$ rpki-client -vvf rpki.apnic.net/member_repository/A91410C5/DB0AE436572E11F095F7FE48C4F9AE02/ZGfpJsIUTs0PJ0j4STKPhfAorpQ.mft File: ZGfpJsIUTs0PJ0j4STKPhfAorpQ.mft (raw, json) Hash identifier: lbiYrJHttYnQ0VuRjdE3mt2mldrPfAgtkREtIGMs70Q= Subject key identifier: 31:C8:4B:B7:CA:AB:EE:03:08:39:DC:0C:7F:DA:94:19:81:31:C8:9B Authority key identifier: 64:67:E9:26:C2:14:4E:CD:0F:27:48:F8:49:32:8F:85:F0:28:AE:94 Certificate issuer: /CN=A91410C5/serialNumber=6467E926C2144ECD0F2748F849328F85F028AE94 Certificate serial: 42 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZGfpJsIUTs0PJ0j4STKPhfAorpQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91410C5/DB0AE436572E11F095F7FE48C4F9AE02/ZGfpJsIUTs0PJ0j4STKPhfAorpQ.mft Manifest number: 42 Signing time: Wed 05 Nov 2025 07:36:50 +0000 Manifest this update: Wed 05 Nov 2025 07:36:50 +0000 Manifest next update: Wed 12 Nov 2025 07:36:50 +0000 Files and hashes: 1: ZGfpJsIUTs0PJ0j4STKPhfAorpQ.crl (hash: P1T/pYgJzBY02Lhf8OKQJF3eyJHs1d4DQDnHpss2RZ0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91410C5/DB0AE436572E11F095F7FE48C4F9AE02/ZGfpJsIUTs0PJ0j4STKPhfAorpQ.crl rsync://rpki.apnic.net/member_repository/A91410C5/DB0AE436572E11F095F7FE48C4F9AE02/ZGfpJsIUTs0PJ0j4STKPhfAorpQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZGfpJsIUTs0PJ0j4STKPhfAorpQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 07:36:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66 (0x42) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91410C5, serialNumber=6467E926C2144ECD0F2748F849328F85F028AE94 Validity Not Before: Nov 5 07:36:50 2025 GMT Not After : Nov 12 07:36:50 2025 GMT Subject: CN=690afe92-edfb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:02:45:53:09:c7:b2:98:a5:39:08:21:5d:bb: 07:81:84:8e:ec:23:ce:47:5e:8c:0b:d6:85:48:6c: 46:13:07:eb:b7:4e:b7:5e:03:8c:a0:ed:9c:b0:c7: f8:da:45:4e:79:9a:ef:2a:ef:fe:b4:f9:e7:64:5e: 48:58:13:2c:1c:ab:e2:24:b4:bc:ba:9e:1f:cd:b8: cf:e8:4a:1e:ff:f0:dd:a0:3d:11:28:73:4d:ec:67: 79:29:1b:87:77:73:0f:1e:67:4a:66:5a:90:54:5c: 5f:d9:27:18:7c:81:5c:e5:58:66:40:d6:72:92:c3: c5:bd:67:de:04:01:96:5d:9c:ab:2c:7d:33:6c:af: 55:c3:24:2c:f3:f6:b8:42:b8:20:b2:12:86:16:6e: 24:1f:1d:75:6c:db:55:e1:41:8c:1d:9e:07:bf:18: 75:4e:18:71:12:3a:8c:6d:c8:c3:bb:42:8b:5d:f6: 42:85:29:4a:a9:c1:f8:8c:e8:70:45:91:d0:ad:ac: a1:e4:9d:51:e8:a8:f7:63:23:cc:e9:12:49:0c:65: db:94:4a:c6:bb:c5:42:bf:04:1f:43:9d:23:c4:ad: c8:86:d4:99:14:ca:82:d5:26:43:ca:dd:c0:17:47: a7:38:e0:5a:00:64:70:b5:88:61:84:36:1d:d4:d7: d9:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:C8:4B:B7:CA:AB:EE:03:08:39:DC:0C:7F:DA:94:19:81:31:C8:9B X509v3 Authority Key Identifier: keyid:64:67:E9:26:C2:14:4E:CD:0F:27:48:F8:49:32:8F:85:F0:28:AE:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91410C5/DB0AE436572E11F095F7FE48C4F9AE02/ZGfpJsIUTs0PJ0j4STKPhfAorpQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZGfpJsIUTs0PJ0j4STKPhfAorpQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91410C5/DB0AE436572E11F095F7FE48C4F9AE02/ZGfpJsIUTs0PJ0j4STKPhfAorpQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8d:60:26:c7:d9:92:27:65:f8:57:91:f1:74:3e:58:44:99:d3: f1:23:7c:cf:77:27:0f:ae:b8:8f:2c:e2:56:a3:f1:27:a6:5c: 90:9e:1d:81:f1:c5:ad:a4:ff:ba:51:b6:2a:d5:31:3b:20:b0: c9:db:e2:de:35:44:00:c9:bb:66:2e:ad:19:b0:7e:a2:3e:3c: 1c:57:cd:c2:b9:a2:bb:49:b2:54:72:3d:68:45:18:95:c8:4b: 0a:9c:cb:ec:9d:62:78:fe:7b:99:5b:18:05:63:cf:46:b8:4e: 75:92:33:18:da:ab:7e:ea:af:5e:89:c9:67:9c:a3:20:52:88: 0c:63:ff:77:9f:f7:68:77:8b:bd:4f:51:c3:12:f3:77:88:37: c3:02:ef:52:ed:43:fe:d1:65:72:ca:ba:88:c6:e9:a9:53:fd: b5:3f:16:df:86:db:bf:28:1c:93:55:7e:29:23:81:06:02:a3: 74:d7:4a:53:a5:e9:7f:79:d0:5d:1e:04:c5:b4:13:2a:2f:1c: c5:12:9e:a2:f6:bd:74:25:6c:6d:cf:b5:c4:52:81:f1:07:6f: 41:b4:2d:11:8d:bd:90:78:9e:c0:c4:de:20:67:f9:87:a6:8d: b6:18:b5:5f:af:b8:6b:2e:69:57:09:0c:2e:ab:c3:20:b8:83: f1:44:0e:99 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBQjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 MTBDNTExMC8GA1UEBRMoNjQ2N0U5MjZDMjE0NEVDRDBGMjc0OEY4NDkzMjhGODVG MDI4QUU5NDAeFw0yNTExMDUwNzM2NTBaFw0yNTExMTIwNzM2NTBaMBgxFjAUBgNV BAMTDTY5MGFmZTkyLWVkZmIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCyAkVTCceymKU5CCFduweBhI7sI85HXowL1oVIbEYTB+u3TrdeA4yg7Zywx/ja RU55mu8q7/60+edkXkhYEywcq+IktLy6nh/NuM/oSh7/8N2gPREoc03sZ3kpG4d3 cw8eZ0pmWpBUXF/ZJxh8gVzlWGZA1nKSw8W9Z94EAZZdnKssfTNsr1XDJCzz9rhC uCCyEoYWbiQfHXVs21XhQYwdnge/GHVOGHESOoxtyMO7Qotd9kKFKUqpwfiM6HBF kdCtrKHknVHoqPdjI8zpEkkMZduUSsa7xUK/BB9DnSPErciG1JkUyoLVJkPK3cAX R6c44FoAZHC1iGGENh3U19l3AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUMchLt8qr 7gMIOdwMf9qUGYExyJswHwYDVR0jBBgwFoAUZGfpJsIUTs0PJ0j4STKPhfAorpQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQxMEM1L0RCMEFFNDM2NTcy RTExRjA5NUY3RkU0OEM0RjlBRTAyL1pHZnBKc0lVVHMwUEowajRTVEtQaGZBb3Jw US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWkdmcEpzSVVUczBQSjBqNFNUS1BoZkFvcnBRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQx MEM1L0RCMEFFNDM2NTcyRTExRjA5NUY3RkU0OEM0RjlBRTAyL1pHZnBKc0lVVHMw UEowajRTVEtQaGZBb3JwUS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAI1gJsfZkidl+FeR8XQ+WESZ0/EjfM93Jw+uuI8s4laj8SemXJCeHYHx xa2k/7pRtirVMTsgsMnb4t41RADJu2YurRmwfqI+PBxXzcK5ortJslRyPWhFGJXI Swqcy+ydYnj+e5lbGAVjz0a4TnWSMxjaq37qr16JyWecoyBSiAxj/3ef92h3i71P UcMS83eIN8MC71LtQ/7RZXLKuojG6alT/bU/Ft+G278oHJNVfikjgQYCo3TXSlOl 6X950F0eBMW0EyovHMUSnqL2vXQlbG3PtcRSgfEHb0G0LRGNvZB4nsDE3iBn+Yem jbYYtV+vuGsuaVcJDC6rwyC4g/FEDpk= -----END CERTIFICATE-----Generated at Wed Nov 5 13:26:09 2025 by rpki-client