$ rpki-client -vvf rpki.apnic.net/member_repository/A91C66B2/C4F15472201611F0A8D74314C4F9AE02/PzH7XY70fa043ZLqGonoiHFAOjE.mft File: PzH7XY70fa043ZLqGonoiHFAOjE.mft (raw, json) Hash identifier: tu1iAGq5zcamR33/JuYZQ8PgBFIKLbgofEcgDDkDc0w= Subject key identifier: 2E:33:4F:36:00:42:CD:27:D7:51:4E:6C:41:5B:AA:01:0F:A9:78:DF Authority key identifier: 3F:31:FB:5D:8E:F4:7D:AD:38:DD:92:EA:1A:89:E8:88:71:40:3A:31 Certificate issuer: /CN=A91C66B2/serialNumber=3F31FB5D8EF47DAD38DD92EA1A89E88871403A31 Certificate serial: 5C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PzH7XY70fa043ZLqGonoiHFAOjE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C66B2/C4F15472201611F0A8D74314C4F9AE02/PzH7XY70fa043ZLqGonoiHFAOjE.mft Manifest number: 5B Signing time: Sun 19 Oct 2025 10:30:43 +0000 Manifest this update: Sun 19 Oct 2025 10:30:42 +0000 Manifest next update: Sun 26 Oct 2025 10:30:42 +0000 Files and hashes: 1: PzH7XY70fa043ZLqGonoiHFAOjE.crl (hash: WXIYBmEQtxwNInHQZE2LY5z7M+TtRKDewMdw/p3pUHM=) 2: F8C50B08201711F0A5D51F16C4F9AE02.roa (hash: YsXcAlte05qmGIgWu2vJoEwWF+8nksJR/jWNa1FgQP4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C66B2/C4F15472201611F0A8D74314C4F9AE02/PzH7XY70fa043ZLqGonoiHFAOjE.crl rsync://rpki.apnic.net/member_repository/A91C66B2/C4F15472201611F0A8D74314C4F9AE02/PzH7XY70fa043ZLqGonoiHFAOjE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PzH7XY70fa043ZLqGonoiHFAOjE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 10:30:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 92 (0x5c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C66B2, serialNumber=3F31FB5D8EF47DAD38DD92EA1A89E88871403A31 Validity Not Before: Oct 19 10:30:42 2025 GMT Not After : Oct 26 10:30:42 2025 GMT Subject: CN=68f4bdd3-94b9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:c0:7f:64:7f:80:11:47:10:a5:b1:93:e6:1f: 64:b6:ee:b5:9d:93:84:36:82:6f:28:20:9c:fe:2c: d7:a6:05:54:43:92:ac:63:fe:8e:9a:b6:89:9f:71: b2:83:e4:e8:14:7f:19:a5:bf:8b:a2:84:7f:6e:6d: 14:ae:1d:9c:77:1a:83:48:aa:6c:b7:2d:07:e7:16: b1:91:bf:10:cd:ec:c6:08:87:22:b7:d8:cd:3e:9d: 80:67:b3:51:88:c0:0c:57:b4:da:49:f0:f5:eb:89: 28:0a:39:bb:78:75:e5:f6:c4:fb:76:7b:2e:2c:15: 58:ae:8a:fa:68:cc:a9:57:8a:5b:e6:f0:e9:86:47: 45:53:b5:93:d5:c7:81:7e:f1:20:73:a2:34:50:c1: 36:68:5c:57:ea:05:a1:4d:ce:c6:12:6e:1b:b8:47: 55:e3:9a:0d:05:9a:b5:88:6b:e4:97:8d:f7:39:ef: 35:d4:f7:4f:12:b9:ae:75:2c:d3:3a:e8:3d:f1:0a: 6a:aa:94:28:9b:ee:99:72:7f:03:d6:47:9a:1f:10: 1a:64:d0:21:44:d4:b5:fc:55:3e:ab:19:1c:d2:ff: 1c:49:47:64:65:b2:92:80:be:8e:74:a1:22:18:d9: 73:f4:5e:c6:b9:e2:92:f9:e0:f5:aa:00:17:30:26: dd:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:33:4F:36:00:42:CD:27:D7:51:4E:6C:41:5B:AA:01:0F:A9:78:DF X509v3 Authority Key Identifier: keyid:3F:31:FB:5D:8E:F4:7D:AD:38:DD:92:EA:1A:89:E8:88:71:40:3A:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C66B2/C4F15472201611F0A8D74314C4F9AE02/PzH7XY70fa043ZLqGonoiHFAOjE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PzH7XY70fa043ZLqGonoiHFAOjE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C66B2/C4F15472201611F0A8D74314C4F9AE02/PzH7XY70fa043ZLqGonoiHFAOjE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 46:03:df:df:dd:73:e7:6d:0d:6d:c2:b4:c7:d1:18:93:eb:10: 17:3f:e0:ff:1a:1c:c2:17:6f:6a:59:2c:17:47:1a:a1:db:6f: 3e:98:cc:80:e7:db:07:89:e1:9d:fd:76:60:85:54:d7:92:33: da:91:98:bc:ac:40:9e:89:6c:26:58:d0:3a:8c:38:0a:56:5b: 71:ff:57:da:7b:67:27:d8:27:5e:90:fe:f1:db:87:9c:5a:74: db:33:10:8b:ce:bc:04:8d:a8:51:81:11:c6:8e:ec:7c:ca:93: 7f:f0:58:3e:cc:30:ab:1a:39:7d:08:49:c6:d4:b7:aa:10:c6: 8c:4f:e1:4f:39:86:9f:1c:90:3f:d9:b4:8c:66:6b:2e:84:2b: 97:03:05:06:3b:ff:a1:27:f1:fd:58:97:55:0b:90:4b:72:cf: ea:1b:a7:dc:8e:69:05:3a:2b:94:8c:60:76:21:24:d1:c3:52: db:2e:fe:a8:b6:76:a4:96:f2:40:8c:69:8c:f7:8b:7f:07:f9: 04:70:39:5f:0a:d8:e2:c4:bd:39:73:ce:87:ba:0b:d3:d9:25: a2:e4:e9:6f:a0:0a:b4:54:82:26:f3:96:e5:63:c2:78:2a:e4: ce:d9:39:ee:9b:91:71:b4:6f:af:87:8c:e3:fd:51:0e:99:ce: a6:b4:e8:87 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBXDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD NjZCMjExMC8GA1UEBRMoM0YzMUZCNUQ4RUY0N0RBRDM4REQ5MkVBMUE4OUU4ODg3 MTQwM0EzMTAeFw0yNTEwMTkxMDMwNDJaFw0yNTEwMjYxMDMwNDJaMBgxFjAUBgNV BAMTDTY4ZjRiZGQzLTk0YjkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCUwH9kf4ARRxClsZPmH2S27rWdk4Q2gm8oIJz+LNemBVRDkqxj/o6atomfcbKD 5OgUfxmlv4uihH9ubRSuHZx3GoNIqmy3LQfnFrGRvxDN7MYIhyK32M0+nYBns1GI wAxXtNpJ8PXriSgKObt4deX2xPt2ey4sFViuivpozKlXilvm8OmGR0VTtZPVx4F+ 8SBzojRQwTZoXFfqBaFNzsYSbhu4R1Xjmg0FmrWIa+SXjfc57zXU908Sua51LNM6 6D3xCmqqlCib7plyfwPWR5ofEBpk0CFE1LX8VT6rGRzS/xxJR2RlspKAvo50oSIY 2XP0Xsa54pL54PWqABcwJt0hAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQULjNPNgBC zSfXUU5sQVuqAQ+peN8wHwYDVR0jBBgwFoAUPzH7XY70fa043ZLqGonoiHFAOjEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM2NkIyL0M0RjE1NDcyMjAx NjExRjBBOEQ3NDMxNEM0RjlBRTAyL1B6SDdYWTcwZmEwNDNaTHFHb25vaUhGQU9q RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvUHpIN1hZNzBmYTA0M1pMcUdvbm9pSEZBT2pFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM2 NkIyL0M0RjE1NDcyMjAxNjExRjBBOEQ3NDMxNEM0RjlBRTAyL1B6SDdYWTcwZmEw NDNaTHFHb25vaUhGQU9qRS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAEYD39/dc+dtDW3CtMfRGJPrEBc/4P8aHMIXb2pZLBdHGqHbbz6YzIDn 2weJ4Z39dmCFVNeSM9qRmLysQJ6JbCZY0DqMOApWW3H/V9p7ZyfYJ16Q/vHbh5xa dNszEIvOvASNqFGBEcaO7HzKk3/wWD7MMKsaOX0IScbUt6oQxoxP4U85hp8ckD/Z tIxmay6EK5cDBQY7/6En8f1Yl1ULkEtyz+obp9yOaQU6K5SMYHYhJNHDUtsu/qi2 dqSW8kCMaYz3i38H+QRwOV8K2OLEvTlzzoe6C9PZJaLk6W+gCrRUgibzluVjwngq 5M7ZOe6bkXG0b6+HjOP9UQ6Zzqa06Ic= -----END CERTIFICATE-----Generated at Mon Oct 20 04:04:50 2025 by rpki-client