$ rpki-client -vvf rpki.apnic.net/member_repository/A9157B07/D88544928FD511F0A61C9B2BC4F9AE02/zOnFYkus-dCYXj8tbjHmsthtgq4.mft File: zOnFYkus-dCYXj8tbjHmsthtgq4.mft (raw, json) Hash identifier: e4xWTeOSUJ8kKtR6VMofN9fPs8xQO7OvkV1Zw6v0rGQ= Subject key identifier: 9E:A0:17:95:57:88:8D:2B:9D:58:F0:F4:A8:71:88:97:4A:E7:8E:2F Authority key identifier: CC:E9:C5:62:4B:AC:F9:D0:98:5E:3F:2D:6E:31:E6:B2:D8:6D:82:AE Certificate issuer: /CN=A9157B07/serialNumber=CCE9C5624BACF9D0985E3F2D6E31E6B2D86D82AE Certificate serial: 15 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zOnFYkus-dCYXj8tbjHmsthtgq4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157B07/D88544928FD511F0A61C9B2BC4F9AE02/zOnFYkus-dCYXj8tbjHmsthtgq4.mft Manifest number: 14 Signing time: Sun 19 Oct 2025 11:29:06 +0000 Manifest this update: Sun 19 Oct 2025 11:29:05 +0000 Manifest next update: Sun 26 Oct 2025 11:29:05 +0000 Files and hashes: 1: zOnFYkus-dCYXj8tbjHmsthtgq4.crl (hash: Y14bbhJmCWwA+tguYSuiDnyWL/cwH/Odd4l53QHQ9TM=) 2: 8CA88A568FD611F09FFCA92CC4F9AE02.roa (hash: X1O7W3t2SP7SDbQ67NRf7y+vow5VXeN/HZMH9HZxaRQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157B07/D88544928FD511F0A61C9B2BC4F9AE02/zOnFYkus-dCYXj8tbjHmsthtgq4.crl rsync://rpki.apnic.net/member_repository/A9157B07/D88544928FD511F0A61C9B2BC4F9AE02/zOnFYkus-dCYXj8tbjHmsthtgq4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zOnFYkus-dCYXj8tbjHmsthtgq4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 11:29:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21 (0x15) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157B07, serialNumber=CCE9C5624BACF9D0985E3F2D6E31E6B2D86D82AE Validity Not Before: Oct 19 11:29:05 2025 GMT Not After : Oct 26 11:29:05 2025 GMT Subject: CN=68f4cb81-5030 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:41:28:40:1f:97:0e:b9:90:a0:e7:7e:c2:2d: ad:a5:66:45:7f:ae:f4:95:67:09:0f:19:0d:4b:6a: 05:9b:6c:2e:5d:66:93:43:e9:ae:20:07:9c:e8:4e: 06:08:c7:30:b9:1d:3d:84:3a:96:c1:b8:22:b3:fc: d3:3c:26:5d:da:f6:ff:9e:a5:09:ef:1c:76:5a:88: 81:15:9e:6b:b7:98:65:57:26:27:5b:16:9c:be:7e: 0a:fd:c1:a0:60:24:08:80:a8:cb:bc:ea:81:9c:85: ad:00:e7:3c:81:05:65:e3:9d:e7:b7:77:4a:73:34: ae:57:ea:ed:9b:76:f4:9a:33:9f:71:6f:59:7e:8c: 7c:ed:dc:e7:10:fe:98:fb:cb:2b:59:aa:63:0d:11: d3:44:e9:be:b2:3f:04:fb:b7:5f:57:7a:b5:12:95: 38:b1:58:34:ea:a9:b8:21:2c:38:e1:ed:5d:91:64: 29:d2:1b:a5:44:a0:0b:c4:fc:32:6c:d5:73:59:c9: 31:6e:a7:45:85:9b:82:9a:d3:03:9d:8c:17:a2:f9: f8:04:bc:5d:5b:f4:19:18:ca:77:bb:93:24:03:ce: 28:8a:e6:e1:b4:3b:2f:65:3a:35:14:e0:84:49:53: 42:1a:30:9a:a9:46:f0:ba:bc:a7:70:1f:f5:30:b0: c4:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:A0:17:95:57:88:8D:2B:9D:58:F0:F4:A8:71:88:97:4A:E7:8E:2F X509v3 Authority Key Identifier: keyid:CC:E9:C5:62:4B:AC:F9:D0:98:5E:3F:2D:6E:31:E6:B2:D8:6D:82:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157B07/D88544928FD511F0A61C9B2BC4F9AE02/zOnFYkus-dCYXj8tbjHmsthtgq4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zOnFYkus-dCYXj8tbjHmsthtgq4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157B07/D88544928FD511F0A61C9B2BC4F9AE02/zOnFYkus-dCYXj8tbjHmsthtgq4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4e:95:be:02:bb:84:47:60:4d:80:fd:d4:c7:a0:ee:c8:97:d4: 38:7c:94:d2:44:85:d5:f1:10:64:3e:b0:f3:2f:8a:ac:5b:dd: 90:6b:ad:12:ec:ee:8e:76:53:af:fc:1f:62:d8:36:73:4d:83: b9:3e:70:7a:b2:83:fe:4c:de:36:3f:d4:8d:cb:cb:99:ed:a3: 54:4b:63:69:00:df:e0:52:da:15:ff:3c:a9:2d:c7:2e:21:34: a5:db:84:45:e3:5c:da:cc:ac:fd:df:59:45:69:3e:a3:34:19: 98:f0:7c:d4:1b:87:48:d5:cf:ef:ed:b7:05:a5:be:45:6e:78: a1:e4:c2:01:8a:93:f3:82:9e:20:e9:7f:e0:5c:a5:1b:7f:e2: 51:02:5b:a5:c6:dc:3a:76:ff:ed:1f:7b:6c:d7:34:d1:68:16: 52:a2:bb:3d:a1:04:9c:08:fb:cf:fd:db:98:7b:a8:fe:1f:ae: a0:0a:5a:2f:22:22:70:c8:bf:8c:b2:b8:e5:d7:48:ac:ad:c7: 71:1e:05:fb:6b:33:24:d5:a8:6f:63:95:c4:19:a7:31:77:7b: 6d:7e:26:17:49:b3:fd:ee:63:c5:66:39:c0:85:7d:23:41:86: fa:1f:35:a0:a2:74:36:db:03:08:0a:b1:2b:db:c5:08:f7:e1: 22:34:29:6b -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBFTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 N0IwNzExMC8GA1UEBRMoQ0NFOUM1NjI0QkFDRjlEMDk4NUUzRjJENkUzMUU2QjJE ODZEODJBRTAeFw0yNTEwMTkxMTI5MDVaFw0yNTEwMjYxMTI5MDVaMBgxFjAUBgNV BAMTDTY4ZjRjYjgxLTUwMzAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDPQShAH5cOuZCg537CLa2lZkV/rvSVZwkPGQ1LagWbbC5dZpND6a4gB5zoTgYI xzC5HT2EOpbBuCKz/NM8Jl3a9v+epQnvHHZaiIEVnmu3mGVXJidbFpy+fgr9waBg JAiAqMu86oGcha0A5zyBBWXjnee3d0pzNK5X6u2bdvSaM59xb1l+jHzt3OcQ/pj7 yytZqmMNEdNE6b6yPwT7t19XerUSlTixWDTqqbghLDjh7V2RZCnSG6VEoAvE/DJs 1XNZyTFup0WFm4Ka0wOdjBei+fgEvF1b9BkYyne7kyQDziiK5uG0Oy9lOjUU4IRJ U0IaMJqpRvC6vKdwH/UwsMRHAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUnqAXlVeI jSudWPD0qHGIl0rnji8wHwYDVR0jBBgwFoAUzOnFYkus+dCYXj8tbjHmsthtgq4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU3QjA3L0Q4ODU0NDkyOEZE NTExRjBBNjFDOUIyQkM0RjlBRTAyL3pPbkZZa3VzLWRDWVhqOHRiakhtc3RodGdx NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvek9uRllrdXMtZENZWGo4dGJqSG1zdGh0Z3E0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU3 QjA3L0Q4ODU0NDkyOEZENTExRjBBNjFDOUIyQkM0RjlBRTAyL3pPbkZZa3VzLWRD WVhqOHRiakhtc3RodGdxNC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAE6VvgK7hEdgTYD91Meg7siX1Dh8lNJEhdXxEGQ+sPMviqxb3ZBrrRLs 7o52U6/8H2LYNnNNg7k+cHqyg/5M3jY/1I3Ly5nto1RLY2kA3+BS2hX/PKktxy4h NKXbhEXjXNrMrP3fWUVpPqM0GZjwfNQbh0jVz+/ttwWlvkVueKHkwgGKk/OCniDp f+BcpRt/4lECW6XG3Dp2/+0fe2zXNNFoFlKiuz2hBJwI+8/925h7qP4frqAKWi8i InDIv4yyuOXXSKytx3EeBftrMyTVqG9jlcQZpzF3e21+JhdJs/3uY8VmOcCFfSNB hvofNaCidDbbAwgKsSvbxQj34SI0KWs= -----END CERTIFICATE-----Generated at Mon Oct 20 01:29:56 2025 by rpki-client