$ rpki-client -vvf rpki.apnic.net/member_repository/A91A6CD6/65E6DBD69CA911EB8AFF0F37C4F9AE02/zFYVfHLcxpczY2dD21AIdZMtpB8.mft File: zFYVfHLcxpczY2dD21AIdZMtpB8.mft (raw, json) Hash identifier: mVnSxyj/4okfPcmaquhtK92C002T4i6mCU8Z1pPjFF0= Subject key identifier: 47:0D:28:45:BF:5A:49:DB:F2:40:0C:EF:B4:7A:9D:5A:52:37:3F:CE Authority key identifier: CC:56:15:7C:72:DC:C6:97:33:63:67:43:DB:50:08:75:93:2D:A4:1F Certificate issuer: /CN=A91A6CD6/serialNumber=CC56157C72DCC69733636743DB500875932DA41F Certificate serial: 0678 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zFYVfHLcxpczY2dD21AIdZMtpB8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A6CD6/65E6DBD69CA911EB8AFF0F37C4F9AE02/zFYVfHLcxpczY2dD21AIdZMtpB8.mft Manifest number: 0671 Signing time: Tue 04 Nov 2025 22:37:19 +0000 Manifest this update: Tue 04 Nov 2025 22:37:18 +0000 Manifest next update: Tue 11 Nov 2025 22:37:18 +0000 Files and hashes: 1: zFYVfHLcxpczY2dD21AIdZMtpB8.crl (hash: Ws2cK2RWwyE9IXhqM1CxuoLnJXm8TPfU6TOFJ4S/eY8=) 2: A210E7309CAB11EBAB87D43AC4F9AE02.roa (hash: Up4WhD3Nf9WRZOsGh/RIfu2ds6rWcEA9ea8zVjDFpwI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A6CD6/65E6DBD69CA911EB8AFF0F37C4F9AE02/zFYVfHLcxpczY2dD21AIdZMtpB8.crl rsync://rpki.apnic.net/member_repository/A91A6CD6/65E6DBD69CA911EB8AFF0F37C4F9AE02/zFYVfHLcxpczY2dD21AIdZMtpB8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zFYVfHLcxpczY2dD21AIdZMtpB8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 22:37:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1656 (0x678) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A6CD6, serialNumber=CC56157C72DCC69733636743DB500875932DA41F Validity Not Before: Nov 4 22:37:18 2025 GMT Not After : Nov 11 22:37:18 2025 GMT Subject: CN=690a801e-3c3b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:43:d8:d1:04:8a:02:07:52:50:df:31:76:c4: da:f5:85:a0:9e:20:e1:53:f7:80:d5:dc:14:0e:88: de:ce:05:13:78:c7:03:8b:e8:91:74:2b:6f:fa:5f: c0:88:c5:8d:ad:9e:34:88:62:44:ca:37:14:5b:91: b8:16:f2:f5:a7:16:50:06:1e:7a:d0:ac:40:cc:4e: 87:5f:4e:56:f7:9d:b3:76:94:e7:a1:a0:31:45:33: 7c:02:c0:96:0e:02:e2:01:6a:91:2a:a3:28:17:31: ea:8c:a7:30:4a:30:7b:c3:c3:a4:dd:82:73:6c:85: a1:0f:76:27:17:f2:4a:98:53:0d:d0:de:04:49:fc: a8:a7:24:65:a4:29:99:22:20:24:33:0a:8e:c9:69: e9:e0:1e:43:c8:1e:b9:2b:fd:d5:dc:04:07:5d:d1: b6:1f:86:b5:35:19:5c:68:69:54:bd:f3:d6:95:3b: 71:92:2f:c8:15:3f:ea:3d:ad:75:f6:cb:f0:ba:49: 84:ba:13:97:c5:dc:9e:94:e3:2b:d7:1d:52:04:04: ce:21:11:de:26:02:0b:8f:dc:06:9a:aa:4e:54:65: e8:e3:b9:dc:9f:a7:54:c4:90:b4:4f:c8:65:31:a4: c2:cc:11:2c:0a:47:73:9c:47:fb:4f:d6:4f:d1:41: f1:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:0D:28:45:BF:5A:49:DB:F2:40:0C:EF:B4:7A:9D:5A:52:37:3F:CE X509v3 Authority Key Identifier: keyid:CC:56:15:7C:72:DC:C6:97:33:63:67:43:DB:50:08:75:93:2D:A4:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A6CD6/65E6DBD69CA911EB8AFF0F37C4F9AE02/zFYVfHLcxpczY2dD21AIdZMtpB8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zFYVfHLcxpczY2dD21AIdZMtpB8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A6CD6/65E6DBD69CA911EB8AFF0F37C4F9AE02/zFYVfHLcxpczY2dD21AIdZMtpB8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7d:cf:fb:1a:40:c2:b7:ce:17:0f:b9:a6:10:1c:c7:07:d0:a4: 12:46:06:d9:53:a8:30:8d:e1:4f:6d:ac:33:10:42:3a:ce:07: 49:14:78:d6:ab:c4:e5:1e:c8:fb:01:62:d7:39:b8:01:b7:e3: ae:fa:8e:41:47:7a:19:54:cd:c3:61:4a:ea:1d:cd:50:bf:60: b4:47:c2:a2:fa:de:6e:21:10:70:a5:92:22:20:ed:27:7f:fd: 4d:0e:2e:ff:ba:f0:3a:8a:ed:db:6a:f2:c6:a2:b4:64:45:aa: 51:00:aa:2a:39:66:45:bf:e9:c2:27:24:30:8f:61:6b:ea:2e: 43:a4:92:47:ba:72:dc:68:64:d2:f6:43:f2:c4:f0:0e:be:14: 4d:7d:c1:76:ac:2d:55:7c:0f:c9:8d:60:79:6e:6c:ff:c5:00: cd:70:09:27:47:17:ac:e2:bd:c0:0d:99:d2:4a:82:18:d2:d6: 14:dc:74:6c:b6:2f:0c:9a:73:2e:1d:db:0a:4b:4e:2f:ac:57: 72:c8:6e:52:4b:49:51:92:bb:56:a3:54:d6:f5:83:80:bd:b4: ce:0e:08:2c:a6:5c:3a:62:90:d9:59:1c:57:3f:1c:a1:e1:a5: 2a:9c:bb:a5:35:ec:6d:9b:8c:17:3f:c3:71:d1:b3:a4:24:c1: 47:30:2a:f0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBngwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTZDRDYxMTAvBgNVBAUTKENDNTYxNTdDNzJEQ0M2OTczMzYzNjc0M0RCNTAwODc1 OTMyREE0MUYwHhcNMjUxMTA0MjIzNzE4WhcNMjUxMTExMjIzNzE4WjAYMRYwFAYD VQQDEw02OTBhODAxZS0zYzNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvEPY0QSKAgdSUN8xdsTa9YWgniDhU/eA1dwUDojezgUTeMcDi+iRdCtv+l/A iMWNrZ40iGJEyjcUW5G4FvL1pxZQBh560KxAzE6HX05W952zdpTnoaAxRTN8AsCW DgLiAWqRKqMoFzHqjKcwSjB7w8Ok3YJzbIWhD3YnF/JKmFMN0N4ESfyopyRlpCmZ IiAkMwqOyWnp4B5DyB65K/3V3AQHXdG2H4a1NRlcaGlUvfPWlTtxki/IFT/qPa11 9svwukmEuhOXxdyelOMr1x1SBATOIRHeJgILj9wGmqpOVGXo47ncn6dUxJC0T8hl MaTCzBEsCkdznEf7T9ZP0UHxjQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEcNKEW/ Wknb8kAM77R6nVpSNz/OMB8GA1UdIwQYMBaAFMxWFXxy3MaXM2NnQ9tQCHWTLaQf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNkNENi82NUU2REJENjlD QTkxMUVCOEFGRjBGMzdDNEY5QUUwMi96RllWZkhMY3hwY3pZMmREMjFBSWRaTXRw QjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pGWVZmSExjeHBjelkyZEQyMUFJZFpNdHBCOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NkNENi82NUU2REJENjlDQTkxMUVCOEFGRjBGMzdDNEY5QUUwMi96RllWZkhMY3hw Y3pZMmREMjFBSWRaTXRwQjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB9z/saQMK3zhcPuaYQHMcH0KQSRgbZU6gwjeFPbawzEEI6zgdJFHjW q8TlHsj7AWLXObgBt+Ou+o5BR3oZVM3DYUrqHc1Qv2C0R8Ki+t5uIRBwpZIiIO0n f/1NDi7/uvA6iu3bavLGorRkRapRAKoqOWZFv+nCJyQwj2Fr6i5DpJJHunLcaGTS 9kPyxPAOvhRNfcF2rC1VfA/JjWB5bmz/xQDNcAknRxes4r3ADZnSSoIY0tYU3HRs ti8MmnMuHdsKS04vrFdyyG5SS0lRkrtWo1TW9YOAvbTODggsplw6YpDZWRxXPxyh 4aUqnLulNextm4wXP8Nx0bOkJMFHMCrw -----END CERTIFICATE-----Generated at Wed Nov 5 05:49:53 2025 by rpki-client