d1:c3:60:f6: 3d:45:5f:6f:23:75:e2:1c:0f:de:5a:e6:02:cb:0e: f7:e7:43:b4:35:85:35:48:e9:64:d4:91:e1:c6:4a: 5f:b0:dc:8e:f8:a1:99:5e:1f:6a:5d:fc:7a:57:27: 6b:94:0f:13:24:c3:ef:b8:fc:44:9a:26:a4:06:71: f0:ea:70:99:0b:e4:3c:62:8e:11:87:81:a5:81:69: d5:d4:22:45:05:59:48:25:c5:d3:32:0b:e1:15:63: 1c:9d:91:bf:05:3e:01:ae:76:e6:c1:74:ca:90:10: 91:fb:fd:5c:ad:f8:10:6c:b4:e0:da:0b:ef:e3:7c: cd:b3:ba:60:72:7d:25:bb:0f:e9:c2:2c:87:32:e8: 69:7c:3f:b7:27:29:36:57:8c:0a:79:71:6e:92:9f: 90:8f:08:94:d0:0e:74:0d:3a:9c:04:1d:d8:75:53: 55:fb:ec:f3:43:b5:67:ba:05:89:d5:61:86:61:8f: 95:1e:6e:31:49:b7:21:6e:84:96:75:9b:f1:39:8e: 67:f4:d9:e2:08:2b:7a:06:14:55:c5:a8:80:55:80: 9a:b4:11:1b:f7:6b:ff:72:0e:4f:54:1e:d7:ed:99: a3:b2:9a:a3:f7:31:66:82:f7:92:1b:01:61:b7:37: 2c:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:98:7A:50:B2:1E:3F:FD:16:C4:53:59:DA:5D:C8:61:FE:3D:48:16 X509v3 Authority Key Identifier: keyid:CD:A0:3F:65:F4:D3:3A:33:99:69:97:3F:6A:9B:D0:7D:AF:9E:37:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9154D26/C00D9726413B11ECB06AE030C4F9AE02/zaA_ZfTTOjOZaZc_apvQfa-eNyQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zaA_ZfTTOjOZaZc_apvQfa-eNyQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9154D26/C00D9726413B11ECB06AE030C4F9AE02/zaA_ZfTTOjOZaZc_apvQfa-eNyQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4d:41:77:f8:2f:6a:66:29:9c:bc:d3:6c:66:9f:63:a4:d9:0f: bb:1b:d4:2a:01:76:34:94:fd:a7:3a:b5:43:e5:26:e6:29:58: af:57:eb:2b:44:6f:80:4f:26:67:4e:30:fa:6e:3d:4c:c9:72: 19:2b:1d:fc:89:60:07:e8:70:80:47:70:10:11:1b:87:e8:cf: 3a:8c:30:1c:4a:30:32:40:8e:57:44:be:a5:9f:70:99:5f:40: 50:63:b1:79:78:41:fb:79:93:b1:c0:93:b6:fe:d2:4e:64:b9: 4f:3d:4c:56:f2:0f:8a:65:9f:a4:3a:de:3f:c1:1e:8f:c4:cf: 8b:c7:d4:35:d6:89:b2:fb:57:d1:8d:cb:66:4d:a6:8d:f0:7e: e5:bf:6b:0f:12:42:ee:1c:00:bd:91:34:9b:b6:e7:7d:72:e8: fa:6c:f8:fd:eb:ec:56:90:0a:06:46:42:cf:cf:9c:8a:c3:39: 25:a1:ad:98:5c:e4:93:9c:bb:6d:47:ba:7b:97:c6:41:60:9c: 03:a4:ca:90:95:0d:f5:bc:18:3c:fb:c0:9d:bf:44:65:40:49: 64:20:63:92:ab:6d:23:dd:a9:d8:62:91:11:3a:17:9c:45:d0: d6:b2:4e:72:d2:0b:9a:ee:25:06:9c:3f:14:87:76:92:62:a0: 93:3e:65:02 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBN0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTREMjYxMTAvBgNVBAUTKENEQTAzRjY1RjREMzNBMzM5OTY5OTczRjZBOUJEMDdE QUY5RTM3MjQwHhcNMjUxMDE5MDEzODQzWhcNMjUxMDI2MDEzODQzWjAYMRYwFAYD VQQDEw02OGY0NDEyMy0zNDZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAme+JLnlhfcnFzNHDYPY9RV9vI3XiHA/eWuYCyw7350O0NYU1SOlk1JHhxkpf sNyO+KGZXh9qXfx6VydrlA8TJMPvuPxEmiakBnHw6nCZC+Q8Yo4Rh4GlgWnV1CJF BVlIJcXTMgvhFWMcnZG/BT4BrnbmwXTKkBCR+/1crfgQbLTg2gvv43zNs7pgcn0l uw/pwiyHMuhpfD+3Jyk2V4wKeXFukp+QjwiU0A50DTqcBB3YdVNV++zzQ7VnugWJ 1WGGYY+VHm4xSbchboSWdZvxOY5n9NniCCt6BhRVxaiAVYCatBEb92v/cg5PVB7X 7Zmjspqj9zFmgveSGwFhtzcsxwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH2YelCy Hj/9FsRTWdpdyGH+PUgWMB8GA1UdIwQYMBaAFM2gP2X00zozmWmXP2qb0H2vnjck MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NEQyNi9DMDBEOTcyNjQx M0IxMUVDQjA2QUUwMzBDNEY5QUUwMi96YUFfWmZUVE9qT1phWmNfYXB2UWZhLWVO eVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3phQV9aZlRUT2pPWmFaY19hcHZRZmEtZU55US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NEQyNi9DMDBEOTcyNjQxM0IxMUVDQjA2QUUwMzBDNEY5QUUwMi96YUFfWmZUVE9q T1phWmNfYXB2UWZhLWVOeVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBNQXf4L2pmKZy802xmn2Ok2Q+7G9QqAXY0lP2nOrVD5SbmKVivV+sr RG+ATyZnTjD6bj1MyXIZKx38iWAH6HCAR3AQERuH6M86jDAcSjAyQI5XRL6ln3CZ X0BQY7F5eEH7eZOxwJO2/tJOZLlPPUxW8g+KZZ+kOt4/wR6PxM+Lx9Q11omy+1fR jctmTaaN8H7lv2sPEkLuHAC9kTSbtud9cuj6bPj96+xWkAoGRkLPz5yKwzkloa2Y XOSTnLttR7p7l8ZBYJwDpMqQlQ31vBg8+8Cdv0RlQElkIGOSq20j3anYYpEROhec RdDWsk5y0gua7iUGnD8Uh3aSYqCTPmUC -----END CERTIFICATE-----Generated at Mon Oct 20 01:45:50 2025 by rpki-client