$ rpki-client -vvf rpki.apnic.net/member_repository/A912C2B1/1DAEA22CD9FA11E98942894DC4F9AE02/zz57dCpMUuD49_jnQF-yu7z0yqM.mft File: zz57dCpMUuD49_jnQF-yu7z0yqM.mft (raw, json) Hash identifier: O2wE91L+VNfpoMYr3bxTnAV9qiLxZ5pky/vllaCNDbg= Subject key identifier: 7E:8C:E8:9E:55:D3:2A:CE:60:91:94:17:62:41:4F:7D:D4:69:CE:0E Authority key identifier: CF:3E:7B:74:2A:4C:52:E0:F8:F7:F8:E7:40:5F:B2:BB:BC:F4:CA:A3 Certificate issuer: /CN=A912C2B1/serialNumber=CF3E7B742A4C52E0F8F7F8E7405FB2BBBCF4CAA3 Certificate serial: 0D7E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zz57dCpMUuD49_jnQF-yu7z0yqM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912C2B1/1DAEA22CD9FA11E98942894DC4F9AE02/zz57dCpMUuD49_jnQF-yu7z0yqM.mft Manifest number: 0D5D Signing time: Fri 22 Aug 2025 18:06:59 +0000 Manifest this update: Fri 22 Aug 2025 18:06:59 +0000 Manifest next update: Fri 29 Aug 2025 18:06:59 +0000 Files and hashes: 1: zz57dCpMUuD49_jnQF-yu7z0yqM.crl (hash: VBpX3EgdifoMLM3OTA4DbUZ2LAV/q06ZscZSv9aBMos=) 2: 73E16BB27C4711EFACFB1228C4F9AE02.roa (hash: 8LOnykbqINKaZ+L5my3UzBmhmDiX2dGDooRzuen4vMo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912C2B1/1DAEA22CD9FA11E98942894DC4F9AE02/zz57dCpMUuD49_jnQF-yu7z0yqM.crl rsync://rpki.apnic.net/member_repository/A912C2B1/1DAEA22CD9FA11E98942894DC4F9AE02/zz57dCpMUuD49_jnQF-yu7z0yqM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zz57dCpMUuD49_jnQF-yu7z0yqM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 18:06:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3454 (0xd7e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912C2B1, serialNumber=CF3E7B742A4C52E0F8F7F8E7405FB2BBBCF4CAA3 Validity Not Before: Aug 22 18:06:59 2025 GMT Not After : Aug 29 18:06:59 2025 GMT Subject: CN=68a8b1c3-f863 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:e5:93:79:d1:fb:73:97:3f:72:73:ad:f5:d0: 48:81:67:e5:63:3c:96:f5:54:86:f7:6e:e2:f2:b0: bd:07:6a:b9:dd:18:59:44:76:c2:d7:05:01:f9:33: b7:5c:78:ce:bd:cf:39:ee:7b:89:78:ce:fd:b8:00: 29:27:56:7f:e1:41:c0:26:11:03:2b:48:49:ca:18: c5:32:17:c9:71:d2:76:ff:5a:13:5d:2f:32:71:40: 57:c0:77:77:cd:e0:bb:0f:f2:88:7f:db:11:4e:2d: 1f:4e:f8:1f:93:f4:05:c3:71:9c:e8:b2:b9:6a:20: cc:5f:4d:14:c9:9f:9f:91:17:6a:ac:a7:da:bd:54: b3:4e:dd:55:cb:22:2f:db:19:c5:65:7d:81:8a:f6: 20:93:e4:81:be:1f:bc:e4:c8:07:25:bd:53:a4:90: 9e:1d:79:5d:49:5c:e2:cb:66:e3:57:6b:dc:35:6d: 37:b5:60:5c:f4:5b:79:8a:01:27:59:44:24:0b:0d: 09:8b:52:b6:60:28:79:84:ff:e5:79:eb:09:f6:5f: ac:2a:e0:fc:47:b2:ce:c5:18:99:6b:2a:6d:3b:8a: 24:66:ab:14:a5:4b:f2:bc:4e:2e:56:61:b6:b3:04: 37:cc:0c:0b:87:39:c4:4f:3c:81:f2:fe:05:cf:51: 82:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:8C:E8:9E:55:D3:2A:CE:60:91:94:17:62:41:4F:7D:D4:69:CE:0E X509v3 Authority Key Identifier: keyid:CF:3E:7B:74:2A:4C:52:E0:F8:F7:F8:E7:40:5F:B2:BB:BC:F4:CA:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912C2B1/1DAEA22CD9FA11E98942894DC4F9AE02/zz57dCpMUuD49_jnQF-yu7z0yqM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zz57dCpMUuD49_jnQF-yu7z0yqM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912C2B1/1DAEA22CD9FA11E98942894DC4F9AE02/zz57dCpMUuD49_jnQF-yu7z0yqM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 12:96:eb:be:d9:d0:8d:d7:f3:cb:62:00:5d:9a:d6:74:ca:6b: 1f:36:ab:77:34:1f:35:0c:7f:c2:38:f8:78:c4:83:a2:21:54: 14:c8:99:af:bc:3f:28:07:ca:47:1f:78:1d:4b:2a:f5:5e:cc: 49:74:57:0d:62:c8:e2:da:17:1c:b0:4f:e0:8a:8c:1e:ae:83: 0f:7d:e3:2a:fe:06:cc:97:8d:f8:23:cb:57:84:fc:90:66:a3: 44:1c:32:7f:5f:63:83:5e:e0:ea:d3:8c:0b:83:0b:51:62:4f: bc:89:7e:8a:12:62:06:94:19:3b:96:fd:1a:66:f2:7e:f9:b9: 72:f6:26:10:6a:a2:0c:35:a4:5e:a6:b0:cc:c8:c9:87:d9:54: f0:a6:3f:2d:15:8c:15:95:a7:45:87:70:ad:04:37:08:ab:fd: cd:58:48:ca:02:0e:ec:94:26:d2:fc:33:93:37:38:e3:61:11: e9:de:b6:86:b9:e0:58:75:42:a9:f8:aa:3f:69:7f:81:45:9c: 3e:92:fe:bd:dd:be:ee:c8:a9:d6:82:94:36:34:b9:34:48:df: 36:1c:7a:44:fb:35:72:2d:d1:76:86:9a:57:94:74:09:27:d0: fa:11:47:16:9c:53:5b:51:74:0c:2b:d8:ff:00:e1:5d:5a:45: e4:a9:74:7d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDX4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkMyQjExMTAvBgNVBAUTKENGM0U3Qjc0MkE0QzUyRTBGOEY3RjhFNzQwNUZCMkJC QkNGNENBQTMwHhcNMjUwODIyMTgwNjU5WhcNMjUwODI5MTgwNjU5WjAYMRYwFAYD VQQDEw02OGE4YjFjMy1mODYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv+WTedH7c5c/cnOt9dBIgWflYzyW9VSG927i8rC9B2q53RhZRHbC1wUB+TO3 XHjOvc857nuJeM79uAApJ1Z/4UHAJhEDK0hJyhjFMhfJcdJ2/1oTXS8ycUBXwHd3 zeC7D/KIf9sRTi0fTvgfk/QFw3Gc6LK5aiDMX00UyZ+fkRdqrKfavVSzTt1VyyIv 2xnFZX2BivYgk+SBvh+85MgHJb1TpJCeHXldSVziy2bjV2vcNW03tWBc9Ft5igEn WUQkCw0Ji1K2YCh5hP/leesJ9l+sKuD8R7LOxRiZayptO4okZqsUpUvyvE4uVmG2 swQ3zAwLhznETzyB8v4Fz1GCtwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH6M6J5V 0yrOYJGUF2JBT33Uac4OMB8GA1UdIwQYMBaAFM8+e3QqTFLg+Pf450Bfsru89Mqj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQzJCMS8xREFFQTIyQ0Q5 RkExMUU5ODk0Mjg5NERDNEY5QUUwMi96ejU3ZENwTVV1RDQ5X2puUUYteXU3ejB5 cU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3p6NTdkQ3BNVXVENDlfam5RRi15dTd6MHlxTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QzJCMS8xREFFQTIyQ0Q5RkExMUU5ODk0Mjg5NERDNEY5QUUwMi96ejU3ZENwTVV1 RDQ5X2puUUYteXU3ejB5cU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQASluu+2dCN1/PLYgBdmtZ0ymsfNqt3NB81DH/COPh4xIOiIVQUyJmv vD8oB8pHH3gdSyr1XsxJdFcNYsji2hccsE/gioweroMPfeMq/gbMl434I8tXhPyQ ZqNEHDJ/X2ODXuDq04wLgwtRYk+8iX6KEmIGlBk7lv0aZvJ++bly9iYQaqIMNaRe prDMyMmH2VTwpj8tFYwVladFh3CtBDcIq/3NWEjKAg7slCbS/DOTNzjjYRHp3raG ueBYdUKp+Ko/aX+BRZw+kv693b7uyKnWgpQ2NLk0SN82HHpE+zVyLdF2hppXlHQJ J9D6EUcWnFNbUXQMK9j/AOFdWkXkqXR9 -----END CERTIFICATE-----Generated at Sat Aug 23 18:18:54 2025 by rpki-client