$ rpki-client -vvf rpki.apnic.net/member_repository/A91D5590/A895249EF7C511EA871C000CC4F9AE02/cZYTj9n8jHj-hDolPLBICtzFfw0.mft File: cZYTj9n8jHj-hDolPLBICtzFfw0.mft (raw, json) Hash identifier: l8O/Pe/uyhtuDQHzSuHz9IxksgO6Dt5wVtePplM7Fw4= Subject key identifier: 1D:38:B2:EE:AE:DF:10:A8:D9:7B:90:07:DD:E4:64:2D:36:A5:F0:BB Authority key identifier: 71:96:13:8F:D9:FC:8C:78:FE:84:3A:25:3C:B0:48:0A:DC:C5:7F:0D Certificate issuer: /CN=A91D5590/serialNumber=7196138FD9FC8C78FE843A253CB0480ADCC57F0D Certificate serial: 081E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cZYTj9n8jHj-hDolPLBICtzFfw0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D5590/A895249EF7C511EA871C000CC4F9AE02/cZYTj9n8jHj-hDolPLBICtzFfw0.mft Manifest number: 0812 Signing time: Tue 04 Nov 2025 20:59:38 +0000 Manifest this update: Tue 04 Nov 2025 20:59:38 +0000 Manifest next update: Tue 11 Nov 2025 20:59:38 +0000 Files and hashes: 1: cZYTj9n8jHj-hDolPLBICtzFfw0.crl (hash: NqFO7+Q6UwkMnhCx8BqjOxtBeHoaYphBNd+1Md6rRgc=) 2: 986F0854F7C611EA8B23C30CC4F9AE02.roa (hash: nZkvb14BrukF0xrl+mqOEwQXndGaGVD7etvG6n2ebqo=) 3: 9920D2E6F7C611EA8B23C30CC4F9AE02.roa (hash: aPoLWPstwsO+freisIa5/qBSIqgnIR7f63xsHuA2Fdc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D5590/A895249EF7C511EA871C000CC4F9AE02/cZYTj9n8jHj-hDolPLBICtzFfw0.crl rsync://rpki.apnic.net/member_repository/A91D5590/A895249EF7C511EA871C000CC4F9AE02/cZYTj9n8jHj-hDolPLBICtzFfw0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cZYTj9n8jHj-hDolPLBICtzFfw0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 20:59:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2078 (0x81e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D5590, serialNumber=7196138FD9FC8C78FE843A253CB0480ADCC57F0D Validity Not Before: Nov 4 20:59:38 2025 GMT Not After : Nov 11 20:59:38 2025 GMT Subject: CN=690a693a-872b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:46:32:ed:70:25:ab:ee:d3:42:9b:d0:b0:89: eb:34:c0:98:4d:dc:91:61:0d:b5:ea:28:7b:9a:0b: 5f:db:20:ea:41:c2:83:48:b2:99:3a:b2:20:d1:92: 9d:bf:09:b7:ae:7f:c4:67:7f:47:95:05:bf:76:55: d3:2b:d9:27:4e:5a:2f:69:b6:f5:df:1b:10:6c:00: 7c:c4:08:c3:15:8a:e5:20:84:54:0a:1b:4e:e1:08: 31:7b:f8:39:65:d7:a5:83:e9:87:4a:8d:d6:25:09: 5d:bd:76:78:a0:d1:51:9f:92:3a:d1:13:de:5e:44: 98:e3:94:d4:de:cd:d6:47:57:14:d6:25:fc:9d:ee: 39:1c:e4:e9:b3:94:33:ec:3d:1a:3f:23:77:9f:f3: 59:2a:14:73:7e:5c:58:b1:a6:4a:89:bc:e6:7d:28: 25:24:b3:1b:b6:c2:81:94:62:62:c9:b0:34:62:97: aa:a0:9c:cf:a2:4b:f0:f4:79:f7:04:1d:7e:88:e3: 4c:bc:e4:72:8a:fd:0d:a0:d4:75:0b:f0:27:a4:b0: e0:e7:58:19:92:c6:e6:73:53:4e:0f:b1:98:14:d9: d8:1c:40:cb:97:9a:9d:0f:33:6a:fe:0b:a4:db:c7: e8:83:b4:14:5a:43:2c:90:8e:1d:38:62:48:c4:1a: d4:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:38:B2:EE:AE:DF:10:A8:D9:7B:90:07:DD:E4:64:2D:36:A5:F0:BB X509v3 Authority Key Identifier: keyid:71:96:13:8F:D9:FC:8C:78:FE:84:3A:25:3C:B0:48:0A:DC:C5:7F:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D5590/A895249EF7C511EA871C000CC4F9AE02/cZYTj9n8jHj-hDolPLBICtzFfw0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cZYTj9n8jHj-hDolPLBICtzFfw0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D5590/A895249EF7C511EA871C000CC4F9AE02/cZYTj9n8jHj-hDolPLBICtzFfw0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 03:4c:5b:f2:4b:5d:77:5f:bc:16:79:d3:22:74:d2:d6:10:40: cf:0d:e1:7f:78:03:0e:fa:e5:4f:ef:2a:3c:4a:65:b2:48:5a: c5:e7:8c:0b:2f:dc:03:0c:44:88:4d:d4:a2:f0:a1:35:37:e7: 5b:cd:07:45:4a:56:f4:c3:7b:ab:d2:a0:5a:c1:02:03:22:88: d8:61:85:8c:93:4e:e6:44:6c:3c:b1:f8:43:a6:e0:27:b0:41: c5:46:65:e1:96:d7:63:71:16:47:32:69:75:56:b6:28:9f:12: ff:c1:9c:e2:09:75:8b:f6:6b:38:1e:48:76:b0:65:a2:27:a9: 96:0e:c4:32:19:93:8b:27:71:06:9b:b4:05:12:c6:27:31:46: dd:b9:01:4a:09:8d:e7:34:56:58:b3:28:f7:12:cc:3e:58:6d: c6:1c:c0:08:25:bd:12:1d:48:cb:4c:7b:00:8f:22:fd:3b:51: 40:53:c0:e9:27:08:68:5d:05:a5:6f:35:20:23:a4:ac:05:0c: 47:ec:50:19:4d:db:eb:70:0c:4b:0d:f4:6a:ca:9e:3c:c1:fa: 00:20:7d:29:52:c8:8c:be:dc:54:e8:85:4d:14:ce:6a:16:f3: 60:d0:4e:54:e4:19:fd:08:61:ff:00:25:03:b1:21:ce:46:a2: bb:bc:a9:95 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCB4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDU1OTAxMTAvBgNVBAUTKDcxOTYxMzhGRDlGQzhDNzhGRTg0M0EyNTNDQjA0ODBB RENDNTdGMEQwHhcNMjUxMTA0MjA1OTM4WhcNMjUxMTExMjA1OTM4WjAYMRYwFAYD VQQDEw02OTBhNjkzYS04NzJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAskYy7XAlq+7TQpvQsInrNMCYTdyRYQ216ih7mgtf2yDqQcKDSLKZOrIg0ZKd vwm3rn/EZ39HlQW/dlXTK9knTlovabb13xsQbAB8xAjDFYrlIIRUChtO4Qgxe/g5 Zdelg+mHSo3WJQldvXZ4oNFRn5I60RPeXkSY45TU3s3WR1cU1iX8ne45HOTps5Qz 7D0aPyN3n/NZKhRzflxYsaZKibzmfSglJLMbtsKBlGJiybA0YpeqoJzPokvw9Hn3 BB1+iONMvORyiv0NoNR1C/AnpLDg51gZksbmc1NOD7GYFNnYHEDLl5qdDzNq/guk 28fog7QUWkMskI4dOGJIxBrUkwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB04su6u 3xCo2XuQB93kZC02pfC7MB8GA1UdIwQYMBaAFHGWE4/Z/Ix4/oQ6JTywSArcxX8N MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENTU5MC9BODk1MjQ5RUY3 QzUxMUVBODcxQzAwMENDNEY5QUUwMi9jWllUajluOGpIai1oRG9sUExCSUN0ekZm dzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NaWVRqOW44akhqLWhEb2xQTEJJQ3R6RmZ3MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NTU5MC9BODk1MjQ5RUY3QzUxMUVBODcxQzAwMENDNEY5QUUwMi9jWllUajluOGpI ai1oRG9sUExCSUN0ekZmdzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQADTFvyS113X7wWedMidNLWEEDPDeF/eAMO+uVP7yo8SmWySFrF54wL L9wDDESITdSi8KE1N+dbzQdFSlb0w3ur0qBawQIDIojYYYWMk07mRGw8sfhDpuAn sEHFRmXhltdjcRZHMml1VrYonxL/wZziCXWL9ms4Hkh2sGWiJ6mWDsQyGZOLJ3EG m7QFEsYnMUbduQFKCY3nNFZYsyj3Esw+WG3GHMAIJb0SHUjLTHsAjyL9O1FAU8Dp JwhoXQWlbzUgI6SsBQxH7FAZTdvrcAxLDfRqyp48wfoAIH0pUsiMvtxU6IVNFM5q FvNg0E5U5Bn9CGH/ACUDsSHORqK7vKmV -----END CERTIFICATE-----Generated at Wed Nov 5 11:59:05 2025 by rpki-client