$ rpki-client -vvf rpki.apnic.net/member_repository/A91E0D87/F683CEF221EB11EC92501819C4F9AE02/cl_Zd85zS7qZM_KUPcJpOfoGCKc.mft File: cl_Zd85zS7qZM_KUPcJpOfoGCKc.mft (raw, json) Hash identifier: X9JOegIvqYWg0ly97qniQ5zBsn3zXs5IC2NaZg7GGcw= Subject key identifier: 35:AC:23:AD:65:3F:EF:81:0E:66:9F:98:6A:47:DD:81:BC:1A:D5:5F Authority key identifier: 72:5F:D9:77:CE:73:4B:BA:99:33:F2:94:3D:C2:69:39:FA:06:08:A7 Certificate issuer: /CN=A91E0D87/serialNumber=725FD977CE734BBA9933F2943DC26939FA0608A7 Certificate serial: 0562 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cl_Zd85zS7qZM_KUPcJpOfoGCKc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E0D87/F683CEF221EB11EC92501819C4F9AE02/cl_Zd85zS7qZM_KUPcJpOfoGCKc.mft Manifest number: 053F Signing time: Sun 19 Oct 2025 01:20:35 +0000 Manifest this update: Sun 19 Oct 2025 01:20:35 +0000 Manifest next update: Sun 26 Oct 2025 01:20:35 +0000 Files and hashes: 1: cl_Zd85zS7qZM_KUPcJpOfoGCKc.crl (hash: W2egwzmvYmhp8J4KXMqnQSGDuTgg5UtgLz4GiRPCWvs=) 2: 281169C4A73611F0A0612258C4F9AE02.roa (hash: JxAee0u2+/ORag8Ub3d+619mOFxoeciDSE1YdK1uC+k=) 3: A3E5DB46A8B911F09B776445C4F9AE02.roa (hash: qOtnCDQlpjOtnx/hK0mhrlg08ljwiyNWi/uM19rlLro=) 4: 62ED6500AAA811F08354A21BC4F9AE02.roa (hash: vjbSOOLNJDY5yatPTxR5boJbOTza5NuKqklQG4hwaLQ=) 5: 345F56F87FE311EF80C0F71FC4F9AE02.roa (hash: GPBxxSS7tjXB56EHA0eFK8gRXpMRgACbmw5NUyFguDY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E0D87/F683CEF221EB11EC92501819C4F9AE02/cl_Zd85zS7qZM_KUPcJpOfoGCKc.crl rsync://rpki.apnic.net/member_repository/A91E0D87/F683CEF221EB11EC92501819C4F9AE02/cl_Zd85zS7qZM_KUPcJpOfoGCKc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cl_Zd85zS7qZM_KUPcJpOfoGCKc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 01:20:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1378 (0x562) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E0D87, serialNumber=725FD977CE734BBA9933F2943DC26939FA0608A7 Validity Not Before: Oct 19 01:20:35 2025 GMT Not After : Oct 26 01:20:35 2025 GMT Subject: CN=68f43ce3-fcd2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:11:e9:fa:dc:5a:fc:1a:06:cf:95:28:3e:bd: d0:e4:cc:27:2c:8a:03:a5:6d:d8:bb:9b:9b:74:8b: 91:95:a2:a6:cf:7c:a5:52:bb:2f:54:1b:c0:2e:b9: 2f:e1:80:de:38:c0:81:6f:9f:f1:54:38:38:91:1a: f2:0f:f4:46:fe:7f:6d:8d:7c:ac:f1:9d:4e:a3:6d: de:4c:f1:ee:cc:44:ef:b5:68:98:8d:42:68:77:97: b1:02:75:83:59:59:1b:83:f0:9c:19:f9:51:96:10: 39:df:2a:df:43:16:f6:35:34:38:81:a7:98:3e:5c: cc:a2:1e:ba:58:3b:06:ee:a9:55:6d:43:58:53:4e: c3:8d:1f:1f:fa:ca:04:71:0a:78:8b:ff:6f:c7:9a: 7e:66:24:87:d8:ae:ea:51:68:6a:48:eb:38:a9:fe: ea:60:e9:b8:71:17:af:ca:a3:4a:b5:95:8f:4d:47: 3f:6e:ec:0e:52:f6:3a:fc:3f:dc:e3:f7:bc:8a:9c: 98:b1:93:57:36:34:f8:08:cf:a0:19:19:5a:1e:db: a7:cb:5b:60:f1:23:8c:3a:74:9b:2a:d0:c6:c7:fd: 74:26:c7:24:c9:fb:21:18:85:83:8e:4d:a2:14:fd: c3:7b:db:95:7b:75:20:4b:1c:fb:4b:b4:5d:67:55: d6:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:AC:23:AD:65:3F:EF:81:0E:66:9F:98:6A:47:DD:81:BC:1A:D5:5F X509v3 Authority Key Identifier: keyid:72:5F:D9:77:CE:73:4B:BA:99:33:F2:94:3D:C2:69:39:FA:06:08:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E0D87/F683CEF221EB11EC92501819C4F9AE02/cl_Zd85zS7qZM_KUPcJpOfoGCKc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cl_Zd85zS7qZM_KUPcJpOfoGCKc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E0D87/F683CEF221EB11EC92501819C4F9AE02/cl_Zd85zS7qZM_KUPcJpOfoGCKc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 27:f6:32:3e:7f:fc:b0:ef:a5:3a:61:ef:f1:65:ea:2d:e8:8f: f1:6d:0d:13:a1:47:0a:c4:15:ae:3a:a6:4d:e9:d2:2a:bf:89: bb:6c:23:78:48:4c:31:3f:88:4a:d7:a0:e4:d0:de:e7:b9:ce: 79:05:69:4d:4d:1d:95:6f:b6:c9:67:57:97:5d:37:30:14:af: 6d:2e:68:d3:52:b4:a8:06:8a:9d:e5:8e:76:39:04:58:86:b8: 82:d6:43:11:98:e8:e0:85:bb:81:de:51:d5:92:7a:0b:65:8f: b5:15:1f:eb:12:6d:08:26:8a:d1:8d:b0:a8:f3:c8:14:28:e1: 06:bf:44:b6:37:d6:82:93:f8:e2:e2:f6:79:aa:cf:34:ac:dd: 6e:f5:10:dc:55:72:28:a4:47:d6:46:e3:fc:19:06:cf:a1:60: 16:31:85:6c:4b:6a:90:b8:0f:66:f5:76:7c:30:61:8c:cd:3b: 2f:52:80:b6:dd:de:d7:5a:38:13:a1:40:a3:c1:7a:a0:c2:45: c6:ef:41:27:a4:55:c9:82:b3:c7:36:39:9d:2c:10:59:11:1a: 33:85:2d:93:9e:d4:b6:1e:a5:29:88:fc:76:17:91:d4:a9:2b: ed:71:8c:65:9b:17:d9:f4:f8:ee:08:91:b7:c0:dd:60:01:f7: a5:33:48:8b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBWIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTBEODcxMTAvBgNVBAUTKDcyNUZEOTc3Q0U3MzRCQkE5OTMzRjI5NDNEQzI2OTM5 RkEwNjA4QTcwHhcNMjUxMDE5MDEyMDM1WhcNMjUxMDI2MDEyMDM1WjAYMRYwFAYD VQQDEw02OGY0M2NlMy1mY2QyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvRHp+txa/BoGz5UoPr3Q5MwnLIoDpW3Yu5ubdIuRlaKmz3ylUrsvVBvALrkv 4YDeOMCBb5/xVDg4kRryD/RG/n9tjXys8Z1Oo23eTPHuzETvtWiYjUJod5exAnWD WVkbg/CcGflRlhA53yrfQxb2NTQ4gaeYPlzMoh66WDsG7qlVbUNYU07DjR8f+soE cQp4i/9vx5p+ZiSH2K7qUWhqSOs4qf7qYOm4cRevyqNKtZWPTUc/buwOUvY6/D/c 4/e8ipyYsZNXNjT4CM+gGRlaHtuny1tg8SOMOnSbKtDGx/10JsckyfshGIWDjk2i FP3De9uVe3UgSxz7S7RdZ1XWEwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDWsI61l P++BDmafmGpH3YG8GtVfMB8GA1UdIwQYMBaAFHJf2XfOc0u6mTPylD3CaTn6Bgin MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMEQ4Ny9GNjgzQ0VGMjIx RUIxMUVDOTI1MDE4MTlDNEY5QUUwMi9jbF9aZDg1elM3cVpNX0tVUGNKcE9mb0dD S2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NsX1pkODV6UzdxWk1fS1VQY0pwT2ZvR0NLYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MEQ4Ny9GNjgzQ0VGMjIxRUIxMUVDOTI1MDE4MTlDNEY5QUUwMi9jbF9aZDg1elM3 cVpNX0tVUGNKcE9mb0dDS2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAn9jI+f/yw76U6Ye/xZeot6I/xbQ0ToUcKxBWuOqZN6dIqv4m7bCN4 SEwxP4hK16Dk0N7nuc55BWlNTR2Vb7bJZ1eXXTcwFK9tLmjTUrSoBoqd5Y52OQRY hriC1kMRmOjghbuB3lHVknoLZY+1FR/rEm0IJorRjbCo88gUKOEGv0S2N9aCk/ji 4vZ5qs80rN1u9RDcVXIopEfWRuP8GQbPoWAWMYVsS2qQuA9m9XZ8MGGMzTsvUoC2 3d7XWjgToUCjwXqgwkXG70EnpFXJgrPHNjmdLBBZERozhS2TntS2HqUpiPx2F5HU qSvtcYxlmxfZ9PjuCJG3wN1gAfelM0iL -----END CERTIFICATE-----Generated at Sun Oct 19 17:31:16 2025 by rpki-client