$ rpki-client -vvf rpki.apnic.net/member_repository/A9189132/D264A2A4458C11EA8E6F6D0CC4F9AE02/ztWVHA4vwvZh_u8cNxtnsj8cUt8.mft File: ztWVHA4vwvZh_u8cNxtnsj8cUt8.mft (raw, json) Hash identifier: Qvp7h37TfUHTk1Ia1xadmmS0sa6EwAmluvCgr3b5hZw= Subject key identifier: 18:79:9B:BC:76:5B:C6:42:98:73:5F:85:86:AD:F8:D0:B8:D3:85:EB Authority key identifier: CE:D5:95:1C:0E:2F:C2:F6:61:FE:EF:1C:37:1B:67:B2:3F:1C:52:DF Certificate issuer: /CN=A9189132/serialNumber=CED5951C0E2FC2F661FEEF1C371B67B23F1C52DF Certificate serial: 0B4B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ztWVHA4vwvZh_u8cNxtnsj8cUt8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9189132/D264A2A4458C11EA8E6F6D0CC4F9AE02/ztWVHA4vwvZh_u8cNxtnsj8cUt8.mft Manifest number: 0B43 Signing time: Sat 18 Oct 2025 20:06:59 +0000 Manifest this update: Sat 18 Oct 2025 20:06:58 +0000 Manifest next update: Sat 25 Oct 2025 20:06:58 +0000 Files and hashes: 1: ztWVHA4vwvZh_u8cNxtnsj8cUt8.crl (hash: Fp1kYFSnaC673bepvYh8IQ/DY4wjE25cMId16eh9VgQ=) 2: 4E6B4E24458E11EA84E01A0FC4F9AE02.roa (hash: QbUyZORfUsAuIPfZUHLWRtdmTwbA8QqQPT+t+aGRe2I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9189132/D264A2A4458C11EA8E6F6D0CC4F9AE02/ztWVHA4vwvZh_u8cNxtnsj8cUt8.crl rsync://rpki.apnic.net/member_repository/A9189132/D264A2A4458C11EA8E6F6D0CC4F9AE02/ztWVHA4vwvZh_u8cNxtnsj8cUt8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ztWVHA4vwvZh_u8cNxtnsj8cUt8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 20:06:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2891 (0xb4b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9189132, serialNumber=CED5951C0E2FC2F661FEEF1C371B67B23F1C52DF Validity Not Before: Oct 18 20:06:58 2025 GMT Not After : Oct 25 20:06:58 2025 GMT Subject: CN=68f3f362-a0d1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:7e:6f:3d:79:f4:ca:d4:f0:d7:70:a7:b7:2b: d6:03:4a:01:1b:3b:14:a5:6e:9d:f4:a8:b5:23:19: 40:21:62:a9:9d:3e:58:2f:40:54:4a:55:c9:f1:8e: 65:df:a1:34:60:d8:1a:cd:57:87:99:c0:d9:fa:11: 1e:68:2f:37:34:ff:cc:dd:4c:5a:77:44:c7:51:9b: b3:bb:04:4b:61:39:00:b2:7d:d1:46:3f:79:b0:87: 7b:34:0e:a2:1e:d2:6f:9e:21:3d:4c:c1:60:00:f2: 0d:1b:ee:da:dc:8b:c7:13:4d:8e:4a:83:90:57:a5: 8d:47:89:4f:0d:26:56:08:77:7d:5a:85:2c:c8:d0: 81:44:d5:29:cd:3e:fb:57:b0:bf:a0:60:e6:39:b0: c1:58:7a:77:71:e1:d6:11:2b:80:fa:f5:72:28:51: cf:94:23:35:11:24:68:73:e6:c6:95:9e:10:36:9e: dd:dd:ba:dd:b7:7b:8b:19:e2:de:c6:47:02:97:23: ca:28:71:4a:90:9b:2d:70:7a:dd:33:77:ac:94:f1: 87:48:36:c4:75:6f:6d:ae:4e:3a:02:72:21:be:8b: 06:6c:b1:b6:95:d2:c6:f6:9d:aa:e3:99:ae:17:79: 2e:c0:ee:53:51:00:43:f8:3e:16:52:25:e7:79:a0: 7f:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:79:9B:BC:76:5B:C6:42:98:73:5F:85:86:AD:F8:D0:B8:D3:85:EB X509v3 Authority Key Identifier: keyid:CE:D5:95:1C:0E:2F:C2:F6:61:FE:EF:1C:37:1B:67:B2:3F:1C:52:DF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9189132/D264A2A4458C11EA8E6F6D0CC4F9AE02/ztWVHA4vwvZh_u8cNxtnsj8cUt8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ztWVHA4vwvZh_u8cNxtnsj8cUt8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9189132/D264A2A4458C11EA8E6F6D0CC4F9AE02/ztWVHA4vwvZh_u8cNxtnsj8cUt8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 54:98:8e:a0:76:1a:9e:14:2d:8e:a7:c7:b0:47:cc:6d:2f:8d: 04:38:f3:c7:b1:fe:18:e3:29:f6:10:f6:be:d6:d3:40:a4:e7: 6a:49:7a:70:a6:40:d3:d5:bc:2a:c1:fe:c2:05:eb:7f:81:3d: 89:d3:f6:66:5b:3c:1f:2e:78:28:bd:2a:7b:8a:3d:d5:f1:0c: 71:83:58:23:ab:32:da:12:90:2e:4a:af:58:05:68:aa:48:6a: cd:4f:a1:68:d8:75:3d:07:8a:c3:56:6a:64:51:bf:8c:5e:b5: 89:42:0d:2f:bf:ae:b1:00:2f:cf:6f:8b:73:33:cc:9f:f6:a3: a0:9e:a4:fa:8d:e7:cd:89:a7:2b:09:2b:63:4e:58:dd:63:8d: 64:a4:3e:14:b6:8f:95:de:d2:64:ad:19:07:73:d8:9d:26:8f: 6c:61:80:ab:48:fc:43:c9:c0:4d:1d:9e:22:11:42:f9:3a:3e: 7b:54:55:ab:ce:36:19:d5:04:e1:af:27:ad:0e:90:3e:22:2c: 78:c7:d1:eb:89:e9:f6:f1:a2:6c:a4:be:12:fa:6f:ab:65:25: fd:3e:d6:41:d2:a0:64:f8:dc:82:46:a8:4d:41:c7:ba:fe:f2: 05:cb:4f:b8:f0:32:e0:ba:4d:85:58:a7:95:8b:77:4a:bc:5f: c3:04:be:0d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC0swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODkxMzIxMTAvBgNVBAUTKENFRDU5NTFDMEUyRkMyRjY2MUZFRUYxQzM3MUI2N0Iy M0YxQzUyREYwHhcNMjUxMDE4MjAwNjU4WhcNMjUxMDI1MjAwNjU4WjAYMRYwFAYD VQQDEw02OGYzZjM2Mi1hMGQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArn5vPXn0ytTw13CntyvWA0oBGzsUpW6d9Ki1IxlAIWKpnT5YL0BUSlXJ8Y5l 36E0YNgazVeHmcDZ+hEeaC83NP/M3Uxad0THUZuzuwRLYTkAsn3RRj95sId7NA6i HtJvniE9TMFgAPING+7a3IvHE02OSoOQV6WNR4lPDSZWCHd9WoUsyNCBRNUpzT77 V7C/oGDmObDBWHp3ceHWESuA+vVyKFHPlCM1ESRoc+bGlZ4QNp7d3brdt3uLGeLe xkcClyPKKHFKkJstcHrdM3eslPGHSDbEdW9trk46AnIhvosGbLG2ldLG9p2q45mu F3kuwO5TUQBD+D4WUiXneaB/dwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBh5m7x2 W8ZCmHNfhYat+NC404XrMB8GA1UdIwQYMBaAFM7VlRwOL8L2Yf7vHDcbZ7I/HFLf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4OTEzMi9EMjY0QTJBNDQ1 OEMxMUVBOEU2RjZEMENDNEY5QUUwMi96dFdWSEE0dnd2WmhfdThjTnh0bnNqOGNV dDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3p0V1ZIQTR2d3ZaaF91OGNOeHRuc2o4Y1V0OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 OTEzMi9EMjY0QTJBNDQ1OEMxMUVBOEU2RjZEMENDNEY5QUUwMi96dFdWSEE0dnd2 WmhfdThjTnh0bnNqOGNVdDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBUmI6gdhqeFC2Op8ewR8xtL40EOPPHsf4Y4yn2EPa+1tNApOdqSXpw pkDT1bwqwf7CBet/gT2J0/ZmWzwfLngovSp7ij3V8Qxxg1gjqzLaEpAuSq9YBWiq SGrNT6Fo2HU9B4rDVmpkUb+MXrWJQg0vv66xAC/Pb4tzM8yf9qOgnqT6jefNiacr CStjTljdY41kpD4Uto+V3tJkrRkHc9idJo9sYYCrSPxDycBNHZ4iEUL5Oj57VFWr zjYZ1QThryetDpA+Iix4x9Hrien28aJspL4S+m+rZSX9PtZB0qBk+NyCRqhNQce6 /vIFy0+48DLguk2FWKeVi3dKvF/DBL4N -----END CERTIFICATE-----Generated at Mon Oct 20 01:47:18 2025 by rpki-client