$ rpki-client -vvf rpki.apnic.net/member_repository/A91C3869/75DA447C1F4D11EA90505762C4F9AE02/ZQWXw3xtTUdvSZVECzYEpnG7_bA.mft File: ZQWXw3xtTUdvSZVECzYEpnG7_bA.mft (raw, json) Hash identifier: JSLo8FEF3rDOWfxn6ONLDWTMBM0oMYkqcVkFfOtd54k= Subject key identifier: A4:D7:BF:35:F2:22:77:FC:12:F4:C2:B1:14:45:5F:74:F4:80:2C:AC Authority key identifier: 65:05:97:C3:7C:6D:4D:47:6F:49:95:44:0B:36:04:A6:71:BB:FD:B0 Certificate issuer: /CN=A91C3869/serialNumber=650597C37C6D4D476F4995440B3604A671BBFDB0 Certificate serial: 0C27 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZQWXw3xtTUdvSZVECzYEpnG7_bA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C3869/75DA447C1F4D11EA90505762C4F9AE02/ZQWXw3xtTUdvSZVECzYEpnG7_bA.mft Manifest number: 0C1A Signing time: Sun 02 Nov 2025 18:45:54 +0000 Manifest this update: Sun 02 Nov 2025 18:45:53 +0000 Manifest next update: Sun 09 Nov 2025 18:45:53 +0000 Files and hashes: 1: ZQWXw3xtTUdvSZVECzYEpnG7_bA.crl (hash: vAwRxQ/vCRdIuihTGHeF8m0y2t6hMmB9LJtirYFQovc=) 2: 9D8E0AF4E18C11ECB1697F55C4F9AE02.roa (hash: AhG5EQmnKsHYz3IRggOMcJqSh+00kQLALDjFL//vrE8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C3869/75DA447C1F4D11EA90505762C4F9AE02/ZQWXw3xtTUdvSZVECzYEpnG7_bA.crl rsync://rpki.apnic.net/member_repository/A91C3869/75DA447C1F4D11EA90505762C4F9AE02/ZQWXw3xtTUdvSZVECzYEpnG7_bA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZQWXw3xtTUdvSZVECzYEpnG7_bA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 18:45:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3111 (0xc27) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C3869, serialNumber=650597C37C6D4D476F4995440B3604A671BBFDB0 Validity Not Before: Nov 2 18:45:53 2025 GMT Not After : Nov 9 18:45:53 2025 GMT Subject: CN=6907a6e2-254d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:48:6a:4d:c7:1c:32:63:de:56:57:67:4b:ec: 80:48:a0:c3:d7:a8:8b:5e:ce:22:9f:0a:f6:2e:1e: f1:f4:a3:3d:23:df:11:17:15:ef:c4:ba:02:eb:d5: 67:c2:fd:96:d5:28:d6:7f:5e:20:8f:4a:2c:ac:40: da:31:f7:76:2a:d2:45:a3:e6:be:6a:f3:ae:eb:92: f8:f6:51:b6:3a:1e:23:8f:f2:4e:9d:b1:e4:c2:9b: 48:e6:f9:04:03:e8:b5:e1:dc:52:d2:df:95:3a:ad: f9:5b:0d:54:3a:0e:54:67:98:7d:bf:b5:52:c4:c5: a5:0b:99:74:7c:c3:5e:ac:5c:51:d3:dd:60:43:83: 75:4a:be:0b:d4:74:90:b6:47:99:88:90:a9:50:74: 8a:da:34:c6:d9:72:0a:d5:00:be:ef:09:49:fc:b4: 15:cf:d6:3f:1d:81:90:94:ce:1d:b9:bd:83:c5:9a: 22:04:c9:cf:34:ce:22:56:95:e9:75:ca:00:a2:f4: 3a:08:bc:21:c3:7f:c7:f4:bd:e3:97:23:a4:5b:7b: 3d:d9:e4:61:30:e6:00:99:cf:b2:df:13:37:f9:c4: be:a4:32:07:26:3d:74:49:94:39:b7:ae:a5:c2:b6: e3:58:ab:63:8c:f2:e9:62:64:1b:fb:59:59:e3:63: 52:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:D7:BF:35:F2:22:77:FC:12:F4:C2:B1:14:45:5F:74:F4:80:2C:AC X509v3 Authority Key Identifier: keyid:65:05:97:C3:7C:6D:4D:47:6F:49:95:44:0B:36:04:A6:71:BB:FD:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C3869/75DA447C1F4D11EA90505762C4F9AE02/ZQWXw3xtTUdvSZVECzYEpnG7_bA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZQWXw3xtTUdvSZVECzYEpnG7_bA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C3869/75DA447C1F4D11EA90505762C4F9AE02/ZQWXw3xtTUdvSZVECzYEpnG7_bA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7a:e0:15:c5:df:14:79:08:28:ed:c3:a9:e7:71:a5:37:30:f3: 16:ae:ee:29:01:93:c8:1f:b3:9e:44:5d:65:31:d9:e5:22:8c: 8c:38:5e:70:83:8d:c6:99:24:20:ca:93:bd:47:42:2b:ef:29: ee:b7:8a:8a:db:77:10:bf:b3:3e:e8:4e:37:3d:bb:35:27:67: a5:c8:73:57:96:1e:e4:9b:31:0c:9f:e2:3e:b5:70:4b:a9:22: 7d:b0:26:ab:16:29:6c:92:1f:9e:21:6d:5e:19:02:f8:70:93: 41:ff:5d:17:5a:78:11:f2:af:c1:8d:41:f1:16:34:5d:23:85: 6a:a5:ed:b6:34:61:17:0c:ed:36:8a:f3:10:bb:ca:30:17:e8: 7f:d8:8b:ee:f8:48:41:6b:51:b6:eb:1e:9c:b6:d1:67:e6:10: 50:e2:88:e6:fb:97:b6:90:4e:1d:ee:3b:07:87:3e:89:60:cb: a1:98:35:9c:a9:b8:96:d6:a7:bf:41:0c:1c:cd:7c:c1:29:e1: 88:0c:53:3e:9f:64:48:14:53:28:9c:b3:13:6e:fa:05:0b:70: 0a:d5:97:eb:93:28:cf:ca:31:3b:df:8a:71:19:68:b9:7d:6f: 8e:5d:71:7b:67:52:4a:11:5d:93:24:80:49:dd:61:d6:57:89: 7c:65:20:3d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDCcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzM4NjkxMTAvBgNVBAUTKDY1MDU5N0MzN0M2RDRENDc2RjQ5OTU0NDBCMzYwNEE2 NzFCQkZEQjAwHhcNMjUxMTAyMTg0NTUzWhcNMjUxMTA5MTg0NTUzWjAYMRYwFAYD VQQDEw02OTA3YTZlMi0yNTRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvEhqTcccMmPeVldnS+yASKDD16iLXs4inwr2Lh7x9KM9I98RFxXvxLoC69Vn wv2W1SjWf14gj0osrEDaMfd2KtJFo+a+avOu65L49lG2Oh4jj/JOnbHkwptI5vkE A+i14dxS0t+VOq35Ww1UOg5UZ5h9v7VSxMWlC5l0fMNerFxR091gQ4N1Sr4L1HSQ tkeZiJCpUHSK2jTG2XIK1QC+7wlJ/LQVz9Y/HYGQlM4dub2DxZoiBMnPNM4iVpXp dcoAovQ6CLwhw3/H9L3jlyOkW3s92eRhMOYAmc+y3xM3+cS+pDIHJj10SZQ5t66l wrbjWKtjjPLpYmQb+1lZ42NSUQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKTXvzXy Inf8EvTCsRRFX3T0gCysMB8GA1UdIwQYMBaAFGUFl8N8bU1Hb0mVRAs2BKZxu/2w MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMzg2OS83NURBNDQ3QzFG NEQxMUVBOTA1MDU3NjJDNEY5QUUwMi9aUVdYdzN4dFRVZHZTWlZFQ3pZRXBuRzdf YkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pRV1h3M3h0VFVkdlNaVkVDellFcG5HN19iQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD Mzg2OS83NURBNDQ3QzFGNEQxMUVBOTA1MDU3NjJDNEY5QUUwMi9aUVdYdzN4dFRV ZHZTWlZFQ3pZRXBuRzdfYkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB64BXF3xR5CCjtw6nncaU3MPMWru4pAZPIH7OeRF1lMdnlIoyMOF5w g43GmSQgypO9R0Ir7ynut4qK23cQv7M+6E43Pbs1J2elyHNXlh7kmzEMn+I+tXBL qSJ9sCarFilskh+eIW1eGQL4cJNB/10XWngR8q/BjUHxFjRdI4Vqpe22NGEXDO02 ivMQu8owF+h/2Ivu+EhBa1G26x6cttFn5hBQ4ojm+5e2kE4d7jsHhz6JYMuhmDWc qbiW1qe/QQwczXzBKeGIDFM+n2RIFFMonLMTbvoFC3AK1ZfrkyjPyjE734pxGWi5 fW+OXXF7Z1JKEV2TJIBJ3WHWV4l8ZSA9 -----END CERTIFICATE-----Generated at Tue Nov 4 01:10:27 2025 by rpki-client