$ rpki-client -vvf rpki.apnic.net/member_repository/A91A12C4/F319EDC26C1711EFBDBFD50BC4F9AE02/z8CATaxP_3oipAThDphkpxHeGck.mft File: z8CATaxP_3oipAThDphkpxHeGck.mft (raw, json) Hash identifier: Zezpz7UroRVDy6HLXVFkQ1talh03QuRZ4K1aNvvsG2A= Subject key identifier: A2:3D:DD:75:9A:D8:A8:D9:67:C7:8E:A9:88:90:08:3D:6E:54:31:CF Authority key identifier: CF:C0:80:4D:AC:4F:FF:7A:22:A4:04:E1:0E:98:64:A7:11:DE:19:C9 Certificate issuer: /CN=A91A12C4/serialNumber=CFC0804DAC4FFF7A22A404E10E9864A711DE19C9 Certificate serial: D5 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/z8CATaxP_3oipAThDphkpxHeGck.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A12C4/F319EDC26C1711EFBDBFD50BC4F9AE02/z8CATaxP_3oipAThDphkpxHeGck.mft Manifest number: D3 Signing time: Sun 19 Oct 2025 08:44:01 +0000 Manifest this update: Sun 19 Oct 2025 08:44:00 +0000 Manifest next update: Sun 26 Oct 2025 08:44:00 +0000 Files and hashes: 1: z8CATaxP_3oipAThDphkpxHeGck.crl (hash: nH2gnJAIXbLj9V6Q8WXbKbv7nzZq87EGqeF97LnnSjI=) 2: BCA395126C1811EFAFBE6B0FC4F9AE02.roa (hash: xTh/XECRIgCR6mcMb4Sy7r1o1s9piU8w2MVo6gmyMfs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A12C4/F319EDC26C1711EFBDBFD50BC4F9AE02/z8CATaxP_3oipAThDphkpxHeGck.crl rsync://rpki.apnic.net/member_repository/A91A12C4/F319EDC26C1711EFBDBFD50BC4F9AE02/z8CATaxP_3oipAThDphkpxHeGck.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/z8CATaxP_3oipAThDphkpxHeGck.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 08:43:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 213 (0xd5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A12C4, serialNumber=CFC0804DAC4FFF7A22A404E10E9864A711DE19C9 Validity Not Before: Oct 19 08:44:00 2025 GMT Not After : Oct 26 08:44:00 2025 GMT Subject: CN=68f4a4d0-706c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:c3:87:d4:0c:f9:43:fe:ae:6f:e3:cb:66:3e: d9:3c:fe:6c:43:37:0c:5a:eb:1e:12:d4:a2:1d:2a: dc:ef:fa:05:29:99:3a:3b:36:33:4e:16:68:5f:87: 83:e3:fa:16:fd:46:10:8c:6b:a1:fc:d5:c2:70:d2: c8:70:de:9f:d6:85:f9:f3:4a:d7:ae:2b:8c:51:b8: b7:95:ef:0c:f0:95:40:00:7b:01:4b:12:27:ac:00: d7:5f:d9:86:b3:ee:9b:b4:e6:57:a4:cb:22:ae:d1: df:5b:b5:e2:d1:ce:18:22:02:80:79:a8:11:58:7a: 60:72:d0:8f:90:eb:24:3e:7e:6a:a9:1f:04:d2:87: 43:ce:4c:3c:56:59:ef:2a:ca:56:63:fc:4e:b5:e4: 75:5f:33:86:f4:6b:54:fa:52:cb:c3:8e:06:21:39: 2d:bf:23:d6:a0:e0:cf:76:b1:7e:47:e1:00:6d:80: 5f:a7:a8:37:98:66:a6:b4:eb:e4:63:b0:0b:be:09: b8:a4:55:19:01:d8:7e:e6:e9:5d:82:75:9a:15:9c: ea:ff:81:e9:45:e3:bc:33:15:5d:dc:6c:30:32:b1: a1:b2:ff:98:79:e5:04:a5:4d:c5:db:e7:22:48:9a: 46:60:43:7d:eb:a3:f6:bd:64:31:13:d2:16:e6:e0: e6:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:3D:DD:75:9A:D8:A8:D9:67:C7:8E:A9:88:90:08:3D:6E:54:31:CF X509v3 Authority Key Identifier: keyid:CF:C0:80:4D:AC:4F:FF:7A:22:A4:04:E1:0E:98:64:A7:11:DE:19:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A12C4/F319EDC26C1711EFBDBFD50BC4F9AE02/z8CATaxP_3oipAThDphkpxHeGck.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/z8CATaxP_3oipAThDphkpxHeGck.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A12C4/F319EDC26C1711EFBDBFD50BC4F9AE02/z8CATaxP_3oipAThDphkpxHeGck.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 05:6b:39:e6:24:1d:00:1e:c3:87:53:56:c8:2c:84:d1:dd:a4: c1:e5:bf:16:3c:b5:cb:fb:4d:11:ab:57:ed:64:f8:f7:e4:24: a7:95:76:7e:b0:ca:ca:15:1c:13:24:a9:51:eb:eb:11:a9:10: cd:3a:e9:70:61:96:23:ba:ee:1b:52:d6:2d:e8:24:18:01:fc: 5f:3f:d6:f3:ce:f6:16:4f:07:b3:78:bb:68:ce:de:7b:28:99: 1f:ab:93:9a:8c:24:c5:89:73:d1:82:ef:db:49:45:d5:37:de: bb:65:e7:34:ff:cb:0f:8c:14:06:b0:28:f1:c0:9a:98:b7:d0: b0:3c:bb:6d:89:d4:0e:c7:21:08:9b:23:96:9c:50:1f:73:74: e0:64:d2:48:45:a7:50:c3:f5:1f:3a:3a:2c:02:f7:e0:c3:a7: 85:1f:4f:a9:59:29:27:44:97:57:89:82:0f:ab:e5:dd:c2:ae: 25:fc:40:94:f8:f9:67:f5:6f:ff:8d:4b:7f:86:01:66:2e:be: 39:c5:47:c1:b3:e0:39:bf:2a:f4:a6:59:1b:41:5c:98:76:e6: 06:4c:3f:4f:4f:a8:be:29:6f:56:8d:28:16:66:53:54:a7:c5: 69:e1:f2:a0:a2:7f:ce:ff:d5:fa:57:a8:6e:f1:e6:70:a7:ea: b6:bf:c7:f9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTEyQzQxMTAvBgNVBAUTKENGQzA4MDREQUM0RkZGN0EyMkE0MDRFMTBFOTg2NEE3 MTFERTE5QzkwHhcNMjUxMDE5MDg0NDAwWhcNMjUxMDI2MDg0NDAwWjAYMRYwFAYD VQQDEw02OGY0YTRkMC03MDZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs8OH1Az5Q/6ub+PLZj7ZPP5sQzcMWuseEtSiHSrc7/oFKZk6OzYzThZoX4eD 4/oW/UYQjGuh/NXCcNLIcN6f1oX580rXriuMUbi3le8M8JVAAHsBSxInrADXX9mG s+6btOZXpMsirtHfW7Xi0c4YIgKAeagRWHpgctCPkOskPn5qqR8E0odDzkw8Vlnv KspWY/xOteR1XzOG9GtU+lLLw44GITktvyPWoODPdrF+R+EAbYBfp6g3mGamtOvk Y7ALvgm4pFUZAdh+5uldgnWaFZzq/4HpReO8MxVd3GwwMrGhsv+YeeUEpU3F2+ci SJpGYEN966P2vWQxE9IW5uDmzQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKI93XWa 2KjZZ8eOqYiQCD1uVDHPMB8GA1UdIwQYMBaAFM/AgE2sT/96IqQE4Q6YZKcR3hnJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMTJDNC9GMzE5RURDMjZD MTcxMUVGQkRCRkQ1MEJDNEY5QUUwMi96OENBVGF4UF8zb2lwQVRoRHBoa3B4SGVH Y2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3o4Q0FUYXhQXzNvaXBBVGhEcGhrcHhIZUdjay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MTJDNC9GMzE5RURDMjZDMTcxMUVGQkRCRkQ1MEJDNEY5QUUwMi96OENBVGF4UF8z b2lwQVRoRHBoa3B4SGVHY2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAFaznmJB0AHsOHU1bILITR3aTB5b8WPLXL+00Rq1ftZPj35CSnlXZ+ sMrKFRwTJKlR6+sRqRDNOulwYZYjuu4bUtYt6CQYAfxfP9bzzvYWTwezeLtozt57 KJkfq5OajCTFiXPRgu/bSUXVN967Zec0/8sPjBQGsCjxwJqYt9CwPLttidQOxyEI myOWnFAfc3TgZNJIRadQw/UfOjosAvfgw6eFH0+pWSknRJdXiYIPq+Xdwq4l/ECU +Pln9W//jUt/hgFmLr45xUfBs+A5vyr0plkbQVyYduYGTD9PT6i+KW9WjSgWZlNU p8Vp4fKgon/O/9X6V6hu8eZwp+q2v8f5 -----END CERTIFICATE-----Generated at Mon Oct 20 20:40:56 2025 by rpki-client