$ rpki-client -vvf rpki.apnic.net/member_repository/A91FA729/28B9D01CE5F811E79A7D8433C4F9AE02/zo4PK6SZxeWHsBXhBE8JjOYsp1g.mft File: zo4PK6SZxeWHsBXhBE8JjOYsp1g.mft (raw, json) Hash identifier: 1gxYBsznlyLuBbRUY7wpUwPTMITzEI6BCSBMRRMamOs= Subject key identifier: 7C:EB:58:D2:D6:86:AA:8B:42:47:36:82:B0:72:FA:CD:80:58:93:59 Authority key identifier: CE:8E:0F:2B:A4:99:C5:E5:87:B0:15:E1:04:4F:09:8C:E6:2C:A7:58 Certificate issuer: /CN=A91FA729/serialNumber=CE8E0F2BA499C5E587B015E1044F098CE62CA758 Certificate serial: 176D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zo4PK6SZxeWHsBXhBE8JjOYsp1g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FA729/28B9D01CE5F811E79A7D8433C4F9AE02/zo4PK6SZxeWHsBXhBE8JjOYsp1g.mft Manifest number: 1763 Signing time: Tue 04 Nov 2025 16:41:49 +0000 Manifest this update: Tue 04 Nov 2025 16:41:48 +0000 Manifest next update: Tue 11 Nov 2025 16:41:48 +0000 Files and hashes: 1: zo4PK6SZxeWHsBXhBE8JjOYsp1g.crl (hash: NBH8qoYWNo2A9yZAWACL5R+bAH3Wy7Ex7TpBhb9d5mY=) 2: 4A81F344C34111EB855D7C84C4F9AE02.roa (hash: uASyVgC1Cwioz2zhPx4P08otp7ZGZ17OkqWd5dxa/vo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FA729/28B9D01CE5F811E79A7D8433C4F9AE02/zo4PK6SZxeWHsBXhBE8JjOYsp1g.crl rsync://rpki.apnic.net/member_repository/A91FA729/28B9D01CE5F811E79A7D8433C4F9AE02/zo4PK6SZxeWHsBXhBE8JjOYsp1g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zo4PK6SZxeWHsBXhBE8JjOYsp1g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 16:41:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5997 (0x176d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA729, serialNumber=CE8E0F2BA499C5E587B015E1044F098CE62CA758 Validity Not Before: Nov 4 16:41:48 2025 GMT Not After : Nov 11 16:41:48 2025 GMT Subject: CN=690a2ccd-c93c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:1b:2a:51:9d:52:f6:e6:0f:e7:ea:d8:5b:73: 90:e8:48:c6:f3:22:4f:91:6b:ea:20:34:b5:44:4f: 7f:16:17:8d:77:d5:41:09:95:f7:cf:de:d2:5f:e6: 22:8e:62:62:9b:ab:78:07:4b:39:1c:e2:27:b9:5b: fa:5c:ab:be:fb:00:30:d7:ab:8d:28:33:14:7a:7f: b3:90:14:90:0d:b8:da:e6:18:67:18:8c:34:3e:ea: 42:72:53:74:dd:5c:f9:62:b8:27:91:8f:2d:13:19: 07:77:91:e3:e0:af:b3:6e:80:2f:02:67:9e:0a:09: 72:d1:ff:2d:5d:07:a3:44:a2:cf:fe:90:3a:a8:ef: 5a:a9:4a:23:96:cf:c3:99:4d:50:d3:46:f0:69:b7: 05:ab:58:0a:c6:f4:7a:da:93:7f:49:09:e7:01:fa: cc:0a:d0:7a:d9:1e:d8:ce:3f:94:d8:dc:d8:94:c5: ba:fd:91:b0:87:2a:4c:1a:9c:71:b6:ae:3d:ba:b3: dc:22:56:be:f9:af:f2:38:2c:33:65:e6:de:85:52: bc:f8:34:95:93:89:44:2c:80:bd:b4:70:a1:1d:47: c7:c8:86:65:53:44:63:1e:55:db:8e:be:2c:b7:a0: 7d:1f:2b:5e:9b:2c:13:5a:e5:35:77:72:20:bb:75: 0e:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:EB:58:D2:D6:86:AA:8B:42:47:36:82:B0:72:FA:CD:80:58:93:59 X509v3 Authority Key Identifier: keyid:CE:8E:0F:2B:A4:99:C5:E5:87:B0:15:E1:04:4F:09:8C:E6:2C:A7:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FA729/28B9D01CE5F811E79A7D8433C4F9AE02/zo4PK6SZxeWHsBXhBE8JjOYsp1g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zo4PK6SZxeWHsBXhBE8JjOYsp1g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FA729/28B9D01CE5F811E79A7D8433C4F9AE02/zo4PK6SZxeWHsBXhBE8JjOYsp1g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 15:fa:f0:01:42:b8:63:b1:59:93:60:a8:cd:b3:49:20:37:55: 16:4c:74:0b:8f:8c:17:b2:ac:9c:9f:7e:ea:9a:5f:83:73:0b: ec:08:f2:5a:7c:5b:38:3d:09:d5:51:94:bc:4f:58:24:66:61: 20:d4:7f:c3:4e:af:09:33:90:ee:c7:d6:42:b0:bc:28:eb:78: 61:e2:fa:fe:b4:8b:22:52:ff:82:3d:ee:9f:1e:94:5e:38:9b: 24:b6:e9:a3:c0:33:d5:6c:93:34:77:4f:4c:41:a5:4e:6b:01: 3f:21:ab:5b:28:e5:a1:de:a6:f5:d4:58:13:3d:fc:96:09:a2: f3:5e:ba:b9:67:6c:e6:ac:91:d5:e8:c7:d7:25:2a:b8:0b:90: e0:7f:85:9f:aa:80:ea:ac:3d:52:07:e4:57:c8:48:fd:11:26: 0b:ef:13:b6:0d:27:e8:3c:27:45:b4:a3:bb:f8:c1:47:93:08: 86:33:4e:17:ae:ac:68:b5:01:e1:d9:f3:31:99:69:05:1f:70: 27:88:34:21:32:c3:04:fc:2c:a6:eb:4b:84:82:b3:8a:6b:2c: ed:1d:d2:7d:f4:7a:a9:c5:17:95:74:39:db:68:ec:d3:d1:17: a4:bb:eb:b1:df:dd:6b:a0:62:f8:4f:cc:3d:32:75:44:65:b2: 8f:72:65:85 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICF20wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkE3MjkxMTAvBgNVBAUTKENFOEUwRjJCQTQ5OUM1RTU4N0IwMTVFMTA0NEYwOThD RTYyQ0E3NTgwHhcNMjUxMTA0MTY0MTQ4WhcNMjUxMTExMTY0MTQ4WjAYMRYwFAYD VQQDEw02OTBhMmNjZC1jOTNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwhsqUZ1S9uYP5+rYW3OQ6EjG8yJPkWvqIDS1RE9/FheNd9VBCZX3z97SX+Yi jmJim6t4B0s5HOInuVv6XKu++wAw16uNKDMUen+zkBSQDbja5hhnGIw0PupCclN0 3Vz5YrgnkY8tExkHd5Hj4K+zboAvAmeeCgly0f8tXQejRKLP/pA6qO9aqUojls/D mU1Q00bwabcFq1gKxvR62pN/SQnnAfrMCtB62R7Yzj+U2NzYlMW6/ZGwhypMGpxx tq49urPcIla++a/yOCwzZebehVK8+DSVk4lELIC9tHChHUfHyIZlU0RjHlXbjr4s t6B9HytemywTWuU1d3Igu3UO0QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHzrWNLW hqqLQkc2grBy+s2AWJNZMB8GA1UdIwQYMBaAFM6ODyukmcXlh7AV4QRPCYzmLKdY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQTcyOS8yOEI5RDAxQ0U1 RjgxMUU3OUE3RDg0MzNDNEY5QUUwMi96bzRQSzZTWnhlV0hzQlhoQkU4SmpPWXNw MWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pvNFBLNlNaeGVXSHNCWGhCRThKak9Zc3AxZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QTcyOS8yOEI5RDAxQ0U1RjgxMUU3OUE3RDg0MzNDNEY5QUUwMi96bzRQSzZTWnhl V0hzQlhoQkU4SmpPWXNwMWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAV+vABQrhjsVmTYKjNs0kgN1UWTHQLj4wXsqycn37qml+DcwvsCPJa fFs4PQnVUZS8T1gkZmEg1H/DTq8JM5Dux9ZCsLwo63hh4vr+tIsiUv+CPe6fHpRe OJsktumjwDPVbJM0d09MQaVOawE/IatbKOWh3qb11FgTPfyWCaLzXrq5Z2zmrJHV 6MfXJSq4C5Dgf4WfqoDqrD1SB+RXyEj9ESYL7xO2DSfoPCdFtKO7+MFHkwiGM04X rqxotQHh2fMxmWkFH3AniDQhMsME/Cym60uEgrOKayztHdJ99HqpxReVdDnbaOzT 0Reku+ux391roGL4T8w9MnVEZbKPcmWF -----END CERTIFICATE-----Generated at Wed Nov 5 05:25:31 2025 by rpki-client