$ rpki-client -vvf rpki.apnic.net/member_repository/A91B74D6/DE22AD240CDF11EF9484E62AC4F9AE02/d0ZKhG930cTTZqMGuAaTn88qYBo.mft File: d0ZKhG930cTTZqMGuAaTn88qYBo.mft (raw, json) Hash identifier: 4PsM6e4tclZmS8QMZ8FyOILT9vYA2VA954eb2XwzTkc= Subject key identifier: 8C:4F:30:83:04:2B:9E:20:D7:99:A2:02:8A:7F:0F:DB:DF:ED:F2:48 Authority key identifier: 77:46:4A:84:6F:77:D1:C4:D3:66:A3:06:B8:06:93:9F:CF:2A:60:1A Certificate issuer: /CN=A91B74D6/serialNumber=77464A846F77D1C4D366A306B806939FCF2A601A Certificate serial: 0124 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d0ZKhG930cTTZqMGuAaTn88qYBo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B74D6/DE22AD240CDF11EF9484E62AC4F9AE02/d0ZKhG930cTTZqMGuAaTn88qYBo.mft Manifest number: 011E Signing time: Wed 05 Nov 2025 04:58:00 +0000 Manifest this update: Wed 05 Nov 2025 04:58:00 +0000 Manifest next update: Wed 12 Nov 2025 04:58:00 +0000 Files and hashes: 1: d0ZKhG930cTTZqMGuAaTn88qYBo.crl (hash: VNYTWmwqU0owJBPmayD46X6oFqWVqUiQlAxU2nFtCfA=) 2: ABD84FB00F8A11EF943CC917C4F9AE02.roa (hash: mAjzpgSn4LjU+hGR/suY8fIT9L0ResXkBxM/GBV6W9Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B74D6/DE22AD240CDF11EF9484E62AC4F9AE02/d0ZKhG930cTTZqMGuAaTn88qYBo.crl rsync://rpki.apnic.net/member_repository/A91B74D6/DE22AD240CDF11EF9484E62AC4F9AE02/d0ZKhG930cTTZqMGuAaTn88qYBo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d0ZKhG930cTTZqMGuAaTn88qYBo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 04:57:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 292 (0x124) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B74D6, serialNumber=77464A846F77D1C4D366A306B806939FCF2A601A Validity Not Before: Nov 5 04:58:00 2025 GMT Not After : Nov 12 04:58:00 2025 GMT Subject: CN=690ad958-4078 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:bf:80:be:bd:64:42:51:f8:c5:60:89:32:4a: 16:6a:67:93:fa:fa:07:31:6c:3e:70:08:bd:37:d0: 4d:d8:07:cd:33:06:25:45:84:17:af:d3:1b:3f:e8: 8a:ba:9f:66:8f:b4:05:3c:c0:0e:b1:10:eb:da:cb: fa:48:a7:48:b6:4a:b8:c0:af:7f:ea:91:e0:dc:21: 25:54:ad:b2:e1:22:01:14:04:80:06:2e:a4:1b:f7: 67:de:85:a1:6a:a9:9f:13:f1:ee:1b:f2:e6:2a:28: 25:08:3a:fa:95:f4:1a:df:1c:ed:f1:c8:de:51:fe: f0:42:d9:27:d4:40:0b:33:60:78:17:41:12:43:b7: 80:6b:3a:fd:b5:95:c1:7a:ee:1a:c0:f2:db:15:b4: 9e:e2:81:62:98:b7:16:bc:cc:ed:36:09:a6:33:e5: bc:27:df:7f:e7:e4:29:09:79:07:c0:53:be:51:28: 3a:90:3f:d6:6b:5d:0e:03:40:91:a8:2e:6d:49:fd: 6a:96:a9:b5:52:5b:04:12:56:63:c4:c2:64:a4:12: 37:5a:92:4b:d4:51:4d:48:dd:10:40:c4:e6:07:ac: be:e0:90:be:c0:3f:94:7b:93:63:cf:14:7f:25:96: 1a:fa:c6:d3:e6:fb:6d:83:74:97:ba:00:38:fb:a5: 42:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:4F:30:83:04:2B:9E:20:D7:99:A2:02:8A:7F:0F:DB:DF:ED:F2:48 X509v3 Authority Key Identifier: keyid:77:46:4A:84:6F:77:D1:C4:D3:66:A3:06:B8:06:93:9F:CF:2A:60:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B74D6/DE22AD240CDF11EF9484E62AC4F9AE02/d0ZKhG930cTTZqMGuAaTn88qYBo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d0ZKhG930cTTZqMGuAaTn88qYBo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B74D6/DE22AD240CDF11EF9484E62AC4F9AE02/d0ZKhG930cTTZqMGuAaTn88qYBo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2b:e8:39:6e:c5:09:fe:09:9d:6a:66:41:fe:88:e3:63:70:54: 28:02:99:4e:e9:1c:a2:73:18:68:cd:ec:5d:6a:62:bc:95:f0: da:df:f8:b1:99:07:cb:5e:1e:c3:4b:b2:54:b1:1e:d4:51:85: f5:96:6b:0b:37:97:0f:2d:b7:c4:0a:4a:c3:3b:10:5d:4f:85: 0e:69:71:5e:7a:7f:60:9d:7e:66:d2:fc:dd:2d:5c:1f:17:48: e1:ca:04:26:17:7a:ea:1b:b2:d2:a9:8d:0e:ea:37:45:ed:7c: 6d:35:cf:2d:32:31:6a:98:71:ed:e3:13:ab:a7:8b:98:ac:5e: c6:c0:50:e4:5f:82:53:9e:bd:5e:b3:8e:60:b1:a7:ef:b6:e5: 05:48:87:b2:d8:ff:b3:9c:f0:e0:5d:8e:82:5c:f6:71:ba:8a: a3:cb:9f:17:b6:b7:cf:df:9e:e8:59:04:71:c1:68:f1:a2:0a: 30:e0:82:69:38:ab:b6:25:1a:84:ce:d7:09:04:0a:ae:98:3c: af:fe:39:84:dd:a4:b4:23:26:5a:09:ee:d5:5d:dc:83:3f:2c: a7:a9:d4:bd:e6:2f:b3:10:9d:23:54:f1:ad:f8:ac:e3:41:95: 2a:e6:e5:d7:69:08:00:27:82:18:92:6e:5f:bc:40:c0:43:2b: d1:a8:28:75 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qjc0RDYxMTAvBgNVBAUTKDc3NDY0QTg0NkY3N0QxQzREMzY2QTMwNkI4MDY5MzlG Q0YyQTYwMUEwHhcNMjUxMTA1MDQ1ODAwWhcNMjUxMTEyMDQ1ODAwWjAYMRYwFAYD VQQDEw02OTBhZDk1OC00MDc4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtL+Avr1kQlH4xWCJMkoWameT+voHMWw+cAi9N9BN2AfNMwYlRYQXr9MbP+iK up9mj7QFPMAOsRDr2sv6SKdItkq4wK9/6pHg3CElVK2y4SIBFASABi6kG/dn3oWh aqmfE/HuG/LmKiglCDr6lfQa3xzt8cjeUf7wQtkn1EALM2B4F0ESQ7eAazr9tZXB eu4awPLbFbSe4oFimLcWvMztNgmmM+W8J99/5+QpCXkHwFO+USg6kD/Wa10OA0CR qC5tSf1qlqm1UlsEElZjxMJkpBI3WpJL1FFNSN0QQMTmB6y+4JC+wD+Ue5NjzxR/ JZYa+sbT5vttg3SXugA4+6VCOwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIxPMIME K54g15miAop/D9vf7fJIMB8GA1UdIwQYMBaAFHdGSoRvd9HE02ajBrgGk5/PKmAa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNzRENi9ERTIyQUQyNDBD REYxMUVGOTQ4NEU2MkFDNEY5QUUwMi9kMFpLaEc5MzBjVFRacU1HdUFhVG44OHFZ Qm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2QwWktoRzkzMGNUVFpxTUd1QWFUbjg4cVlCby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NzRENi9ERTIyQUQyNDBDREYxMUVGOTQ4NEU2MkFDNEY5QUUwMi9kMFpLaEc5MzBj VFRacU1HdUFhVG44OHFZQm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAr6DluxQn+CZ1qZkH+iONjcFQoAplO6RyicxhozexdamK8lfDa3/ix mQfLXh7DS7JUsR7UUYX1lmsLN5cPLbfECkrDOxBdT4UOaXFeen9gnX5m0vzdLVwf F0jhygQmF3rqG7LSqY0O6jdF7XxtNc8tMjFqmHHt4xOrp4uYrF7GwFDkX4JTnr1e s45gsafvtuUFSIey2P+znPDgXY6CXPZxuoqjy58XtrfP357oWQRxwWjxogow4IJp OKu2JRqEztcJBAqumDyv/jmE3aS0IyZaCe7VXdyDPyynqdS95i+zEJ0jVPGt+Kzj QZUq5uXXaQgAJ4IYkm5fvEDAQyvRqCh1 -----END CERTIFICATE-----Generated at Wed Nov 5 13:29:46 2025 by rpki-client