$ rpki-client -vvf rpki.apnic.net/member_repository/A91F09FE/3803AA1C9B1211EFA87BB43BC4F9AE02/ZMzBZsWMOP6MwZdvXPB8HdBvaBQ.mft File: ZMzBZsWMOP6MwZdvXPB8HdBvaBQ.mft (raw, json) Hash identifier: t9QMMUc4WQ9lECXm6BmktVOJrsm+F+SA6xUDmj18ajc= Subject key identifier: 73:75:DD:95:54:C0:7C:9D:67:73:3C:52:59:97:AE:EF:46:33:25:87 Authority key identifier: 64:CC:C1:66:C5:8C:38:FE:8C:C1:97:6F:5C:F0:7C:1D:D0:6F:68:14 Certificate issuer: /CN=A91F09FE/serialNumber=64CCC166C58C38FE8CC1976F5CF07C1DD06F6814 Certificate serial: B6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZMzBZsWMOP6MwZdvXPB8HdBvaBQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F09FE/3803AA1C9B1211EFA87BB43BC4F9AE02/ZMzBZsWMOP6MwZdvXPB8HdBvaBQ.mft Manifest number: B4 Signing time: Sun 19 Oct 2025 09:11:45 +0000 Manifest this update: Sun 19 Oct 2025 09:11:44 +0000 Manifest next update: Sun 26 Oct 2025 09:11:44 +0000 Files and hashes: 1: ZMzBZsWMOP6MwZdvXPB8HdBvaBQ.crl (hash: kxt71lKkYtQ8hZamVyh1I6ya/G1a3OjNYuHWfIGzBz4=) 2: 841585749B1211EFBFBF913CC4F9AE02.roa (hash: 0M5YhxGhV5QHRGKOQlvw9XsWvMIjTk3A7Z1MV3xW494=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F09FE/3803AA1C9B1211EFA87BB43BC4F9AE02/ZMzBZsWMOP6MwZdvXPB8HdBvaBQ.crl rsync://rpki.apnic.net/member_repository/A91F09FE/3803AA1C9B1211EFA87BB43BC4F9AE02/ZMzBZsWMOP6MwZdvXPB8HdBvaBQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZMzBZsWMOP6MwZdvXPB8HdBvaBQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 09:11:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 182 (0xb6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F09FE, serialNumber=64CCC166C58C38FE8CC1976F5CF07C1DD06F6814 Validity Not Before: Oct 19 09:11:44 2025 GMT Not After : Oct 26 09:11:44 2025 GMT Subject: CN=68f4ab51-96b7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:a9:b5:3d:c5:65:12:8c:4a:fd:cf:54:3f:77: 34:ef:16:2d:90:a9:0d:30:c7:12:65:7d:bc:bf:a9: 0b:62:0c:28:47:4d:f3:89:12:b6:c8:e0:30:d8:92: f2:5b:a5:71:99:00:02:ea:66:5b:c3:49:32:66:25: b0:d3:fb:c1:f7:98:15:4d:2c:19:f6:8a:f3:05:26: 45:7d:55:81:79:8d:14:15:54:ed:5c:49:43:a6:95: 6c:fc:4e:f3:b5:3f:a3:a9:cd:95:30:c9:06:9a:eb: 03:66:a0:1f:fa:d6:2e:54:70:7e:ff:82:44:44:55: 44:0a:25:44:53:8d:c6:21:63:a5:05:99:f3:d2:e1: eb:33:0f:e1:89:eb:26:df:0d:96:ca:c0:bd:06:75: 67:f6:66:1c:17:5f:a4:22:b6:dc:2d:5a:9d:51:fc: 76:80:e4:e0:18:56:12:09:fb:38:f3:91:d3:80:62: f8:77:cc:72:ce:ab:01:1c:98:f9:0f:f3:7a:c2:a5: 12:14:e7:78:af:98:84:bb:5d:1e:b3:f0:f4:73:3b: 8a:9c:72:74:4a:f4:b2:11:f7:65:1e:43:88:d4:0b: 09:aa:5b:53:86:38:d8:f5:4a:cb:8c:d6:f6:6c:3d: cf:2c:a4:7d:38:da:b2:3f:4b:0f:7d:93:e8:4b:5b: a7:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:75:DD:95:54:C0:7C:9D:67:73:3C:52:59:97:AE:EF:46:33:25:87 X509v3 Authority Key Identifier: keyid:64:CC:C1:66:C5:8C:38:FE:8C:C1:97:6F:5C:F0:7C:1D:D0:6F:68:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F09FE/3803AA1C9B1211EFA87BB43BC4F9AE02/ZMzBZsWMOP6MwZdvXPB8HdBvaBQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZMzBZsWMOP6MwZdvXPB8HdBvaBQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F09FE/3803AA1C9B1211EFA87BB43BC4F9AE02/ZMzBZsWMOP6MwZdvXPB8HdBvaBQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0c:7a:ea:6c:cb:39:44:de:bd:8d:3d:26:f1:d0:08:1e:6a:3d: 72:ce:03:58:8b:ac:c1:b3:d5:d5:ce:17:cb:db:a7:ab:ef:c6: db:27:2d:71:66:9d:10:ea:69:e0:97:e9:2b:91:86:01:2d:93: 6a:16:b9:a4:2d:aa:8a:bc:fc:5c:26:ed:27:47:9e:6d:79:ed: d7:4e:a3:6b:89:e5:14:57:20:df:23:47:b4:eb:53:e5:9c:e3: e7:7d:6a:9c:4b:bf:b4:02:e0:1c:5c:1a:10:4a:2f:f6:57:c4: 63:94:3d:f0:4b:02:ed:f3:1b:b6:3e:48:9e:b7:bd:84:a2:d0: 30:d8:a7:b7:c2:bb:5b:47:7c:da:a0:d2:9e:ff:7d:7c:2a:b7: 54:b7:b7:bf:31:d3:f6:49:1f:b5:84:af:a2:bf:68:3c:6f:71: 67:1a:d5:c3:29:2d:30:07:0c:de:13:25:72:f3:9a:cc:5c:97: 8e:5e:53:5f:34:43:f9:88:a1:e6:e6:4c:81:ff:f8:bf:fe:56: 18:99:2a:b2:7e:cb:ec:3d:84:d2:0a:00:58:98:3c:68:88:ff: de:b3:1d:e1:4c:4d:a7:af:73:5e:98:1f:3c:0f:b5:de:49:91: b6:30:19:e3:4f:9c:d9:a0:b2:9a:1d:e3:6d:2d:54:39:4b:62: c7:f9:94:dc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjA5RkUxMTAvBgNVBAUTKDY0Q0NDMTY2QzU4QzM4RkU4Q0MxOTc2RjVDRjA3QzFE RDA2RjY4MTQwHhcNMjUxMDE5MDkxMTQ0WhcNMjUxMDI2MDkxMTQ0WjAYMRYwFAYD VQQDEw02OGY0YWI1MS05NmI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8am1PcVlEoxK/c9UP3c07xYtkKkNMMcSZX28v6kLYgwoR03ziRK2yOAw2JLy W6VxmQAC6mZbw0kyZiWw0/vB95gVTSwZ9orzBSZFfVWBeY0UFVTtXElDppVs/E7z tT+jqc2VMMkGmusDZqAf+tYuVHB+/4JERFVECiVEU43GIWOlBZnz0uHrMw/hiesm 3w2WysC9BnVn9mYcF1+kIrbcLVqdUfx2gOTgGFYSCfs485HTgGL4d8xyzqsBHJj5 D/N6wqUSFOd4r5iEu10es/D0czuKnHJ0SvSyEfdlHkOI1AsJqltThjjY9UrLjNb2 bD3PLKR9ONqyP0sPfZPoS1unbwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHN13ZVU wHydZ3M8UlmXru9GMyWHMB8GA1UdIwQYMBaAFGTMwWbFjDj+jMGXb1zwfB3Qb2gU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMDlGRS8zODAzQUExQzlC MTIxMUVGQTg3QkI0M0JDNEY5QUUwMi9aTXpCWnNXTU9QNk13WmR2WFBCOEhkQnZh QlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pNekJac1dNT1A2TXdaZHZYUEI4SGRCdmFCUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MDlGRS8zODAzQUExQzlCMTIxMUVGQTg3QkI0M0JDNEY5QUUwMi9aTXpCWnNXTU9Q Nk13WmR2WFBCOEhkQnZhQlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAMeupsyzlE3r2NPSbx0Ageaj1yzgNYi6zBs9XVzhfL26er78bbJy1x Zp0Q6mngl+krkYYBLZNqFrmkLaqKvPxcJu0nR55tee3XTqNrieUUVyDfI0e061Pl nOPnfWqcS7+0AuAcXBoQSi/2V8RjlD3wSwLt8xu2Pkiet72EotAw2Ke3wrtbR3za oNKe/318KrdUt7e/MdP2SR+1hK+iv2g8b3FnGtXDKS0wBwzeEyVy85rMXJeOXlNf NEP5iKHm5kyB//i//lYYmSqyfsvsPYTSCgBYmDxoiP/esx3hTE2nr3NemB88D7Xe SZG2MBnjT5zZoLKaHeNtLVQ5S2LH+ZTc -----END CERTIFICATE-----Generated at Mon Oct 20 05:39:48 2025 by rpki-client