$ rpki-client -vvf rpki.apnic.net/member_repository/A9175F43/599FEB44CBF611EF9F57E92DC4F9AE02/ZM9TLI4gsZbSW8fMflkyT5OBMnU.mft File: ZM9TLI4gsZbSW8fMflkyT5OBMnU.mft (raw, json) Hash identifier: MVSDcbxJ1GIXETF9JhHR/i0AGEnFWXHMx+WG4rhZrWQ= Subject key identifier: F1:BE:CE:F8:7D:F7:60:9E:8A:DF:D1:7B:7A:43:B6:8C:89:70:8F:7E Authority key identifier: 64:CF:53:2C:8E:20:B1:96:D2:5B:C7:CC:7E:59:32:4F:93:81:32:75 Certificate issuer: /CN=A9175F43/serialNumber=64CF532C8E20B196D25BC7CC7E59324F93813275 Certificate serial: 97 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZM9TLI4gsZbSW8fMflkyT5OBMnU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9175F43/599FEB44CBF611EF9F57E92DC4F9AE02/ZM9TLI4gsZbSW8fMflkyT5OBMnU.mft Manifest number: 95 Signing time: Sun 19 Oct 2025 09:40:45 +0000 Manifest this update: Sun 19 Oct 2025 09:40:44 +0000 Manifest next update: Sun 26 Oct 2025 09:40:44 +0000 Files and hashes: 1: ZM9TLI4gsZbSW8fMflkyT5OBMnU.crl (hash: q7BK/b1Rl064eJgqA9wHE/Weq3Q4EaJInhqdQGCn3ZQ=) 2: B8587822CBF611EFAE14812EC4F9AE02.roa (hash: lDKeRG9eEL+s1K16vRs3ICLsEsEkHJhrK4mCAHxbCQs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9175F43/599FEB44CBF611EF9F57E92DC4F9AE02/ZM9TLI4gsZbSW8fMflkyT5OBMnU.crl rsync://rpki.apnic.net/member_repository/A9175F43/599FEB44CBF611EF9F57E92DC4F9AE02/ZM9TLI4gsZbSW8fMflkyT5OBMnU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZM9TLI4gsZbSW8fMflkyT5OBMnU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 09:40:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 151 (0x97) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9175F43, serialNumber=64CF532C8E20B196D25BC7CC7E59324F93813275 Validity Not Before: Oct 19 09:40:44 2025 GMT Not After : Oct 26 09:40:44 2025 GMT Subject: CN=68f4b21c-171b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:d2:60:07:0a:e4:f5:4b:bc:07:24:f0:dc:33: 7d:49:33:96:4d:3d:8d:2f:9b:dd:7b:d4:2a:42:60: e3:a8:6f:1f:d5:2c:09:39:9c:14:13:ba:0b:c5:79: e5:7c:05:87:c8:42:3a:05:89:e4:c9:76:ab:55:0c: f9:49:8a:43:a8:82:ea:78:72:58:b8:58:73:ca:78: a1:7e:54:76:7d:69:05:3c:35:20:a2:f8:53:bf:39: e8:72:54:52:4a:ee:ff:95:b9:80:bf:9a:c7:41:af: 7b:5d:c6:87:95:3a:9a:dc:bb:51:31:56:1b:14:b4: 05:63:93:7d:33:e3:cf:d5:1a:9d:88:ab:fd:1a:1f: d6:d9:61:94:d1:36:32:6d:ab:87:53:38:35:82:76: de:c9:46:24:3c:cb:59:82:d2:40:c0:f1:bb:a1:48: 02:35:f3:00:d6:65:f1:60:fe:90:58:2e:29:95:d0: 9c:28:2b:b7:79:32:f2:aa:5e:3f:bc:92:b2:de:e0: 71:9b:e0:7a:5e:1f:27:84:04:de:cc:6f:4d:e6:e4: e3:b3:71:72:64:d3:70:12:43:8f:ab:18:20:a3:24: 7c:91:c9:8a:00:a2:a5:e4:df:8e:e9:3a:8b:35:fa: 80:aa:58:fd:a5:c7:73:21:33:35:d0:c9:6d:8b:b0: 5e:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:BE:CE:F8:7D:F7:60:9E:8A:DF:D1:7B:7A:43:B6:8C:89:70:8F:7E X509v3 Authority Key Identifier: keyid:64:CF:53:2C:8E:20:B1:96:D2:5B:C7:CC:7E:59:32:4F:93:81:32:75 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9175F43/599FEB44CBF611EF9F57E92DC4F9AE02/ZM9TLI4gsZbSW8fMflkyT5OBMnU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZM9TLI4gsZbSW8fMflkyT5OBMnU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9175F43/599FEB44CBF611EF9F57E92DC4F9AE02/ZM9TLI4gsZbSW8fMflkyT5OBMnU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 69:60:ca:40:d1:d7:87:df:c9:db:41:13:54:4d:72:94:dd:86: 99:4b:31:4f:6a:c2:c1:9f:99:0b:7c:1c:ab:b8:28:65:85:ba: b2:06:f4:71:ed:f7:3e:24:d7:3f:c8:0d:f1:ad:6f:36:91:b4: 51:6e:92:1c:aa:d2:92:2b:97:2d:eb:44:85:a7:3e:cb:c7:01: 8e:56:61:90:4a:fd:ec:63:1f:62:44:61:41:38:1e:5f:ee:05: e1:27:d2:4c:1c:4c:e8:a6:65:19:b4:d9:6b:fc:21:d8:90:b0: ee:e4:d6:7d:7a:66:c4:ff:28:b7:87:09:2f:94:15:0d:67:76: 50:7c:85:37:fc:53:d4:09:d2:36:eb:05:ab:1a:a4:cd:cd:4e: d4:2f:f6:ca:27:c8:89:f2:d0:24:cf:b9:35:5a:ca:11:cc:75: 62:f3:85:3e:3a:1c:1d:8d:4a:27:e3:cd:80:49:74:e1:60:24: 73:0f:08:3d:50:3b:75:1b:64:6b:1f:4f:95:15:04:88:ce:62: e0:a8:a9:5b:28:d6:8e:e3:12:51:47:11:da:18:b2:c8:35:26: cd:8b:1d:a0:71:88:55:fc:0c:18:6c:6c:ce:48:7f:b1:25:ca: 0f:39:38:92:6e:22:84:9a:9a:ec:ce:b7:3e:43:79:34:2b:9c: 0d:34:da:b4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzVGNDMxMTAvBgNVBAUTKDY0Q0Y1MzJDOEUyMEIxOTZEMjVCQzdDQzdFNTkzMjRG OTM4MTMyNzUwHhcNMjUxMDE5MDk0MDQ0WhcNMjUxMDI2MDk0MDQ0WjAYMRYwFAYD VQQDEw02OGY0YjIxYy0xNzFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApNJgBwrk9Uu8ByTw3DN9STOWTT2NL5vde9QqQmDjqG8f1SwJOZwUE7oLxXnl fAWHyEI6BYnkyXarVQz5SYpDqILqeHJYuFhzynihflR2fWkFPDUgovhTvznoclRS Su7/lbmAv5rHQa97XcaHlTqa3LtRMVYbFLQFY5N9M+PP1RqdiKv9Gh/W2WGU0TYy bauHUzg1gnbeyUYkPMtZgtJAwPG7oUgCNfMA1mXxYP6QWC4pldCcKCu3eTLyql4/ vJKy3uBxm+B6Xh8nhATezG9N5uTjs3FyZNNwEkOPqxggoyR8kcmKAKKl5N+O6TqL NfqAqlj9pcdzITM10Mlti7BeeQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPG+zvh9 92Ceit/Re3pDtoyJcI9+MB8GA1UdIwQYMBaAFGTPUyyOILGW0lvHzH5ZMk+TgTJ1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NUY0My81OTlGRUI0NENC RjYxMUVGOUY1N0U5MkRDNEY5QUUwMi9aTTlUTEk0Z3NaYlNXOGZNZmxreVQ1T0JN blUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pNOVRMSTRnc1piU1c4Zk1mbGt5VDVPQk1uVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NUY0My81OTlGRUI0NENCRjYxMUVGOUY1N0U5MkRDNEY5QUUwMi9aTTlUTEk0Z3Na YlNXOGZNZmxreVQ1T0JNblUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBpYMpA0deH38nbQRNUTXKU3YaZSzFPasLBn5kLfByruChlhbqyBvRx 7fc+JNc/yA3xrW82kbRRbpIcqtKSK5ct60SFpz7LxwGOVmGQSv3sYx9iRGFBOB5f 7gXhJ9JMHEzopmUZtNlr/CHYkLDu5NZ9embE/yi3hwkvlBUNZ3ZQfIU3/FPUCdI2 6wWrGqTNzU7UL/bKJ8iJ8tAkz7k1WsoRzHVi84U+OhwdjUon482ASXThYCRzDwg9 UDt1G2RrH0+VFQSIzmLgqKlbKNaO4xJRRxHaGLLINSbNix2gcYhV/AwYbGzOSH+x JcoPOTiSbiKEmprszrc+Q3k0K5wNNNq0 -----END CERTIFICATE-----Generated at Mon Oct 20 01:45:25 2025 by rpki-client