$ rpki-client -vvf rpki.apnic.net/member_repository/A91A8219/EC0A70F8EA8011E78B42A432C4F9AE02/ZVPDwhgLl-LrN8tx9qHOqnuVykc.mft File: ZVPDwhgLl-LrN8tx9qHOqnuVykc.mft (raw, json) Hash identifier: /jG/nzBHqqltdItyxN/i9hZURSUBI/dBvqe+9Q0PR+A= Subject key identifier: F1:FB:0E:81:60:A4:E0:69:9E:CA:A6:43:4B:5C:E2:33:09:EE:E0:6F Authority key identifier: 65:53:C3:C2:18:0B:97:E2:EB:37:CB:71:F6:A1:CE:AA:7B:95:CA:47 Certificate issuer: /CN=A91A8219/serialNumber=6553C3C2180B97E2EB37CB71F6A1CEAA7B95CA47 Certificate serial: 175C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZVPDwhgLl-LrN8tx9qHOqnuVykc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A8219/EC0A70F8EA8011E78B42A432C4F9AE02/ZVPDwhgLl-LrN8tx9qHOqnuVykc.mft Manifest number: 1750 Signing time: Tue 04 Nov 2025 16:42:32 +0000 Manifest this update: Tue 04 Nov 2025 16:42:32 +0000 Manifest next update: Tue 11 Nov 2025 16:42:32 +0000 Files and hashes: 1: ZVPDwhgLl-LrN8tx9qHOqnuVykc.crl (hash: /a9nLw5TTJMhGuDONEorH48N2yUl9MchUMsFN1QskRY=) 2: 314E917C651E11E8A8903D42C4F9AE02.roa (hash: PelwRr9hgP7dCYd5KU90WVUNYfa/KyN0aFEd88yUz4U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A8219/EC0A70F8EA8011E78B42A432C4F9AE02/ZVPDwhgLl-LrN8tx9qHOqnuVykc.crl rsync://rpki.apnic.net/member_repository/A91A8219/EC0A70F8EA8011E78B42A432C4F9AE02/ZVPDwhgLl-LrN8tx9qHOqnuVykc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZVPDwhgLl-LrN8tx9qHOqnuVykc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 16:42:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5980 (0x175c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A8219, serialNumber=6553C3C2180B97E2EB37CB71F6A1CEAA7B95CA47 Validity Not Before: Nov 4 16:42:32 2025 GMT Not After : Nov 11 16:42:32 2025 GMT Subject: CN=690a2cf8-eb6a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:d4:1a:b8:7d:26:45:f2:66:a8:f5:84:9f:01: 73:2a:7d:e0:d5:e4:34:96:cb:cd:72:75:25:0d:41: 70:25:c7:1a:ce:a6:f0:18:7c:a1:3e:e5:61:e2:e2: a6:04:e7:8f:7a:80:a7:d5:74:6c:bd:33:11:94:d9: ae:62:43:a9:19:ed:24:5b:e8:ac:56:e5:4c:3f:4f: de:3d:a0:54:36:30:97:06:77:01:90:e7:93:1b:cd: a4:9b:03:f6:59:ae:5a:c6:a5:6f:4a:54:b7:0c:f3: 96:4b:dd:06:3f:7e:c2:13:ed:51:16:e4:fd:64:2e: 7c:d9:61:c2:bc:e0:61:51:d4:37:56:c1:0a:88:9a: e3:85:a6:50:af:90:2f:21:a1:85:1f:36:81:36:17: f1:0c:ed:9a:5e:cb:7e:1b:20:15:85:81:f2:9b:99: ee:50:57:d2:b4:11:17:12:f3:09:06:93:87:a6:93: 1a:1a:d0:0f:69:fe:b7:e7:69:50:e0:7b:08:8e:ea: 99:d1:c8:fc:8f:1e:e0:e2:00:ce:7a:2f:b3:c4:08: c3:35:55:a2:d8:b3:eb:74:2f:57:0b:5f:87:9d:91: cb:02:ec:8e:52:37:55:83:de:ef:02:29:7f:a7:d9: 20:a3:d3:08:5f:aa:98:c1:31:e9:64:6c:60:6b:d5: c9:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:FB:0E:81:60:A4:E0:69:9E:CA:A6:43:4B:5C:E2:33:09:EE:E0:6F X509v3 Authority Key Identifier: keyid:65:53:C3:C2:18:0B:97:E2:EB:37:CB:71:F6:A1:CE:AA:7B:95:CA:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A8219/EC0A70F8EA8011E78B42A432C4F9AE02/ZVPDwhgLl-LrN8tx9qHOqnuVykc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZVPDwhgLl-LrN8tx9qHOqnuVykc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A8219/EC0A70F8EA8011E78B42A432C4F9AE02/ZVPDwhgLl-LrN8tx9qHOqnuVykc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4e:6e:db:4f:01:f9:d5:b3:94:85:e6:f4:a3:f3:86:35:93:3e: f2:da:14:88:5f:1d:8e:f9:6b:e4:58:7d:35:71:47:b8:02:c5: 29:ec:9b:fc:db:d4:4f:e3:f8:0d:ed:9c:3a:ea:a9:33:dd:b5: 17:3c:1c:21:87:41:84:d2:23:a4:ac:b4:ab:e9:63:82:77:10: b9:23:b3:b4:76:c3:13:57:e8:c6:f4:fa:db:57:08:0b:c3:98: 10:50:01:03:df:44:d0:70:ce:67:a7:20:9d:83:aa:2e:42:fa: d0:e4:63:eb:d2:d5:3a:b6:20:52:27:3a:fa:35:d9:d7:73:c8: a8:4a:c8:ef:a2:a5:a4:b9:e7:d3:14:e5:11:6f:55:9f:b6:3a: e9:0d:7e:9d:84:b7:9f:3f:58:59:67:c3:2d:3f:94:05:0d:db: 28:6b:c2:d7:ac:a3:cf:0e:bb:43:d3:2a:e8:ed:6d:f6:f3:22: 69:a5:47:3a:6c:5c:ca:0b:71:6c:9f:cb:5a:17:47:06:f7:30: 72:ae:97:87:23:d6:bc:ec:95:ae:04:6f:65:5f:77:80:f5:10: 5f:f7:a6:b3:20:89:14:3d:bc:29:e8:8b:ac:80:cf:b9:32:19: 42:49:49:1d:e9:20:1a:86:df:9f:9f:42:3f:98:61:ac:0b:bb: 3e:98:d0:be -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICF1wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTgyMTkxMTAvBgNVBAUTKDY1NTNDM0MyMTgwQjk3RTJFQjM3Q0I3MUY2QTFDRUFB N0I5NUNBNDcwHhcNMjUxMTA0MTY0MjMyWhcNMjUxMTExMTY0MjMyWjAYMRYwFAYD VQQDEw02OTBhMmNmOC1lYjZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuNQauH0mRfJmqPWEnwFzKn3g1eQ0lsvNcnUlDUFwJccazqbwGHyhPuVh4uKm BOePeoCn1XRsvTMRlNmuYkOpGe0kW+isVuVMP0/ePaBUNjCXBncBkOeTG82kmwP2 Wa5axqVvSlS3DPOWS90GP37CE+1RFuT9ZC582WHCvOBhUdQ3VsEKiJrjhaZQr5Av IaGFHzaBNhfxDO2aXst+GyAVhYHym5nuUFfStBEXEvMJBpOHppMaGtAPaf6352lQ 4HsIjuqZ0cj8jx7g4gDOei+zxAjDNVWi2LPrdC9XC1+HnZHLAuyOUjdVg97vAil/ p9kgo9MIX6qYwTHpZGxga9XJZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPH7DoFg pOBpnsqmQ0tc4jMJ7uBvMB8GA1UdIwQYMBaAFGVTw8IYC5fi6zfLcfahzqp7lcpH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBODIxOS9FQzBBNzBGOEVB ODAxMUU3OEI0MkE0MzJDNEY5QUUwMi9aVlBEd2hnTGwtTHJOOHR4OXFIT3FudVZ5 a2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pWUER3aGdMbC1Mck44dHg5cUhPcW51VnlrYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB ODIxOS9FQzBBNzBGOEVBODAxMUU3OEI0MkE0MzJDNEY5QUUwMi9aVlBEd2hnTGwt THJOOHR4OXFIT3FudVZ5a2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBObttPAfnVs5SF5vSj84Y1kz7y2hSIXx2O+WvkWH01cUe4AsUp7Jv8 29RP4/gN7Zw66qkz3bUXPBwhh0GE0iOkrLSr6WOCdxC5I7O0dsMTV+jG9PrbVwgL w5gQUAED30TQcM5npyCdg6ouQvrQ5GPr0tU6tiBSJzr6NdnXc8ioSsjvoqWkuefT FOURb1WftjrpDX6dhLefP1hZZ8MtP5QFDdsoa8LXrKPPDrtD0yro7W328yJppUc6 bFzKC3Fsn8taF0cG9zByrpeHI9a87JWuBG9lX3eA9RBf96azIIkUPbwp6IusgM+5 MhlCSUkd6SAaht+fn0I/mGGsC7s+mNC+ -----END CERTIFICATE-----Generated at Wed Nov 5 11:47:18 2025 by rpki-client