$ rpki-client -vvf rpki.apnic.net/member_repository/A91A9B3E/DAB1C3A68CFB11ED92E25B61C4F9AE02/zuNPo5_yhfcuIp2ihivBDkiPukE.mft File: zuNPo5_yhfcuIp2ihivBDkiPukE.mft (raw, json) Hash identifier: qqxBoVXOkCP/UpXS0xNijgOh+nHexO0Aw9B1s+4299c= Subject key identifier: 47:68:C6:F7:B6:52:27:D4:C1:7C:52:EA:4C:C6:F1:B4:DE:E8:93:DA Authority key identifier: CE:E3:4F:A3:9F:F2:85:F7:2E:22:9D:A2:86:2B:C1:0E:48:8F:BA:41 Certificate issuer: /CN=A91A9B3E/serialNumber=CEE34FA39FF285F72E229DA2862BC10E488FBA41 Certificate serial: 0210 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zuNPo5_yhfcuIp2ihivBDkiPukE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A9B3E/DAB1C3A68CFB11ED92E25B61C4F9AE02/zuNPo5_yhfcuIp2ihivBDkiPukE.mft Manifest number: 020A Signing time: Sun 19 Oct 2025 04:36:54 +0000 Manifest this update: Sun 19 Oct 2025 04:36:53 +0000 Manifest next update: Sun 26 Oct 2025 04:36:53 +0000 Files and hashes: 1: zuNPo5_yhfcuIp2ihivBDkiPukE.crl (hash: Fycfq7M8e0q8/XBfQrjxsVHV2gx5VsdEATtzoNzbPek=) 2: 819F7A60CF8B11EDAE77B351C4F9AE02.roa (hash: 4hy1f5KhPhwHVnBrwdKHHsp/qGx5VbOvDT16foHwuRM=) 3: 1AB255C68CFF11EDB7BDD865C4F9AE02.roa (hash: l3pw7Z4d1Nkw0APH0xp6K2791IsFOtCcx1C4farScNI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A9B3E/DAB1C3A68CFB11ED92E25B61C4F9AE02/zuNPo5_yhfcuIp2ihivBDkiPukE.crl rsync://rpki.apnic.net/member_repository/A91A9B3E/DAB1C3A68CFB11ED92E25B61C4F9AE02/zuNPo5_yhfcuIp2ihivBDkiPukE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zuNPo5_yhfcuIp2ihivBDkiPukE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 04:36:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 528 (0x210) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A9B3E, serialNumber=CEE34FA39FF285F72E229DA2862BC10E488FBA41 Validity Not Before: Oct 19 04:36:53 2025 GMT Not After : Oct 26 04:36:53 2025 GMT Subject: CN=68f46ae6-93d8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:e5:a7:96:c6:d1:c9:31:8f:c5:82:66:67:cf: 9a:35:d1:3a:96:5e:24:d5:e6:9c:7d:8b:2e:9e:4a: fa:c4:a9:27:3a:ea:ca:76:7e:5a:a7:69:3b:ed:0e: bf:fa:1d:8f:4d:d9:8c:32:57:17:f9:f3:58:a0:d8: 3f:11:a4:b7:83:6b:98:5a:44:bc:dc:9c:17:43:1a: 70:ad:ca:96:80:4a:13:e6:cf:1b:53:71:fd:cd:54: 0f:c6:a0:be:a4:0b:44:54:67:50:4d:7c:a7:eb:13: 2b:5a:88:b5:39:af:9b:74:71:49:ff:e3:a0:65:4e: 11:b5:af:fe:8e:00:a3:58:89:07:24:4d:c9:da:6d: a7:80:e0:b9:30:30:3d:fc:c3:8c:2d:fe:71:5c:b2: fd:35:07:dc:06:13:0c:47:ab:d9:1d:74:28:b6:e5: f1:95:df:23:85:ef:b5:47:78:cd:90:7f:d5:c5:b8: 1b:71:be:ec:93:3e:d9:ab:35:95:a4:b7:f7:ae:e6: b4:db:fd:d6:fe:28:da:42:69:c4:3b:0c:9e:8d:a5: 00:c6:d4:2e:de:2a:82:fe:b8:44:22:01:d7:be:ae: e3:9d:52:17:8a:fd:f8:8a:96:b4:b5:09:59:32:e6: 71:a2:4c:e4:d9:26:d4:56:f1:03:e9:6b:e6:3a:51: d9:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:68:C6:F7:B6:52:27:D4:C1:7C:52:EA:4C:C6:F1:B4:DE:E8:93:DA X509v3 Authority Key Identifier: keyid:CE:E3:4F:A3:9F:F2:85:F7:2E:22:9D:A2:86:2B:C1:0E:48:8F:BA:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A9B3E/DAB1C3A68CFB11ED92E25B61C4F9AE02/zuNPo5_yhfcuIp2ihivBDkiPukE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zuNPo5_yhfcuIp2ihivBDkiPukE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A9B3E/DAB1C3A68CFB11ED92E25B61C4F9AE02/zuNPo5_yhfcuIp2ihivBDkiPukE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 66:30:82:70:29:33:0a:07:9c:ac:6e:b5:ce:33:b7:9d:f1:01: 0a:b5:55:c9:28:41:60:eb:10:49:7b:c1:e1:a3:fb:d1:82:61: da:e9:c4:47:48:1f:bb:16:11:8c:5a:6c:69:1f:c1:0e:a0:95: 07:24:e1:a5:55:f8:7d:4a:73:55:75:02:55:fa:46:c2:66:9b: c5:67:b7:d0:9d:cb:f1:7d:2a:32:0c:e3:34:82:2b:f5:34:80: 12:12:4c:ee:16:67:dc:94:8f:2c:6b:36:45:51:49:de:f4:12: 0e:34:48:dd:f6:34:fe:b4:a7:1f:2f:9c:77:f8:fc:65:d4:cb: 4e:2c:bb:a2:96:c7:51:f4:6c:c7:aa:92:d3:23:70:e4:bf:f8: e2:c3:f4:46:33:b8:c9:76:2d:2a:fe:b7:00:56:04:ff:ce:41: 0d:27:08:83:b0:81:15:e9:ee:02:17:e6:bf:38:96:b0:03:6a: 97:a7:90:bb:69:45:40:bf:37:af:93:4e:02:59:e7:27:5b:9f: bb:9f:c2:10:a2:cf:2d:c6:fe:b6:24:5f:e5:3a:38:7f:2a:c4: 49:c4:32:e6:77:ef:b6:2c:c9:69:4a:93:08:72:7b:02:08:20: 3b:34:60:2b:6f:fb:5c:e1:e6:64:ac:87:c7:9a:b7:eb:7b:98: 72:92:8d:44 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAhAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTlCM0UxMTAvBgNVBAUTKENFRTM0RkEzOUZGMjg1RjcyRTIyOURBMjg2MkJDMTBF NDg4RkJBNDEwHhcNMjUxMDE5MDQzNjUzWhcNMjUxMDI2MDQzNjUzWjAYMRYwFAYD VQQDEw02OGY0NmFlNi05M2Q4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsuWnlsbRyTGPxYJmZ8+aNdE6ll4k1eacfYsunkr6xKknOurKdn5ap2k77Q6/ +h2PTdmMMlcX+fNYoNg/EaS3g2uYWkS83JwXQxpwrcqWgEoT5s8bU3H9zVQPxqC+ pAtEVGdQTXyn6xMrWoi1Oa+bdHFJ/+OgZU4Rta/+jgCjWIkHJE3J2m2ngOC5MDA9 /MOMLf5xXLL9NQfcBhMMR6vZHXQotuXxld8jhe+1R3jNkH/Vxbgbcb7skz7ZqzWV pLf3rua02/3W/ijaQmnEOwyejaUAxtQu3iqC/rhEIgHXvq7jnVIXiv34ipa0tQlZ MuZxokzk2SbUVvED6WvmOlHZfQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEdoxve2 UifUwXxS6kzG8bTe6JPaMB8GA1UdIwQYMBaAFM7jT6Of8oX3LiKdooYrwQ5Ij7pB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOUIzRS9EQUIxQzNBNjhD RkIxMUVEOTJFMjVCNjFDNEY5QUUwMi96dU5QbzVfeWhmY3VJcDJpaGl2QkRraVB1 a0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3p1TlBvNV95aGZjdUlwMmloaXZCRGtpUHVrRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OUIzRS9EQUIxQzNBNjhDRkIxMUVEOTJFMjVCNjFDNEY5QUUwMi96dU5QbzVfeWhm Y3VJcDJpaGl2QkRraVB1a0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBmMIJwKTMKB5ysbrXOM7ed8QEKtVXJKEFg6xBJe8Hho/vRgmHa6cRH SB+7FhGMWmxpH8EOoJUHJOGlVfh9SnNVdQJV+kbCZpvFZ7fQncvxfSoyDOM0giv1 NIASEkzuFmfclI8sazZFUUne9BIONEjd9jT+tKcfL5x3+Pxl1MtOLLuilsdR9GzH qpLTI3Dkv/jiw/RGM7jJdi0q/rcAVgT/zkENJwiDsIEV6e4CF+a/OJawA2qXp5C7 aUVAvzevk04CWecnW5+7n8IQos8txv62JF/lOjh/KsRJxDLmd++2LMlpSpMIcnsC CCA7NGArb/tc4eZkrIfHmrfre5hyko1E -----END CERTIFICATE-----Generated at Mon Oct 20 10:51:00 2025 by rpki-client