$ rpki-client -vvf rpki.apnic.net/member_repository/A91BF23F/338B2F484A2F11EFAE96C915C4F9AE02/zNz_ISpraZpXC0qdF18WI3GDLKU.mft File: zNz_ISpraZpXC0qdF18WI3GDLKU.mft (raw, json) Hash identifier: 83yVsz/lqEKqNFBcu1gXVjgNfT0GGNoJn/lPYi7GHhY= Subject key identifier: 6B:F4:98:1E:9E:2F:34:62:2F:74:A0:6E:50:DE:84:E5:72:86:41:2A Authority key identifier: CC:DC:FF:21:2A:6B:69:9A:57:0B:4A:9D:17:5F:16:23:71:83:2C:A5 Certificate issuer: /CN=A91BF23F/serialNumber=CCDCFF212A6B699A570B4A9D175F162371832CA5 Certificate serial: F2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zNz_ISpraZpXC0qdF18WI3GDLKU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BF23F/338B2F484A2F11EFAE96C915C4F9AE02/zNz_ISpraZpXC0qdF18WI3GDLKU.mft Manifest number: F0 Signing time: Wed 05 Nov 2025 05:27:52 +0000 Manifest this update: Wed 05 Nov 2025 05:27:51 +0000 Manifest next update: Wed 12 Nov 2025 05:27:51 +0000 Files and hashes: 1: zNz_ISpraZpXC0qdF18WI3GDLKU.crl (hash: rRNPfxczSk9stWcY43RTv6BqPQ5wN63HZOGe+9tdSiA=) 2: 00606C184A3011EFBC542C18C4F9AE02.roa (hash: Y3ZFXjyQq0LuHhQHwB/WF8wGIt775M6n4ea3rF+TXp4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BF23F/338B2F484A2F11EFAE96C915C4F9AE02/zNz_ISpraZpXC0qdF18WI3GDLKU.crl rsync://rpki.apnic.net/member_repository/A91BF23F/338B2F484A2F11EFAE96C915C4F9AE02/zNz_ISpraZpXC0qdF18WI3GDLKU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zNz_ISpraZpXC0qdF18WI3GDLKU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 05:27:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 242 (0xf2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BF23F, serialNumber=CCDCFF212A6B699A570B4A9D175F162371832CA5 Validity Not Before: Nov 5 05:27:51 2025 GMT Not After : Nov 12 05:27:51 2025 GMT Subject: CN=690ae058-6b8e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:4d:9f:24:c6:2e:98:65:85:bf:88:eb:f0:89: 7d:7c:1c:58:5a:d2:36:b8:11:d7:f3:14:87:6e:56: de:da:32:d9:51:36:7d:7d:25:92:b6:96:2b:44:c0: 33:25:0d:03:22:05:32:8c:68:dd:25:ee:d4:f9:c3: 1e:2a:dc:f2:20:1c:f9:e8:0f:59:72:fb:13:d6:c9: e2:f5:3e:1e:c0:c7:36:7a:01:a4:bf:73:be:2b:4c: fb:93:14:c3:4f:cf:b5:64:13:81:bc:54:9a:cd:fc: be:e0:64:1a:fc:af:d7:1a:f6:c4:1d:af:27:c2:84: d5:9b:78:3a:24:36:a1:b1:a1:b0:b6:5b:95:5e:c2: 3b:fb:6d:5f:70:5c:b2:cc:30:d1:3d:20:66:dd:8f: 8a:69:dd:24:21:73:eb:f8:86:a9:c6:1f:33:4d:f7: ce:4a:b1:11:f4:15:f6:2b:64:2a:1f:6b:26:45:17: 27:55:08:66:de:10:d8:4d:00:7e:18:a9:b7:ab:5e: 87:8b:9e:23:73:cb:c0:2d:2f:99:57:e2:39:1f:02: 0d:c4:e9:ac:3d:bc:7b:d3:74:3e:be:08:aa:8b:76: 9b:b7:52:b6:e2:13:0e:16:4d:6a:a2:c1:32:0e:fd: 2d:80:2f:13:68:72:33:57:0b:04:ec:ab:4b:c2:92: 75:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:F4:98:1E:9E:2F:34:62:2F:74:A0:6E:50:DE:84:E5:72:86:41:2A X509v3 Authority Key Identifier: keyid:CC:DC:FF:21:2A:6B:69:9A:57:0B:4A:9D:17:5F:16:23:71:83:2C:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BF23F/338B2F484A2F11EFAE96C915C4F9AE02/zNz_ISpraZpXC0qdF18WI3GDLKU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zNz_ISpraZpXC0qdF18WI3GDLKU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BF23F/338B2F484A2F11EFAE96C915C4F9AE02/zNz_ISpraZpXC0qdF18WI3GDLKU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 16:7c:b4:1d:65:76:5d:12:5f:f4:da:ce:c0:03:29:b4:62:31: a2:93:7d:ff:13:61:7b:1b:f0:4f:a9:bb:32:f3:d1:95:9c:59: f0:c0:06:65:9d:57:05:be:79:33:6d:c9:60:e5:ab:51:3e:22: 61:96:75:b0:36:b6:3a:7a:c4:6d:ab:1a:30:f7:ff:39:80:cc: 6c:35:21:36:00:08:a5:b4:26:20:26:8c:8c:8a:f8:30:35:7e: a7:2b:d1:c9:f2:01:cc:aa:ac:06:82:3d:c0:40:c5:63:73:bd: 21:14:06:13:cb:39:a9:63:df:50:4a:cd:51:28:69:62:fd:1a: 06:c5:ee:24:53:0b:5a:36:91:9e:1f:22:75:53:56:fb:77:8e: f0:ee:ee:75:ef:f4:a9:18:06:3d:c1:23:7d:0d:fb:8d:fb:4c: 36:ec:4c:dd:78:4e:f8:09:3d:c7:0b:82:7d:67:ad:3e:4b:25: 75:f8:f3:a8:5d:52:44:c0:ea:7c:0c:e7:0d:e9:87:03:fa:0a: de:df:f3:02:f0:b9:4c:1c:ca:ce:28:4a:e6:e4:cb:f2:3a:9b: 05:ff:6d:e5:64:29:97:a2:63:6e:10:65:00:ca:ff:1f:0b:77: d6:3c:a8:9e:26:96:d1:6e:96:f3:4d:ff:b7:e4:ba:11:3d:05: f7:6f:3a:20 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkYyM0YxMTAvBgNVBAUTKENDRENGRjIxMkE2QjY5OUE1NzBCNEE5RDE3NUYxNjIz NzE4MzJDQTUwHhcNMjUxMTA1MDUyNzUxWhcNMjUxMTEyMDUyNzUxWjAYMRYwFAYD VQQDEw02OTBhZTA1OC02YjhlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0k2fJMYumGWFv4jr8Il9fBxYWtI2uBHX8xSHblbe2jLZUTZ9fSWStpYrRMAz JQ0DIgUyjGjdJe7U+cMeKtzyIBz56A9ZcvsT1sni9T4ewMc2egGkv3O+K0z7kxTD T8+1ZBOBvFSazfy+4GQa/K/XGvbEHa8nwoTVm3g6JDahsaGwtluVXsI7+21fcFyy zDDRPSBm3Y+Kad0kIXPr+Iapxh8zTffOSrER9BX2K2QqH2smRRcnVQhm3hDYTQB+ GKm3q16Hi54jc8vALS+ZV+I5HwINxOmsPbx703Q+vgiqi3abt1K24hMOFk1qosEy Dv0tgC8TaHIzVwsE7KtLwpJ1fQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGv0mB6e LzRiL3SgblDehOVyhkEqMB8GA1UdIwQYMBaAFMzc/yEqa2maVwtKnRdfFiNxgyyl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRjIzRi8zMzhCMkY0ODRB MkYxMUVGQUU5NkM5MTVDNEY5QUUwMi96TnpfSVNwcmFacFhDMHFkRjE4V0kzR0RM S1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pOel9JU3ByYVpwWEMwcWRGMThXSTNHRExLVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RjIzRi8zMzhCMkY0ODRBMkYxMUVGQUU5NkM5MTVDNEY5QUUwMi96TnpfSVNwcmFa cFhDMHFkRjE4V0kzR0RMS1UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAWfLQdZXZdEl/02s7AAym0YjGik33/E2F7G/BPqbsy89GVnFnwwAZl nVcFvnkzbclg5atRPiJhlnWwNrY6esRtqxow9/85gMxsNSE2AAiltCYgJoyMivgw NX6nK9HJ8gHMqqwGgj3AQMVjc70hFAYTyzmpY99QSs1RKGli/RoGxe4kUwtaNpGe HyJ1U1b7d47w7u517/SpGAY9wSN9DfuN+0w27EzdeE74CT3HC4J9Z60+SyV1+POo XVJEwOp8DOcN6YcD+gre3/MC8LlMHMrOKErm5MvyOpsF/23lZCmXomNuEGUAyv8f C3fWPKieJpbRbpbzTf+35LoRPQX3bzog -----END CERTIFICATE-----Generated at Wed Nov 5 07:37:31 2025 by rpki-client