$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4468/827524E88EE511EEA2EEDD12C4F9AE02/r_zmN5iBZebFG_v-vRKD1REkAZA.mft File: r_zmN5iBZebFG_v-vRKD1REkAZA.mft (raw, json) Hash identifier: f2hB+l5Pcmd1bJ/H0lNPJ42b8MMk/PhiODfqYPmRDTA= Subject key identifier: D7:93:CF:88:B9:3C:60:86:5C:BE:8F:C9:82:94:B8:18:7A:45:27:E3 Authority key identifier: AF:FC:E6:37:98:81:65:E6:C5:1B:FB:FE:BD:12:83:D5:11:24:01:90 Certificate issuer: /CN=A91E4468/serialNumber=AFFCE637988165E6C51BFBFEBD1283D511240190 Certificate serial: 0179 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r_zmN5iBZebFG_v-vRKD1REkAZA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4468/827524E88EE511EEA2EEDD12C4F9AE02/r_zmN5iBZebFG_v-vRKD1REkAZA.mft Manifest number: 0171 Signing time: Wed 05 Nov 2025 04:03:49 +0000 Manifest this update: Wed 05 Nov 2025 04:03:48 +0000 Manifest next update: Wed 12 Nov 2025 04:03:48 +0000 Files and hashes: 1: r_zmN5iBZebFG_v-vRKD1REkAZA.crl (hash: pQgOTiAB9BX8FqjXGTLkUBo9Jxwtl1Zp9a+1uDpVXaw=) 2: C531DD12226F11EF8D24AD63C4F9AE02.roa (hash: a2/vehSWDoff6mLTg7VEADcM0ey8iDfcQQZxJYEqkDM=) 3: C608133C226F11EF8D24AD63C4F9AE02.roa (hash: GATUqbNDhKaVb/i1ZjCIO1rgwevFVCyWk8Ts83izVL4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4468/827524E88EE511EEA2EEDD12C4F9AE02/r_zmN5iBZebFG_v-vRKD1REkAZA.crl rsync://rpki.apnic.net/member_repository/A91E4468/827524E88EE511EEA2EEDD12C4F9AE02/r_zmN5iBZebFG_v-vRKD1REkAZA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r_zmN5iBZebFG_v-vRKD1REkAZA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 04:03:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 377 (0x179) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4468, serialNumber=AFFCE637988165E6C51BFBFEBD1283D511240190 Validity Not Before: Nov 5 04:03:48 2025 GMT Not After : Nov 12 04:03:48 2025 GMT Subject: CN=690acca5-6bfb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:8f:ed:ff:1c:65:63:89:c1:ad:8f:14:a8:33: 45:fc:9e:cd:62:50:25:ab:92:9c:94:e2:49:54:bc: fa:73:b7:35:f1:90:40:4b:6b:bc:b0:5a:55:0c:f4: 99:ef:bb:2e:b9:10:24:2e:a7:ec:21:56:c8:68:78: ef:96:1e:4a:87:f5:e1:5f:fc:b8:f2:79:7e:90:77: d6:68:80:c2:b0:6f:fd:fe:1b:1a:5c:d5:61:d2:83: ce:b7:8f:4d:7d:b6:43:57:aa:fa:f0:11:2c:d7:14: 45:79:0c:6c:c7:6f:11:72:4d:a4:ab:21:18:17:a0: 3e:56:36:6d:e6:2f:02:e3:fb:43:eb:3e:62:63:a5: 84:c1:51:29:32:87:b5:49:b5:36:e5:18:0e:44:06: 75:f1:1f:f9:18:3e:74:88:3d:ec:b9:77:db:f1:e3: 2f:e1:59:5c:f4:80:89:ab:5e:cd:ff:c5:d5:4f:5c: d3:42:9a:37:6e:12:f5:4b:43:95:9c:6f:a2:da:24: 7f:a2:19:f0:c0:7c:02:a5:31:ae:d7:db:5b:1b:b3: 25:07:b4:53:67:8b:6e:af:4b:60:c3:eb:c7:ce:3d: 7a:e7:28:f7:c3:7e:3a:66:b7:5c:56:38:e2:4f:47: fd:a5:61:a8:f9:73:82:73:9f:2d:8a:a3:a9:78:c4: a1:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:93:CF:88:B9:3C:60:86:5C:BE:8F:C9:82:94:B8:18:7A:45:27:E3 X509v3 Authority Key Identifier: keyid:AF:FC:E6:37:98:81:65:E6:C5:1B:FB:FE:BD:12:83:D5:11:24:01:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4468/827524E88EE511EEA2EEDD12C4F9AE02/r_zmN5iBZebFG_v-vRKD1REkAZA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r_zmN5iBZebFG_v-vRKD1REkAZA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4468/827524E88EE511EEA2EEDD12C4F9AE02/r_zmN5iBZebFG_v-vRKD1REkAZA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:ff:31:f1:ba:2e:c7:37:03:6d:6b:a1:93:c1:45:8d:b8:64: 21:a7:24:56:30:52:db:23:96:81:f7:8a:da:e3:03:b8:3b:5a: a2:0b:aa:47:f6:3c:fb:ee:9b:28:cb:e6:5e:ba:34:ae:5b:67: af:c3:09:dc:93:4b:c8:69:74:70:98:de:53:a4:3a:c2:87:da: 21:1c:66:6a:0e:e7:76:d1:75:2a:1f:81:ec:19:e1:88:63:74: 14:9d:20:45:8f:7d:ea:3f:bc:1d:e2:8c:bc:c1:85:06:ff:37: bd:7c:f8:80:af:72:9f:b7:57:bc:45:47:73:40:10:84:ca:4f: c8:5e:89:12:39:0a:6e:3a:58:32:bd:52:d8:20:83:bb:63:a1: a8:cb:6f:85:17:b1:44:c8:ee:3a:d1:fd:16:b7:1a:f8:fa:5b: ca:bd:9f:85:5b:48:3f:f1:ff:05:4b:68:c3:ec:1f:a7:20:8c: a9:56:23:05:53:d8:f0:48:b6:8a:51:4a:ec:24:3f:ad:2b:ef: bf:95:28:af:91:8d:7b:a7:09:0b:d3:18:61:fc:45:60:e4:4b: 54:3f:c3:52:ea:9e:a7:71:e7:e9:11:ca:01:89:30:99:a8:49: 5d:13:b2:3c:a0:a2:f9:32:76:e4:c5:29:f0:11:09:fe:19:97: 45:29:ff:64 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTQ0NjgxMTAvBgNVBAUTKEFGRkNFNjM3OTg4MTY1RTZDNTFCRkJGRUJEMTI4M0Q1 MTEyNDAxOTAwHhcNMjUxMTA1MDQwMzQ4WhcNMjUxMTEyMDQwMzQ4WjAYMRYwFAYD VQQDEw02OTBhY2NhNS02YmZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA34/t/xxlY4nBrY8UqDNF/J7NYlAlq5KclOJJVLz6c7c18ZBAS2u8sFpVDPSZ 77suuRAkLqfsIVbIaHjvlh5Kh/XhX/y48nl+kHfWaIDCsG/9/hsaXNVh0oPOt49N fbZDV6r68BEs1xRFeQxsx28Rck2kqyEYF6A+VjZt5i8C4/tD6z5iY6WEwVEpMoe1 SbU25RgORAZ18R/5GD50iD3suXfb8eMv4Vlc9ICJq17N/8XVT1zTQpo3bhL1S0OV nG+i2iR/ohnwwHwCpTGu19tbG7MlB7RTZ4tur0tgw+vHzj165yj3w346ZrdcVjji T0f9pWGo+XOCc58tiqOpeMShvQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNeTz4i5 PGCGXL6PyYKUuBh6RSfjMB8GA1UdIwQYMBaAFK/85jeYgWXmxRv7/r0Sg9URJAGQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNDQ2OC84Mjc1MjRFODhF RTUxMUVFQTJFRUREMTJDNEY5QUUwMi9yX3ptTjVpQlplYkZHX3YtdlJLRDFSRWtB WkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Jfem1ONWlCWmViRkdfdi12UktEMVJFa0FaQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NDQ2OC84Mjc1MjRFODhFRTUxMUVFQTJFRUREMTJDNEY5QUUwMi9yX3ptTjVpQlpl YkZHX3YtdlJLRDFSRWtBWkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA3/zHxui7HNwNta6GTwUWNuGQhpyRWMFLbI5aB94ra4wO4O1qiC6pH 9jz77psoy+ZeujSuW2evwwnck0vIaXRwmN5TpDrCh9ohHGZqDud20XUqH4HsGeGI Y3QUnSBFj33qP7wd4oy8wYUG/ze9fPiAr3Kft1e8RUdzQBCEyk/IXokSOQpuOlgy vVLYIIO7Y6Goy2+FF7FEyO460f0Wtxr4+lvKvZ+FW0g/8f8FS2jD7B+nIIypViMF U9jwSLaKUUrsJD+tK++/lSivkY17pwkL0xhh/EVg5EtUP8NS6p6ncefpEcoBiTCZ qEldE7I8oKL5MnbkxSnwEQn+GZdFKf9k -----END CERTIFICATE-----Generated at Wed Nov 5 19:28:28 2025 by rpki-client