$ rpki-client -vvf rpki.apnic.net/member_repository/A9112407/900DFF5E905911EB8F1EEE10C4F9AE02/zyFSbZJsuDI3TI6b1c4dW7zWYIQ.mft File: zyFSbZJsuDI3TI6b1c4dW7zWYIQ.mft (raw, json) Hash identifier: Z7kzpqqZ0CuI9hiAnVxgZwfak2h9N7pj9bqdha0yusI= Subject key identifier: A5:52:CC:E8:29:D6:24:25:83:6C:FF:6F:FE:03:8B:5F:62:21:3D:5B Authority key identifier: CF:21:52:6D:92:6C:B8:32:37:4C:8E:9B:D5:CE:1D:5B:BC:D6:60:84 Certificate issuer: /CN=A9112407/serialNumber=CF21526D926CB832374C8E9BD5CE1D5BBCD66084 Certificate serial: 065E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zyFSbZJsuDI3TI6b1c4dW7zWYIQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9112407/900DFF5E905911EB8F1EEE10C4F9AE02/zyFSbZJsuDI3TI6b1c4dW7zWYIQ.mft Manifest number: 0656 Signing time: Sat 28 Jun 2025 22:11:15 +0000 Manifest this update: Sat 28 Jun 2025 22:11:14 +0000 Manifest next update: Sat 05 Jul 2025 22:11:14 +0000 Files and hashes: 1: zyFSbZJsuDI3TI6b1c4dW7zWYIQ.crl (hash: z4V7nAQMAWlSvNc73S3kF56MaX9GlcEvy0fiV8crVFg=) 2: 3DF2A2EC3AB311EC977A5D60C4F9AE02.roa (hash: Ccp5i/dm7+8eXzkZNFr+8Fkp38efiWixun6YhIXlQUA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9112407/900DFF5E905911EB8F1EEE10C4F9AE02/zyFSbZJsuDI3TI6b1c4dW7zWYIQ.crl rsync://rpki.apnic.net/member_repository/A9112407/900DFF5E905911EB8F1EEE10C4F9AE02/zyFSbZJsuDI3TI6b1c4dW7zWYIQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zyFSbZJsuDI3TI6b1c4dW7zWYIQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Jul 2025 22:11:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1630 (0x65e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9112407, serialNumber=CF21526D926CB832374C8E9BD5CE1D5BBCD66084 Validity Not Before: Jun 28 22:11:14 2025 GMT Not After : Jul 5 22:11:14 2025 GMT Subject: CN=68606883-c031 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:fe:af:35:ec:70:1b:b0:8c:52:79:6b:66:35: 5e:4d:39:b9:c3:01:f4:0d:29:1f:76:d2:68:5c:66: d2:8d:7f:7e:0f:d4:c6:0d:30:91:15:60:7e:07:0a: 00:d3:e5:ef:ed:25:a2:6f:a4:b1:7b:be:66:11:9b: d0:a0:b4:fd:41:b2:e0:ed:21:32:3e:82:51:9a:b4: 7d:7e:2a:02:08:ce:71:f2:b1:4b:eb:cc:22:94:32: 64:f0:2b:99:22:50:0c:67:73:07:5d:42:32:3d:28: cf:c7:19:a7:bc:83:b7:64:f2:09:7b:11:7d:2f:3f: 5f:f7:b9:90:fa:ff:13:4e:fe:8a:57:9f:fd:b4:05: 8d:79:06:7d:51:3f:9d:72:84:41:58:a7:ff:38:ac: 26:31:69:88:e2:86:63:4f:cc:86:cf:96:a0:bb:e2: a7:7f:fc:ab:84:50:47:eb:b9:bf:df:0e:a6:23:4b: 16:4f:32:f1:ed:1c:96:1f:ee:80:64:a3:9d:d7:f5: 11:91:d8:72:b4:35:04:b1:9e:f6:22:4f:db:96:9a: 8a:22:16:5e:81:69:a5:13:46:1e:c3:4c:80:4d:ce: ff:a0:b4:64:1c:28:c3:30:b4:07:9f:15:50:81:03: 1d:cd:88:58:2c:f1:ab:26:2b:dd:ff:84:36:4d:96: 2d:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:52:CC:E8:29:D6:24:25:83:6C:FF:6F:FE:03:8B:5F:62:21:3D:5B X509v3 Authority Key Identifier: keyid:CF:21:52:6D:92:6C:B8:32:37:4C:8E:9B:D5:CE:1D:5B:BC:D6:60:84 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9112407/900DFF5E905911EB8F1EEE10C4F9AE02/zyFSbZJsuDI3TI6b1c4dW7zWYIQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zyFSbZJsuDI3TI6b1c4dW7zWYIQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9112407/900DFF5E905911EB8F1EEE10C4F9AE02/zyFSbZJsuDI3TI6b1c4dW7zWYIQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a8:f5:6f:e3:f7:8e:3a:da:e9:2a:8c:f5:17:b9:b3:39:6e:81: e8:d3:f1:fc:a8:0e:7b:2a:f7:f9:dc:32:3b:c0:54:71:6c:f3: 9a:b8:65:d5:db:0c:75:cb:a3:c2:94:0d:11:4a:df:31:a3:0c: 10:9a:21:18:7e:89:57:3b:1c:6c:d3:19:38:0a:24:fa:90:8d: 32:a1:b2:bd:9b:74:d8:29:82:c8:d6:b5:5d:22:88:59:ee:c3: 65:ed:f8:79:ce:36:72:e0:ce:9b:0a:3a:be:0c:e5:e2:79:8b: 57:57:5a:7c:76:76:8c:ef:ef:f6:ee:1a:70:a3:04:6c:38:f9: 39:53:57:19:23:24:fd:27:9f:14:24:76:fd:5a:6f:a4:ff:09: c3:9c:18:17:5c:7e:d5:62:d9:a2:9c:99:7d:a7:0d:49:9d:e7: fa:10:cd:a1:83:a2:23:f7:35:60:df:cf:bc:cc:75:36:9c:f6: 30:79:c2:70:63:8c:dd:7f:64:42:6d:dc:d8:49:6d:78:4d:54: 63:fd:6e:5e:a0:70:b6:91:32:b3:fd:f0:78:76:91:8d:a1:24: 21:6c:44:10:74:8c:b7:8f:32:8f:49:7e:51:69:50:90:f9:65: eb:7f:a3:f1:e1:0c:aa:a5:05:90:82:dc:2c:32:f9:8f:6b:97: ab:29:c1:29 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBl4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTI0MDcxMTAvBgNVBAUTKENGMjE1MjZEOTI2Q0I4MzIzNzRDOEU5QkQ1Q0UxRDVC QkNENjYwODQwHhcNMjUwNjI4MjIxMTE0WhcNMjUwNzA1MjIxMTE0WjAYMRYwFAYD VQQDEw02ODYwNjg4My1jMDMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnf6vNexwG7CMUnlrZjVeTTm5wwH0DSkfdtJoXGbSjX9+D9TGDTCRFWB+BwoA 0+Xv7SWib6Sxe75mEZvQoLT9QbLg7SEyPoJRmrR9fioCCM5x8rFL68wilDJk8CuZ IlAMZ3MHXUIyPSjPxxmnvIO3ZPIJexF9Lz9f97mQ+v8TTv6KV5/9tAWNeQZ9UT+d coRBWKf/OKwmMWmI4oZjT8yGz5agu+Knf/yrhFBH67m/3w6mI0sWTzLx7RyWH+6A ZKOd1/URkdhytDUEsZ72Ik/blpqKIhZegWmlE0Yew0yATc7/oLRkHCjDMLQHnxVQ gQMdzYhYLPGrJivd/4Q2TZYtJQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKVSzOgp 1iQlg2z/b/4Di19iIT1bMB8GA1UdIwQYMBaAFM8hUm2SbLgyN0yOm9XOHVu81mCE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMjQwNy85MDBERkY1RTkw NTkxMUVCOEYxRUVFMTBDNEY5QUUwMi96eUZTYlpKc3VESTNUSTZiMWM0ZFc3eldZ SVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3p5RlNiWkpzdURJM1RJNmIxYzRkVzd6V1lJUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MjQwNy85MDBERkY1RTkwNTkxMUVCOEYxRUVFMTBDNEY5QUUwMi96eUZTYlpKc3VE STNUSTZiMWM0ZFc3eldZSVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCo9W/j94462ukqjPUXubM5boHo0/H8qA57Kvf53DI7wFRxbPOauGXV 2wx1y6PClA0RSt8xowwQmiEYfolXOxxs0xk4CiT6kI0yobK9m3TYKYLI1rVdIohZ 7sNl7fh5zjZy4M6bCjq+DOXieYtXV1p8dnaM7+/27hpwowRsOPk5U1cZIyT9J58U JHb9Wm+k/wnDnBgXXH7VYtminJl9pw1Jnef6EM2hg6Ij9zVg38+8zHU2nPYwecJw Y4zdf2RCbdzYSW14TVRj/W5eoHC2kTKz/fB4dpGNoSQhbEQQdIy3jzKPSX5RaVCQ +WXrf6Px4QyqpQWQgtwsMvmPa5erKcEp -----END CERTIFICATE-----Generated at Sun Jun 29 12:28:52 2025 by rpki-client