$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB055/4ABBC01CF55511EEACF1234BC4F9AE02/mZsvZTnCPq60aeZ1OfstyTPZgEA.mft File: mZsvZTnCPq60aeZ1OfstyTPZgEA.mft (raw, json) Hash identifier: KaOsP+EbDCT6xv9RkI7prnp5kw7KMGQ1/7L5FwQGhDI= Subject key identifier: 84:01:AF:E0:CC:62:F0:18:C7:36:BF:F5:A7:25:1B:83:8E:5D:83:9E Authority key identifier: 99:9B:2F:65:39:C2:3E:AE:B4:69:E6:75:39:FB:2D:C9:33:D9:80:40 Certificate issuer: /CN=A91AB055/serialNumber=999B2F6539C23EAEB469E67539FB2DC933D98040 Certificate serial: 0126 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mZsvZTnCPq60aeZ1OfstyTPZgEA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB055/4ABBC01CF55511EEACF1234BC4F9AE02/mZsvZTnCPq60aeZ1OfstyTPZgEA.mft Manifest number: 0124 Signing time: Mon 03 Nov 2025 04:39:52 +0000 Manifest this update: Mon 03 Nov 2025 04:39:52 +0000 Manifest next update: Mon 10 Nov 2025 04:39:52 +0000 Files and hashes: 1: mZsvZTnCPq60aeZ1OfstyTPZgEA.crl (hash: FgU5ZEpNDUWrNgv8RbGMo+fja+1ejqewnMiTAqr8CsU=) 2: 83CA613CF55611EE8CE6274DC4F9AE02.roa (hash: BonjniXMbmI4yDYc3ynOZLv8pgVSOdRZa/c5jpsq0Ug=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB055/4ABBC01CF55511EEACF1234BC4F9AE02/mZsvZTnCPq60aeZ1OfstyTPZgEA.crl rsync://rpki.apnic.net/member_repository/A91AB055/4ABBC01CF55511EEACF1234BC4F9AE02/mZsvZTnCPq60aeZ1OfstyTPZgEA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mZsvZTnCPq60aeZ1OfstyTPZgEA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 04:39:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 294 (0x126) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB055, serialNumber=999B2F6539C23EAEB469E67539FB2DC933D98040 Validity Not Before: Nov 3 04:39:52 2025 GMT Not After : Nov 10 04:39:52 2025 GMT Subject: CN=69083218-cf68 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:a7:da:60:77:f6:fc:06:3e:35:a9:5d:ba:8a: bf:81:d5:fb:49:e3:9e:d1:07:7d:2e:c8:de:4a:db: b7:68:36:2d:31:d5:23:d8:df:b2:c6:b3:e8:61:04: f4:8b:af:60:9d:f3:94:23:76:21:59:45:65:a7:3f: ae:29:5e:d3:d9:e1:15:89:00:2f:0e:6d:4f:31:c8: 0b:7f:00:81:79:01:8c:ed:69:aa:a5:60:cb:eb:d3: fe:28:0e:69:5b:d7:52:8f:23:91:8b:a2:c8:aa:0c: 13:81:7f:37:37:6b:d3:7e:b8:50:c3:06:22:98:17: ef:ca:f4:f3:f5:b0:47:ff:1b:b1:b0:c0:71:70:80: 24:94:1e:e0:68:58:cd:ba:3b:1b:9d:f0:5c:84:bb: bc:76:43:05:a2:60:cb:51:e1:4d:ab:81:d4:50:94: 53:59:7b:6a:55:ae:f7:77:69:7b:63:19:69:9b:d2: 99:bc:10:ed:bb:2d:e6:62:07:27:a0:9a:d5:57:29: 69:3e:aa:dc:e7:55:18:33:72:df:37:09:3d:10:29: 78:ce:d6:4f:00:a1:c1:08:25:08:b6:77:9d:ba:89: 44:0a:81:47:f6:69:12:b0:60:f6:41:8c:dc:08:85: 62:36:df:68:fe:f0:8c:ab:76:95:82:73:45:a4:04: 16:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:01:AF:E0:CC:62:F0:18:C7:36:BF:F5:A7:25:1B:83:8E:5D:83:9E X509v3 Authority Key Identifier: keyid:99:9B:2F:65:39:C2:3E:AE:B4:69:E6:75:39:FB:2D:C9:33:D9:80:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB055/4ABBC01CF55511EEACF1234BC4F9AE02/mZsvZTnCPq60aeZ1OfstyTPZgEA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mZsvZTnCPq60aeZ1OfstyTPZgEA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB055/4ABBC01CF55511EEACF1234BC4F9AE02/mZsvZTnCPq60aeZ1OfstyTPZgEA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 39:dc:88:49:f9:2d:77:d0:3e:15:f3:99:31:31:dc:cb:fc:80: 07:6a:29:66:f5:24:49:b2:85:b8:d6:db:6e:d4:80:18:aa:a4: 1e:54:30:dd:69:bc:9e:7c:18:98:ab:1d:cc:d8:02:24:72:57: 7a:88:51:57:b0:a0:a0:9f:0d:d4:7d:6c:60:ce:36:f7:54:44: 6a:31:98:76:6b:4f:a0:6e:fe:87:78:d9:45:64:93:c3:0a:04: 72:11:4e:30:00:2e:6e:dd:f8:b2:0a:0d:be:4b:30:51:23:08: b4:de:93:1a:ca:10:a4:fc:88:77:68:b6:42:36:c0:be:5b:dc: 82:16:2b:75:64:f0:d3:5e:36:05:41:8c:2a:2c:a6:85:72:fe: a0:c8:28:0c:4e:3a:fa:7e:c6:f2:50:af:2b:e9:73:35:5e:62: c0:67:c8:c1:fd:1b:2f:b1:05:a9:ad:9d:56:f1:a3:48:d2:ae: ee:f2:40:19:b5:11:a2:cd:10:eb:a6:ca:c0:50:02:71:e7:57: 6e:98:d3:8a:c1:1c:86:d6:9d:89:bd:33:0a:39:cf:1e:a0:9d: ca:19:8e:50:ca:51:37:0d:20:2b:d5:01:77:f4:e7:7d:ae:e3: 08:60:4e:f3:fc:3f:df:c4:be:28:58:64:dd:93:a3:41:ea:d7: 10:00:c1:87 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUIwNTUxMTAvBgNVBAUTKDk5OUIyRjY1MzlDMjNFQUVCNDY5RTY3NTM5RkIyREM5 MzNEOTgwNDAwHhcNMjUxMTAzMDQzOTUyWhcNMjUxMTEwMDQzOTUyWjAYMRYwFAYD VQQDEw02OTA4MzIxOC1jZjY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAm6faYHf2/AY+Nalduoq/gdX7SeOe0Qd9LsjeStu3aDYtMdUj2N+yxrPoYQT0 i69gnfOUI3YhWUVlpz+uKV7T2eEViQAvDm1PMcgLfwCBeQGM7WmqpWDL69P+KA5p W9dSjyORi6LIqgwTgX83N2vTfrhQwwYimBfvyvTz9bBH/xuxsMBxcIAklB7gaFjN ujsbnfBchLu8dkMFomDLUeFNq4HUUJRTWXtqVa73d2l7Yxlpm9KZvBDtuy3mYgcn oJrVVylpPqrc51UYM3LfNwk9ECl4ztZPAKHBCCUItneduolECoFH9mkSsGD2QYzc CIViNt9o/vCMq3aVgnNFpAQW8QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIQBr+DM YvAYxza/9aclG4OOXYOeMB8GA1UdIwQYMBaAFJmbL2U5wj6utGnmdTn7Lckz2YBA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjA1NS80QUJCQzAxQ0Y1 NTUxMUVFQUNGMTIzNEJDNEY5QUUwMi9tWnN2WlRuQ1BxNjBhZVoxT2ZzdHlUUFpn RUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21ac3ZaVG5DUHE2MGFlWjFPZnN0eVRQWmdFQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QjA1NS80QUJCQzAxQ0Y1NTUxMUVFQUNGMTIzNEJDNEY5QUUwMi9tWnN2WlRuQ1Bx NjBhZVoxT2ZzdHlUUFpnRUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA53IhJ+S130D4V85kxMdzL/IAHailm9SRJsoW41ttu1IAYqqQeVDDd abyefBiYqx3M2AIkcld6iFFXsKCgnw3UfWxgzjb3VERqMZh2a0+gbv6HeNlFZJPD CgRyEU4wAC5u3fiyCg2+SzBRIwi03pMayhCk/Ih3aLZCNsC+W9yCFit1ZPDTXjYF QYwqLKaFcv6gyCgMTjr6fsbyUK8r6XM1XmLAZ8jB/RsvsQWprZ1W8aNI0q7u8kAZ tRGizRDrpsrAUAJx51dumNOKwRyG1p2JvTMKOc8eoJ3KGY5QylE3DSAr1QF39Od9 ruMIYE7z/D/fxL4oWGTdk6NB6tcQAMGH -----END CERTIFICATE-----Generated at Tue Nov 4 01:10:06 2025 by rpki-client