$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAE63/5E966394CA0911ED81B6F63CC4F9AE02/zHxfJ4CoDTxmayv2kVPyBIS-7nE.mft File: zHxfJ4CoDTxmayv2kVPyBIS-7nE.mft (raw, json) Hash identifier: DGf+1puwqQJiFRM990cC0wD+UWbH2diSwdCZfiNAWFc= Subject key identifier: 1E:B8:7E:83:AC:0A:BC:8C:29:7D:42:16:9C:3F:99:01:D1:6A:73:2D Authority key identifier: CC:7C:5F:27:80:A8:0D:3C:66:6B:2B:F6:91:53:F2:04:84:BE:EE:71 Certificate issuer: /CN=A91AAE63/serialNumber=CC7C5F2780A80D3C666B2BF69153F20484BEEE71 Certificate serial: 01EC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zHxfJ4CoDTxmayv2kVPyBIS-7nE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAE63/5E966394CA0911ED81B6F63CC4F9AE02/zHxfJ4CoDTxmayv2kVPyBIS-7nE.mft Manifest number: 01E9 Signing time: Mon 03 Nov 2025 02:34:56 +0000 Manifest this update: Mon 03 Nov 2025 02:34:55 +0000 Manifest next update: Mon 10 Nov 2025 02:34:55 +0000 Files and hashes: 1: zHxfJ4CoDTxmayv2kVPyBIS-7nE.crl (hash: fEmTaWobf1dxarBB/3OHnbvoe0MXrf20zbGKpkxfb4w=) 2: 5DCF3814CA0E11ED9251861DC4F9AE02.roa (hash: QPqR58JeNFPJi8H+5XnKJrf+9hDaJRDjHQAg1P1N4n8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAE63/5E966394CA0911ED81B6F63CC4F9AE02/zHxfJ4CoDTxmayv2kVPyBIS-7nE.crl rsync://rpki.apnic.net/member_repository/A91AAE63/5E966394CA0911ED81B6F63CC4F9AE02/zHxfJ4CoDTxmayv2kVPyBIS-7nE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zHxfJ4CoDTxmayv2kVPyBIS-7nE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 02:34:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 492 (0x1ec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAE63, serialNumber=CC7C5F2780A80D3C666B2BF69153F20484BEEE71 Validity Not Before: Nov 3 02:34:55 2025 GMT Not After : Nov 10 02:34:55 2025 GMT Subject: CN=690814cf-6cc9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:64:86:3a:58:d6:35:99:25:2d:4e:89:01:e0: 46:f8:0d:fb:7d:9d:03:a7:77:5e:b9:60:2a:15:6f: 0b:94:a0:f2:a9:b8:8f:a9:22:ef:48:9e:62:86:07: 32:7f:bf:47:31:34:e0:ba:ca:23:f4:6a:67:32:25: e4:5a:cc:ed:86:c0:71:dd:cc:2a:39:77:2a:79:bc: e3:2f:7a:76:25:91:43:e5:ec:ac:43:97:9b:a7:dc: 1d:87:b5:67:4c:86:68:21:3c:85:a0:03:c1:b7:41: e4:ad:69:3f:35:d1:d3:f1:a5:6c:a3:0b:cb:db:ec: 5e:10:78:f9:21:29:6b:9d:f5:bd:bd:4e:df:b7:9a: 7a:17:40:c3:ea:b1:39:e0:b2:b6:e4:93:89:f2:f1: 3b:c5:1d:80:21:34:25:42:a0:7f:6d:0d:74:8f:0f: b9:75:08:75:fe:18:3a:13:57:5d:d0:72:96:d9:00: 2a:af:f9:da:7b:b2:94:9e:a4:e6:b3:df:3f:9f:1f: 83:92:4f:ce:cd:6e:cd:76:e0:c4:04:20:49:43:f5: 19:8f:2b:a4:51:e0:17:ab:b1:ec:25:bb:46:05:61: af:8e:3f:73:25:20:0f:42:22:5f:22:e5:2f:77:9b: d7:d0:2b:29:c3:a7:be:78:5f:8d:dd:5b:b2:c6:c4: 39:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:B8:7E:83:AC:0A:BC:8C:29:7D:42:16:9C:3F:99:01:D1:6A:73:2D X509v3 Authority Key Identifier: keyid:CC:7C:5F:27:80:A8:0D:3C:66:6B:2B:F6:91:53:F2:04:84:BE:EE:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAE63/5E966394CA0911ED81B6F63CC4F9AE02/zHxfJ4CoDTxmayv2kVPyBIS-7nE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zHxfJ4CoDTxmayv2kVPyBIS-7nE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAE63/5E966394CA0911ED81B6F63CC4F9AE02/zHxfJ4CoDTxmayv2kVPyBIS-7nE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 69:26:75:27:5f:6a:5d:07:ed:86:d1:20:f8:92:43:da:95:a2: 0f:8d:2f:10:a6:68:03:84:ff:6d:d6:9e:fa:e8:e9:24:a7:60: ef:db:f4:6e:51:29:b4:e8:aa:a4:be:b9:22:a9:28:1f:34:60: 52:fd:67:06:ac:01:88:3e:de:18:e6:cc:47:45:ee:ff:2c:7f: b6:a8:7f:cd:fc:6b:67:aa:d7:7c:20:f4:eb:98:ed:1d:ca:4c: d5:d6:bb:c6:2f:1f:bc:f2:4f:16:56:2e:d9:3b:68:b6:e2:cc: aa:35:7f:8e:4e:ca:23:4c:03:0a:22:c3:24:71:fc:8e:a4:94: 72:96:43:6c:ad:07:0b:e3:47:17:22:0a:84:f1:ec:25:c0:16: 9a:3b:29:85:3a:d0:5c:66:81:14:8b:25:4b:da:08:77:ec:ab: 97:e1:3d:4b:67:21:15:aa:88:dd:a7:03:9b:d7:e5:a5:45:ae: 3f:94:13:bf:70:72:34:76:19:40:52:94:db:70:4b:c9:a1:ed: f0:83:09:e5:bb:b9:85:36:c8:b8:48:98:2a:73:6d:a4:63:08: d1:b8:dc:4d:1c:71:3a:c3:cf:18:00:1c:b4:bb:65:9e:17:8b: af:c4:57:84:52:1c:03:64:48:bb:07:00:08:4e:5f:51:c0:00: 23:56:80:5f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAewwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUFFNjMxMTAvBgNVBAUTKENDN0M1RjI3ODBBODBEM0M2NjZCMkJGNjkxNTNGMjA0 ODRCRUVFNzEwHhcNMjUxMTAzMDIzNDU1WhcNMjUxMTEwMDIzNDU1WjAYMRYwFAYD VQQDEw02OTA4MTRjZi02Y2M5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz2SGOljWNZklLU6JAeBG+A37fZ0Dp3deuWAqFW8LlKDyqbiPqSLvSJ5ihgcy f79HMTTgusoj9GpnMiXkWszthsBx3cwqOXcqebzjL3p2JZFD5eysQ5ebp9wdh7Vn TIZoITyFoAPBt0HkrWk/NdHT8aVsowvL2+xeEHj5ISlrnfW9vU7ft5p6F0DD6rE5 4LK25JOJ8vE7xR2AITQlQqB/bQ10jw+5dQh1/hg6E1dd0HKW2QAqr/nae7KUnqTm s98/nx+Dkk/OzW7NduDEBCBJQ/UZjyukUeAXq7HsJbtGBWGvjj9zJSAPQiJfIuUv d5vX0Cspw6e+eF+N3VuyxsQ5PwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB64foOs CryMKX1CFpw/mQHRanMtMB8GA1UdIwQYMBaAFMx8XyeAqA08Zmsr9pFT8gSEvu5x MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQUU2My81RTk2NjM5NENB MDkxMUVEODFCNkY2M0NDNEY5QUUwMi96SHhmSjRDb0RUeG1heXYya1ZQeUJJUy03 bkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pIeGZKNENvRFR4bWF5djJrVlB5QklTLTduRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QUU2My81RTk2NjM5NENBMDkxMUVEODFCNkY2M0NDNEY5QUUwMi96SHhmSjRDb0RU eG1heXYya1ZQeUJJUy03bkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBpJnUnX2pdB+2G0SD4kkPalaIPjS8QpmgDhP9t1p766Okkp2Dv2/Ru USm06KqkvrkiqSgfNGBS/WcGrAGIPt4Y5sxHRe7/LH+2qH/N/Gtnqtd8IPTrmO0d ykzV1rvGLx+88k8WVi7ZO2i24syqNX+OTsojTAMKIsMkcfyOpJRylkNsrQcL40cX IgqE8ewlwBaaOymFOtBcZoEUiyVL2gh37KuX4T1LZyEVqojdpwOb1+WlRa4/lBO/ cHI0dhlAUpTbcEvJoe3wgwnlu7mFNsi4SJgqc22kYwjRuNxNHHE6w88YABy0u2We F4uvxFeEUhwDZEi7BwAITl9RwAAjVoBf -----END CERTIFICATE-----Generated at Mon Nov 3 18:16:38 2025 by rpki-client