$ rpki-client -vvf rpki.apnic.net/member_repository/A91EBFB0/A3AB43B2F87C11E9AA2CF158C4F9AE02/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.mft File: zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.mft (raw, json) Hash identifier: q9RHbFnd5pJraWK8Ln6nxXhY5S1dHvIq7yXfP/K5CZE= Subject key identifier: 00:D4:5F:4E:79:C6:3F:9E:0A:25:31:0B:5B:3A:CC:4A:8E:80:3D:9A Authority key identifier: CC:85:09:D3:1F:B6:3A:8D:DD:6B:F2:D3:D8:4C:7B:C0:B2:BA:3F:C0 Certificate issuer: /CN=A91EBFB0/serialNumber=CC8509D31FB63A8DDD6BF2D3D84C7BC0B2BA3FC0 Certificate serial: 0CD2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EBFB0/A3AB43B2F87C11E9AA2CF158C4F9AE02/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.mft Manifest number: 0CCB Signing time: Sat 18 Oct 2025 18:52:16 +0000 Manifest this update: Sat 18 Oct 2025 18:52:16 +0000 Manifest next update: Sat 25 Oct 2025 18:52:16 +0000 Files and hashes: 1: zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.crl (hash: 6rFryyLxDRX8JNp36mzMpaqq7m2LulSpjnxC+8kJGt4=) 2: F690CAECF87D11E9A746D05BC4F9AE02.roa (hash: PKzsRoQOFkH0aPoaShEpuvQ+omyVkcjK/WY8mjX8BEM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EBFB0/A3AB43B2F87C11E9AA2CF158C4F9AE02/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.crl rsync://rpki.apnic.net/member_repository/A91EBFB0/A3AB43B2F87C11E9AA2CF158C4F9AE02/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 18:52:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3282 (0xcd2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EBFB0, serialNumber=CC8509D31FB63A8DDD6BF2D3D84C7BC0B2BA3FC0 Validity Not Before: Oct 18 18:52:16 2025 GMT Not After : Oct 25 18:52:16 2025 GMT Subject: CN=68f3e1e0-2246 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:76:03:30:92:c3:f8:ee:2c:ff:9b:56:46:74: 24:37:2f:ab:74:ff:66:35:0c:a0:07:11:63:be:01: 0e:27:13:f3:da:46:2e:37:4c:af:f4:99:b2:15:22: a5:b6:8c:1d:cd:4a:f5:b2:0b:0d:06:d1:c9:39:0f: 4c:c0:43:23:aa:94:2a:1d:d1:15:7f:1c:14:6f:d5: 5d:80:24:1d:b6:86:52:50:37:8a:a8:b2:cb:26:26: 72:02:fa:98:74:89:a1:95:19:a6:2c:9c:4c:74:f0: 31:d4:8d:ad:95:ff:ec:25:c1:1c:e3:96:21:1d:46: 8f:87:be:d9:d5:5e:ad:22:88:23:e1:fc:68:a1:89: f1:ef:66:be:8f:92:e0:0b:72:fd:9e:c7:96:79:86: 19:19:d3:36:11:3f:ce:ca:36:10:0f:4e:fe:f4:96: 05:87:31:7f:7f:22:72:1a:8d:f2:bf:00:8c:ab:19: dc:4b:58:a0:bf:4f:fb:da:e6:07:02:6b:3e:e7:15: 9e:7e:8e:a5:27:5e:90:c4:1d:c3:1c:4e:6e:90:79: 5f:5d:39:18:83:35:82:23:bd:ca:cf:9d:3b:29:88: cc:0a:cf:86:d9:e8:69:de:4a:14:68:4d:f1:5d:58: 0e:5e:3b:55:3f:23:cc:70:c9:df:27:d7:d3:b0:83: 96:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:D4:5F:4E:79:C6:3F:9E:0A:25:31:0B:5B:3A:CC:4A:8E:80:3D:9A X509v3 Authority Key Identifier: keyid:CC:85:09:D3:1F:B6:3A:8D:DD:6B:F2:D3:D8:4C:7B:C0:B2:BA:3F:C0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EBFB0/A3AB43B2F87C11E9AA2CF158C4F9AE02/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EBFB0/A3AB43B2F87C11E9AA2CF158C4F9AE02/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 20:07:f4:11:06:7c:76:86:5e:7f:b3:e1:30:f2:b7:b9:f1:ec: e1:13:a5:47:a8:bf:51:ee:f0:f2:74:e1:86:69:82:c3:4c:9d: c5:75:64:e2:29:c6:ec:74:be:da:77:9f:0d:20:d9:b0:58:f4: 69:9e:78:ee:3d:8d:4d:96:af:5d:ae:b0:49:14:8f:e5:51:84: 7f:77:e8:67:98:38:07:f3:b1:f2:43:eb:34:75:f4:0f:28:9e: 70:10:af:48:e9:11:69:69:29:f1:15:7e:1e:f1:dc:db:e4:21: 90:95:b7:85:4d:a8:cc:f8:bb:55:08:11:61:de:79:eb:d7:69: 1b:4f:94:2c:4a:c9:f2:b2:84:7a:79:45:4b:ac:32:06:75:e8: 84:28:d1:fa:31:dc:59:73:35:95:c8:1b:54:6b:4c:19:88:db: 90:c0:7e:3d:8a:ac:1b:1c:d8:af:bd:66:a1:b8:5f:0f:df:de: bc:8e:a8:84:82:78:7e:3f:b2:64:2b:26:4c:5e:36:bb:f5:43: 7a:3d:20:2a:0e:96:e5:78:0a:37:59:12:b8:33:04:5b:84:8b: 6e:77:29:bc:ac:32:2f:04:b4:57:25:a0:0e:6a:2f:f3:2e:7f: a7:84:9d:f6:8d:89:6c:15:bb:39:e9:4e:b2:8d:72:53:99:38: c7:f6:4d:a6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDNIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUJGQjAxMTAvBgNVBAUTKENDODUwOUQzMUZCNjNBOERERDZCRjJEM0Q4NEM3QkMw QjJCQTNGQzAwHhcNMjUxMDE4MTg1MjE2WhcNMjUxMDI1MTg1MjE2WjAYMRYwFAYD VQQDEw02OGYzZTFlMC0yMjQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoXYDMJLD+O4s/5tWRnQkNy+rdP9mNQygBxFjvgEOJxPz2kYuN0yv9JmyFSKl towdzUr1sgsNBtHJOQ9MwEMjqpQqHdEVfxwUb9VdgCQdtoZSUDeKqLLLJiZyAvqY dImhlRmmLJxMdPAx1I2tlf/sJcEc45YhHUaPh77Z1V6tIogj4fxooYnx72a+j5Lg C3L9nseWeYYZGdM2ET/OyjYQD07+9JYFhzF/fyJyGo3yvwCMqxncS1igv0/72uYH Ams+5xWefo6lJ16QxB3DHE5ukHlfXTkYgzWCI73Kz507KYjMCs+G2ehp3koUaE3x XVgOXjtVPyPMcMnfJ9fTsIOWcQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFADUX055 xj+eCiUxC1s6zEqOgD2aMB8GA1UdIwQYMBaAFMyFCdMftjqN3Wvy09hMe8Cyuj/A MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQkZCMC9BM0FCNDNCMkY4 N0MxMUU5QUEyQ0YxNThDNEY5QUUwMi96SVVKMHgtMk9vM2RhX0xUMkV4N3dMSzZQ OEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pJVUoweC0yT28zZGFfTFQyRXg3d0xLNlA4QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QkZCMC9BM0FCNDNCMkY4N0MxMUU5QUEyQ0YxNThDNEY5QUUwMi96SVVKMHgtMk9v M2RhX0xUMkV4N3dMSzZQOEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAgB/QRBnx2hl5/s+Ew8re58ezhE6VHqL9R7vDydOGGaYLDTJ3FdWTi KcbsdL7ad58NINmwWPRpnnjuPY1Nlq9drrBJFI/lUYR/d+hnmDgH87HyQ+s0dfQP KJ5wEK9I6RFpaSnxFX4e8dzb5CGQlbeFTajM+LtVCBFh3nnr12kbT5QsSsnysoR6 eUVLrDIGdeiEKNH6MdxZczWVyBtUa0wZiNuQwH49iqwbHNivvWahuF8P3968jqiE gnh+P7JkKyZMXja79UN6PSAqDpbleAo3WRK4MwRbhItudym8rDIvBLRXJaAOai/z Ln+nhJ32jYlsFbs56U6yjXJTmTjH9k2m -----END CERTIFICATE-----Generated at Mon Oct 20 07:05:08 2025 by rpki-client