$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAE63/5E966394CA0911ED81B6F63CC4F9AE02/zHxfJ4CoDTxmayv2kVPyBIS-7nE.mft File: zHxfJ4CoDTxmayv2kVPyBIS-7nE.mft (raw, json) Hash identifier: P0Tda6alvLaKIzxvvtnWduohqb+spSgkDt08+C/kv/E= Subject key identifier: 2B:9A:5F:45:3D:3F:C6:5B:86:61:BC:5E:0C:E6:89:36:99:EA:90:0A Authority key identifier: CC:7C:5F:27:80:A8:0D:3C:66:6B:2B:F6:91:53:F2:04:84:BE:EE:71 Certificate issuer: /CN=A91AAE63/serialNumber=CC7C5F2780A80D3C666B2BF69153F20484BEEE71 Certificate serial: 01ED Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zHxfJ4CoDTxmayv2kVPyBIS-7nE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAE63/5E966394CA0911ED81B6F63CC4F9AE02/zHxfJ4CoDTxmayv2kVPyBIS-7nE.mft Manifest number: 01EA Signing time: Wed 05 Nov 2025 02:43:16 +0000 Manifest this update: Wed 05 Nov 2025 02:43:15 +0000 Manifest next update: Wed 12 Nov 2025 02:43:15 +0000 Files and hashes: 1: zHxfJ4CoDTxmayv2kVPyBIS-7nE.crl (hash: OBfxpFGC/4Wj1rvti5NwRKHhg+SoxeERmsgg15iqaxg=) 2: 5DCF3814CA0E11ED9251861DC4F9AE02.roa (hash: QPqR58JeNFPJi8H+5XnKJrf+9hDaJRDjHQAg1P1N4n8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAE63/5E966394CA0911ED81B6F63CC4F9AE02/zHxfJ4CoDTxmayv2kVPyBIS-7nE.crl rsync://rpki.apnic.net/member_repository/A91AAE63/5E966394CA0911ED81B6F63CC4F9AE02/zHxfJ4CoDTxmayv2kVPyBIS-7nE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zHxfJ4CoDTxmayv2kVPyBIS-7nE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 02:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 493 (0x1ed) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAE63, serialNumber=CC7C5F2780A80D3C666B2BF69153F20484BEEE71 Validity Not Before: Nov 5 02:43:15 2025 GMT Not After : Nov 12 02:43:15 2025 GMT Subject: CN=690ab9c3-d726 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:7f:54:38:d4:8c:10:20:c6:b3:dc:f9:24:c3: af:60:e8:5f:01:e4:17:a0:96:06:43:3e:1a:f8:a9: 56:74:1e:0f:de:de:9d:5b:2b:62:77:82:26:7a:ea: 5c:48:6f:ce:de:02:8f:78:45:a8:f9:98:d3:3d:16: aa:12:46:91:a3:08:cc:be:14:49:a6:c7:52:10:3f: 31:b1:da:91:11:39:29:78:db:15:de:24:8e:0d:2f: c9:87:b3:b9:f4:9b:2d:d5:b9:68:da:ad:26:9c:69: 46:06:e6:e4:08:80:28:99:1c:1a:13:c6:48:05:30: bc:6c:ed:61:ce:77:bd:f3:4d:30:cd:60:3e:6e:6e: f6:ba:d7:01:9a:aa:42:31:04:b9:2c:06:82:88:3a: cc:8b:ef:44:6c:72:f0:92:9f:6e:e0:c5:11:f6:d6: de:c2:a3:23:89:3e:5d:84:d1:ec:dc:a2:9e:70:ef: 8d:03:9d:8e:57:5d:4c:3b:68:e6:69:d3:9b:bd:f7: 49:d7:ef:a3:a2:ea:83:0d:6f:2f:e4:3f:53:7b:af: 93:b9:2f:d8:63:74:c6:a0:b4:f5:ef:32:40:8c:da: 12:89:82:24:51:4b:3c:91:c1:55:b9:c4:0f:d7:14: 37:a6:4b:73:ea:fc:96:1d:75:01:b9:27:6e:a8:9f: 7d:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:9A:5F:45:3D:3F:C6:5B:86:61:BC:5E:0C:E6:89:36:99:EA:90:0A X509v3 Authority Key Identifier: keyid:CC:7C:5F:27:80:A8:0D:3C:66:6B:2B:F6:91:53:F2:04:84:BE:EE:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAE63/5E966394CA0911ED81B6F63CC4F9AE02/zHxfJ4CoDTxmayv2kVPyBIS-7nE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zHxfJ4CoDTxmayv2kVPyBIS-7nE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAE63/5E966394CA0911ED81B6F63CC4F9AE02/zHxfJ4CoDTxmayv2kVPyBIS-7nE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8a:2c:1a:77:d4:8b:5c:58:31:07:37:42:10:79:59:38:5d:96: 44:38:fa:18:16:ff:f8:0b:27:cc:0b:00:26:c2:ff:8b:f9:f4: b5:64:a5:ae:de:e7:71:3b:35:b4:44:45:89:f5:0a:bd:39:fe: c2:1e:d1:5c:7c:cc:a2:bb:64:e4:fc:26:f3:14:47:b7:1c:8a: a1:5f:af:36:2a:db:97:60:f6:93:42:4c:23:51:6b:d1:fd:f3: cb:27:5a:17:e5:e2:86:66:e0:e7:f5:9c:3e:55:57:89:96:79: 96:d4:90:73:70:9c:8d:3d:5e:c7:de:2e:d9:a1:d3:d1:bd:e5: 97:71:80:72:7a:3f:a8:47:6b:dc:28:6c:d8:49:d4:bc:6c:f4: e4:5f:87:d8:c0:e9:79:42:c3:c1:17:ea:24:34:a5:af:6f:ab: 75:ba:e9:5f:4a:1c:7e:b1:8a:e6:19:ff:02:ae:83:08:b6:49: 2d:e6:dd:c7:88:70:2f:a9:2f:8a:7c:0d:30:96:5e:51:d3:ee: b4:52:0e:7b:27:a9:f8:94:73:84:d3:0d:fa:aa:1e:55:a1:e0: c8:27:85:fc:06:84:24:1c:fa:58:76:e0:a1:18:c6:8e:c3:d3: e5:c0:ee:c2:2e:b6:30:fd:69:fc:50:41:25:0f:92:75:c5:1c: e1:fb:75:54 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAe0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUFFNjMxMTAvBgNVBAUTKENDN0M1RjI3ODBBODBEM0M2NjZCMkJGNjkxNTNGMjA0 ODRCRUVFNzEwHhcNMjUxMTA1MDI0MzE1WhcNMjUxMTEyMDI0MzE1WjAYMRYwFAYD VQQDEw02OTBhYjljMy1kNzI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA239UONSMECDGs9z5JMOvYOhfAeQXoJYGQz4a+KlWdB4P3t6dWytid4Imeupc SG/O3gKPeEWo+ZjTPRaqEkaRowjMvhRJpsdSED8xsdqRETkpeNsV3iSODS/Jh7O5 9Jst1blo2q0mnGlGBubkCIAomRwaE8ZIBTC8bO1hzne9800wzWA+bm72utcBmqpC MQS5LAaCiDrMi+9EbHLwkp9u4MUR9tbewqMjiT5dhNHs3KKecO+NA52OV11MO2jm adObvfdJ1++jouqDDW8v5D9Te6+TuS/YY3TGoLT17zJAjNoSiYIkUUs8kcFVucQP 1xQ3pktz6vyWHXUBuSduqJ99hQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCuaX0U9 P8ZbhmG8XgzmiTaZ6pAKMB8GA1UdIwQYMBaAFMx8XyeAqA08Zmsr9pFT8gSEvu5x MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQUU2My81RTk2NjM5NENB MDkxMUVEODFCNkY2M0NDNEY5QUUwMi96SHhmSjRDb0RUeG1heXYya1ZQeUJJUy03 bkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pIeGZKNENvRFR4bWF5djJrVlB5QklTLTduRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QUU2My81RTk2NjM5NENBMDkxMUVEODFCNkY2M0NDNEY5QUUwMi96SHhmSjRDb0RU eG1heXYya1ZQeUJJUy03bkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCKLBp31ItcWDEHN0IQeVk4XZZEOPoYFv/4CyfMCwAmwv+L+fS1ZKWu 3udxOzW0REWJ9Qq9Of7CHtFcfMyiu2Tk/CbzFEe3HIqhX682KtuXYPaTQkwjUWvR /fPLJ1oX5eKGZuDn9Zw+VVeJlnmW1JBzcJyNPV7H3i7ZodPRveWXcYByej+oR2vc KGzYSdS8bPTkX4fYwOl5QsPBF+okNKWvb6t1uulfShx+sYrmGf8CroMItkkt5t3H iHAvqS+KfA0wll5R0+60Ug57J6n4lHOE0w36qh5VoeDIJ4X8BoQkHPpYduChGMaO w9PlwO7CLrYw/Wn8UEElD5J1xRzh+3VU -----END CERTIFICATE-----Generated at Wed Nov 5 14:55:46 2025 by rpki-client