$ rpki-client -vvf rpki.apnic.net/member_repository/A911F7D0/66A29982131411E9834F773BC4F9AE02/ZfzR8nTT59WOTQyihVjTS2sVLWc.mft File: ZfzR8nTT59WOTQyihVjTS2sVLWc.mft (raw, json) Hash identifier: SsEUOjN+3WOhDwSMRSUhlEeBYyu/vKBLIsmoQAV/+tg= Subject key identifier: 4C:D2:87:74:D8:D4:BC:80:A2:14:80:25:8F:71:DC:25:BB:5B:44:D6 Authority key identifier: 65:FC:D1:F2:74:D3:E7:D5:8E:4D:0C:A2:85:58:D3:4B:6B:15:2D:67 Certificate issuer: /CN=A911F7D0/serialNumber=65FCD1F274D3E7D58E4D0CA28558D34B6B152D67 Certificate serial: 1145 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZfzR8nTT59WOTQyihVjTS2sVLWc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911F7D0/66A29982131411E9834F773BC4F9AE02/ZfzR8nTT59WOTQyihVjTS2sVLWc.mft Manifest number: 113D Signing time: Fri 22 Aug 2025 17:22:52 +0000 Manifest this update: Fri 22 Aug 2025 17:22:52 +0000 Manifest next update: Fri 29 Aug 2025 17:22:52 +0000 Files and hashes: 1: ZfzR8nTT59WOTQyihVjTS2sVLWc.crl (hash: O+kCJPiESB4jLxhMElSmHCnhB8YhYpHSK0NWlYdW3tM=) 2: 1BFF84B0131611E991379440C4F9AE02.roa (hash: 9v5xAom6t8Cg5dPY2+UVNWnLY+IwQ2L6vmEfACxJwlI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911F7D0/66A29982131411E9834F773BC4F9AE02/ZfzR8nTT59WOTQyihVjTS2sVLWc.crl rsync://rpki.apnic.net/member_repository/A911F7D0/66A29982131411E9834F773BC4F9AE02/ZfzR8nTT59WOTQyihVjTS2sVLWc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZfzR8nTT59WOTQyihVjTS2sVLWc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 17:22:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4421 (0x1145) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911F7D0, serialNumber=65FCD1F274D3E7D58E4D0CA28558D34B6B152D67 Validity Not Before: Aug 22 17:22:52 2025 GMT Not After : Aug 29 17:22:52 2025 GMT Subject: CN=68a8a76c-40e4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:ba:57:94:dc:74:9a:8f:fb:17:fd:6d:f9:01: 17:c1:87:1d:b1:38:dd:05:41:1b:ab:74:bc:64:b4: 70:67:85:ab:26:60:f4:a2:91:8d:b4:dd:04:d4:18: eb:aa:fe:4d:33:29:c5:a3:98:6a:92:9a:cc:0a:94: 79:6b:cb:b4:85:be:f2:cb:a2:4c:10:f3:b8:16:d5: d0:0e:33:61:c3:b1:6f:97:5a:05:51:98:aa:62:f2: ca:c3:07:ae:14:cb:fc:af:8f:b9:f0:69:56:c9:e6: a7:e5:6e:51:85:16:01:07:6e:82:85:fb:13:23:9b: f1:49:78:06:9b:44:e4:7a:2d:94:a4:41:73:2a:02: 62:b2:c8:17:9e:9a:ca:7c:9a:9f:0b:2a:ec:46:62: 61:bd:02:25:74:bd:81:b4:46:b6:87:9c:fd:04:03: 66:4f:d8:59:73:22:7e:f3:ec:af:6f:1d:22:ba:e1: 45:71:1c:13:77:30:d8:be:b2:f3:59:18:2f:9c:3a: 5e:09:6a:25:c6:c2:fa:5c:e5:f5:62:92:b2:d4:d6: 0a:cd:be:c7:f6:a5:46:bb:00:4d:03:56:4b:5a:20: a0:09:10:a2:98:6c:1d:d6:22:73:f9:b6:71:0a:a1: aa:02:44:20:55:67:7e:15:61:c9:ef:a5:72:c4:dc: c6:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:D2:87:74:D8:D4:BC:80:A2:14:80:25:8F:71:DC:25:BB:5B:44:D6 X509v3 Authority Key Identifier: keyid:65:FC:D1:F2:74:D3:E7:D5:8E:4D:0C:A2:85:58:D3:4B:6B:15:2D:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911F7D0/66A29982131411E9834F773BC4F9AE02/ZfzR8nTT59WOTQyihVjTS2sVLWc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZfzR8nTT59WOTQyihVjTS2sVLWc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911F7D0/66A29982131411E9834F773BC4F9AE02/ZfzR8nTT59WOTQyihVjTS2sVLWc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 28:82:d3:c5:4c:7c:b9:6b:d5:a1:bd:88:f4:7a:75:0e:56:57: dd:4f:97:1c:8d:23:3a:a6:2c:97:af:fd:e3:74:03:57:de:9f: 79:7c:2a:ec:9f:4f:10:14:95:6a:52:f0:d2:51:69:16:60:3c: e4:7d:62:ce:13:fd:2a:d1:e3:61:69:2a:42:d1:19:89:cb:34: ff:b8:95:19:90:5f:dd:10:f9:7f:b1:92:88:3c:6f:50:4a:fd: a6:83:dd:63:4a:5c:4d:31:a9:9d:65:18:8a:46:de:16:52:d8: 8c:24:1a:5c:4a:ab:60:7f:59:5d:42:51:e1:8f:fa:73:e0:7a: 34:a6:55:2a:75:d0:10:c6:d3:5e:e3:b3:84:9c:df:14:85:23: ac:42:de:cb:7d:26:96:af:27:e1:93:e8:20:69:55:98:33:83: db:b8:7e:21:be:f1:79:b5:e4:9b:3d:85:5d:e1:74:08:c5:76: 61:14:da:83:c3:dc:b4:e3:c2:2b:c9:1c:71:51:57:30:fe:1a: a7:a1:80:b0:58:b5:2b:36:63:62:34:ac:8b:b9:f6:b2:60:aa: 89:9d:2d:1e:f7:28:e5:a2:df:a8:f3:b6:7b:ed:2c:c9:c2:b0: cb:0e:04:c8:2f:3f:08:40:a5:21:1a:6d:a6:eb:23:bd:a8:a2: cf:66:7a:c2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEUUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUY3RDAxMTAvBgNVBAUTKDY1RkNEMUYyNzREM0U3RDU4RTREMENBMjg1NThEMzRC NkIxNTJENjcwHhcNMjUwODIyMTcyMjUyWhcNMjUwODI5MTcyMjUyWjAYMRYwFAYD VQQDEw02OGE4YTc2Yy00MGU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsbpXlNx0mo/7F/1t+QEXwYcdsTjdBUEbq3S8ZLRwZ4WrJmD0opGNtN0E1Bjr qv5NMynFo5hqkprMCpR5a8u0hb7yy6JMEPO4FtXQDjNhw7Fvl1oFUZiqYvLKwweu FMv8r4+58GlWyean5W5RhRYBB26ChfsTI5vxSXgGm0Tkei2UpEFzKgJissgXnprK fJqfCyrsRmJhvQIldL2BtEa2h5z9BANmT9hZcyJ+8+yvbx0iuuFFcRwTdzDYvrLz WRgvnDpeCWolxsL6XOX1YpKy1NYKzb7H9qVGuwBNA1ZLWiCgCRCimGwd1iJz+bZx CqGqAkQgVWd+FWHJ76VyxNzG8wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEzSh3TY 1LyAohSAJY9x3CW7W0TWMB8GA1UdIwQYMBaAFGX80fJ00+fVjk0MooVY00trFS1n MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRjdEMC82NkEyOTk4MjEz MTQxMUU5ODM0Rjc3M0JDNEY5QUUwMi9aZnpSOG5UVDU5V09UUXlpaFZqVFMyc1ZM V2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pmelI4blRUNTlXT1RReWloVmpUUzJzVkxXYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RjdEMC82NkEyOTk4MjEzMTQxMUU5ODM0Rjc3M0JDNEY5QUUwMi9aZnpSOG5UVDU5 V09UUXlpaFZqVFMyc1ZMV2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAogtPFTHy5a9WhvYj0enUOVlfdT5ccjSM6piyXr/3jdANX3p95fCrs n08QFJVqUvDSUWkWYDzkfWLOE/0q0eNhaSpC0RmJyzT/uJUZkF/dEPl/sZKIPG9Q Sv2mg91jSlxNMamdZRiKRt4WUtiMJBpcSqtgf1ldQlHhj/pz4Ho0plUqddAQxtNe 47OEnN8UhSOsQt7LfSaWryfhk+ggaVWYM4PbuH4hvvF5teSbPYVd4XQIxXZhFNqD w9y048IryRxxUVcw/hqnoYCwWLUrNmNiNKyLufayYKqJnS0e9yjlot+o87Z77SzJ wrDLDgTILz8IQKUhGm2m6yO9qKLPZnrC -----END CERTIFICATE-----Generated at Sat Aug 23 13:49:02 2025 by rpki-client