$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4743/670F8092BB6F11EA961FB84EC4F9AE02/ZVQs7CgRH8VLo9Ku4z9M6Ht_kK0.mft File: ZVQs7CgRH8VLo9Ku4z9M6Ht_kK0.mft (raw, json) Hash identifier: onTgyHdSeoawQ34Ks20OfQJwmMQyzqjocncKbT3DCj0= Subject key identifier: DD:48:A7:35:80:1A:2A:42:4E:D0:C5:AB:72:31:26:79:ED:6D:B0:F3 Authority key identifier: 65:54:2C:EC:28:11:1F:C5:4B:A3:D2:AE:E3:3F:4C:E8:7B:7F:90:AD Certificate issuer: /CN=A91E4743/serialNumber=65542CEC28111FC54BA3D2AEE33F4CE87B7F90AD Certificate serial: 08F5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZVQs7CgRH8VLo9Ku4z9M6Ht_kK0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4743/670F8092BB6F11EA961FB84EC4F9AE02/ZVQs7CgRH8VLo9Ku4z9M6Ht_kK0.mft Manifest number: 08EB Signing time: Sat 18 Oct 2025 21:29:26 +0000 Manifest this update: Sat 18 Oct 2025 21:29:26 +0000 Manifest next update: Sat 25 Oct 2025 21:29:26 +0000 Files and hashes: 1: ZVQs7CgRH8VLo9Ku4z9M6Ht_kK0.crl (hash: eCvEFa7/onRk8WCLscpZE5RBbufUVUraTs2ZD/bFeQM=) 2: 1B2E0738BB7011EA93F7DE4EC4F9AE02.roa (hash: DH2TgfKB8NohjnBrZDPqDwBioU/uRY/Ew7yARHh+9qg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4743/670F8092BB6F11EA961FB84EC4F9AE02/ZVQs7CgRH8VLo9Ku4z9M6Ht_kK0.crl rsync://rpki.apnic.net/member_repository/A91E4743/670F8092BB6F11EA961FB84EC4F9AE02/ZVQs7CgRH8VLo9Ku4z9M6Ht_kK0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZVQs7CgRH8VLo9Ku4z9M6Ht_kK0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 21:29:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2293 (0x8f5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4743, serialNumber=65542CEC28111FC54BA3D2AEE33F4CE87B7F90AD Validity Not Before: Oct 18 21:29:26 2025 GMT Not After : Oct 25 21:29:26 2025 GMT Subject: CN=68f406b6-821e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:8f:b0:5a:39:a9:39:88:96:1b:9d:c3:ec:63: e0:17:d5:75:20:dd:1d:b9:44:d4:f3:c8:e0:8a:d3: 76:09:17:3a:45:49:ca:25:35:67:5a:d3:d3:28:cc: dc:d4:cb:b9:7f:52:9b:30:c3:b9:87:54:de:a7:67: f2:6d:02:45:5a:9f:dd:15:c6:47:c0:15:4f:e8:6f: 70:34:56:33:6f:ef:a7:29:a4:a0:1d:25:09:3a:43: f6:d9:f3:6d:3f:35:19:69:39:fe:5e:7d:cd:08:9c: 51:cd:81:d6:f4:c6:b7:f3:f8:89:dc:56:5d:92:8f: 84:8a:a2:fa:f7:f2:10:e0:c5:f8:4f:2e:6b:a6:d2: de:51:94:41:0f:3d:3e:66:22:7a:b7:87:89:ea:e8: 6a:ae:53:e1:08:e2:77:87:98:a0:db:d6:69:7e:bf: 5b:3c:4a:35:4f:df:33:87:78:ef:19:5d:bc:fd:9e: 11:5c:27:0b:f5:a7:9b:83:0c:eb:1b:51:94:f0:c4: b5:6f:10:6b:48:33:46:78:54:c2:29:19:a0:6f:cf: bf:08:8a:a6:1e:d9:c6:4f:34:cc:7c:4c:41:73:21: 79:f9:c7:80:8f:da:04:f2:c1:b4:15:5f:b7:70:47: 4c:6b:38:a7:ad:e6:45:e7:63:23:18:45:ee:89:eb: 33:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:48:A7:35:80:1A:2A:42:4E:D0:C5:AB:72:31:26:79:ED:6D:B0:F3 X509v3 Authority Key Identifier: keyid:65:54:2C:EC:28:11:1F:C5:4B:A3:D2:AE:E3:3F:4C:E8:7B:7F:90:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4743/670F8092BB6F11EA961FB84EC4F9AE02/ZVQs7CgRH8VLo9Ku4z9M6Ht_kK0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZVQs7CgRH8VLo9Ku4z9M6Ht_kK0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4743/670F8092BB6F11EA961FB84EC4F9AE02/ZVQs7CgRH8VLo9Ku4z9M6Ht_kK0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 91:cb:86:0e:a7:a5:69:93:4a:d1:6c:17:f1:6f:56:d7:4a:37: 9b:31:f5:f9:4a:e9:96:2e:09:65:18:59:18:11:96:41:86:67: a7:0e:71:b7:48:1b:a5:6e:de:fa:af:6f:ce:8f:b1:f9:47:ed: 5b:f8:ce:37:69:aa:68:0f:d8:b0:16:94:77:2d:a9:e8:b7:68: 94:cc:5d:c6:f9:2a:64:c8:91:51:85:38:58:bb:b3:09:b2:a5: 09:2b:49:ed:e1:31:73:be:a2:47:4e:80:27:a0:76:d8:8d:85: 56:de:69:f9:f5:c0:48:4a:2d:3b:b6:ac:7f:6a:ce:ec:0c:8c: 39:e8:e4:ff:fb:d4:e8:c1:cb:a4:95:71:b9:79:41:eb:d0:59: 76:3c:aa:f4:32:e8:c4:b3:05:3b:1a:73:55:a9:a5:65:80:d5: 5c:f5:f8:88:0b:32:33:92:52:5d:00:80:b3:d2:cf:06:ce:cb: 3f:85:e1:d1:c1:8b:1d:2c:3b:1f:52:9a:e5:aa:fd:e0:cb:79: 07:e9:5e:6d:64:2b:f7:3b:2a:b9:b8:65:26:e0:39:94:d2:d7: 14:1a:6c:33:6e:1e:e9:19:cd:79:89:da:0d:18:2c:a0:ac:81: f9:1c:47:69:19:6f:3d:a1:88:5a:b1:a5:e3:01:e1:94:d4:bc: 22:49:12:a4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCPUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTQ3NDMxMTAvBgNVBAUTKDY1NTQyQ0VDMjgxMTFGQzU0QkEzRDJBRUUzM0Y0Q0U4 N0I3RjkwQUQwHhcNMjUxMDE4MjEyOTI2WhcNMjUxMDI1MjEyOTI2WjAYMRYwFAYD VQQDEw02OGY0MDZiNi04MjFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAto+wWjmpOYiWG53D7GPgF9V1IN0duUTU88jgitN2CRc6RUnKJTVnWtPTKMzc 1Mu5f1KbMMO5h1Tep2fybQJFWp/dFcZHwBVP6G9wNFYzb++nKaSgHSUJOkP22fNt PzUZaTn+Xn3NCJxRzYHW9Ma38/iJ3FZdko+EiqL69/IQ4MX4Ty5rptLeUZRBDz0+ ZiJ6t4eJ6uhqrlPhCOJ3h5ig29Zpfr9bPEo1T98zh3jvGV28/Z4RXCcL9aebgwzr G1GU8MS1bxBrSDNGeFTCKRmgb8+/CIqmHtnGTzTMfExBcyF5+ceAj9oE8sG0FV+3 cEdMazinreZF52MjGEXuieszbQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN1IpzWA GipCTtDFq3IxJnntbbDzMB8GA1UdIwQYMBaAFGVULOwoER/FS6PSruM/TOh7f5Ct MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNDc0My82NzBGODA5MkJC NkYxMUVBOTYxRkI4NEVDNEY5QUUwMi9aVlFzN0NnUkg4VkxvOUt1NHo5TTZIdF9r SzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pWUXM3Q2dSSDhWTG85S3U0ejlNNkh0X2tLMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NDc0My82NzBGODA5MkJCNkYxMUVBOTYxRkI4NEVDNEY5QUUwMi9aVlFzN0NnUkg4 VkxvOUt1NHo5TTZIdF9rSzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCRy4YOp6Vpk0rRbBfxb1bXSjebMfX5SumWLgllGFkYEZZBhmenDnG3 SBulbt76r2/Oj7H5R+1b+M43aapoD9iwFpR3Lanot2iUzF3G+SpkyJFRhThYu7MJ sqUJK0nt4TFzvqJHToAnoHbYjYVW3mn59cBISi07tqx/as7sDIw56OT/+9Towcuk lXG5eUHr0Fl2PKr0MujEswU7GnNVqaVlgNVc9fiICzIzklJdAICz0s8Gzss/heHR wYsdLDsfUprlqv3gy3kH6V5tZCv3Oyq5uGUm4DmU0tcUGmwzbh7pGc15idoNGCyg rIH5HEdpGW89oYhasaXjAeGU1LwiSRKk -----END CERTIFICATE-----Generated at Mon Oct 20 04:14:08 2025 by rpki-client