$ rpki-client -vvf rpki.apnic.net/member_repository/A91E7ED9/F8E0B3B2DBA211EAA88F2066C4F9AE02/z2aDdOx1q1ys0upzBRX3t3ZN2SE.mft File: z2aDdOx1q1ys0upzBRX3t3ZN2SE.mft (raw, json) Hash identifier: 9+r5+ktZZuNUO9kzFiXriitfg1pthhfNVcMNYpT6CgY= Subject key identifier: 5D:F2:FF:70:BD:92:DE:1F:21:07:B4:8E:6A:F1:D4:72:F3:0B:4E:BA Authority key identifier: CF:66:83:74:EC:75:AB:5C:AC:D2:EA:73:05:15:F7:B7:76:4D:D9:21 Certificate issuer: /CN=A91E7ED9/serialNumber=CF668374EC75AB5CACD2EA730515F7B7764DD921 Certificate serial: 085A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z2aDdOx1q1ys0upzBRX3t3ZN2SE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E7ED9/F8E0B3B2DBA211EAA88F2066C4F9AE02/z2aDdOx1q1ys0upzBRX3t3ZN2SE.mft Manifest number: 0854 Signing time: Mon 20 Oct 2025 21:34:55 +0000 Manifest this update: Mon 20 Oct 2025 21:34:55 +0000 Manifest next update: Mon 27 Oct 2025 21:34:55 +0000 Files and hashes: 1: z2aDdOx1q1ys0upzBRX3t3ZN2SE.crl (hash: kCT4gddIaHH307SJks9cYNlrA2v/MoyICbU9/bV3Yp4=) 2: DE349762DBA311EA8DE35866C4F9AE02.roa (hash: W9BGV+7n/b6h+ZEgu/zCV5dkMkakdYDRjim1ueZv/vs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E7ED9/F8E0B3B2DBA211EAA88F2066C4F9AE02/z2aDdOx1q1ys0upzBRX3t3ZN2SE.crl rsync://rpki.apnic.net/member_repository/A91E7ED9/F8E0B3B2DBA211EAA88F2066C4F9AE02/z2aDdOx1q1ys0upzBRX3t3ZN2SE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z2aDdOx1q1ys0upzBRX3t3ZN2SE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Oct 2025 21:29:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2138 (0x85a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E7ED9, serialNumber=CF668374EC75AB5CACD2EA730515F7B7764DD921 Validity Not Before: Oct 20 21:34:55 2025 GMT Not After : Oct 27 21:34:55 2025 GMT Subject: CN=68f6aaff-5cc0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:60:c1:0f:aa:13:98:d3:56:26:78:89:d1:91: be:97:07:66:e6:06:de:14:1e:f5:52:50:45:16:56: d4:c2:dd:b1:be:5e:de:27:a3:75:7a:72:df:6c:2b: e8:22:72:46:e6:ca:a6:b0:70:18:e9:51:ac:77:ed: de:dc:67:fd:af:98:e3:be:bb:b9:32:87:a0:12:4a: 58:50:1c:15:b6:2d:65:e2:4b:c8:ed:ed:6b:93:62: 10:7b:ce:8b:9e:0a:1d:43:e1:fe:5a:ef:81:05:9d: 7f:e2:42:d4:06:5b:4a:58:d1:e7:60:89:f3:6f:5e: b8:2b:54:8b:71:41:75:94:15:57:ad:bd:15:f0:b1: 92:37:23:cf:73:16:aa:8c:27:25:f3:12:4f:e4:65: 19:39:e9:56:a8:ee:93:27:fb:a2:bb:51:78:8d:c4: 22:fc:ee:ac:6f:dd:c2:a7:bb:f9:2e:a4:2b:e3:00: 90:90:bf:cd:4e:3f:3d:23:f3:74:f9:a9:c8:74:78: ca:10:0d:35:d8:66:52:af:ce:7a:3d:01:62:ba:3f: bc:67:99:42:b6:3e:80:0d:68:df:4b:c6:24:57:8c: 67:94:44:7e:9c:39:b5:fc:de:d2:06:92:74:67:22: 01:82:25:73:0d:e5:ab:6b:53:e4:05:a5:be:6f:2a: 56:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:F2:FF:70:BD:92:DE:1F:21:07:B4:8E:6A:F1:D4:72:F3:0B:4E:BA X509v3 Authority Key Identifier: keyid:CF:66:83:74:EC:75:AB:5C:AC:D2:EA:73:05:15:F7:B7:76:4D:D9:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E7ED9/F8E0B3B2DBA211EAA88F2066C4F9AE02/z2aDdOx1q1ys0upzBRX3t3ZN2SE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z2aDdOx1q1ys0upzBRX3t3ZN2SE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E7ED9/F8E0B3B2DBA211EAA88F2066C4F9AE02/z2aDdOx1q1ys0upzBRX3t3ZN2SE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 59:d2:ce:76:36:57:88:9a:9b:f1:07:c2:81:46:fa:ef:80:6c: e9:6b:51:f4:97:ac:64:d4:42:9e:f6:b7:11:6e:1c:12:0f:be: ac:b7:1e:0e:64:ca:d7:17:7f:f7:5c:2a:0b:72:f4:1f:39:d3: 5d:65:a5:f0:db:5b:a2:0c:61:05:d8:f9:78:d1:53:5f:70:c8: b7:6a:39:e7:bd:6c:48:95:c7:18:de:41:18:f6:0c:c2:7c:0a: 23:66:4e:81:45:87:42:7f:ee:a9:b1:df:32:80:44:83:45:d4: 42:b7:e9:c9:07:e9:d7:01:ee:68:8d:9f:f8:91:1b:36:98:33: 60:4f:a5:77:34:c3:b7:b1:37:58:74:78:83:28:9e:07:d4:03: 79:1b:50:4e:55:e1:50:26:d1:ef:dd:25:a7:dd:b4:5b:2c:9c: ae:93:f5:48:1b:63:14:a7:6a:d1:82:70:93:e9:57:a5:c0:c9: 4e:d1:3f:99:ba:04:1e:8c:68:95:b2:97:47:42:53:ff:06:e5: 85:c9:67:d0:f9:3f:52:8c:cb:2a:70:3c:60:06:1e:5e:d3:a0: 8f:cb:9c:72:23:21:74:7a:2e:56:ab:6a:9a:0e:63:2a:ac:0d: 89:67:73:aa:2c:6b:3b:1c:f8:5a:bd:6e:5a:be:f7:b6:94:9c: 80:a3:2c:38 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCFowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTdFRDkxMTAvBgNVBAUTKENGNjY4Mzc0RUM3NUFCNUNBQ0QyRUE3MzA1MTVGN0I3 NzY0REQ5MjEwHhcNMjUxMDIwMjEzNDU1WhcNMjUxMDI3MjEzNDU1WjAYMRYwFAYD VQQDEw02OGY2YWFmZi01Y2MwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwGDBD6oTmNNWJniJ0ZG+lwdm5gbeFB71UlBFFlbUwt2xvl7eJ6N1enLfbCvo InJG5sqmsHAY6VGsd+3e3Gf9r5jjvru5MoegEkpYUBwVti1l4kvI7e1rk2IQe86L ngodQ+H+Wu+BBZ1/4kLUBltKWNHnYInzb164K1SLcUF1lBVXrb0V8LGSNyPPcxaq jCcl8xJP5GUZOelWqO6TJ/uiu1F4jcQi/O6sb93Cp7v5LqQr4wCQkL/NTj89I/N0 +anIdHjKEA012GZSr856PQFiuj+8Z5lCtj6ADWjfS8YkV4xnlER+nDm1/N7SBpJ0 ZyIBgiVzDeWra1PkBaW+bypW/wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF3y/3C9 kt4fIQe0jmrx1HLzC066MB8GA1UdIwQYMBaAFM9mg3TsdatcrNLqcwUV97d2Tdkh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFN0VEOS9GOEUwQjNCMkRC QTIxMUVBQTg4RjIwNjZDNEY5QUUwMi96MmFEZE94MXExeXMwdXB6QlJYM3QzWk4y U0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3oyYURkT3gxcTF5czB1cHpCUlgzdDNaTjJTRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF N0VEOS9GOEUwQjNCMkRCQTIxMUVBQTg4RjIwNjZDNEY5QUUwMi96MmFEZE94MXEx eXMwdXB6QlJYM3QzWk4yU0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBZ0s52NleImpvxB8KBRvrvgGzpa1H0l6xk1EKe9rcRbhwSD76stx4O ZMrXF3/3XCoLcvQfOdNdZaXw21uiDGEF2Pl40VNfcMi3ajnnvWxIlccY3kEY9gzC fAojZk6BRYdCf+6psd8ygESDRdRCt+nJB+nXAe5ojZ/4kRs2mDNgT6V3NMO3sTdY dHiDKJ4H1AN5G1BOVeFQJtHv3SWn3bRbLJyuk/VIG2MUp2rRgnCT6VelwMlO0T+Z ugQejGiVspdHQlP/BuWFyWfQ+T9SjMsqcDxgBh5e06CPy5xyIyF0ei5Wq2qaDmMq rA2JZ3OqLGs7HPhavW5avve2lJyAoyw4 -----END CERTIFICATE-----Generated at Tue Oct 21 01:02:38 2025 by rpki-client