$ rpki-client -vvf rpki.apnic.net/member_repository/A91DEB2E/6FC8BFDE8C2111EDB2B2F30AC4F9AE02/CZyBX8poKm4oYE_pYv0QcVgn6V0.mft File: CZyBX8poKm4oYE_pYv0QcVgn6V0.mft (raw, json) Hash identifier: dHlnarI38ezifdHG6nQlZreAv2uGszjthUCqAPj27uA= Subject key identifier: 9C:BB:5B:62:01:83:EB:09:B6:EA:8B:94:9E:D0:8B:A7:7E:92:5D:B9 Authority key identifier: 09:9C:81:5F:CA:68:2A:6E:28:60:4F:E9:62:FD:10:71:58:27:E9:5D Certificate issuer: /CN=A91DEB2E/serialNumber=099C815FCA682A6E28604FE962FD10715827E95D Certificate serial: 021A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZyBX8poKm4oYE_pYv0QcVgn6V0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DEB2E/6FC8BFDE8C2111EDB2B2F30AC4F9AE02/CZyBX8poKm4oYE_pYv0QcVgn6V0.mft Manifest number: 0214 Signing time: Wed 05 Nov 2025 02:20:25 +0000 Manifest this update: Wed 05 Nov 2025 02:20:25 +0000 Manifest next update: Wed 12 Nov 2025 02:20:25 +0000 Files and hashes: 1: CZyBX8poKm4oYE_pYv0QcVgn6V0.crl (hash: 2lRw1GTxR++ni6vXSYRKu16rMB3wPoRW62HWRZLKOz0=) 2: 3CB103648C2511EDB64DB410C4F9AE02.roa (hash: MmbQus/ep65NlWLekYokD81GuyXquRa4J0H16aokObA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DEB2E/6FC8BFDE8C2111EDB2B2F30AC4F9AE02/CZyBX8poKm4oYE_pYv0QcVgn6V0.crl rsync://rpki.apnic.net/member_repository/A91DEB2E/6FC8BFDE8C2111EDB2B2F30AC4F9AE02/CZyBX8poKm4oYE_pYv0QcVgn6V0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZyBX8poKm4oYE_pYv0QcVgn6V0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 02:20:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 538 (0x21a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DEB2E, serialNumber=099C815FCA682A6E28604FE962FD10715827E95D Validity Not Before: Nov 5 02:20:25 2025 GMT Not After : Nov 12 02:20:25 2025 GMT Subject: CN=690ab469-5e4d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:b2:b6:1a:b6:d8:75:9c:6d:47:e9:8d:29:45: 29:76:ef:60:b7:ab:81:ff:a1:04:ff:38:30:8f:4a: 61:3a:36:2c:66:9c:e2:a5:df:90:b7:2a:22:ea:54: a7:d7:0d:1e:23:d7:66:a9:4a:8a:83:c3:0d:88:15: 78:74:8e:07:79:01:87:fe:81:1c:c4:23:91:7f:be: e1:17:b3:89:db:fb:ec:79:65:67:fc:51:42:ed:55: 5d:16:d9:d2:5d:21:40:a5:37:aa:a6:23:9b:50:fd: 57:af:40:1e:f6:fe:db:29:9d:c8:3f:18:ef:7c:7c: ac:25:d0:ee:9a:36:bb:b4:eb:7d:b3:08:70:15:0a: f4:f0:1e:d5:75:81:0b:58:da:b8:f3:02:98:97:e9: 60:dc:42:bd:d8:c6:99:b6:84:3e:9b:62:bf:19:d6: b8:57:9d:c1:b3:4f:d0:53:6f:7b:51:05:30:95:8b: d3:10:32:31:39:fb:88:ca:e1:24:eb:fe:19:88:2f: 54:1a:bc:85:27:4c:fd:a7:2c:44:c3:d6:85:31:54: 34:bf:e8:51:38:db:52:2a:b3:8a:95:71:d9:b0:2d: 06:ba:7f:8d:8c:7f:1e:d5:88:24:78:4c:8b:53:8d: b6:23:c5:16:47:05:17:80:ce:6e:5b:00:5a:d9:62: 99:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:BB:5B:62:01:83:EB:09:B6:EA:8B:94:9E:D0:8B:A7:7E:92:5D:B9 X509v3 Authority Key Identifier: keyid:09:9C:81:5F:CA:68:2A:6E:28:60:4F:E9:62:FD:10:71:58:27:E9:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DEB2E/6FC8BFDE8C2111EDB2B2F30AC4F9AE02/CZyBX8poKm4oYE_pYv0QcVgn6V0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZyBX8poKm4oYE_pYv0QcVgn6V0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DEB2E/6FC8BFDE8C2111EDB2B2F30AC4F9AE02/CZyBX8poKm4oYE_pYv0QcVgn6V0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 69:41:a2:ec:62:fd:a0:f9:c5:09:71:57:a1:44:62:ce:a8:02: e8:78:50:0a:ea:5e:e8:76:07:06:83:7d:d3:18:4d:3a:f6:34: e5:d8:94:3b:e4:3e:eb:49:b6:b9:a7:f0:71:a4:9a:dd:c7:36: f6:ca:84:bb:b8:2d:03:b8:d9:ff:3f:ac:5f:90:b4:a2:72:e7: ba:30:68:d5:af:7c:fb:2c:2f:d5:36:24:be:68:c6:a5:10:7d: 94:9e:5d:7b:89:0c:f9:6f:27:db:fe:ee:be:64:aa:f0:e8:e5: 37:72:3e:6d:79:f0:6f:00:49:84:68:99:39:2f:02:99:ce:e4: a2:09:8b:7b:27:a5:7b:c5:20:19:71:b3:67:c5:f5:df:95:a4: 9a:ff:84:e9:b2:00:a2:fa:c0:ec:04:4e:b2:87:57:2c:49:ee: 7c:7b:0d:8a:d2:51:8f:2f:67:b0:26:2b:52:60:57:ed:b3:a0: 99:60:b6:cd:75:a3:5e:b0:3c:06:2d:de:52:32:73:12:3f:9e: b6:52:51:c4:53:3d:7c:50:8a:5e:a3:a1:da:84:7a:c6:81:83: 61:b5:4e:7e:b8:d7:ec:67:a8:41:66:5e:a5:a5:31:dc:36:35: 05:cf:76:dc:eb:4d:5c:4c:09:8d:ae:1f:39:4b:b6:83:14:0b: cf:00:e3:b9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAhowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REVCMkUxMTAvBgNVBAUTKDA5OUM4MTVGQ0E2ODJBNkUyODYwNEZFOTYyRkQxMDcx NTgyN0U5NUQwHhcNMjUxMTA1MDIyMDI1WhcNMjUxMTEyMDIyMDI1WjAYMRYwFAYD VQQDEw02OTBhYjQ2OS01ZTRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvLK2GrbYdZxtR+mNKUUpdu9gt6uB/6EE/zgwj0phOjYsZpzipd+Qtyoi6lSn 1w0eI9dmqUqKg8MNiBV4dI4HeQGH/oEcxCORf77hF7OJ2/vseWVn/FFC7VVdFtnS XSFApTeqpiObUP1Xr0Ae9v7bKZ3IPxjvfHysJdDumja7tOt9swhwFQr08B7VdYEL WNq48wKYl+lg3EK92MaZtoQ+m2K/Gda4V53Bs0/QU297UQUwlYvTEDIxOfuIyuEk 6/4ZiC9UGryFJ0z9pyxEw9aFMVQ0v+hRONtSKrOKlXHZsC0Gun+NjH8e1YgkeEyL U422I8UWRwUXgM5uWwBa2WKZbQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJy7W2IB g+sJtuqLlJ7Qi6d+kl25MB8GA1UdIwQYMBaAFAmcgV/KaCpuKGBP6WL9EHFYJ+ld MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERUIyRS82RkM4QkZERThD MjExMUVEQjJCMkYzMEFDNEY5QUUwMi9DWnlCWDhwb0ttNG9ZRV9wWXYwUWNWZ242 VjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NaeUJYOHBvS200b1lFX3BZdjBRY1ZnbjZWMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RUIyRS82RkM4QkZERThDMjExMUVEQjJCMkYzMEFDNEY5QUUwMi9DWnlCWDhwb0tt NG9ZRV9wWXYwUWNWZ242VjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBpQaLsYv2g+cUJcVehRGLOqALoeFAK6l7odgcGg33TGE069jTl2JQ7 5D7rSba5p/BxpJrdxzb2yoS7uC0DuNn/P6xfkLSicue6MGjVr3z7LC/VNiS+aMal EH2Unl17iQz5byfb/u6+ZKrw6OU3cj5tefBvAEmEaJk5LwKZzuSiCYt7J6V7xSAZ cbNnxfXflaSa/4TpsgCi+sDsBE6yh1csSe58ew2K0lGPL2ewJitSYFfts6CZYLbN daNesDwGLd5SMnMSP562UlHEUz18UIpeo6HahHrGgYNhtU5+uNfsZ6hBZl6lpTHc NjUFz3bc601cTAmNrh85S7aDFAvPAOO5 -----END CERTIFICATE-----Generated at Wed Nov 5 05:50:06 2025 by rpki-client