$ rpki-client -vvf rpki.apnic.net/member_repository/A91752F4/80164F4EF8BC11E2AD91813B5911EA32/Z-1VajxcS_wnyhWKWXdWTDIHzso.mft File: Z-1VajxcS_wnyhWKWXdWTDIHzso.mft (raw, json) Hash identifier: rLeVo1aUTktjYfFXALi+EatYd21kfaD3SJFW3c8Z0aQ= Subject key identifier: 38:2F:76:05:B9:91:87:2A:3E:FE:63:BB:E0:7D:0B:5B:0D:09:E7:E7 Authority key identifier: 67:ED:55:6A:3C:5C:4B:FC:27:CA:15:8A:59:77:56:4C:32:07:CE:CA Certificate issuer: /CN=A91752F4/serialNumber=67ED556A3C5C4BFC27CA158A5977564C3207CECA Certificate serial: 3093 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Z-1VajxcS_wnyhWKWXdWTDIHzso.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91752F4/80164F4EF8BC11E2AD91813B5911EA32/Z-1VajxcS_wnyhWKWXdWTDIHzso.mft Manifest number: 3084 Signing time: Tue 04 Nov 2025 15:28:26 +0000 Manifest this update: Tue 04 Nov 2025 15:28:26 +0000 Manifest next update: Tue 11 Nov 2025 15:28:26 +0000 Files and hashes: 1: Z-1VajxcS_wnyhWKWXdWTDIHzso.crl (hash: 5RXesPQBMj62Z2VLavtHtBL0PgPJMPlzj/xkVKAPAPk=) 2: 22E2E3C24E2911EF8BEE8E10C4F9AE02.roa (hash: hQKUzdzJskNaUaPGl2kmEUdrCcgwSNhHBQ7D6gtHv6A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91752F4/80164F4EF8BC11E2AD91813B5911EA32/Z-1VajxcS_wnyhWKWXdWTDIHzso.crl rsync://rpki.apnic.net/member_repository/A91752F4/80164F4EF8BC11E2AD91813B5911EA32/Z-1VajxcS_wnyhWKWXdWTDIHzso.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Z-1VajxcS_wnyhWKWXdWTDIHzso.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 15:28:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12435 (0x3093) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91752F4, serialNumber=67ED556A3C5C4BFC27CA158A5977564C3207CECA Validity Not Before: Nov 4 15:28:26 2025 GMT Not After : Nov 11 15:28:26 2025 GMT Subject: CN=690a1b9a-66e4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:f5:ad:8c:ee:bc:5b:8d:ca:1d:6c:20:58:a4: de:47:e2:08:5f:06:8d:ba:0f:90:07:86:f6:dc:1b: f1:29:82:15:27:a1:7a:ef:2b:10:ee:3c:5f:8d:25: 3f:18:96:66:9c:ef:17:05:64:51:36:21:05:78:ba: 70:cb:ce:6c:96:52:32:82:79:81:2e:84:e7:67:fe: 98:e4:cb:fe:a1:7b:f6:f6:1d:dd:32:90:b9:05:d3: b7:da:12:7d:10:02:54:8d:4e:25:d0:46:6e:9d:8a: 87:a6:f5:66:98:76:14:23:a7:46:01:2c:7d:46:69: 9a:5e:61:85:ae:5c:3c:af:fc:f3:d6:3e:05:22:3b: 7b:e5:ca:3c:6c:f5:d0:be:2d:29:1a:6f:c1:55:05: f7:b9:54:c4:6d:16:40:32:8d:c1:d9:87:98:73:df: 48:2f:ef:67:bb:3f:71:3a:65:5a:73:18:12:d2:7f: 29:f9:c2:2c:eb:41:bf:d1:2d:6c:a4:b6:d1:42:60: 7d:57:01:c2:37:09:73:51:41:e0:72:ab:87:b1:7e: 72:43:a1:cc:82:6f:24:92:03:c3:dc:04:4d:3d:85: 55:eb:b0:77:cf:76:7f:16:db:c3:eb:e3:d8:c2:6a: 05:e5:9b:71:6b:35:5c:ac:4d:5c:69:ac:68:2c:89: cd:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:2F:76:05:B9:91:87:2A:3E:FE:63:BB:E0:7D:0B:5B:0D:09:E7:E7 X509v3 Authority Key Identifier: keyid:67:ED:55:6A:3C:5C:4B:FC:27:CA:15:8A:59:77:56:4C:32:07:CE:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91752F4/80164F4EF8BC11E2AD91813B5911EA32/Z-1VajxcS_wnyhWKWXdWTDIHzso.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Z-1VajxcS_wnyhWKWXdWTDIHzso.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91752F4/80164F4EF8BC11E2AD91813B5911EA32/Z-1VajxcS_wnyhWKWXdWTDIHzso.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cd:60:49:a0:01:77:51:53:4a:c8:3a:ed:ce:d6:ef:a5:5c:4a: d7:df:97:f8:b2:4d:d1:30:1f:96:58:30:29:a1:7d:15:24:91: f0:13:13:76:e9:80:25:0c:54:10:9e:13:7f:16:95:39:af:3d: aa:c1:5c:2f:46:36:a2:f0:c8:5a:84:86:ee:a9:e9:e5:64:de: 1f:cf:80:1e:1c:3f:c4:3c:8c:09:2d:02:cf:81:16:3f:83:ad: 34:8f:d0:cc:9b:af:e5:4b:eb:09:55:9d:94:31:12:b4:61:e5: 6d:74:bf:99:87:ff:af:3c:d3:1d:c7:82:de:1f:0d:44:11:04: f5:17:bd:b6:15:45:48:e8:54:2b:f8:ab:3e:cf:08:a0:b8:5d: 61:68:2a:30:37:4c:f5:82:32:86:db:63:47:fc:72:14:05:86: 9d:d8:c1:27:96:d9:f7:6d:89:b9:98:82:ce:61:69:89:77:31: d4:dc:eb:92:45:b9:63:f3:b1:b2:0a:0e:1b:b1:d6:7f:c7:6e: a9:60:0d:6d:a8:bb:8d:20:4f:98:3f:c3:86:ad:ff:76:6d:96: 6d:f3:ed:f6:e8:42:4c:86:5f:69:60:be:5b:c4:16:2d:d8:79: fc:1f:a9:26:11:05:23:90:38:c9:58:25:68:f8:6b:a1:5e:53: ab:a6:d5:39 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICMJMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzUyRjQxMTAvBgNVBAUTKDY3RUQ1NTZBM0M1QzRCRkMyN0NBMTU4QTU5Nzc1NjRD MzIwN0NFQ0EwHhcNMjUxMTA0MTUyODI2WhcNMjUxMTExMTUyODI2WjAYMRYwFAYD VQQDEw02OTBhMWI5YS02NmU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyPWtjO68W43KHWwgWKTeR+IIXwaNug+QB4b23BvxKYIVJ6F67ysQ7jxfjSU/ GJZmnO8XBWRRNiEFeLpwy85sllIygnmBLoTnZ/6Y5Mv+oXv29h3dMpC5BdO32hJ9 EAJUjU4l0EZunYqHpvVmmHYUI6dGASx9RmmaXmGFrlw8r/zz1j4FIjt75co8bPXQ vi0pGm/BVQX3uVTEbRZAMo3B2YeYc99IL+9nuz9xOmVacxgS0n8p+cIs60G/0S1s pLbRQmB9VwHCNwlzUUHgcquHsX5yQ6HMgm8kkgPD3ARNPYVV67B3z3Z/FtvD6+PY wmoF5ZtxazVcrE1caaxoLInNHwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDgvdgW5 kYcqPv5ju+B9C1sNCefnMB8GA1UdIwQYMBaAFGftVWo8XEv8J8oVill3VkwyB87K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NTJGNC84MDE2NEY0RUY4 QkMxMUUyQUQ5MTgxM0I1OTExRUEzMi9aLTFWYWp4Y1Nfd255aFdLV1hkV1RESUh6 c28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1otMVZhanhjU193bnloV0tXWGRXVERJSHpzby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NTJGNC84MDE2NEY0RUY4QkMxMUUyQUQ5MTgxM0I1OTExRUEzMi9aLTFWYWp4Y1Nf d255aFdLV1hkV1RESUh6c28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDNYEmgAXdRU0rIOu3O1u+lXErX35f4sk3RMB+WWDApoX0VJJHwExN2 6YAlDFQQnhN/FpU5rz2qwVwvRjai8MhahIbuqenlZN4fz4AeHD/EPIwJLQLPgRY/ g600j9DMm6/lS+sJVZ2UMRK0YeVtdL+Zh/+vPNMdx4LeHw1EEQT1F722FUVI6FQr +Ks+zwiguF1haCowN0z1gjKG22NH/HIUBYad2MEnltn3bYm5mILOYWmJdzHU3OuS Rblj87GyCg4bsdZ/x26pYA1tqLuNIE+YP8OGrf92bZZt8+326EJMhl9pYL5bxBYt 2Hn8H6kmEQUjkDjJWCVo+GuhXlOrptU5 -----END CERTIFICATE-----Generated at Wed Nov 5 05:26:15 2025 by rpki-client