$ rpki-client -vvf rpki.apnic.net/member_repository/A916A3EE/5B97A8B8701211EB8907BB1FC4F9AE02/aWryPZMpXC9f3fMqlVE7Ldu_zhs.mft File: aWryPZMpXC9f3fMqlVE7Ldu_zhs.mft (raw, json) Hash identifier: xfwszYPT6fxSbLEtENPlaRUj+MnHKCoIWI6+E9/KB9w= Subject key identifier: 00:96:EE:F6:62:19:8A:45:57:16:FB:45:67:A1:76:4F:77:F1:A0:E4 Authority key identifier: 69:6A:F2:3D:93:29:5C:2F:5F:DD:F3:2A:95:51:3B:2D:DB:BF:CE:1B Certificate issuer: /CN=A916A3EE/serialNumber=696AF23D93295C2F5FDDF32A95513B2DDBBFCE1B Certificate serial: 06E4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aWryPZMpXC9f3fMqlVE7Ldu_zhs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916A3EE/5B97A8B8701211EB8907BB1FC4F9AE02/aWryPZMpXC9f3fMqlVE7Ldu_zhs.mft Manifest number: 06DF Signing time: Tue 04 Nov 2025 22:05:23 +0000 Manifest this update: Tue 04 Nov 2025 22:05:22 +0000 Manifest next update: Tue 11 Nov 2025 22:05:22 +0000 Files and hashes: 1: aWryPZMpXC9f3fMqlVE7Ldu_zhs.crl (hash: WmylRP3L3iGGSLN6WA7rM0XdAWwFW3DVTaYCRFGbOVs=) 2: 76F5B630701311EB9C85DF1FC4F9AE02.roa (hash: qir+UT8zyDGjYz1YRKkq2v/pYcPeSxEZXiWVhwGwNRY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916A3EE/5B97A8B8701211EB8907BB1FC4F9AE02/aWryPZMpXC9f3fMqlVE7Ldu_zhs.crl rsync://rpki.apnic.net/member_repository/A916A3EE/5B97A8B8701211EB8907BB1FC4F9AE02/aWryPZMpXC9f3fMqlVE7Ldu_zhs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aWryPZMpXC9f3fMqlVE7Ldu_zhs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 22:05:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1764 (0x6e4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916A3EE, serialNumber=696AF23D93295C2F5FDDF32A95513B2DDBBFCE1B Validity Not Before: Nov 4 22:05:22 2025 GMT Not After : Nov 11 22:05:22 2025 GMT Subject: CN=690a78a2-08b2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:86:64:3f:87:b1:27:10:fb:12:f5:39:61:2e: da:80:25:d2:a4:fe:b5:6b:a8:3b:92:d9:98:99:fa: 72:87:4c:6e:d5:68:6f:6f:79:eb:d7:a4:81:d8:08: f6:05:0e:fd:f2:57:f8:0a:da:64:70:9c:13:92:7a: 6a:8f:78:fb:a4:20:f9:94:78:db:5a:85:06:e3:7d: 82:6e:dd:10:52:e2:27:44:a9:03:60:49:10:43:77: c9:1b:b9:d2:65:dc:1a:fa:a3:83:29:73:90:0c:ba: 52:39:0f:b2:bf:e2:cf:ae:0f:fb:1d:d4:2b:32:ff: fe:1b:ff:1a:c7:47:da:ac:62:28:bb:ce:63:8b:61: 8b:44:93:ac:78:a3:77:5d:c7:56:13:0c:c9:76:0e: 95:a8:0c:bc:c0:8c:ab:7f:2f:64:a1:a6:fe:17:32: f4:b9:7a:77:1a:cc:32:4b:5f:44:26:90:fa:da:1c: af:0d:8a:a0:ea:36:a5:af:e2:8e:a4:c1:6d:1b:a1: 96:95:13:62:c4:a0:af:9e:ea:7d:7f:28:67:be:2a: 27:c1:fa:bb:55:76:23:e5:ac:1b:f1:c2:ad:be:31: 76:bf:21:51:b8:ce:94:59:39:bd:0d:ed:f6:72:a8: 4a:77:19:62:28:11:b1:cc:b1:ed:0f:ab:b2:15:ed: b0:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:96:EE:F6:62:19:8A:45:57:16:FB:45:67:A1:76:4F:77:F1:A0:E4 X509v3 Authority Key Identifier: keyid:69:6A:F2:3D:93:29:5C:2F:5F:DD:F3:2A:95:51:3B:2D:DB:BF:CE:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916A3EE/5B97A8B8701211EB8907BB1FC4F9AE02/aWryPZMpXC9f3fMqlVE7Ldu_zhs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aWryPZMpXC9f3fMqlVE7Ldu_zhs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916A3EE/5B97A8B8701211EB8907BB1FC4F9AE02/aWryPZMpXC9f3fMqlVE7Ldu_zhs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 48:5f:e0:42:ed:b3:f7:73:66:81:98:87:74:a1:57:a0:42:11: c2:0a:d8:f9:ce:be:f3:32:b1:1f:bb:29:33:03:14:f5:9b:9e: 7f:aa:26:4f:91:88:00:07:c6:b5:77:54:9f:6a:cd:9a:71:0c: 30:d2:e1:0b:95:3a:f6:c0:ab:cf:8b:2f:26:39:59:6b:59:f3: 60:e2:97:5d:e6:68:15:13:50:69:ba:06:ac:ba:73:ce:cc:40: f9:be:dc:47:a6:cf:1f:b2:98:15:11:c0:14:7f:8f:fd:cf:99: 09:d9:5a:79:b2:6d:4d:8f:dc:e3:8c:b7:fa:a8:d0:d9:cc:21: ae:12:1e:fe:5a:2e:a9:bd:94:f9:ad:48:eb:9c:04:d1:f3:42: cb:25:3e:65:8b:0c:59:4f:76:1c:76:59:4d:cd:5c:4f:73:e6: 66:d5:4b:09:48:73:ed:af:dc:eb:f6:c0:d4:e0:a5:4f:f1:81: e0:d2:ca:52:09:57:1a:eb:64:63:c5:38:68:aa:5c:b0:da:2a: 0a:0e:4f:bd:1f:74:9b:2f:2a:d2:dd:38:9f:8d:e7:e0:62:a9: 9f:8e:bb:3c:d7:26:ea:3d:bb:d7:1b:f7:2a:98:0a:d8:36:ae: 72:a7:ab:2f:42:38:c6:a5:fa:8a:ae:15:09:77:94:56:ff:9f: 3b:3d:09:ce -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBuQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkEzRUUxMTAvBgNVBAUTKDY5NkFGMjNEOTMyOTVDMkY1RkRERjMyQTk1NTEzQjJE REJCRkNFMUIwHhcNMjUxMTA0MjIwNTIyWhcNMjUxMTExMjIwNTIyWjAYMRYwFAYD VQQDEw02OTBhNzhhMi0wOGIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnoZkP4exJxD7EvU5YS7agCXSpP61a6g7ktmYmfpyh0xu1Whvb3nr16SB2Aj2 BQ798lf4CtpkcJwTknpqj3j7pCD5lHjbWoUG432Cbt0QUuInRKkDYEkQQ3fJG7nS Zdwa+qODKXOQDLpSOQ+yv+LPrg/7HdQrMv/+G/8ax0farGIou85ji2GLRJOseKN3 XcdWEwzJdg6VqAy8wIyrfy9koab+FzL0uXp3GswyS19EJpD62hyvDYqg6jalr+KO pMFtG6GWlRNixKCvnup9fyhnvionwfq7VXYj5awb8cKtvjF2vyFRuM6UWTm9De32 cqhKdxliKBGxzLHtD6uyFe2wsQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFACW7vZi GYpFVxb7RWehdk938aDkMB8GA1UdIwQYMBaAFGlq8j2TKVwvX93zKpVROy3bv84b MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QTNFRS81Qjk3QThCODcw MTIxMUVCODkwN0JCMUZDNEY5QUUwMi9hV3J5UFpNcFhDOWYzZk1xbFZFN0xkdV96 aHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FXcnlQWk1wWEM5ZjNmTXFsVkU3TGR1X3pocy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QTNFRS81Qjk3QThCODcwMTIxMUVCODkwN0JCMUZDNEY5QUUwMi9hV3J5UFpNcFhD OWYzZk1xbFZFN0xkdV96aHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBIX+BC7bP3c2aBmId0oVegQhHCCtj5zr7zMrEfuykzAxT1m55/qiZP kYgAB8a1d1Sfas2acQww0uELlTr2wKvPiy8mOVlrWfNg4pdd5mgVE1BpugasunPO zED5vtxHps8fspgVEcAUf4/9z5kJ2Vp5sm1Nj9zjjLf6qNDZzCGuEh7+Wi6pvZT5 rUjrnATR80LLJT5liwxZT3YcdllNzVxPc+Zm1UsJSHPtr9zr9sDU4KVP8YHg0spS CVca62RjxThoqlyw2ioKDk+9H3SbLyrS3TifjefgYqmfjrs81ybqPbvXG/cqmArY Nq5yp6svQjjGpfqKrhUJd5RW/587PQnO -----END CERTIFICATE-----Generated at Wed Nov 5 20:56:42 2025 by rpki-client