$ rpki-client -vvf rpki.apnic.net/member_repository/A91BEC31/3CF53622E4A411EFB276F25DC4F9AE02/Z9ecOxEW02-54XHWZY-PQ7U8cvo.mft File: Z9ecOxEW02-54XHWZY-PQ7U8cvo.mft (raw, json) Hash identifier: 2CclAuNTDiq4t8glAIkEX994e2V/pTLmJ2RCOVjHa0g= Subject key identifier: 6C:A9:39:E7:34:20:88:27:32:A2:6D:E7:AF:15:7C:C9:98:F2:F6:18 Authority key identifier: 67:D7:9C:3B:11:16:D3:6F:B9:E1:71:D6:65:8F:8F:43:B5:3C:72:FA Certificate issuer: /CN=A91BEC31/serialNumber=67D79C3B1116D36FB9E171D6658F8F43B53C72FA Certificate serial: 88 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Z9ecOxEW02-54XHWZY-PQ7U8cvo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BEC31/3CF53622E4A411EFB276F25DC4F9AE02/Z9ecOxEW02-54XHWZY-PQ7U8cvo.mft Manifest number: 86 Signing time: Sun 19 Oct 2025 09:55:46 +0000 Manifest this update: Sun 19 Oct 2025 09:55:45 +0000 Manifest next update: Sun 26 Oct 2025 09:55:45 +0000 Files and hashes: 1: Z9ecOxEW02-54XHWZY-PQ7U8cvo.crl (hash: +aHHDPwfZn1k7dkQblm1IFXpSWjEK2b8ipQEbOZNzNU=) 2: F8B0BFEEE4A411EF8C2D0460C4F9AE02.roa (hash: HEKgeQjMhMYDkC2JrcKXdt5Voc5+W7Do5jSGbSkekDc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BEC31/3CF53622E4A411EFB276F25DC4F9AE02/Z9ecOxEW02-54XHWZY-PQ7U8cvo.crl rsync://rpki.apnic.net/member_repository/A91BEC31/3CF53622E4A411EFB276F25DC4F9AE02/Z9ecOxEW02-54XHWZY-PQ7U8cvo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Z9ecOxEW02-54XHWZY-PQ7U8cvo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 09:55:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 136 (0x88) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BEC31, serialNumber=67D79C3B1116D36FB9E171D6658F8F43B53C72FA Validity Not Before: Oct 19 09:55:45 2025 GMT Not After : Oct 26 09:55:45 2025 GMT Subject: CN=68f4b5a1-0145 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:d8:97:11:bc:ff:2e:0a:94:61:1e:91:f1:6b: 86:b9:76:31:81:05:bb:27:8d:12:76:57:1a:72:9e: e1:34:f8:2d:a5:cb:68:35:c0:4a:f4:c7:41:f1:1c: 9d:c1:85:2c:ad:cf:0c:09:aa:ea:cb:68:15:05:75: 03:a6:f2:b1:ad:3b:94:94:e5:92:1a:72:23:6d:bc: 67:05:4d:13:92:8b:d1:4b:c6:aa:ae:8d:57:e9:60: 97:52:65:fa:7c:a1:b5:0e:b3:bb:d0:f2:c5:52:53: bc:e6:7e:a3:c4:d3:1d:b1:d7:cd:06:44:a7:0e:51: ff:9c:c5:fd:6c:83:a9:35:dc:39:80:9f:ef:8e:c2: b6:f4:c7:e3:8f:a0:d8:74:4e:ba:52:cb:a4:ad:81: f6:7e:ff:c4:44:ad:fb:dd:58:28:13:09:58:20:37: f6:64:1c:c3:6f:44:49:1e:2d:cf:04:e8:e7:36:7b: 4b:cf:9f:05:a6:ef:79:a4:5b:e0:e6:95:55:ef:81: b8:a5:da:b4:3a:07:a3:39:28:a0:54:1a:b3:64:6c: f0:e5:21:4c:17:98:ed:95:c5:c5:ea:1a:b0:f6:16: 3b:62:a3:01:03:89:84:87:13:86:62:01:98:5e:e0: 57:55:21:ea:49:05:3d:ae:32:28:82:29:f0:89:4d: 30:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:A9:39:E7:34:20:88:27:32:A2:6D:E7:AF:15:7C:C9:98:F2:F6:18 X509v3 Authority Key Identifier: keyid:67:D7:9C:3B:11:16:D3:6F:B9:E1:71:D6:65:8F:8F:43:B5:3C:72:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BEC31/3CF53622E4A411EFB276F25DC4F9AE02/Z9ecOxEW02-54XHWZY-PQ7U8cvo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Z9ecOxEW02-54XHWZY-PQ7U8cvo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BEC31/3CF53622E4A411EFB276F25DC4F9AE02/Z9ecOxEW02-54XHWZY-PQ7U8cvo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:76:a4:28:24:0e:14:54:15:c8:e5:a0:35:96:69:6c:8e:3d: c9:a9:10:91:36:73:3a:eb:d7:d2:cc:ab:84:0e:de:88:85:39: 50:29:58:5e:a3:13:a6:ed:f4:c0:13:c9:b5:dd:d1:19:9e:76: a2:11:f0:40:f7:5e:c7:f5:5e:b2:cd:26:0f:d0:05:95:45:2d: 27:b6:ec:db:2d:6b:05:f1:c9:f3:3e:f2:8d:16:80:49:63:9d: 98:69:e0:7d:71:6e:47:17:43:59:fa:47:2f:71:33:a6:1f:d6: 11:0c:59:81:83:24:25:13:00:02:50:b3:bf:d4:23:0d:9d:ec: c3:7e:57:33:4f:21:8f:b4:dd:aa:f5:c7:02:f4:2c:cb:08:9a: 29:d0:d0:39:2f:1b:65:e4:2b:b6:4d:d4:5a:87:13:5b:5e:9a: cb:cf:30:c0:39:02:fc:5a:63:7f:2f:84:7d:d0:fe:db:72:88: f7:9c:1a:8b:95:b2:8b:10:dd:f3:e9:4b:88:1d:33:31:fe:3a: c9:17:90:ca:a0:75:58:f4:18:93:e6:4e:f3:fd:e7:f9:94:4f: 9a:92:7c:0e:b9:6a:f2:61:75:57:26:1d:36:bd:1b:2a:ee:f4: f1:3d:b0:da:13:eb:e6:e3:78:9c:6d:48:97:d6:68:89:22:18: fa:22:31:1a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkVDMzExMTAvBgNVBAUTKDY3RDc5QzNCMTExNkQzNkZCOUUxNzFENjY1OEY4RjQz QjUzQzcyRkEwHhcNMjUxMDE5MDk1NTQ1WhcNMjUxMDI2MDk1NTQ1WjAYMRYwFAYD VQQDEw02OGY0YjVhMS0wMTQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7NiXEbz/LgqUYR6R8WuGuXYxgQW7J40Sdlcacp7hNPgtpctoNcBK9MdB8Ryd wYUsrc8MCarqy2gVBXUDpvKxrTuUlOWSGnIjbbxnBU0TkovRS8aqro1X6WCXUmX6 fKG1DrO70PLFUlO85n6jxNMdsdfNBkSnDlH/nMX9bIOpNdw5gJ/vjsK29Mfjj6DY dE66UsukrYH2fv/ERK373VgoEwlYIDf2ZBzDb0RJHi3PBOjnNntLz58Fpu95pFvg 5pVV74G4pdq0OgejOSigVBqzZGzw5SFMF5jtlcXF6hqw9hY7YqMBA4mEhxOGYgGY XuBXVSHqSQU9rjIoginwiU0w8wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGypOec0 IIgnMqJt568VfMmY8vYYMB8GA1UdIwQYMBaAFGfXnDsRFtNvueFx1mWPj0O1PHL6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRUMzMS8zQ0Y1MzYyMkU0 QTQxMUVGQjI3NkYyNURDNEY5QUUwMi9aOWVjT3hFVzAyLTU0WEhXWlktUFE3VThj dm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1o5ZWNPeEVXMDItNTRYSFdaWS1QUTdVOGN2by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RUMzMS8zQ0Y1MzYyMkU0QTQxMUVGQjI3NkYyNURDNEY5QUUwMi9aOWVjT3hFVzAy LTU0WEhXWlktUFE3VThjdm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA/dqQoJA4UVBXI5aA1lmlsjj3JqRCRNnM669fSzKuEDt6IhTlQKVhe oxOm7fTAE8m13dEZnnaiEfBA917H9V6yzSYP0AWVRS0ntuzbLWsF8cnzPvKNFoBJ Y52YaeB9cW5HF0NZ+kcvcTOmH9YRDFmBgyQlEwACULO/1CMNnezDflczTyGPtN2q 9ccC9CzLCJop0NA5Lxtl5Cu2TdRahxNbXprLzzDAOQL8WmN/L4R90P7bcoj3nBqL lbKLEN3z6UuIHTMx/jrJF5DKoHVY9BiT5k7z/ef5lE+aknwOuWryYXVXJh02vRsq 7vTxPbDaE+vm43icbUiX1miJIhj6IjEa -----END CERTIFICATE-----Generated at Mon Oct 20 18:45:23 2025 by rpki-client