$ rpki-client -vvf rpki.apnic.net/member_repository/A91971CB/010EB288808911EB8B505F20C4F9AE02/MZsxRPBqjysw1BIHH-EhB3T-huc.mft File: MZsxRPBqjysw1BIHH-EhB3T-huc.mft (raw, json) Hash identifier: nsxBb11sRRXUwn8nVHlCkzX+XnSUalMeLQoREy7J1Rc= Subject key identifier: 33:01:D3:D7:B4:DC:E3:93:A4:07:DA:1F:56:92:DC:46:DE:21:DD:40 Authority key identifier: 31:9B:31:44:F0:6A:8F:2B:30:D4:12:07:1F:E1:21:07:74:FE:86:E7 Certificate issuer: /CN=A91971CB/serialNumber=319B3144F06A8F2B30D412071FE1210774FE86E7 Certificate serial: 06C6 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/MZsxRPBqjysw1BIHH-EhB3T-huc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91971CB/010EB288808911EB8B505F20C4F9AE02/MZsxRPBqjysw1BIHH-EhB3T-huc.mft Manifest number: 06BF Signing time: Mon 20 Oct 2025 15:20:16 +0000 Manifest this update: Mon 20 Oct 2025 15:20:15 +0000 Manifest next update: Mon 27 Oct 2025 15:20:15 +0000 Files and hashes: 1: MZsxRPBqjysw1BIHH-EhB3T-huc.crl (hash: 8J2/TPEtbsgaWUqhEGYeFZdeIm56W0TQdLmFkWlYiSU=) 2: 27C29E5EF94411EDB4C6E91CC4F9AE02.roa (hash: PGlTDpEV17D+1hrLu4fdfibpz1YbRKMAlzpsoNFgyb4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91971CB/010EB288808911EB8B505F20C4F9AE02/MZsxRPBqjysw1BIHH-EhB3T-huc.crl rsync://rpki.apnic.net/member_repository/A91971CB/010EB288808911EB8B505F20C4F9AE02/MZsxRPBqjysw1BIHH-EhB3T-huc.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/MZsxRPBqjysw1BIHH-EhB3T-huc.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Oct 2025 14:50:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1734 (0x6c6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91971CB, serialNumber=319B3144F06A8F2B30D412071FE1210774FE86E7 Validity Not Before: Oct 20 15:20:15 2025 GMT Not After : Oct 27 15:20:15 2025 GMT Subject: CN=68f6532f-e09a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:5f:23:c9:2f:82:56:d0:fb:f3:d6:5e:df:70: a2:55:ff:54:49:5f:f4:e9:3c:9e:b3:70:c3:94:4b: 4c:e1:c1:2c:19:d0:ea:a6:1b:4a:2d:98:ee:8d:6d: 08:af:b1:52:1e:67:7f:7a:50:c4:38:60:77:70:24: a1:b0:78:a0:69:bd:18:1e:5d:f1:2b:90:1e:ef:b3: 19:c8:da:d4:01:33:8f:48:c6:49:67:07:68:90:ef: 83:d7:57:f3:a8:e2:62:77:76:2b:e3:8a:b3:43:a3: 38:23:c4:b9:9f:40:eb:4a:ad:0e:fd:a1:d6:92:8c: e4:a9:53:03:cd:22:8a:6c:44:54:99:d9:17:ba:b4: 96:ac:e1:7a:f2:56:a0:29:55:6a:c2:38:f1:81:e1: 52:70:a5:7b:a3:12:93:17:2b:0e:1e:10:92:80:09: c6:23:8a:f6:1c:9f:94:f0:87:66:20:03:31:1b:93: d2:b7:a4:be:10:9f:9d:04:9f:0c:8c:9f:5d:55:9c: dc:37:29:ba:ea:59:00:06:c9:86:b8:59:ff:21:fb: bb:6e:5f:f8:a6:3b:70:ab:0f:8d:e2:bf:db:82:89: e6:b7:27:fb:10:9c:a1:da:46:eb:fc:a8:1e:ce:48: e2:98:8d:3e:38:8d:02:4a:a6:45:02:d2:04:35:d1: 2c:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:01:D3:D7:B4:DC:E3:93:A4:07:DA:1F:56:92:DC:46:DE:21:DD:40 X509v3 Authority Key Identifier: keyid:31:9B:31:44:F0:6A:8F:2B:30:D4:12:07:1F:E1:21:07:74:FE:86:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91971CB/010EB288808911EB8B505F20C4F9AE02/MZsxRPBqjysw1BIHH-EhB3T-huc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/MZsxRPBqjysw1BIHH-EhB3T-huc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91971CB/010EB288808911EB8B505F20C4F9AE02/MZsxRPBqjysw1BIHH-EhB3T-huc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 49:21:a9:8f:10:2e:ec:68:3b:a0:b2:eb:fe:39:b3:83:8f:fc: 20:13:11:33:eb:32:ac:fa:d7:5c:84:d2:60:ea:0e:11:dd:69: e1:e9:98:d9:f4:81:d3:33:5d:c8:78:f9:6f:58:38:e1:5b:63: 9c:4b:b5:1b:74:41:47:ba:e3:d2:ce:e3:19:98:71:8c:2c:83: f0:4e:be:e7:38:6f:7b:e0:0b:6a:95:76:04:05:10:9a:97:c9: ba:6f:b3:11:bf:72:66:1e:9c:72:d7:a5:46:50:1e:fa:1c:60: 9b:a9:10:80:7d:bf:dd:0f:67:26:00:30:5a:68:01:f7:a0:51: 4a:fc:14:78:66:7e:37:17:bb:5c:28:c6:e4:a3:63:ea:d7:62: f3:1b:07:4f:e0:58:9c:46:26:05:4d:60:40:8a:a4:e3:02:3e: c7:6b:34:9b:8c:40:17:63:fe:58:89:6d:2f:e3:7e:35:ca:b1: 04:fa:fd:64:69:a4:09:d2:d6:8d:51:de:bc:5b:77:6b:d5:b2: 16:96:3e:9a:6b:0b:b6:5a:38:0a:08:25:a1:de:36:c4:02:f1: 78:3a:50:07:a5:e8:2b:e4:02:86:1c:7f:4c:4b:4c:be:64:2e: e0:ae:92:93:02:45:70:32:23:18:e1:d3:75:45:66:02:92:7d: e2:a2:70:3b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBsYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTcxQ0IxMTAvBgNVBAUTKDMxOUIzMTQ0RjA2QThGMkIzMEQ0MTIwNzFGRTEyMTA3 NzRGRTg2RTcwHhcNMjUxMDIwMTUyMDE1WhcNMjUxMDI3MTUyMDE1WjAYMRYwFAYD VQQDEw02OGY2NTMyZi1lMDlhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1V8jyS+CVtD789Ze33CiVf9USV/06Tyes3DDlEtM4cEsGdDqphtKLZjujW0I r7FSHmd/elDEOGB3cCShsHigab0YHl3xK5Ae77MZyNrUATOPSMZJZwdokO+D11fz qOJid3Yr44qzQ6M4I8S5n0DrSq0O/aHWkozkqVMDzSKKbERUmdkXurSWrOF68lag KVVqwjjxgeFScKV7oxKTFysOHhCSgAnGI4r2HJ+U8IdmIAMxG5PSt6S+EJ+dBJ8M jJ9dVZzcNym66lkABsmGuFn/Ifu7bl/4pjtwqw+N4r/bgonmtyf7EJyh2kbr/Kge zkjimI0+OI0CSqZFAtIENdEsowIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDMB09e0 3OOTpAfaH1aS3EbeId1AMB8GA1UdIwQYMBaAFDGbMUTwao8rMNQSBx/hIQd0/obn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzFDQi8wMTBFQjI4ODgw ODkxMUVCOEI1MDVGMjBDNEY5QUUwMi9NWnN4UlBCcWp5c3cxQklISC1FaEIzVC1o dWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL01ac3hSUEJxanlzdzFCSUhILUVoQjNULWh1Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NzFDQi8wMTBFQjI4ODgwODkxMUVCOEI1MDVGMjBDNEY5QUUwMi9NWnN4UlBCcWp5 c3cxQklISC1FaEIzVC1odWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBJIamPEC7saDugsuv+ObODj/wgExEz6zKs+tdchNJg6g4R3Wnh6ZjZ 9IHTM13IePlvWDjhW2OcS7UbdEFHuuPSzuMZmHGMLIPwTr7nOG974AtqlXYEBRCa l8m6b7MRv3JmHpxy16VGUB76HGCbqRCAfb/dD2cmADBaaAH3oFFK/BR4Zn43F7tc KMbko2Pq12LzGwdP4FicRiYFTWBAiqTjAj7HazSbjEAXY/5YiW0v4341yrEE+v1k aaQJ0taNUd68W3dr1bIWlj6aawu2WjgKCCWh3jbEAvF4OlAHpegr5AKGHH9MS0y+ ZC7grpKTAkVwMiMY4dN1RWYCkn3ionA7 -----END CERTIFICATE-----Generated at Mon Oct 20 18:25:22 2025 by rpki-client