$ rpki-client -vvf rpki.apnic.net/member_repository/A91FCEB1/9C14B4063A2111E79AA0D51CC4F9AE02/5z-4ho3TtGHqGmc8ejaUUjXpyq4.mft File: 5z-4ho3TtGHqGmc8ejaUUjXpyq4.mft (raw, json) Hash identifier: P1QIqvwZv/GoYygF2Kt1EjuKfvulBia02n19PYvELsI= Subject key identifier: EA:FB:32:16:6C:74:17:B3:65:6F:EB:A5:57:68:B8:59:76:BA:58:02 Authority key identifier: E7:3F:B8:86:8D:D3:B4:61:EA:1A:67:3C:7A:36:94:52:35:E9:CA:AE Certificate issuer: /CN=A91FCEB1/serialNumber=E73FB8868DD3B461EA1A673C7A36945235E9CAAE Certificate serial: 0754 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5z-4ho3TtGHqGmc8ejaUUjXpyq4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FCEB1/9C14B4063A2111E79AA0D51CC4F9AE02/5z-4ho3TtGHqGmc8ejaUUjXpyq4.mft Manifest number: 2219 Signing time: Tue 04 Nov 2025 16:02:59 +0000 Manifest this update: Tue 04 Nov 2025 16:02:58 +0000 Manifest next update: Tue 11 Nov 2025 16:02:58 +0000 Files and hashes: 1: 5z-4ho3TtGHqGmc8ejaUUjXpyq4.crl (hash: xLKhL4VU9Vr57Q+O8MFTZrfqAKlqb7F159I6WObm5Xs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FCEB1/9C14B4063A2111E79AA0D51CC4F9AE02/5z-4ho3TtGHqGmc8ejaUUjXpyq4.crl rsync://rpki.apnic.net/member_repository/A91FCEB1/9C14B4063A2111E79AA0D51CC4F9AE02/5z-4ho3TtGHqGmc8ejaUUjXpyq4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5z-4ho3TtGHqGmc8ejaUUjXpyq4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 16:02:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1876 (0x754) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FCEB1, serialNumber=E73FB8868DD3B461EA1A673C7A36945235E9CAAE Validity Not Before: Nov 4 16:02:58 2025 GMT Not After : Nov 11 16:02:58 2025 GMT Subject: CN=690a23b2-dffc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:0c:97:16:33:5e:29:34:2b:3e:e4:57:03:44: 68:46:38:ee:1a:cf:92:47:0d:e6:a9:43:3e:cf:f8: bd:79:30:b9:11:78:96:e3:55:ac:bf:63:d1:3c:5d: 94:71:65:9c:50:8a:b0:b5:07:32:40:67:d4:14:b5: fd:8e:82:ac:16:81:c6:44:6b:28:71:bb:2e:5b:04: a8:0c:88:f1:b5:43:c8:99:95:28:66:65:1b:af:6c: 89:62:ac:79:b8:82:83:54:d4:21:21:9c:76:9c:3a: 5c:07:06:3b:65:98:41:51:f9:21:cf:ed:37:1c:4a: 3a:9e:e6:ff:e0:4a:6f:be:5b:bc:3c:56:a0:00:45: 36:dd:92:0e:54:55:15:04:dd:b6:5d:30:5e:bd:5e: b5:d4:62:c9:a5:79:73:be:52:1b:cf:27:a0:c4:50: 96:19:4d:5e:c2:d2:2a:84:60:70:39:ea:a3:bf:6e: 73:56:8b:e1:c8:a9:d5:be:26:fa:54:f9:29:98:ee: 1e:4e:04:3e:94:94:db:9f:8e:7f:00:44:e5:16:8f: 1b:9d:ef:bb:50:6e:7e:a5:82:dc:06:c7:14:93:e1: 65:36:fe:65:76:7b:32:11:48:06:1e:4a:ac:26:57: a7:1c:8b:96:b3:db:a8:61:82:01:2c:0e:35:58:f2: 2c:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:FB:32:16:6C:74:17:B3:65:6F:EB:A5:57:68:B8:59:76:BA:58:02 X509v3 Authority Key Identifier: keyid:E7:3F:B8:86:8D:D3:B4:61:EA:1A:67:3C:7A:36:94:52:35:E9:CA:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FCEB1/9C14B4063A2111E79AA0D51CC4F9AE02/5z-4ho3TtGHqGmc8ejaUUjXpyq4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5z-4ho3TtGHqGmc8ejaUUjXpyq4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FCEB1/9C14B4063A2111E79AA0D51CC4F9AE02/5z-4ho3TtGHqGmc8ejaUUjXpyq4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 01:ac:ad:70:38:b0:df:83:0e:b8:53:de:ea:33:6b:92:d6:e1: c6:ab:69:88:46:d2:13:14:49:4d:5d:5b:6a:b2:50:2a:2f:af: 46:33:e3:46:c1:38:7b:36:88:a4:a9:d7:4a:ca:2a:58:2d:0e: 87:e7:94:a7:4e:85:a6:79:5e:7d:f5:71:02:1d:5a:a6:80:ec: 18:24:63:bd:c2:5e:3f:73:48:7d:cd:b2:cf:97:00:a0:d2:7c: 6b:b8:0b:60:75:b0:0d:3b:d7:19:47:e0:13:13:a2:15:cc:41: a2:c3:33:27:93:10:f7:8f:56:da:47:fd:49:9b:71:4c:80:6a: b8:bc:d5:d0:e3:f3:f1:20:00:ce:3b:e3:ad:b9:de:42:6c:c1: c4:c2:76:d0:65:92:db:1d:9c:1a:f2:c5:af:7d:ff:04:ca:1f: 08:92:a9:9b:99:c8:3c:4a:73:19:b4:86:10:99:98:69:31:a1: a7:a9:ca:93:b5:d4:2f:0c:63:f6:a4:d9:d2:40:a4:01:a5:8d: 0b:d4:0e:9d:2d:a0:91:3c:c9:a7:28:83:61:38:f5:a8:26:ad: 2c:cc:2d:85:58:5f:04:7f:ba:f8:26:dd:e6:46:25:79:7c:3d: 09:cd:0c:25:fa:7e:00:fe:48:80:5d:26:1a:d9:61:48:41:6a: dc:29:58:a1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB1QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkNFQjExMTAvBgNVBAUTKEU3M0ZCODg2OEREM0I0NjFFQTFBNjczQzdBMzY5NDUy MzVFOUNBQUUwHhcNMjUxMTA0MTYwMjU4WhcNMjUxMTExMTYwMjU4WjAYMRYwFAYD VQQDEw02OTBhMjNiMi1kZmZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1AyXFjNeKTQrPuRXA0RoRjjuGs+SRw3mqUM+z/i9eTC5EXiW41Wsv2PRPF2U cWWcUIqwtQcyQGfUFLX9joKsFoHGRGsocbsuWwSoDIjxtUPImZUoZmUbr2yJYqx5 uIKDVNQhIZx2nDpcBwY7ZZhBUfkhz+03HEo6nub/4Epvvlu8PFagAEU23ZIOVFUV BN22XTBevV611GLJpXlzvlIbzyegxFCWGU1ewtIqhGBwOeqjv25zVovhyKnVvib6 VPkpmO4eTgQ+lJTbn45/AETlFo8bne+7UG5+pYLcBscUk+FlNv5ldnsyEUgGHkqs JlenHIuWs9uoYYIBLA41WPIsNQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOr7MhZs dBezZW/rpVdouFl2ulgCMB8GA1UdIwQYMBaAFOc/uIaN07Rh6hpnPHo2lFI16cqu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQ0VCMS85QzE0QjQwNjNB MjExMUU3OUFBMEQ1MUNDNEY5QUUwMi81ei00aG8zVHRHSHFHbWM4ZWphVVVqWHB5 cTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzV6LTRobzNUdEdIcUdtYzhlamFVVWpYcHlxNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG Q0VCMS85QzE0QjQwNjNBMjExMUU3OUFBMEQ1MUNDNEY5QUUwMi81ei00aG8zVHRH SHFHbWM4ZWphVVVqWHB5cTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQABrK1wOLDfgw64U97qM2uS1uHGq2mIRtITFElNXVtqslAqL69GM+NG wTh7NoikqddKyipYLQ6H55SnToWmeV599XECHVqmgOwYJGO9wl4/c0h9zbLPlwCg 0nxruAtgdbANO9cZR+ATE6IVzEGiwzMnkxD3j1baR/1Jm3FMgGq4vNXQ4/PxIADO O+Otud5CbMHEwnbQZZLbHZwa8sWvff8Eyh8Ikqmbmcg8SnMZtIYQmZhpMaGnqcqT tdQvDGP2pNnSQKQBpY0L1A6dLaCRPMmnKINhOPWoJq0szC2FWF8Ef7r4Jt3mRiV5 fD0JzQwl+n4A/kiAXSYa2WFIQWrcKVih -----END CERTIFICATE-----Generated at Wed Nov 5 11:56:41 2025 by rpki-client