$ rpki-client -vvf rpki.apnic.net/member_repository/A91AF317/4FD576808C6F11EBBA819F31C4F9AE02/d5zZIVaek_nSaxOlqn43bPtfBpA.mft File: d5zZIVaek_nSaxOlqn43bPtfBpA.mft (raw, json) Hash identifier: UtjMIbPeI6gbSMSJ9RAhJwX4oHwWTds1f68Tt7FxLdA= Subject key identifier: 14:BA:B6:3B:64:BD:6A:AB:C8:30:32:E9:C1:0E:0D:92:31:D8:73:C0 Authority key identifier: 77:9C:D9:21:56:9E:93:F9:D2:6B:13:A5:AA:7E:37:6C:FB:5F:06:90 Certificate issuer: /CN=A91AF317/serialNumber=779CD921569E93F9D26B13A5AA7E376CFB5F0690 Certificate serial: 06A4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d5zZIVaek_nSaxOlqn43bPtfBpA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AF317/4FD576808C6F11EBBA819F31C4F9AE02/d5zZIVaek_nSaxOlqn43bPtfBpA.mft Manifest number: 069D Signing time: Tue 04 Nov 2025 22:25:41 +0000 Manifest this update: Tue 04 Nov 2025 22:25:41 +0000 Manifest next update: Tue 11 Nov 2025 22:25:41 +0000 Files and hashes: 1: d5zZIVaek_nSaxOlqn43bPtfBpA.crl (hash: Z+4WVfBCkCOD6bOF2dKZqGwYaPJvMgPzl4HxnLvM0Vg=) 2: 291E55288C7111EBA752313FC4F9AE02.roa (hash: /i9RofZ06AYBMENjcaJpNwKG22jU3wGWaEpuwf3htx0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AF317/4FD576808C6F11EBBA819F31C4F9AE02/d5zZIVaek_nSaxOlqn43bPtfBpA.crl rsync://rpki.apnic.net/member_repository/A91AF317/4FD576808C6F11EBBA819F31C4F9AE02/d5zZIVaek_nSaxOlqn43bPtfBpA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d5zZIVaek_nSaxOlqn43bPtfBpA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 22:25:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1700 (0x6a4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AF317, serialNumber=779CD921569E93F9D26B13A5AA7E376CFB5F0690 Validity Not Before: Nov 4 22:25:41 2025 GMT Not After : Nov 11 22:25:41 2025 GMT Subject: CN=690a7d65-e525 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:e8:5a:bd:5c:b3:c8:a6:07:18:77:26:4c:d8: 30:ce:0f:ea:bf:fb:8c:51:7c:6a:88:8b:a1:0f:2c: 2e:af:82:71:05:5c:7c:aa:b3:fa:8c:fd:a3:eb:64: 4b:fb:91:ad:ae:b0:c5:b7:24:ec:5b:e2:8f:35:16: c2:0b:b3:77:a3:99:3b:54:df:7c:ae:86:ba:63:07: c2:2d:78:73:63:7c:4d:97:e8:5d:4f:81:71:34:8f: 08:b6:57:a7:a0:5b:4b:cd:c1:1c:95:33:b7:69:51: 53:9a:84:d1:66:73:f8:74:c7:a4:02:07:19:81:91: e0:b6:72:20:3a:4f:02:d6:4a:51:05:12:09:63:7b: c1:9a:d3:ed:56:6c:2b:d2:70:2c:37:9a:60:2d:d0: 10:e8:3b:cc:cc:71:69:85:43:02:c7:10:7b:fe:7a: e1:fb:7c:bc:56:3b:46:6f:1b:2d:63:d3:d0:2a:22: 46:2d:05:a6:91:a7:8b:62:09:0f:19:ea:6a:04:6b: 6c:b0:0f:d5:eb:6a:b0:14:a0:98:75:b0:4a:97:54: 13:e5:8a:b5:b8:5f:9f:77:ea:42:9f:a3:94:85:61: ce:c2:78:fb:ca:db:0e:6c:5c:06:69:a5:c9:e6:33: 2c:09:00:6f:f9:0e:5a:1c:34:d6:0c:3d:31:a0:83: 0e:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:BA:B6:3B:64:BD:6A:AB:C8:30:32:E9:C1:0E:0D:92:31:D8:73:C0 X509v3 Authority Key Identifier: keyid:77:9C:D9:21:56:9E:93:F9:D2:6B:13:A5:AA:7E:37:6C:FB:5F:06:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AF317/4FD576808C6F11EBBA819F31C4F9AE02/d5zZIVaek_nSaxOlqn43bPtfBpA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d5zZIVaek_nSaxOlqn43bPtfBpA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AF317/4FD576808C6F11EBBA819F31C4F9AE02/d5zZIVaek_nSaxOlqn43bPtfBpA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3e:a6:ce:c6:c4:ec:d7:e7:6c:83:c6:32:f5:e4:d7:b2:61:b7: 56:00:74:d5:a9:08:1a:71:32:7a:d9:85:08:47:aa:a4:9f:5f: a1:00:6c:1f:a4:7f:b9:5f:b9:85:db:62:95:07:c1:3f:d1:14: bb:43:6d:18:6a:7f:0f:d8:7a:80:45:91:1c:0c:8f:44:f4:4e: 80:23:71:91:93:3d:31:85:0c:9b:ad:c1:cb:c3:66:03:ef:39: 82:e9:03:df:24:c2:9c:ec:32:e3:64:be:e1:6c:51:2a:5b:29: 03:9c:66:17:71:0d:90:a2:ed:90:d1:cb:81:1a:ca:f3:33:b4: d4:ee:05:06:d5:d7:31:6d:3a:37:3f:6d:a4:6d:22:5c:7a:ae: 2a:0b:a5:ae:8b:cb:8e:4d:77:c7:ad:92:22:17:83:ba:db:81: 0e:8d:a4:0c:9f:fb:ed:e1:c9:d6:22:bc:f0:b0:90:b7:1f:eb: a0:62:bc:63:f5:40:56:c0:a5:52:a2:8a:7d:7b:f7:d9:6a:fc: 4f:96:ad:8c:43:8c:74:10:6b:7d:b3:7d:13:41:43:56:78:67: b8:86:d4:6d:0d:fb:99:24:ab:02:a5:f5:7c:35:08:d4:77:03: 1c:7c:9b:89:66:7a:aa:34:54:e7:d0:52:54:af:61:85:bc:ce: 58:06:c8:55 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBqQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUYzMTcxMTAvBgNVBAUTKDc3OUNEOTIxNTY5RTkzRjlEMjZCMTNBNUFBN0UzNzZD RkI1RjA2OTAwHhcNMjUxMTA0MjIyNTQxWhcNMjUxMTExMjIyNTQxWjAYMRYwFAYD VQQDEw02OTBhN2Q2NS1lNTI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqOhavVyzyKYHGHcmTNgwzg/qv/uMUXxqiIuhDywur4JxBVx8qrP6jP2j62RL +5GtrrDFtyTsW+KPNRbCC7N3o5k7VN98roa6YwfCLXhzY3xNl+hdT4FxNI8Itlen oFtLzcEclTO3aVFTmoTRZnP4dMekAgcZgZHgtnIgOk8C1kpRBRIJY3vBmtPtVmwr 0nAsN5pgLdAQ6DvMzHFphUMCxxB7/nrh+3y8VjtGbxstY9PQKiJGLQWmkaeLYgkP GepqBGtssA/V62qwFKCYdbBKl1QT5Yq1uF+fd+pCn6OUhWHOwnj7ytsObFwGaaXJ 5jMsCQBv+Q5aHDTWDD0xoIMOsQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBS6tjtk vWqryDAy6cEODZIx2HPAMB8GA1UdIwQYMBaAFHec2SFWnpP50msTpap+N2z7XwaQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRjMxNy80RkQ1NzY4MDhD NkYxMUVCQkE4MTlGMzFDNEY5QUUwMi9kNXpaSVZhZWtfblNheE9scW40M2JQdGZC cEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2Q1elpJVmFla19uU2F4T2xxbjQzYlB0ZkJwQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RjMxNy80RkQ1NzY4MDhDNkYxMUVCQkE4MTlGMzFDNEY5QUUwMi9kNXpaSVZhZWtf blNheE9scW40M2JQdGZCcEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA+ps7GxOzX52yDxjL15NeyYbdWAHTVqQgacTJ62YUIR6qkn1+hAGwf pH+5X7mF22KVB8E/0RS7Q20Yan8P2HqARZEcDI9E9E6AI3GRkz0xhQybrcHLw2YD 7zmC6QPfJMKc7DLjZL7hbFEqWykDnGYXcQ2Qou2Q0cuBGsrzM7TU7gUG1dcxbTo3 P22kbSJceq4qC6Wui8uOTXfHrZIiF4O624EOjaQMn/vt4cnWIrzwsJC3H+ugYrxj 9UBWwKVSoop9e/fZavxPlq2MQ4x0EGt9s30TQUNWeGe4htRtDfuZJKsCpfV8NQjU dwMcfJuJZnqqNFTn0FJUr2GFvM5YBshV -----END CERTIFICATE-----Generated at Wed Nov 5 11:56:07 2025 by rpki-client