$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4B1A/5DD48AB689F211E69E5F6339C4F9AE02/zhFGgP9vTZvD8YgNYQ1q7urr8NQ.mft File: zhFGgP9vTZvD8YgNYQ1q7urr8NQ.mft (raw, json) Hash identifier: dc0mTkoRVpaPOTI0mir/aFDlsF2ZwddDlS8yx0fVFTA= Subject key identifier: 62:35:E4:FD:9D:64:FA:B0:0E:DD:51:11:11:41:E4:A9:A1:26:02:BD Authority key identifier: CE:11:46:80:FF:6F:4D:9B:C3:F1:88:0D:61:0D:6A:EE:EA:EB:F0:D4 Certificate issuer: /CN=A91A4B1A/serialNumber=CE114680FF6F4D9BC3F1880D610D6AEEEAEBF0D4 Certificate serial: 1E69 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zhFGgP9vTZvD8YgNYQ1q7urr8NQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4B1A/5DD48AB689F211E69E5F6339C4F9AE02/zhFGgP9vTZvD8YgNYQ1q7urr8NQ.mft Manifest number: 1E58 Signing time: Tue 04 Nov 2025 16:10:14 +0000 Manifest this update: Tue 04 Nov 2025 16:10:13 +0000 Manifest next update: Tue 11 Nov 2025 16:10:13 +0000 Files and hashes: 1: zhFGgP9vTZvD8YgNYQ1q7urr8NQ.crl (hash: ts6vgwQkkca7KW5THfCV6DyxcLbZnjx5pmIooPVMmcw=) 2: 4A6679EC14DF11EEAB46A86DC4F9AE02.roa (hash: yY5rZMTsOpnGO6cAR5A6bi22J/lJ789z+ED1oN3orxw=) 3: 4B52A44814DF11EEAB46A86DC4F9AE02.roa (hash: 36rBW03tvoWvEp5FFhkEkP0PegguzR76VTv8hEMsFNk=) 4: 1DBC9D405DB411EEA017251AC4F9AE02.roa (hash: 2w+ZZZiHGzET+UAGMpulJr633xByME/2FAJYerduoZE=) 5: 4CE75372B9DE11EEBC5B0D21C4F9AE02.roa (hash: yps3mcP7HEC1/XDzl5d78p6GLXVPbcsPt7pEv3x1HZA=) 6: 4999305414DF11EEAB46A86DC4F9AE02.roa (hash: Bl17bhrifD1PMrI4c5ur7v5yVCt37LP+FsjpzcQgt1k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4B1A/5DD48AB689F211E69E5F6339C4F9AE02/zhFGgP9vTZvD8YgNYQ1q7urr8NQ.crl rsync://rpki.apnic.net/member_repository/A91A4B1A/5DD48AB689F211E69E5F6339C4F9AE02/zhFGgP9vTZvD8YgNYQ1q7urr8NQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zhFGgP9vTZvD8YgNYQ1q7urr8NQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 16:10:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7785 (0x1e69) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4B1A, serialNumber=CE114680FF6F4D9BC3F1880D610D6AEEEAEBF0D4 Validity Not Before: Nov 4 16:10:13 2025 GMT Not After : Nov 11 16:10:13 2025 GMT Subject: CN=690a2565-2c8d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:68:5c:38:3c:1d:ac:aa:5c:3c:09:f2:de:6a: ff:d1:c4:2d:1c:8c:4c:f4:ba:1d:d3:9d:1e:3c:04: 4b:83:73:43:14:f1:52:a0:5f:91:9f:8e:d4:7d:1f: 02:84:25:73:cc:62:32:10:31:a9:2c:9b:61:8a:ba: 18:3e:01:e3:7f:70:e7:86:44:72:f4:39:05:b0:6b: d9:4c:7a:16:15:0d:99:6b:a9:c9:13:46:94:a4:5d: 9b:5a:2f:88:0b:f5:14:3c:93:7d:f0:7b:09:6c:53: f5:67:ff:4d:62:7e:dc:14:e0:08:13:ef:06:59:a7: 82:94:23:3a:75:79:f6:e0:85:d4:60:b3:dd:70:14: 9a:80:37:51:24:29:33:b5:7d:cf:28:22:b7:f0:7e: 7c:56:f6:65:42:0f:96:53:00:45:46:8e:b6:f7:2e: 5b:7e:31:9c:8c:7b:68:3b:64:7b:08:80:41:77:c2: 56:b7:ea:c1:68:65:7e:4e:35:ee:2d:6c:21:88:45: 28:75:cf:b1:97:fd:fb:4f:9d:40:37:2f:1e:f3:d9: 92:e0:b5:30:aa:d0:32:74:48:ce:26:cf:6c:da:dd: 04:a1:1a:ba:f3:b7:d3:73:0e:d1:18:28:dd:e3:4e: 62:d5:50:7a:7d:04:5a:08:97:87:2f:69:0f:f3:b7: b8:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:35:E4:FD:9D:64:FA:B0:0E:DD:51:11:11:41:E4:A9:A1:26:02:BD X509v3 Authority Key Identifier: keyid:CE:11:46:80:FF:6F:4D:9B:C3:F1:88:0D:61:0D:6A:EE:EA:EB:F0:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4B1A/5DD48AB689F211E69E5F6339C4F9AE02/zhFGgP9vTZvD8YgNYQ1q7urr8NQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zhFGgP9vTZvD8YgNYQ1q7urr8NQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4B1A/5DD48AB689F211E69E5F6339C4F9AE02/zhFGgP9vTZvD8YgNYQ1q7urr8NQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 28:62:7a:63:78:9e:12:fa:36:e9:91:ec:24:02:0d:8d:fe:6e: e2:21:85:9e:d1:42:d9:8f:58:ad:32:1f:bb:ad:93:d6:ca:3f: e6:d2:6a:c9:11:ad:fa:a7:79:d6:c8:77:81:3b:2c:8b:7e:3b: e2:1b:89:c5:8d:06:a2:c2:62:27:20:46:a0:57:27:07:ff:2c: 8b:39:1a:32:d9:92:a9:9e:3b:e1:25:e6:43:ff:ee:c8:9f:5f: 8b:ef:6a:41:84:47:30:85:c1:f5:43:b2:b1:b7:0e:e4:c8:76: 26:15:b0:89:84:51:55:eb:94:a6:ed:eb:6e:af:27:6c:e0:0a: 77:13:6d:6d:b1:ce:d6:16:c5:cc:43:c4:3c:a7:2f:fa:70:14: 98:45:74:5e:5e:c2:e5:cd:1b:42:54:ac:03:2d:db:18:47:64: ba:bc:0a:5b:ed:11:44:75:70:44:d3:da:6f:7f:b6:d4:c9:04: 69:c5:27:59:62:71:b1:f2:a3:04:c1:d6:e2:fb:fe:01:c3:31: d3:ec:e7:ea:20:f2:a4:9e:47:2f:56:e2:d8:08:a6:c6:e7:c2: 34:c4:c3:5f:73:5d:63:27:f6:5e:45:dc:18:6f:a4:8d:39:40: fa:48:43:32:4e:21:0b:11:6d:f9:22:c2:87:35:61:c0:71:a0: a6:f5:a8:bc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHmkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTRCMUExMTAvBgNVBAUTKENFMTE0NjgwRkY2RjREOUJDM0YxODgwRDYxMEQ2QUVF RUFFQkYwRDQwHhcNMjUxMTA0MTYxMDEzWhcNMjUxMTExMTYxMDEzWjAYMRYwFAYD VQQDEw02OTBhMjU2NS0yYzhkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyWhcODwdrKpcPAny3mr/0cQtHIxM9Lod050ePARLg3NDFPFSoF+Rn47UfR8C hCVzzGIyEDGpLJthiroYPgHjf3DnhkRy9DkFsGvZTHoWFQ2Za6nJE0aUpF2bWi+I C/UUPJN98HsJbFP1Z/9NYn7cFOAIE+8GWaeClCM6dXn24IXUYLPdcBSagDdRJCkz tX3PKCK38H58VvZlQg+WUwBFRo629y5bfjGcjHtoO2R7CIBBd8JWt+rBaGV+TjXu LWwhiEUodc+xl/37T51ANy8e89mS4LUwqtAydEjOJs9s2t0EoRq687fTcw7RGCjd 405i1VB6fQRaCJeHL2kP87e4TQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGI15P2d ZPqwDt1RERFB5KmhJgK9MB8GA1UdIwQYMBaAFM4RRoD/b02bw/GIDWENau7q6/DU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNEIxQS81REQ0OEFCNjg5 RjIxMUU2OUU1RjYzMzlDNEY5QUUwMi96aEZHZ1A5dlRadkQ4WWdOWVExcTd1cnI4 TlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3poRkdnUDl2VFp2RDhZZ05ZUTFxN3VycjhOUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NEIxQS81REQ0OEFCNjg5RjIxMUU2OUU1RjYzMzlDNEY5QUUwMi96aEZHZ1A5dlRa dkQ4WWdOWVExcTd1cnI4TlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAoYnpjeJ4S+jbpkewkAg2N/m7iIYWe0ULZj1itMh+7rZPWyj/m0mrJ Ea36p3nWyHeBOyyLfjviG4nFjQaiwmInIEagVycH/yyLORoy2ZKpnjvhJeZD/+7I n1+L72pBhEcwhcH1Q7Kxtw7kyHYmFbCJhFFV65Sm7eturyds4Ap3E21tsc7WFsXM Q8Q8py/6cBSYRXReXsLlzRtCVKwDLdsYR2S6vApb7RFEdXBE09pvf7bUyQRpxSdZ YnGx8qMEwdbi+/4BwzHT7OfqIPKknkcvVuLYCKbG58I0xMNfc11jJ/ZeRdwYb6SN OUD6SEMyTiELEW35IsKHNWHAcaCm9ai8 -----END CERTIFICATE-----Generated at Wed Nov 5 22:35:43 2025 by rpki-client