$ rpki-client -vvf rpki.apnic.net/member_repository/A91971CB/010EB288808911EB8B505F20C4F9AE02/MZsxRPBqjysw1BIHH-EhB3T-huc.mft File: MZsxRPBqjysw1BIHH-EhB3T-huc.mft (raw, json) Hash identifier: JHTiN8dXQISFUrixc56KQx3HuLgArwBIZlGaP36ZNsQ= Subject key identifier: 91:98:F8:1F:EF:0E:A7:98:85:83:F4:E2:23:58:90:C4:06:7D:01:46 Authority key identifier: 31:9B:31:44:F0:6A:8F:2B:30:D4:12:07:1F:E1:21:07:74:FE:86:E7 Certificate issuer: /CN=A91971CB/serialNumber=319B3144F06A8F2B30D412071FE1210774FE86E7 Certificate serial: 06CF Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/MZsxRPBqjysw1BIHH-EhB3T-huc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91971CB/010EB288808911EB8B505F20C4F9AE02/MZsxRPBqjysw1BIHH-EhB3T-huc.mft Manifest number: 06C8 Signing time: Tue 04 Nov 2025 15:15:33 +0000 Manifest this update: Tue 04 Nov 2025 15:15:33 +0000 Manifest next update: Tue 11 Nov 2025 15:15:33 +0000 Files and hashes: 1: MZsxRPBqjysw1BIHH-EhB3T-huc.crl (hash: eAsrMfCSxEusBq0ZZOH5pugMKDrQutwiP5/bgsculCo=) 2: 27C29E5EF94411EDB4C6E91CC4F9AE02.roa (hash: PGlTDpEV17D+1hrLu4fdfibpz1YbRKMAlzpsoNFgyb4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91971CB/010EB288808911EB8B505F20C4F9AE02/MZsxRPBqjysw1BIHH-EhB3T-huc.crl rsync://rpki.apnic.net/member_repository/A91971CB/010EB288808911EB8B505F20C4F9AE02/MZsxRPBqjysw1BIHH-EhB3T-huc.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/MZsxRPBqjysw1BIHH-EhB3T-huc.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 15:15:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1743 (0x6cf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91971CB, serialNumber=319B3144F06A8F2B30D412071FE1210774FE86E7 Validity Not Before: Nov 4 15:15:33 2025 GMT Not After : Nov 11 15:15:33 2025 GMT Subject: CN=690a1895-4f1c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:7c:b8:d5:14:7e:87:1c:86:09:3b:55:e9:23: db:7c:ba:2a:03:82:67:4b:19:1b:44:62:ae:7c:16: c6:64:37:35:c2:09:c0:ee:ed:05:dc:a0:48:d1:72: 8d:8c:bd:fc:46:43:c8:46:e0:7b:2a:17:bc:c8:12: 1e:32:c3:b3:f4:72:3e:29:60:42:94:12:4e:6b:91: 50:02:8a:1d:a1:31:01:a3:9c:67:9c:2a:75:ed:10: ed:b4:06:8d:6e:51:8a:77:57:b3:0f:5e:ce:06:dd: 7c:4a:94:5e:3c:6d:5b:27:b3:8a:a2:da:9e:c8:5a: 9b:da:43:a7:ce:68:59:45:f4:54:58:4f:f3:21:28: ee:ce:3f:70:82:3f:bf:e3:18:57:6a:26:95:84:b7: 4b:66:c0:b8:43:dd:ab:79:34:5f:bb:e2:1c:cb:0a: da:1a:9b:02:43:10:1e:3d:22:31:42:f3:38:a3:01: 88:e4:73:ec:78:35:2c:5e:d5:30:f2:8d:a5:2e:90: 12:fe:e4:73:2c:57:cd:cf:ec:1b:7c:71:e9:6b:33: 7b:08:86:90:a4:65:e8:aa:ff:18:24:16:0e:36:08: a1:c2:f8:08:85:ea:47:bc:a1:9e:ec:40:84:74:bc: 9d:18:63:26:29:60:18:83:54:87:12:51:de:b1:2d: 7f:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:98:F8:1F:EF:0E:A7:98:85:83:F4:E2:23:58:90:C4:06:7D:01:46 X509v3 Authority Key Identifier: keyid:31:9B:31:44:F0:6A:8F:2B:30:D4:12:07:1F:E1:21:07:74:FE:86:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91971CB/010EB288808911EB8B505F20C4F9AE02/MZsxRPBqjysw1BIHH-EhB3T-huc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/MZsxRPBqjysw1BIHH-EhB3T-huc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91971CB/010EB288808911EB8B505F20C4F9AE02/MZsxRPBqjysw1BIHH-EhB3T-huc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9c:eb:7a:22:4c:fd:7a:2b:15:8a:60:14:85:1f:43:05:65:3a: 98:73:cf:21:c9:1c:3c:17:ef:37:9e:c1:fc:46:7e:c6:a2:10: 6b:5e:83:1e:78:21:21:f1:00:46:10:f5:f7:da:84:30:11:79: 0d:ec:f2:05:f4:4c:84:e0:b6:1c:46:c4:07:6a:37:42:84:1c: 18:80:93:31:fa:78:da:d6:8d:f6:9a:ec:42:99:37:fb:5a:d8: 51:eb:59:bf:93:da:c6:53:e2:57:68:fe:ae:ed:9a:2f:4b:ed: a0:3b:f9:71:12:95:25:9e:b5:26:91:7f:53:c6:de:d1:3c:91: 9c:82:fe:41:3d:56:f7:a2:12:8f:1d:1d:89:01:b7:ab:1f:b9: 67:e7:05:8f:a7:14:b4:8c:06:4e:28:cb:7b:3b:9e:db:cb:36: 18:4a:db:dd:da:cb:2b:eb:35:b8:fa:6e:95:55:dc:d7:6d:e3: 45:a4:65:2d:bd:73:d9:24:c5:89:30:1f:5b:8b:0e:b3:2d:7d: fc:e7:03:b2:94:fa:3e:df:4a:8f:f3:d8:13:77:01:22:74:d2: ee:31:71:ed:c5:51:95:48:93:03:4e:98:13:4d:a6:e9:62:d9: 5c:2e:85:d8:31:7f:8a:c1:b6:b0:8a:1b:ca:be:d8:5f:e6:a1: 86:8c:ee:fc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBs8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTcxQ0IxMTAvBgNVBAUTKDMxOUIzMTQ0RjA2QThGMkIzMEQ0MTIwNzFGRTEyMTA3 NzRGRTg2RTcwHhcNMjUxMTA0MTUxNTMzWhcNMjUxMTExMTUxNTMzWjAYMRYwFAYD VQQDEw02OTBhMTg5NS00ZjFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0Xy41RR+hxyGCTtV6SPbfLoqA4JnSxkbRGKufBbGZDc1wgnA7u0F3KBI0XKN jL38RkPIRuB7Khe8yBIeMsOz9HI+KWBClBJOa5FQAoodoTEBo5xnnCp17RDttAaN blGKd1ezD17OBt18SpRePG1bJ7OKotqeyFqb2kOnzmhZRfRUWE/zISjuzj9wgj+/ 4xhXaiaVhLdLZsC4Q92reTRfu+IcywraGpsCQxAePSIxQvM4owGI5HPseDUsXtUw 8o2lLpAS/uRzLFfNz+wbfHHpazN7CIaQpGXoqv8YJBYONgihwvgIhepHvKGe7ECE dLydGGMmKWAYg1SHElHesS1/uwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJGY+B/v DqeYhYP04iNYkMQGfQFGMB8GA1UdIwQYMBaAFDGbMUTwao8rMNQSBx/hIQd0/obn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzFDQi8wMTBFQjI4ODgw ODkxMUVCOEI1MDVGMjBDNEY5QUUwMi9NWnN4UlBCcWp5c3cxQklISC1FaEIzVC1o dWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL01ac3hSUEJxanlzdzFCSUhILUVoQjNULWh1Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NzFDQi8wMTBFQjI4ODgwODkxMUVCOEI1MDVGMjBDNEY5QUUwMi9NWnN4UlBCcWp5 c3cxQklISC1FaEIzVC1odWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCc63oiTP16KxWKYBSFH0MFZTqYc88hyRw8F+83nsH8Rn7GohBrXoMe eCEh8QBGEPX32oQwEXkN7PIF9EyE4LYcRsQHajdChBwYgJMx+nja1o32muxCmTf7 WthR61m/k9rGU+JXaP6u7ZovS+2gO/lxEpUlnrUmkX9Txt7RPJGcgv5BPVb3ohKP HR2JAberH7ln5wWPpxS0jAZOKMt7O57byzYYStvd2ssr6zW4+m6VVdzXbeNFpGUt vXPZJMWJMB9biw6zLX385wOylPo+30qP89gTdwEidNLuMXHtxVGVSJMDTpgTTabp YtlcLoXYMX+KwbawihvKvthf5qGGjO78 -----END CERTIFICATE-----Generated at Wed Nov 5 19:31:39 2025 by rpki-client