$ rpki-client -vvf rpki.apnic.net/member_repository/A91899BB/88C2F15E885811EB96CE6817C4F9AE02/ZfYWHHNtGpxBkf38x6T4JM4RIy0.mft File: ZfYWHHNtGpxBkf38x6T4JM4RIy0.mft (raw, json) Hash identifier: Q5hRhvLJs9QnNwLhItauIs1qrMt/VH77SJbFnkdcWTo= Subject key identifier: CD:9F:DF:64:33:9E:93:29:2B:1C:7A:F6:17:B0:16:B2:08:B1:8F:C7 Authority key identifier: 65:F6:16:1C:73:6D:1A:9C:41:91:FD:FC:C7:A4:F8:24:CE:11:23:2D Certificate issuer: /CN=A91899BB/serialNumber=65F6161C736D1A9C4191FDFCC7A4F824CE11232D Certificate serial: 067B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZfYWHHNtGpxBkf38x6T4JM4RIy0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91899BB/88C2F15E885811EB96CE6817C4F9AE02/ZfYWHHNtGpxBkf38x6T4JM4RIy0.mft Manifest number: 0679 Signing time: Fri 22 Aug 2025 22:34:33 +0000 Manifest this update: Fri 22 Aug 2025 22:34:32 +0000 Manifest next update: Fri 29 Aug 2025 22:34:32 +0000 Files and hashes: 1: ZfYWHHNtGpxBkf38x6T4JM4RIy0.crl (hash: y5zKm9i9xXgq9QUnbEft5PmufQ1Cqee3Ja8E9M7jL0U=) 2: 54CB555C57A311F09664E82DC4F9AE02.roa (hash: POZE+H9XHhkiQ7gss75Xc9Cmj2rXvVlOeUNyrwPPxT4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91899BB/88C2F15E885811EB96CE6817C4F9AE02/ZfYWHHNtGpxBkf38x6T4JM4RIy0.crl rsync://rpki.apnic.net/member_repository/A91899BB/88C2F15E885811EB96CE6817C4F9AE02/ZfYWHHNtGpxBkf38x6T4JM4RIy0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZfYWHHNtGpxBkf38x6T4JM4RIy0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 22:34:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1659 (0x67b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91899BB, serialNumber=65F6161C736D1A9C4191FDFCC7A4F824CE11232D Validity Not Before: Aug 22 22:34:32 2025 GMT Not After : Aug 29 22:34:32 2025 GMT Subject: CN=68a8f078-39b1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fd:cf:41:8d:1f:47:a6:ad:e5:71:cf:48:f8:8d: 3b:c7:23:68:d0:8e:8c:58:73:08:06:a9:1e:c5:46: 9d:d9:02:bf:dc:44:36:c5:e2:a9:6a:1e:a0:23:e3: 60:d7:2b:7f:48:47:db:98:29:1c:2e:fc:65:7c:44: 85:f5:d0:d6:45:99:fa:c0:eb:f8:25:78:79:be:ff: 54:c2:5c:62:0c:d5:e7:77:da:e7:d6:f5:24:59:fd: fa:09:87:a6:23:c3:25:26:d7:dc:b1:27:2d:dc:f5: 0d:f1:ef:40:08:9c:f3:47:aa:98:83:cc:54:d0:92: b5:0a:0a:8e:f2:6d:14:69:35:e9:01:7a:20:18:fb: a3:5c:a2:a1:d8:9b:95:9e:53:ea:6e:70:c1:6d:c7: 89:7f:03:64:8b:f9:95:5a:e0:c4:32:81:9d:39:8a: 2d:55:32:3e:fa:51:ae:30:83:cd:97:5a:f5:f8:bf: 9b:d6:8d:a3:69:33:9e:03:6c:3f:37:9a:bf:2d:46: 3d:0e:40:b7:26:89:0c:eb:fc:0b:d6:76:28:03:e8: 9d:3f:27:9d:8d:09:31:1f:f3:c8:7d:c9:4b:67:fa: 66:65:26:93:68:5d:43:ac:25:b0:f0:24:93:0c:c2: 3c:58:d3:f9:56:78:a0:0a:c7:d5:05:d4:15:4e:d7: 94:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:9F:DF:64:33:9E:93:29:2B:1C:7A:F6:17:B0:16:B2:08:B1:8F:C7 X509v3 Authority Key Identifier: keyid:65:F6:16:1C:73:6D:1A:9C:41:91:FD:FC:C7:A4:F8:24:CE:11:23:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91899BB/88C2F15E885811EB96CE6817C4F9AE02/ZfYWHHNtGpxBkf38x6T4JM4RIy0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZfYWHHNtGpxBkf38x6T4JM4RIy0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91899BB/88C2F15E885811EB96CE6817C4F9AE02/ZfYWHHNtGpxBkf38x6T4JM4RIy0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 08:ac:97:47:14:c0:d2:b8:4f:d2:c2:36:cc:82:59:5c:a8:c6: a3:d5:79:65:4e:de:33:e0:ac:c4:ea:c2:74:c9:13:23:3c:05: 12:8d:2b:45:be:30:03:f8:8e:ee:a3:fe:19:ba:f7:c5:50:d3: a7:02:49:34:39:96:d0:79:fe:1e:a0:1a:5d:69:a3:c5:3f:7e: 2a:cd:d1:19:f5:89:e7:a2:a0:5c:a9:55:63:a0:b1:10:44:4d: 37:8a:aa:4f:e4:41:c8:f7:c8:71:7c:81:9a:fd:26:db:1c:92: 34:3f:08:ea:9f:36:52:bf:6c:bb:32:de:21:6d:47:ac:41:66: 5d:42:45:75:36:fe:b7:d3:14:74:24:73:04:01:6f:50:d3:0c: 2e:ec:4f:37:e3:cb:59:43:aa:fc:f2:24:2c:a0:7f:7b:14:39: c7:01:67:1d:a6:88:56:c5:f7:7c:c3:33:ed:69:93:68:27:58: a0:0c:4a:1a:df:31:96:5f:f6:05:1c:36:08:a6:df:92:8e:7d: 10:bd:39:69:8a:9b:91:db:92:d7:d6:11:c3:d5:b6:c2:e5:d0: c2:80:3e:bf:d1:6b:03:1b:fd:98:2e:36:dc:b4:4a:a7:d3:4d: 58:9e:0c:a5:3c:c3:ab:58:22:79:bf:d6:b6:b0:63:5c:3c:fd: e1:80:44:27 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBnswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODk5QkIxMTAvBgNVBAUTKDY1RjYxNjFDNzM2RDFBOUM0MTkxRkRGQ0M3QTRGODI0 Q0UxMTIzMkQwHhcNMjUwODIyMjIzNDMyWhcNMjUwODI5MjIzNDMyWjAYMRYwFAYD VQQDEw02OGE4ZjA3OC0zOWIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA/c9BjR9Hpq3lcc9I+I07xyNo0I6MWHMIBqkexUad2QK/3EQ2xeKpah6gI+Ng 1yt/SEfbmCkcLvxlfESF9dDWRZn6wOv4JXh5vv9UwlxiDNXnd9rn1vUkWf36CYem I8MlJtfcsSct3PUN8e9ACJzzR6qYg8xU0JK1CgqO8m0UaTXpAXogGPujXKKh2JuV nlPqbnDBbceJfwNki/mVWuDEMoGdOYotVTI++lGuMIPNl1r1+L+b1o2jaTOeA2w/ N5q/LUY9DkC3JokM6/wL1nYoA+idPyedjQkxH/PIfclLZ/pmZSaTaF1DrCWw8CST DMI8WNP5VnigCsfVBdQVTteU2wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM2f32Qz npMpKxx69hewFrIIsY/HMB8GA1UdIwQYMBaAFGX2FhxzbRqcQZH9/Mek+CTOESMt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4OTlCQi84OEMyRjE1RTg4 NTgxMUVCOTZDRTY4MTdDNEY5QUUwMi9aZllXSEhOdEdweEJrZjM4eDZUNEpNNFJJ eTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pmWVdISE50R3B4QmtmMzh4NlQ0Sk00Ukl5MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 OTlCQi84OEMyRjE1RTg4NTgxMUVCOTZDRTY4MTdDNEY5QUUwMi9aZllXSEhOdEdw eEJrZjM4eDZUNEpNNFJJeTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAIrJdHFMDSuE/SwjbMgllcqMaj1XllTt4z4KzE6sJ0yRMjPAUSjStF vjAD+I7uo/4ZuvfFUNOnAkk0OZbQef4eoBpdaaPFP34qzdEZ9YnnoqBcqVVjoLEQ RE03iqpP5EHI98hxfIGa/SbbHJI0PwjqnzZSv2y7Mt4hbUesQWZdQkV1Nv630xR0 JHMEAW9Q0wwu7E8348tZQ6r88iQsoH97FDnHAWcdpohWxfd8wzPtaZNoJ1igDEoa 3zGWX/YFHDYIpt+Sjn0QvTlpipuR25LX1hHD1bbC5dDCgD6/0WsDG/2YLjbctEqn 001YngylPMOrWCJ5v9a2sGNcPP3hgEQn -----END CERTIFICATE-----Generated at Sat Aug 23 19:31:16 2025 by rpki-client