$ rpki-client -vvf rpki.apnic.net/member_repository/A917F879/AAFCEF0A834911EA89DE697BC4F9AE02/ZEfjYbGkSWugEo32lWV0SOleK5U.mft File: ZEfjYbGkSWugEo32lWV0SOleK5U.mft (raw, json) Hash identifier: kQo5SbBKGWwtFQOClaQd3tsTmzCX1it8NRZDRP9hfKY= Subject key identifier: AA:A9:B5:89:0D:99:56:87:AF:6F:73:4D:B3:B5:24:07:57:2B:C9:5E Authority key identifier: 64:47:E3:61:B1:A4:49:6B:A0:12:8D:F6:95:65:74:48:E9:5E:2B:95 Certificate issuer: /CN=A917F879/serialNumber=6447E361B1A4496BA0128DF695657448E95E2B95 Certificate serial: 0A0D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZEfjYbGkSWugEo32lWV0SOleK5U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917F879/AAFCEF0A834911EA89DE697BC4F9AE02/ZEfjYbGkSWugEo32lWV0SOleK5U.mft Manifest number: 0A01 Signing time: Sat 18 Oct 2025 20:50:39 +0000 Manifest this update: Sat 18 Oct 2025 20:50:38 +0000 Manifest next update: Sat 25 Oct 2025 20:50:38 +0000 Files and hashes: 1: ZEfjYbGkSWugEo32lWV0SOleK5U.crl (hash: D24R5y5rqG5Ya4c2Zzs+vhbePyNyLDoL/oiriYz9Y7M=) 2: 8A6AA178556111EDB7E45424C4F9AE02.roa (hash: cQpAURqDM/34gPKhgVHe+OBCLHcXpgoxll5j5sk3a4o=) 3: 894FFF40556111EDB7E45424C4F9AE02.roa (hash: 3doq1VIPrTMuHeE3hP1dvsdzHHC8FVCO0WmVRpeSjbk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917F879/AAFCEF0A834911EA89DE697BC4F9AE02/ZEfjYbGkSWugEo32lWV0SOleK5U.crl rsync://rpki.apnic.net/member_repository/A917F879/AAFCEF0A834911EA89DE697BC4F9AE02/ZEfjYbGkSWugEo32lWV0SOleK5U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZEfjYbGkSWugEo32lWV0SOleK5U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 20:50:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2573 (0xa0d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917F879, serialNumber=6447E361B1A4496BA0128DF695657448E95E2B95 Validity Not Before: Oct 18 20:50:38 2025 GMT Not After : Oct 25 20:50:38 2025 GMT Subject: CN=68f3fd9f-c069 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:5a:23:77:b0:f9:a0:6d:8f:65:3e:2a:4f:03: b2:02:4c:f5:92:dd:72:c4:00:51:6e:ff:28:c0:85: fc:77:9f:12:bb:f6:91:28:f2:36:d4:0c:36:b8:5d: af:1d:89:b0:64:e9:83:2b:dc:98:ef:1c:16:e1:83: 86:39:a3:29:7b:5d:ca:c7:ec:79:1d:88:32:09:58: 60:b0:a6:8e:06:de:4f:a8:f2:f5:20:d5:dd:f1:4b: 8b:49:ff:37:ed:5a:24:99:f1:5f:bb:dd:83:60:9c: c7:0e:a6:d5:72:1f:27:96:c0:9b:04:5f:17:66:c4: 89:cb:d4:a1:75:6f:3d:4a:76:ba:14:85:ac:06:a5: bd:27:07:13:da:6e:b9:a4:a3:92:86:32:94:69:42: a4:eb:f1:a1:33:3e:22:45:6f:12:b5:14:67:e8:3a: f5:97:3c:e6:09:a4:3f:7c:b7:c2:4c:cd:61:37:2a: 2b:31:44:24:26:ac:df:49:48:f7:a8:0c:03:95:61: 8b:5e:27:c0:8d:2e:e9:90:42:13:fb:91:95:b7:78: 4c:85:94:ba:52:22:84:0e:42:d3:8d:f4:3f:11:e2: 94:1a:8c:19:6b:4c:26:e9:0f:ed:3c:df:d3:28:b0: 9b:31:87:27:8a:75:ef:e3:dc:03:b8:5f:0b:63:8e: b9:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:A9:B5:89:0D:99:56:87:AF:6F:73:4D:B3:B5:24:07:57:2B:C9:5E X509v3 Authority Key Identifier: keyid:64:47:E3:61:B1:A4:49:6B:A0:12:8D:F6:95:65:74:48:E9:5E:2B:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917F879/AAFCEF0A834911EA89DE697BC4F9AE02/ZEfjYbGkSWugEo32lWV0SOleK5U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZEfjYbGkSWugEo32lWV0SOleK5U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917F879/AAFCEF0A834911EA89DE697BC4F9AE02/ZEfjYbGkSWugEo32lWV0SOleK5U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 82:47:c2:5b:50:71:50:d1:07:8b:9e:7c:15:0b:78:5c:28:3a: 20:8f:09:f6:46:5f:54:29:ce:91:83:02:19:d5:cf:48:d8:d8: 60:6e:d4:bc:c3:74:4d:1c:97:37:28:84:8f:55:1e:c2:a8:b2: 3a:6a:59:88:7b:0a:9f:e0:4f:e9:c3:5d:98:97:83:40:20:ff: 11:76:e1:56:ac:52:54:b4:50:e5:19:da:c8:71:bb:fe:14:30: 39:75:1e:6b:99:7f:57:f4:43:b1:bb:e1:a8:57:e1:ff:29:8f: f2:a7:90:b2:4e:d8:c7:f6:97:c4:37:e0:8e:93:64:90:10:4d: a7:79:f7:4b:ee:9b:39:e4:42:10:26:14:cb:da:e1:8f:d6:b0: db:b6:52:77:9f:a6:6c:19:a0:4a:fa:5d:ed:88:df:a2:13:13: 00:82:13:ed:c3:36:e8:93:f3:f3:db:0f:b6:41:55:59:93:8e: cd:cc:22:7f:92:62:ed:c6:b6:00:1f:7a:84:f2:a8:3d:d5:2f: 36:fa:6a:c4:8e:f5:05:ac:6b:e1:f3:89:bf:81:a4:57:18:ea: 75:c7:fe:30:05:22:1c:1e:a1:68:d4:96:96:ad:e6:44:5e:da: 9f:55:50:5d:bb:17:f5:31:7d:c3:ae:cc:f5:4f:09:dd:c6:b4: f7:01:66:f6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCg0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0Y4NzkxMTAvBgNVBAUTKDY0NDdFMzYxQjFBNDQ5NkJBMDEyOERGNjk1NjU3NDQ4 RTk1RTJCOTUwHhcNMjUxMDE4MjA1MDM4WhcNMjUxMDI1MjA1MDM4WjAYMRYwFAYD VQQDEw02OGYzZmQ5Zi1jMDY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7Vojd7D5oG2PZT4qTwOyAkz1kt1yxABRbv8owIX8d58Su/aRKPI21Aw2uF2v HYmwZOmDK9yY7xwW4YOGOaMpe13Kx+x5HYgyCVhgsKaOBt5PqPL1INXd8UuLSf83 7VokmfFfu92DYJzHDqbVch8nlsCbBF8XZsSJy9ShdW89Sna6FIWsBqW9JwcT2m65 pKOShjKUaUKk6/GhMz4iRW8StRRn6Dr1lzzmCaQ/fLfCTM1hNyorMUQkJqzfSUj3 qAwDlWGLXifAjS7pkEIT+5GVt3hMhZS6UiKEDkLTjfQ/EeKUGowZa0wm6Q/tPN/T KLCbMYcninXv49wDuF8LY465fwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKqptYkN mVaHr29zTbO1JAdXK8leMB8GA1UdIwQYMBaAFGRH42GxpElroBKN9pVldEjpXiuV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3Rjg3OS9BQUZDRUYwQTgz NDkxMUVBODlERTY5N0JDNEY5QUUwMi9aRWZqWWJHa1NXdWdFbzMybFdWMFNPbGVL NVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pFZmpZYkdrU1d1Z0VvMzJsV1YwU09sZUs1VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 Rjg3OS9BQUZDRUYwQTgzNDkxMUVBODlERTY5N0JDNEY5QUUwMi9aRWZqWWJHa1NX dWdFbzMybFdWMFNPbGVLNVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCCR8JbUHFQ0QeLnnwVC3hcKDogjwn2Rl9UKc6RgwIZ1c9I2NhgbtS8 w3RNHJc3KISPVR7CqLI6almIewqf4E/pw12Yl4NAIP8RduFWrFJUtFDlGdrIcbv+ FDA5dR5rmX9X9EOxu+GoV+H/KY/yp5CyTtjH9pfEN+COk2SQEE2nefdL7ps55EIQ JhTL2uGP1rDbtlJ3n6ZsGaBK+l3tiN+iExMAghPtwzbok/Pz2w+2QVVZk47NzCJ/ kmLtxrYAH3qE8qg91S82+mrEjvUFrGvh84m/gaRXGOp1x/4wBSIcHqFo1JaWreZE XtqfVVBduxf1MX3Drsz1TwndxrT3AWb2 -----END CERTIFICATE-----Generated at Mon Oct 20 10:48:06 2025 by rpki-client