$ rpki-client -vvf rpki.apnic.net/member_repository/A9112407/900DFF5E905911EB8F1EEE10C4F9AE02/zyFSbZJsuDI3TI6b1c4dW7zWYIQ.mft File: zyFSbZJsuDI3TI6b1c4dW7zWYIQ.mft (raw, json) Hash identifier: wl58x1G3aNAZWzql4HKUJyrk91YSrucW7OsSRVD2cKM= Subject key identifier: A5:5E:1A:A8:6B:95:95:D9:68:8B:40:DF:45:74:47:64:E5:5E:B6:BB Authority key identifier: CF:21:52:6D:92:6C:B8:32:37:4C:8E:9B:D5:CE:1D:5B:BC:D6:60:84 Certificate issuer: /CN=A9112407/serialNumber=CF21526D926CB832374C8E9BD5CE1D5BBCD66084 Certificate serial: 067A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zyFSbZJsuDI3TI6b1c4dW7zWYIQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9112407/900DFF5E905911EB8F1EEE10C4F9AE02/zyFSbZJsuDI3TI6b1c4dW7zWYIQ.mft Manifest number: 0672 Signing time: Fri 22 Aug 2025 22:39:43 +0000 Manifest this update: Fri 22 Aug 2025 22:39:42 +0000 Manifest next update: Fri 29 Aug 2025 22:39:42 +0000 Files and hashes: 1: zyFSbZJsuDI3TI6b1c4dW7zWYIQ.crl (hash: 3rrsO74U7wNrhipmQYwxOW0NiHbl0QGDVUUZDLGTCGQ=) 2: 3DF2A2EC3AB311EC977A5D60C4F9AE02.roa (hash: Ccp5i/dm7+8eXzkZNFr+8Fkp38efiWixun6YhIXlQUA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9112407/900DFF5E905911EB8F1EEE10C4F9AE02/zyFSbZJsuDI3TI6b1c4dW7zWYIQ.crl rsync://rpki.apnic.net/member_repository/A9112407/900DFF5E905911EB8F1EEE10C4F9AE02/zyFSbZJsuDI3TI6b1c4dW7zWYIQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zyFSbZJsuDI3TI6b1c4dW7zWYIQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 22:39:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1658 (0x67a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9112407, serialNumber=CF21526D926CB832374C8E9BD5CE1D5BBCD66084 Validity Not Before: Aug 22 22:39:42 2025 GMT Not After : Aug 29 22:39:42 2025 GMT Subject: CN=68a8f1af-a5de Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:b2:1a:f0:31:63:82:a8:6e:97:5c:78:ff:27: f5:4d:56:f0:e5:a2:77:08:8c:3d:68:48:72:2f:f9: f4:6e:ca:b5:70:f9:c6:62:a2:8e:35:f0:77:3a:d9: 5f:9a:94:31:6c:0b:4a:bd:5b:61:45:71:92:da:b2: 58:9a:82:46:39:68:65:16:fb:cc:2a:6d:b6:5b:38: 83:43:bb:ff:77:60:88:6e:68:2a:97:05:7d:21:37: 2e:68:fe:ac:4d:d2:09:6b:77:7f:f4:6a:ca:47:5e: bf:6b:f2:79:b9:30:2d:6b:e0:90:6e:98:da:22:84: c5:5d:58:74:e1:47:ad:03:d0:df:5a:25:34:7f:04: 5a:4e:41:74:11:7f:95:d8:db:e8:4f:e3:91:24:a3: 70:72:56:5b:0a:42:7a:53:b5:27:fe:64:ea:31:da: db:fa:c9:d0:bc:00:0f:8b:7c:98:ea:9b:ce:50:a4: a7:c1:6c:4b:fe:4f:61:4d:7b:5a:1b:ef:24:da:26: d3:8c:ab:35:1d:3f:29:27:d9:0f:e4:d0:76:2c:fc: a0:77:bc:03:5a:06:4d:f1:d0:01:ec:f8:a1:21:61: 87:51:09:4e:a4:37:52:5e:fb:a2:0b:0a:88:64:db: 87:19:4d:8a:cf:66:f5:c8:41:28:30:80:80:c9:bc: 54:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:5E:1A:A8:6B:95:95:D9:68:8B:40:DF:45:74:47:64:E5:5E:B6:BB X509v3 Authority Key Identifier: keyid:CF:21:52:6D:92:6C:B8:32:37:4C:8E:9B:D5:CE:1D:5B:BC:D6:60:84 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9112407/900DFF5E905911EB8F1EEE10C4F9AE02/zyFSbZJsuDI3TI6b1c4dW7zWYIQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zyFSbZJsuDI3TI6b1c4dW7zWYIQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9112407/900DFF5E905911EB8F1EEE10C4F9AE02/zyFSbZJsuDI3TI6b1c4dW7zWYIQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 68:aa:c2:c0:c0:2b:10:a3:ba:e9:68:05:1c:a8:77:94:f4:7d: 9b:35:28:c8:6d:3a:d8:04:5c:e4:a9:9e:99:f9:6c:4f:7a:c4: 40:94:ef:ef:e4:3b:22:88:5c:8e:a9:e8:1e:62:ca:5d:a2:07: 47:38:8a:4c:85:2e:3f:ff:eb:89:04:72:ea:59:57:1c:78:e0: 6b:91:13:5a:9e:f3:64:5b:4a:51:ca:87:4b:30:99:71:1a:d6: 9b:0f:62:ca:40:d8:a9:90:fe:3d:70:96:f1:4d:22:bc:ae:36: a7:23:3e:a5:15:1c:bb:27:ca:fc:5f:bb:89:82:a3:d5:07:58: ae:d9:09:28:57:00:27:78:d8:cd:72:1a:ad:13:4d:dc:af:a0: 06:42:c4:ea:29:66:8d:93:19:2a:be:9f:fd:8a:a5:fa:29:1b: a7:15:cd:50:d5:15:5e:b8:60:5e:59:b0:07:df:c3:b5:02:44: a1:6a:2e:cb:d6:68:58:36:47:73:59:e6:65:61:2d:9b:49:6b: 05:40:df:53:96:95:b3:2c:dc:ac:6b:ba:8b:ec:f5:fb:11:91: 02:61:cd:dc:62:82:04:12:54:ec:c2:c7:ee:87:69:c8:c8:00: 5e:a0:64:db:30:b8:f1:f2:0b:11:42:e1:12:cf:89:b0:c6:e8: 51:dd:a7:68 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBnowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTI0MDcxMTAvBgNVBAUTKENGMjE1MjZEOTI2Q0I4MzIzNzRDOEU5QkQ1Q0UxRDVC QkNENjYwODQwHhcNMjUwODIyMjIzOTQyWhcNMjUwODI5MjIzOTQyWjAYMRYwFAYD VQQDEw02OGE4ZjFhZi1hNWRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsrIa8DFjgqhul1x4/yf1TVbw5aJ3CIw9aEhyL/n0bsq1cPnGYqKONfB3Otlf mpQxbAtKvVthRXGS2rJYmoJGOWhlFvvMKm22WziDQ7v/d2CIbmgqlwV9ITcuaP6s TdIJa3d/9GrKR16/a/J5uTAta+CQbpjaIoTFXVh04UetA9DfWiU0fwRaTkF0EX+V 2NvoT+ORJKNwclZbCkJ6U7Un/mTqMdrb+snQvAAPi3yY6pvOUKSnwWxL/k9hTXta G+8k2ibTjKs1HT8pJ9kP5NB2LPygd7wDWgZN8dAB7PihIWGHUQlOpDdSXvuiCwqI ZNuHGU2Kz2b1yEEoMICAybxUvQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKVeGqhr lZXZaItA30V0R2TlXra7MB8GA1UdIwQYMBaAFM8hUm2SbLgyN0yOm9XOHVu81mCE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMjQwNy85MDBERkY1RTkw NTkxMUVCOEYxRUVFMTBDNEY5QUUwMi96eUZTYlpKc3VESTNUSTZiMWM0ZFc3eldZ SVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3p5RlNiWkpzdURJM1RJNmIxYzRkVzd6V1lJUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MjQwNy85MDBERkY1RTkwNTkxMUVCOEYxRUVFMTBDNEY5QUUwMi96eUZTYlpKc3VE STNUSTZiMWM0ZFc3eldZSVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBoqsLAwCsQo7rpaAUcqHeU9H2bNSjIbTrYBFzkqZ6Z+WxPesRAlO/v 5DsiiFyOqegeYspdogdHOIpMhS4//+uJBHLqWVcceOBrkRNanvNkW0pRyodLMJlx GtabD2LKQNipkP49cJbxTSK8rjanIz6lFRy7J8r8X7uJgqPVB1iu2QkoVwAneNjN chqtE03cr6AGQsTqKWaNkxkqvp/9iqX6KRunFc1Q1RVeuGBeWbAH38O1AkShai7L 1mhYNkdzWeZlYS2bSWsFQN9TlpWzLNysa7qL7PX7EZECYc3cYoIEElTswsfuh2nI yABeoGTbMLjx8gsRQuESz4mwxuhR3ado -----END CERTIFICATE-----Generated at Sat Aug 23 15:30:13 2025 by rpki-client