$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4D9B/F5BAA3D8C80011EA87D44A78C4F9AE02/z4nWqxHn1Hqhe0MJxypytxy6R64.mft File: z4nWqxHn1Hqhe0MJxypytxy6R64.mft (raw, json) Hash identifier: UHPPUWw+ZmlIR4K1K0QwzUb1s3uLoiO8TRZqdoavdhU= Subject key identifier: 83:7F:23:B2:F7:58:B8:2D:BC:5E:83:3E:54:9C:81:24:55:EA:EA:EA Authority key identifier: CF:89:D6:AB:11:E7:D4:7A:A1:7B:43:09:C7:2A:72:B7:1C:BA:47:AE Certificate issuer: /CN=A91E4D9B/serialNumber=CF89D6AB11E7D47AA17B4309C72A72B71CBA47AE Certificate serial: 08BD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z4nWqxHn1Hqhe0MJxypytxy6R64.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4D9B/F5BAA3D8C80011EA87D44A78C4F9AE02/z4nWqxHn1Hqhe0MJxypytxy6R64.mft Manifest number: 08B2 Signing time: Sun 02 Nov 2025 20:27:49 +0000 Manifest this update: Sun 02 Nov 2025 20:27:49 +0000 Manifest next update: Sun 09 Nov 2025 20:27:49 +0000 Files and hashes: 1: z4nWqxHn1Hqhe0MJxypytxy6R64.crl (hash: Z76bI9fJ1ao+ysK5LUQdTQec8SGJs/XweFPnX/4mqS8=) 2: CCF7B8AA22B811ECAD21FB20C4F9AE02.roa (hash: G2foGf7uCgcEw+7JgUphjmWyB8lqa7VFa71ApGd5KNc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4D9B/F5BAA3D8C80011EA87D44A78C4F9AE02/z4nWqxHn1Hqhe0MJxypytxy6R64.crl rsync://rpki.apnic.net/member_repository/A91E4D9B/F5BAA3D8C80011EA87D44A78C4F9AE02/z4nWqxHn1Hqhe0MJxypytxy6R64.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z4nWqxHn1Hqhe0MJxypytxy6R64.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 20:27:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2237 (0x8bd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4D9B, serialNumber=CF89D6AB11E7D47AA17B4309C72A72B71CBA47AE Validity Not Before: Nov 2 20:27:49 2025 GMT Not After : Nov 9 20:27:49 2025 GMT Subject: CN=6907bec5-d9b4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:38:5c:bc:c3:89:82:f7:61:1a:98:6f:15:35: b6:cc:cb:5e:69:d7:ec:26:4a:6f:5a:8e:0f:d0:80: 2c:79:28:a5:5e:3c:a0:81:60:3c:9c:ef:86:06:05: 47:bd:37:b8:80:38:77:86:f1:bf:54:13:a7:aa:d6: 60:33:48:e9:80:03:26:f0:56:89:fd:76:9a:17:c5: 3d:d9:fe:eb:a1:32:19:16:54:d6:5b:15:d5:15:f4: 7b:4a:a0:e5:ac:d1:45:6e:17:2b:e7:4a:67:a3:de: 6a:1d:43:16:b1:7f:78:37:6b:e6:7f:59:54:6d:24: 55:0f:af:d7:af:ac:9c:d8:0c:d6:9a:f3:4d:50:3e: 34:46:46:35:f3:3c:80:e4:c9:0f:d2:4a:3e:5c:df: c6:a6:bf:23:77:64:d3:26:e9:72:9b:06:1a:d9:8c: ac:02:e1:fd:ed:1d:91:b4:56:c0:1c:12:17:21:45: 60:c1:c1:3d:ce:1c:f6:bf:5a:3d:85:71:f3:d8:26: 3e:5c:89:db:c7:0c:95:89:6d:39:c0:4c:c7:76:e4: 87:b5:16:0e:4e:07:af:a8:8e:a3:79:16:e7:99:66: cd:25:8d:66:30:e8:5c:65:26:68:fe:e2:7c:ae:f1: 78:59:b2:bd:2d:cf:4d:91:d5:be:d4:55:22:18:0b: 90:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:7F:23:B2:F7:58:B8:2D:BC:5E:83:3E:54:9C:81:24:55:EA:EA:EA X509v3 Authority Key Identifier: keyid:CF:89:D6:AB:11:E7:D4:7A:A1:7B:43:09:C7:2A:72:B7:1C:BA:47:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4D9B/F5BAA3D8C80011EA87D44A78C4F9AE02/z4nWqxHn1Hqhe0MJxypytxy6R64.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z4nWqxHn1Hqhe0MJxypytxy6R64.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4D9B/F5BAA3D8C80011EA87D44A78C4F9AE02/z4nWqxHn1Hqhe0MJxypytxy6R64.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 97:9b:78:5e:10:53:a9:67:95:5e:08:dd:93:a1:e6:22:d4:06: 15:9f:bc:87:b2:61:8b:37:a5:ba:ce:2a:0d:63:a7:70:83:fb: be:e9:7f:d6:8d:9e:ce:d3:9c:f6:bd:04:26:ea:7c:b7:69:3d: 87:b2:ed:ad:2f:48:a1:86:c8:85:15:be:f7:db:dc:94:6e:97: e9:e6:1b:d6:f2:b4:3a:7e:b6:50:64:54:81:5c:25:ea:3c:23: 2b:8a:0b:be:0a:c8:45:01:d2:c8:9b:7d:bc:26:51:f8:30:f3: 63:cb:9d:df:dc:34:7e:cf:01:eb:d8:be:5f:89:2e:87:9d:54: e2:b9:64:41:b6:7c:e7:1d:20:b2:e3:32:72:b5:d1:e2:7c:82: d6:e4:df:05:c2:dd:f9:0f:3f:2f:e3:72:d1:d0:66:02:8d:37: 56:3c:59:f6:ba:cd:fe:67:bb:ce:71:3f:14:09:99:7a:a0:9e: 6e:27:26:42:be:19:f4:1f:20:c0:2a:f0:18:66:ed:4a:32:eb: 78:d9:ce:bb:c2:0b:fb:c3:a9:5b:76:b0:25:a1:52:f6:21:58: 38:56:d4:8e:43:fe:7b:85:ef:6b:c3:a2:e7:2c:21:85:3e:8f: 45:d0:73:86:da:34:06:c6:3b:16:d6:fa:83:46:2e:79:ed:64: bd:e1:19:4e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCL0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTREOUIxMTAvBgNVBAUTKENGODlENkFCMTFFN0Q0N0FBMTdCNDMwOUM3MkE3MkI3 MUNCQTQ3QUUwHhcNMjUxMTAyMjAyNzQ5WhcNMjUxMTA5MjAyNzQ5WjAYMRYwFAYD VQQDEw02OTA3YmVjNS1kOWI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxjhcvMOJgvdhGphvFTW2zMteadfsJkpvWo4P0IAseSilXjyggWA8nO+GBgVH vTe4gDh3hvG/VBOnqtZgM0jpgAMm8FaJ/XaaF8U92f7roTIZFlTWWxXVFfR7SqDl rNFFbhcr50pno95qHUMWsX94N2vmf1lUbSRVD6/Xr6yc2AzWmvNNUD40RkY18zyA 5MkP0ko+XN/Gpr8jd2TTJulymwYa2YysAuH97R2RtFbAHBIXIUVgwcE9zhz2v1o9 hXHz2CY+XInbxwyViW05wEzHduSHtRYOTgevqI6jeRbnmWbNJY1mMOhcZSZo/uJ8 rvF4WbK9Lc9NkdW+1FUiGAuQ9QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIN/I7L3 WLgtvF6DPlScgSRV6urqMB8GA1UdIwQYMBaAFM+J1qsR59R6oXtDCccqcrccukeu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNEQ5Qi9GNUJBQTNEOEM4 MDAxMUVBODdENDRBNzhDNEY5QUUwMi96NG5XcXhIbjFIcWhlME1KeHlweXR4eTZS NjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3o0bldxeEhuMUhxaGUwTUp4eXB5dHh5NlI2NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NEQ5Qi9GNUJBQTNEOEM4MDAxMUVBODdENDRBNzhDNEY5QUUwMi96NG5XcXhIbjFI cWhlME1KeHlweXR4eTZSNjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCXm3heEFOpZ5VeCN2ToeYi1AYVn7yHsmGLN6W6zioNY6dwg/u+6X/W jZ7O05z2vQQm6ny3aT2Hsu2tL0ihhsiFFb7329yUbpfp5hvW8rQ6frZQZFSBXCXq PCMrigu+CshFAdLIm328JlH4MPNjy53f3DR+zwHr2L5fiS6HnVTiuWRBtnznHSCy 4zJytdHifILW5N8Fwt35Dz8v43LR0GYCjTdWPFn2us3+Z7vOcT8UCZl6oJ5uJyZC vhn0HyDAKvAYZu1KMut42c67wgv7w6lbdrAloVL2IVg4VtSOQ/57he9rw6LnLCGF Po9F0HOG2jQGxjsW1vqDRi557WS94RlO -----END CERTIFICATE-----Generated at Tue Nov 4 21:34:26 2025 by rpki-client