$ rpki-client -vvf rpki.apnic.net/member_repository/A912C2B1/1DAEA22CD9FA11E98942894DC4F9AE02/zz57dCpMUuD49_jnQF-yu7z0yqM.mft File: zz57dCpMUuD49_jnQF-yu7z0yqM.mft (raw, json) Hash identifier: hPVZZ3Xsz81IOx1oBj3rRXXdjAMb5TBDkuZZ6LpwYz4= Subject key identifier: 2C:AE:11:08:51:EF:F2:F2:FD:BE:1F:1C:E9:7D:ED:75:30:66:E8:60 Authority key identifier: CF:3E:7B:74:2A:4C:52:E0:F8:F7:F8:E7:40:5F:B2:BB:BC:F4:CA:A3 Certificate issuer: /CN=A912C2B1/serialNumber=CF3E7B742A4C52E0F8F7F8E7405FB2BBBCF4CAA3 Certificate serial: 0D9B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zz57dCpMUuD49_jnQF-yu7z0yqM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912C2B1/1DAEA22CD9FA11E98942894DC4F9AE02/zz57dCpMUuD49_jnQF-yu7z0yqM.mft Manifest number: 0D7A Signing time: Sat 18 Oct 2025 18:39:02 +0000 Manifest this update: Sat 18 Oct 2025 18:39:02 +0000 Manifest next update: Sat 25 Oct 2025 18:39:02 +0000 Files and hashes: 1: zz57dCpMUuD49_jnQF-yu7z0yqM.crl (hash: SxB2VopScCff8ApMHArCmKgX6TOmiLSgxOTFWvIakzs=) 2: 73E16BB27C4711EFACFB1228C4F9AE02.roa (hash: 8LOnykbqINKaZ+L5my3UzBmhmDiX2dGDooRzuen4vMo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912C2B1/1DAEA22CD9FA11E98942894DC4F9AE02/zz57dCpMUuD49_jnQF-yu7z0yqM.crl rsync://rpki.apnic.net/member_repository/A912C2B1/1DAEA22CD9FA11E98942894DC4F9AE02/zz57dCpMUuD49_jnQF-yu7z0yqM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zz57dCpMUuD49_jnQF-yu7z0yqM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 18:39:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3483 (0xd9b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912C2B1, serialNumber=CF3E7B742A4C52E0F8F7F8E7405FB2BBBCF4CAA3 Validity Not Before: Oct 18 18:39:02 2025 GMT Not After : Oct 25 18:39:02 2025 GMT Subject: CN=68f3dec6-e593 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:e4:28:54:05:10:e4:05:04:d8:0c:8d:0b:ad: c8:87:19:ef:39:2e:0c:64:11:58:dd:e4:c6:20:10: e5:46:bd:7e:2a:c7:14:9e:bc:f1:70:be:65:87:96: 16:7f:67:63:c0:d6:0f:b9:a2:87:9d:67:91:4f:41: b1:c6:32:01:1d:00:b4:c0:4f:3c:7d:d1:c1:82:ed: 85:cd:59:d9:f1:4b:58:bf:a0:51:9a:f6:a2:6d:50: 0f:09:f6:43:da:91:a3:f2:1a:c5:9c:72:17:fa:0d: 37:06:fd:a5:b9:f6:a6:db:23:c4:bf:9c:d0:e4:1e: 94:70:d1:fd:22:6e:13:a0:4f:90:b8:3e:88:aa:ec: 93:10:98:db:54:e4:6f:71:42:a2:f8:52:0d:33:23: 2e:04:81:0a:2d:3a:58:6e:5f:50:3d:d9:2a:1a:ea: 67:06:90:5f:15:60:21:bf:a5:28:20:21:ad:13:2c: a5:ed:28:ff:01:47:70:a4:a0:63:ec:33:34:96:52: 23:38:31:15:aa:7e:65:c3:b1:05:8e:8b:f2:ad:34: 9c:fa:14:85:c7:cd:9f:ac:83:49:16:96:94:a6:72: ed:bc:43:9c:fd:7e:cc:db:9e:bd:11:51:43:f6:a0: 57:b4:1d:f7:ef:25:45:b8:c6:5a:95:5a:8e:15:db: 7c:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:AE:11:08:51:EF:F2:F2:FD:BE:1F:1C:E9:7D:ED:75:30:66:E8:60 X509v3 Authority Key Identifier: keyid:CF:3E:7B:74:2A:4C:52:E0:F8:F7:F8:E7:40:5F:B2:BB:BC:F4:CA:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912C2B1/1DAEA22CD9FA11E98942894DC4F9AE02/zz57dCpMUuD49_jnQF-yu7z0yqM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zz57dCpMUuD49_jnQF-yu7z0yqM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912C2B1/1DAEA22CD9FA11E98942894DC4F9AE02/zz57dCpMUuD49_jnQF-yu7z0yqM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5f:70:ed:99:da:8c:91:88:c2:64:f3:b4:18:87:46:c3:a9:b1: 8f:a8:87:0f:33:5c:11:46:03:9f:a0:aa:5d:2e:c7:d4:9b:9c: 2b:e0:aa:19:94:40:29:43:0a:d1:07:88:d5:d3:69:c7:5e:91: 2a:e6:9e:2f:24:cc:3c:fc:f1:12:d4:ca:8c:b5:f0:cd:83:19: 5f:fb:35:a3:93:c0:6e:95:a2:d9:c4:55:80:dc:67:f6:de:10: e9:ab:b0:14:9e:a3:70:db:86:b3:0d:f3:46:97:40:64:9c:e5: 5d:ee:cd:4f:96:5f:3c:86:03:61:1b:b6:c5:35:5c:4c:9b:c5: fb:97:74:7a:4b:0a:a7:52:83:5e:37:88:3a:c5:3f:e2:e7:80: fc:77:80:9c:80:c5:cd:35:8a:1e:ae:e9:99:34:15:87:17:96: 75:20:20:35:c6:fb:fa:5c:03:16:92:34:a1:8a:8a:cc:5e:c1: f3:3f:7f:cf:e6:7d:b0:5e:54:d3:b4:40:6d:6e:a0:d4:4c:7c: 1c:45:a7:59:bb:f3:41:e6:99:9a:a4:b4:8b:bd:e1:05:8d:13: a7:34:50:72:a1:e0:4a:11:28:6b:ff:7e:db:c3:85:50:0e:bf: be:b7:ff:5b:25:ea:4a:86:53:0c:de:8d:5a:4f:fc:3c:f2:31: 62:ab:ff:a6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDZswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkMyQjExMTAvBgNVBAUTKENGM0U3Qjc0MkE0QzUyRTBGOEY3RjhFNzQwNUZCMkJC QkNGNENBQTMwHhcNMjUxMDE4MTgzOTAyWhcNMjUxMDI1MTgzOTAyWjAYMRYwFAYD VQQDEw02OGYzZGVjNi1lNTkzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyOQoVAUQ5AUE2AyNC63IhxnvOS4MZBFY3eTGIBDlRr1+KscUnrzxcL5lh5YW f2djwNYPuaKHnWeRT0GxxjIBHQC0wE88fdHBgu2FzVnZ8UtYv6BRmvaibVAPCfZD 2pGj8hrFnHIX+g03Bv2lufam2yPEv5zQ5B6UcNH9Im4ToE+QuD6IquyTEJjbVORv cUKi+FINMyMuBIEKLTpYbl9QPdkqGupnBpBfFWAhv6UoICGtEyyl7Sj/AUdwpKBj 7DM0llIjODEVqn5lw7EFjovyrTSc+hSFx82frINJFpaUpnLtvEOc/X7M2569EVFD 9qBXtB337yVFuMZalVqOFdt8ZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCyuEQhR 7/Ly/b4fHOl97XUwZuhgMB8GA1UdIwQYMBaAFM8+e3QqTFLg+Pf450Bfsru89Mqj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQzJCMS8xREFFQTIyQ0Q5 RkExMUU5ODk0Mjg5NERDNEY5QUUwMi96ejU3ZENwTVV1RDQ5X2puUUYteXU3ejB5 cU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3p6NTdkQ3BNVXVENDlfam5RRi15dTd6MHlxTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QzJCMS8xREFFQTIyQ0Q5RkExMUU5ODk0Mjg5NERDNEY5QUUwMi96ejU3ZENwTVV1 RDQ5X2puUUYteXU3ejB5cU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBfcO2Z2oyRiMJk87QYh0bDqbGPqIcPM1wRRgOfoKpdLsfUm5wr4KoZ lEApQwrRB4jV02nHXpEq5p4vJMw8/PES1MqMtfDNgxlf+zWjk8BulaLZxFWA3Gf2 3hDpq7AUnqNw24azDfNGl0BknOVd7s1Pll88hgNhG7bFNVxMm8X7l3R6SwqnUoNe N4g6xT/i54D8d4CcgMXNNYoerumZNBWHF5Z1ICA1xvv6XAMWkjShiorMXsHzP3/P 5n2wXlTTtEBtbqDUTHwcRadZu/NB5pmapLSLveEFjROnNFByoeBKEShr/37bw4VQ Dr++t/9bJepKhlMM3o1aT/w88jFiq/+m -----END CERTIFICATE-----Generated at Mon Oct 20 08:03:23 2025 by rpki-client