$ rpki-client -vvf rpki.apnic.net/member_repository/A91BF23F/338B2F484A2F11EFAE96C915C4F9AE02/zNz_ISpraZpXC0qdF18WI3GDLKU.mft File: zNz_ISpraZpXC0qdF18WI3GDLKU.mft (raw, json) Hash identifier: qDFWAB5aZ3GA8cTWqyRjXA2pJwCRp5F+mxLXNsYyb4Q= Subject key identifier: CC:F8:D8:03:97:2A:15:87:9D:40:6A:FB:3C:7B:C9:F7:7E:9E:40:5F Authority key identifier: CC:DC:FF:21:2A:6B:69:9A:57:0B:4A:9D:17:5F:16:23:71:83:2C:A5 Certificate issuer: /CN=A91BF23F/serialNumber=CCDCFF212A6B699A570B4A9D175F162371832CA5 Certificate serial: F1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zNz_ISpraZpXC0qdF18WI3GDLKU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BF23F/338B2F484A2F11EFAE96C915C4F9AE02/zNz_ISpraZpXC0qdF18WI3GDLKU.mft Manifest number: EF Signing time: Mon 03 Nov 2025 05:17:32 +0000 Manifest this update: Mon 03 Nov 2025 05:17:32 +0000 Manifest next update: Mon 10 Nov 2025 05:17:32 +0000 Files and hashes: 1: zNz_ISpraZpXC0qdF18WI3GDLKU.crl (hash: 49RpJbMYcMqB2zzCv0iSu2My0OZwanpJE3Mn/zs0Dn8=) 2: 00606C184A3011EFBC542C18C4F9AE02.roa (hash: Y3ZFXjyQq0LuHhQHwB/WF8wGIt775M6n4ea3rF+TXp4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BF23F/338B2F484A2F11EFAE96C915C4F9AE02/zNz_ISpraZpXC0qdF18WI3GDLKU.crl rsync://rpki.apnic.net/member_repository/A91BF23F/338B2F484A2F11EFAE96C915C4F9AE02/zNz_ISpraZpXC0qdF18WI3GDLKU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zNz_ISpraZpXC0qdF18WI3GDLKU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 05:17:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 241 (0xf1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BF23F, serialNumber=CCDCFF212A6B699A570B4A9D175F162371832CA5 Validity Not Before: Nov 3 05:17:32 2025 GMT Not After : Nov 10 05:17:32 2025 GMT Subject: CN=69083aec-d7fd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:07:12:03:c3:aa:c8:52:fd:79:1a:89:ff:67: 97:9d:e1:35:b1:b8:60:94:fd:8a:60:de:7b:d7:ad: 1d:86:0f:24:f5:b8:52:bc:71:48:46:8a:5b:8f:64: 5f:22:28:ab:db:91:71:fa:63:7c:d4:16:bd:98:8a: 0d:7a:99:cc:d0:68:d5:be:07:3c:06:a5:ff:13:af: e1:8a:af:f2:d8:20:96:19:1b:62:6a:6f:93:75:6e: 69:c4:a1:b5:f7:01:57:04:a6:d3:0c:5f:97:ae:35: 91:42:08:c0:65:78:3d:f6:08:5e:85:0f:4e:34:46: 53:90:41:c3:40:67:4b:1e:cf:0b:08:c0:57:c1:df: f5:b3:b8:d1:78:7b:61:c5:32:58:bc:74:45:02:00: b9:fe:33:0e:72:80:1e:b3:59:7d:8c:95:05:68:52: d4:d8:2d:37:77:8b:f9:91:b7:5e:60:bd:1a:7c:c8: be:63:ad:df:84:b0:8f:47:f4:9d:6d:38:65:86:22: 8d:7a:30:1f:69:c5:8d:f6:cc:bf:8b:38:18:93:ce: 82:34:39:03:e1:34:44:51:08:49:b4:d9:c4:4b:b1: 4b:06:ac:45:db:d7:01:38:7d:e5:54:c7:82:a5:c2: ae:52:96:93:b4:61:cb:95:a0:51:54:02:da:48:af: 98:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:F8:D8:03:97:2A:15:87:9D:40:6A:FB:3C:7B:C9:F7:7E:9E:40:5F X509v3 Authority Key Identifier: keyid:CC:DC:FF:21:2A:6B:69:9A:57:0B:4A:9D:17:5F:16:23:71:83:2C:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BF23F/338B2F484A2F11EFAE96C915C4F9AE02/zNz_ISpraZpXC0qdF18WI3GDLKU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zNz_ISpraZpXC0qdF18WI3GDLKU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BF23F/338B2F484A2F11EFAE96C915C4F9AE02/zNz_ISpraZpXC0qdF18WI3GDLKU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 38:d3:6e:12:18:41:b7:40:1e:0e:35:4d:b2:18:1d:52:33:e6: 01:65:3e:20:93:8d:27:e9:d6:0b:22:36:b8:d6:b3:ca:1f:b7: a0:f2:41:7e:30:a9:b7:c0:7e:b2:a3:16:a2:23:71:ab:83:f0: 82:34:76:6d:02:53:85:2e:a9:fa:8d:80:fb:07:50:ac:92:8f: aa:ec:df:c3:73:01:38:2b:02:67:29:cb:03:08:6e:40:21:8b: b0:72:4b:da:a1:6e:cd:2e:9f:7b:3e:a4:67:96:ed:ac:34:87: 3e:98:24:19:b0:85:c8:3e:60:e1:54:b0:12:ff:3e:67:6a:38: 17:2a:af:26:92:15:14:84:eb:1d:67:ed:8b:83:19:2c:92:f3: 7f:ec:97:97:d2:2a:f1:ae:bb:03:61:9e:ce:04:ea:0f:52:54: 8f:a3:80:cf:56:d5:f6:80:a7:65:1e:fc:d1:f9:7d:0d:30:a3: be:80:9d:f1:ee:be:dc:7b:00:0f:4b:f1:42:73:5e:51:35:dc: f3:82:43:3b:b7:65:58:b9:57:e9:15:a3:44:f4:e5:18:04:a9: 92:4c:e7:7d:4a:af:3d:da:bd:8c:56:2a:49:76:24:3a:d4:5b: e4:65:7a:f4:93:93:93:5c:68:99:db:fa:dd:4c:57:f8:b1:e0: 3b:60:2d:fa -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkYyM0YxMTAvBgNVBAUTKENDRENGRjIxMkE2QjY5OUE1NzBCNEE5RDE3NUYxNjIz NzE4MzJDQTUwHhcNMjUxMTAzMDUxNzMyWhcNMjUxMTEwMDUxNzMyWjAYMRYwFAYD VQQDEw02OTA4M2FlYy1kN2ZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwQcSA8OqyFL9eRqJ/2eXneE1sbhglP2KYN57160dhg8k9bhSvHFIRopbj2Rf Iiir25Fx+mN81Ba9mIoNepnM0GjVvgc8BqX/E6/hiq/y2CCWGRtiam+TdW5pxKG1 9wFXBKbTDF+XrjWRQgjAZXg99ghehQ9ONEZTkEHDQGdLHs8LCMBXwd/1s7jReHth xTJYvHRFAgC5/jMOcoAes1l9jJUFaFLU2C03d4v5kbdeYL0afMi+Y63fhLCPR/Sd bThlhiKNejAfacWN9sy/izgYk86CNDkD4TREUQhJtNnES7FLBqxF29cBOH3lVMeC pcKuUpaTtGHLlaBRVALaSK+YUwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMz42AOX KhWHnUBq+zx7yfd+nkBfMB8GA1UdIwQYMBaAFMzc/yEqa2maVwtKnRdfFiNxgyyl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRjIzRi8zMzhCMkY0ODRB MkYxMUVGQUU5NkM5MTVDNEY5QUUwMi96TnpfSVNwcmFacFhDMHFkRjE4V0kzR0RM S1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pOel9JU3ByYVpwWEMwcWRGMThXSTNHRExLVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RjIzRi8zMzhCMkY0ODRBMkYxMUVGQUU5NkM5MTVDNEY5QUUwMi96TnpfSVNwcmFa cFhDMHFkRjE4V0kzR0RMS1UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA4024SGEG3QB4ONU2yGB1SM+YBZT4gk40n6dYLIja41rPKH7eg8kF+ MKm3wH6yoxaiI3Grg/CCNHZtAlOFLqn6jYD7B1Csko+q7N/DcwE4KwJnKcsDCG5A IYuwckvaoW7NLp97PqRnlu2sNIc+mCQZsIXIPmDhVLAS/z5najgXKq8mkhUUhOsd Z+2LgxkskvN/7JeX0irxrrsDYZ7OBOoPUlSPo4DPVtX2gKdlHvzR+X0NMKO+gJ3x 7r7cewAPS/FCc15RNdzzgkM7t2VYuVfpFaNE9OUYBKmSTOd9Sq892r2MVipJdiQ6 1FvkZXr0k5OTXGiZ2/rdTFf4seA7YC36 -----END CERTIFICATE-----Generated at Wed Nov 5 05:05:43 2025 by rpki-client