$ rpki-client -vvf rpki.apnic.net/member_repository/A91E89CD/3C0D4A16B05511EAA045B80EC4F9AE02/zlgHMAQJCIdOtirydgUp51w9XGg.mft File: zlgHMAQJCIdOtirydgUp51w9XGg.mft (raw, json) Hash identifier: A2wjv9EjTwJ/C1cNpLUHlln1Z9A2E+utifJ5ro2Ja4s= Subject key identifier: D8:EB:4A:14:48:EB:04:E4:BE:A6:21:EF:1B:E9:43:CF:44:8F:35:97 Authority key identifier: CE:58:07:30:04:09:08:87:4E:B6:2A:F2:76:05:29:E7:5C:3D:5C:68 Certificate issuer: /CN=A91E89CD/serialNumber=CE580730040908874EB62AF2760529E75C3D5C68 Certificate serial: 0931 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zlgHMAQJCIdOtirydgUp51w9XGg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E89CD/3C0D4A16B05511EAA045B80EC4F9AE02/zlgHMAQJCIdOtirydgUp51w9XGg.mft Manifest number: 0922 Signing time: Sat 18 Oct 2025 21:21:16 +0000 Manifest this update: Sat 18 Oct 2025 21:21:16 +0000 Manifest next update: Sat 25 Oct 2025 21:21:16 +0000 Files and hashes: 1: zlgHMAQJCIdOtirydgUp51w9XGg.crl (hash: IMiEJfXPwsRvk9gvoFDo8xdMMz4kGUivuuGjxaB2x8I=) 2: 8698CD28A42211EB91621734C4F9AE02.roa (hash: liguL5yWelfphfIz9rHVaKh3TqmzzrhEVoBWguDMI9M=) 3: D3ECF4B8E61D11EBB92C167BC4F9AE02.roa (hash: /n6JoBCxKb39xofyDRMG1k20W82UdWlbULQ4CPVAgMo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E89CD/3C0D4A16B05511EAA045B80EC4F9AE02/zlgHMAQJCIdOtirydgUp51w9XGg.crl rsync://rpki.apnic.net/member_repository/A91E89CD/3C0D4A16B05511EAA045B80EC4F9AE02/zlgHMAQJCIdOtirydgUp51w9XGg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zlgHMAQJCIdOtirydgUp51w9XGg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 21:21:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2353 (0x931) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E89CD, serialNumber=CE580730040908874EB62AF2760529E75C3D5C68 Validity Not Before: Oct 18 21:21:16 2025 GMT Not After : Oct 25 21:21:16 2025 GMT Subject: CN=68f404cc-e3d9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:86:14:25:91:29:8f:5e:a0:1a:3a:e0:15:96: 52:6f:c0:c6:14:7b:1b:08:c6:ba:50:bb:b6:25:ea: 0e:10:7b:71:ac:e9:c2:9b:89:e9:dd:ea:ae:ac:c1: b3:a0:99:33:2c:c6:79:5b:9e:6e:b0:a9:f5:8f:f7: fc:ee:3e:82:a4:ec:15:b4:dc:72:9b:c5:ee:99:4f: 87:78:3c:ba:fe:a2:8f:16:5c:1c:77:a6:03:fc:62: 43:d8:d7:87:d6:e6:71:bc:39:a5:e8:96:09:94:4a: 3b:e5:60:bf:5d:69:9e:2e:50:6c:82:46:d0:d6:82: 76:d0:30:18:3c:08:5a:c7:e5:5c:79:bd:c3:db:06: 84:fc:83:2f:fb:a5:cd:44:4b:04:31:ae:51:22:73: dd:2d:84:52:a2:77:bb:3f:4e:f3:e0:b4:3a:72:c9: af:cf:99:bb:2c:80:27:be:24:d2:a7:93:d9:82:e4: 8f:80:7f:23:90:c9:44:42:80:30:82:52:47:91:06: 29:17:35:db:4d:a1:0c:ab:11:d6:6d:a2:f9:ed:a3: 1f:12:50:b4:cf:c2:0c:46:76:1d:7e:e4:89:f4:49: 01:46:4a:0a:97:01:39:9c:da:f1:d0:4f:23:85:a5: 1f:0b:83:b0:2c:ba:93:60:e7:8d:86:78:65:f9:ae: 50:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:EB:4A:14:48:EB:04:E4:BE:A6:21:EF:1B:E9:43:CF:44:8F:35:97 X509v3 Authority Key Identifier: keyid:CE:58:07:30:04:09:08:87:4E:B6:2A:F2:76:05:29:E7:5C:3D:5C:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E89CD/3C0D4A16B05511EAA045B80EC4F9AE02/zlgHMAQJCIdOtirydgUp51w9XGg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zlgHMAQJCIdOtirydgUp51w9XGg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E89CD/3C0D4A16B05511EAA045B80EC4F9AE02/zlgHMAQJCIdOtirydgUp51w9XGg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4e:78:82:bb:34:23:92:b7:17:94:ff:ac:6c:f4:b3:bf:6b:b9: 3f:31:04:ea:45:bf:1e:dd:3c:d6:3e:8c:59:3b:a2:c9:1e:f9: d5:77:0b:c8:dc:9a:b0:5c:0c:6b:89:a8:cd:5a:dc:5d:d2:9e: 74:5d:0f:e8:29:a0:29:4e:29:0f:17:b3:1c:4b:fa:b5:c8:39: 6b:20:59:64:e5:81:6b:eb:06:3d:d5:0c:e5:c5:26:a8:be:84: 1f:5a:02:2a:ff:cb:2d:69:4d:e6:2b:ca:2e:77:c3:c1:b6:b3: f1:b3:fc:40:63:8c:01:b6:39:34:7a:47:7a:6c:51:8f:61:cf: 53:c5:5b:3d:1d:fb:ec:16:fb:81:1c:8c:7d:86:c3:46:11:84: de:e4:91:1b:4e:4b:bf:1b:46:9d:0f:1d:b0:56:49:06:81:a4: cf:29:e8:24:08:e1:7c:5e:72:b6:7b:73:ef:8b:5d:db:2b:fd: 6b:94:44:00:20:4d:61:b4:07:4e:3f:fd:71:c5:5a:ac:3c:df: 09:49:24:d4:ac:b9:d7:f3:c8:8f:c8:af:96:82:80:ef:51:10: 28:ca:8c:c3:c3:f9:7d:27:82:1f:ff:a5:15:8a:04:bd:53:6d: 20:16:26:16:a8:b8:18:7c:d7:f4:5d:08:6e:62:55:50:ac:4e: 03:97:d8:72 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCTEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTg5Q0QxMTAvBgNVBAUTKENFNTgwNzMwMDQwOTA4ODc0RUI2MkFGMjc2MDUyOUU3 NUMzRDVDNjgwHhcNMjUxMDE4MjEyMTE2WhcNMjUxMDI1MjEyMTE2WjAYMRYwFAYD VQQDEw02OGY0MDRjYy1lM2Q5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp4YUJZEpj16gGjrgFZZSb8DGFHsbCMa6ULu2JeoOEHtxrOnCm4np3equrMGz oJkzLMZ5W55usKn1j/f87j6CpOwVtNxym8XumU+HeDy6/qKPFlwcd6YD/GJD2NeH 1uZxvDml6JYJlEo75WC/XWmeLlBsgkbQ1oJ20DAYPAhax+Vceb3D2waE/IMv+6XN REsEMa5RInPdLYRSone7P07z4LQ6csmvz5m7LIAnviTSp5PZguSPgH8jkMlEQoAw glJHkQYpFzXbTaEMqxHWbaL57aMfElC0z8IMRnYdfuSJ9EkBRkoKlwE5nNrx0E8j haUfC4OwLLqTYOeNhnhl+a5QEQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNjrShRI 6wTkvqYh7xvpQ89EjzWXMB8GA1UdIwQYMBaAFM5YBzAECQiHTrYq8nYFKedcPVxo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFODlDRC8zQzBENEExNkIw NTUxMUVBQTA0NUI4MEVDNEY5QUUwMi96bGdITUFRSkNJZE90aXJ5ZGdVcDUxdzlY R2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3psZ0hNQVFKQ0lkT3RpcnlkZ1VwNTF3OVhHZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF ODlDRC8zQzBENEExNkIwNTUxMUVBQTA0NUI4MEVDNEY5QUUwMi96bGdITUFRSkNJ ZE90aXJ5ZGdVcDUxdzlYR2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBOeIK7NCOStxeU/6xs9LO/a7k/MQTqRb8e3TzWPoxZO6LJHvnVdwvI 3JqwXAxriajNWtxd0p50XQ/oKaApTikPF7McS/q1yDlrIFlk5YFr6wY91QzlxSao voQfWgIq/8staU3mK8oud8PBtrPxs/xAY4wBtjk0ekd6bFGPYc9TxVs9HfvsFvuB HIx9hsNGEYTe5JEbTku/G0adDx2wVkkGgaTPKegkCOF8XnK2e3Pvi13bK/1rlEQA IE1htAdOP/1xxVqsPN8JSSTUrLnX88iPyK+WgoDvURAoyozDw/l9J4If/6UVigS9 U20gFiYWqLgYfNf0XQhuYlVQrE4Dl9hy -----END CERTIFICATE-----Generated at Mon Oct 20 20:56:26 2025 by rpki-client