$ rpki-client -vvf rpki.apnic.net/member_repository/A91EBC61/446BD7A2B6C411EFA24AA616C4F9AE02/ZNKz1lpcbM5NCNeP_tsoVrZB1qM.mft File: ZNKz1lpcbM5NCNeP_tsoVrZB1qM.mft (raw, json) Hash identifier: 3zgvmVVO9MceQ0/B3dyHZvJFQBrqFnxnSJKOe+qIDls= Subject key identifier: 47:33:6C:42:75:13:C5:FF:0B:AE:10:B7:82:19:9D:B4:65:BA:40:0F Authority key identifier: 64:D2:B3:D6:5A:5C:6C:CE:4D:08:D7:8F:FE:DB:28:56:B6:41:D6:A3 Certificate issuer: /CN=A91EBC61/serialNumber=64D2B3D65A5C6CCE4D08D78FFEDB2856B641D6A3 Certificate serial: A5 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ZNKz1lpcbM5NCNeP_tsoVrZB1qM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EBC61/446BD7A2B6C411EFA24AA616C4F9AE02/ZNKz1lpcbM5NCNeP_tsoVrZB1qM.mft Manifest number: A3 Signing time: Sun 19 Oct 2025 09:31:21 +0000 Manifest this update: Sun 19 Oct 2025 09:31:21 +0000 Manifest next update: Sun 26 Oct 2025 09:31:21 +0000 Files and hashes: 1: ZNKz1lpcbM5NCNeP_tsoVrZB1qM.crl (hash: hhX6Fu+l/kNAdqnC1yB7g8vE+pf9Tk1EnIy0yEle9Kw=) 2: 8D26DADCB6C411EF99C3B758C4F9AE02.roa (hash: nae7I/KEW+0m3zT4me5Qc5I3irrgd5B22dbuBfqdUCs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EBC61/446BD7A2B6C411EFA24AA616C4F9AE02/ZNKz1lpcbM5NCNeP_tsoVrZB1qM.crl rsync://rpki.apnic.net/member_repository/A91EBC61/446BD7A2B6C411EFA24AA616C4F9AE02/ZNKz1lpcbM5NCNeP_tsoVrZB1qM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ZNKz1lpcbM5NCNeP_tsoVrZB1qM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 09:31:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 165 (0xa5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EBC61, serialNumber=64D2B3D65A5C6CCE4D08D78FFEDB2856B641D6A3 Validity Not Before: Oct 19 09:31:21 2025 GMT Not After : Oct 26 09:31:21 2025 GMT Subject: CN=68f4afe9-ec30 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:f0:70:d9:24:8d:b4:58:7a:b8:d8:ab:5c:1f: 83:05:d4:b8:aa:45:7c:c2:cf:39:07:2a:b7:0e:bb: e5:93:22:f5:dc:cc:27:7b:b8:46:31:df:19:2a:db: 87:99:a9:97:12:b7:94:7c:b0:78:73:c1:2c:63:1b: f8:f9:e1:6e:c1:1c:c8:8a:fb:c2:e4:bb:49:2a:b0: b9:ed:4b:64:ae:60:c3:ac:08:8b:83:5f:36:4b:cf: 1a:3e:3b:62:48:77:1f:d3:06:96:86:ec:a3:52:71: 64:a9:cd:c4:2a:0c:04:f6:58:2a:06:70:8f:d0:62: c6:97:e6:36:d5:16:75:0d:0a:75:b5:c0:43:44:7b: 95:fd:5c:6c:d7:24:9d:6c:47:65:f3:6b:49:81:69: 29:1b:c0:fb:39:ca:83:c9:6d:0d:d0:48:e3:b6:c9: bd:50:0b:45:dc:de:e1:5e:e4:9b:fd:a0:43:4c:aa: 1c:e5:23:b9:a5:15:c7:01:47:90:e4:a0:9d:ad:9a: ac:f2:99:32:a1:ca:37:6a:84:8f:8f:cf:4e:6b:78: 07:a7:76:ad:c1:98:ef:47:38:be:5c:00:45:0a:3e: 4b:a6:35:5d:56:8c:1b:76:ef:c3:76:c5:82:cd:16: d9:f5:38:1d:52:36:5f:24:c1:57:64:51:cc:7b:34: 13:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:33:6C:42:75:13:C5:FF:0B:AE:10:B7:82:19:9D:B4:65:BA:40:0F X509v3 Authority Key Identifier: keyid:64:D2:B3:D6:5A:5C:6C:CE:4D:08:D7:8F:FE:DB:28:56:B6:41:D6:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EBC61/446BD7A2B6C411EFA24AA616C4F9AE02/ZNKz1lpcbM5NCNeP_tsoVrZB1qM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ZNKz1lpcbM5NCNeP_tsoVrZB1qM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EBC61/446BD7A2B6C411EFA24AA616C4F9AE02/ZNKz1lpcbM5NCNeP_tsoVrZB1qM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:f1:aa:b0:37:de:4e:88:1c:48:bb:53:fa:64:30:75:84:c7: 42:25:35:95:b3:53:4e:57:7f:9b:2a:69:ee:07:56:84:a8:19: ec:44:8c:5d:74:01:a1:c5:03:d1:ec:eb:c4:8e:10:cb:79:21: 3d:00:f5:59:17:3f:68:1a:ce:96:34:d8:5d:1e:e8:ae:f4:fa: c5:e3:a5:2a:fb:e4:ca:1b:2f:5b:4b:7a:e4:e3:b7:ea:c1:e8: c4:57:a0:bd:39:8e:88:59:01:5a:9b:0d:b5:8d:ef:00:b0:6e: e2:83:fb:a1:90:af:80:30:e3:70:4f:1a:32:38:e1:b4:b4:92: 20:00:3e:71:a6:f0:99:df:26:5d:b5:8d:2c:c2:14:58:78:23: bc:f0:a0:ee:15:16:50:ca:57:79:d2:81:5f:ad:57:8f:52:6d: a5:23:f7:69:30:3c:c5:b2:9f:14:74:27:94:90:68:ae:7a:14: 23:90:9e:bd:26:38:93:23:a2:36:43:92:11:40:00:8e:d8:f9: 74:8b:47:bd:90:3d:53:7e:3f:c1:8f:34:9a:2b:5c:33:9b:b4: ca:a8:3f:ca:78:4f:e3:3e:91:0e:de:86:01:f6:71:fa:6c:12: 28:8e:5c:74:8c:3e:cd:55:86:ee:ef:58:51:e2:9d:ef:32:d1: 13:0c:c7:e3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUJDNjExMTAvBgNVBAUTKDY0RDJCM0Q2NUE1QzZDQ0U0RDA4RDc4RkZFREIyODU2 QjY0MUQ2QTMwHhcNMjUxMDE5MDkzMTIxWhcNMjUxMDI2MDkzMTIxWjAYMRYwFAYD VQQDEw02OGY0YWZlOS1lYzMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy/Bw2SSNtFh6uNirXB+DBdS4qkV8ws85Byq3DrvlkyL13Mwne7hGMd8ZKtuH mamXEreUfLB4c8EsYxv4+eFuwRzIivvC5LtJKrC57UtkrmDDrAiLg182S88aPjti SHcf0waWhuyjUnFkqc3EKgwE9lgqBnCP0GLGl+Y21RZ1DQp1tcBDRHuV/Vxs1ySd bEdl82tJgWkpG8D7OcqDyW0N0Ejjtsm9UAtF3N7hXuSb/aBDTKoc5SO5pRXHAUeQ 5KCdrZqs8pkyoco3aoSPj89Oa3gHp3atwZjvRzi+XABFCj5LpjVdVowbdu/DdsWC zRbZ9TgdUjZfJMFXZFHMezQT8wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEczbEJ1 E8X/C64Qt4IZnbRlukAPMB8GA1UdIwQYMBaAFGTSs9ZaXGzOTQjXj/7bKFa2Qdaj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQkM2MS80NDZCRDdBMkI2 QzQxMUVGQTI0QUE2MTZDNEY5QUUwMi9aTkt6MWxwY2JNNU5DTmVQX3Rzb1ZyWkIx cU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1pOS3oxbHBjYk01TkNOZVBfdHNvVnJaQjFxTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QkM2MS80NDZCRDdBMkI2QzQxMUVGQTI0QUE2MTZDNEY5QUUwMi9aTkt6MWxwY2JN NU5DTmVQX3Rzb1ZyWkIxcU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAj8aqwN95OiBxIu1P6ZDB1hMdCJTWVs1NOV3+bKmnuB1aEqBnsRIxd dAGhxQPR7OvEjhDLeSE9APVZFz9oGs6WNNhdHuiu9PrF46Uq++TKGy9bS3rk47fq wejEV6C9OY6IWQFamw21je8AsG7ig/uhkK+AMONwTxoyOOG0tJIgAD5xpvCZ3yZd tY0swhRYeCO88KDuFRZQyld50oFfrVePUm2lI/dpMDzFsp8UdCeUkGiuehQjkJ69 JjiTI6I2Q5IRQACO2Pl0i0e9kD1Tfj/BjzSaK1wzm7TKqD/KeE/jPpEO3oYB9nH6 bBIojlx0jD7NVYbu71hR4p3vMtETDMfj -----END CERTIFICATE-----Generated at Tue Oct 21 02:26:07 2025 by rpki-client