$ rpki-client -vvf rpki.apnic.net/member_repository/A91A6CD6/65E6DBD69CA911EB8AFF0F37C4F9AE02/zFYVfHLcxpczY2dD21AIdZMtpB8.mft File: zFYVfHLcxpczY2dD21AIdZMtpB8.mft (raw, json) Hash identifier: 0od4nBSb7SZsps+KkAIZ9zKg+F4v2PPNfi5yFnXdAuo= Subject key identifier: C7:3F:BB:B2:E8:E5:10:B9:9D:90:25:FA:35:AF:98:09:9E:72:5E:1D Authority key identifier: CC:56:15:7C:72:DC:C6:97:33:63:67:43:DB:50:08:75:93:2D:A4:1F Certificate issuer: /CN=A91A6CD6/serialNumber=CC56157C72DCC69733636743DB500875932DA41F Certificate serial: 0677 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zFYVfHLcxpczY2dD21AIdZMtpB8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A6CD6/65E6DBD69CA911EB8AFF0F37C4F9AE02/zFYVfHLcxpczY2dD21AIdZMtpB8.mft Manifest number: 0670 Signing time: Sun 02 Nov 2025 22:32:22 +0000 Manifest this update: Sun 02 Nov 2025 22:32:22 +0000 Manifest next update: Sun 09 Nov 2025 22:32:22 +0000 Files and hashes: 1: zFYVfHLcxpczY2dD21AIdZMtpB8.crl (hash: +y6smEMH4vNd5UqjOV40oOiulFaGGnWDMiYAGo6MMHo=) 2: A210E7309CAB11EBAB87D43AC4F9AE02.roa (hash: Up4WhD3Nf9WRZOsGh/RIfu2ds6rWcEA9ea8zVjDFpwI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A6CD6/65E6DBD69CA911EB8AFF0F37C4F9AE02/zFYVfHLcxpczY2dD21AIdZMtpB8.crl rsync://rpki.apnic.net/member_repository/A91A6CD6/65E6DBD69CA911EB8AFF0F37C4F9AE02/zFYVfHLcxpczY2dD21AIdZMtpB8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zFYVfHLcxpczY2dD21AIdZMtpB8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 22:32:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1655 (0x677) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A6CD6, serialNumber=CC56157C72DCC69733636743DB500875932DA41F Validity Not Before: Nov 2 22:32:22 2025 GMT Not After : Nov 9 22:32:22 2025 GMT Subject: CN=6907dbf6-abc7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:26:5b:b2:78:83:44:94:bf:3d:4c:25:57:4f: c5:10:23:7a:b5:3d:12:0c:a1:8e:21:4e:36:9f:33: 96:ad:bf:6c:40:70:aa:22:bc:4d:0e:9a:59:1a:fd: 31:c0:8c:77:20:0d:6f:2c:62:f4:de:ef:b9:2f:fa: b6:ee:cd:25:df:b2:8c:fe:11:7e:55:91:cd:ee:c8: b4:c5:98:8d:c8:51:ca:bb:dd:34:ce:6d:0a:3c:49: 53:77:e8:de:83:b4:1f:93:a2:d7:39:43:51:0f:df: a1:59:80:86:7a:41:3b:87:3e:f7:84:01:99:4f:13: 75:bb:2f:24:32:5e:45:6a:b8:22:d5:1b:38:df:1e: 5c:51:f6:cc:36:0d:74:7f:b6:42:15:1d:e6:72:c4: 3a:4a:bb:1e:01:e4:a8:f2:ce:12:a7:02:7a:82:6b: a1:c5:ea:b8:d1:4b:6a:a6:e1:cf:3f:d0:8c:54:97: e6:2c:7d:95:9b:6d:08:e6:a7:49:45:6a:55:d3:b9: f5:9a:5b:23:14:60:b8:25:8e:09:8f:09:04:79:3b: be:95:cc:d8:b6:c7:14:5a:db:4b:73:fc:85:77:61: 42:d1:69:a0:9e:06:4e:91:39:47:31:c2:c7:cd:de: b2:cc:e9:fd:88:f8:f2:a1:3d:a6:55:22:83:0c:fa: 2c:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:3F:BB:B2:E8:E5:10:B9:9D:90:25:FA:35:AF:98:09:9E:72:5E:1D X509v3 Authority Key Identifier: keyid:CC:56:15:7C:72:DC:C6:97:33:63:67:43:DB:50:08:75:93:2D:A4:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A6CD6/65E6DBD69CA911EB8AFF0F37C4F9AE02/zFYVfHLcxpczY2dD21AIdZMtpB8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zFYVfHLcxpczY2dD21AIdZMtpB8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A6CD6/65E6DBD69CA911EB8AFF0F37C4F9AE02/zFYVfHLcxpczY2dD21AIdZMtpB8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5f:78:6e:33:fb:d4:0b:e1:6b:15:47:75:75:27:22:68:e3:75: 0a:4e:36:f9:17:05:af:0f:e7:b6:b9:52:7c:15:7f:42:14:6f: 6b:b3:72:c8:6f:b9:24:74:93:3a:97:4f:97:b2:d1:a5:31:c9: b9:92:ca:a7:90:c3:2c:64:b5:a7:41:83:77:67:8c:49:18:26: ae:68:9c:63:26:25:5b:c9:6b:f2:50:e8:a8:da:eb:64:70:b5: bf:bb:e5:77:b8:64:02:6b:85:09:7f:05:71:09:e3:30:cf:bd: 3d:e1:50:3f:3f:86:3f:25:80:da:d7:0c:e7:54:53:4b:c1:30: 39:07:33:a9:7d:3f:ba:8d:48:a7:5a:c4:03:84:20:73:54:9d: f9:5e:64:be:c6:68:40:47:57:8f:0d:a1:bd:d4:f5:ca:4d:8d: 1b:3f:62:92:b7:4f:af:9c:bb:5a:30:be:f7:8b:d0:21:37:b0: c3:26:a1:6f:b7:8c:98:cc:d0:1c:c6:ff:cf:94:3b:f5:75:22: 50:3e:85:da:b6:fb:31:ff:cc:65:0b:17:7c:22:da:fe:f3:07: 97:91:32:4e:dd:fd:8f:30:29:00:12:dc:34:47:4e:81:b4:76: 74:60:e5:4d:69:2b:dc:32:f2:0a:29:db:a3:8c:cd:a9:17:29: 7c:ff:6f:e3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBncwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTZDRDYxMTAvBgNVBAUTKENDNTYxNTdDNzJEQ0M2OTczMzYzNjc0M0RCNTAwODc1 OTMyREE0MUYwHhcNMjUxMTAyMjIzMjIyWhcNMjUxMTA5MjIzMjIyWjAYMRYwFAYD VQQDEw02OTA3ZGJmNi1hYmM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwiZbsniDRJS/PUwlV0/FECN6tT0SDKGOIU42nzOWrb9sQHCqIrxNDppZGv0x wIx3IA1vLGL03u+5L/q27s0l37KM/hF+VZHN7si0xZiNyFHKu900zm0KPElTd+je g7Qfk6LXOUNRD9+hWYCGekE7hz73hAGZTxN1uy8kMl5Fargi1Rs43x5cUfbMNg10 f7ZCFR3mcsQ6SrseAeSo8s4SpwJ6gmuhxeq40UtqpuHPP9CMVJfmLH2Vm20I5qdJ RWpV07n1mlsjFGC4JY4JjwkEeTu+lczYtscUWttLc/yFd2FC0WmgngZOkTlHMcLH zd6yzOn9iPjyoT2mVSKDDPosKwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMc/u7Lo 5RC5nZAl+jWvmAmecl4dMB8GA1UdIwQYMBaAFMxWFXxy3MaXM2NnQ9tQCHWTLaQf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNkNENi82NUU2REJENjlD QTkxMUVCOEFGRjBGMzdDNEY5QUUwMi96RllWZkhMY3hwY3pZMmREMjFBSWRaTXRw QjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pGWVZmSExjeHBjelkyZEQyMUFJZFpNdHBCOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NkNENi82NUU2REJENjlDQTkxMUVCOEFGRjBGMzdDNEY5QUUwMi96RllWZkhMY3hw Y3pZMmREMjFBSWRaTXRwQjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBfeG4z+9QL4WsVR3V1JyJo43UKTjb5FwWvD+e2uVJ8FX9CFG9rs3LI b7kkdJM6l0+XstGlMcm5ksqnkMMsZLWnQYN3Z4xJGCauaJxjJiVbyWvyUOio2utk cLW/u+V3uGQCa4UJfwVxCeMwz7094VA/P4Y/JYDa1wznVFNLwTA5BzOpfT+6jUin WsQDhCBzVJ35XmS+xmhAR1ePDaG91PXKTY0bP2KSt0+vnLtaML73i9AhN7DDJqFv t4yYzNAcxv/PlDv1dSJQPoXatvsx/8xlCxd8Itr+8weXkTJO3f2PMCkAEtw0R06B tHZ0YOVNaSvcMvIKKdujjM2pFyl8/2/j -----END CERTIFICATE-----Generated at Mon Nov 3 18:18:14 2025 by rpki-client