$ rpki-client -vvf rpki.apnic.net/member_repository/A91971CB/010EB288808911EB8B505F20C4F9AE02/MZsxRPBqjysw1BIHH-EhB3T-huc.mft File: MZsxRPBqjysw1BIHH-EhB3T-huc.mft (raw, json) Hash identifier: j260OhF0ycK8xGZxHvux6ml3yKF4Cn3WFC+3giZMnIY= Subject key identifier: 5B:C1:E2:52:FF:8A:D3:DA:5D:D3:02:86:2D:0D:81:69:56:E8:E4:06 Authority key identifier: 31:9B:31:44:F0:6A:8F:2B:30:D4:12:07:1F:E1:21:07:74:FE:86:E7 Certificate issuer: /CN=A91971CB/serialNumber=319B3144F06A8F2B30D412071FE1210774FE86E7 Certificate serial: 06C9 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/MZsxRPBqjysw1BIHH-EhB3T-huc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91971CB/010EB288808911EB8B505F20C4F9AE02/MZsxRPBqjysw1BIHH-EhB3T-huc.mft Manifest number: 06C2 Signing time: Fri 24 Oct 2025 15:24:10 +0000 Manifest this update: Fri 24 Oct 2025 15:24:10 +0000 Manifest next update: Fri 31 Oct 2025 15:24:10 +0000 Files and hashes: 1: MZsxRPBqjysw1BIHH-EhB3T-huc.crl (hash: KZsQJSJxuoaboyIm0QilB937nEDDke5mKhUq12YuvpY=) 2: 27C29E5EF94411EDB4C6E91CC4F9AE02.roa (hash: PGlTDpEV17D+1hrLu4fdfibpz1YbRKMAlzpsoNFgyb4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91971CB/010EB288808911EB8B505F20C4F9AE02/MZsxRPBqjysw1BIHH-EhB3T-huc.crl rsync://rpki.apnic.net/member_repository/A91971CB/010EB288808911EB8B505F20C4F9AE02/MZsxRPBqjysw1BIHH-EhB3T-huc.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/MZsxRPBqjysw1BIHH-EhB3T-huc.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 31 Oct 2025 15:24:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1737 (0x6c9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91971CB, serialNumber=319B3144F06A8F2B30D412071FE1210774FE86E7 Validity Not Before: Oct 24 15:24:10 2025 GMT Not After : Oct 31 15:24:10 2025 GMT Subject: CN=68fb9a1a-2b16 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:f8:17:73:92:88:57:9b:26:cb:c4:c8:34:b5: 61:47:e4:25:01:d4:07:35:1c:0a:f4:15:db:f7:90: 4e:67:49:70:b5:3c:3d:32:b8:88:cd:e1:9a:d9:74: 54:32:af:0e:56:7a:0b:68:3b:7e:9a:87:18:94:56: f1:bf:bf:01:4b:2e:f3:50:c0:4c:5e:48:29:42:eb: 3a:52:55:4d:2f:9a:51:60:fd:26:78:5c:33:48:05: 33:e2:92:fd:f3:aa:c8:ce:fd:da:f9:04:4c:96:37: f4:8d:3a:bd:b8:69:b8:3b:9a:76:fd:59:35:23:2b: b7:dd:96:88:92:7c:8d:c8:02:1a:4f:fb:24:c9:7c: a3:17:df:d7:75:50:24:d5:f9:7b:60:03:ff:25:48: 0e:96:0c:43:ca:ae:a1:5c:2e:6c:50:d0:ae:f7:62: 7a:9e:8f:26:88:bd:91:d6:56:32:c2:5d:9f:f7:a7: 15:e6:da:e5:14:b8:14:1d:8d:db:0c:b2:b9:ad:cf: cb:2a:83:2f:20:5a:e5:a6:69:7e:98:68:95:19:4e: e3:c3:a7:bb:ff:4d:8a:ec:89:e2:a9:52:70:3c:e5: b1:4c:8e:04:58:f1:7a:0d:53:c4:41:06:77:0c:d7: 51:dd:8f:7a:0f:1c:22:73:b0:10:c1:06:c1:b5:65: 91:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:C1:E2:52:FF:8A:D3:DA:5D:D3:02:86:2D:0D:81:69:56:E8:E4:06 X509v3 Authority Key Identifier: keyid:31:9B:31:44:F0:6A:8F:2B:30:D4:12:07:1F:E1:21:07:74:FE:86:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91971CB/010EB288808911EB8B505F20C4F9AE02/MZsxRPBqjysw1BIHH-EhB3T-huc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/MZsxRPBqjysw1BIHH-EhB3T-huc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91971CB/010EB288808911EB8B505F20C4F9AE02/MZsxRPBqjysw1BIHH-EhB3T-huc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1d:12:7e:e0:39:20:91:b8:b5:ea:bc:24:18:c5:53:aa:97:33: c0:53:58:02:e7:c1:29:13:2a:a3:8f:e3:0c:90:a9:c3:c3:af: c1:e6:f6:bf:8b:a0:df:b1:a5:a6:54:4f:4c:16:27:3f:b9:90: ba:47:b5:14:ef:de:d4:28:4c:a7:b9:3d:ba:e8:f8:e9:e2:3e: ee:9e:34:fb:ac:ce:0d:63:aa:84:81:56:f1:03:0c:6d:a7:d4: 43:b3:4c:91:50:e3:0d:a4:73:6f:b6:47:fa:b3:eb:88:f4:50: 12:66:d7:2a:04:64:5f:25:5c:91:e6:25:31:59:12:61:9b:41: b9:63:b9:9d:0c:ac:16:ed:73:57:a8:8b:bb:0a:d3:ad:d5:6e: 88:53:ca:8b:33:05:3b:4c:40:24:d3:c7:2a:3e:e5:98:cb:49: 55:06:c4:76:9d:45:06:2f:7a:4a:68:6b:c4:b3:42:b9:22:05: 74:a3:32:bc:a7:26:d3:d6:a4:18:2d:97:7f:07:4d:b8:78:18: 24:e2:b4:b4:71:c1:d8:f5:4e:19:f5:e2:ce:68:52:c6:8f:11: 7d:ee:d9:22:20:f1:ce:ed:00:5a:21:4e:88:6d:1f:34:9b:76: ad:17:64:ac:b8:09:f6:cb:b5:61:9e:d9:e0:c7:c4:d8:62:b9: a0:f8:3a:dc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBskwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTcxQ0IxMTAvBgNVBAUTKDMxOUIzMTQ0RjA2QThGMkIzMEQ0MTIwNzFGRTEyMTA3 NzRGRTg2RTcwHhcNMjUxMDI0MTUyNDEwWhcNMjUxMDMxMTUyNDEwWjAYMRYwFAYD VQQDEw02OGZiOWExYS0yYjE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzfgXc5KIV5smy8TINLVhR+QlAdQHNRwK9BXb95BOZ0lwtTw9MriIzeGa2XRU Mq8OVnoLaDt+mocYlFbxv78BSy7zUMBMXkgpQus6UlVNL5pRYP0meFwzSAUz4pL9 86rIzv3a+QRMljf0jTq9uGm4O5p2/Vk1Iyu33ZaIknyNyAIaT/skyXyjF9/XdVAk 1fl7YAP/JUgOlgxDyq6hXC5sUNCu92J6no8miL2R1lYywl2f96cV5trlFLgUHY3b DLK5rc/LKoMvIFrlpml+mGiVGU7jw6e7/02K7IniqVJwPOWxTI4EWPF6DVPEQQZ3 DNdR3Y96Dxwic7AQwQbBtWWRkQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFvB4lL/ itPaXdMChi0NgWlW6OQGMB8GA1UdIwQYMBaAFDGbMUTwao8rMNQSBx/hIQd0/obn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzFDQi8wMTBFQjI4ODgw ODkxMUVCOEI1MDVGMjBDNEY5QUUwMi9NWnN4UlBCcWp5c3cxQklISC1FaEIzVC1o dWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL01ac3hSUEJxanlzdzFCSUhILUVoQjNULWh1Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NzFDQi8wMTBFQjI4ODgwODkxMUVCOEI1MDVGMjBDNEY5QUUwMi9NWnN4UlBCcWp5 c3cxQklISC1FaEIzVC1odWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAdEn7gOSCRuLXqvCQYxVOqlzPAU1gC58EpEyqjj+MMkKnDw6/B5va/ i6DfsaWmVE9MFic/uZC6R7UU797UKEynuT266Pjp4j7unjT7rM4NY6qEgVbxAwxt p9RDs0yRUOMNpHNvtkf6s+uI9FASZtcqBGRfJVyR5iUxWRJhm0G5Y7mdDKwW7XNX qIu7CtOt1W6IU8qLMwU7TEAk08cqPuWYy0lVBsR2nUUGL3pKaGvEs0K5IgV0ozK8 pybT1qQYLZd/B024eBgk4rS0ccHY9U4Z9eLOaFLGjxF97tkiIPHO7QBaIU6IbR80 m3atF2SsuAn2y7Vhntngx8TYYrmg+Drc -----END CERTIFICATE-----Generated at Sat Oct 25 18:00:03 2025 by rpki-client