$ rpki-client -vvf rpki.apnic.net/member_repository/A91F479C/32BF850E98E411EC937D615CC4F9AE02/MZdALMHUBvlwfS4iBDY7wNE8Apk.mft File: MZdALMHUBvlwfS4iBDY7wNE8Apk.mft (raw, json) Hash identifier: aCxQYa98TS5b4ZXFvdTctEG0/Mv7frjqyh60Tvu7iLQ= Subject key identifier: 64:CE:2A:CB:FF:F6:35:75:78:E4:F4:2A:E6:E8:80:B4:27:64:10:6B Authority key identifier: 31:97:40:2C:C1:D4:06:F9:70:7D:2E:22:04:36:3B:C0:D1:3C:02:99 Certificate issuer: /CN=A91F479C/serialNumber=3197402CC1D406F9707D2E2204363BC0D13C0299 Certificate serial: 03F4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MZdALMHUBvlwfS4iBDY7wNE8Apk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F479C/32BF850E98E411EC937D615CC4F9AE02/MZdALMHUBvlwfS4iBDY7wNE8Apk.mft Manifest number: 03F0 Signing time: Wed 05 Nov 2025 00:34:49 +0000 Manifest this update: Wed 05 Nov 2025 00:34:48 +0000 Manifest next update: Wed 12 Nov 2025 00:34:48 +0000 Files and hashes: 1: MZdALMHUBvlwfS4iBDY7wNE8Apk.crl (hash: RRqXNvMlWvPKiEvS2tA+EibscChIdAT7S3MdXqXIwuo=) 2: 751D2C1A98E611EC849D155FC4F9AE02.roa (hash: CkImo8IsUmsaya0jHXM103+CNWFzYVltZI4TafvBrlE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F479C/32BF850E98E411EC937D615CC4F9AE02/MZdALMHUBvlwfS4iBDY7wNE8Apk.crl rsync://rpki.apnic.net/member_repository/A91F479C/32BF850E98E411EC937D615CC4F9AE02/MZdALMHUBvlwfS4iBDY7wNE8Apk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MZdALMHUBvlwfS4iBDY7wNE8Apk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 00:34:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1012 (0x3f4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F479C, serialNumber=3197402CC1D406F9707D2E2204363BC0D13C0299 Validity Not Before: Nov 5 00:34:48 2025 GMT Not After : Nov 12 00:34:48 2025 GMT Subject: CN=690a9ba9-e641 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:25:f6:f6:ae:81:f1:77:81:2d:e3:30:ed:fd: e0:17:99:c7:02:e5:2a:6d:3f:e3:8a:09:7a:b1:34: b3:e2:e8:1d:c2:f7:51:90:e5:83:54:09:5f:ab:0f: 01:d0:ca:6e:ae:e0:98:d0:01:73:ea:cc:12:34:ad: 9c:32:be:16:81:42:16:d5:b1:ae:66:32:07:bb:3d: 01:5e:b4:04:ca:24:27:ca:7c:7b:fb:d0:c0:9d:a4: 5c:02:cb:6d:26:88:02:77:ef:69:78:ba:11:a7:91: ef:ec:a6:b5:17:cf:df:5c:4a:ec:8f:c5:01:65:96: e0:1f:88:30:93:79:31:1b:ed:8a:39:23:f5:f8:f4: 93:14:30:e5:0c:ad:07:c4:36:64:e2:20:c2:29:b7: 2f:64:b4:52:7b:dd:af:97:a8:7d:17:79:8d:91:82: f2:cb:9f:8f:31:46:f1:51:33:7e:17:4c:e6:59:0b: de:be:56:5f:84:a6:5a:fc:c5:18:a4:dd:be:38:00: cc:2a:3f:01:6a:c1:13:60:50:0a:04:0a:c6:39:41: a9:cb:ca:4f:34:be:22:52:fb:26:56:b9:c3:d6:ae: 0a:a7:2e:c4:c8:b3:f4:64:ad:8f:d3:fc:3b:e5:a2: e4:4a:4a:37:d3:da:00:2d:7f:2b:0b:54:96:12:34: fc:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:CE:2A:CB:FF:F6:35:75:78:E4:F4:2A:E6:E8:80:B4:27:64:10:6B X509v3 Authority Key Identifier: keyid:31:97:40:2C:C1:D4:06:F9:70:7D:2E:22:04:36:3B:C0:D1:3C:02:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F479C/32BF850E98E411EC937D615CC4F9AE02/MZdALMHUBvlwfS4iBDY7wNE8Apk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MZdALMHUBvlwfS4iBDY7wNE8Apk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F479C/32BF850E98E411EC937D615CC4F9AE02/MZdALMHUBvlwfS4iBDY7wNE8Apk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d3:8c:9e:81:4f:b0:52:8b:e1:5e:e6:8b:d3:bf:be:c4:47:3a: 77:3d:b9:c2:90:03:1e:ad:24:50:1e:ac:0f:91:df:3c:85:83: 9c:c9:b2:91:16:7d:b2:e7:5a:ee:27:1b:07:2e:99:27:c9:ff: 81:90:47:a0:22:ab:48:59:04:ac:1a:c0:4e:ad:c4:6a:dd:00: 65:30:fa:9e:ad:6e:dd:c0:06:55:1a:02:ad:d0:80:99:60:a3: bd:6e:2a:89:36:82:ea:52:3c:57:d5:46:0c:a7:b0:e4:c9:cd: 6b:7f:d3:f4:95:eb:7b:1e:9d:a8:db:5e:93:64:2e:bb:ac:e2: 31:5e:f7:48:06:7b:81:e4:e7:e7:e1:7e:e7:9d:71:25:a4:cc: 0c:25:dd:9b:c5:76:96:cd:35:af:db:a9:a3:8e:c0:96:7a:2d: f7:f2:88:1a:70:27:b4:a5:95:93:62:91:42:1d:66:e5:06:3d: 3f:e2:70:46:fc:df:6a:2e:65:7f:f1:93:b5:40:da:27:71:24: 5b:04:34:93:12:56:61:bd:2f:5b:91:46:b8:e8:dc:96:fc:63: 7a:fc:76:7d:51:8f:49:ab:32:52:30:a8:87:b1:06:b1:98:0d: 46:20:98:c8:60:fd:54:c8:a1:2a:a1:fa:fc:5c:67:56:f1:94: 00:3d:a9:a0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA/QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjQ3OUMxMTAvBgNVBAUTKDMxOTc0MDJDQzFENDA2Rjk3MDdEMkUyMjA0MzYzQkMw RDEzQzAyOTkwHhcNMjUxMTA1MDAzNDQ4WhcNMjUxMTEyMDAzNDQ4WjAYMRYwFAYD VQQDEw02OTBhOWJhOS1lNjQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnCX29q6B8XeBLeMw7f3gF5nHAuUqbT/jigl6sTSz4ugdwvdRkOWDVAlfqw8B 0MpuruCY0AFz6swSNK2cMr4WgUIW1bGuZjIHuz0BXrQEyiQnynx7+9DAnaRcAstt JogCd+9peLoRp5Hv7Ka1F8/fXErsj8UBZZbgH4gwk3kxG+2KOSP1+PSTFDDlDK0H xDZk4iDCKbcvZLRSe92vl6h9F3mNkYLyy5+PMUbxUTN+F0zmWQvevlZfhKZa/MUY pN2+OADMKj8BasETYFAKBArGOUGpy8pPNL4iUvsmVrnD1q4Kpy7EyLP0ZK2P0/w7 5aLkSko309oALX8rC1SWEjT89wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGTOKsv/ 9jV1eOT0KubogLQnZBBrMB8GA1UdIwQYMBaAFDGXQCzB1Ab5cH0uIgQ2O8DRPAKZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNDc5Qy8zMkJGODUwRTk4 RTQxMUVDOTM3RDYxNUNDNEY5QUUwMi9NWmRBTE1IVUJ2bHdmUzRpQkRZN3dORThB cGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01aZEFMTUhVQnZsd2ZTNGlCRFk3d05FOEFway5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NDc5Qy8zMkJGODUwRTk4RTQxMUVDOTM3RDYxNUNDNEY5QUUwMi9NWmRBTE1IVUJ2 bHdmUzRpQkRZN3dORThBcGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDTjJ6BT7BSi+Fe5ovTv77ERzp3PbnCkAMerSRQHqwPkd88hYOcybKR Fn2y51ruJxsHLpknyf+BkEegIqtIWQSsGsBOrcRq3QBlMPqerW7dwAZVGgKt0ICZ YKO9biqJNoLqUjxX1UYMp7Dkyc1rf9P0let7Hp2o216TZC67rOIxXvdIBnuB5Ofn 4X7nnXElpMwMJd2bxXaWzTWv26mjjsCWei338ogacCe0pZWTYpFCHWblBj0/4nBG /N9qLmV/8ZO1QNoncSRbBDSTElZhvS9bkUa46NyW/GN6/HZ9UY9JqzJSMKiHsQax mA1GIJjIYP1UyKEqofr8XGdW8ZQAPamg -----END CERTIFICATE-----Generated at Wed Nov 5 21:15:58 2025 by rpki-client