$ rpki-client -vvf rpki.apnic.net/member_repository/A91E7ED9/F8E0B3B2DBA211EAA88F2066C4F9AE02/z2aDdOx1q1ys0upzBRX3t3ZN2SE.mft File: z2aDdOx1q1ys0upzBRX3t3ZN2SE.mft (raw, json) Hash identifier: i1nBzdLKVlYAonZv1IzATNZc0ZGnxEVmzRosHeqRQz0= Subject key identifier: 5C:F7:2F:13:EB:31:A4:FE:00:40:08:A4:73:21:D8:F0:05:81:8B:61 Authority key identifier: CF:66:83:74:EC:75:AB:5C:AC:D2:EA:73:05:15:F7:B7:76:4D:D9:21 Certificate issuer: /CN=A91E7ED9/serialNumber=CF668374EC75AB5CACD2EA730515F7B7764DD921 Certificate serial: 0861 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z2aDdOx1q1ys0upzBRX3t3ZN2SE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E7ED9/F8E0B3B2DBA211EAA88F2066C4F9AE02/z2aDdOx1q1ys0upzBRX3t3ZN2SE.mft Manifest number: 085B Signing time: Sun 02 Nov 2025 20:37:35 +0000 Manifest this update: Sun 02 Nov 2025 20:37:35 +0000 Manifest next update: Sun 09 Nov 2025 20:37:35 +0000 Files and hashes: 1: z2aDdOx1q1ys0upzBRX3t3ZN2SE.crl (hash: KiXBXYCUV1Qok+foBrge+Fy53vaThHaQZb+mB9LB6xg=) 2: DE349762DBA311EA8DE35866C4F9AE02.roa (hash: W9BGV+7n/b6h+ZEgu/zCV5dkMkakdYDRjim1ueZv/vs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E7ED9/F8E0B3B2DBA211EAA88F2066C4F9AE02/z2aDdOx1q1ys0upzBRX3t3ZN2SE.crl rsync://rpki.apnic.net/member_repository/A91E7ED9/F8E0B3B2DBA211EAA88F2066C4F9AE02/z2aDdOx1q1ys0upzBRX3t3ZN2SE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z2aDdOx1q1ys0upzBRX3t3ZN2SE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 20:37:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2145 (0x861) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E7ED9, serialNumber=CF668374EC75AB5CACD2EA730515F7B7764DD921 Validity Not Before: Nov 2 20:37:35 2025 GMT Not After : Nov 9 20:37:35 2025 GMT Subject: CN=6907c10f-8d89 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:da:ff:ac:1c:b6:b2:69:8a:44:97:2a:91:b5: 29:aa:5f:38:77:d7:f3:98:55:91:5a:0d:a0:db:9c: 85:16:f1:fd:d8:29:2c:2b:55:df:2d:cf:f1:65:cc: c8:5e:30:a0:f4:d2:1b:6d:f2:dc:82:cb:12:8a:86: 5d:36:40:13:52:97:02:ef:0e:2e:97:77:ae:a8:e6: 07:a8:4f:04:4e:b4:c7:ae:10:20:e9:77:e1:b6:da: 57:7c:76:74:5c:a6:cc:95:c1:a2:8c:f0:6e:d4:50: 1e:c1:d4:07:c6:b6:a6:4d:46:bd:2a:04:92:fb:3e: ad:0f:ca:23:b9:d8:d7:ea:8c:47:07:77:ab:17:f1: 28:7d:56:19:2e:e5:21:a9:f7:6f:43:0a:98:87:30: e7:aa:71:c0:b4:4f:db:f2:ba:22:59:3e:bb:33:b8: e4:53:21:fc:a7:3f:ee:34:3a:a6:e9:72:0d:c2:79: bb:67:41:62:92:bd:c6:7b:0a:85:3b:61:c8:46:ae: 6a:75:fd:ec:1f:4f:62:4d:79:f9:8d:d1:dc:e5:0b: b1:0f:80:29:4c:ee:2a:fa:e5:31:37:ba:20:d9:9f: b2:01:f8:4f:85:b1:06:c6:c5:8d:49:d0:96:c3:7c: 79:e4:86:b4:cd:16:71:d9:e0:0a:8d:05:0c:e8:f8: 05:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:F7:2F:13:EB:31:A4:FE:00:40:08:A4:73:21:D8:F0:05:81:8B:61 X509v3 Authority Key Identifier: keyid:CF:66:83:74:EC:75:AB:5C:AC:D2:EA:73:05:15:F7:B7:76:4D:D9:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E7ED9/F8E0B3B2DBA211EAA88F2066C4F9AE02/z2aDdOx1q1ys0upzBRX3t3ZN2SE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z2aDdOx1q1ys0upzBRX3t3ZN2SE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E7ED9/F8E0B3B2DBA211EAA88F2066C4F9AE02/z2aDdOx1q1ys0upzBRX3t3ZN2SE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5e:56:f0:6c:c2:85:a8:61:5b:79:2c:af:b6:9c:29:61:fb:9d: 90:c9:4c:ee:62:ac:3f:2b:18:16:58:84:df:65:12:d0:64:98: b9:e9:eb:17:37:b5:3f:67:60:d4:1a:be:3e:31:25:6e:73:42: 1f:f6:36:41:63:15:99:2d:f5:44:99:55:c5:95:ea:8d:05:32: ad:01:93:c5:ce:20:f8:68:08:06:ab:8f:32:03:03:db:21:ad: 88:21:60:d8:10:9c:96:67:d1:6a:21:a8:ba:3a:53:ba:62:bc: c6:db:16:38:7d:fc:b0:fe:50:2c:a8:fa:98:11:42:a3:42:bd: b7:93:53:bb:61:15:d7:a6:6d:20:39:3b:70:c8:5c:ec:36:2d: a5:04:3b:7f:66:ce:4e:55:d0:ac:21:d5:bf:83:c0:8c:b1:7d: e4:0e:39:82:61:4c:83:a8:02:48:a1:18:98:ac:39:dc:ab:f0: 50:4b:7a:44:ae:3b:17:56:2f:1c:7a:51:5a:f5:fe:00:ab:1c: b0:c0:5f:c5:b5:69:d7:c4:48:24:5b:47:ed:7a:09:68:c1:9d: 8e:d4:27:fc:33:8f:69:3b:4c:20:ce:16:56:be:2a:bc:23:ac: 6a:48:aa:db:6e:e1:11:e1:19:7b:57:85:12:28:2d:f9:44:59: d8:ee:52:3d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCGEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTdFRDkxMTAvBgNVBAUTKENGNjY4Mzc0RUM3NUFCNUNBQ0QyRUE3MzA1MTVGN0I3 NzY0REQ5MjEwHhcNMjUxMTAyMjAzNzM1WhcNMjUxMTA5MjAzNzM1WjAYMRYwFAYD VQQDEw02OTA3YzEwZi04ZDg5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAutr/rBy2smmKRJcqkbUpql84d9fzmFWRWg2g25yFFvH92CksK1XfLc/xZczI XjCg9NIbbfLcgssSioZdNkATUpcC7w4ul3euqOYHqE8ETrTHrhAg6XfhttpXfHZ0 XKbMlcGijPBu1FAewdQHxramTUa9KgSS+z6tD8ojudjX6oxHB3erF/EofVYZLuUh qfdvQwqYhzDnqnHAtE/b8roiWT67M7jkUyH8pz/uNDqm6XINwnm7Z0Fikr3GewqF O2HIRq5qdf3sH09iTXn5jdHc5QuxD4ApTO4q+uUxN7og2Z+yAfhPhbEGxsWNSdCW w3x55Ia0zRZx2eAKjQUM6PgF7wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFz3LxPr MaT+AEAIpHMh2PAFgYthMB8GA1UdIwQYMBaAFM9mg3TsdatcrNLqcwUV97d2Tdkh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFN0VEOS9GOEUwQjNCMkRC QTIxMUVBQTg4RjIwNjZDNEY5QUUwMi96MmFEZE94MXExeXMwdXB6QlJYM3QzWk4y U0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3oyYURkT3gxcTF5czB1cHpCUlgzdDNaTjJTRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF N0VEOS9GOEUwQjNCMkRCQTIxMUVBQTg4RjIwNjZDNEY5QUUwMi96MmFEZE94MXEx eXMwdXB6QlJYM3QzWk4yU0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBeVvBswoWoYVt5LK+2nClh+52QyUzuYqw/KxgWWITfZRLQZJi56esX N7U/Z2DUGr4+MSVuc0If9jZBYxWZLfVEmVXFleqNBTKtAZPFziD4aAgGq48yAwPb Ia2IIWDYEJyWZ9FqIai6OlO6YrzG2xY4ffyw/lAsqPqYEUKjQr23k1O7YRXXpm0g OTtwyFzsNi2lBDt/Zs5OVdCsIdW/g8CMsX3kDjmCYUyDqAJIoRiYrDncq/BQS3pE rjsXVi8celFa9f4AqxywwF/FtWnXxEgkW0fteglowZ2O1Cf8M49pO0wgzhZWviq8 I6xqSKrbbuER4Rl7V4USKC35RFnY7lI9 -----END CERTIFICATE-----Generated at Tue Nov 4 12:36:47 2025 by rpki-client