$ rpki-client -vvf rpki.apnic.net/member_repository/A91DE500/49E6FE46C72D11EE9C7C351DC4F9AE02/cz1KHp8pnM0_jnJKteer9Ci7GV0.mft File: cz1KHp8pnM0_jnJKteer9Ci7GV0.mft (raw, json) Hash identifier: nfHttVQC/88cN37myHG6miUzyFYLD93QqipUXW2H2QU= Subject key identifier: 4A:32:FA:84:C3:C1:B5:96:3D:9E:C5:A6:49:41:2D:33:8D:65:90:2E Authority key identifier: 73:3D:4A:1E:9F:29:9C:CD:3F:8E:72:4A:B5:E7:AB:F4:28:BB:19:5D Certificate issuer: /CN=A91DE500/serialNumber=733D4A1E9F299CCD3F8E724AB5E7ABF428BB195D Certificate serial: 0151 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cz1KHp8pnM0_jnJKteer9Ci7GV0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DE500/49E6FE46C72D11EE9C7C351DC4F9AE02/cz1KHp8pnM0_jnJKteer9Ci7GV0.mft Manifest number: 014D Signing time: Mon 03 Nov 2025 04:20:55 +0000 Manifest this update: Mon 03 Nov 2025 04:20:55 +0000 Manifest next update: Mon 10 Nov 2025 04:20:55 +0000 Files and hashes: 1: cz1KHp8pnM0_jnJKteer9Ci7GV0.crl (hash: 3oJIWDmXIDzCMDBmg6Sx1X/MnWrFEwE5IcrSZGi7V9E=) 2: D035B7BE5BC711F097260D5EC4F9AE02.roa (hash: AlpyGioYVyajcJ7eEz9QWJBXQdVphfXg8wGbaRLMJmY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DE500/49E6FE46C72D11EE9C7C351DC4F9AE02/cz1KHp8pnM0_jnJKteer9Ci7GV0.crl rsync://rpki.apnic.net/member_repository/A91DE500/49E6FE46C72D11EE9C7C351DC4F9AE02/cz1KHp8pnM0_jnJKteer9Ci7GV0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cz1KHp8pnM0_jnJKteer9Ci7GV0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 04:20:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 337 (0x151) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DE500, serialNumber=733D4A1E9F299CCD3F8E724AB5E7ABF428BB195D Validity Not Before: Nov 3 04:20:55 2025 GMT Not After : Nov 10 04:20:55 2025 GMT Subject: CN=69082da7-fbf6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fc:73:88:38:52:82:b6:f4:cc:07:15:fb:4c:3e: 02:8b:93:b5:93:db:1b:ad:12:75:22:c4:b7:41:13: 35:db:69:30:ae:ae:b7:d7:2e:90:a9:e9:59:47:79: bb:81:3c:76:aa:bc:4e:2a:51:63:94:62:ae:67:52: 64:fd:b3:4b:85:af:9e:a0:11:79:27:0a:f9:03:aa: b4:df:20:98:b8:02:44:8f:e7:eb:7d:01:4c:71:a5: 18:96:d4:77:52:ad:67:0e:77:62:85:18:e6:74:92: 76:10:f8:a0:5f:b1:3b:94:cd:3d:83:77:60:53:54: 6a:21:7c:f2:fa:e4:d1:72:85:d0:f2:fe:8e:ff:e2: 62:93:15:08:df:ef:46:3d:33:5d:c5:42:2a:16:a5: bf:f6:de:ff:4a:55:ab:2a:42:91:85:4b:df:da:25: 71:3d:ef:9a:02:9d:55:b4:7e:7f:1f:2d:62:69:3c: 42:f0:bc:a0:8c:d8:bc:1b:c4:bc:c5:b9:93:25:03: a8:66:06:c4:bb:b2:d4:fc:cb:b3:4e:44:34:d7:d2: 25:e8:48:38:77:4e:20:36:86:29:4d:03:a6:6b:89: 4b:f1:de:42:24:ee:0c:f9:91:48:59:fd:8a:6d:43: d3:c2:1b:fe:b1:b3:7b:8a:7b:21:ea:13:4e:61:82: 84:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:32:FA:84:C3:C1:B5:96:3D:9E:C5:A6:49:41:2D:33:8D:65:90:2E X509v3 Authority Key Identifier: keyid:73:3D:4A:1E:9F:29:9C:CD:3F:8E:72:4A:B5:E7:AB:F4:28:BB:19:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DE500/49E6FE46C72D11EE9C7C351DC4F9AE02/cz1KHp8pnM0_jnJKteer9Ci7GV0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cz1KHp8pnM0_jnJKteer9Ci7GV0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DE500/49E6FE46C72D11EE9C7C351DC4F9AE02/cz1KHp8pnM0_jnJKteer9Ci7GV0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 75:b0:a1:6f:ba:6b:42:79:fb:f2:1e:8e:56:b1:ca:4d:b8:05: fa:44:6a:6b:aa:e2:0b:ac:3b:18:9d:8a:ef:60:7f:32:e7:5d: e5:2d:7e:f3:3d:3f:69:49:8f:4d:df:9e:69:8a:6f:bf:f6:c0: a4:df:d1:d6:8e:44:a2:02:9c:74:92:52:15:44:01:20:45:c1: 47:e3:d0:ff:84:8e:50:fa:3e:c9:1c:5a:37:f3:de:e2:7f:49: 51:1b:25:35:f9:97:ef:30:20:a5:2a:6f:b2:23:9e:96:e6:81: 61:84:96:bd:4d:2d:fd:25:b7:d8:69:e4:d4:15:8f:ec:87:ef: 1e:9d:c5:ea:85:68:27:42:8e:e5:27:df:5e:d2:7a:63:91:dd: dd:b5:18:ee:4b:ff:cf:0a:39:16:22:5d:46:ae:f3:40:44:81: f3:f3:0b:6c:99:f7:c2:d2:20:ef:5b:24:39:2d:1b:75:9e:7a: a2:ef:8d:b0:f2:b0:4d:40:72:f6:33:17:dd:84:87:c7:1a:f3: 2d:42:a6:14:55:d8:f1:55:62:35:53:b9:4c:91:d2:80:19:32: b4:71:ba:8d:d8:4a:93:99:f5:9b:c9:41:5c:16:37:e8:2c:b0: 19:11:a9:a8:1e:73:af:44:b1:4c:f4:cd:8e:2e:60:60:75:00: 16:7b:12:5f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REU1MDAxMTAvBgNVBAUTKDczM0Q0QTFFOUYyOTlDQ0QzRjhFNzI0QUI1RTdBQkY0 MjhCQjE5NUQwHhcNMjUxMTAzMDQyMDU1WhcNMjUxMTEwMDQyMDU1WjAYMRYwFAYD VQQDEw02OTA4MmRhNy1mYmY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA/HOIOFKCtvTMBxX7TD4Ci5O1k9sbrRJ1IsS3QRM122kwrq631y6QqelZR3m7 gTx2qrxOKlFjlGKuZ1Jk/bNLha+eoBF5Jwr5A6q03yCYuAJEj+frfQFMcaUYltR3 Uq1nDndihRjmdJJ2EPigX7E7lM09g3dgU1RqIXzy+uTRcoXQ8v6O/+JikxUI3+9G PTNdxUIqFqW/9t7/SlWrKkKRhUvf2iVxPe+aAp1VtH5/Hy1iaTxC8LygjNi8G8S8 xbmTJQOoZgbEu7LU/MuzTkQ019Il6Eg4d04gNoYpTQOma4lL8d5CJO4M+ZFIWf2K bUPTwhv+sbN7insh6hNOYYKEPwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEoy+oTD wbWWPZ7FpklBLTONZZAuMB8GA1UdIwQYMBaAFHM9Sh6fKZzNP45ySrXnq/Qouxld MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERTUwMC80OUU2RkU0NkM3 MkQxMUVFOUM3QzM1MURDNEY5QUUwMi9jejFLSHA4cG5NMF9qbkpLdGVlcjlDaTdH VjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2N6MUtIcDhwbk0wX2puSkt0ZWVyOUNpN0dWMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RTUwMC80OUU2RkU0NkM3MkQxMUVFOUM3QzM1MURDNEY5QUUwMi9jejFLSHA4cG5N MF9qbkpLdGVlcjlDaTdHVjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB1sKFvumtCefvyHo5WscpNuAX6RGprquILrDsYnYrvYH8y513lLX7z PT9pSY9N355pim+/9sCk39HWjkSiApx0klIVRAEgRcFH49D/hI5Q+j7JHFo3897i f0lRGyU1+ZfvMCClKm+yI56W5oFhhJa9TS39JbfYaeTUFY/sh+8encXqhWgnQo7l J99e0npjkd3dtRjuS//PCjkWIl1GrvNARIHz8wtsmffC0iDvWyQ5LRt1nnqi742w 8rBNQHL2MxfdhIfHGvMtQqYUVdjxVWI1U7lMkdKAGTK0cbqN2EqTmfWbyUFcFjfo LLAZEamoHnOvRLFM9M2OLmBgdQAWexJf -----END CERTIFICATE-----Generated at Mon Nov 3 18:09:26 2025 by rpki-client