$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE978/5DB555AAB8DA11EEBC4BEC2DC4F9AE02/RZTy7BffVsPQZUDzZtKvEYsxfx4.mft File: RZTy7BffVsPQZUDzZtKvEYsxfx4.mft (raw, json) Hash identifier: 4ZAO9zw3v+9xl7xDvvQwXapeWH0vCo9ehXrHMjJN8Mk= Subject key identifier: 34:AF:41:49:67:AA:3B:BC:2B:2D:5C:4F:91:F7:94:B6:DF:61:56:39 Authority key identifier: 45:94:F2:EC:17:DF:56:C3:D0:65:40:F3:66:D2:AF:11:8B:31:7F:1E Certificate issuer: /CN=A91CE978/serialNumber=4594F2EC17DF56C3D06540F366D2AF118B317F1E Certificate serial: 0150 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RZTy7BffVsPQZUDzZtKvEYsxfx4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE978/5DB555AAB8DA11EEBC4BEC2DC4F9AE02/RZTy7BffVsPQZUDzZtKvEYsxfx4.mft Manifest number: 014D Signing time: Mon 20 Oct 2025 14:57:42 +0000 Manifest this update: Mon 20 Oct 2025 14:57:42 +0000 Manifest next update: Mon 27 Oct 2025 14:57:42 +0000 Files and hashes: 1: RZTy7BffVsPQZUDzZtKvEYsxfx4.crl (hash: aomfhaqkNpqA04R6msN4aoT1e5hqJ8xbHM13Txpw1nE=) 2: 30EAE110B9AD11EE83063243C4F9AE02.roa (hash: /mgu4P2twSDACdGUYPekQQEcvJH+CFlbuOsPxwdYvXg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE978/5DB555AAB8DA11EEBC4BEC2DC4F9AE02/RZTy7BffVsPQZUDzZtKvEYsxfx4.crl rsync://rpki.apnic.net/member_repository/A91CE978/5DB555AAB8DA11EEBC4BEC2DC4F9AE02/RZTy7BffVsPQZUDzZtKvEYsxfx4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RZTy7BffVsPQZUDzZtKvEYsxfx4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Oct 2025 14:57:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 336 (0x150) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE978, serialNumber=4594F2EC17DF56C3D06540F366D2AF118B317F1E Validity Not Before: Oct 20 14:57:42 2025 GMT Not After : Oct 27 14:57:42 2025 GMT Subject: CN=68f64de6-53e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:42:61:26:43:19:db:1b:8b:e5:9e:fc:58:22: a8:c9:56:1a:33:74:02:06:92:d6:79:e4:64:d4:f0: 52:1a:94:c0:d0:d7:59:8a:77:37:ec:d1:5d:7e:a5: 4c:41:0e:4a:6d:b6:07:a1:00:c2:8a:8a:42:99:8b: 26:7d:21:81:73:d8:95:f9:97:63:c8:5c:c4:17:f0: f7:b1:53:51:2a:6d:6a:62:f8:f8:d8:76:6b:07:a1: ac:1e:e2:a3:71:d1:08:51:fd:bc:c4:78:6a:90:7e: 47:50:33:01:04:b3:20:97:3b:55:b9:6a:ff:96:9e: 36:a8:7b:30:b0:15:9a:36:8f:95:13:3e:a8:40:aa: f5:25:f6:55:52:c2:36:51:f2:4f:62:b2:dd:5e:6b: 83:d4:c5:10:8f:cb:45:17:ea:de:3e:13:00:fb:17: 3c:b9:7b:26:f2:13:e2:29:d9:10:0b:5e:4e:66:d4: 2d:f3:e2:31:f5:8d:04:b4:13:e2:ef:25:f5:3f:f8: fa:90:9f:52:6f:bf:2a:a7:60:15:4d:f0:2b:ee:1d: cc:99:7b:5a:4e:c0:8f:7a:58:f4:46:95:96:67:88: 07:2c:f5:71:6f:73:d5:c6:0a:fc:dc:80:11:d7:48: 00:f8:75:6e:8f:68:c4:73:bb:a6:c9:27:d1:03:d5: 05:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:AF:41:49:67:AA:3B:BC:2B:2D:5C:4F:91:F7:94:B6:DF:61:56:39 X509v3 Authority Key Identifier: keyid:45:94:F2:EC:17:DF:56:C3:D0:65:40:F3:66:D2:AF:11:8B:31:7F:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE978/5DB555AAB8DA11EEBC4BEC2DC4F9AE02/RZTy7BffVsPQZUDzZtKvEYsxfx4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RZTy7BffVsPQZUDzZtKvEYsxfx4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE978/5DB555AAB8DA11EEBC4BEC2DC4F9AE02/RZTy7BffVsPQZUDzZtKvEYsxfx4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 96:9c:c6:9a:36:23:6d:19:8d:bd:f7:3d:4c:35:f3:07:7a:31: 47:10:4b:ef:ac:c0:03:73:f9:7f:43:67:63:a7:4f:da:db:03: df:81:b0:84:42:7b:ca:d3:cf:ae:14:3e:d8:ef:fc:6d:4b:32: 5c:1d:a2:7f:e9:df:47:79:0a:98:47:be:c7:1a:b4:11:0f:4d: c2:ae:85:24:bc:30:8b:21:4b:f6:fa:a0:60:a9:a1:36:f5:03: ec:51:54:54:9c:dc:02:e6:db:7b:5d:94:cc:a8:07:c4:86:be: 18:79:d1:a9:ad:04:64:0a:55:09:b5:37:d6:fa:d7:d6:16:13: 2e:82:4a:0e:f5:1e:3d:91:d0:9f:8c:6f:72:d7:0e:39:68:9a: ff:f5:0c:47:75:76:c3:72:61:44:51:0c:15:38:68:d6:f5:5e: 81:36:16:92:e3:ec:3c:02:8c:97:9f:fd:14:45:f4:6b:33:6b: c2:37:6d:f6:fa:12:6c:2d:37:5c:28:ba:3c:67:e5:09:60:e5: 4a:22:23:d8:0d:3d:08:1d:a3:0d:13:47:0b:69:fb:53:19:77: 50:99:84:64:d4:c5:e8:4d:db:a7:ea:3f:5f:13:ec:0c:74:56: c0:3d:4c:d4:13:58:d4:2c:27:78:78:8a:6c:2b:d6:19:0e:80: 93:5d:cd:59 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U5NzgxMTAvBgNVBAUTKDQ1OTRGMkVDMTdERjU2QzNEMDY1NDBGMzY2RDJBRjEx OEIzMTdGMUUwHhcNMjUxMDIwMTQ1NzQyWhcNMjUxMDI3MTQ1NzQyWjAYMRYwFAYD VQQDEw02OGY2NGRlNi01M2UyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnkJhJkMZ2xuL5Z78WCKoyVYaM3QCBpLWeeRk1PBSGpTA0NdZinc37NFdfqVM QQ5KbbYHoQDCiopCmYsmfSGBc9iV+ZdjyFzEF/D3sVNRKm1qYvj42HZrB6GsHuKj cdEIUf28xHhqkH5HUDMBBLMglztVuWr/lp42qHswsBWaNo+VEz6oQKr1JfZVUsI2 UfJPYrLdXmuD1MUQj8tFF+rePhMA+xc8uXsm8hPiKdkQC15OZtQt8+Ix9Y0EtBPi 7yX1P/j6kJ9Sb78qp2AVTfAr7h3MmXtaTsCPelj0RpWWZ4gHLPVxb3PVxgr83IAR 10gA+HVuj2jEc7umySfRA9UFdQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDSvQUln qju8Ky1cT5H3lLbfYVY5MB8GA1UdIwQYMBaAFEWU8uwX31bD0GVA82bSrxGLMX8e MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTk3OC81REI1NTVBQUI4 REExMUVFQkM0QkVDMkRDNEY5QUUwMi9SWlR5N0JmZlZzUFFaVUR6WnRLdkVZc3hm eDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1JaVHk3QmZmVnNQUVpVRHpadEt2RVlzeGZ4NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTk3OC81REI1NTVBQUI4REExMUVFQkM0QkVDMkRDNEY5QUUwMi9SWlR5N0JmZlZz UFFaVUR6WnRLdkVZc3hmeDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCWnMaaNiNtGY299z1MNfMHejFHEEvvrMADc/l/Q2djp0/a2wPfgbCE QnvK08+uFD7Y7/xtSzJcHaJ/6d9HeQqYR77HGrQRD03CroUkvDCLIUv2+qBgqaE2 9QPsUVRUnNwC5tt7XZTMqAfEhr4YedGprQRkClUJtTfW+tfWFhMugkoO9R49kdCf jG9y1w45aJr/9QxHdXbDcmFEUQwVOGjW9V6BNhaS4+w8AoyXn/0URfRrM2vCN232 +hJsLTdcKLo8Z+UJYOVKIiPYDT0IHaMNE0cLaftTGXdQmYRk1MXoTdun6j9fE+wM dFbAPUzUE1jULCd4eIpsK9YZDoCTXc1Z -----END CERTIFICATE-----Generated at Tue Oct 21 11:02:57 2025 by rpki-client