$ rpki-client -vvf rpki.apnic.net/member_repository/A9112407/900DFF5E905911EB8F1EEE10C4F9AE02/zyFSbZJsuDI3TI6b1c4dW7zWYIQ.mft File: zyFSbZJsuDI3TI6b1c4dW7zWYIQ.mft (raw, json) Hash identifier: 9aGJt/0aK5P8Qwl3n4tiEfxQtH1JRDQLBbTsqzyeLlA= Subject key identifier: 1B:CA:05:69:80:30:C7:5F:46:AF:EA:B9:71:F5:3E:B8:45:94:CF:2E Authority key identifier: CF:21:52:6D:92:6C:B8:32:37:4C:8E:9B:D5:CE:1D:5B:BC:D6:60:84 Certificate issuer: /CN=A9112407/serialNumber=CF21526D926CB832374C8E9BD5CE1D5BBCD66084 Certificate serial: 069A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zyFSbZJsuDI3TI6b1c4dW7zWYIQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9112407/900DFF5E905911EB8F1EEE10C4F9AE02/zyFSbZJsuDI3TI6b1c4dW7zWYIQ.mft Manifest number: 0691 Signing time: Sat 18 Oct 2025 23:55:43 +0000 Manifest this update: Sat 18 Oct 2025 23:55:43 +0000 Manifest next update: Sat 25 Oct 2025 23:55:43 +0000 Files and hashes: 1: zyFSbZJsuDI3TI6b1c4dW7zWYIQ.crl (hash: F5omgA70SSOyWL1FpiA7QaLpJROhQvzgSLbuMRh9Sj8=) 2: 3DF2A2EC3AB311EC977A5D60C4F9AE02.roa (hash: 3IT5sXfzQ0Hxvtz12P+0YoEVny7bB7FC9cV7U/XrkKk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9112407/900DFF5E905911EB8F1EEE10C4F9AE02/zyFSbZJsuDI3TI6b1c4dW7zWYIQ.crl rsync://rpki.apnic.net/member_repository/A9112407/900DFF5E905911EB8F1EEE10C4F9AE02/zyFSbZJsuDI3TI6b1c4dW7zWYIQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zyFSbZJsuDI3TI6b1c4dW7zWYIQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 23:55:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1690 (0x69a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9112407, serialNumber=CF21526D926CB832374C8E9BD5CE1D5BBCD66084 Validity Not Before: Oct 18 23:55:43 2025 GMT Not After : Oct 25 23:55:43 2025 GMT Subject: CN=68f428ff-a2b0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:e3:e4:14:30:e4:81:73:b8:96:29:86:56:24: 3c:37:b3:e4:50:ca:0c:27:d7:a9:d5:18:df:83:8d: a9:57:ec:79:23:12:de:94:77:ee:79:71:10:e0:8c: e6:70:3b:7e:a7:cb:15:0d:79:cf:f8:1c:d0:c9:0e: 92:84:ec:d3:07:a2:46:9e:20:0d:38:32:65:40:f3: 57:62:f7:34:80:c0:e6:de:61:d7:ce:87:fc:e5:dd: 36:ff:96:fc:c7:d8:54:86:e1:fd:a8:96:d9:12:27: 3b:44:e8:c1:33:b5:fa:6f:1c:45:e8:9e:1c:12:84: f3:3b:43:b6:7f:37:bb:f3:3c:28:19:11:d1:30:bc: 44:78:c5:72:f4:76:02:0e:d6:df:eb:1e:c2:00:b8: bd:dd:10:45:53:39:f2:d2:01:1d:01:73:94:52:7b: 6f:0c:f7:ad:44:3a:87:72:80:96:93:bc:d0:0d:49: 9f:04:4e:5c:c2:e2:68:af:0d:61:b1:a9:cb:c4:d6: 3d:77:2c:c9:b2:1b:e1:80:21:73:d5:a9:7f:50:b1: 50:52:49:f8:54:fe:83:17:0d:38:f7:0c:00:39:4e: bf:4a:b7:72:7b:75:d7:7f:45:96:a2:de:8e:bf:f1: b7:5c:eb:59:5a:9c:52:7f:e2:c9:f8:6a:cd:96:1d: 8f:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:CA:05:69:80:30:C7:5F:46:AF:EA:B9:71:F5:3E:B8:45:94:CF:2E X509v3 Authority Key Identifier: keyid:CF:21:52:6D:92:6C:B8:32:37:4C:8E:9B:D5:CE:1D:5B:BC:D6:60:84 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9112407/900DFF5E905911EB8F1EEE10C4F9AE02/zyFSbZJsuDI3TI6b1c4dW7zWYIQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zyFSbZJsuDI3TI6b1c4dW7zWYIQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9112407/900DFF5E905911EB8F1EEE10C4F9AE02/zyFSbZJsuDI3TI6b1c4dW7zWYIQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 93:97:31:c2:a7:ba:92:82:93:1d:5b:b8:74:02:5f:7b:87:86: e5:4b:20:b5:7d:94:bf:20:8f:2c:82:ca:27:f9:7c:0d:fb:6a: 79:e0:fb:20:7e:e8:50:7e:26:dd:32:1a:b0:a1:38:05:b4:9e: be:16:8b:1f:78:05:63:fe:91:d5:0f:80:ca:a5:f5:15:ee:d1: 00:e1:84:64:85:f9:54:6b:c3:a7:1f:0c:d3:0b:62:6c:a9:10: 88:06:e4:aa:23:5c:3b:16:45:4f:a2:55:3c:cc:09:78:46:71: 54:00:29:83:da:3b:2d:4b:a2:4f:cb:1b:42:c7:e8:d0:f0:7c: 90:6e:29:57:55:15:28:61:c1:39:2c:05:5e:08:50:ea:d6:03: c0:fb:45:15:0d:f7:7d:ba:51:0d:3b:a2:20:06:2b:1b:ed:08: 46:fe:2f:06:5c:59:eb:94:e5:d0:c6:0e:7e:66:9d:fa:fe:57: 11:a0:6a:b4:a0:61:8e:1d:9f:14:e4:10:01:ce:d1:68:a3:6f: 4c:84:dd:af:0c:5a:94:eb:bf:e3:01:89:6c:fc:93:cc:7d:90: 1e:84:9a:86:e8:d6:86:84:f2:b4:11:e1:4d:74:86:db:4d:e1: f4:7c:06:52:1c:78:69:0f:6b:ac:39:2f:ea:08:22:82:63:d3: e0:42:c5:3e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBpowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTI0MDcxMTAvBgNVBAUTKENGMjE1MjZEOTI2Q0I4MzIzNzRDOEU5QkQ1Q0UxRDVC QkNENjYwODQwHhcNMjUxMDE4MjM1NTQzWhcNMjUxMDI1MjM1NTQzWjAYMRYwFAYD VQQDEw02OGY0MjhmZi1hMmIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArOPkFDDkgXO4limGViQ8N7PkUMoMJ9ep1Rjfg42pV+x5IxLelHfueXEQ4Izm cDt+p8sVDXnP+BzQyQ6ShOzTB6JGniANODJlQPNXYvc0gMDm3mHXzof85d02/5b8 x9hUhuH9qJbZEic7ROjBM7X6bxxF6J4cEoTzO0O2fze78zwoGRHRMLxEeMVy9HYC Dtbf6x7CALi93RBFUzny0gEdAXOUUntvDPetRDqHcoCWk7zQDUmfBE5cwuJorw1h sanLxNY9dyzJshvhgCFz1al/ULFQUkn4VP6DFw049wwAOU6/Srdye3XXf0WWot6O v/G3XOtZWpxSf+LJ+GrNlh2PMwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBvKBWmA MMdfRq/quXH1PrhFlM8uMB8GA1UdIwQYMBaAFM8hUm2SbLgyN0yOm9XOHVu81mCE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMjQwNy85MDBERkY1RTkw NTkxMUVCOEYxRUVFMTBDNEY5QUUwMi96eUZTYlpKc3VESTNUSTZiMWM0ZFc3eldZ SVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3p5RlNiWkpzdURJM1RJNmIxYzRkVzd6V1lJUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MjQwNy85MDBERkY1RTkwNTkxMUVCOEYxRUVFMTBDNEY5QUUwMi96eUZTYlpKc3VE STNUSTZiMWM0ZFc3eldZSVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCTlzHCp7qSgpMdW7h0Al97h4blSyC1fZS/II8sgson+XwN+2p54Psg fuhQfibdMhqwoTgFtJ6+FosfeAVj/pHVD4DKpfUV7tEA4YRkhflUa8OnHwzTC2Js qRCIBuSqI1w7FkVPolU8zAl4RnFUACmD2jstS6JPyxtCx+jQ8HyQbilXVRUoYcE5 LAVeCFDq1gPA+0UVDfd9ulENO6IgBisb7QhG/i8GXFnrlOXQxg5+Zp36/lcRoGq0 oGGOHZ8U5BABztFoo29MhN2vDFqU67/jAYls/JPMfZAehJqG6NaGhPK0EeFNdIbb TeH0fAZSHHhpD2usOS/qCCKCY9PgQsU+ -----END CERTIFICATE-----Generated at Mon Oct 20 18:07:52 2025 by rpki-client