$ rpki-client -vvf rpki.apnic.net/member_repository/A91116E6/D7D3623831F611EF92AD8D10C4F9AE02/MkzIe8yExoFRzDczpQjHilxbSYo.mft File: MkzIe8yExoFRzDczpQjHilxbSYo.mft (raw, json) Hash identifier: YLZhCkJJ3XPUMx4Oyx/6lthf83+UYM9Z1UlEUMMNd60= Subject key identifier: 72:15:DC:12:52:F5:59:A8:BA:45:22:70:28:1A:D5:58:86:98:7A:D7 Authority key identifier: 32:4C:C8:7B:CC:84:C6:81:51:CC:37:33:A5:08:C7:8A:5C:5B:49:8A Certificate issuer: /CN=A91116E6/serialNumber=324CC87BCC84C68151CC3733A508C78A5C5B498A Certificate serial: 0104 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MkzIe8yExoFRzDczpQjHilxbSYo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91116E6/D7D3623831F611EF92AD8D10C4F9AE02/MkzIe8yExoFRzDczpQjHilxbSYo.mft Manifest number: 0101 Signing time: Mon 03 Nov 2025 05:04:31 +0000 Manifest this update: Mon 03 Nov 2025 05:04:31 +0000 Manifest next update: Mon 10 Nov 2025 05:04:31 +0000 Files and hashes: 1: MkzIe8yExoFRzDczpQjHilxbSYo.crl (hash: UZQoP+RmI7Pvq44hHIQYQ0FK0Iaa0wbbwYuKv+FLuI8=) 2: 9CE0AEFA31F711EFA9A9A54AC4F9AE02.roa (hash: jZ8rK9Cjwbx5cGtSyivoYRd59H87vJYDWLCVXZK0EWU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91116E6/D7D3623831F611EF92AD8D10C4F9AE02/MkzIe8yExoFRzDczpQjHilxbSYo.crl rsync://rpki.apnic.net/member_repository/A91116E6/D7D3623831F611EF92AD8D10C4F9AE02/MkzIe8yExoFRzDczpQjHilxbSYo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MkzIe8yExoFRzDczpQjHilxbSYo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 05:04:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 260 (0x104) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91116E6, serialNumber=324CC87BCC84C68151CC3733A508C78A5C5B498A Validity Not Before: Nov 3 05:04:31 2025 GMT Not After : Nov 10 05:04:31 2025 GMT Subject: CN=690837df-09db Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:4f:61:a8:0e:e1:66:dc:eb:b8:38:8b:14:ce: be:54:a7:66:50:07:6f:73:33:e6:d6:ed:23:9c:6f: 2e:fa:d7:cf:45:c7:ba:e6:9d:e7:4b:6d:f5:d4:7f: 41:e0:eb:e0:c4:10:60:d6:3a:45:d6:7f:84:8b:bf: 23:ae:3d:69:2d:c3:49:36:57:4c:d8:83:b0:07:d9: f9:61:0a:2e:f1:0c:54:03:cc:2f:18:e3:ea:a7:e2: 0d:2d:a3:79:ea:7b:18:30:9b:bd:5b:e5:a7:fa:17: ad:b7:82:d1:63:23:83:47:0d:7f:b1:18:fb:a0:2e: b4:77:4f:81:72:6d:2c:47:be:e5:92:ce:a5:5f:e2: 00:fc:43:52:5d:6a:e4:76:9e:37:e1:04:30:37:36: f9:c6:1a:5e:22:a5:92:8a:33:fe:af:75:8d:77:1e: f5:ae:e0:f3:0f:86:ee:81:e9:15:a0:11:cf:b8:91: 54:30:02:1e:a9:0c:e2:4b:73:0e:dd:b6:12:d6:60: 7d:b7:55:56:a6:4b:f3:66:b2:8c:77:9b:18:5b:08: cd:7a:56:bf:66:60:26:d8:01:d0:e1:59:a2:67:be: 4a:e1:ac:85:b5:5d:51:d7:15:82:b6:9c:21:aa:a8: 09:33:5a:7d:87:46:44:df:e5:bc:9d:4b:7a:e7:be: 3c:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:15:DC:12:52:F5:59:A8:BA:45:22:70:28:1A:D5:58:86:98:7A:D7 X509v3 Authority Key Identifier: keyid:32:4C:C8:7B:CC:84:C6:81:51:CC:37:33:A5:08:C7:8A:5C:5B:49:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91116E6/D7D3623831F611EF92AD8D10C4F9AE02/MkzIe8yExoFRzDczpQjHilxbSYo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MkzIe8yExoFRzDczpQjHilxbSYo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91116E6/D7D3623831F611EF92AD8D10C4F9AE02/MkzIe8yExoFRzDczpQjHilxbSYo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 03:ad:a5:d3:72:44:50:17:ed:d3:cf:db:18:d0:e1:26:79:9d: fe:d0:8e:ae:eb:d1:aa:89:dd:3d:7a:fb:b7:1f:4f:d1:ba:5c: ed:16:5d:22:62:49:8d:10:6f:8f:79:4f:cc:55:a3:d4:d3:5e: 13:d4:d3:0c:d2:8f:3c:5f:62:06:b2:26:ed:2f:e8:13:d4:a2: f8:d4:86:7d:7d:1c:1f:12:17:2c:19:19:2e:7a:7e:a8:0d:6f: ab:1a:1b:71:e9:7b:77:f2:69:90:5d:32:34:fb:23:06:38:bb: 16:01:6c:29:d6:9f:2a:94:05:9c:66:5c:f4:b7:c8:c8:ac:f9: 5a:30:9c:0a:24:64:d4:65:6f:ff:84:c4:1f:04:e5:06:79:46: 85:2d:d3:aa:52:40:7e:5c:cf:32:c7:67:64:18:39:45:fd:b5: 3b:87:5b:5e:8a:34:d1:8f:41:b8:e4:3d:d8:f5:0c:9a:8f:e4: c5:26:1c:05:6a:32:66:3e:7c:29:8d:ae:50:9f:b1:7d:21:ac: 19:cd:f8:fc:7e:2d:6d:c6:48:28:d0:5f:d6:36:33:73:5f:88: b7:cd:64:c6:59:87:f4:4b:62:cb:e9:e1:6d:4a:a7:6e:1b:2b: 68:15:68:ea:29:ff:6d:98:7e:30:1a:33:61:8c:9a:aa:bb:a7: f3:29:42:ea -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTE2RTYxMTAvBgNVBAUTKDMyNENDODdCQ0M4NEM2ODE1MUNDMzczM0E1MDhDNzhB NUM1QjQ5OEEwHhcNMjUxMTAzMDUwNDMxWhcNMjUxMTEwMDUwNDMxWjAYMRYwFAYD VQQDEw02OTA4MzdkZi0wOWRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuU9hqA7hZtzruDiLFM6+VKdmUAdvczPm1u0jnG8u+tfPRce65p3nS2311H9B 4OvgxBBg1jpF1n+Ei78jrj1pLcNJNldM2IOwB9n5YQou8QxUA8wvGOPqp+INLaN5 6nsYMJu9W+Wn+hett4LRYyODRw1/sRj7oC60d0+Bcm0sR77lks6lX+IA/ENSXWrk dp434QQwNzb5xhpeIqWSijP+r3WNdx71ruDzD4bugekVoBHPuJFUMAIeqQziS3MO 3bYS1mB9t1VWpkvzZrKMd5sYWwjNela/ZmAm2AHQ4VmiZ75K4ayFtV1R1xWCtpwh qqgJM1p9h0ZE3+W8nUt65748DQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHIV3BJS 9VmoukUicCga1ViGmHrXMB8GA1UdIwQYMBaAFDJMyHvMhMaBUcw3M6UIx4pcW0mK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMTZFNi9EN0QzNjIzODMx RjYxMUVGOTJBRDhEMTBDNEY5QUUwMi9Na3pJZTh5RXhvRlJ6RGN6cFFqSGlseGJT WW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01rekllOHlFeG9GUnpEY3pwUWpIaWx4YlNZby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MTZFNi9EN0QzNjIzODMxRjYxMUVGOTJBRDhEMTBDNEY5QUUwMi9Na3pJZTh5RXhv RlJ6RGN6cFFqSGlseGJTWW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQADraXTckRQF+3Tz9sY0OEmeZ3+0I6u69Gqid09evu3H0/RulztFl0i YkmNEG+PeU/MVaPU014T1NMM0o88X2IGsibtL+gT1KL41IZ9fRwfEhcsGRkuen6o DW+rGhtx6Xt38mmQXTI0+yMGOLsWAWwp1p8qlAWcZlz0t8jIrPlaMJwKJGTUZW// hMQfBOUGeUaFLdOqUkB+XM8yx2dkGDlF/bU7h1teijTRj0G45D3Y9Qyaj+TFJhwF ajJmPnwpja5Qn7F9IawZzfj8fi1txkgo0F/WNjNzX4i3zWTGWYf0S2LL6eFtSqdu GytoFWjqKf9tmH4wGjNhjJqqu6fzKULq -----END CERTIFICATE-----Generated at Wed Nov 5 05:25:24 2025 by rpki-client