$ rpki-client -vvf rpki.apnic.net/member_repository/A91C6DD8/F04852421D8611E286118CDE08B02CD2/_Z_UV0WCGIOHdsDcCO-2FVIB42g.mft File: _Z_UV0WCGIOHdsDcCO-2FVIB42g.mft (raw, json) Hash identifier: LWqY2I/NKKw/4P8NxQNCaBXsa1j8YhSWd1R8Y56nSQQ= Subject key identifier: E5:F1:85:D9:DA:BE:58:F4:B1:34:D0:29:FC:78:27:1C:4A:75:CA:FA Authority key identifier: FD:9F:D4:57:45:82:18:83:87:76:C0:DC:08:EF:B6:15:52:01:E3:68 Certificate issuer: /CN=A91C6DD8/serialNumber=FD9FD457458218838776C0DC08EFB6155201E368 Certificate serial: 353D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_Z_UV0WCGIOHdsDcCO-2FVIB42g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C6DD8/F04852421D8611E286118CDE08B02CD2/_Z_UV0WCGIOHdsDcCO-2FVIB42g.mft Manifest number: 350D Signing time: Tue 04 Nov 2025 14:29:07 +0000 Manifest this update: Tue 04 Nov 2025 14:29:06 +0000 Manifest next update: Tue 11 Nov 2025 14:29:06 +0000 Files and hashes: 1: _Z_UV0WCGIOHdsDcCO-2FVIB42g.crl (hash: BU+gG7C65APZjBkLymoCP75fHDKhruWOnTRKmAT4CFg=) 2: 2DED29046A8E11EF948C2811C4F9AE02.roa (hash: CZL34a4C5G0DmjPgUV/R8LPE+CW74MjYbH1UBH/HsLY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C6DD8/F04852421D8611E286118CDE08B02CD2/_Z_UV0WCGIOHdsDcCO-2FVIB42g.crl rsync://rpki.apnic.net/member_repository/A91C6DD8/F04852421D8611E286118CDE08B02CD2/_Z_UV0WCGIOHdsDcCO-2FVIB42g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_Z_UV0WCGIOHdsDcCO-2FVIB42g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 14:29:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13629 (0x353d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C6DD8, serialNumber=FD9FD457458218838776C0DC08EFB6155201E368 Validity Not Before: Nov 4 14:29:06 2025 GMT Not After : Nov 11 14:29:06 2025 GMT Subject: CN=690a0db3-e275 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:43:b2:d3:8f:f7:c6:3f:d0:c5:c9:36:0e:8b: 94:ad:10:20:9e:62:9e:5e:87:bd:12:0e:63:7b:55: 2b:a6:4e:9b:b8:58:90:2d:ca:ad:00:0c:c8:92:95: 79:2d:9f:6d:a7:66:1c:76:99:8a:7c:26:3d:08:8a: 90:dd:7f:7e:02:3b:f5:5c:74:06:c7:54:b7:8d:d8: d6:5d:6f:7d:8b:d7:96:bb:ee:df:34:eb:d3:00:78: 57:a5:59:49:28:41:56:c3:36:b6:ff:fa:de:55:15: 98:ae:a8:83:50:8d:7e:4e:bb:27:89:5d:62:72:10: 60:6f:12:ab:24:a9:1d:57:03:c7:b4:18:40:20:8b: 2b:8a:57:15:89:ad:9d:9d:d1:6e:80:0a:7a:24:0c: fa:0b:62:77:4e:df:4c:45:6f:61:87:29:cd:f6:db: ed:07:f5:93:0c:58:9f:1a:d2:b5:06:2d:1f:f5:e9: 1f:9f:04:f2:54:4e:24:b7:a5:58:79:a6:b4:0f:81: f4:dc:02:c0:01:23:77:df:31:17:c8:fe:8a:29:3a: d3:9f:0b:a2:36:10:af:13:b4:98:60:50:ad:3d:09: 62:f3:43:eb:b1:33:c9:e0:5d:39:89:ef:0c:fb:79: 82:66:ee:0c:45:b1:79:80:a0:17:4c:11:8b:79:c5: 8f:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:F1:85:D9:DA:BE:58:F4:B1:34:D0:29:FC:78:27:1C:4A:75:CA:FA X509v3 Authority Key Identifier: keyid:FD:9F:D4:57:45:82:18:83:87:76:C0:DC:08:EF:B6:15:52:01:E3:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C6DD8/F04852421D8611E286118CDE08B02CD2/_Z_UV0WCGIOHdsDcCO-2FVIB42g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_Z_UV0WCGIOHdsDcCO-2FVIB42g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C6DD8/F04852421D8611E286118CDE08B02CD2/_Z_UV0WCGIOHdsDcCO-2FVIB42g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption e2:d9:8e:12:1c:96:2d:06:0f:f1:de:4d:c1:e4:4e:10:40:05: 92:06:af:06:1e:4f:aa:02:a8:da:19:43:80:f0:26:6a:2b:c3: de:9f:2b:05:6a:11:a0:19:ed:11:d7:3e:cb:4f:9f:6c:e6:c8: ad:1a:4d:01:10:e1:a9:19:4b:2e:1f:f9:db:01:08:f9:a1:52: 1c:1d:c7:35:60:44:2b:8e:28:e3:37:5d:97:a2:dc:69:e2:f7: e7:9d:e6:27:cd:c2:6a:cd:27:97:74:3d:08:27:96:31:06:3a: c1:82:79:11:0b:e3:3c:a2:e3:e1:94:cb:00:72:ba:3c:92:03: 0b:c6:38:94:d2:81:1d:2a:b6:77:c2:7c:fd:07:eb:88:73:80: 9e:52:c4:67:db:de:fd:09:53:cd:32:51:f4:b9:ec:36:5c:47: a1:b1:a5:da:0a:53:30:8f:e3:34:f0:e2:88:de:c0:bf:81:84: a3:2d:91:e9:af:8f:fc:a6:93:a7:14:8f:4f:07:cf:e0:52:77: 58:b9:a9:e9:78:ce:8f:0b:8d:7e:10:eb:ed:a2:f3:4f:6b:85: 6e:b0:0c:bc:73:52:2a:f6:5b:ab:e0:29:66:35:c3:5a:25:ca: 3f:b9:f2:91:50:43:ed:5c:ae:49:80:00:91:35:dc:10:a3:d5: 0c:e1:7f:6d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNT0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzZERDgxMTAvBgNVBAUTKEZEOUZENDU3NDU4MjE4ODM4Nzc2QzBEQzA4RUZCNjE1 NTIwMUUzNjgwHhcNMjUxMTA0MTQyOTA2WhcNMjUxMTExMTQyOTA2WjAYMRYwFAYD VQQDEw02OTBhMGRiMy1lMjc1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAukOy04/3xj/Qxck2DouUrRAgnmKeXoe9Eg5je1Urpk6buFiQLcqtAAzIkpV5 LZ9tp2YcdpmKfCY9CIqQ3X9+Ajv1XHQGx1S3jdjWXW99i9eWu+7fNOvTAHhXpVlJ KEFWwza2//reVRWYrqiDUI1+TrsniV1ichBgbxKrJKkdVwPHtBhAIIsrilcVia2d ndFugAp6JAz6C2J3Tt9MRW9hhynN9tvtB/WTDFifGtK1Bi0f9ekfnwTyVE4kt6VY eaa0D4H03ALAASN33zEXyP6KKTrTnwuiNhCvE7SYYFCtPQli80PrsTPJ4F05ie8M +3mCZu4MRbF5gKAXTBGLecWPQQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOXxhdna vlj0sTTQKfx4JxxKdcr6MB8GA1UdIwQYMBaAFP2f1FdFghiDh3bA3AjvthVSAeNo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNkREOC9GMDQ4NTI0MjFE ODYxMUUyODYxMThDREUwOEIwMkNEMi9fWl9VVjBXQ0dJT0hkc0RjQ08tMkZWSUI0 MmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19aX1VWMFdDR0lPSGRzRGNDTy0yRlZJQjQyZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NkREOC9GMDQ4NTI0MjFEODYxMUUyODYxMThDREUwOEIwMkNEMi9fWl9VVjBXQ0dJ T0hkc0RjQ08tMkZWSUI0MmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDi2Y4SHJYtBg/x3k3B5E4QQAWSBq8GHk+qAqjaGUOA8CZqK8PenysF ahGgGe0R1z7LT59s5sitGk0BEOGpGUsuH/nbAQj5oVIcHcc1YEQrjijjN12Xotxp 4vfnneYnzcJqzSeXdD0IJ5YxBjrBgnkRC+M8ouPhlMsAcro8kgMLxjiU0oEdKrZ3 wnz9B+uIc4CeUsRn2979CVPNMlH0uew2XEehsaXaClMwj+M08OKI3sC/gYSjLZHp r4/8ppOnFI9PB8/gUndYuanpeM6PC41+EOvtovNPa4VusAy8c1Iq9lur4ClmNcNa Jco/ufKRUEPtXK5JgACRNdwQo9UM4X9t -----END CERTIFICATE-----Generated at Wed Nov 5 13:47:23 2025 by rpki-client