$ rpki-client -vvf rpki.apnic.net/member_repository/A91B8C12/3ED0852691A611EDB72C5956C4F9AE02/zI7F8Y4keEmlxwbphTthhkju8qY.mft File: zI7F8Y4keEmlxwbphTthhkju8qY.mft (raw, json) Hash identifier: kEVX7vW4rTkdjAD762fn6+RTvo7afv9FAqusztUgM1g= Subject key identifier: 3C:62:0B:DA:19:E4:C1:EF:E2:CC:FF:C5:75:90:5D:AF:38:E8:AB:AF Authority key identifier: CC:8E:C5:F1:8E:24:78:49:A5:C7:06:E9:85:3B:61:86:48:EE:F2:A6 Certificate issuer: /CN=A91B8C12/serialNumber=CC8EC5F18E247849A5C706E9853B618648EEF2A6 Certificate serial: 0210 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zI7F8Y4keEmlxwbphTthhkju8qY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B8C12/3ED0852691A611EDB72C5956C4F9AE02/zI7F8Y4keEmlxwbphTthhkju8qY.mft Manifest number: 020D Signing time: Wed 05 Nov 2025 02:23:45 +0000 Manifest this update: Wed 05 Nov 2025 02:23:45 +0000 Manifest next update: Wed 12 Nov 2025 02:23:45 +0000 Files and hashes: 1: zI7F8Y4keEmlxwbphTthhkju8qY.crl (hash: BgiQ9rh+MC/KyToqp9edGd0Q+mqssWRKI/24N+H7J6s=) 2: F9141F4891AA11EDBEE1242EC4F9AE02.roa (hash: wW1wDfapN4aqyKsyA7zutue+89v5koktR+64VobzRks=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B8C12/3ED0852691A611EDB72C5956C4F9AE02/zI7F8Y4keEmlxwbphTthhkju8qY.crl rsync://rpki.apnic.net/member_repository/A91B8C12/3ED0852691A611EDB72C5956C4F9AE02/zI7F8Y4keEmlxwbphTthhkju8qY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zI7F8Y4keEmlxwbphTthhkju8qY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 02:23:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 528 (0x210) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B8C12, serialNumber=CC8EC5F18E247849A5C706E9853B618648EEF2A6 Validity Not Before: Nov 5 02:23:45 2025 GMT Not After : Nov 12 02:23:45 2025 GMT Subject: CN=690ab531-1000 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:2f:c1:73:c2:b6:1d:c8:31:13:60:71:bf:cd: 0f:05:7e:0f:36:69:fa:8b:c5:a7:fa:bc:06:d0:c3: 32:28:cd:34:85:ad:58:42:ef:70:c5:05:fc:07:3c: 0c:1b:e9:3f:d2:31:10:5b:af:cb:30:e2:03:1a:47: a6:c1:f7:bf:c9:11:b5:59:53:4d:ed:da:52:d7:62: 42:b2:eb:e0:b3:08:1b:84:5d:29:9a:42:3a:44:3d: eb:29:dc:64:a9:8d:e8:25:5e:b3:6f:3f:c7:d2:ab: 5c:59:41:bb:fb:c5:71:0f:0d:4a:79:be:6c:43:17: ee:8e:0f:4c:49:c3:18:27:8e:41:11:3b:c9:62:4c: 10:0b:c0:5d:53:a4:aa:0f:f4:06:5a:56:ab:de:88: 66:f4:91:22:90:85:db:2a:fb:05:10:fe:80:a2:90: f9:82:74:58:36:b5:b4:33:11:ec:46:cc:18:b6:18: d1:7f:e5:da:c7:ba:19:7d:26:b5:a2:d4:13:f7:6c: 42:d0:91:70:4f:e9:06:53:62:60:f0:65:e3:23:48: cc:71:ee:c4:18:6e:d3:92:35:c9:c5:73:36:da:d5: 67:58:04:b9:59:22:cb:1b:98:36:1d:ab:4e:78:28: 16:a3:53:1e:94:0e:87:dc:15:10:b7:86:55:04:b9: 67:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:62:0B:DA:19:E4:C1:EF:E2:CC:FF:C5:75:90:5D:AF:38:E8:AB:AF X509v3 Authority Key Identifier: keyid:CC:8E:C5:F1:8E:24:78:49:A5:C7:06:E9:85:3B:61:86:48:EE:F2:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B8C12/3ED0852691A611EDB72C5956C4F9AE02/zI7F8Y4keEmlxwbphTthhkju8qY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zI7F8Y4keEmlxwbphTthhkju8qY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B8C12/3ED0852691A611EDB72C5956C4F9AE02/zI7F8Y4keEmlxwbphTthhkju8qY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a1:62:be:c1:9b:cb:54:38:aa:b8:58:a0:24:a3:c3:c0:7d:cc: 45:8d:2e:66:66:45:64:b1:ed:fc:5e:02:fe:44:5d:28:56:72: f3:7a:1c:e6:5f:5d:ae:13:b0:c0:c6:14:2f:65:8c:be:58:fe: 55:00:e0:35:8f:ea:85:23:52:12:1b:85:79:fe:d7:70:f3:a7: a6:14:85:c0:11:45:3c:0f:63:b0:5b:e9:0e:81:63:41:35:ac: 49:a0:44:5d:4e:e9:e6:6d:d1:ad:d7:74:16:83:78:da:08:e5: a3:04:69:8e:9e:72:27:c7:98:ca:68:4e:51:4d:98:d1:d5:d6: 11:d4:99:4a:de:4a:b2:c0:35:a1:6a:07:39:29:30:2f:bd:3e: f9:25:7f:4c:7f:e3:df:35:40:bf:67:52:f4:9c:b5:a7:b7:52: b7:8d:a8:52:c2:03:dd:56:e9:e8:29:33:8a:99:69:8f:58:fd: cb:48:6d:17:75:05:68:51:b3:e0:70:62:ce:ca:e5:bd:7c:97: e8:57:aa:f6:a5:57:1b:53:82:bc:9a:a0:98:ad:62:bf:e2:2d: da:a5:3d:ac:49:89:be:6d:60:e6:33:c5:4e:18:45:b4:f0:b0: fc:7b:78:fd:27:93:1f:72:03:0d:47:38:f4:8f:40:25:18:10: 81:95:e3:0f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAhAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjhDMTIxMTAvBgNVBAUTKENDOEVDNUYxOEUyNDc4NDlBNUM3MDZFOTg1M0I2MTg2 NDhFRUYyQTYwHhcNMjUxMTA1MDIyMzQ1WhcNMjUxMTEyMDIyMzQ1WjAYMRYwFAYD VQQDEw02OTBhYjUzMS0xMDAwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzS/Bc8K2HcgxE2Bxv80PBX4PNmn6i8Wn+rwG0MMyKM00ha1YQu9wxQX8BzwM G+k/0jEQW6/LMOIDGkemwfe/yRG1WVNN7dpS12JCsuvgswgbhF0pmkI6RD3rKdxk qY3oJV6zbz/H0qtcWUG7+8VxDw1Keb5sQxfujg9MScMYJ45BETvJYkwQC8BdU6Sq D/QGWlar3ohm9JEikIXbKvsFEP6AopD5gnRYNrW0MxHsRswYthjRf+Xax7oZfSa1 otQT92xC0JFwT+kGU2Jg8GXjI0jMce7EGG7TkjXJxXM22tVnWAS5WSLLG5g2HatO eCgWo1MelA6H3BUQt4ZVBLlnswIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDxiC9oZ 5MHv4sz/xXWQXa846KuvMB8GA1UdIwQYMBaAFMyOxfGOJHhJpccG6YU7YYZI7vKm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOEMxMi8zRUQwODUyNjkx QTYxMUVEQjcyQzU5NTZDNEY5QUUwMi96STdGOFk0a2VFbWx4d2JwaFR0aGhranU4 cVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pJN0Y4WTRrZUVtbHh3YnBoVHRoaGtqdThxWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OEMxMi8zRUQwODUyNjkxQTYxMUVEQjcyQzU5NTZDNEY5QUUwMi96STdGOFk0a2VF bWx4d2JwaFR0aGhranU4cVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQChYr7Bm8tUOKq4WKAko8PAfcxFjS5mZkVkse38XgL+RF0oVnLzehzm X12uE7DAxhQvZYy+WP5VAOA1j+qFI1ISG4V5/tdw86emFIXAEUU8D2OwW+kOgWNB NaxJoERdTunmbdGt13QWg3jaCOWjBGmOnnInx5jKaE5RTZjR1dYR1JlK3kqywDWh agc5KTAvvT75JX9Mf+PfNUC/Z1L0nLWnt1K3jahSwgPdVunoKTOKmWmPWP3LSG0X dQVoUbPgcGLOyuW9fJfoV6r2pVcbU4K8mqCYrWK/4i3apT2sSYm+bWDmM8VOGEW0 8LD8e3j9J5MfcgMNRzj0j0AlGBCBleMP -----END CERTIFICATE-----Generated at Wed Nov 5 21:12:50 2025 by rpki-client