$ rpki-client -vvf rpki.apnic.net/member_repository/A91F7D74/378D9A0A692811EFAF711487C4F9AE02/09zhcUP5z134AE-MZZf7LIzMcEY.mft File: 09zhcUP5z134AE-MZZf7LIzMcEY.mft (raw, json) Hash identifier: 3D7ay9YBj2KrrVUZqKTW0BrNd5jnQg3N8TPiR8w081E= Subject key identifier: 78:30:2D:36:02:D2:2C:46:98:7A:25:91:A3:46:44:13:6A:98:19:77 Authority key identifier: D3:DC:E1:71:43:F9:CF:5D:F8:00:4F:8C:65:97:FB:2C:8C:CC:70:46 Certificate issuer: /CN=A91F7D74/serialNumber=D3DCE17143F9CF5DF8004F8C6597FB2C8CCC7046 Certificate serial: DD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/09zhcUP5z134AE-MZZf7LIzMcEY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F7D74/378D9A0A692811EFAF711487C4F9AE02/09zhcUP5z134AE-MZZf7LIzMcEY.mft Manifest number: D9 Signing time: Sun 19 Oct 2025 08:41:55 +0000 Manifest this update: Sun 19 Oct 2025 08:41:54 +0000 Manifest next update: Sun 26 Oct 2025 08:41:54 +0000 Files and hashes: 1: 09zhcUP5z134AE-MZZf7LIzMcEY.crl (hash: rs1esufGo0/WR+3ifcFrLy08Gc7vJuqyED+hzPtryC0=) 2: 6A3FA88A693C11EF8B032237C4F9AE02.roa (hash: xlsUk+nBjbtHnwZ4MERgcwqdT/rxsOcTBiheef/VMVI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F7D74/378D9A0A692811EFAF711487C4F9AE02/09zhcUP5z134AE-MZZf7LIzMcEY.crl rsync://rpki.apnic.net/member_repository/A91F7D74/378D9A0A692811EFAF711487C4F9AE02/09zhcUP5z134AE-MZZf7LIzMcEY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/09zhcUP5z134AE-MZZf7LIzMcEY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 08:41:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 221 (0xdd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F7D74, serialNumber=D3DCE17143F9CF5DF8004F8C6597FB2C8CCC7046 Validity Not Before: Oct 19 08:41:54 2025 GMT Not After : Oct 26 08:41:54 2025 GMT Subject: CN=68f4a453-5f7a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:47:17:44:cc:0f:31:cb:ad:b6:06:6a:ec:d2: 28:e8:9e:3f:af:6c:50:48:df:dc:e2:47:c6:d8:1c: 21:f4:36:5c:03:5a:26:49:8e:f6:15:7c:c9:6a:48: bc:37:3e:82:56:81:26:12:80:bd:b9:4f:19:f8:b9: ad:98:04:92:46:46:8f:3e:f9:45:e4:cc:aa:18:0c: 99:d2:ab:31:cc:47:4f:73:a4:c4:1b:bd:de:6b:01: cd:b3:f7:95:40:6f:d3:ec:62:ab:df:55:01:32:dc: 32:b3:f3:da:00:6c:7f:17:fd:86:04:d3:02:03:e7: 53:8d:f8:1a:47:7f:b0:a5:c9:b5:34:92:bf:e7:f9: bd:d7:ae:9e:22:70:36:d9:4a:97:81:29:aa:68:18: 93:ae:fb:06:de:9a:9b:fa:aa:ec:27:72:34:e9:3b: 05:93:dd:79:91:9c:1f:ac:94:36:70:3c:1c:51:49: dc:14:bb:2f:4c:5e:27:d7:63:8d:9d:b1:f6:21:92: 9f:ad:82:f0:69:9d:05:ef:25:bb:5b:a2:de:ba:c4: 63:8c:9b:f6:8e:83:29:35:b9:ed:17:8b:a8:5f:7d: c5:12:20:15:dc:84:35:47:b7:89:99:52:44:11:8d: 4b:14:e0:d1:54:4d:e1:56:08:14:bb:8a:ea:dc:53: b3:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:30:2D:36:02:D2:2C:46:98:7A:25:91:A3:46:44:13:6A:98:19:77 X509v3 Authority Key Identifier: keyid:D3:DC:E1:71:43:F9:CF:5D:F8:00:4F:8C:65:97:FB:2C:8C:CC:70:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F7D74/378D9A0A692811EFAF711487C4F9AE02/09zhcUP5z134AE-MZZf7LIzMcEY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/09zhcUP5z134AE-MZZf7LIzMcEY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F7D74/378D9A0A692811EFAF711487C4F9AE02/09zhcUP5z134AE-MZZf7LIzMcEY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2f:4b:22:5d:c7:dc:3a:62:c5:52:12:15:98:73:fe:62:8c:02: 85:23:5a:69:af:6b:44:59:4b:b7:ee:d4:22:c7:8c:0a:de:ae: 5e:54:10:68:41:6c:e6:b0:ea:d7:6e:4a:93:21:5d:b7:94:82: 70:b3:6f:f0:e1:5a:21:07:d2:b7:1e:d1:e0:00:12:e9:2d:7f: d9:21:ea:97:7b:1f:c2:d3:e8:86:43:c3:c9:bd:89:f1:a4:3f: dc:58:26:eb:76:b9:92:48:48:8c:84:0e:39:2e:0b:27:0f:17: 4a:2f:47:ea:36:3b:7a:4d:ae:69:ca:28:92:5f:c1:c3:3c:84: 1d:39:21:92:5a:8b:5a:02:3c:70:48:2c:6c:c3:0e:4d:5f:64: b9:86:ee:ec:fe:6e:68:09:a0:d7:3c:51:61:9e:a6:74:c2:1c: 53:de:3d:21:d6:77:09:28:7e:60:bf:97:11:e9:c1:1f:69:28: 06:47:f7:4e:8b:f8:28:9d:fb:ee:6a:ec:a8:05:f2:cd:c4:d0: 3b:1a:16:51:d6:99:b5:67:1a:79:7a:cf:d9:7b:c8:2c:2e:cb: 0a:77:c4:53:79:c0:3d:f1:ef:34:14:d1:2a:d0:60:7c:9f:fc: 65:e2:51:b4:cd:a4:b4:84:33:8d:df:69:ed:ac:36:a3:0b:52: 69:5b:b7:a2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAN0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjdENzQxMTAvBgNVBAUTKEQzRENFMTcxNDNGOUNGNURGODAwNEY4QzY1OTdGQjJD OENDQzcwNDYwHhcNMjUxMDE5MDg0MTU0WhcNMjUxMDI2MDg0MTU0WjAYMRYwFAYD VQQDEw02OGY0YTQ1My01ZjdhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwUcXRMwPMcuttgZq7NIo6J4/r2xQSN/c4kfG2Bwh9DZcA1omSY72FXzJaki8 Nz6CVoEmEoC9uU8Z+LmtmASSRkaPPvlF5MyqGAyZ0qsxzEdPc6TEG73eawHNs/eV QG/T7GKr31UBMtwys/PaAGx/F/2GBNMCA+dTjfgaR3+wpcm1NJK/5/m9166eInA2 2UqXgSmqaBiTrvsG3pqb+qrsJ3I06TsFk915kZwfrJQ2cDwcUUncFLsvTF4n12ON nbH2IZKfrYLwaZ0F7yW7W6LeusRjjJv2joMpNbntF4uoX33FEiAV3IQ1R7eJmVJE EY1LFODRVE3hVggUu4rq3FOzmwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHgwLTYC 0ixGmHolkaNGRBNqmBl3MB8GA1UdIwQYMBaAFNPc4XFD+c9d+ABPjGWX+yyMzHBG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGN0Q3NC8zNzhEOUEwQTY5 MjgxMUVGQUY3MTE0ODdDNEY5QUUwMi8wOXpoY1VQNXoxMzRBRS1NWlpmN0xJek1j RVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzA5emhjVVA1ejEzNEFFLU1aWmY3TEl6TWNFWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG N0Q3NC8zNzhEOUEwQTY5MjgxMUVGQUY3MTE0ODdDNEY5QUUwMi8wOXpoY1VQNXox MzRBRS1NWlpmN0xJek1jRVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAvSyJdx9w6YsVSEhWYc/5ijAKFI1ppr2tEWUu37tQix4wK3q5eVBBo QWzmsOrXbkqTIV23lIJws2/w4VohB9K3HtHgABLpLX/ZIeqXex/C0+iGQ8PJvYnx pD/cWCbrdrmSSEiMhA45LgsnDxdKL0fqNjt6Ta5pyiiSX8HDPIQdOSGSWotaAjxw SCxsww5NX2S5hu7s/m5oCaDXPFFhnqZ0whxT3j0h1ncJKH5gv5cR6cEfaSgGR/dO i/gonfvuauyoBfLNxNA7GhZR1pm1Zxp5es/Ze8gsLssKd8RTecA98e80FNEq0GB8 n/xl4lG0zaS0hDON32ntrDajC1JpW7ei -----END CERTIFICATE-----Generated at Mon Oct 20 13:40:48 2025 by rpki-client