$ rpki-client -vvf rpki.apnic.net/member_repository/A91A9B3E/DAB1C3A68CFB11ED92E25B61C4F9AE02/zuNPo5_yhfcuIp2ihivBDkiPukE.mft File: zuNPo5_yhfcuIp2ihivBDkiPukE.mft (raw, json) Hash identifier: bdK5u2SdtSA8a+xzwZ8UABp58m32KF0YXSkpRyqr9z8= Subject key identifier: BB:98:28:41:32:FB:02:AD:FE:C0:A9:C7:2D:4C:0B:42:B2:FB:2B:97 Authority key identifier: CE:E3:4F:A3:9F:F2:85:F7:2E:22:9D:A2:86:2B:C1:0E:48:8F:BA:41 Certificate issuer: /CN=A91A9B3E/serialNumber=CEE34FA39FF285F72E229DA2862BC10E488FBA41 Certificate serial: 0218 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zuNPo5_yhfcuIp2ihivBDkiPukE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A9B3E/DAB1C3A68CFB11ED92E25B61C4F9AE02/zuNPo5_yhfcuIp2ihivBDkiPukE.mft Manifest number: 0212 Signing time: Wed 05 Nov 2025 02:21:08 +0000 Manifest this update: Wed 05 Nov 2025 02:21:07 +0000 Manifest next update: Wed 12 Nov 2025 02:21:07 +0000 Files and hashes: 1: zuNPo5_yhfcuIp2ihivBDkiPukE.crl (hash: +EQCncOxOEAXgOLydHye0wsMannmEb2raH/DupZTmwA=) 2: 819F7A60CF8B11EDAE77B351C4F9AE02.roa (hash: 4hy1f5KhPhwHVnBrwdKHHsp/qGx5VbOvDT16foHwuRM=) 3: 1AB255C68CFF11EDB7BDD865C4F9AE02.roa (hash: l3pw7Z4d1Nkw0APH0xp6K2791IsFOtCcx1C4farScNI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A9B3E/DAB1C3A68CFB11ED92E25B61C4F9AE02/zuNPo5_yhfcuIp2ihivBDkiPukE.crl rsync://rpki.apnic.net/member_repository/A91A9B3E/DAB1C3A68CFB11ED92E25B61C4F9AE02/zuNPo5_yhfcuIp2ihivBDkiPukE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zuNPo5_yhfcuIp2ihivBDkiPukE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 02:21:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 536 (0x218) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A9B3E, serialNumber=CEE34FA39FF285F72E229DA2862BC10E488FBA41 Validity Not Before: Nov 5 02:21:07 2025 GMT Not After : Nov 12 02:21:07 2025 GMT Subject: CN=690ab494-6ba2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:ad:bb:7f:c1:96:32:10:57:db:1e:c7:ae:72: 48:89:a5:db:63:76:91:17:38:26:7e:da:aa:66:d2: 5a:4c:95:8e:27:86:bf:3d:30:5e:83:cd:3b:0a:fc: 94:a6:98:fe:52:f1:83:ce:40:7b:42:4c:89:86:7a: 93:05:ad:16:50:93:85:2a:5f:71:05:56:0a:ec:19: ad:42:58:29:6a:b7:40:4e:a0:54:cd:fb:eb:fa:b5: 89:09:1d:5b:54:eb:96:94:a5:7a:7d:96:eb:f6:9e: 39:cc:86:60:2c:40:53:16:63:5e:30:bf:28:ec:0e: 20:c3:f1:11:be:59:82:9a:9c:23:c8:16:1e:54:ee: ff:9d:ce:35:9d:4f:89:f8:c5:00:d3:f6:55:a7:ca: 7e:b2:0e:01:d1:15:0a:55:de:88:1f:5a:ab:ad:ee: d2:87:dc:10:f1:fd:ce:98:fd:1c:52:ee:30:a2:c6: 32:b8:69:c6:65:fa:16:5b:e8:4d:cd:e3:43:47:76: 67:95:72:85:4e:f4:fc:bd:b0:0b:44:89:34:25:63: 7f:91:4c:4b:15:ac:6d:ca:26:54:6f:66:b7:38:24: cf:9c:33:89:5e:df:e5:72:26:e9:25:d0:8e:43:6c: ca:55:e6:a5:6c:81:26:4c:bc:40:d0:c0:4d:a1:21: af:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:98:28:41:32:FB:02:AD:FE:C0:A9:C7:2D:4C:0B:42:B2:FB:2B:97 X509v3 Authority Key Identifier: keyid:CE:E3:4F:A3:9F:F2:85:F7:2E:22:9D:A2:86:2B:C1:0E:48:8F:BA:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A9B3E/DAB1C3A68CFB11ED92E25B61C4F9AE02/zuNPo5_yhfcuIp2ihivBDkiPukE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zuNPo5_yhfcuIp2ihivBDkiPukE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A9B3E/DAB1C3A68CFB11ED92E25B61C4F9AE02/zuNPo5_yhfcuIp2ihivBDkiPukE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6e:7d:49:09:2a:1f:84:55:00:eb:47:e9:14:76:aa:7d:cc:99: 51:0c:4c:39:ac:d2:88:04:11:4b:9a:a3:b2:c9:cc:20:f1:b8: ba:55:3a:03:a4:48:23:05:35:77:66:bc:f5:dc:02:cb:e2:d7: e2:5d:e0:05:9d:7e:c3:15:29:6a:46:fa:bf:e9:71:4a:65:20: 65:31:8d:c3:38:e8:17:9f:93:b8:4f:66:a7:7f:62:88:b2:0d: f2:99:fe:d7:b6:eb:63:ba:1a:d4:98:67:3a:76:db:25:f3:46: c4:8b:2f:c7:1a:8c:07:53:c2:2c:90:81:11:7f:68:8a:42:32: 6e:c2:b5:a2:ea:3b:5f:42:a6:08:a3:2b:1b:cf:a6:6a:c0:3a: 6e:58:86:23:c1:76:53:1e:d3:68:20:7c:91:01:db:c3:10:b7: d7:cb:61:3e:4a:5b:8c:dd:da:68:2c:6c:eb:ef:09:31:7d:a9: be:27:12:b3:24:3e:3c:2b:06:da:10:46:8c:b7:44:9d:e2:b2: af:f2:06:e4:03:db:71:22:69:2b:a7:f2:5a:b4:e2:0c:b9:56: 1d:87:d6:9b:07:7a:98:40:bf:2a:89:5c:9b:00:5c:ab:ab:4f: 34:4d:81:ab:55:f9:3a:2a:37:53:01:48:37:0a:95:18:b0:b0: 8b:2d:2d:95 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAhgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTlCM0UxMTAvBgNVBAUTKENFRTM0RkEzOUZGMjg1RjcyRTIyOURBMjg2MkJDMTBF NDg4RkJBNDEwHhcNMjUxMTA1MDIyMTA3WhcNMjUxMTEyMDIyMTA3WjAYMRYwFAYD VQQDEw02OTBhYjQ5NC02YmEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyK27f8GWMhBX2x7HrnJIiaXbY3aRFzgmftqqZtJaTJWOJ4a/PTBeg807CvyU ppj+UvGDzkB7QkyJhnqTBa0WUJOFKl9xBVYK7BmtQlgpardATqBUzfvr+rWJCR1b VOuWlKV6fZbr9p45zIZgLEBTFmNeML8o7A4gw/ERvlmCmpwjyBYeVO7/nc41nU+J +MUA0/ZVp8p+sg4B0RUKVd6IH1qrre7Sh9wQ8f3OmP0cUu4wosYyuGnGZfoWW+hN zeNDR3ZnlXKFTvT8vbALRIk0JWN/kUxLFaxtyiZUb2a3OCTPnDOJXt/lcibpJdCO Q2zKVealbIEmTLxA0MBNoSGvqwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLuYKEEy +wKt/sCpxy1MC0Ky+yuXMB8GA1UdIwQYMBaAFM7jT6Of8oX3LiKdooYrwQ5Ij7pB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOUIzRS9EQUIxQzNBNjhD RkIxMUVEOTJFMjVCNjFDNEY5QUUwMi96dU5QbzVfeWhmY3VJcDJpaGl2QkRraVB1 a0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3p1TlBvNV95aGZjdUlwMmloaXZCRGtpUHVrRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OUIzRS9EQUIxQzNBNjhDRkIxMUVEOTJFMjVCNjFDNEY5QUUwMi96dU5QbzVfeWhm Y3VJcDJpaGl2QkRraVB1a0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBufUkJKh+EVQDrR+kUdqp9zJlRDEw5rNKIBBFLmqOyycwg8bi6VToD pEgjBTV3Zrz13ALL4tfiXeAFnX7DFSlqRvq/6XFKZSBlMY3DOOgXn5O4T2anf2KI sg3ymf7XtutjuhrUmGc6dtsl80bEiy/HGowHU8IskIERf2iKQjJuwrWi6jtfQqYI oysbz6ZqwDpuWIYjwXZTHtNoIHyRAdvDELfXy2E+SluM3dpoLGzr7wkxfam+JxKz JD48KwbaEEaMt0Sd4rKv8gbkA9txImkrp/JatOIMuVYdh9abB3qYQL8qiVybAFyr q080TYGrVfk6KjdTAUg3CpUYsLCLLS2V -----END CERTIFICATE-----Generated at Wed Nov 5 21:59:22 2025 by rpki-client