$ rpki-client -vvf rpki.apnic.net/member_repository/A91A8219/EC0A70F8EA8011E78B42A432C4F9AE02/ZVPDwhgLl-LrN8tx9qHOqnuVykc.mft File: ZVPDwhgLl-LrN8tx9qHOqnuVykc.mft (raw, json) Hash identifier: rmdmZupMnmxaUquu8n8vwQETwxsOCTI+75t/t8Ud9hU= Subject key identifier: 14:FC:9F:FD:AB:AE:3A:4D:89:DA:6E:0A:27:7B:D0:30:BA:AD:3A:9E Authority key identifier: 65:53:C3:C2:18:0B:97:E2:EB:37:CB:71:F6:A1:CE:AA:7B:95:CA:47 Certificate issuer: /CN=A91A8219/serialNumber=6553C3C2180B97E2EB37CB71F6A1CEAA7B95CA47 Certificate serial: 175B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZVPDwhgLl-LrN8tx9qHOqnuVykc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A8219/EC0A70F8EA8011E78B42A432C4F9AE02/ZVPDwhgLl-LrN8tx9qHOqnuVykc.mft Manifest number: 174F Signing time: Sun 02 Nov 2025 16:37:00 +0000 Manifest this update: Sun 02 Nov 2025 16:37:00 +0000 Manifest next update: Sun 09 Nov 2025 16:37:00 +0000 Files and hashes: 1: ZVPDwhgLl-LrN8tx9qHOqnuVykc.crl (hash: ze9iKw59qjxBoPNQO7robv4TB2TdxPXqKULlZxXL738=) 2: 314E917C651E11E8A8903D42C4F9AE02.roa (hash: PelwRr9hgP7dCYd5KU90WVUNYfa/KyN0aFEd88yUz4U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A8219/EC0A70F8EA8011E78B42A432C4F9AE02/ZVPDwhgLl-LrN8tx9qHOqnuVykc.crl rsync://rpki.apnic.net/member_repository/A91A8219/EC0A70F8EA8011E78B42A432C4F9AE02/ZVPDwhgLl-LrN8tx9qHOqnuVykc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZVPDwhgLl-LrN8tx9qHOqnuVykc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 16:36:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5979 (0x175b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A8219, serialNumber=6553C3C2180B97E2EB37CB71F6A1CEAA7B95CA47 Validity Not Before: Nov 2 16:37:00 2025 GMT Not After : Nov 9 16:37:00 2025 GMT Subject: CN=690788ac-1bcc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:62:48:42:12:3d:47:f6:82:d1:ea:38:1b:fe: 58:61:68:05:c9:38:0f:d0:79:c1:1b:c7:f0:eb:38: 75:68:95:48:dc:48:47:18:ad:c3:6b:25:15:c4:bf: e9:8c:39:03:8b:e6:82:b1:28:13:b8:0d:d0:d9:2f: 1e:52:fd:c0:41:68:65:10:7d:09:41:a7:6d:b1:8a: 38:99:85:3e:d4:bf:fc:aa:13:c8:f2:7c:9e:cd:47: 85:9f:aa:ba:3a:23:b9:22:02:ea:38:8e:12:d8:cc: 1b:49:9f:58:ed:fd:dc:f3:24:41:03:bf:dd:7a:59: fe:86:a2:f1:5d:f7:cf:d4:5a:70:f7:80:a4:24:ed: be:e9:26:18:06:d8:a9:f9:5c:5f:e6:62:b1:da:91: 57:fd:fc:49:d7:cb:91:c5:76:92:1b:b2:52:d3:b6: 66:18:3b:cf:99:6c:1e:39:12:32:c8:89:79:c5:a5: 89:22:f0:2e:e7:77:02:d0:59:43:00:43:6d:0c:b7: c2:f6:09:a2:36:3d:84:5e:4e:b4:80:27:eb:31:50: 8a:89:49:94:25:15:ff:a6:d3:a0:14:78:65:cc:22: 55:f1:30:ac:e2:9e:52:f8:cf:3a:3e:6a:05:0b:d9: dc:1f:f1:83:a9:2c:cf:5c:bf:05:b0:c9:dc:5b:7a: dd:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:FC:9F:FD:AB:AE:3A:4D:89:DA:6E:0A:27:7B:D0:30:BA:AD:3A:9E X509v3 Authority Key Identifier: keyid:65:53:C3:C2:18:0B:97:E2:EB:37:CB:71:F6:A1:CE:AA:7B:95:CA:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A8219/EC0A70F8EA8011E78B42A432C4F9AE02/ZVPDwhgLl-LrN8tx9qHOqnuVykc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZVPDwhgLl-LrN8tx9qHOqnuVykc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A8219/EC0A70F8EA8011E78B42A432C4F9AE02/ZVPDwhgLl-LrN8tx9qHOqnuVykc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4f:bc:eb:36:26:23:64:d6:20:2b:dc:41:0f:90:1b:44:31:39: 04:4d:5b:92:a8:57:d6:33:a9:29:0e:d7:b0:a3:c7:21:75:93: e1:5b:d4:9a:56:81:34:29:bc:47:f2:e5:1b:8a:58:90:64:36: 9c:94:a4:81:9d:98:7d:5b:0e:ea:79:c1:ac:82:61:04:e8:60: 34:b4:94:57:5a:37:28:93:3e:a7:52:ff:37:9e:67:54:bf:3f: e7:21:fd:6b:ef:b4:19:38:5a:28:55:ac:70:8d:1c:6f:e3:93: b2:73:8e:de:bc:ab:b8:54:40:f6:c2:98:d3:ae:a0:cc:cd:64: 10:02:64:80:f3:31:83:0e:d3:7c:1e:62:6d:60:af:0e:b7:6f: 00:67:29:a7:d9:7b:57:0a:c3:e2:7c:ba:7e:e0:5f:67:01:19: b1:6c:7a:e9:87:d5:b4:7a:65:76:a7:c8:dc:79:2a:8f:45:65: 50:bb:ca:02:e1:bc:bc:99:65:d5:1b:9c:22:11:03:83:a4:85: 18:65:f0:df:4e:4b:d4:d2:b0:c4:c2:b7:be:46:0a:62:e5:03: 76:d6:06:61:f0:47:32:0e:e7:8e:fd:d1:57:c5:8c:3f:4f:4c: 7c:10:08:3b:22:00:4c:65:ee:26:8e:b8:d8:72:f4:55:b3:b3: 60:6a:a0:db -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICF1swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTgyMTkxMTAvBgNVBAUTKDY1NTNDM0MyMTgwQjk3RTJFQjM3Q0I3MUY2QTFDRUFB N0I5NUNBNDcwHhcNMjUxMTAyMTYzNzAwWhcNMjUxMTA5MTYzNzAwWjAYMRYwFAYD VQQDEw02OTA3ODhhYy0xYmNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxGJIQhI9R/aC0eo4G/5YYWgFyTgP0HnBG8fw6zh1aJVI3EhHGK3DayUVxL/p jDkDi+aCsSgTuA3Q2S8eUv3AQWhlEH0JQadtsYo4mYU+1L/8qhPI8nyezUeFn6q6 OiO5IgLqOI4S2MwbSZ9Y7f3c8yRBA7/deln+hqLxXffP1Fpw94CkJO2+6SYYBtip +Vxf5mKx2pFX/fxJ18uRxXaSG7JS07ZmGDvPmWweORIyyIl5xaWJIvAu53cC0FlD AENtDLfC9gmiNj2EXk60gCfrMVCKiUmUJRX/ptOgFHhlzCJV8TCs4p5S+M86PmoF C9ncH/GDqSzPXL8FsMncW3rdZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBT8n/2r rjpNidpuCid70DC6rTqeMB8GA1UdIwQYMBaAFGVTw8IYC5fi6zfLcfahzqp7lcpH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBODIxOS9FQzBBNzBGOEVB ODAxMUU3OEI0MkE0MzJDNEY5QUUwMi9aVlBEd2hnTGwtTHJOOHR4OXFIT3FudVZ5 a2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pWUER3aGdMbC1Mck44dHg5cUhPcW51VnlrYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB ODIxOS9FQzBBNzBGOEVBODAxMUU3OEI0MkE0MzJDNEY5QUUwMi9aVlBEd2hnTGwt THJOOHR4OXFIT3FudVZ5a2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBPvOs2JiNk1iAr3EEPkBtEMTkETVuSqFfWM6kpDtewo8chdZPhW9Sa VoE0KbxH8uUbiliQZDaclKSBnZh9Ww7qecGsgmEE6GA0tJRXWjcokz6nUv83nmdU vz/nIf1r77QZOFooVaxwjRxv45Oyc47evKu4VED2wpjTrqDMzWQQAmSA8zGDDtN8 HmJtYK8Ot28AZymn2XtXCsPifLp+4F9nARmxbHrph9W0emV2p8jceSqPRWVQu8oC 4by8mWXVG5wiEQODpIUYZfDfTkvU0rDEwre+Rgpi5QN21gZh8EcyDueO/dFXxYw/ T0x8EAg7IgBMZe4mjrjYcvRVs7NgaqDb -----END CERTIFICATE-----Generated at Mon Nov 3 18:18:24 2025 by rpki-client