$ rpki-client -vvf rpki.apnic.net/member_repository/A91D5230/C50074DAE85211EAAC50B551C4F9AE02/ZPivgeq5CJliFNQ59xFwDp9ItMs.mft File: ZPivgeq5CJliFNQ59xFwDp9ItMs.mft (raw, json) Hash identifier: ciQGO7i6yRBdjq6c1CIVEOBfiheQebMP2Z0YZxOpB94= Subject key identifier: 70:29:53:4B:44:6D:98:65:B2:8E:08:C4:15:6F:4A:BB:4A:CF:23:34 Authority key identifier: 64:F8:AF:81:EA:B9:08:99:62:14:D4:39:F7:11:70:0E:9F:48:B4:CB Certificate issuer: /CN=A91D5230/serialNumber=64F8AF81EAB908996214D439F711700E9F48B4CB Certificate serial: 0871 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZPivgeq5CJliFNQ59xFwDp9ItMs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D5230/C50074DAE85211EAAC50B551C4F9AE02/ZPivgeq5CJliFNQ59xFwDp9ItMs.mft Manifest number: 0857 Signing time: Sun 02 Nov 2025 20:43:55 +0000 Manifest this update: Sun 02 Nov 2025 20:43:54 +0000 Manifest next update: Sun 09 Nov 2025 20:43:54 +0000 Files and hashes: 1: ZPivgeq5CJliFNQ59xFwDp9ItMs.crl (hash: YUQ7K8hFwLk9fmserYsckkz9P40GG71/XAH+qDGYimA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D5230/C50074DAE85211EAAC50B551C4F9AE02/ZPivgeq5CJliFNQ59xFwDp9ItMs.crl rsync://rpki.apnic.net/member_repository/A91D5230/C50074DAE85211EAAC50B551C4F9AE02/ZPivgeq5CJliFNQ59xFwDp9ItMs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZPivgeq5CJliFNQ59xFwDp9ItMs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 20:43:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2161 (0x871) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D5230, serialNumber=64F8AF81EAB908996214D439F711700E9F48B4CB Validity Not Before: Nov 2 20:43:54 2025 GMT Not After : Nov 9 20:43:54 2025 GMT Subject: CN=6907c28b-48bf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:b0:21:20:87:4b:85:d2:0f:ac:aa:38:48:5c: 45:f5:dc:63:ba:23:9d:38:de:08:06:75:b2:8c:97: 9d:20:d4:fa:cb:74:7d:7e:9b:0c:02:c0:ba:26:a5: f0:3d:78:1e:4d:dc:e1:96:b9:59:e9:6d:55:a4:69: 7e:ac:4b:70:00:e5:1e:c4:d3:bc:59:60:05:a5:25: 05:ae:8b:d5:c8:21:0a:de:51:dc:9a:e3:81:d4:1b: af:3d:88:80:81:2c:e5:e2:ae:8c:ab:4b:3e:01:16: d1:a3:7e:12:0e:79:41:d3:bc:62:4e:56:a2:c1:e7: fd:22:2c:b3:7d:4c:ce:ad:9d:29:6b:f3:5d:70:e2: dd:e8:ae:98:92:72:53:f5:bd:81:e9:31:fd:0c:2f: a8:ec:6a:66:f1:0f:c0:a0:28:93:ab:52:88:40:5d: b6:2d:75:76:b6:15:42:33:7d:b4:11:cc:7d:55:d8: 04:69:6f:e3:10:ff:72:2a:f6:9f:bb:13:20:29:d1: 0c:eb:c4:69:23:a7:bd:87:6a:a7:58:d3:fd:91:ec: 29:72:d3:8e:7f:61:40:31:93:9d:2f:1f:2a:f6:63: e6:fa:ad:a5:f3:f5:a4:07:c9:66:e6:91:49:2c:df: 01:e6:7c:8f:d7:90:79:0a:c1:0a:72:76:ee:eb:7a: ec:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:29:53:4B:44:6D:98:65:B2:8E:08:C4:15:6F:4A:BB:4A:CF:23:34 X509v3 Authority Key Identifier: keyid:64:F8:AF:81:EA:B9:08:99:62:14:D4:39:F7:11:70:0E:9F:48:B4:CB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D5230/C50074DAE85211EAAC50B551C4F9AE02/ZPivgeq5CJliFNQ59xFwDp9ItMs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZPivgeq5CJliFNQ59xFwDp9ItMs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D5230/C50074DAE85211EAAC50B551C4F9AE02/ZPivgeq5CJliFNQ59xFwDp9ItMs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 82:93:74:73:41:dc:16:cb:ce:3a:10:b2:5e:71:8a:34:20:d8: b7:b5:77:fc:ce:f0:4d:fb:0f:65:ef:0d:16:66:48:36:d7:c5: 7d:73:1d:3c:35:bf:a6:33:1b:28:eb:6b:a7:3a:07:1a:1d:79: 02:c5:6f:b5:dd:b7:51:a9:b4:c0:b2:98:e0:b9:d3:55:26:24: d9:54:53:e7:0a:95:34:1b:7b:ca:0b:97:ac:a3:6f:ef:b8:88: 2b:ce:2f:65:ae:6f:5e:15:39:e7:89:1a:1b:be:21:82:4d:dd: 33:f7:5b:49:f8:72:14:6e:ec:a5:b8:5d:73:fd:4d:55:6d:e5: 08:f8:67:99:db:b7:53:07:bd:0b:15:87:a8:10:5d:40:8a:d3: b1:95:55:77:02:c7:72:89:09:39:14:3f:ba:3e:7c:fe:c6:0a: f7:ff:e1:8d:c9:d6:50:1d:83:5a:f7:14:4f:fc:70:61:06:2f: 30:92:6c:47:05:bf:01:f2:6b:03:0b:af:ef:c9:42:9b:8b:fb: e7:44:d8:13:4e:9f:aa:ae:d7:f7:ff:2d:0d:86:82:0f:f0:64: 73:4d:db:4c:01:6e:ce:5a:87:12:62:fc:4c:c5:78:db:c5:4f: 69:35:46:74:60:4e:8f:a8:d8:fe:b8:46:37:c5:16:db:76:71: b5:21:2a:06 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCHEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDUyMzAxMTAvBgNVBAUTKDY0RjhBRjgxRUFCOTA4OTk2MjE0RDQzOUY3MTE3MDBF OUY0OEI0Q0IwHhcNMjUxMTAyMjA0MzU0WhcNMjUxMTA5MjA0MzU0WjAYMRYwFAYD VQQDEw02OTA3YzI4Yi00OGJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx7AhIIdLhdIPrKo4SFxF9dxjuiOdON4IBnWyjJedINT6y3R9fpsMAsC6JqXw PXgeTdzhlrlZ6W1VpGl+rEtwAOUexNO8WWAFpSUFrovVyCEK3lHcmuOB1BuvPYiA gSzl4q6Mq0s+ARbRo34SDnlB07xiTlaiwef9IiyzfUzOrZ0pa/NdcOLd6K6YknJT 9b2B6TH9DC+o7Gpm8Q/AoCiTq1KIQF22LXV2thVCM320Ecx9VdgEaW/jEP9yKvaf uxMgKdEM68RpI6e9h2qnWNP9kewpctOOf2FAMZOdLx8q9mPm+q2l8/WkB8lm5pFJ LN8B5nyP15B5CsEKcnbu63rsqwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHApU0tE bZhlso4IxBVvSrtKzyM0MB8GA1UdIwQYMBaAFGT4r4HquQiZYhTUOfcRcA6fSLTL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENTIzMC9DNTAwNzREQUU4 NTIxMUVBQUM1MEI1NTFDNEY5QUUwMi9aUGl2Z2VxNUNKbGlGTlE1OXhGd0RwOUl0 TXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pQaXZnZXE1Q0psaUZOUTU5eEZ3RHA5SXRNcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NTIzMC9DNTAwNzREQUU4NTIxMUVBQUM1MEI1NTFDNEY5QUUwMi9aUGl2Z2VxNUNK bGlGTlE1OXhGd0RwOUl0TXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCCk3RzQdwWy846ELJecYo0INi3tXf8zvBN+w9l7w0WZkg218V9cx08 Nb+mMxso62unOgcaHXkCxW+13bdRqbTAspjgudNVJiTZVFPnCpU0G3vKC5eso2/v uIgrzi9lrm9eFTnniRobviGCTd0z91tJ+HIUbuyluF1z/U1VbeUI+GeZ27dTB70L FYeoEF1AitOxlVV3AsdyiQk5FD+6Pnz+xgr3/+GNydZQHYNa9xRP/HBhBi8wkmxH Bb8B8msDC6/vyUKbi/vnRNgTTp+qrtf3/y0NhoIP8GRzTdtMAW7OWocSYvxMxXjb xU9pNUZ0YE6PqNj+uEY3xRbbdnG1ISoG -----END CERTIFICATE-----Generated at Mon Nov 3 18:17:10 2025 by rpki-client