$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA6A1/315B7E08FF7B11EDA62DF10EC4F9AE02/zdfMWZTjQE5sI66UKlkhi1fFwTE.mft File: zdfMWZTjQE5sI66UKlkhi1fFwTE.mft (raw, json) Hash identifier: eThbKi/ZjlqmtdieWgA6K10HQEoD+LfxKBa+SWAFYyw= Subject key identifier: FA:42:9E:2D:D4:59:CB:6D:53:51:C6:12:91:CC:07:9F:BE:B9:37:EA Authority key identifier: CD:D7:CC:59:94:E3:40:4E:6C:23:AE:94:2A:59:21:8B:57:C5:C1:31 Certificate issuer: /CN=A91EA6A1/serialNumber=CDD7CC5994E3404E6C23AE942A59218B57C5C131 Certificate serial: 01D0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zdfMWZTjQE5sI66UKlkhi1fFwTE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA6A1/315B7E08FF7B11EDA62DF10EC4F9AE02/zdfMWZTjQE5sI66UKlkhi1fFwTE.mft Manifest number: 01C7 Signing time: Mon 03 Nov 2025 02:54:04 +0000 Manifest this update: Mon 03 Nov 2025 02:54:03 +0000 Manifest next update: Mon 10 Nov 2025 02:54:03 +0000 Files and hashes: 1: zdfMWZTjQE5sI66UKlkhi1fFwTE.crl (hash: 8vKIf8FuKsCGX5cuNDd0Xh6pvK3Q7dT+48ATxIA7lFM=) 2: 1D45B78003C211EEB2272068C4F9AE02.roa (hash: F77Ohmhr+pSmcNMBmLDootHjfm49x1IrVzvlaFQhQZo=) 3: 1E7F6B9603C211EEB2272068C4F9AE02.roa (hash: T4SsvxhOJ8NmSlYF5F0QyIn0S5EcCqMNYfFfIGZadlw=) 4: 1DDE652A03C211EEB2272068C4F9AE02.roa (hash: 3jNUoCccmrM56z8z19CQSeUZl708g7HitdvgnX+ByM8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA6A1/315B7E08FF7B11EDA62DF10EC4F9AE02/zdfMWZTjQE5sI66UKlkhi1fFwTE.crl rsync://rpki.apnic.net/member_repository/A91EA6A1/315B7E08FF7B11EDA62DF10EC4F9AE02/zdfMWZTjQE5sI66UKlkhi1fFwTE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zdfMWZTjQE5sI66UKlkhi1fFwTE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 02:54:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 464 (0x1d0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA6A1, serialNumber=CDD7CC5994E3404E6C23AE942A59218B57C5C131 Validity Not Before: Nov 3 02:54:03 2025 GMT Not After : Nov 10 02:54:03 2025 GMT Subject: CN=6908194c-ddf1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:27:82:7c:8d:9d:7d:14:74:02:da:4b:2f:65: 75:2f:0d:a1:b6:16:25:c4:3e:50:61:e0:3f:8f:ba: 86:56:a1:eb:c3:d0:55:b7:16:dc:46:a7:1f:8d:33: ff:ee:c7:c2:f8:c7:4a:59:0f:f7:9d:3d:d4:7a:32: b1:a6:12:cb:4d:a1:54:fc:ad:10:0b:9d:34:c1:45: 2a:78:48:70:69:93:5a:44:d9:3c:d6:c1:1b:eb:fb: 3e:01:01:4f:12:de:ab:cd:6f:01:a2:e8:80:6f:8d: f4:01:07:d2:60:a5:b9:ea:d8:82:7a:6a:bf:41:c3: d5:cd:82:e4:c3:60:64:c5:dd:0a:15:e5:8e:34:ec: b2:c1:15:a5:ea:ee:95:03:db:dc:4a:2a:3b:88:a6: 58:14:3b:81:ee:d2:33:04:01:34:8e:99:57:6c:20: f7:8c:a5:8d:7b:5b:7e:82:5f:c4:25:fb:b3:13:e7: 8a:5d:3d:56:c6:6a:c6:33:5f:8a:1a:d6:2f:56:c8: 21:62:e8:d7:46:2f:a6:8c:c1:c2:a7:76:87:49:b9: 50:7d:49:cd:98:0d:02:af:db:22:fd:b8:d9:bd:fc: 23:ee:09:b6:9f:bb:97:5e:2b:bd:72:5b:e7:26:fa: de:b4:44:46:bf:ae:89:67:8a:76:25:9a:da:80:3a: 72:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:42:9E:2D:D4:59:CB:6D:53:51:C6:12:91:CC:07:9F:BE:B9:37:EA X509v3 Authority Key Identifier: keyid:CD:D7:CC:59:94:E3:40:4E:6C:23:AE:94:2A:59:21:8B:57:C5:C1:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA6A1/315B7E08FF7B11EDA62DF10EC4F9AE02/zdfMWZTjQE5sI66UKlkhi1fFwTE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zdfMWZTjQE5sI66UKlkhi1fFwTE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA6A1/315B7E08FF7B11EDA62DF10EC4F9AE02/zdfMWZTjQE5sI66UKlkhi1fFwTE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 33:b0:d1:b7:62:75:37:45:0d:d1:07:25:49:f3:29:be:c6:ab: 9c:4e:b0:71:cd:8d:2e:6a:86:79:bf:c8:8e:34:e3:4b:73:d5: 7e:66:1b:91:54:30:d9:22:2e:06:d9:5d:60:06:af:ed:15:da: b5:bf:db:03:3c:9e:49:6d:66:c3:d2:c9:78:d3:ae:7a:30:0b: ad:5f:31:c5:6f:12:7c:e7:10:7f:16:96:8c:06:13:63:7b:4c: 74:cf:f2:16:75:e0:9a:a1:26:ca:05:93:2e:54:fc:58:94:2f: 83:0a:ef:ad:24:65:85:28:9d:64:ee:37:72:93:18:a5:9a:b8: 3a:20:40:43:52:31:a3:0e:b7:8e:e6:57:e1:f3:17:b1:c6:7a: 1b:c6:f4:87:08:35:65:ae:e0:ee:97:26:66:f7:ee:4d:f0:32: ff:b8:3b:cf:13:0d:7e:27:33:72:83:bd:4d:93:14:9e:c2:12: e0:6a:01:3e:63:dd:02:84:7f:61:c4:8b:b6:b1:da:00:22:6d: 0a:82:80:35:f7:34:34:2e:73:2d:07:f0:68:a3:20:56:eb:08: 0c:7c:0d:f0:20:72:ed:3d:19:2f:8e:4e:40:e2:f3:24:e8:d3: 39:0f:a6:ef:0c:d6:a1:68:f8:03:2f:2b:50:b8:60:1f:b9:54: a1:91:e9:5a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE2QTExMTAvBgNVBAUTKENERDdDQzU5OTRFMzQwNEU2QzIzQUU5NDJBNTkyMThC NTdDNUMxMzEwHhcNMjUxMTAzMDI1NDAzWhcNMjUxMTEwMDI1NDAzWjAYMRYwFAYD VQQDEw02OTA4MTk0Yy1kZGYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArCeCfI2dfRR0AtpLL2V1Lw2hthYlxD5QYeA/j7qGVqHrw9BVtxbcRqcfjTP/ 7sfC+MdKWQ/3nT3UejKxphLLTaFU/K0QC500wUUqeEhwaZNaRNk81sEb6/s+AQFP Et6rzW8BouiAb430AQfSYKW56tiCemq/QcPVzYLkw2Bkxd0KFeWONOyywRWl6u6V A9vcSio7iKZYFDuB7tIzBAE0jplXbCD3jKWNe1t+gl/EJfuzE+eKXT1WxmrGM1+K GtYvVsghYujXRi+mjMHCp3aHSblQfUnNmA0Cr9si/bjZvfwj7gm2n7uXXiu9clvn JvretERGv66JZ4p2JZragDpyzwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPpCni3U WcttU1HGEpHMB5++uTfqMB8GA1UdIwQYMBaAFM3XzFmU40BObCOulCpZIYtXxcEx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTZBMS8zMTVCN0UwOEZG N0IxMUVEQTYyREYxMEVDNEY5QUUwMi96ZGZNV1pUalFFNXNJNjZVS2xraGkxZkZ3 VEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pkZk1XWlRqUUU1c0k2NlVLbGtoaTFmRndURS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTZBMS8zMTVCN0UwOEZGN0IxMUVEQTYyREYxMEVDNEY5QUUwMi96ZGZNV1pUalFF NXNJNjZVS2xraGkxZkZ3VEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAzsNG3YnU3RQ3RByVJ8ym+xqucTrBxzY0uaoZ5v8iONONLc9V+ZhuR VDDZIi4G2V1gBq/tFdq1v9sDPJ5JbWbD0sl40656MAutXzHFbxJ85xB/FpaMBhNj e0x0z/IWdeCaoSbKBZMuVPxYlC+DCu+tJGWFKJ1k7jdykxilmrg6IEBDUjGjDreO 5lfh8xexxnobxvSHCDVlruDulyZm9+5N8DL/uDvPEw1+JzNyg71NkxSewhLgagE+ Y90ChH9hxIu2sdoAIm0KgoA19zQ0LnMtB/BooyBW6wgMfA3wIHLtPRkvjk5A4vMk 6NM5D6bvDNahaPgDLytQuGAfuVShkela -----END CERTIFICATE-----Generated at Mon Nov 3 18:08:20 2025 by rpki-client