$ rpki-client -vvf rpki.apnic.net/member_repository/A91F67BB/BDFBF1860E3E11E9836F4014C4F9AE02/zFkhdtiMQj-IWbUYtq0zT_92dAk.mft File: zFkhdtiMQj-IWbUYtq0zT_92dAk.mft (raw, json) Hash identifier: CTGPkpKBNvnGKbfWsqSczxwohgMiAXm99pOnbeLAwEw= Subject key identifier: BA:6D:6F:69:B1:FE:B3:64:D7:83:1A:6B:0D:C7:64:B5:C7:B4:D4:A5 Authority key identifier: CC:59:21:76:D8:8C:42:3F:88:59:B5:18:B6:AD:33:4F:FF:76:74:09 Certificate issuer: /CN=A91F67BB/serialNumber=CC592176D88C423F8859B518B6AD334FFF767409 Certificate serial: 119A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/zFkhdtiMQj-IWbUYtq0zT_92dAk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F67BB/BDFBF1860E3E11E9836F4014C4F9AE02/zFkhdtiMQj-IWbUYtq0zT_92dAk.mft Manifest number: 117B Signing time: Tue 04 Nov 2025 17:18:41 +0000 Manifest this update: Tue 04 Nov 2025 17:18:40 +0000 Manifest next update: Tue 11 Nov 2025 17:18:40 +0000 Files and hashes: 1: zFkhdtiMQj-IWbUYtq0zT_92dAk.crl (hash: apUtwAeiXCjHAMioftfTaXf7n/fdQMb9usJ5OeqJE7w=) 2: 23A0D39C0F1D11E991F4271EC4F9AE02.roa (hash: LI5814/1mo8RhGHDIyDmTnyAaT8jPK8eiZW8nnVoECM=) 3: 5488F6EA0F1A11E9B3F2A713C4F9AE02.roa (hash: KE984DbFRTO0XDJnJvkUh9nTQI9OdADddfHh/b8sXns=) 4: 53BDA2F60F1A11E9B3F2A713C4F9AE02.roa (hash: tG0xAoHX5Jrg4VXIV0PMgN27hGtGNiwPzNpPEMcc5ZU=) 5: 552292460F1A11E9B3F2A713C4F9AE02.roa (hash: NlRxG3SgenSihBb1Uz1mdp6In7PIY3SWzoat7OXr7O8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F67BB/BDFBF1860E3E11E9836F4014C4F9AE02/zFkhdtiMQj-IWbUYtq0zT_92dAk.crl rsync://rpki.apnic.net/member_repository/A91F67BB/BDFBF1860E3E11E9836F4014C4F9AE02/zFkhdtiMQj-IWbUYtq0zT_92dAk.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/zFkhdtiMQj-IWbUYtq0zT_92dAk.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 17:18:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4506 (0x119a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F67BB, serialNumber=CC592176D88C423F8859B518B6AD334FFF767409 Validity Not Before: Nov 4 17:18:40 2025 GMT Not After : Nov 11 17:18:40 2025 GMT Subject: CN=690a3570-4233 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:fb:3e:63:ad:fa:a5:cd:9e:09:0c:8b:43:39: 22:f2:e5:1f:2d:67:ba:0c:98:a3:60:61:c8:9a:66: 1e:55:13:4a:9a:1f:d4:fb:95:2a:26:30:1f:2f:66: c8:5c:47:89:c7:00:aa:5d:e7:4c:cf:da:74:92:8b: ab:c3:44:3c:0e:5a:79:97:ef:1c:0e:cb:1b:9a:0b: 1f:c5:ab:4d:46:d5:39:4f:d7:e8:3e:c3:07:6c:eb: 46:39:ee:53:04:17:48:de:49:35:a1:ff:1e:29:7e: 71:d6:2b:13:ca:f1:3c:83:cf:3f:63:ba:16:d8:40: 36:da:63:4f:6f:47:04:96:95:46:a7:d7:aa:b6:3b: 2c:50:3b:cc:4f:1c:fe:85:78:e1:15:c3:cd:ee:97: 46:a9:af:b1:1a:b2:49:f5:d5:8d:b1:12:46:bd:c6: 9e:62:e6:b3:c7:14:68:ce:5f:32:a2:57:13:b0:5d: a9:2d:e0:c1:67:ce:c5:54:6d:e9:dc:ec:73:12:f6: 3a:69:cb:bd:f2:4d:e9:9e:07:6e:44:22:24:b7:0b: 31:f8:f8:a7:f7:8d:1b:64:b9:fa:47:4b:37:7a:54: 31:f1:28:5c:98:e3:54:ab:1f:ac:cd:f8:3e:eb:e0: bf:c1:6e:45:37:41:7e:cf:90:ec:54:11:5d:b9:24: f0:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:6D:6F:69:B1:FE:B3:64:D7:83:1A:6B:0D:C7:64:B5:C7:B4:D4:A5 X509v3 Authority Key Identifier: keyid:CC:59:21:76:D8:8C:42:3F:88:59:B5:18:B6:AD:33:4F:FF:76:74:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F67BB/BDFBF1860E3E11E9836F4014C4F9AE02/zFkhdtiMQj-IWbUYtq0zT_92dAk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/zFkhdtiMQj-IWbUYtq0zT_92dAk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F67BB/BDFBF1860E3E11E9836F4014C4F9AE02/zFkhdtiMQj-IWbUYtq0zT_92dAk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8a:bb:33:92:db:85:cf:44:78:78:8f:6a:42:19:c9:86:bf:11: d9:9a:01:b2:80:c1:75:99:54:3b:06:d5:fc:9f:99:ce:87:e1: 7e:5f:03:15:18:63:2a:b0:c5:2b:b1:49:b4:be:29:28:42:aa: 20:c3:30:89:fc:84:6a:62:32:f9:fd:15:2e:95:67:3c:e3:1c: df:bc:a0:33:fb:1c:a8:d1:04:e8:26:a3:83:77:b9:bd:33:39: cb:8e:e0:f5:db:22:40:8c:fc:f9:6f:76:a1:fa:6d:3a:89:05: 89:5f:6c:e2:3a:37:96:70:ee:38:22:e7:79:25:35:bb:77:31: cc:c5:c8:3e:8a:2f:43:39:42:01:83:3f:be:6b:85:30:ef:76: 66:44:cd:ce:e7:32:ba:83:fa:6b:e1:8d:f4:f7:34:14:25:dd: 16:57:2a:df:4e:b0:af:dc:34:54:ce:88:c3:1d:da:a8:6c:fe: 8b:30:7b:a1:6e:a8:59:9a:a1:0a:d6:96:48:b5:7a:0f:70:26: 7d:fe:6d:a1:f1:90:85:e5:66:db:ce:0b:e8:10:a2:f6:09:99: 80:68:0f:b3:d5:50:e5:84:f6:eb:c0:f2:86:b5:92:84:23:24: 69:bc:f5:e0:0c:f2:03:16:2d:00:86:27:ff:44:56:da:b8:f3: 8e:cd:7a:ef -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEZowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjY3QkIxMTAvBgNVBAUTKENDNTkyMTc2RDg4QzQyM0Y4ODU5QjUxOEI2QUQzMzRG RkY3Njc0MDkwHhcNMjUxMTA0MTcxODQwWhcNMjUxMTExMTcxODQwWjAYMRYwFAYD VQQDEw02OTBhMzU3MC00MjMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxPs+Y636pc2eCQyLQzki8uUfLWe6DJijYGHImmYeVRNKmh/U+5UqJjAfL2bI XEeJxwCqXedMz9p0kourw0Q8Dlp5l+8cDssbmgsfxatNRtU5T9foPsMHbOtGOe5T BBdI3kk1of8eKX5x1isTyvE8g88/Y7oW2EA22mNPb0cElpVGp9eqtjssUDvMTxz+ hXjhFcPN7pdGqa+xGrJJ9dWNsRJGvcaeYuazxxRozl8yolcTsF2pLeDBZ87FVG3p 3OxzEvY6acu98k3pngduRCIktwsx+Pin940bZLn6R0s3elQx8ShcmONUqx+szfg+ 6+C/wW5FN0F+z5DsVBFduSTwZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLptb2mx /rNk14Maaw3HZLXHtNSlMB8GA1UdIwQYMBaAFMxZIXbYjEI/iFm1GLatM0//dnQJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNjdCQi9CREZCRjE4NjBF M0UxMUU5ODM2RjQwMTRDNEY5QUUwMi96RmtoZHRpTVFqLUlXYlVZdHEwelRfOTJk QWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3pGa2hkdGlNUWotSVdiVVl0cTB6VF85MmRBay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NjdCQi9CREZCRjE4NjBFM0UxMUU5ODM2RjQwMTRDNEY5QUUwMi96RmtoZHRpTVFq LUlXYlVZdHEwelRfOTJkQWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCKuzOS24XPRHh4j2pCGcmGvxHZmgGygMF1mVQ7BtX8n5nOh+F+XwMV GGMqsMUrsUm0vikoQqogwzCJ/IRqYjL5/RUulWc84xzfvKAz+xyo0QToJqODd7m9 MznLjuD12yJAjPz5b3ah+m06iQWJX2ziOjeWcO44Iud5JTW7dzHMxcg+ii9DOUIB gz++a4Uw73ZmRM3O5zK6g/pr4Y309zQUJd0WVyrfTrCv3DRUzojDHdqobP6LMHuh bqhZmqEK1pZItXoPcCZ9/m2h8ZCF5WbbzgvoEKL2CZmAaA+z1VDlhPbrwPKGtZKE IyRpvPXgDPIDFi0Ahif/RFbauPOOzXrv -----END CERTIFICATE-----Generated at Wed Nov 5 20:04:52 2025 by rpki-client