$ rpki-client -vvf rpki.apnic.net/member_repository/A91899BB/88C2F15E885811EB96CE6817C4F9AE02/ZfYWHHNtGpxBkf38x6T4JM4RIy0.mft File: ZfYWHHNtGpxBkf38x6T4JM4RIy0.mft (raw, json) Hash identifier: VGYYOQdjTUYBavaoXPaQiw713Mz5J870j0XYmCUnehU= Subject key identifier: 7C:E5:CC:CD:7C:15:1B:FB:E4:C4:3F:8B:56:6C:D1:38:59:06:A3:5B Authority key identifier: 65:F6:16:1C:73:6D:1A:9C:41:91:FD:FC:C7:A4:F8:24:CE:11:23:2D Certificate issuer: /CN=A91899BB/serialNumber=65F6161C736D1A9C4191FDFCC7A4F824CE11232D Certificate serial: 06A3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZfYWHHNtGpxBkf38x6T4JM4RIy0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91899BB/88C2F15E885811EB96CE6817C4F9AE02/ZfYWHHNtGpxBkf38x6T4JM4RIy0.mft Manifest number: 06A0 Signing time: Tue 04 Nov 2025 22:23:58 +0000 Manifest this update: Tue 04 Nov 2025 22:23:58 +0000 Manifest next update: Tue 11 Nov 2025 22:23:58 +0000 Files and hashes: 1: ZfYWHHNtGpxBkf38x6T4JM4RIy0.crl (hash: 3LzY+XFMNcBKNizREYJoq5wL8eZL4r//MA7dgleF8X4=) 2: 54CB555C57A311F09664E82DC4F9AE02.roa (hash: +36ZiREOaXQ0L85WY9dsXKbxSFUahU97iWT+nNCGEQQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91899BB/88C2F15E885811EB96CE6817C4F9AE02/ZfYWHHNtGpxBkf38x6T4JM4RIy0.crl rsync://rpki.apnic.net/member_repository/A91899BB/88C2F15E885811EB96CE6817C4F9AE02/ZfYWHHNtGpxBkf38x6T4JM4RIy0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZfYWHHNtGpxBkf38x6T4JM4RIy0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 22:23:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1699 (0x6a3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91899BB, serialNumber=65F6161C736D1A9C4191FDFCC7A4F824CE11232D Validity Not Before: Nov 4 22:23:58 2025 GMT Not After : Nov 11 22:23:58 2025 GMT Subject: CN=690a7cfe-d6a6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:9f:7e:85:6b:1e:5c:c4:1a:08:e8:46:3b:a7: 9c:b0:95:68:0f:4a:56:3b:94:d9:bc:fd:6a:35:2f: fe:73:f8:75:5a:20:d0:2a:34:9e:1a:3c:89:2b:65: 89:47:0d:51:e9:7a:5a:f4:a3:f2:40:89:4f:56:d9: 01:84:3c:22:c9:4a:ac:8b:a9:c2:0f:d3:c4:ca:71: 2d:1c:0c:20:c9:1e:ee:2b:7a:1f:6f:a0:46:e9:17: 04:f5:eb:5c:2a:b9:04:79:8d:73:6e:12:6c:06:00: 9d:af:98:d4:95:f5:30:69:bc:dd:22:71:b6:e0:2f: b1:24:f7:33:63:71:48:be:9c:8d:e7:13:7b:72:32: b4:e9:ee:e6:4a:f8:62:a8:84:72:c6:d2:9c:cc:00: be:72:70:ba:e8:e3:19:93:aa:19:4d:4c:8b:ab:33: c9:cb:33:99:80:1e:72:6a:36:53:01:a9:da:e0:16: 47:dd:8a:77:ae:86:5e:8c:b1:6e:24:b6:4c:54:94: 3f:49:6c:62:b1:11:bb:ae:9d:2b:1f:97:08:0c:41: 0d:00:a8:66:77:c0:5a:64:c3:c0:a8:5b:ef:83:11: eb:e6:ee:44:a6:ba:ec:cb:d0:bb:a6:ed:b3:4e:cb: 78:66:c7:47:05:f3:e2:15:2c:cc:36:87:b8:76:bc: a9:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:E5:CC:CD:7C:15:1B:FB:E4:C4:3F:8B:56:6C:D1:38:59:06:A3:5B X509v3 Authority Key Identifier: keyid:65:F6:16:1C:73:6D:1A:9C:41:91:FD:FC:C7:A4:F8:24:CE:11:23:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91899BB/88C2F15E885811EB96CE6817C4F9AE02/ZfYWHHNtGpxBkf38x6T4JM4RIy0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZfYWHHNtGpxBkf38x6T4JM4RIy0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91899BB/88C2F15E885811EB96CE6817C4F9AE02/ZfYWHHNtGpxBkf38x6T4JM4RIy0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 61:7f:0a:d1:2c:c3:f9:41:fd:8d:1f:40:e4:7b:52:76:3a:17: 04:a1:63:94:9e:69:ba:27:a7:9c:59:76:8c:51:c8:83:48:e9: 24:03:f2:78:8d:02:fd:ce:05:10:2c:2a:2c:7c:a6:33:cc:f2: 45:ee:ab:5b:7b:81:c5:25:15:4e:5b:9c:e2:26:1b:ef:35:80: b9:aa:71:c8:e8:f8:36:8a:1b:7d:6e:17:39:7e:a8:fe:1f:86: 4f:f6:f7:da:a5:3c:ab:34:ad:0b:c3:70:43:6d:85:5f:8c:8f: b2:41:08:4c:d9:ca:10:bf:a7:fc:1d:12:f2:c0:f4:f3:60:5e: 19:97:88:10:28:9c:4a:d6:a5:b3:c0:f9:44:fe:72:b4:22:c0: 74:1f:3c:a7:e7:3e:42:3f:c6:62:ed:14:55:ed:f4:c1:bb:68: db:59:8f:99:42:ff:8c:cc:7b:6d:da:30:c0:30:29:3f:1c:8b: e7:76:fc:bc:34:62:28:3d:ae:1c:d7:73:30:d8:a2:75:01:9e: 82:bc:28:ab:49:8a:59:ba:1f:f7:4a:ec:fd:4b:a9:02:5c:0c: 41:57:d3:ec:12:ae:7f:43:7a:3a:31:e5:37:b4:58:d0:62:96: a3:5e:12:84:05:3d:6b:48:68:be:cf:12:b1:2c:56:d4:d7:36: e4:45:de:1e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBqMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODk5QkIxMTAvBgNVBAUTKDY1RjYxNjFDNzM2RDFBOUM0MTkxRkRGQ0M3QTRGODI0 Q0UxMTIzMkQwHhcNMjUxMTA0MjIyMzU4WhcNMjUxMTExMjIyMzU4WjAYMRYwFAYD VQQDEw02OTBhN2NmZS1kNmE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwJ9+hWseXMQaCOhGO6ecsJVoD0pWO5TZvP1qNS/+c/h1WiDQKjSeGjyJK2WJ Rw1R6Xpa9KPyQIlPVtkBhDwiyUqsi6nCD9PEynEtHAwgyR7uK3ofb6BG6RcE9etc KrkEeY1zbhJsBgCdr5jUlfUwabzdInG24C+xJPczY3FIvpyN5xN7cjK06e7mSvhi qIRyxtKczAC+cnC66OMZk6oZTUyLqzPJyzOZgB5yajZTAana4BZH3Yp3roZejLFu JLZMVJQ/SWxisRG7rp0rH5cIDEENAKhmd8BaZMPAqFvvgxHr5u5Eprrsy9C7pu2z Tst4ZsdHBfPiFSzMNoe4drypfwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHzlzM18 FRv75MQ/i1Zs0ThZBqNbMB8GA1UdIwQYMBaAFGX2FhxzbRqcQZH9/Mek+CTOESMt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4OTlCQi84OEMyRjE1RTg4 NTgxMUVCOTZDRTY4MTdDNEY5QUUwMi9aZllXSEhOdEdweEJrZjM4eDZUNEpNNFJJ eTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pmWVdISE50R3B4QmtmMzh4NlQ0Sk00Ukl5MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 OTlCQi84OEMyRjE1RTg4NTgxMUVCOTZDRTY4MTdDNEY5QUUwMi9aZllXSEhOdEdw eEJrZjM4eDZUNEpNNFJJeTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBhfwrRLMP5Qf2NH0Dke1J2OhcEoWOUnmm6J6ecWXaMUciDSOkkA/J4 jQL9zgUQLCosfKYzzPJF7qtbe4HFJRVOW5ziJhvvNYC5qnHI6Pg2iht9bhc5fqj+ H4ZP9vfapTyrNK0Lw3BDbYVfjI+yQQhM2coQv6f8HRLywPTzYF4Zl4gQKJxK1qWz wPlE/nK0IsB0Hzyn5z5CP8Zi7RRV7fTBu2jbWY+ZQv+MzHtt2jDAMCk/HIvndvy8 NGIoPa4c13Mw2KJ1AZ6CvCirSYpZuh/3Suz9S6kCXAxBV9PsEq5/Q3o6MeU3tFjQ YpajXhKEBT1rSGi+zxKxLFbU1zbkRd4e -----END CERTIFICATE-----Generated at Wed Nov 5 15:03:35 2025 by rpki-client