$ rpki-client -vvf rpki.apnic.net/member_repository/A91EBFB0/A3AB43B2F87C11E9AA2CF158C4F9AE02/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.mft File: zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.mft (raw, json) Hash identifier: 8ESHkuSqWm4/zsaOcLVLPc2tQ6EwZGYKp/dXJSqNcVY= Subject key identifier: 45:BE:0F:50:E6:C3:F0:D1:E9:F4:A1:1A:8D:01:A5:04:F0:40:C8:5D Authority key identifier: CC:85:09:D3:1F:B6:3A:8D:DD:6B:F2:D3:D8:4C:7B:C0:B2:BA:3F:C0 Certificate issuer: /CN=A91EBFB0/serialNumber=CC8509D31FB63A8DDD6BF2D3D84C7BC0B2BA3FC0 Certificate serial: 0CDA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EBFB0/A3AB43B2F87C11E9AA2CF158C4F9AE02/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.mft Manifest number: 0CD3 Signing time: Sun 02 Nov 2025 18:09:10 +0000 Manifest this update: Sun 02 Nov 2025 18:09:10 +0000 Manifest next update: Sun 09 Nov 2025 18:09:10 +0000 Files and hashes: 1: zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.crl (hash: pUFC4FFVtLr5YkfFCvr8XbPX/3W6jX/8JQT2zIMQlpw=) 2: F690CAECF87D11E9A746D05BC4F9AE02.roa (hash: PKzsRoQOFkH0aPoaShEpuvQ+omyVkcjK/WY8mjX8BEM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EBFB0/A3AB43B2F87C11E9AA2CF158C4F9AE02/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.crl rsync://rpki.apnic.net/member_repository/A91EBFB0/A3AB43B2F87C11E9AA2CF158C4F9AE02/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 18:09:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3290 (0xcda) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EBFB0, serialNumber=CC8509D31FB63A8DDD6BF2D3D84C7BC0B2BA3FC0 Validity Not Before: Nov 2 18:09:10 2025 GMT Not After : Nov 9 18:09:10 2025 GMT Subject: CN=69079e46-9ebb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:e5:8f:33:26:bd:11:59:bc:4b:d3:9b:0f:b7: 45:d3:9a:05:2a:ec:16:78:10:e6:24:52:5c:4b:88: 19:f2:2d:31:04:b9:d7:bf:3e:5d:e3:b0:a2:bd:25: 3e:f3:f2:13:34:96:c1:91:d5:ef:64:bc:60:8a:ce: 91:3c:13:ae:cf:92:ea:2c:0c:c4:53:ca:fc:09:df: 4f:1f:64:58:27:43:58:41:64:e3:9f:30:f9:be:e3: 3e:99:ef:35:0a:78:ee:d0:6b:21:34:c5:0c:17:52: 92:76:c7:8a:9d:b9:df:a1:e9:56:32:50:c0:55:68: 3b:6e:de:41:8c:18:5b:e2:73:c2:2b:de:1e:47:47: a5:50:db:6a:c1:03:1b:49:5a:9d:0b:c8:85:98:11: c1:96:87:67:ec:c3:10:be:f8:1e:c6:82:6d:f5:f4: ec:be:76:f3:72:3c:4b:ff:5e:e7:91:dd:f7:f7:b1: e3:72:54:f8:e7:fe:cf:76:9d:a0:d4:d6:ac:13:75: c9:f7:4f:64:dc:ca:05:76:25:f9:9e:30:dd:84:d8: 85:44:6b:0c:45:a0:b5:38:22:c0:20:21:1a:ed:70: ee:e9:1a:2f:ca:82:ad:68:20:62:a3:23:4c:28:d2: 5f:4d:4f:6d:d9:b9:da:a6:c8:7f:52:e2:24:1d:6c: 0c:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:BE:0F:50:E6:C3:F0:D1:E9:F4:A1:1A:8D:01:A5:04:F0:40:C8:5D X509v3 Authority Key Identifier: keyid:CC:85:09:D3:1F:B6:3A:8D:DD:6B:F2:D3:D8:4C:7B:C0:B2:BA:3F:C0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EBFB0/A3AB43B2F87C11E9AA2CF158C4F9AE02/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EBFB0/A3AB43B2F87C11E9AA2CF158C4F9AE02/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4c:3d:7f:2e:23:15:16:8f:32:5e:1d:83:b6:0a:8b:91:9a:f8: 80:55:9a:6f:8a:ef:6a:1b:db:d1:fb:3f:c0:d8:72:db:bc:5e: 8c:06:e1:1d:9d:22:d2:f7:91:ac:f3:12:45:1c:f3:68:5e:46: fb:3a:65:6b:e3:18:ba:60:ea:9a:06:63:43:2e:d6:ea:83:90: 0f:45:00:1d:cb:fb:49:e6:4e:8b:de:c7:51:74:6e:76:c4:43: 81:9c:81:c0:b4:86:8b:21:45:40:0a:cb:e6:39:fa:cb:fb:b2: f7:d7:0c:b8:43:97:ca:54:a1:ce:5a:4f:ee:ab:90:e4:4a:6f: 69:17:61:63:13:89:08:69:21:34:34:03:72:26:7b:c5:a1:b0: 55:bd:55:e6:97:50:cf:74:09:07:4c:cd:4c:fa:97:f7:f7:a7: eb:86:5f:cf:74:33:fd:8b:56:60:8c:11:d6:30:ab:07:73:dd: ab:bd:2a:92:b4:8c:2d:9d:1a:30:75:ba:55:4d:6a:6e:45:15: 4b:cf:2e:f6:c0:8a:f5:a4:86:e0:86:65:91:2d:86:8b:45:00: 1f:e5:8c:52:53:09:7a:ec:63:a7:ab:e4:9c:4c:0e:cc:fc:e3: 8b:9a:c1:24:f9:0d:02:28:4c:e1:cf:79:81:af:72:db:6b:ee: 89:6b:b5:03 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDNowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUJGQjAxMTAvBgNVBAUTKENDODUwOUQzMUZCNjNBOERERDZCRjJEM0Q4NEM3QkMw QjJCQTNGQzAwHhcNMjUxMTAyMTgwOTEwWhcNMjUxMTA5MTgwOTEwWjAYMRYwFAYD VQQDEw02OTA3OWU0Ni05ZWJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsOWPMya9EVm8S9ObD7dF05oFKuwWeBDmJFJcS4gZ8i0xBLnXvz5d47CivSU+ 8/ITNJbBkdXvZLxgis6RPBOuz5LqLAzEU8r8Cd9PH2RYJ0NYQWTjnzD5vuM+me81 Cnju0GshNMUMF1KSdseKnbnfoelWMlDAVWg7bt5BjBhb4nPCK94eR0elUNtqwQMb SVqdC8iFmBHBlodn7MMQvvgexoJt9fTsvnbzcjxL/17nkd3397HjclT45/7Pdp2g 1NasE3XJ909k3MoFdiX5njDdhNiFRGsMRaC1OCLAICEa7XDu6RovyoKtaCBioyNM KNJfTU9t2bnapsh/UuIkHWwMbwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEW+D1Dm w/DR6fShGo0BpQTwQMhdMB8GA1UdIwQYMBaAFMyFCdMftjqN3Wvy09hMe8Cyuj/A MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQkZCMC9BM0FCNDNCMkY4 N0MxMUU5QUEyQ0YxNThDNEY5QUUwMi96SVVKMHgtMk9vM2RhX0xUMkV4N3dMSzZQ OEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pJVUoweC0yT28zZGFfTFQyRXg3d0xLNlA4QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QkZCMC9BM0FCNDNCMkY4N0MxMUU5QUEyQ0YxNThDNEY5QUUwMi96SVVKMHgtMk9v M2RhX0xUMkV4N3dMSzZQOEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBMPX8uIxUWjzJeHYO2CouRmviAVZpviu9qG9vR+z/A2HLbvF6MBuEd nSLS95Gs8xJFHPNoXkb7OmVr4xi6YOqaBmNDLtbqg5APRQAdy/tJ5k6L3sdRdG52 xEOBnIHAtIaLIUVACsvmOfrL+7L31wy4Q5fKVKHOWk/uq5DkSm9pF2FjE4kIaSE0 NANyJnvFobBVvVXml1DPdAkHTM1M+pf396frhl/PdDP9i1ZgjBHWMKsHc92rvSqS tIwtnRowdbpVTWpuRRVLzy72wIr1pIbghmWRLYaLRQAf5YxSUwl67GOnq+ScTA7M /OOLmsEk+Q0CKEzhz3mBr3Lba+6Ja7UD -----END CERTIFICATE-----Generated at Mon Nov 3 18:06:49 2025 by rpki-client