$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAE63/5E966394CA0911ED81B6F63CC4F9AE02/zHxfJ4CoDTxmayv2kVPyBIS-7nE.mft File: zHxfJ4CoDTxmayv2kVPyBIS-7nE.mft (raw, json) Hash identifier: 4bl4eX02zZGqqy9fOKiiKsuEveTx7eX5ZtdkmVoPR9k= Subject key identifier: ED:F6:D4:1A:D8:0D:32:3D:77:73:14:FE:A0:DD:AA:FC:AC:B7:98:5F Authority key identifier: CC:7C:5F:27:80:A8:0D:3C:66:6B:2B:F6:91:53:F2:04:84:BE:EE:71 Certificate issuer: /CN=A91AAE63/serialNumber=CC7C5F2780A80D3C666B2BF69153F20484BEEE71 Certificate serial: 01E5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zHxfJ4CoDTxmayv2kVPyBIS-7nE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAE63/5E966394CA0911ED81B6F63CC4F9AE02/zHxfJ4CoDTxmayv2kVPyBIS-7nE.mft Manifest number: 01E2 Signing time: Sun 19 Oct 2025 05:05:13 +0000 Manifest this update: Sun 19 Oct 2025 05:05:13 +0000 Manifest next update: Sun 26 Oct 2025 05:05:13 +0000 Files and hashes: 1: zHxfJ4CoDTxmayv2kVPyBIS-7nE.crl (hash: 93cvAoqooo9UOGqkUej+HCy1FFVZtx30g36rQS5Algk=) 2: 5DCF3814CA0E11ED9251861DC4F9AE02.roa (hash: QPqR58JeNFPJi8H+5XnKJrf+9hDaJRDjHQAg1P1N4n8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAE63/5E966394CA0911ED81B6F63CC4F9AE02/zHxfJ4CoDTxmayv2kVPyBIS-7nE.crl rsync://rpki.apnic.net/member_repository/A91AAE63/5E966394CA0911ED81B6F63CC4F9AE02/zHxfJ4CoDTxmayv2kVPyBIS-7nE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zHxfJ4CoDTxmayv2kVPyBIS-7nE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 05:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 485 (0x1e5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAE63, serialNumber=CC7C5F2780A80D3C666B2BF69153F20484BEEE71 Validity Not Before: Oct 19 05:05:13 2025 GMT Not After : Oct 26 05:05:13 2025 GMT Subject: CN=68f47189-89e4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:02:75:91:de:cb:ea:29:b6:63:5c:fb:26:09: a5:d6:df:8e:3a:10:f3:4c:ea:68:4f:e9:64:f7:95: fa:9f:3f:6e:1e:dd:3e:56:14:0b:ec:86:d4:4c:02: 87:71:d6:f1:2b:33:39:b8:d3:0b:0e:24:b7:bc:35: 27:f1:eb:82:19:1a:d2:07:60:7e:8d:85:02:fe:a3: cb:6d:b2:49:23:f7:51:fa:24:d4:fc:61:6f:10:d2: ae:c4:39:17:f7:cb:19:c3:07:ce:0e:79:7e:47:32: 2f:47:e1:59:c2:23:37:0d:e6:56:8e:0d:34:f2:5d: 45:09:77:ce:48:58:f9:4e:44:41:da:d7:6c:b7:87: c5:fe:ec:35:7e:de:90:b8:01:27:8a:bb:9c:e8:7e: 03:db:bb:08:67:0c:84:a8:82:0f:61:5b:e7:ce:a8: 3c:97:a8:3b:fb:21:79:97:8e:d2:dc:d7:1e:95:fb: a0:4d:7c:c4:de:e7:be:6f:06:ee:ac:58:0c:fa:45: 3e:7a:06:5a:71:a2:11:34:3e:ee:b9:09:a4:a3:9e: d5:c5:0c:af:c8:79:0c:32:37:17:3a:db:6f:10:51: 3c:da:f6:b4:af:78:39:46:13:d0:15:50:a6:f6:45: 73:81:bf:06:06:cb:a3:95:c2:4c:4d:12:9c:2f:dc: ba:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:F6:D4:1A:D8:0D:32:3D:77:73:14:FE:A0:DD:AA:FC:AC:B7:98:5F X509v3 Authority Key Identifier: keyid:CC:7C:5F:27:80:A8:0D:3C:66:6B:2B:F6:91:53:F2:04:84:BE:EE:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAE63/5E966394CA0911ED81B6F63CC4F9AE02/zHxfJ4CoDTxmayv2kVPyBIS-7nE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zHxfJ4CoDTxmayv2kVPyBIS-7nE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAE63/5E966394CA0911ED81B6F63CC4F9AE02/zHxfJ4CoDTxmayv2kVPyBIS-7nE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:2f:68:92:a7:50:b4:ce:f3:e6:59:e1:a9:83:60:4f:8e:69: 8f:8a:6d:89:c1:5d:fe:02:7e:b2:c4:6f:1c:38:5c:cf:75:06: 25:e6:47:ff:93:6d:b8:4c:54:b7:f7:cf:30:3b:22:80:f5:c1: 9d:25:05:e5:06:34:79:7b:cf:25:d6:d4:91:e1:42:31:9e:c5: 1e:55:8e:fd:58:fe:e9:4a:5c:97:a5:66:d8:82:40:de:37:68: b6:70:72:44:d7:0f:07:f7:10:8e:72:9f:ea:5c:28:4d:8d:94: ca:b5:60:11:0a:af:e2:b0:4e:da:e1:0e:a2:ef:8a:6a:4d:e8: e7:fc:e6:f1:3d:19:ba:7d:76:2b:ca:f4:64:e2:48:3a:9d:0b: ca:2f:e2:42:26:20:fc:5a:f0:2a:60:22:d3:56:59:41:94:8e: e7:73:9b:50:38:0c:00:b8:ab:83:a1:45:3a:33:f2:5c:b1:7b: f8:a0:95:26:84:fc:ef:ad:5f:87:bc:d3:9e:7e:8d:7e:e2:ab: e1:da:d7:89:7c:ed:8e:5a:72:a6:fb:b5:43:84:75:94:fa:49: 75:30:7c:90:ad:b5:07:9e:41:02:16:9d:a0:29:12:77:8e:65: 2c:de:ad:b8:9f:20:ed:fe:49:b4:9b:f0:a6:b5:a6:56:32:d7: 9d:9a:3b:a5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAeUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUFFNjMxMTAvBgNVBAUTKENDN0M1RjI3ODBBODBEM0M2NjZCMkJGNjkxNTNGMjA0 ODRCRUVFNzEwHhcNMjUxMDE5MDUwNTEzWhcNMjUxMDI2MDUwNTEzWjAYMRYwFAYD VQQDEw02OGY0NzE4OS04OWU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8AJ1kd7L6im2Y1z7Jgml1t+OOhDzTOpoT+lk95X6nz9uHt0+VhQL7IbUTAKH cdbxKzM5uNMLDiS3vDUn8euCGRrSB2B+jYUC/qPLbbJJI/dR+iTU/GFvENKuxDkX 98sZwwfODnl+RzIvR+FZwiM3DeZWjg008l1FCXfOSFj5TkRB2tdst4fF/uw1ft6Q uAEniruc6H4D27sIZwyEqIIPYVvnzqg8l6g7+yF5l47S3NcelfugTXzE3ue+bwbu rFgM+kU+egZacaIRND7uuQmko57VxQyvyHkMMjcXOttvEFE82va0r3g5RhPQFVCm 9kVzgb8GBsujlcJMTRKcL9y6twIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO321BrY DTI9d3MU/qDdqvyst5hfMB8GA1UdIwQYMBaAFMx8XyeAqA08Zmsr9pFT8gSEvu5x MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQUU2My81RTk2NjM5NENB MDkxMUVEODFCNkY2M0NDNEY5QUUwMi96SHhmSjRDb0RUeG1heXYya1ZQeUJJUy03 bkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pIeGZKNENvRFR4bWF5djJrVlB5QklTLTduRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QUU2My81RTk2NjM5NENBMDkxMUVEODFCNkY2M0NDNEY5QUUwMi96SHhmSjRDb0RU eG1heXYya1ZQeUJJUy03bkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAlL2iSp1C0zvPmWeGpg2BPjmmPim2JwV3+An6yxG8cOFzPdQYl5kf/ k224TFS3988wOyKA9cGdJQXlBjR5e88l1tSR4UIxnsUeVY79WP7pSlyXpWbYgkDe N2i2cHJE1w8H9xCOcp/qXChNjZTKtWARCq/isE7a4Q6i74pqTejn/ObxPRm6fXYr yvRk4kg6nQvKL+JCJiD8WvAqYCLTVllBlI7nc5tQOAwAuKuDoUU6M/JcsXv4oJUm hPzvrV+HvNOefo1+4qvh2teJfO2OWnKm+7VDhHWU+kl1MHyQrbUHnkECFp2gKRJ3 jmUs3q24nyDt/km0m/CmtaZWMtedmjul -----END CERTIFICATE-----Generated at Sun Oct 19 23:23:39 2025 by rpki-client