$ rpki-client -vvf rpki.apnic.net/member_repository/A916A3EE/5B97A8B8701211EB8907BB1FC4F9AE02/aWryPZMpXC9f3fMqlVE7Ldu_zhs.mft File: aWryPZMpXC9f3fMqlVE7Ldu_zhs.mft (raw, json) Hash identifier: wSP3Ib0Hws1DoorS4n2E1Pgd5+hQ9C5IzkZBvG7wDV4= Subject key identifier: 40:0D:25:CE:6B:60:EE:49:78:47:46:28:76:77:3F:4F:29:D6:0B:00 Authority key identifier: 69:6A:F2:3D:93:29:5C:2F:5F:DD:F3:2A:95:51:3B:2D:DB:BF:CE:1B Certificate issuer: /CN=A916A3EE/serialNumber=696AF23D93295C2F5FDDF32A95513B2DDBBFCE1B Certificate serial: 06DC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aWryPZMpXC9f3fMqlVE7Ldu_zhs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916A3EE/5B97A8B8701211EB8907BB1FC4F9AE02/aWryPZMpXC9f3fMqlVE7Ldu_zhs.mft Manifest number: 06D7 Signing time: Sat 18 Oct 2025 23:28:09 +0000 Manifest this update: Sat 18 Oct 2025 23:28:09 +0000 Manifest next update: Sat 25 Oct 2025 23:28:09 +0000 Files and hashes: 1: aWryPZMpXC9f3fMqlVE7Ldu_zhs.crl (hash: nijKXQqw3g6ScLDz3h5jYjqqq4CWCqkoMa5i0+6M3+0=) 2: 76F5B630701311EB9C85DF1FC4F9AE02.roa (hash: qir+UT8zyDGjYz1YRKkq2v/pYcPeSxEZXiWVhwGwNRY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916A3EE/5B97A8B8701211EB8907BB1FC4F9AE02/aWryPZMpXC9f3fMqlVE7Ldu_zhs.crl rsync://rpki.apnic.net/member_repository/A916A3EE/5B97A8B8701211EB8907BB1FC4F9AE02/aWryPZMpXC9f3fMqlVE7Ldu_zhs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aWryPZMpXC9f3fMqlVE7Ldu_zhs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 23:28:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1756 (0x6dc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916A3EE, serialNumber=696AF23D93295C2F5FDDF32A95513B2DDBBFCE1B Validity Not Before: Oct 18 23:28:09 2025 GMT Not After : Oct 25 23:28:09 2025 GMT Subject: CN=68f42289-4967 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:38:bb:58:c1:c1:12:6e:fc:ac:ea:b7:b9:45: 0d:9a:01:41:39:5b:eb:30:6f:72:07:86:03:ed:f5: 86:c0:3d:2b:26:d2:b9:2e:06:91:45:a3:48:63:94: e1:4c:85:91:69:55:e2:22:42:e6:db:a5:40:70:f0: 38:c1:09:50:b1:57:f5:06:20:dc:8a:b7:bf:40:fa: 75:0a:30:0e:19:35:c5:81:3a:05:a0:67:8d:59:fe: 85:b8:20:75:75:12:a8:72:fd:0f:78:12:e8:1b:1a: 2c:7b:d1:c3:54:0b:3f:dc:fa:65:19:6a:ac:38:8c: 73:bf:36:e3:4b:2f:65:00:0d:e4:7b:a0:92:33:c9: fe:be:2f:9d:ee:6a:96:9c:fb:da:4a:d2:db:4c:2c: 3a:f9:95:0d:56:68:7e:0f:0c:6d:59:d2:37:a0:07: 5d:3c:99:29:8b:fa:3c:03:6f:c4:af:19:7d:8c:b2: 00:39:16:a4:ed:ea:de:b1:00:5a:5f:c0:b6:8c:a3: f1:31:d6:ae:81:3b:8e:a3:b6:72:a6:1a:31:45:79: 1c:2d:9f:e3:2f:ca:e0:ce:fc:e3:15:94:b2:da:74: 9c:55:3f:b6:5d:00:2f:c1:06:b6:f8:56:40:53:b8: 63:9a:69:3b:b0:55:a0:9c:e7:66:ae:d1:7e:1c:57: 41:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:0D:25:CE:6B:60:EE:49:78:47:46:28:76:77:3F:4F:29:D6:0B:00 X509v3 Authority Key Identifier: keyid:69:6A:F2:3D:93:29:5C:2F:5F:DD:F3:2A:95:51:3B:2D:DB:BF:CE:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916A3EE/5B97A8B8701211EB8907BB1FC4F9AE02/aWryPZMpXC9f3fMqlVE7Ldu_zhs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aWryPZMpXC9f3fMqlVE7Ldu_zhs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916A3EE/5B97A8B8701211EB8907BB1FC4F9AE02/aWryPZMpXC9f3fMqlVE7Ldu_zhs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 77:9e:db:7a:75:7c:7c:97:82:4a:73:ea:d6:fd:66:25:f8:27: 1e:6b:ad:a2:ef:8f:d1:2f:bd:a7:eb:71:8c:98:6f:fe:66:b7: b6:f7:c0:15:12:96:8a:3b:bf:35:6d:16:c2:c3:06:02:b6:d0: 19:4a:86:a1:97:28:de:50:f9:96:0e:74:88:6a:74:2f:26:77: 1a:01:e8:21:79:7b:e9:e4:6d:d2:50:b8:b5:c1:80:d4:5f:74: c5:aa:ea:16:28:89:ea:9a:76:4e:f0:d5:e6:1c:46:70:54:71: 19:c1:9c:e4:55:a9:a9:90:1d:54:98:2a:3d:2b:2f:b2:2a:47: 90:84:92:cd:ba:77:99:ac:4a:c0:1b:27:9c:98:85:64:3c:4b: 10:d2:98:06:86:a1:62:db:e7:31:62:2e:49:1a:2f:79:c0:71: 5a:22:6d:86:f5:f5:e1:47:d0:36:50:61:52:37:69:31:fa:58: d5:b4:ff:b6:aa:70:32:5e:b4:bd:d4:6d:35:d3:34:24:30:c4: 24:75:54:fa:91:34:d1:29:97:74:cb:d1:f2:35:a9:9a:3a:99: b3:d4:d0:e0:b7:7d:51:48:e3:87:80:28:dd:a6:1b:fc:e6:6c: 0f:51:5e:a9:5d:91:6a:9e:63:25:ca:b0:7e:53:b3:2c:c5:aa: 9b:4a:89:df -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBtwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkEzRUUxMTAvBgNVBAUTKDY5NkFGMjNEOTMyOTVDMkY1RkRERjMyQTk1NTEzQjJE REJCRkNFMUIwHhcNMjUxMDE4MjMyODA5WhcNMjUxMDI1MjMyODA5WjAYMRYwFAYD VQQDEw02OGY0MjI4OS00OTY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvji7WMHBEm78rOq3uUUNmgFBOVvrMG9yB4YD7fWGwD0rJtK5LgaRRaNIY5Th TIWRaVXiIkLm26VAcPA4wQlQsVf1BiDcire/QPp1CjAOGTXFgToFoGeNWf6FuCB1 dRKocv0PeBLoGxose9HDVAs/3PplGWqsOIxzvzbjSy9lAA3ke6CSM8n+vi+d7mqW nPvaStLbTCw6+ZUNVmh+DwxtWdI3oAddPJkpi/o8A2/Erxl9jLIAORak7eresQBa X8C2jKPxMdaugTuOo7ZyphoxRXkcLZ/jL8rgzvzjFZSy2nScVT+2XQAvwQa2+FZA U7hjmmk7sFWgnOdmrtF+HFdBfwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEANJc5r YO5JeEdGKHZ3P08p1gsAMB8GA1UdIwQYMBaAFGlq8j2TKVwvX93zKpVROy3bv84b MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QTNFRS81Qjk3QThCODcw MTIxMUVCODkwN0JCMUZDNEY5QUUwMi9hV3J5UFpNcFhDOWYzZk1xbFZFN0xkdV96 aHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FXcnlQWk1wWEM5ZjNmTXFsVkU3TGR1X3pocy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QTNFRS81Qjk3QThCODcwMTIxMUVCODkwN0JCMUZDNEY5QUUwMi9hV3J5UFpNcFhD OWYzZk1xbFZFN0xkdV96aHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB3ntt6dXx8l4JKc+rW/WYl+Ccea62i74/RL72n63GMmG/+Zre298AV EpaKO781bRbCwwYCttAZSoahlyjeUPmWDnSIanQvJncaAegheXvp5G3SULi1wYDU X3TFquoWKInqmnZO8NXmHEZwVHEZwZzkVampkB1UmCo9Ky+yKkeQhJLNuneZrErA GyecmIVkPEsQ0pgGhqFi2+cxYi5JGi95wHFaIm2G9fXhR9A2UGFSN2kx+ljVtP+2 qnAyXrS91G010zQkMMQkdVT6kTTRKZd0y9HyNamaOpmz1NDgt31RSOOHgCjdphv8 5mwPUV6pXZFqnmMlyrB+U7MsxaqbSonf -----END CERTIFICATE-----Generated at Mon Oct 20 09:37:06 2025 by rpki-client