$ rpki-client -vvf rpki.apnic.net/member_repository/A91899BB/88C2F15E885811EB96CE6817C4F9AE02/ZfYWHHNtGpxBkf38x6T4JM4RIy0.mft File: ZfYWHHNtGpxBkf38x6T4JM4RIy0.mft (raw, json) Hash identifier: GZ10jMhqCmk89MRMr7OkO0xWii06icp1sVr9sBI76dE= Subject key identifier: 27:9E:2B:71:ED:61:14:5B:0E:A5:7B:22:2A:FF:25:48:97:CF:33:68 Authority key identifier: 65:F6:16:1C:73:6D:1A:9C:41:91:FD:FC:C7:A4:F8:24:CE:11:23:2D Certificate issuer: /CN=A91899BB/serialNumber=65F6161C736D1A9C4191FDFCC7A4F824CE11232D Certificate serial: 069B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZfYWHHNtGpxBkf38x6T4JM4RIy0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91899BB/88C2F15E885811EB96CE6817C4F9AE02/ZfYWHHNtGpxBkf38x6T4JM4RIy0.mft Manifest number: 0698 Signing time: Sat 18 Oct 2025 23:49:43 +0000 Manifest this update: Sat 18 Oct 2025 23:49:43 +0000 Manifest next update: Sat 25 Oct 2025 23:49:43 +0000 Files and hashes: 1: ZfYWHHNtGpxBkf38x6T4JM4RIy0.crl (hash: u68U/oPNADcb3PCnO9temQiZ8TJzeR7OMpfOF69XqEM=) 2: 54CB555C57A311F09664E82DC4F9AE02.roa (hash: +36ZiREOaXQ0L85WY9dsXKbxSFUahU97iWT+nNCGEQQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91899BB/88C2F15E885811EB96CE6817C4F9AE02/ZfYWHHNtGpxBkf38x6T4JM4RIy0.crl rsync://rpki.apnic.net/member_repository/A91899BB/88C2F15E885811EB96CE6817C4F9AE02/ZfYWHHNtGpxBkf38x6T4JM4RIy0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZfYWHHNtGpxBkf38x6T4JM4RIy0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 23:49:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1691 (0x69b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91899BB, serialNumber=65F6161C736D1A9C4191FDFCC7A4F824CE11232D Validity Not Before: Oct 18 23:49:43 2025 GMT Not After : Oct 25 23:49:43 2025 GMT Subject: CN=68f42797-1c24 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:9b:bf:61:bf:88:9a:f1:52:11:06:ee:f3:f1: b1:6d:52:03:18:fd:0f:35:6a:c3:13:5c:31:fd:41: 8d:ca:4c:cf:af:c1:5b:0d:26:bc:96:ba:3d:13:08: 69:32:3d:4b:74:a5:19:d6:05:3c:6b:47:5f:ec:b7: c5:96:24:bf:e8:b3:14:d5:e2:d4:cd:24:9d:a3:ad: f9:a2:f5:8b:44:cf:ee:1c:e6:81:a9:79:92:ab:c0: a2:81:aa:a9:af:9a:49:1c:81:62:a8:3f:b8:4f:b4: 88:1b:fb:58:06:f5:aa:68:7d:9a:f3:7e:85:cb:2e: d8:44:43:33:0f:49:18:45:5f:b7:b4:ea:e9:e9:f4: dc:25:4e:64:0c:6d:d8:cd:01:61:6b:80:6a:71:f7: dc:f8:83:63:5a:2c:cc:8a:df:e1:6c:58:dc:6c:ee: 04:1c:68:29:cb:a9:c2:75:ce:04:1c:70:be:19:b6: cd:81:e1:65:a8:44:11:8e:a8:20:2b:2b:59:a6:8d: d8:32:f9:e8:51:f9:8f:1b:b3:29:c0:97:31:ec:67: e3:95:74:29:0f:05:c7:0b:7d:93:3d:e1:9c:3e:84: 06:c5:92:5b:a0:bd:9a:3b:9c:82:ac:e4:5f:05:1e: f2:c1:e6:fc:c4:42:c4:d2:6e:5c:fe:9c:28:bd:61: 8b:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:9E:2B:71:ED:61:14:5B:0E:A5:7B:22:2A:FF:25:48:97:CF:33:68 X509v3 Authority Key Identifier: keyid:65:F6:16:1C:73:6D:1A:9C:41:91:FD:FC:C7:A4:F8:24:CE:11:23:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91899BB/88C2F15E885811EB96CE6817C4F9AE02/ZfYWHHNtGpxBkf38x6T4JM4RIy0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZfYWHHNtGpxBkf38x6T4JM4RIy0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91899BB/88C2F15E885811EB96CE6817C4F9AE02/ZfYWHHNtGpxBkf38x6T4JM4RIy0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2a:e9:7d:37:73:c4:de:b4:21:8d:d6:13:9a:dc:e5:5f:9f:46: 1c:9c:ce:3e:15:52:a1:b0:9c:4e:9b:72:18:5a:cc:f9:58:ed: 1d:8f:78:62:62:f0:30:5f:44:cc:20:96:9b:61:1a:01:26:da: 32:0b:41:97:08:d3:f3:df:af:f8:b5:da:cb:75:61:29:d1:e9: d5:f7:ca:93:1e:63:e5:77:b4:9b:cc:d8:bd:ae:f0:27:41:3c: 31:ac:74:89:c6:17:b4:21:d0:54:1c:da:6a:67:5f:36:f6:15: d8:11:93:4b:80:a5:e5:d5:cf:74:95:26:38:32:5d:b8:97:b7: 82:41:77:e2:a1:4f:93:84:5c:82:2d:6d:d6:0c:8e:f9:83:01: 2f:b3:18:62:38:ee:8e:08:ab:0f:dd:bb:80:38:c0:10:db:44: d4:05:50:a8:9a:a0:04:af:0c:f6:59:40:46:55:30:c1:34:bb: 74:ce:77:c5:e8:34:80:a8:ae:18:73:dc:92:1b:1d:83:f5:30: b5:f3:3f:85:81:43:2c:38:d6:b2:2c:87:65:1a:46:c2:83:d6: 76:4f:41:88:68:c2:ca:1e:07:03:8d:00:34:0f:98:a8:81:2e: 02:3f:2f:9e:4e:b7:5f:46:da:7c:b3:6c:8b:3a:53:e8:5f:5a: 1f:3f:ed:0c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBpswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODk5QkIxMTAvBgNVBAUTKDY1RjYxNjFDNzM2RDFBOUM0MTkxRkRGQ0M3QTRGODI0 Q0UxMTIzMkQwHhcNMjUxMDE4MjM0OTQzWhcNMjUxMDI1MjM0OTQzWjAYMRYwFAYD VQQDEw02OGY0Mjc5Ny0xYzI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy5u/Yb+ImvFSEQbu8/GxbVIDGP0PNWrDE1wx/UGNykzPr8FbDSa8lro9Ewhp Mj1LdKUZ1gU8a0df7LfFliS/6LMU1eLUzSSdo635ovWLRM/uHOaBqXmSq8Cigaqp r5pJHIFiqD+4T7SIG/tYBvWqaH2a836Fyy7YREMzD0kYRV+3tOrp6fTcJU5kDG3Y zQFha4Bqcffc+INjWizMit/hbFjcbO4EHGgpy6nCdc4EHHC+GbbNgeFlqEQRjqgg KytZpo3YMvnoUfmPG7MpwJcx7GfjlXQpDwXHC32TPeGcPoQGxZJboL2aO5yCrORf BR7yweb8xELE0m5c/pwovWGL4wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCeeK3Ht YRRbDqV7Iir/JUiXzzNoMB8GA1UdIwQYMBaAFGX2FhxzbRqcQZH9/Mek+CTOESMt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4OTlCQi84OEMyRjE1RTg4 NTgxMUVCOTZDRTY4MTdDNEY5QUUwMi9aZllXSEhOdEdweEJrZjM4eDZUNEpNNFJJ eTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pmWVdISE50R3B4QmtmMzh4NlQ0Sk00Ukl5MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 OTlCQi84OEMyRjE1RTg4NTgxMUVCOTZDRTY4MTdDNEY5QUUwMi9aZllXSEhOdEdw eEJrZjM4eDZUNEpNNFJJeTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAq6X03c8TetCGN1hOa3OVfn0YcnM4+FVKhsJxOm3IYWsz5WO0dj3hi YvAwX0TMIJabYRoBJtoyC0GXCNPz36/4tdrLdWEp0enV98qTHmPld7SbzNi9rvAn QTwxrHSJxhe0IdBUHNpqZ1829hXYEZNLgKXl1c90lSY4Ml24l7eCQXfioU+ThFyC LW3WDI75gwEvsxhiOO6OCKsP3buAOMAQ20TUBVComqAErwz2WUBGVTDBNLt0znfF 6DSAqK4Yc9ySGx2D9TC18z+FgUMsONayLIdlGkbCg9Z2T0GIaMLKHgcDjQA0D5io gS4CPy+eTrdfRtp8s2yLOlPoX1ofP+0M -----END CERTIFICATE-----Generated at Mon Oct 20 05:40:49 2025 by rpki-client