$ rpki-client -vvf rpki.apnic.net/member_repository/A918E0B2/67042C18EF6411EB833FC80DC4F9AE02/Cz66iPGtoaG1CJGyZTGj5wm_ZZo.mft File: Cz66iPGtoaG1CJGyZTGj5wm_ZZo.mft (raw, json) Hash identifier: U0DYXQ61nR9Ztj25hkNztt1DBDihP1z38ny8aYeC2KI= Subject key identifier: 5A:7F:8F:D8:77:98:AD:27:3D:F1:94:82:06:5D:1E:31:D0:1A:C3:9E Authority key identifier: 0B:3E:BA:88:F1:AD:A1:A1:B5:08:91:B2:65:31:A3:E7:09:BF:65:9A Certificate issuer: /CN=A918E0B2/serialNumber=0B3EBA88F1ADA1A1B50891B26531A3E709BF659A Certificate serial: 05A4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Cz66iPGtoaG1CJGyZTGj5wm_ZZo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918E0B2/67042C18EF6411EB833FC80DC4F9AE02/Cz66iPGtoaG1CJGyZTGj5wm_ZZo.mft Manifest number: 059A Signing time: Sun 02 Nov 2025 23:09:32 +0000 Manifest this update: Sun 02 Nov 2025 23:09:32 +0000 Manifest next update: Sun 09 Nov 2025 23:09:32 +0000 Files and hashes: 1: Cz66iPGtoaG1CJGyZTGj5wm_ZZo.crl (hash: SPVYPuwKjPosqa73YMmToXtnjg5lD+/worXTi50r3rc=) 2: 63E3EB3EEF6611EB9A7EFE0EC4F9AE02.roa (hash: EqiHTn4Bvx29MtI27T1i2scxIu1sELWg2VCi9UdcIbA=) 3: 64720824EF6611EB9A7EFE0EC4F9AE02.roa (hash: pMhtrW7+OEb1a5aMFUrv7KoBkS+JHvtrZZHpxKICBfQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918E0B2/67042C18EF6411EB833FC80DC4F9AE02/Cz66iPGtoaG1CJGyZTGj5wm_ZZo.crl rsync://rpki.apnic.net/member_repository/A918E0B2/67042C18EF6411EB833FC80DC4F9AE02/Cz66iPGtoaG1CJGyZTGj5wm_ZZo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Cz66iPGtoaG1CJGyZTGj5wm_ZZo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 23:09:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1444 (0x5a4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918E0B2, serialNumber=0B3EBA88F1ADA1A1B50891B26531A3E709BF659A Validity Not Before: Nov 2 23:09:32 2025 GMT Not After : Nov 9 23:09:32 2025 GMT Subject: CN=6907e4ac-a477 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:fd:19:fb:1a:40:7b:39:35:27:e1:1b:e1:50: 95:e0:be:42:69:82:49:44:21:31:62:b1:2e:07:df: f6:11:56:40:49:65:88:d1:4b:a0:36:0c:5b:f6:67: 36:8e:37:45:aa:f8:c5:d9:b9:c4:e9:da:8e:4e:6f: b3:ea:3b:f8:b8:21:80:cb:cf:1d:19:94:59:e9:53: bf:d8:8f:c7:ba:a8:70:ef:10:6c:26:85:d4:3a:eb: e1:19:25:e8:f4:94:e9:35:cd:a2:24:61:ba:25:c7: f1:23:d0:4d:cf:2a:9f:ad:37:ea:ff:1c:16:eb:af: 24:ab:c7:d7:31:45:99:60:f6:f4:a4:2f:d5:3f:8d: 0e:cf:b5:98:5c:0a:98:8a:c0:39:d4:5e:4f:d3:4e: 4a:16:1c:13:31:35:3e:ec:c5:74:c7:7a:47:88:6f: a4:16:b3:34:58:fd:99:1a:59:7f:6d:0f:5c:df:6a: 88:df:08:3f:f8:b4:9c:55:5a:bf:63:b7:d7:d6:eb: 19:24:10:78:fa:bb:6f:98:2e:99:08:93:95:e4:96: 5f:c8:a9:82:f7:82:fd:70:5e:62:5b:ea:21:56:c2: 0f:32:6b:95:90:d2:c8:33:37:48:23:76:f1:3c:9d: bb:4d:49:cf:4e:bf:8e:cf:ee:c7:ca:5c:8b:7d:9b: 52:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:7F:8F:D8:77:98:AD:27:3D:F1:94:82:06:5D:1E:31:D0:1A:C3:9E X509v3 Authority Key Identifier: keyid:0B:3E:BA:88:F1:AD:A1:A1:B5:08:91:B2:65:31:A3:E7:09:BF:65:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918E0B2/67042C18EF6411EB833FC80DC4F9AE02/Cz66iPGtoaG1CJGyZTGj5wm_ZZo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Cz66iPGtoaG1CJGyZTGj5wm_ZZo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918E0B2/67042C18EF6411EB833FC80DC4F9AE02/Cz66iPGtoaG1CJGyZTGj5wm_ZZo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bb:2c:ad:ed:26:89:1d:0a:f6:02:f9:60:11:23:32:9d:15:87: 02:24:72:0f:e3:3b:51:3c:4b:76:70:65:dd:e5:b6:20:4d:66: e0:83:a6:b3:84:81:d2:b5:ca:53:77:a2:5f:01:15:33:b2:9e: 6b:c4:e9:44:8c:73:fa:5f:d1:3a:ee:b9:09:b2:f0:f4:48:0c: 49:ee:97:e9:e5:9a:20:dc:d1:f6:d5:06:2a:f7:ba:c4:f8:7b: 5c:2b:c7:b0:31:63:48:70:6d:96:25:48:d3:4c:9d:bf:6e:92: 9d:87:6a:17:e7:3a:03:b5:94:fc:d2:8a:b8:29:3c:74:f6:a1: d5:aa:19:29:d2:7a:7e:ed:38:ed:15:dc:d3:b5:8d:d8:dc:56: fa:35:ba:fd:9e:42:56:37:01:e2:b0:38:05:49:e4:94:39:25: d8:19:84:b5:f1:aa:9d:b3:81:b6:d4:3d:98:80:30:10:17:ba: 41:44:9e:f2:25:ff:a5:09:2a:df:fe:44:a1:24:89:49:8a:22: e1:40:89:f0:2e:41:51:76:3f:2f:b8:71:e6:38:57:1f:9d:0c: bd:97:a2:5b:25:b8:07:21:ce:88:e4:31:30:e8:37:cc:bd:e5: 49:27:4b:7f:c0:78:d7:11:1d:fe:71:18:78:25:4f:49:7a:ed: 9b:65:48:e5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBaQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEUwQjIxMTAvBgNVBAUTKDBCM0VCQTg4RjFBREExQTFCNTA4OTFCMjY1MzFBM0U3 MDlCRjY1OUEwHhcNMjUxMTAyMjMwOTMyWhcNMjUxMTA5MjMwOTMyWjAYMRYwFAYD VQQDEw02OTA3ZTRhYy1hNDc3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuv0Z+xpAezk1J+Eb4VCV4L5CaYJJRCExYrEuB9/2EVZASWWI0UugNgxb9mc2 jjdFqvjF2bnE6dqOTm+z6jv4uCGAy88dGZRZ6VO/2I/Huqhw7xBsJoXUOuvhGSXo 9JTpNc2iJGG6JcfxI9BNzyqfrTfq/xwW668kq8fXMUWZYPb0pC/VP40Oz7WYXAqY isA51F5P005KFhwTMTU+7MV0x3pHiG+kFrM0WP2ZGll/bQ9c32qI3wg/+LScVVq/ Y7fX1usZJBB4+rtvmC6ZCJOV5JZfyKmC94L9cF5iW+ohVsIPMmuVkNLIMzdII3bx PJ27TUnPTr+Oz+7HylyLfZtSxwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFp/j9h3 mK0nPfGUggZdHjHQGsOeMB8GA1UdIwQYMBaAFAs+uojxraGhtQiRsmUxo+cJv2Wa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RTBCMi82NzA0MkMxOEVG NjQxMUVCODMzRkM4MERDNEY5QUUwMi9DejY2aVBHdG9hRzFDSkd5WlRHajV3bV9a Wm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0N6NjZpUEd0b2FHMUNKR3laVEdqNXdtX1paby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RTBCMi82NzA0MkMxOEVGNjQxMUVCODMzRkM4MERDNEY5QUUwMi9DejY2aVBHdG9h RzFDSkd5WlRHajV3bV9aWm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC7LK3tJokdCvYC+WARIzKdFYcCJHIP4ztRPEt2cGXd5bYgTWbgg6az hIHStcpTd6JfARUzsp5rxOlEjHP6X9E67rkJsvD0SAxJ7pfp5Zog3NH21QYq97rE +HtcK8ewMWNIcG2WJUjTTJ2/bpKdh2oX5zoDtZT80oq4KTx09qHVqhkp0np+7Tjt FdzTtY3Y3Fb6Nbr9nkJWNwHisDgFSeSUOSXYGYS18aqds4G21D2YgDAQF7pBRJ7y Jf+lCSrf/kShJIlJiiLhQInwLkFRdj8vuHHmOFcfnQy9l6JbJbgHIc6I5DEw6DfM veVJJ0t/wHjXER3+cRh4JU9Jeu2bZUjl -----END CERTIFICATE-----Generated at Tue Nov 4 22:27:40 2025 by rpki-client