$ rpki-client -vvf rpki.apnic.net/member_repository/A9189A9F/8056BA568A9011EC8C1B0D22C4F9AE02/z7B65d0AqScU2zWnIQRdnS644xc.mft File: z7B65d0AqScU2zWnIQRdnS644xc.mft (raw, json) Hash identifier: Av+3h++HKLVMAn1d9swblo2I3PiZ1Cn1pgiegHsoMVc= Subject key identifier: 8B:E6:F1:C0:C2:EB:7E:7E:00:69:B9:35:2A:B2:9D:9B:C5:DB:AD:15 Authority key identifier: CF:B0:7A:E5:DD:00:A9:27:14:DB:35:A7:21:04:5D:9D:2E:B8:E3:17 Certificate issuer: /CN=A9189A9F/serialNumber=CFB07AE5DD00A92714DB35A721045D9D2EB8E317 Certificate serial: 4C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z7B65d0AqScU2zWnIQRdnS644xc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9189A9F/8056BA568A9011EC8C1B0D22C4F9AE02/z7B65d0AqScU2zWnIQRdnS644xc.mft Manifest number: 045B Signing time: Sun 19 Oct 2025 02:21:06 +0000 Manifest this update: Sun 19 Oct 2025 02:21:05 +0000 Manifest next update: Sun 26 Oct 2025 02:21:05 +0000 Files and hashes: 1: z7B65d0AqScU2zWnIQRdnS644xc.crl (hash: kNrUH8LsN05GOHSjTe3YmrAwBE4N/siHpPDZeDNM/wY=) 2: 42A92B3C3BAC11F0882B5B62C4F9AE02.roa (hash: 3kUfpfWFsRQio/I2rlN7rqdOffzKtu9waWZ7PwEcB0U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9189A9F/8056BA568A9011EC8C1B0D22C4F9AE02/z7B65d0AqScU2zWnIQRdnS644xc.crl rsync://rpki.apnic.net/member_repository/A9189A9F/8056BA568A9011EC8C1B0D22C4F9AE02/z7B65d0AqScU2zWnIQRdnS644xc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z7B65d0AqScU2zWnIQRdnS644xc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 02:21:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76 (0x4c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9189A9F, serialNumber=CFB07AE5DD00A92714DB35A721045D9D2EB8E317 Validity Not Before: Oct 19 02:21:05 2025 GMT Not After : Oct 26 02:21:05 2025 GMT Subject: CN=68f44b11-86ea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:e7:00:02:ed:cd:1b:07:1f:54:70:3b:f1:77: 71:e3:2d:5e:02:27:53:d2:c1:48:90:00:be:ff:2c: f7:a3:2c:42:a0:d8:cf:28:80:b2:68:48:8d:0c:af: 72:76:69:08:16:25:f9:56:ae:c3:42:97:54:42:9f: 2e:54:f8:6a:08:76:2c:74:60:95:6e:cb:51:6d:75: e4:da:4f:db:56:a6:c4:02:6a:b3:83:c0:7a:8a:9a: 49:f9:1c:9f:75:ad:fd:f5:3e:25:97:40:a7:75:61: 44:fe:0d:5b:64:a4:f2:a9:f9:34:22:cd:de:59:bc: 1f:e3:be:19:93:06:6e:3f:ba:ca:94:51:dd:4c:ce: 46:d9:b1:37:0a:36:0b:d0:a1:f8:86:c6:8e:47:a4: 7a:dc:f1:50:89:00:df:9e:59:6e:5f:3c:f3:c6:89: 4f:7e:e2:9f:f7:64:67:23:89:32:e9:5c:2e:a3:fa: 9c:be:69:16:ab:98:35:86:3d:4d:0c:ad:98:c5:41: 83:40:d1:31:19:69:54:bb:c6:96:02:58:c9:55:4e: 3e:14:e4:ec:79:68:8b:26:f0:c4:30:2c:3f:68:77: 45:06:32:d4:0e:db:a9:01:91:0e:8d:8c:21:82:62: 10:d2:94:e5:9d:b0:2a:f8:3e:3c:a8:b1:41:3e:1a: 9c:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:E6:F1:C0:C2:EB:7E:7E:00:69:B9:35:2A:B2:9D:9B:C5:DB:AD:15 X509v3 Authority Key Identifier: keyid:CF:B0:7A:E5:DD:00:A9:27:14:DB:35:A7:21:04:5D:9D:2E:B8:E3:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9189A9F/8056BA568A9011EC8C1B0D22C4F9AE02/z7B65d0AqScU2zWnIQRdnS644xc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z7B65d0AqScU2zWnIQRdnS644xc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9189A9F/8056BA568A9011EC8C1B0D22C4F9AE02/z7B65d0AqScU2zWnIQRdnS644xc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption af:74:1f:6e:49:6e:c7:34:80:66:81:18:23:86:5d:b1:b0:99: 2e:c5:cd:98:3e:51:dd:dc:e5:05:f6:a6:b2:6e:9b:80:ef:82: 2f:05:d2:c7:ac:5d:67:0c:d2:5a:40:1e:8f:6f:08:32:c3:7c: 62:a5:60:53:12:5d:f9:c9:12:cc:e6:1c:a8:e4:6d:93:a2:8c: 85:d1:c1:b5:cc:cd:e3:95:64:e8:5f:f7:51:fb:cb:15:09:1a: e5:56:fe:67:f1:eb:a3:81:af:de:02:d1:0e:46:c0:d3:96:ee: 04:4f:6b:28:e1:45:f4:ca:a5:21:83:34:12:4a:19:aa:bb:48: 00:5c:e5:11:88:42:3f:72:59:3c:2b:61:41:0e:55:9f:7a:fa: 26:04:74:7a:14:60:99:bf:eb:01:bf:67:d9:6f:2d:95:7f:88: d1:1e:92:c9:db:2a:58:7d:03:e6:d7:f6:9f:f4:98:69:28:94: 99:33:38:17:52:46:6c:7d:0e:d1:62:83:7c:4e:2d:28:2d:fe: 17:07:b8:aa:de:3b:60:17:8c:94:02:ec:ea:90:7d:10:a1:b1: 62:00:8c:40:ec:f1:c6:7d:f6:e8:e5:b5:54:cc:26:a2:a6:29: 4b:51:ad:a3:76:9c:12:c4:cd:f4:ca:42:a5:29:13:4a:51:8a: b6:ab:5a:41 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBTDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 OUE5RjExMC8GA1UEBRMoQ0ZCMDdBRTVERDAwQTkyNzE0REIzNUE3MjEwNDVEOUQy RUI4RTMxNzAeFw0yNTEwMTkwMjIxMDVaFw0yNTEwMjYwMjIxMDVaMBgxFjAUBgNV BAMTDTY4ZjQ0YjExLTg2ZWEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDG5wAC7c0bBx9UcDvxd3HjLV4CJ1PSwUiQAL7/LPejLEKg2M8ogLJoSI0Mr3J2 aQgWJflWrsNCl1RCny5U+GoIdix0YJVuy1FtdeTaT9tWpsQCarODwHqKmkn5HJ91 rf31PiWXQKd1YUT+DVtkpPKp+TQizd5ZvB/jvhmTBm4/usqUUd1MzkbZsTcKNgvQ ofiGxo5HpHrc8VCJAN+eWW5fPPPGiU9+4p/3ZGcjiTLpXC6j+py+aRarmDWGPU0M rZjFQYNA0TEZaVS7xpYCWMlVTj4U5Ox5aIsm8MQwLD9od0UGMtQO26kBkQ6NjCGC YhDSlOWdsCr4PjyosUE+GpzBAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUi+bxwMLr fn4Aabk1KrKdm8XbrRUwHwYDVR0jBBgwFoAUz7B65d0AqScU2zWnIQRdnS644xcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTg5QTlGLzgwNTZCQTU2OEE5 MDExRUM4QzFCMEQyMkM0RjlBRTAyL3o3QjY1ZDBBcVNjVTJ6V25JUVJkblM2NDR4 Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvejdCNjVkMEFxU2NVMnpXbklRUmRuUzY0NHhjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTg5 QTlGLzgwNTZCQTU2OEE5MDExRUM4QzFCMEQyMkM0RjlBRTAyL3o3QjY1ZDBBcVNj VTJ6V25JUVJkblM2NDR4Yy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAK90H25Jbsc0gGaBGCOGXbGwmS7FzZg+Ud3c5QX2prJum4Dvgi8F0ses XWcM0lpAHo9vCDLDfGKlYFMSXfnJEszmHKjkbZOijIXRwbXMzeOVZOhf91H7yxUJ GuVW/mfx66OBr94C0Q5GwNOW7gRPayjhRfTKpSGDNBJKGaq7SABc5RGIQj9yWTwr YUEOVZ96+iYEdHoUYJm/6wG/Z9lvLZV/iNEeksnbKlh9A+bX9p/0mGkolJkzOBdS Rmx9DtFig3xOLSgt/hcHuKreO2AXjJQC7OqQfRChsWIAjEDs8cZ99ujltVTMJqKm KUtRraN2nBLEzfTKQqUpE0pRirarWkE= -----END CERTIFICATE-----Generated at Mon Oct 20 01:43:55 2025 by rpki-client