$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA6A1/315B7E08FF7B11EDA62DF10EC4F9AE02/zdfMWZTjQE5sI66UKlkhi1fFwTE.mft File: zdfMWZTjQE5sI66UKlkhi1fFwTE.mft (raw, json) Hash identifier: NiFCDz6sHWOwDt4sz1vdMEcKtEZcOutn3w/Dx/3QVlM= Subject key identifier: E7:22:ED:43:81:81:6D:29:FF:28:BD:62:B3:EF:80:CD:F0:E1:0A:F7 Authority key identifier: CD:D7:CC:59:94:E3:40:4E:6C:23:AE:94:2A:59:21:8B:57:C5:C1:31 Certificate issuer: /CN=A91EA6A1/serialNumber=CDD7CC5994E3404E6C23AE942A59218B57C5C131 Certificate serial: 01C9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zdfMWZTjQE5sI66UKlkhi1fFwTE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA6A1/315B7E08FF7B11EDA62DF10EC4F9AE02/zdfMWZTjQE5sI66UKlkhi1fFwTE.mft Manifest number: 01C0 Signing time: Sun 19 Oct 2025 05:28:38 +0000 Manifest this update: Sun 19 Oct 2025 05:28:37 +0000 Manifest next update: Sun 26 Oct 2025 05:28:37 +0000 Files and hashes: 1: zdfMWZTjQE5sI66UKlkhi1fFwTE.crl (hash: /kdjHC/JY/trtHsjAa0UMZ8fesBB8ZFy6a7Y386vRk4=) 2: 1D45B78003C211EEB2272068C4F9AE02.roa (hash: F77Ohmhr+pSmcNMBmLDootHjfm49x1IrVzvlaFQhQZo=) 3: 1E7F6B9603C211EEB2272068C4F9AE02.roa (hash: T4SsvxhOJ8NmSlYF5F0QyIn0S5EcCqMNYfFfIGZadlw=) 4: 1DDE652A03C211EEB2272068C4F9AE02.roa (hash: 3jNUoCccmrM56z8z19CQSeUZl708g7HitdvgnX+ByM8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA6A1/315B7E08FF7B11EDA62DF10EC4F9AE02/zdfMWZTjQE5sI66UKlkhi1fFwTE.crl rsync://rpki.apnic.net/member_repository/A91EA6A1/315B7E08FF7B11EDA62DF10EC4F9AE02/zdfMWZTjQE5sI66UKlkhi1fFwTE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zdfMWZTjQE5sI66UKlkhi1fFwTE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 05:28:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 457 (0x1c9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA6A1, serialNumber=CDD7CC5994E3404E6C23AE942A59218B57C5C131 Validity Not Before: Oct 19 05:28:37 2025 GMT Not After : Oct 26 05:28:37 2025 GMT Subject: CN=68f47706-c7c7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:9f:b9:1f:4f:6b:6a:4e:d7:8b:e8:10:74:51: 39:49:5b:ad:85:23:45:6d:87:28:5d:21:9b:ee:8b: f1:08:81:9f:7f:51:68:d6:ff:e9:95:9c:a8:74:bd: 3b:92:bd:7c:c9:3e:93:fe:2a:71:5f:46:d5:0d:35: c6:c9:d9:08:2c:5e:ec:82:2c:11:75:48:d7:4b:ff: 01:44:4c:9f:00:b1:98:8a:ee:b5:fb:2d:0b:65:9b: 57:39:de:ca:a4:e2:13:75:bb:39:7a:a9:e1:fa:44: 7a:de:5f:59:44:51:aa:b3:43:aa:c9:0e:b4:ec:b9: 2c:29:ea:e6:2a:f6:d1:b6:87:72:91:36:37:c7:0b: e6:90:c1:f0:e2:b3:89:0c:c5:13:d1:a6:5e:f3:37: 03:a7:b0:e8:8f:1c:a7:85:0d:59:d2:52:49:38:9d: 1b:6e:0c:7e:bc:9c:a9:92:f5:58:3d:1d:62:81:5f: 83:84:51:95:f1:9c:71:6a:82:42:e4:e8:6c:1f:03: dc:d6:d0:0f:02:bf:a5:12:a1:f7:23:60:a4:06:8a: df:fe:f3:41:c6:ab:b3:3d:8d:95:6b:05:96:37:e2: 6d:5e:ab:1b:68:39:19:24:d3:88:74:7b:66:47:33: 6b:e3:4d:a5:e5:d1:6e:0e:f7:d5:3d:d3:20:d8:d3: 46:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:22:ED:43:81:81:6D:29:FF:28:BD:62:B3:EF:80:CD:F0:E1:0A:F7 X509v3 Authority Key Identifier: keyid:CD:D7:CC:59:94:E3:40:4E:6C:23:AE:94:2A:59:21:8B:57:C5:C1:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA6A1/315B7E08FF7B11EDA62DF10EC4F9AE02/zdfMWZTjQE5sI66UKlkhi1fFwTE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zdfMWZTjQE5sI66UKlkhi1fFwTE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA6A1/315B7E08FF7B11EDA62DF10EC4F9AE02/zdfMWZTjQE5sI66UKlkhi1fFwTE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6d:76:8b:22:1c:5b:1d:4d:e4:77:0e:a8:0b:19:30:6c:df:61: b1:11:60:d9:28:7a:a9:9a:eb:3f:5f:35:05:14:86:e7:bf:d8: 2c:29:a6:60:f8:11:61:82:5f:af:28:87:2f:8c:19:59:e0:e2: 93:9a:a0:01:2d:50:95:ae:a3:3f:aa:b4:c0:16:e1:49:ed:cb: 17:91:dd:30:0e:3c:79:37:36:6a:cd:98:e5:1c:c2:1f:8c:4d: d3:3e:96:5a:3b:5a:bb:8c:6b:01:a1:46:f0:01:d5:0a:e7:6e: 3e:fb:02:5d:b0:75:f7:e1:12:bc:59:c2:88:35:75:bc:9f:8a: 50:88:d0:cd:78:11:33:ed:7a:40:17:e6:3b:68:e5:d3:9a:fb: 17:58:da:e0:23:0b:43:6a:0b:81:9b:56:bf:d5:aa:1b:b7:d1: ee:4a:b3:b6:a7:e3:58:31:10:eb:31:51:59:b8:36:44:d1:7e: 37:d8:a4:ec:cc:b9:cb:eb:12:90:f8:71:bf:46:45:bd:3c:5c: 79:28:18:fb:72:0e:8c:4e:d7:20:02:76:58:fc:4d:6e:0b:1f: 37:61:ca:18:14:47:19:a5:25:4d:e5:b0:d6:9d:81:82:62:df: 3c:80:0f:a2:53:bd:7b:17:c1:66:11:13:05:18:5f:4a:2e:70: 2c:ad:8e:de -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAckwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE2QTExMTAvBgNVBAUTKENERDdDQzU5OTRFMzQwNEU2QzIzQUU5NDJBNTkyMThC NTdDNUMxMzEwHhcNMjUxMDE5MDUyODM3WhcNMjUxMDI2MDUyODM3WjAYMRYwFAYD VQQDEw02OGY0NzcwNi1jN2M3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw5+5H09rak7Xi+gQdFE5SVuthSNFbYcoXSGb7ovxCIGff1Fo1v/plZyodL07 kr18yT6T/ipxX0bVDTXGydkILF7sgiwRdUjXS/8BREyfALGYiu61+y0LZZtXOd7K pOITdbs5eqnh+kR63l9ZRFGqs0OqyQ607LksKermKvbRtodykTY3xwvmkMHw4rOJ DMUT0aZe8zcDp7DojxynhQ1Z0lJJOJ0bbgx+vJypkvVYPR1igV+DhFGV8ZxxaoJC 5OhsHwPc1tAPAr+lEqH3I2CkBorf/vNBxquzPY2VawWWN+JtXqsbaDkZJNOIdHtm RzNr402l5dFuDvfVPdMg2NNG0QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOci7UOB gW0p/yi9YrPvgM3w4Qr3MB8GA1UdIwQYMBaAFM3XzFmU40BObCOulCpZIYtXxcEx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTZBMS8zMTVCN0UwOEZG N0IxMUVEQTYyREYxMEVDNEY5QUUwMi96ZGZNV1pUalFFNXNJNjZVS2xraGkxZkZ3 VEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pkZk1XWlRqUUU1c0k2NlVLbGtoaTFmRndURS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTZBMS8zMTVCN0UwOEZGN0IxMUVEQTYyREYxMEVDNEY5QUUwMi96ZGZNV1pUalFF NXNJNjZVS2xraGkxZkZ3VEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBtdosiHFsdTeR3DqgLGTBs32GxEWDZKHqpmus/XzUFFIbnv9gsKaZg +BFhgl+vKIcvjBlZ4OKTmqABLVCVrqM/qrTAFuFJ7csXkd0wDjx5NzZqzZjlHMIf jE3TPpZaO1q7jGsBoUbwAdUK524++wJdsHX34RK8WcKINXW8n4pQiNDNeBEz7XpA F+Y7aOXTmvsXWNrgIwtDaguBm1a/1aobt9HuSrO2p+NYMRDrMVFZuDZE0X432KTs zLnL6xKQ+HG/RkW9PFx5KBj7cg6MTtcgAnZY/E1uCx83YcoYFEcZpSVN5bDWnYGC Yt88gA+iU717F8FmERMFGF9KLnAsrY7e -----END CERTIFICATE-----Generated at Mon Oct 20 13:59:43 2025 by rpki-client