$ rpki-client -vvf rpki.apnic.net/member_repository/A91765CB/695515E0062811EEA714C263C4F9AE02/0Z0h9lpMk802wwczAhMPTmW38Ok.mft File: 0Z0h9lpMk802wwczAhMPTmW38Ok.mft (raw, json) Hash identifier: wzgFSNAeb5czCMSSZHjYEYlyW3v7fCl1Pphxwbut20E= Subject key identifier: 3B:5C:BF:4C:B0:FD:C8:2F:A4:9C:C1:16:21:AE:F6:97:15:0C:8D:42 Authority key identifier: D1:9D:21:F6:5A:4C:93:CD:36:C3:07:33:02:13:0F:4E:65:B7:F0:E9 Certificate issuer: /CN=A91765CB/serialNumber=D19D21F65A4C93CD36C3073302130F4E65B7F0E9 Certificate serial: 01CF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0Z0h9lpMk802wwczAhMPTmW38Ok.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91765CB/695515E0062811EEA714C263C4F9AE02/0Z0h9lpMk802wwczAhMPTmW38Ok.mft Manifest number: 01C5 Signing time: Thu 23 Oct 2025 04:37:14 +0000 Manifest this update: Thu 23 Oct 2025 04:37:13 +0000 Manifest next update: Thu 30 Oct 2025 04:37:13 +0000 Files and hashes: 1: 0Z0h9lpMk802wwczAhMPTmW38Ok.crl (hash: J+XVuzqAX59v6KS0LG+5XoDqjFINwBY2Mm7GDcIB4kg=) 2: 5CBE3872145C11F0BFD6B347C4F9AE02.roa (hash: /WHhFE8HR2/iD7xp6rQgZmxwAGaC9m5vwnf8mgyK/js=) 3: 4C30AA30B08411EFA29E6722C4F9AE02.roa (hash: DrYkymHZyiAQw1Bqzltyrk4HKF4mxO309GHL6Bkb9ho=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91765CB/695515E0062811EEA714C263C4F9AE02/0Z0h9lpMk802wwczAhMPTmW38Ok.crl rsync://rpki.apnic.net/member_repository/A91765CB/695515E0062811EEA714C263C4F9AE02/0Z0h9lpMk802wwczAhMPTmW38Ok.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0Z0h9lpMk802wwczAhMPTmW38Ok.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 30 Oct 2025 04:37:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 463 (0x1cf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91765CB, serialNumber=D19D21F65A4C93CD36C3073302130F4E65B7F0E9 Validity Not Before: Oct 23 04:37:13 2025 GMT Not After : Oct 30 04:37:13 2025 GMT Subject: CN=68f9b0fa-fa7b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:ab:3f:82:25:51:dc:a0:1c:c5:69:39:98:b6: 98:d2:c8:e0:c6:40:48:96:8e:90:17:29:b8:97:79: 59:bf:c3:e2:54:18:fb:3e:0d:d0:0b:03:cc:b9:72: f5:de:6d:9b:8f:a3:2e:02:ff:2e:5a:16:9a:a3:bf: 70:09:7c:ec:8a:82:44:af:4e:0e:ab:3f:88:22:b4: 60:a0:d7:6c:49:91:eb:19:48:b6:67:29:81:52:13: c2:11:8a:ad:fd:af:ad:1f:ad:30:c6:95:63:7e:d8: 1e:2b:69:bb:bd:cb:37:c1:0b:3b:e1:8e:fd:87:9e: 69:5a:e3:8c:82:dd:91:4d:d2:c2:9e:5e:27:ed:77: b5:8e:0a:cd:bc:ad:a3:f0:35:e9:f8:c1:c3:c3:a0: c6:36:6c:f0:85:78:25:da:1d:ee:6f:53:09:7e:ad: 23:92:da:ad:b7:ca:0c:61:43:10:54:da:ed:c3:35: de:08:4b:e0:2a:b8:7b:5a:93:d7:4c:68:ea:56:e9: e0:3f:83:7b:25:44:e7:1c:ff:59:bc:37:75:0f:8e: 1f:77:d9:f2:8c:ef:41:41:d1:08:c1:1e:3c:04:d1: be:04:8e:c1:5d:8f:34:bd:42:d6:59:09:98:9b:99: 54:a8:67:0c:c2:a3:55:94:be:a2:89:2a:0a:a2:af: d1:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:5C:BF:4C:B0:FD:C8:2F:A4:9C:C1:16:21:AE:F6:97:15:0C:8D:42 X509v3 Authority Key Identifier: keyid:D1:9D:21:F6:5A:4C:93:CD:36:C3:07:33:02:13:0F:4E:65:B7:F0:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91765CB/695515E0062811EEA714C263C4F9AE02/0Z0h9lpMk802wwczAhMPTmW38Ok.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0Z0h9lpMk802wwczAhMPTmW38Ok.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91765CB/695515E0062811EEA714C263C4F9AE02/0Z0h9lpMk802wwczAhMPTmW38Ok.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 53:0c:c4:0c:f6:a8:9f:a4:18:9d:a7:e9:95:b6:da:ab:73:3a: 94:ab:03:c4:8c:25:79:a5:ab:a1:46:53:5d:2e:04:83:ee:ba: 1a:22:3c:af:83:85:83:73:21:b7:19:7a:46:6d:d4:d7:27:a6: b8:35:e2:1d:f6:cd:4f:f0:78:41:f0:a5:bc:ee:7f:5e:1f:e7: 04:d0:81:e3:4e:a9:88:7b:4f:0b:e0:6a:67:9b:23:f3:72:09: ae:ef:c2:d9:b3:a4:4e:ce:48:e5:1f:0d:df:36:a9:9d:23:96: b5:5b:b2:bd:2c:cf:30:21:bd:ac:ae:d4:15:d6:42:66:96:9d: 95:bf:a3:75:bc:b2:f7:4a:79:5f:c1:cf:0e:be:fc:a2:4b:22: 66:b5:50:aa:f9:e6:cd:cf:58:93:19:88:49:bd:31:04:67:97: 78:ff:8f:a7:e4:63:78:1b:3f:8c:38:6e:a4:31:e6:42:a5:da: 4f:73:84:29:3b:37:c5:6a:1e:47:68:25:b7:ab:ff:fb:2e:ff: 05:b3:36:8d:10:86:0b:37:57:85:24:2a:14:00:5c:71:1c:6c: e9:9b:1d:9b:3f:09:0e:31:3b:f1:d8:92:92:15:54:46:0d:d3: b2:56:ed:f8:fc:e2:4d:01:75:d9:dc:e0:4f:33:d8:bd:64:04: 69:82:e8:51 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAc8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzY1Q0IxMTAvBgNVBAUTKEQxOUQyMUY2NUE0QzkzQ0QzNkMzMDczMzAyMTMwRjRF NjVCN0YwRTkwHhcNMjUxMDIzMDQzNzEzWhcNMjUxMDMwMDQzNzEzWjAYMRYwFAYD VQQDEw02OGY5YjBmYS1mYTdiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxqs/giVR3KAcxWk5mLaY0sjgxkBIlo6QFym4l3lZv8PiVBj7Pg3QCwPMuXL1 3m2bj6MuAv8uWhaao79wCXzsioJEr04Oqz+IIrRgoNdsSZHrGUi2ZymBUhPCEYqt /a+tH60wxpVjftgeK2m7vcs3wQs74Y79h55pWuOMgt2RTdLCnl4n7Xe1jgrNvK2j 8DXp+MHDw6DGNmzwhXgl2h3ub1MJfq0jktqtt8oMYUMQVNrtwzXeCEvgKrh7WpPX TGjqVungP4N7JUTnHP9ZvDd1D44fd9nyjO9BQdEIwR48BNG+BI7BXY80vULWWQmY m5lUqGcMwqNVlL6iiSoKoq/R+wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDtcv0yw /cgvpJzBFiGu9pcVDI1CMB8GA1UdIwQYMBaAFNGdIfZaTJPNNsMHMwITD05lt/Dp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NjVDQi82OTU1MTVFMDA2 MjgxMUVFQTcxNEMyNjNDNEY5QUUwMi8wWjBoOWxwTWs4MDJ3d2N6QWhNUFRtVzM4 T2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBaMGg5bHBNazgwMnd3Y3pBaE1QVG1XMzhPay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NjVDQi82OTU1MTVFMDA2MjgxMUVFQTcxNEMyNjNDNEY5QUUwMi8wWjBoOWxwTWs4 MDJ3d2N6QWhNUFRtVzM4T2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBTDMQM9qifpBidp+mVttqrczqUqwPEjCV5pauhRlNdLgSD7roaIjyv g4WDcyG3GXpGbdTXJ6a4NeId9s1P8HhB8KW87n9eH+cE0IHjTqmIe08L4GpnmyPz cgmu78LZs6ROzkjlHw3fNqmdI5a1W7K9LM8wIb2srtQV1kJmlp2Vv6N1vLL3Snlf wc8OvvyiSyJmtVCq+ebNz1iTGYhJvTEEZ5d4/4+n5GN4Gz+MOG6kMeZCpdpPc4Qp OzfFah5HaCW3q//7Lv8FszaNEIYLN1eFJCoUAFxxHGzpmx2bPwkOMTvx2JKSFVRG DdOyVu34/OJNAXXZ3OBPM9i9ZARpguhR -----END CERTIFICATE-----Generated at Fri Oct 24 00:36:47 2025 by rpki-client