$ rpki-client -vvf rpki.apnic.net/member_repository/A91795CA/F3643B10830511EB97189B39C4F9AE02/2Vzl-zaRXD2M2xDbhkpMcZM82kE.mft File: 2Vzl-zaRXD2M2xDbhkpMcZM82kE.mft (raw, json) Hash identifier: wM+g3TueDBH7PV1yWhs+Rv2QJyBVCjQKnT4QAjok344= Subject key identifier: B1:74:0C:F1:F7:09:C7:A2:54:6C:3D:A5:EC:93:9F:C0:F3:FC:94:CF Authority key identifier: D9:5C:E5:FB:36:91:5C:3D:8C:DB:10:DB:86:4A:4C:71:93:3C:DA:41 Certificate issuer: /CN=A91795CA/serialNumber=D95CE5FB36915C3D8CDB10DB864A4C71933CDA41 Certificate serial: 06C9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2Vzl-zaRXD2M2xDbhkpMcZM82kE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91795CA/F3643B10830511EB97189B39C4F9AE02/2Vzl-zaRXD2M2xDbhkpMcZM82kE.mft Manifest number: 06BF Signing time: Tue 04 Nov 2025 22:19:18 +0000 Manifest this update: Tue 04 Nov 2025 22:19:17 +0000 Manifest next update: Tue 11 Nov 2025 22:19:17 +0000 Files and hashes: 1: 2Vzl-zaRXD2M2xDbhkpMcZM82kE.crl (hash: HVSKSAe1gTH/jDksorsIOAuhZMPLNPckL+eMzOKCpyI=) 2: 0BEE202087BA11EBBBA56067C4F9AE02.roa (hash: Lz3W/TkDVHeZx5YYagD6lr1rtN4/8q3JKJK/D1U5/sg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91795CA/F3643B10830511EB97189B39C4F9AE02/2Vzl-zaRXD2M2xDbhkpMcZM82kE.crl rsync://rpki.apnic.net/member_repository/A91795CA/F3643B10830511EB97189B39C4F9AE02/2Vzl-zaRXD2M2xDbhkpMcZM82kE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2Vzl-zaRXD2M2xDbhkpMcZM82kE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 22:19:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1737 (0x6c9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91795CA, serialNumber=D95CE5FB36915C3D8CDB10DB864A4C71933CDA41 Validity Not Before: Nov 4 22:19:17 2025 GMT Not After : Nov 11 22:19:17 2025 GMT Subject: CN=690a7be6-508b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:17:63:d5:3f:02:40:24:fb:c5:d4:ba:58:99: 09:b8:d2:0e:c2:74:38:61:59:ee:d2:1e:e9:1d:74: f5:c5:36:92:61:58:07:dc:d4:38:6f:8c:e1:39:47: 99:5c:8e:7a:28:90:0e:cf:95:82:bd:41:c8:ab:04: 54:f9:65:2b:65:13:ad:b4:94:78:fb:b7:15:a7:25: 73:86:04:3a:88:a9:0f:ab:34:c6:50:b3:49:e0:ce: fb:cf:97:e4:73:76:91:74:8f:c8:cd:45:75:b4:0d: 23:a9:eb:e8:8e:09:91:aa:a1:40:6f:49:e0:46:c1: 92:0f:3b:b3:0f:f4:f4:1f:e3:8a:92:af:28:ff:fc: 85:56:8e:d6:e1:9b:ec:f3:74:cb:d3:c7:f4:30:64: 35:1c:4a:49:30:cc:1e:53:ce:72:f3:57:fd:40:fb: c2:6c:03:01:b4:4f:11:b7:b1:7f:db:40:da:52:9c: 7d:d4:82:65:f0:5f:54:38:40:77:91:7c:6a:0e:95: c8:46:ca:9f:ed:0e:22:4b:c2:b8:ed:2f:0f:98:fc: d6:9a:b5:8e:c4:99:09:16:68:9e:34:25:ed:e0:00: e5:fb:8f:28:50:a4:fa:9b:15:9b:9c:6f:03:2d:af: bc:0d:93:eb:dd:cd:af:b8:45:5d:a8:fb:2a:48:26: c0:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:74:0C:F1:F7:09:C7:A2:54:6C:3D:A5:EC:93:9F:C0:F3:FC:94:CF X509v3 Authority Key Identifier: keyid:D9:5C:E5:FB:36:91:5C:3D:8C:DB:10:DB:86:4A:4C:71:93:3C:DA:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91795CA/F3643B10830511EB97189B39C4F9AE02/2Vzl-zaRXD2M2xDbhkpMcZM82kE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2Vzl-zaRXD2M2xDbhkpMcZM82kE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91795CA/F3643B10830511EB97189B39C4F9AE02/2Vzl-zaRXD2M2xDbhkpMcZM82kE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b1:f2:51:2e:4a:f4:5b:7a:da:22:7b:4e:70:82:aa:f1:9c:21: a6:5c:0e:27:0d:7a:6d:00:de:2c:ea:ae:f2:c8:5b:35:d4:32: f0:97:cc:12:65:ee:f2:7b:52:8c:63:52:35:49:c0:4c:2e:7d: 6e:75:67:84:6b:f8:26:ec:9c:c0:1c:6c:15:19:8e:0e:19:32: 8d:d3:0d:e5:ad:97:aa:6d:fc:96:96:51:84:5e:1d:a4:2f:29: ec:c2:15:4a:34:9a:34:c7:02:85:db:cf:d5:1a:8e:5f:ad:b4: 35:9c:77:38:b8:be:c8:ed:3f:4b:28:3b:16:d6:50:28:01:fc: 6a:43:21:7d:c6:f0:3c:f2:f0:13:60:e1:b4:60:16:8d:e6:3d: 5b:85:9e:23:8c:76:db:6c:c5:35:70:50:31:85:ee:55:4b:aa: 80:6b:7f:66:af:73:0b:6f:bc:a3:16:11:59:2a:06:41:00:a7: e3:cc:ff:9b:e5:29:bf:1f:99:52:82:26:5c:91:74:c9:0f:aa: 9b:ca:f2:47:29:4c:51:f9:a2:de:a5:b9:f9:f3:c9:4d:f8:3f: 27:23:26:23:ba:6e:db:9b:d4:07:1f:94:5a:9e:e2:21:92:ce: 4f:dc:27:90:3c:48:14:39:ab:ee:e0:6c:7b:4f:a5:fc:33:7a: fb:d9:f0:6f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBskwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Nzk1Q0ExMTAvBgNVBAUTKEQ5NUNFNUZCMzY5MTVDM0Q4Q0RCMTBEQjg2NEE0Qzcx OTMzQ0RBNDEwHhcNMjUxMTA0MjIxOTE3WhcNMjUxMTExMjIxOTE3WjAYMRYwFAYD VQQDEw02OTBhN2JlNi01MDhiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuxdj1T8CQCT7xdS6WJkJuNIOwnQ4YVnu0h7pHXT1xTaSYVgH3NQ4b4zhOUeZ XI56KJAOz5WCvUHIqwRU+WUrZROttJR4+7cVpyVzhgQ6iKkPqzTGULNJ4M77z5fk c3aRdI/IzUV1tA0jqevojgmRqqFAb0ngRsGSDzuzD/T0H+OKkq8o//yFVo7W4Zvs 83TL08f0MGQ1HEpJMMweU85y81f9QPvCbAMBtE8Rt7F/20DaUpx91IJl8F9UOEB3 kXxqDpXIRsqf7Q4iS8K47S8PmPzWmrWOxJkJFmieNCXt4ADl+48oUKT6mxWbnG8D La+8DZPr3c2vuEVdqPsqSCbAuQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLF0DPH3 CceiVGw9peyTn8Dz/JTPMB8GA1UdIwQYMBaAFNlc5fs2kVw9jNsQ24ZKTHGTPNpB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OTVDQS9GMzY0M0IxMDgz MDUxMUVCOTcxODlCMzlDNEY5QUUwMi8yVnpsLXphUlhEMk0yeERiaGtwTWNaTTgy a0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJWemwtemFSWEQyTTJ4RGJoa3BNY1pNODJrRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 OTVDQS9GMzY0M0IxMDgzMDUxMUVCOTcxODlCMzlDNEY5QUUwMi8yVnpsLXphUlhE Mk0yeERiaGtwTWNaTTgya0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCx8lEuSvRbetoie05wgqrxnCGmXA4nDXptAN4s6q7yyFs11DLwl8wS Ze7ye1KMY1I1ScBMLn1udWeEa/gm7JzAHGwVGY4OGTKN0w3lrZeqbfyWllGEXh2k LynswhVKNJo0xwKF28/VGo5frbQ1nHc4uL7I7T9LKDsW1lAoAfxqQyF9xvA88vAT YOG0YBaN5j1bhZ4jjHbbbMU1cFAxhe5VS6qAa39mr3MLb7yjFhFZKgZBAKfjzP+b 5Sm/H5lSgiZckXTJD6qbyvJHKUxR+aLepbn588lN+D8nIyYjum7bm9QHH5RanuIh ks5P3CeQPEgUOavu4Gx7T6X8M3r72fBv -----END CERTIFICATE-----Generated at Wed Nov 5 12:26:45 2025 by rpki-client