$ rpki-client -vvf rpki.apnic.net/member_repository/A91B391F/58DB87F2457011EF9C8B8E71C4F9AE02/Zva4RKn4Ca4wexuc7kv9R8PHdxs.mft File: Zva4RKn4Ca4wexuc7kv9R8PHdxs.mft (raw, json) Hash identifier: 3o03hs5YNOwtm7q726HQnDpxfViZUCwxrD+W3xcCkwE= Subject key identifier: E8:C6:30:15:90:AC:58:5F:24:38:49:61:6C:A8:20:1A:78:04:D7:52 Authority key identifier: 66:F6:B8:44:A9:F8:09:AE:30:7B:1B:9C:EE:4B:FD:47:C3:C7:77:1B Certificate issuer: /CN=A91B391F/serialNumber=66F6B844A9F809AE307B1B9CEE4BFD47C3C7771B Certificate serial: F5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Zva4RKn4Ca4wexuc7kv9R8PHdxs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B391F/58DB87F2457011EF9C8B8E71C4F9AE02/Zva4RKn4Ca4wexuc7kv9R8PHdxs.mft Manifest number: F3 Signing time: Mon 03 Nov 2025 05:14:26 +0000 Manifest this update: Mon 03 Nov 2025 05:14:25 +0000 Manifest next update: Mon 10 Nov 2025 05:14:25 +0000 Files and hashes: 1: Zva4RKn4Ca4wexuc7kv9R8PHdxs.crl (hash: 4wRYVw4dDBTjAY2OAT98M+wNdtdpQ+xm8zRYEdV19qg=) 2: 5069A4E034B311F0B93A6228C4F9AE02.roa (hash: Ds5OYRTGE1+nmc/fXAPDPY24vX1TYbGT7zDa8IDd+kc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B391F/58DB87F2457011EF9C8B8E71C4F9AE02/Zva4RKn4Ca4wexuc7kv9R8PHdxs.crl rsync://rpki.apnic.net/member_repository/A91B391F/58DB87F2457011EF9C8B8E71C4F9AE02/Zva4RKn4Ca4wexuc7kv9R8PHdxs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Zva4RKn4Ca4wexuc7kv9R8PHdxs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 05:14:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 245 (0xf5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B391F, serialNumber=66F6B844A9F809AE307B1B9CEE4BFD47C3C7771B Validity Not Before: Nov 3 05:14:25 2025 GMT Not After : Nov 10 05:14:25 2025 GMT Subject: CN=69083a31-4887 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:82:79:a7:ff:27:7a:7a:5e:b2:80:07:80:c1: f5:2f:be:2c:05:43:05:46:e9:2e:b3:f1:a5:19:c6: 19:84:6b:da:3c:58:81:7b:92:fa:87:4d:7f:8a:d5: e1:ba:92:56:7b:d1:16:d0:05:53:25:0a:f7:85:24: dc:1a:73:8a:b8:1b:7c:5c:44:e1:e6:3a:de:72:26: 41:37:f3:0f:78:a5:99:79:fe:b5:6f:73:79:3e:6e: 6e:df:5a:f1:d4:6c:a5:9c:9d:d3:58:39:61:49:32: ed:c8:69:05:08:f2:78:cd:3f:bc:b1:57:5b:34:e1: ac:23:d5:df:57:ab:b5:af:5a:f8:82:6f:b2:d3:d8: bf:26:0a:0c:3c:f8:48:b1:66:6e:18:1f:55:21:7b: ec:4e:32:cd:e9:82:e8:8d:6c:a0:63:30:07:31:44: 27:04:34:85:dd:e5:8b:aa:d5:a5:b2:22:b4:38:65: 91:43:15:19:31:20:49:29:65:37:22:eb:d4:fd:d8: a6:cf:c7:36:ad:35:fb:6b:de:73:49:42:c5:1f:e4: 2a:02:6b:c7:4f:02:d3:be:20:92:e9:bb:10:22:13: d0:39:b9:af:22:e4:c4:f5:f8:83:bd:7f:85:73:cc: be:80:8f:05:e5:31:7a:ce:20:20:32:e4:ad:bf:f3: ff:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:C6:30:15:90:AC:58:5F:24:38:49:61:6C:A8:20:1A:78:04:D7:52 X509v3 Authority Key Identifier: keyid:66:F6:B8:44:A9:F8:09:AE:30:7B:1B:9C:EE:4B:FD:47:C3:C7:77:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B391F/58DB87F2457011EF9C8B8E71C4F9AE02/Zva4RKn4Ca4wexuc7kv9R8PHdxs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Zva4RKn4Ca4wexuc7kv9R8PHdxs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B391F/58DB87F2457011EF9C8B8E71C4F9AE02/Zva4RKn4Ca4wexuc7kv9R8PHdxs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption e0:2c:07:c1:e9:91:f3:2d:5f:41:9b:ff:8e:10:af:7e:3f:83: 7a:8a:bc:fb:e3:24:aa:c7:f3:e2:1f:b5:2c:8e:da:bd:85:47: e3:b4:da:91:51:eb:32:4e:b4:48:ca:20:64:b5:d0:b1:bc:fa: 2e:42:2a:6f:8c:f9:06:1a:49:4d:4d:44:4a:20:2e:7a:9e:4f: e8:03:03:b2:f9:80:81:ca:1b:e5:ac:92:01:67:27:5c:af:48: 95:14:3d:a3:d8:6f:e6:fe:67:58:26:2a:27:f2:53:b1:a4:66: df:4f:31:05:99:48:a8:e7:55:a5:f2:5f:b1:6a:85:01:0f:ca: 00:ec:d5:bf:d9:5c:8d:ea:3c:29:7d:67:e9:68:3d:36:28:fc: f9:6c:5e:77:8f:ac:f2:5b:4d:54:4d:d6:ef:a0:cc:f2:7c:b5: c9:18:5e:43:33:d8:72:41:30:11:c1:66:33:4c:d2:d8:53:0f: 17:22:53:ad:a9:76:82:26:c5:b8:87:0e:fb:cf:18:7e:a9:3e: 9b:44:40:aa:10:6d:9a:28:e1:13:1d:de:2d:89:19:07:23:9c: 28:80:99:ed:a6:96:43:02:31:3f:81:0e:d9:c6:30:b3:e3:d4: d8:6a:22:db:ca:8d:f6:f1:e9:fb:a5:c6:86:10:42:3d:44:13: a9:ac:16:ed -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjM5MUYxMTAvBgNVBAUTKDY2RjZCODQ0QTlGODA5QUUzMDdCMUI5Q0VFNEJGRDQ3 QzNDNzc3MUIwHhcNMjUxMTAzMDUxNDI1WhcNMjUxMTEwMDUxNDI1WjAYMRYwFAYD VQQDEw02OTA4M2EzMS00ODg3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0YJ5p/8nenpesoAHgMH1L74sBUMFRukus/GlGcYZhGvaPFiBe5L6h01/itXh upJWe9EW0AVTJQr3hSTcGnOKuBt8XETh5jreciZBN/MPeKWZef61b3N5Pm5u31rx 1GylnJ3TWDlhSTLtyGkFCPJ4zT+8sVdbNOGsI9XfV6u1r1r4gm+y09i/JgoMPPhI sWZuGB9VIXvsTjLN6YLojWygYzAHMUQnBDSF3eWLqtWlsiK0OGWRQxUZMSBJKWU3 IuvU/dimz8c2rTX7a95zSULFH+QqAmvHTwLTviCS6bsQIhPQObmvIuTE9fiDvX+F c8y+gI8F5TF6ziAgMuStv/P/VQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOjGMBWQ rFhfJDhJYWyoIBp4BNdSMB8GA1UdIwQYMBaAFGb2uESp+AmuMHsbnO5L/UfDx3cb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMzkxRi81OERCODdGMjQ1 NzAxMUVGOUM4QjhFNzFDNEY5QUUwMi9admE0UktuNENhNHdleHVjN2t2OVI4UEhk eHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1p2YTRSS240Q2E0d2V4dWM3a3Y5UjhQSGR4cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MzkxRi81OERCODdGMjQ1NzAxMUVGOUM4QjhFNzFDNEY5QUUwMi9admE0UktuNENh NHdleHVjN2t2OVI4UEhkeHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDgLAfB6ZHzLV9Bm/+OEK9+P4N6irz74ySqx/PiH7Usjtq9hUfjtNqR UesyTrRIyiBktdCxvPouQipvjPkGGklNTURKIC56nk/oAwOy+YCByhvlrJIBZydc r0iVFD2j2G/m/mdYJion8lOxpGbfTzEFmUio51Wl8l+xaoUBD8oA7NW/2VyN6jwp fWfpaD02KPz5bF53j6zyW01UTdbvoMzyfLXJGF5DM9hyQTARwWYzTNLYUw8XIlOt qXaCJsW4hw77zxh+qT6bRECqEG2aKOETHd4tiRkHI5wogJntppZDAjE/gQ7ZxjCz 49TYaiLbyo328en7pcaGEEI9RBOprBbt -----END CERTIFICATE-----Generated at Mon Nov 3 18:14:39 2025 by rpki-client