$ rpki-client -vvf rpki.apnic.net/member_repository/A91D493B/DBAD37A0CAAE11EC8241280DC4F9AE02/zIO7bQqhd53qFp7bpKQCKN4hvXs.mft File: zIO7bQqhd53qFp7bpKQCKN4hvXs.mft (raw, json) Hash identifier: ygmVujIiMXQlyoYYxnj1YIBQI8zmUlAjGJlRm39kv1Y= Subject key identifier: 1A:83:5F:44:E1:A5:D8:C8:73:45:63:74:B1:0E:82:52:28:4A:8B:F5 Authority key identifier: CC:83:BB:6D:0A:A1:77:9D:EA:16:9E:DB:A4:A4:02:28:DE:21:BD:7B Certificate issuer: /CN=A91D493B/serialNumber=CC83BB6D0AA1779DEA169EDBA4A40228DE21BD7B Certificate serial: 0378 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zIO7bQqhd53qFp7bpKQCKN4hvXs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D493B/DBAD37A0CAAE11EC8241280DC4F9AE02/zIO7bQqhd53qFp7bpKQCKN4hvXs.mft Manifest number: 0373 Signing time: Mon 03 Nov 2025 00:50:13 +0000 Manifest this update: Mon 03 Nov 2025 00:50:12 +0000 Manifest next update: Mon 10 Nov 2025 00:50:12 +0000 Files and hashes: 1: zIO7bQqhd53qFp7bpKQCKN4hvXs.crl (hash: kojmkf4yJ32tFMZTT+u+n+zn8/+6pz5eRkqbWv98tgs=) 2: 684DDD32CAB311ECBBCE9843C4F9AE02.roa (hash: qH/kmALWQxd9w+o7ml/PHWheO95UYxgo26aceJX0/p4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D493B/DBAD37A0CAAE11EC8241280DC4F9AE02/zIO7bQqhd53qFp7bpKQCKN4hvXs.crl rsync://rpki.apnic.net/member_repository/A91D493B/DBAD37A0CAAE11EC8241280DC4F9AE02/zIO7bQqhd53qFp7bpKQCKN4hvXs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zIO7bQqhd53qFp7bpKQCKN4hvXs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 00:50:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 888 (0x378) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D493B, serialNumber=CC83BB6D0AA1779DEA169EDBA4A40228DE21BD7B Validity Not Before: Nov 3 00:50:12 2025 GMT Not After : Nov 10 00:50:12 2025 GMT Subject: CN=6907fc44-31ed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:b0:fe:96:f0:a2:5b:b2:57:d5:5d:fa:11:55: 13:a5:07:28:d0:9d:23:14:f7:26:ed:80:1e:31:0d: 23:c0:17:89:46:a2:b8:57:24:9e:0a:67:a9:53:6a: f6:91:a7:95:23:8a:16:2f:91:c6:5b:c9:9f:9f:51: c3:60:d1:2d:70:48:05:5e:7b:34:ff:98:0d:16:4c: 8c:2c:33:33:a3:0c:da:c2:89:2e:67:05:7c:44:e2: ee:c2:96:af:88:4d:4e:15:57:84:e6:52:2f:67:e7: 12:29:a1:93:ee:28:0b:c1:10:44:b8:72:c4:cf:76: f6:4f:d3:5d:b2:2a:6d:e4:6a:52:ae:32:9b:f2:f5: 55:e7:a3:9d:85:6f:8e:6c:3b:a6:7e:cf:8b:bf:9d: 5d:00:5d:a2:b9:23:e1:d1:0a:11:9a:07:36:c3:6a: 96:08:74:b2:fa:72:80:19:a8:54:83:62:74:c0:75: 70:87:5c:48:87:36:ec:79:4a:ad:e6:7b:35:45:2c: 2c:a0:7e:34:7b:ae:7d:68:89:64:57:fb:42:f3:33: 4b:dd:64:47:6f:e3:74:71:2a:e6:63:60:5d:5a:de: 3d:16:e3:cf:98:7c:74:98:f8:22:39:5c:bb:3f:70: a9:f6:49:93:d6:66:2e:ef:50:1a:e9:9a:99:12:b3: 16:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:83:5F:44:E1:A5:D8:C8:73:45:63:74:B1:0E:82:52:28:4A:8B:F5 X509v3 Authority Key Identifier: keyid:CC:83:BB:6D:0A:A1:77:9D:EA:16:9E:DB:A4:A4:02:28:DE:21:BD:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D493B/DBAD37A0CAAE11EC8241280DC4F9AE02/zIO7bQqhd53qFp7bpKQCKN4hvXs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zIO7bQqhd53qFp7bpKQCKN4hvXs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D493B/DBAD37A0CAAE11EC8241280DC4F9AE02/zIO7bQqhd53qFp7bpKQCKN4hvXs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 65:97:a1:55:f2:0e:3c:f8:f9:c7:19:20:b2:da:3a:9f:60:0a: 7e:e7:08:0e:39:d9:2f:4f:e4:30:88:e7:f6:5c:ff:5f:bf:42: bb:19:2a:dc:e1:4d:3b:67:80:be:40:16:69:27:66:73:8f:29: 40:c5:d4:31:24:a9:c6:df:13:d7:d0:fd:b2:a3:b0:c5:78:b8: b3:0a:9d:55:47:a1:1c:7b:7f:92:78:14:58:18:22:6e:2d:ce: 46:62:79:06:fb:e6:87:e9:69:d9:45:98:27:a2:ed:72:94:e0: e7:81:89:03:b2:89:d1:9e:9b:24:0c:e8:53:a5:30:cc:12:f3: a9:22:02:49:e2:ea:01:04:c5:66:9a:24:0e:55:40:42:9b:2a: fc:97:3e:a0:e8:3e:c3:0f:a2:fa:44:10:e8:e1:f1:3b:c3:24: 56:ba:c5:da:36:93:27:21:9a:19:6e:07:0b:30:bf:57:21:56: 65:fa:0f:0a:61:7d:b4:e3:26:c1:20:4d:5c:33:7f:7f:43:2e: 88:a2:1b:f0:73:27:1c:50:f5:0c:e3:22:4d:3c:e0:33:79:3c: 20:a6:72:fa:b1:f7:cb:0f:8b:32:61:07:c7:cf:ab:e7:24:df: 8d:1c:72:c4:b0:e2:4c:29:86:ef:ec:4a:35:c9:59:47:c1:df: 3a:cb:24:14 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA3gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDQ5M0IxMTAvBgNVBAUTKENDODNCQjZEMEFBMTc3OURFQTE2OUVEQkE0QTQwMjI4 REUyMUJEN0IwHhcNMjUxMTAzMDA1MDEyWhcNMjUxMTEwMDA1MDEyWjAYMRYwFAYD VQQDEw02OTA3ZmM0NC0zMWVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApbD+lvCiW7JX1V36EVUTpQco0J0jFPcm7YAeMQ0jwBeJRqK4VySeCmepU2r2 kaeVI4oWL5HGW8mfn1HDYNEtcEgFXns0/5gNFkyMLDMzowzawokuZwV8ROLuwpav iE1OFVeE5lIvZ+cSKaGT7igLwRBEuHLEz3b2T9Ndsipt5GpSrjKb8vVV56OdhW+O bDumfs+Lv51dAF2iuSPh0QoRmgc2w2qWCHSy+nKAGahUg2J0wHVwh1xIhzbseUqt 5ns1RSwsoH40e659aIlkV/tC8zNL3WRHb+N0cSrmY2BdWt49FuPPmHx0mPgiOVy7 P3Cp9kmT1mYu71Aa6ZqZErMWNQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBqDX0Th pdjIc0VjdLEOglIoSov1MB8GA1UdIwQYMBaAFMyDu20KoXed6hae26SkAijeIb17 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENDkzQi9EQkFEMzdBMENB QUUxMUVDODI0MTI4MERDNEY5QUUwMi96SU83YlFxaGQ1M3FGcDdicEtRQ0tONGh2 WHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pJTzdiUXFoZDUzcUZwN2JwS1FDS040aHZYcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NDkzQi9EQkFEMzdBMENBQUUxMUVDODI0MTI4MERDNEY5QUUwMi96SU83YlFxaGQ1 M3FGcDdicEtRQ0tONGh2WHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBll6FV8g48+PnHGSCy2jqfYAp+5wgOOdkvT+QwiOf2XP9fv0K7GSrc 4U07Z4C+QBZpJ2ZzjylAxdQxJKnG3xPX0P2yo7DFeLizCp1VR6Ece3+SeBRYGCJu Lc5GYnkG++aH6WnZRZgnou1ylODngYkDsonRnpskDOhTpTDMEvOpIgJJ4uoBBMVm miQOVUBCmyr8lz6g6D7DD6L6RBDo4fE7wyRWusXaNpMnIZoZbgcLML9XIVZl+g8K YX204ybBIE1cM39/Qy6IohvwcyccUPUM4yJNPOAzeTwgpnL6sffLD4syYQfHz6vn JN+NHHLEsOJMKYbv7Eo1yVlHwd86yyQU -----END CERTIFICATE-----Generated at Mon Nov 3 18:13:36 2025 by rpki-client