$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB9A1/57337ACA8D7911EB8D8BD60BC4F9AE02/zl8rQ5utW-vicqch6qzDj6rdSbQ.mft File: zl8rQ5utW-vicqch6qzDj6rdSbQ.mft (raw, json) Hash identifier: EsAiAr+Wyx5wNgDH6tOmBYXMIif1gYh10DqT39EUOXg= Subject key identifier: 47:26:1F:08:77:ED:9E:20:AE:F3:1D:23:EA:D2:E3:83:12:3E:50:06 Authority key identifier: CE:5F:2B:43:9B:AD:5B:EB:E2:72:A7:21:EA:AC:C3:8F:AA:DD:49:B4 Certificate issuer: /CN=A91AB9A1/serialNumber=CE5F2B439BAD5BEBE272A721EAACC38FAADD49B4 Certificate serial: 0696 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zl8rQ5utW-vicqch6qzDj6rdSbQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB9A1/57337ACA8D7911EB8D8BD60BC4F9AE02/zl8rQ5utW-vicqch6qzDj6rdSbQ.mft Manifest number: 0696 Signing time: Sat 18 Oct 2025 14:44:09 +0000 Manifest this update: Sat 18 Oct 2025 14:44:09 +0000 Manifest next update: Sat 25 Oct 2025 14:44:09 +0000 Files and hashes: 1: zl8rQ5utW-vicqch6qzDj6rdSbQ.crl (hash: wyZyLxNtlMpt8XiX6epM5GbCTv0FLgBsta7RvADzFYI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB9A1/57337ACA8D7911EB8D8BD60BC4F9AE02/zl8rQ5utW-vicqch6qzDj6rdSbQ.crl rsync://rpki.apnic.net/member_repository/A91AB9A1/57337ACA8D7911EB8D8BD60BC4F9AE02/zl8rQ5utW-vicqch6qzDj6rdSbQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zl8rQ5utW-vicqch6qzDj6rdSbQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 14:44:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1686 (0x696) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB9A1, serialNumber=CE5F2B439BAD5BEBE272A721EAACC38FAADD49B4 Validity Not Before: Oct 18 14:44:09 2025 GMT Not After : Oct 25 14:44:09 2025 GMT Subject: CN=68f3a7b9-1539 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:55:b8:09:0c:2c:d1:d9:72:34:d3:f4:91:5d: 6d:47:e2:58:99:38:2e:b0:51:e5:b8:86:41:65:02: 2c:46:20:0e:39:74:5e:3d:a6:95:f3:b4:b4:79:a8: 48:91:f8:d5:7b:0f:b2:b4:85:df:aa:64:d9:91:5d: fd:00:8b:3a:61:52:26:7f:75:23:af:80:6b:8f:8b: d7:7e:86:fe:58:87:c6:89:e7:0a:bd:b8:89:7f:c2: 57:34:cf:7b:7c:7c:81:f4:aa:63:50:3d:c7:89:19: 5e:0c:25:64:d0:e4:63:50:96:58:50:b4:11:d9:12: 36:ef:90:dc:af:7f:50:1b:fc:bc:7d:d3:de:61:7b: 11:42:eb:67:cd:12:3c:57:13:10:08:1e:a1:0f:cc: 8b:3a:68:2f:21:dd:55:a7:f0:ba:4b:e0:5d:70:68: 9e:1e:80:13:65:02:5b:78:a2:04:f4:7f:09:1a:6b: b8:b4:89:ea:9f:3b:b9:da:8c:7b:a9:85:58:8a:19: 3e:14:5d:14:af:b0:c9:81:35:50:7e:3f:8e:bd:f8: 81:e4:59:9e:50:2b:6f:eb:94:74:96:f4:3b:59:d0: 7d:0b:1f:0c:fa:0e:8c:91:6c:cd:d8:25:5a:1f:4f: 12:e2:9b:be:d6:52:10:bc:08:6b:c6:00:87:ae:7d: e9:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:26:1F:08:77:ED:9E:20:AE:F3:1D:23:EA:D2:E3:83:12:3E:50:06 X509v3 Authority Key Identifier: keyid:CE:5F:2B:43:9B:AD:5B:EB:E2:72:A7:21:EA:AC:C3:8F:AA:DD:49:B4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB9A1/57337ACA8D7911EB8D8BD60BC4F9AE02/zl8rQ5utW-vicqch6qzDj6rdSbQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zl8rQ5utW-vicqch6qzDj6rdSbQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB9A1/57337ACA8D7911EB8D8BD60BC4F9AE02/zl8rQ5utW-vicqch6qzDj6rdSbQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 41:89:55:45:a2:9f:76:2b:3c:6e:8e:c8:a1:c9:3d:8c:3f:c4: af:34:f5:8d:3c:16:49:f4:ca:68:1d:70:1c:07:d8:2e:f3:cd: 6b:05:cc:fb:d2:2e:4f:ab:b7:7c:d9:1e:c4:20:d8:ee:82:37: b3:57:cc:b3:df:44:bc:7c:fb:f7:56:db:b4:00:0b:8f:19:82: 15:58:72:a6:8b:38:c4:f6:02:41:8c:51:77:f1:16:6e:f2:50: 2a:aa:44:21:f3:4a:0d:81:82:b6:35:1f:b8:e8:7f:be:d6:f3: d6:69:89:b7:68:74:d6:0b:49:3f:da:aa:d2:f1:e5:f2:9e:bd: 7c:a6:4b:16:6e:48:83:1b:b5:92:0b:ab:5a:ec:77:a4:ad:5d: 62:74:06:63:cb:ad:eb:50:f8:6c:9d:2b:9b:43:7c:fb:fc:a9: 11:19:74:d1:3d:b4:49:cc:85:97:87:41:4d:9c:8c:b6:20:a3: 19:27:2a:1c:40:f5:7b:6c:09:2f:d8:fb:22:7a:f8:b6:b1:cf: e3:59:45:5d:91:37:58:5f:c9:9a:02:77:67:e2:fb:3e:67:d7: 63:85:f7:c6:6c:19:56:0d:98:37:50:68:6c:05:3c:77:a5:77: e5:1c:88:c0:2e:86:6e:b1:34:e9:81:6c:cc:91:27:09:10:63: 80:93:0a:a2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBpYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUI5QTExMTAvBgNVBAUTKENFNUYyQjQzOUJBRDVCRUJFMjcyQTcyMUVBQUNDMzhG QUFERDQ5QjQwHhcNMjUxMDE4MTQ0NDA5WhcNMjUxMDI1MTQ0NDA5WjAYMRYwFAYD VQQDEw02OGYzYTdiOS0xNTM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5VW4CQws0dlyNNP0kV1tR+JYmTgusFHluIZBZQIsRiAOOXRePaaV87S0eahI kfjVew+ytIXfqmTZkV39AIs6YVImf3Ujr4Brj4vXfob+WIfGiecKvbiJf8JXNM97 fHyB9KpjUD3HiRleDCVk0ORjUJZYULQR2RI275Dcr39QG/y8fdPeYXsRQutnzRI8 VxMQCB6hD8yLOmgvId1Vp/C6S+BdcGieHoATZQJbeKIE9H8JGmu4tInqnzu52ox7 qYVYihk+FF0Ur7DJgTVQfj+OvfiB5FmeUCtv65R0lvQ7WdB9Cx8M+g6MkWzN2CVa H08S4pu+1lIQvAhrxgCHrn3pywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEcmHwh3 7Z4grvMdI+rS44MSPlAGMB8GA1UdIwQYMBaAFM5fK0ObrVvr4nKnIeqsw4+q3Um0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjlBMS81NzMzN0FDQThE NzkxMUVCOEQ4QkQ2MEJDNEY5QUUwMi96bDhyUTV1dFctdmljcWNoNnF6RGo2cmRT YlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3psOHJRNXV0Vy12aWNxY2g2cXpEajZyZFNiUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QjlBMS81NzMzN0FDQThENzkxMUVCOEQ4QkQ2MEJDNEY5QUUwMi96bDhyUTV1dFct dmljcWNoNnF6RGo2cmRTYlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBBiVVFop92KzxujsihyT2MP8SvNPWNPBZJ9MpoHXAcB9gu881rBcz7 0i5Pq7d82R7EINjugjezV8yz30S8fPv3Vtu0AAuPGYIVWHKmizjE9gJBjFF38RZu 8lAqqkQh80oNgYK2NR+46H++1vPWaYm3aHTWC0k/2qrS8eXynr18pksWbkiDG7WS C6ta7HekrV1idAZjy63rUPhsnSubQ3z7/KkRGXTRPbRJzIWXh0FNnIy2IKMZJyoc QPV7bAkv2Psievi2sc/jWUVdkTdYX8maAndn4vs+Z9djhffGbBlWDZg3UGhsBTx3 pXflHIjALoZusTTpgWzMkScJEGOAkwqi -----END CERTIFICATE-----Generated at Mon Oct 20 09:37:37 2025 by rpki-client