$ rpki-client -vvf rpki.apnic.net/member_repository/A91C146D/ECB00B42003711F0BBD72475C4F9AE02/Zk5ZoAC5HnL4A-bYaEEVTIBWuIo.mft File: Zk5ZoAC5HnL4A-bYaEEVTIBWuIo.mft (raw, json) Hash identifier: XDDmby5f5mjKKJzYCKWGBQZb64VcJhqUV6mLVlZNMwg= Subject key identifier: 8B:1D:09:18:06:57:20:58:A6:EC:EC:6F:C4:2E:B7:9A:6F:F2:8D:4A Authority key identifier: 66:4E:59:A0:00:B9:1E:72:F8:03:E6:D8:68:41:15:4C:80:56:B8:8A Certificate issuer: /CN=A91C146D/serialNumber=664E59A000B91E72F803E6D86841154C8056B88A Certificate serial: 7C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Zk5ZoAC5HnL4A-bYaEEVTIBWuIo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C146D/ECB00B42003711F0BBD72475C4F9AE02/Zk5ZoAC5HnL4A-bYaEEVTIBWuIo.mft Manifest number: 76 Signing time: Sun 19 Oct 2025 10:13:38 +0000 Manifest this update: Sun 19 Oct 2025 10:13:38 +0000 Manifest next update: Sun 26 Oct 2025 10:13:38 +0000 Files and hashes: 1: Zk5ZoAC5HnL4A-bYaEEVTIBWuIo.crl (hash: pk7zIYUhPDLvA7VAMdNr3PFJCrhxCo02FQvyBR2zA5I=) 2: 992A7358004211F0AC90656CC4F9AE02.roa (hash: 6uK19EDHQqPyaVVXXtHQJXfGGnOJLngyIEFvwQHYfKo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C146D/ECB00B42003711F0BBD72475C4F9AE02/Zk5ZoAC5HnL4A-bYaEEVTIBWuIo.crl rsync://rpki.apnic.net/member_repository/A91C146D/ECB00B42003711F0BBD72475C4F9AE02/Zk5ZoAC5HnL4A-bYaEEVTIBWuIo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Zk5ZoAC5HnL4A-bYaEEVTIBWuIo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 10:13:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 124 (0x7c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C146D, serialNumber=664E59A000B91E72F803E6D86841154C8056B88A Validity Not Before: Oct 19 10:13:38 2025 GMT Not After : Oct 26 10:13:38 2025 GMT Subject: CN=68f4b9d2-4579 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:8d:aa:0b:25:00:12:20:58:85:a6:eb:cc:a4: 42:9a:7a:ee:17:ff:42:44:8b:14:b8:3c:b7:34:a0: 2d:04:f3:b0:49:b6:b3:1c:fa:72:58:c3:3e:73:43: db:de:53:93:84:54:26:f7:c5:93:83:35:8c:e8:c7: 32:71:b3:ed:09:fb:7f:3f:55:7a:0b:69:6b:9f:dd: 1f:c4:3e:36:f7:f6:5f:01:6c:14:41:c6:37:3f:39: 6f:d0:29:48:64:d9:e6:25:d3:32:7b:f5:b9:80:8a: 4b:ab:9d:06:45:18:92:df:db:d8:f0:26:e1:fb:77: 56:de:53:a2:d6:ab:8d:4b:77:5c:55:5a:c8:bf:17: 4a:74:a1:b3:55:3a:5c:d0:6b:be:4e:77:ba:66:92: d5:9a:6b:69:e3:5b:e5:67:4e:46:18:92:d3:79:67: 59:a3:a9:54:f9:68:97:ae:6d:ea:16:b8:9d:02:68: b4:ad:55:da:d6:85:a1:06:a6:f5:55:8e:fb:66:b9: f4:80:bf:48:7b:d8:2f:e1:1a:8e:90:ff:e1:51:51: d2:0b:c7:6e:2e:a6:51:c1:71:e3:29:47:38:d6:c4: 4e:e1:67:f2:08:43:18:42:3e:23:dd:10:2e:43:e2: db:43:74:0b:d9:84:86:5d:eb:e3:01:3a:1a:5b:1a: 73:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:1D:09:18:06:57:20:58:A6:EC:EC:6F:C4:2E:B7:9A:6F:F2:8D:4A X509v3 Authority Key Identifier: keyid:66:4E:59:A0:00:B9:1E:72:F8:03:E6:D8:68:41:15:4C:80:56:B8:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C146D/ECB00B42003711F0BBD72475C4F9AE02/Zk5ZoAC5HnL4A-bYaEEVTIBWuIo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Zk5ZoAC5HnL4A-bYaEEVTIBWuIo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C146D/ECB00B42003711F0BBD72475C4F9AE02/Zk5ZoAC5HnL4A-bYaEEVTIBWuIo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7a:41:cd:26:96:dd:58:46:dc:93:0d:1d:41:4b:fd:96:3f:6d: 5b:dd:9f:d1:93:02:6c:f9:24:04:8b:1a:6a:76:e5:bc:76:78: 70:9e:34:d1:b8:b9:1b:7a:c2:95:21:41:0f:6e:be:00:da:c3: 87:a6:16:1e:3a:92:56:ae:7e:bf:72:55:58:18:84:78:ad:d7: 80:bf:f7:65:43:4f:5a:12:9c:e8:45:f8:8b:84:c5:9e:6d:b7: 96:8d:03:67:ff:04:8f:bc:45:7f:c4:e8:4a:81:c2:7c:1f:b6: 86:ed:09:00:16:52:77:22:58:38:3f:60:a5:67:ba:08:02:1c: 8b:2a:a6:bd:f1:53:e9:0f:8f:6e:39:78:bc:6c:1a:21:36:2a: ee:f2:e0:19:ed:ed:76:46:af:86:24:17:eb:85:77:53:74:30: 80:a6:00:98:c1:9e:d6:51:fa:4d:45:fd:02:28:c1:de:de:ca: 5a:ef:5f:53:78:fa:6c:70:fb:00:95:8c:ca:2b:12:72:63:df: f8:e9:9b:ef:8d:34:5f:6c:ca:6f:06:59:f9:bb:a2:3c:22:1c: 18:db:08:04:46:e5:fa:a9:c4:26:d6:7a:35:45:de:ec:bc:8e: 21:3f:ea:93:c9:e8:bd:cc:a9:83:21:26:d4:83:38:44:9f:6c: a9:2f:1f:35 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBfDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD MTQ2RDExMC8GA1UEBRMoNjY0RTU5QTAwMEI5MUU3MkY4MDNFNkQ4Njg0MTE1NEM4 MDU2Qjg4QTAeFw0yNTEwMTkxMDEzMzhaFw0yNTEwMjYxMDEzMzhaMBgxFjAUBgNV BAMTDTY4ZjRiOWQyLTQ1NzkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDCjaoLJQASIFiFpuvMpEKaeu4X/0JEixS4PLc0oC0E87BJtrMc+nJYwz5zQ9ve U5OEVCb3xZODNYzoxzJxs+0J+38/VXoLaWuf3R/EPjb39l8BbBRBxjc/OW/QKUhk 2eYl0zJ79bmAikurnQZFGJLf29jwJuH7d1beU6LWq41Ld1xVWsi/F0p0obNVOlzQ a75Od7pmktWaa2njW+VnTkYYktN5Z1mjqVT5aJeubeoWuJ0CaLStVdrWhaEGpvVV jvtmufSAv0h72C/hGo6Q/+FRUdILx24uplHBceMpRzjWxE7hZ/IIQxhCPiPdEC5D 4ttDdAvZhIZd6+MBOhpbGnNpAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUix0JGAZX IFim7OxvxC63mm/yjUowHwYDVR0jBBgwFoAUZk5ZoAC5HnL4A+bYaEEVTIBWuIow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUMxNDZEL0VDQjAwQjQyMDAz NzExRjBCQkQ3MjQ3NUM0RjlBRTAyL1prNVpvQUM1SG5MNEEtYllhRUVWVElCV3VJ by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvWms1Wm9BQzVIbkw0QS1iWWFFRVZUSUJXdUlvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUMx NDZEL0VDQjAwQjQyMDAzNzExRjBCQkQ3MjQ3NUM0RjlBRTAyL1prNVpvQUM1SG5M NEEtYllhRUVWVElCV3VJby5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHpBzSaW3VhG3JMNHUFL/ZY/bVvdn9GTAmz5JASLGmp25bx2eHCeNNG4 uRt6wpUhQQ9uvgDaw4emFh46klaufr9yVVgYhHit14C/92VDT1oSnOhF+IuExZ5t t5aNA2f/BI+8RX/E6EqBwnwftobtCQAWUnciWDg/YKVnuggCHIsqpr3xU+kPj245 eLxsGiE2Ku7y4Bnt7XZGr4YkF+uFd1N0MICmAJjBntZR+k1F/QIowd7eylrvX1N4 +mxw+wCVjMorEnJj3/jpm++NNF9sym8GWfm7ojwiHBjbCARG5fqpxCbWejVF3uy8 jiE/6pPJ6L3MqYMhJtSDOESfbKkvHzU= -----END CERTIFICATE-----Generated at Mon Oct 20 17:00:23 2025 by rpki-client