$ rpki-client -vvf rpki.apnic.net/member_repository/A91408BE/A2C827EE410B11EAB6954A2CC4F9AE02/ZI5HI0RBcbar4W19wDDonAbwUNw.mft File: ZI5HI0RBcbar4W19wDDonAbwUNw.mft (raw, json) Hash identifier: JgKvLo1K9xJTLeAoAZZeDa2mci5PKOSRtdfjGpBZCEc= Subject key identifier: FE:16:C6:15:9C:DA:57:51:2F:82:C7:68:BD:FE:F3:5B:93:E9:45:7C Authority key identifier: 64:8E:47:23:44:41:71:B6:AB:E1:6D:7D:C0:30:E8:9C:06:F0:50:DC Certificate issuer: /CN=A91408BE/serialNumber=648E4723444171B6ABE16D7DC030E89C06F050DC Certificate serial: 0B62 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZI5HI0RBcbar4W19wDDonAbwUNw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91408BE/A2C827EE410B11EAB6954A2CC4F9AE02/ZI5HI0RBcbar4W19wDDonAbwUNw.mft Manifest number: 0B5C Signing time: Sun 02 Nov 2025 19:05:34 +0000 Manifest this update: Sun 02 Nov 2025 19:05:33 +0000 Manifest next update: Sun 09 Nov 2025 19:05:33 +0000 Files and hashes: 1: ZI5HI0RBcbar4W19wDDonAbwUNw.crl (hash: pyyhpcEJpQZ4r5qXh5dccMGckm9Rj+01DBk5is8rPJY=) 2: 5DCB0A0C410C11EA8A6C412DC4F9AE02.roa (hash: J/8oDeRELdGOcwKCSIyZI2ucZRyx8ILa8bbFd/o79oQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91408BE/A2C827EE410B11EAB6954A2CC4F9AE02/ZI5HI0RBcbar4W19wDDonAbwUNw.crl rsync://rpki.apnic.net/member_repository/A91408BE/A2C827EE410B11EAB6954A2CC4F9AE02/ZI5HI0RBcbar4W19wDDonAbwUNw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZI5HI0RBcbar4W19wDDonAbwUNw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 19:05:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2914 (0xb62) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91408BE, serialNumber=648E4723444171B6ABE16D7DC030E89C06F050DC Validity Not Before: Nov 2 19:05:33 2025 GMT Not After : Nov 9 19:05:33 2025 GMT Subject: CN=6907ab7d-c6a1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:53:68:5c:7e:a1:07:b9:f4:6b:7f:fc:8b:bb: 42:12:c9:21:1b:c0:99:a6:cd:2e:3b:d4:8b:f6:da: e0:fc:5e:85:ba:de:08:3c:bc:a6:fe:aa:38:8b:7d: 04:fd:c2:06:c7:bb:f7:15:53:a4:60:70:7e:2c:26: f5:9f:fa:82:90:17:58:50:02:ef:37:ac:87:92:8c: 41:df:81:b4:d6:8e:94:e4:57:d5:38:84:58:62:6b: 55:cd:b2:41:12:e1:b6:0f:a1:fa:2c:dd:df:85:d0: 72:c8:b6:9f:d3:81:1e:2a:ce:d1:c7:49:01:14:0c: e8:7d:61:b2:eb:ca:c4:49:3b:d1:24:87:39:36:67: 16:85:d0:4d:fc:45:5f:eb:43:85:5e:5f:fa:5c:07: 08:b6:1d:0c:8b:02:1c:34:55:15:c3:f9:3e:80:8d: 53:e0:23:64:4a:13:43:1b:dc:64:20:d3:f5:bc:85: 76:e4:36:3a:c5:61:a0:76:e2:9e:26:65:31:a4:e5: 9f:67:a1:71:9a:6c:c9:ab:e7:24:0e:4f:ec:39:54: 66:25:83:55:ac:6d:4f:3f:46:a5:9a:e4:63:55:a1: 33:a3:2b:3d:c4:39:88:d9:4d:ec:2f:30:a4:04:42: d8:85:27:f9:99:a3:bf:9a:70:4a:d5:f6:f0:06:0e: a3:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:16:C6:15:9C:DA:57:51:2F:82:C7:68:BD:FE:F3:5B:93:E9:45:7C X509v3 Authority Key Identifier: keyid:64:8E:47:23:44:41:71:B6:AB:E1:6D:7D:C0:30:E8:9C:06:F0:50:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91408BE/A2C827EE410B11EAB6954A2CC4F9AE02/ZI5HI0RBcbar4W19wDDonAbwUNw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZI5HI0RBcbar4W19wDDonAbwUNw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91408BE/A2C827EE410B11EAB6954A2CC4F9AE02/ZI5HI0RBcbar4W19wDDonAbwUNw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 93:26:ac:9b:14:65:6d:eb:54:60:3c:f8:b0:31:1f:9e:04:ec: 3c:c8:98:7a:c7:d1:52:4b:cb:b8:5a:1d:a3:60:aa:10:84:dc: 42:1c:77:c4:f9:66:91:a6:db:39:52:f7:cc:6c:b5:6c:b6:04: 57:53:5a:a1:0d:04:30:73:9e:9b:0a:dd:f5:c6:6d:ed:b9:b2: d9:0d:a8:6e:87:dd:11:76:36:09:fa:16:d2:e0:a3:ad:03:d7: 97:a7:83:07:56:cc:f3:07:f2:97:b0:0d:ab:7b:12:89:b2:60: 3c:2b:2c:cb:9e:b9:bb:27:d7:8b:39:1e:34:9f:01:c7:75:23: 7c:44:b4:40:af:57:2a:d0:55:5d:1f:1d:9c:7c:8e:0d:56:b8: 21:8b:06:81:6b:6b:3b:1e:ca:cb:d7:5d:de:5e:12:cb:b4:87: 5c:21:6c:1d:d9:24:75:85:78:c9:38:31:cf:97:43:56:a8:3d: cc:26:93:0d:71:ab:7f:5f:98:a3:45:72:1e:28:fe:73:f4:77: 20:1a:f2:33:f7:d9:57:45:89:50:a8:8c:ea:ba:fb:21:90:9d: 1f:b7:f1:71:85:cc:da:b9:07:30:8a:01:05:11:b8:9e:8d:46: 0f:10:1e:cd:ca:9f:9e:07:b7:4c:d5:d9:d2:ed:b0:d0:a5:55: f0:f6:be:0c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC2IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDA4QkUxMTAvBgNVBAUTKDY0OEU0NzIzNDQ0MTcxQjZBQkUxNkQ3REMwMzBFODlD MDZGMDUwREMwHhcNMjUxMTAyMTkwNTMzWhcNMjUxMTA5MTkwNTMzWjAYMRYwFAYD VQQDEw02OTA3YWI3ZC1jNmExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7VNoXH6hB7n0a3/8i7tCEskhG8CZps0uO9SL9trg/F6Fut4IPLym/qo4i30E /cIGx7v3FVOkYHB+LCb1n/qCkBdYUALvN6yHkoxB34G01o6U5FfVOIRYYmtVzbJB EuG2D6H6LN3fhdByyLaf04EeKs7Rx0kBFAzofWGy68rESTvRJIc5NmcWhdBN/EVf 60OFXl/6XAcIth0MiwIcNFUVw/k+gI1T4CNkShNDG9xkINP1vIV25DY6xWGgduKe JmUxpOWfZ6FxmmzJq+ckDk/sOVRmJYNVrG1PP0almuRjVaEzoys9xDmI2U3sLzCk BELYhSf5maO/mnBK1fbwBg6jSwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP4WxhWc 2ldRL4LHaL3+81uT6UV8MB8GA1UdIwQYMBaAFGSORyNEQXG2q+FtfcAw6JwG8FDc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MDhCRS9BMkM4MjdFRTQx MEIxMUVBQjY5NTRBMkNDNEY5QUUwMi9aSTVISTBSQmNiYXI0VzE5d0REb25BYndV TncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pJNUhJMFJCY2JhcjRXMTl3RERvbkFid1VOdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MDhCRS9BMkM4MjdFRTQxMEIxMUVBQjY5NTRBMkNDNEY5QUUwMi9aSTVISTBSQmNi YXI0VzE5d0REb25BYndVTncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCTJqybFGVt61RgPPiwMR+eBOw8yJh6x9FSS8u4Wh2jYKoQhNxCHHfE +WaRpts5UvfMbLVstgRXU1qhDQQwc56bCt31xm3tubLZDahuh90RdjYJ+hbS4KOt A9eXp4MHVszzB/KXsA2rexKJsmA8KyzLnrm7J9eLOR40nwHHdSN8RLRAr1cq0FVd Hx2cfI4NVrghiwaBa2s7HsrL113eXhLLtIdcIWwd2SR1hXjJODHPl0NWqD3MJpMN cat/X5ijRXIeKP5z9HcgGvIz99lXRYlQqIzquvshkJ0ft/FxhczauQcwigEFEbie jUYPEB7Nyp+eB7dM1dnS7bDQpVXw9r4M -----END CERTIFICATE-----Generated at Mon Nov 3 18:18:43 2025 by rpki-client