$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4B1A/5DD48AB689F211E69E5F6339C4F9AE02/zhFGgP9vTZvD8YgNYQ1q7urr8NQ.mft File: zhFGgP9vTZvD8YgNYQ1q7urr8NQ.mft (raw, json) Hash identifier: au3khL77mIiFE2y6hwlEXqzPEacDOTcA2c3R7rp3FC8= Subject key identifier: 8E:92:E8:22:74:68:62:E5:8D:0A:D1:E8:3D:BD:41:77:D5:A7:B4:33 Authority key identifier: CE:11:46:80:FF:6F:4D:9B:C3:F1:88:0D:61:0D:6A:EE:EA:EB:F0:D4 Certificate issuer: /CN=A91A4B1A/serialNumber=CE114680FF6F4D9BC3F1880D610D6AEEEAEBF0D4 Certificate serial: 1E63 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zhFGgP9vTZvD8YgNYQ1q7urr8NQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4B1A/5DD48AB689F211E69E5F6339C4F9AE02/zhFGgP9vTZvD8YgNYQ1q7urr8NQ.mft Manifest number: 1E52 Signing time: Fri 24 Oct 2025 16:22:17 +0000 Manifest this update: Fri 24 Oct 2025 16:22:17 +0000 Manifest next update: Fri 31 Oct 2025 16:22:17 +0000 Files and hashes: 1: zhFGgP9vTZvD8YgNYQ1q7urr8NQ.crl (hash: cxs2LjbJknrcnskGJEXj7VH9lIT94nLb5yuYRld+V5U=) 2: 4A6679EC14DF11EEAB46A86DC4F9AE02.roa (hash: yY5rZMTsOpnGO6cAR5A6bi22J/lJ789z+ED1oN3orxw=) 3: 4B52A44814DF11EEAB46A86DC4F9AE02.roa (hash: 36rBW03tvoWvEp5FFhkEkP0PegguzR76VTv8hEMsFNk=) 4: 1DBC9D405DB411EEA017251AC4F9AE02.roa (hash: 2w+ZZZiHGzET+UAGMpulJr633xByME/2FAJYerduoZE=) 5: 4CE75372B9DE11EEBC5B0D21C4F9AE02.roa (hash: yps3mcP7HEC1/XDzl5d78p6GLXVPbcsPt7pEv3x1HZA=) 6: 4999305414DF11EEAB46A86DC4F9AE02.roa (hash: Bl17bhrifD1PMrI4c5ur7v5yVCt37LP+FsjpzcQgt1k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4B1A/5DD48AB689F211E69E5F6339C4F9AE02/zhFGgP9vTZvD8YgNYQ1q7urr8NQ.crl rsync://rpki.apnic.net/member_repository/A91A4B1A/5DD48AB689F211E69E5F6339C4F9AE02/zhFGgP9vTZvD8YgNYQ1q7urr8NQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zhFGgP9vTZvD8YgNYQ1q7urr8NQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 31 Oct 2025 16:22:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7779 (0x1e63) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4B1A, serialNumber=CE114680FF6F4D9BC3F1880D610D6AEEEAEBF0D4 Validity Not Before: Oct 24 16:22:17 2025 GMT Not After : Oct 31 16:22:17 2025 GMT Subject: CN=68fba7b9-f40d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:11:14:3e:fd:f4:49:8f:2d:30:84:b8:86:24: fc:03:e5:6c:6e:66:33:af:3a:ca:55:52:dd:f1:59: fd:10:3a:f4:ab:11:bc:5c:02:e4:16:2b:1a:a9:f1: a2:49:a7:60:f1:3a:a1:98:d2:1c:fe:ae:24:ea:ae: d8:a9:d4:1f:49:4a:75:a5:a1:d4:a0:b5:45:5c:c6: 79:95:75:5c:53:a0:5e:b2:c1:69:72:ba:73:5f:3a: 75:0a:64:08:d0:58:9d:6c:17:3e:52:54:b0:52:a2: 8d:d1:7d:29:44:db:3e:d3:de:67:b3:d8:c4:8a:26: 3c:91:c3:84:d3:2e:96:74:fc:e6:be:73:29:5f:0f: 0e:35:95:a5:98:ee:a6:b3:ae:d1:96:ca:c2:2a:de: 7c:a3:3c:6e:83:d4:25:2f:ed:e1:7a:ea:4d:d2:80: ff:48:00:53:d9:76:bb:e2:6b:fe:8b:1e:fb:d8:9f: e6:21:44:e3:ce:37:91:e6:18:38:b6:a7:e8:7b:e4: 09:b2:be:27:ec:9e:f2:53:97:d4:38:94:90:93:ed: 58:12:b5:c5:f3:3a:39:52:21:df:be:97:19:a4:0e: a2:8f:05:b6:45:6e:33:f4:f4:99:3b:d3:10:30:0f: 73:a8:fc:42:ae:ec:d3:50:cf:e3:c1:46:60:e7:77: 8d:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:92:E8:22:74:68:62:E5:8D:0A:D1:E8:3D:BD:41:77:D5:A7:B4:33 X509v3 Authority Key Identifier: keyid:CE:11:46:80:FF:6F:4D:9B:C3:F1:88:0D:61:0D:6A:EE:EA:EB:F0:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4B1A/5DD48AB689F211E69E5F6339C4F9AE02/zhFGgP9vTZvD8YgNYQ1q7urr8NQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zhFGgP9vTZvD8YgNYQ1q7urr8NQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4B1A/5DD48AB689F211E69E5F6339C4F9AE02/zhFGgP9vTZvD8YgNYQ1q7urr8NQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:d6:2a:f1:6a:16:dd:b2:8f:fe:bf:63:0f:88:3c:63:78:88: bf:df:df:04:f3:e5:a7:47:b4:96:78:f1:fc:80:ee:5f:04:ce: f1:03:f3:41:36:a2:04:cc:8d:af:6b:ce:32:f4:ed:b7:5a:da: 35:e2:52:ec:b7:1b:3c:3b:fc:d1:05:89:76:4b:a6:b1:bd:db: bd:92:38:1d:f9:bf:5a:f2:8a:6a:c4:a7:c1:95:d5:b3:30:ff: b5:29:27:69:5b:ea:e4:e5:9a:f0:a1:27:04:cf:08:6e:74:fc: bb:fd:f3:99:ae:7d:7d:bd:32:c4:22:c8:ff:29:b0:0f:2c:18: 53:13:d4:1b:9e:92:64:c0:81:ef:4a:08:b0:db:d7:45:3a:07: 2d:09:81:13:f8:fe:69:b9:84:b8:9b:2c:d3:73:b0:4c:c8:80: 95:dc:e1:82:7c:9a:56:f2:31:72:f4:aa:51:e5:dc:01:a8:73: 5f:b7:71:00:d8:a3:a2:84:88:32:b4:a3:2a:db:c6:b9:43:fa: 81:29:b9:49:9b:02:5f:c3:60:2e:8c:c6:f0:9c:42:f9:04:c3: 90:27:a9:2c:89:c9:1d:db:1a:db:06:f8:65:46:24:5a:b3:97: 8b:b7:da:35:bf:55:e4:0c:28:72:8b:cd:6b:2c:2f:73:e9:75: d3:30:6c:79 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHmMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTRCMUExMTAvBgNVBAUTKENFMTE0NjgwRkY2RjREOUJDM0YxODgwRDYxMEQ2QUVF RUFFQkYwRDQwHhcNMjUxMDI0MTYyMjE3WhcNMjUxMDMxMTYyMjE3WjAYMRYwFAYD VQQDEw02OGZiYTdiOS1mNDBkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAshEUPv30SY8tMIS4hiT8A+VsbmYzrzrKVVLd8Vn9EDr0qxG8XALkFisaqfGi Sadg8TqhmNIc/q4k6q7YqdQfSUp1paHUoLVFXMZ5lXVcU6BessFpcrpzXzp1CmQI 0FidbBc+UlSwUqKN0X0pRNs+095ns9jEiiY8kcOE0y6WdPzmvnMpXw8ONZWlmO6m s67RlsrCKt58ozxug9QlL+3heupN0oD/SABT2Xa74mv+ix772J/mIUTjzjeR5hg4 tqfoe+QJsr4n7J7yU5fUOJSQk+1YErXF8zo5UiHfvpcZpA6ijwW2RW4z9PSZO9MQ MA9zqPxCruzTUM/jwUZg53eN0wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI6S6CJ0 aGLljQrR6D29QXfVp7QzMB8GA1UdIwQYMBaAFM4RRoD/b02bw/GIDWENau7q6/DU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNEIxQS81REQ0OEFCNjg5 RjIxMUU2OUU1RjYzMzlDNEY5QUUwMi96aEZHZ1A5dlRadkQ4WWdOWVExcTd1cnI4 TlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3poRkdnUDl2VFp2RDhZZ05ZUTFxN3VycjhOUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NEIxQS81REQ0OEFCNjg5RjIxMUU2OUU1RjYzMzlDNEY5QUUwMi96aEZHZ1A5dlRa dkQ4WWdOWVExcTd1cnI4TlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA31irxahbdso/+v2MPiDxjeIi/398E8+WnR7SWePH8gO5fBM7xA/NB NqIEzI2va84y9O23Wto14lLstxs8O/zRBYl2S6axvdu9kjgd+b9a8opqxKfBldWz MP+1KSdpW+rk5ZrwoScEzwhudPy7/fOZrn19vTLEIsj/KbAPLBhTE9QbnpJkwIHv Sgiw29dFOgctCYET+P5puYS4myzTc7BMyICV3OGCfJpW8jFy9KpR5dwBqHNft3EA 2KOihIgytKMq28a5Q/qBKblJmwJfw2AujMbwnEL5BMOQJ6ksickd2xrbBvhlRiRa s5eLt9o1v1XkDChyi81rLC9z6XXTMGx5 -----END CERTIFICATE-----Generated at Sat Oct 25 17:04:03 2025 by rpki-client