$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB9A1/57337ACA8D7911EB8D8BD60BC4F9AE02/zl8rQ5utW-vicqch6qzDj6rdSbQ.mft File: zl8rQ5utW-vicqch6qzDj6rdSbQ.mft (raw, json) Hash identifier: LVmC4obs00iPN8Xh9GxCVkJelWf6xFTccW1WQc1LBVg= Subject key identifier: 6C:06:43:28:C3:E2:93:63:25:FB:1A:99:10:81:AB:3F:01:66:56:E6 Authority key identifier: CE:5F:2B:43:9B:AD:5B:EB:E2:72:A7:21:EA:AC:C3:8F:AA:DD:49:B4 Certificate issuer: /CN=A91AB9A1/serialNumber=CE5F2B439BAD5BEBE272A721EAACC38FAADD49B4 Certificate serial: 069F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zl8rQ5utW-vicqch6qzDj6rdSbQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB9A1/57337ACA8D7911EB8D8BD60BC4F9AE02/zl8rQ5utW-vicqch6qzDj6rdSbQ.mft Manifest number: 069F Signing time: Tue 04 Nov 2025 14:43:53 +0000 Manifest this update: Tue 04 Nov 2025 14:43:52 +0000 Manifest next update: Tue 11 Nov 2025 14:43:52 +0000 Files and hashes: 1: zl8rQ5utW-vicqch6qzDj6rdSbQ.crl (hash: iBTOnpF4bZTMGvd7EO1ttF56C3wCiMZNVQhw8DDHlP4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB9A1/57337ACA8D7911EB8D8BD60BC4F9AE02/zl8rQ5utW-vicqch6qzDj6rdSbQ.crl rsync://rpki.apnic.net/member_repository/A91AB9A1/57337ACA8D7911EB8D8BD60BC4F9AE02/zl8rQ5utW-vicqch6qzDj6rdSbQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zl8rQ5utW-vicqch6qzDj6rdSbQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 14:43:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1695 (0x69f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB9A1, serialNumber=CE5F2B439BAD5BEBE272A721EAACC38FAADD49B4 Validity Not Before: Nov 4 14:43:52 2025 GMT Not After : Nov 11 14:43:52 2025 GMT Subject: CN=690a1129-ed7b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:67:9b:ff:23:cc:b4:f0:ef:3b:c6:ad:e7:3c: 27:ad:60:e7:a8:13:e4:03:0b:01:99:11:07:c5:4a: 90:31:f7:4d:90:f8:6a:31:89:cf:15:e3:f7:e7:c3: 79:4c:3f:47:fa:71:a1:94:84:3d:dc:b8:59:b4:2b: 58:2a:15:ec:2d:c4:42:16:e9:df:7c:aa:83:b2:72: fc:72:03:65:bc:84:1b:97:2d:89:89:5c:0b:25:60: ef:20:03:b6:35:bd:f4:2f:10:7a:bc:2c:cf:09:b4: ba:51:c2:5e:29:f1:ba:75:c8:0b:a1:1e:23:12:fd: ab:98:f6:05:88:c6:9a:29:29:0a:3e:75:56:6e:19: 13:81:ef:4d:c1:06:59:bd:46:0a:86:ac:27:89:19: f1:a5:3d:38:9d:0f:53:8e:9f:da:14:75:79:66:3b: 49:1f:11:6b:a3:c5:7d:0b:15:3e:52:b6:2c:7d:14: f1:d4:47:e4:2b:e3:d9:dd:6d:f6:2d:72:55:39:84: e8:1a:79:87:95:e2:d8:87:e5:4c:c5:20:b1:94:53: 01:e4:94:fb:45:8b:ea:a9:68:29:b4:93:4e:a1:6f: 65:2a:0e:47:cc:e6:20:a1:35:b9:64:f8:48:90:e0: 04:48:76:14:8f:47:d8:5e:6d:a7:53:d1:8c:41:36: cb:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:06:43:28:C3:E2:93:63:25:FB:1A:99:10:81:AB:3F:01:66:56:E6 X509v3 Authority Key Identifier: keyid:CE:5F:2B:43:9B:AD:5B:EB:E2:72:A7:21:EA:AC:C3:8F:AA:DD:49:B4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB9A1/57337ACA8D7911EB8D8BD60BC4F9AE02/zl8rQ5utW-vicqch6qzDj6rdSbQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zl8rQ5utW-vicqch6qzDj6rdSbQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB9A1/57337ACA8D7911EB8D8BD60BC4F9AE02/zl8rQ5utW-vicqch6qzDj6rdSbQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 29:17:e6:7f:98:cf:eb:bc:e0:ab:bb:67:57:fd:02:42:14:de: 75:ec:e1:54:c2:7a:bd:fb:15:fc:7d:4d:f3:11:1d:47:b6:33: 14:22:47:b1:fc:50:6f:53:70:d7:4b:9f:3c:9e:be:5e:4e:18: 10:14:34:3d:77:c5:36:5d:15:06:98:81:56:79:35:19:c8:03: 47:29:5f:a9:a5:24:9a:84:8c:92:d4:45:f7:16:58:c2:7e:03: cc:1a:59:a8:9a:94:e1:f9:25:79:b7:83:c2:24:fd:dc:4d:47: e2:fd:14:e2:d7:a8:c8:35:8b:27:3e:f3:2f:46:5b:b5:07:30: 02:7c:97:0e:01:7f:84:b2:eb:46:84:cd:22:7d:e4:72:da:3c: 2c:5f:7a:8d:28:f9:88:d5:5e:09:1b:5b:3c:e2:6e:69:f6:33: a6:71:98:a8:e4:07:26:34:c6:54:fe:86:2a:67:b9:a1:25:c7: fb:13:17:b7:cd:c6:83:a6:4c:dd:49:e4:30:8b:51:c1:ad:e6: 6a:ef:97:2c:ba:0d:e7:1b:c5:38:b8:e7:2c:e1:0f:ef:d5:95: 6a:a6:a6:c6:51:64:8b:c8:7f:26:1e:22:5b:0e:36:b5:4d:94: 88:cf:f4:2f:b3:d8:eb:95:be:ef:12:eb:39:c0:c6:7c:f5:ea: 8d:52:88:d7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBp8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUI5QTExMTAvBgNVBAUTKENFNUYyQjQzOUJBRDVCRUJFMjcyQTcyMUVBQUNDMzhG QUFERDQ5QjQwHhcNMjUxMTA0MTQ0MzUyWhcNMjUxMTExMTQ0MzUyWjAYMRYwFAYD VQQDEw02OTBhMTEyOS1lZDdiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArmeb/yPMtPDvO8at5zwnrWDnqBPkAwsBmREHxUqQMfdNkPhqMYnPFeP358N5 TD9H+nGhlIQ93LhZtCtYKhXsLcRCFunffKqDsnL8cgNlvIQbly2JiVwLJWDvIAO2 Nb30LxB6vCzPCbS6UcJeKfG6dcgLoR4jEv2rmPYFiMaaKSkKPnVWbhkTge9NwQZZ vUYKhqwniRnxpT04nQ9Tjp/aFHV5ZjtJHxFro8V9CxU+UrYsfRTx1EfkK+PZ3W32 LXJVOYToGnmHleLYh+VMxSCxlFMB5JT7RYvqqWgptJNOoW9lKg5HzOYgoTW5ZPhI kOAESHYUj0fYXm2nU9GMQTbLzwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGwGQyjD 4pNjJfsamRCBqz8BZlbmMB8GA1UdIwQYMBaAFM5fK0ObrVvr4nKnIeqsw4+q3Um0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjlBMS81NzMzN0FDQThE NzkxMUVCOEQ4QkQ2MEJDNEY5QUUwMi96bDhyUTV1dFctdmljcWNoNnF6RGo2cmRT YlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3psOHJRNXV0Vy12aWNxY2g2cXpEajZyZFNiUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QjlBMS81NzMzN0FDQThENzkxMUVCOEQ4QkQ2MEJDNEY5QUUwMi96bDhyUTV1dFct dmljcWNoNnF6RGo2cmRTYlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQApF+Z/mM/rvOCru2dX/QJCFN517OFUwnq9+xX8fU3zER1HtjMUIkex /FBvU3DXS588nr5eThgQFDQ9d8U2XRUGmIFWeTUZyANHKV+ppSSahIyS1EX3FljC fgPMGlmompTh+SV5t4PCJP3cTUfi/RTi16jINYsnPvMvRlu1BzACfJcOAX+EsutG hM0ifeRy2jwsX3qNKPmI1V4JG1s84m5p9jOmcZio5AcmNMZU/oYqZ7mhJcf7Exe3 zcaDpkzdSeQwi1HBreZq75csug3nG8U4uOcs4Q/v1ZVqpqbGUWSLyH8mHiJbDja1 TZSIz/Qvs9jrlb7vEus5wMZ89eqNUojX -----END CERTIFICATE-----Generated at Wed Nov 5 15:16:45 2025 by rpki-client