$ rpki-client -vvf rpki.apnic.net/member_repository/A91594AE/3D8B8C4852B511EAA4A9D20EC4F9AE02/zaR-Ch7rUl87Wg-vsvoNuzY7-k0.mft File: zaR-Ch7rUl87Wg-vsvoNuzY7-k0.mft (raw, json) Hash identifier: 6YT1ihDYJ/ykGX/xaxyE7FvYyVp2N28Tn3A276oao14= Subject key identifier: 73:12:06:F3:B0:54:B1:30:FA:5D:A9:DD:48:2A:A2:D1:07:EC:E8:1C Authority key identifier: CD:A4:7E:0A:1E:EB:52:5F:3B:5A:0F:AF:B2:FA:0D:BB:36:3B:FA:4D Certificate issuer: /CN=A91594AE/serialNumber=CDA47E0A1EEB525F3B5A0FAFB2FA0DBB363BFA4D Certificate serial: 0B04 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zaR-Ch7rUl87Wg-vsvoNuzY7-k0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91594AE/3D8B8C4852B511EAA4A9D20EC4F9AE02/zaR-Ch7rUl87Wg-vsvoNuzY7-k0.mft Manifest number: 0AFC Signing time: Sat 18 Oct 2025 20:17:16 +0000 Manifest this update: Sat 18 Oct 2025 20:17:15 +0000 Manifest next update: Sat 25 Oct 2025 20:17:15 +0000 Files and hashes: 1: zaR-Ch7rUl87Wg-vsvoNuzY7-k0.crl (hash: lfYaB680c4ig/DlijQlQP0JHVQrF68jE0Mj1TrW2O6M=) 2: 38CAF4EC52B911EAACE8041BC4F9AE02.roa (hash: lj/CFwKu+N9KL+BN8rOtiVH/zU3sp7+mG9hyAnPkezU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91594AE/3D8B8C4852B511EAA4A9D20EC4F9AE02/zaR-Ch7rUl87Wg-vsvoNuzY7-k0.crl rsync://rpki.apnic.net/member_repository/A91594AE/3D8B8C4852B511EAA4A9D20EC4F9AE02/zaR-Ch7rUl87Wg-vsvoNuzY7-k0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zaR-Ch7rUl87Wg-vsvoNuzY7-k0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 20:17:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2820 (0xb04) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91594AE, serialNumber=CDA47E0A1EEB525F3B5A0FAFB2FA0DBB363BFA4D Validity Not Before: Oct 18 20:17:15 2025 GMT Not After : Oct 25 20:17:15 2025 GMT Subject: CN=68f3f5cb-55d6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:8f:71:bf:97:99:cd:62:89:b6:18:14:d2:3e: 56:8a:24:51:be:85:75:95:16:7c:a7:e4:09:d3:b3: bf:6a:5f:fa:76:50:c5:7e:57:63:fa:86:1b:6a:75: 11:8e:cc:02:be:0a:fb:94:3c:bd:d2:af:5d:26:0f: 06:b5:54:49:89:d7:95:01:a8:46:f2:8e:e9:b9:f6: 44:42:e0:e5:2c:ac:c8:11:17:07:d4:6b:b4:6e:3b: a3:18:f8:26:e7:fb:dc:2f:09:34:ed:03:b0:3f:e4: 72:e0:fc:0b:da:06:eb:bb:18:62:0e:1d:3a:d6:6b: 1f:06:30:9f:66:bf:86:47:43:dc:c1:30:21:5d:8a: ec:5c:8b:cc:d5:8e:a7:76:7d:73:c9:c1:c0:b2:35: 4b:0e:70:d7:02:19:3e:76:aa:f6:70:fb:68:ba:ae: 25:7f:20:bf:bd:08:df:e0:40:4e:68:da:8c:56:98: 0d:c3:1b:23:a2:73:92:34:04:b4:6e:9c:1a:37:65: 59:4b:69:26:1e:91:dd:5c:5d:d1:60:6a:1f:44:7f: 9e:18:56:aa:cf:06:d2:35:18:e9:1c:df:00:02:d2: c2:3b:53:58:89:92:9a:25:49:53:51:b1:79:ce:31: 38:fb:3f:d0:97:c5:d3:a5:d0:65:b5:fc:b9:e1:9e: a2:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:12:06:F3:B0:54:B1:30:FA:5D:A9:DD:48:2A:A2:D1:07:EC:E8:1C X509v3 Authority Key Identifier: keyid:CD:A4:7E:0A:1E:EB:52:5F:3B:5A:0F:AF:B2:FA:0D:BB:36:3B:FA:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91594AE/3D8B8C4852B511EAA4A9D20EC4F9AE02/zaR-Ch7rUl87Wg-vsvoNuzY7-k0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zaR-Ch7rUl87Wg-vsvoNuzY7-k0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91594AE/3D8B8C4852B511EAA4A9D20EC4F9AE02/zaR-Ch7rUl87Wg-vsvoNuzY7-k0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 69:17:e4:7e:41:cc:77:a0:57:dd:f6:aa:b8:93:cb:06:0a:33: 2f:a6:f4:2e:84:97:a9:cc:e5:e0:8a:ff:a8:1a:82:2d:02:98: ec:e5:5d:d4:5e:a6:e2:cf:1a:fb:10:71:f8:f0:4a:5a:ad:47: b2:0e:cb:bb:e5:14:34:2d:3b:01:c8:82:2f:b4:69:2d:f9:1f: 17:84:4d:7c:3b:1b:2c:ff:04:fb:78:91:2c:e4:62:c8:cb:41: e9:f1:a0:93:01:ea:61:c7:bf:c2:56:08:e3:09:22:8a:63:91: a3:5f:07:28:41:0e:39:f9:5b:ee:dc:c7:f8:74:90:55:54:78: 74:18:42:35:c9:9f:a7:c7:ba:45:29:92:4d:ca:bc:15:b8:aa: d4:4e:65:35:19:ca:1f:27:c2:b4:6b:b2:f5:e1:ab:ef:34:92: 70:ea:8c:48:e8:75:b2:e2:21:dc:00:dc:9d:08:d6:8e:dd:23: 53:ed:d0:91:98:8c:cb:a8:03:6a:1b:03:b7:44:18:68:a2:3c: 9b:04:97:bc:e2:1b:df:6f:6a:f6:d8:86:1e:85:48:51:df:c5: bc:7d:8a:a6:03:d7:8c:62:99:ee:e9:3f:2c:39:f0:1f:a8:ae: a1:af:10:d5:23:83:be:04:48:59:30:a8:f5:7f:8c:ad:b9:a9: f3:74:7c:9d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCwQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTk0QUUxMTAvBgNVBAUTKENEQTQ3RTBBMUVFQjUyNUYzQjVBMEZBRkIyRkEwREJC MzYzQkZBNEQwHhcNMjUxMDE4MjAxNzE1WhcNMjUxMDI1MjAxNzE1WjAYMRYwFAYD VQQDEw02OGYzZjVjYi01NWQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt49xv5eZzWKJthgU0j5WiiRRvoV1lRZ8p+QJ07O/al/6dlDFfldj+oYbanUR jswCvgr7lDy90q9dJg8GtVRJideVAahG8o7pufZEQuDlLKzIERcH1Gu0bjujGPgm 5/vcLwk07QOwP+Ry4PwL2gbruxhiDh061msfBjCfZr+GR0PcwTAhXYrsXIvM1Y6n dn1zycHAsjVLDnDXAhk+dqr2cPtouq4lfyC/vQjf4EBOaNqMVpgNwxsjonOSNAS0 bpwaN2VZS2kmHpHdXF3RYGofRH+eGFaqzwbSNRjpHN8AAtLCO1NYiZKaJUlTUbF5 zjE4+z/Ql8XTpdBltfy54Z6iNQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHMSBvOw VLEw+l2p3UgqotEH7OgcMB8GA1UdIwQYMBaAFM2kfgoe61JfO1oPr7L6Dbs2O/pN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1OTRBRS8zRDhCOEM0ODUy QjUxMUVBQTRBOUQyMEVDNEY5QUUwMi96YVItQ2g3clVsODdXZy12c3ZvTnV6WTct azAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3phUi1DaDdyVWw4N1dnLXZzdm9OdXpZNy1rMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 OTRBRS8zRDhCOEM0ODUyQjUxMUVBQTRBOUQyMEVDNEY5QUUwMi96YVItQ2g3clVs ODdXZy12c3ZvTnV6WTctazAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBpF+R+Qcx3oFfd9qq4k8sGCjMvpvQuhJepzOXgiv+oGoItApjs5V3U Xqbizxr7EHH48EparUeyDsu75RQ0LTsByIIvtGkt+R8XhE18Oxss/wT7eJEs5GLI y0Hp8aCTAephx7/CVgjjCSKKY5GjXwcoQQ45+Vvu3Mf4dJBVVHh0GEI1yZ+nx7pF KZJNyrwVuKrUTmU1GcofJ8K0a7L14avvNJJw6oxI6HWy4iHcANydCNaO3SNT7dCR mIzLqANqGwO3RBhoojybBJe84hvfb2r22IYehUhR38W8fYqmA9eMYpnu6T8sOfAf qK6hrxDVI4O+BEhZMKj1f4ytuanzdHyd -----END CERTIFICATE-----Generated at Mon Oct 20 01:44:40 2025 by rpki-client