$ rpki-client -vvf rpki.apnic.net/member_repository/A916523A/E75B878C4CDD11F0BFA08F80C4F9AE02/zES2e9GPRfbhN63kcxM1pVGmYSc.mft File: zES2e9GPRfbhN63kcxM1pVGmYSc.mft (raw, json) Hash identifier: BxRXProYNbxeXRzCPcxRs/St0opuqtc/YO6ayoM7leU= Subject key identifier: 54:97:EA:8A:D6:E8:E2:93:DB:FB:8D:92:48:22:2D:1B:59:F9:C5:8C Authority key identifier: CC:44:B6:7B:D1:8F:45:F6:E1:37:AD:E4:73:13:35:A5:51:A6:61:27 Certificate issuer: /CN=A916523A/serialNumber=CC44B67BD18F45F6E137ADE4731335A551A66127 Certificate serial: 41 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zES2e9GPRfbhN63kcxM1pVGmYSc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916523A/E75B878C4CDD11F0BFA08F80C4F9AE02/zES2e9GPRfbhN63kcxM1pVGmYSc.mft Manifest number: 40 Signing time: Sun 19 Oct 2025 10:54:39 +0000 Manifest this update: Sun 19 Oct 2025 10:54:39 +0000 Manifest next update: Sun 26 Oct 2025 10:54:39 +0000 Files and hashes: 1: zES2e9GPRfbhN63kcxM1pVGmYSc.crl (hash: 0soo66IjYFeTwTLPAtlACuw0vlNVemgz4P/lXwv6f+Y=) 2: 469F3FE44CDF11F08D2EFF16C4F9AE02.roa (hash: V/fASBu8lY37YHb4lDAmyOYyJCBMY5CbifIBgISs7Nk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916523A/E75B878C4CDD11F0BFA08F80C4F9AE02/zES2e9GPRfbhN63kcxM1pVGmYSc.crl rsync://rpki.apnic.net/member_repository/A916523A/E75B878C4CDD11F0BFA08F80C4F9AE02/zES2e9GPRfbhN63kcxM1pVGmYSc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zES2e9GPRfbhN63kcxM1pVGmYSc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 10:54:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65 (0x41) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916523A, serialNumber=CC44B67BD18F45F6E137ADE4731335A551A66127 Validity Not Before: Oct 19 10:54:39 2025 GMT Not After : Oct 26 10:54:39 2025 GMT Subject: CN=68f4c36f-e000 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:69:f8:2b:3f:cb:a3:0c:b5:a1:39:dd:bd:30: 9f:65:df:e6:af:e8:92:f8:26:59:42:88:87:47:00: cb:c4:ab:41:fb:0d:56:f9:b7:df:ac:33:18:63:30: 4a:5a:62:5d:8f:0e:22:24:fe:58:8f:d3:f5:84:b1: 9a:38:9d:21:4a:a2:19:60:84:8e:e6:4f:f1:36:7d: 52:ca:44:17:13:cf:38:96:76:64:9b:20:fa:1c:cc: e6:d8:26:13:0f:98:02:69:36:cf:b3:ac:ae:b1:60: d4:57:57:ef:98:34:f5:34:a3:f0:fb:8f:02:bd:67: 75:c2:62:f7:54:4d:fc:93:13:79:d2:c7:e4:ee:e6: 41:7f:a8:3f:72:38:be:0f:89:7f:6e:dd:58:ce:af: d4:c0:60:06:8a:78:e9:f4:c0:40:6e:87:04:45:fe: da:98:ee:96:79:bc:2c:14:bb:a3:39:48:16:75:ea: c7:9d:8d:8e:a0:4b:99:0d:9c:88:21:ef:36:0b:10: 66:59:bd:86:5d:31:b3:06:36:fa:31:7f:1a:74:af: ba:b1:51:04:51:1f:f2:46:d0:b5:7e:98:99:b8:58: be:22:b0:31:66:59:2d:51:77:19:c8:3d:b8:2d:6d: bc:49:07:e9:b3:a2:b0:f2:22:e8:2b:f4:c9:27:03: ed:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:97:EA:8A:D6:E8:E2:93:DB:FB:8D:92:48:22:2D:1B:59:F9:C5:8C X509v3 Authority Key Identifier: keyid:CC:44:B6:7B:D1:8F:45:F6:E1:37:AD:E4:73:13:35:A5:51:A6:61:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916523A/E75B878C4CDD11F0BFA08F80C4F9AE02/zES2e9GPRfbhN63kcxM1pVGmYSc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zES2e9GPRfbhN63kcxM1pVGmYSc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916523A/E75B878C4CDD11F0BFA08F80C4F9AE02/zES2e9GPRfbhN63kcxM1pVGmYSc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bf:fc:31:12:fd:89:ca:42:9a:cd:c4:c2:b0:ec:c1:a3:55:05: 5b:7c:2f:0d:2b:8f:fa:ed:40:6e:e2:76:72:81:27:17:4f:26: c3:84:35:fc:8e:e4:b7:ef:6b:b7:41:69:0d:98:a8:e8:5b:92: 6b:11:6a:56:41:27:07:13:1c:92:6d:d7:50:96:0f:e5:41:74: 59:d2:30:a8:88:08:06:21:a3:b8:6d:57:b8:78:70:fb:68:aa: 32:29:c5:a3:c7:26:8d:c1:cf:bf:64:c0:26:5a:39:f4:32:27: 9b:68:e9:cb:ac:49:7d:68:97:75:97:44:39:3b:31:54:57:82: d0:98:ef:97:57:12:d1:d1:25:a6:78:0b:31:fd:3e:ec:4b:43: dc:27:1e:30:36:f4:55:2f:da:e4:3b:aa:60:4c:35:15:cb:78: e6:65:58:c8:bc:80:59:00:95:20:d9:fb:dc:b3:8b:a2:33:9c: 63:2b:96:1e:ca:df:da:b8:1e:0b:01:8a:55:72:fc:a7:c4:18: ab:61:5d:9c:7f:4f:5a:aa:c3:62:05:28:bb:16:22:71:8c:cc: 3c:21:41:2e:ef:52:fd:40:46:d9:34:a8:eb:89:11:cf:52:01: 69:ca:d8:5e:fb:69:27:40:0c:1e:08:64:38:10:ae:35:84:57: 3b:ec:8b:85 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBQTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 NTIzQTExMC8GA1UEBRMoQ0M0NEI2N0JEMThGNDVGNkUxMzdBREU0NzMxMzM1QTU1 MUE2NjEyNzAeFw0yNTEwMTkxMDU0MzlaFw0yNTEwMjYxMDU0MzlaMBgxFjAUBgNV BAMTDTY4ZjRjMzZmLWUwMDAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCqafgrP8ujDLWhOd29MJ9l3+av6JL4JllCiIdHAMvEq0H7DVb5t9+sMxhjMEpa Yl2PDiIk/liP0/WEsZo4nSFKohlghI7mT/E2fVLKRBcTzziWdmSbIPoczObYJhMP mAJpNs+zrK6xYNRXV++YNPU0o/D7jwK9Z3XCYvdUTfyTE3nSx+Tu5kF/qD9yOL4P iX9u3VjOr9TAYAaKeOn0wEBuhwRF/tqY7pZ5vCwUu6M5SBZ16sedjY6gS5kNnIgh 7zYLEGZZvYZdMbMGNvoxfxp0r7qxUQRRH/JG0LV+mJm4WL4isDFmWS1RdxnIPbgt bbxJB+mzorDyIugr9MknA+0LAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUVJfqitbo 4pPb+42SSCItG1n5xYwwHwYDVR0jBBgwFoAUzES2e9GPRfbhN63kcxM1pVGmYScw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY1MjNBL0U3NUI4NzhDNENE RDExRjBCRkEwOEY4MEM0RjlBRTAyL3pFUzJlOUdQUmZiaE42M2tjeE0xcFZHbVlT Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvekVTMmU5R1BSZmJoTjYza2N4TTFwVkdtWVNjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY1 MjNBL0U3NUI4NzhDNENERDExRjBCRkEwOEY4MEM0RjlBRTAyL3pFUzJlOUdQUmZi aE42M2tjeE0xcFZHbVlTYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAL/8MRL9icpCms3EwrDswaNVBVt8Lw0rj/rtQG7idnKBJxdPJsOENfyO 5Lfva7dBaQ2YqOhbkmsRalZBJwcTHJJt11CWD+VBdFnSMKiICAYho7htV7h4cPto qjIpxaPHJo3Bz79kwCZaOfQyJ5to6cusSX1ol3WXRDk7MVRXgtCY75dXEtHRJaZ4 CzH9PuxLQ9wnHjA29FUv2uQ7qmBMNRXLeOZlWMi8gFkAlSDZ+9yzi6IznGMrlh7K 39q4HgsBilVy/KfEGKthXZx/T1qqw2IFKLsWInGMzDwhQS7vUv1ARtk0qOuJEc9S AWnK2F77aSdADB4IZDgQrjWEVzvsi4U= -----END CERTIFICATE-----Generated at Mon Oct 20 07:05:38 2025 by rpki-client