$ rpki-client -vvf rpki.apnic.net/member_repository/A91CAA4E/55E9795AA94F11E8AA0C900EC4F9AE02/ZyEk9jPIkZyl12bYnpzP8LIfDI0.mft File: ZyEk9jPIkZyl12bYnpzP8LIfDI0.mft (raw, json) Hash identifier: wiwv5sKrbZcBPiuRP8/NqsYXoxRX3jgHIq2BNUSF7gE= Subject key identifier: 27:66:80:1E:0E:87:DB:CD:6A:B6:D2:DA:2F:8C:6C:27:3B:C0:51:C3 Authority key identifier: 67:21:24:F6:33:C8:91:9C:A5:D7:66:D8:9E:9C:CF:F0:B2:1F:0C:8D Certificate issuer: /CN=A91CAA4E/serialNumber=672124F633C8919CA5D766D89E9CCFF0B21F0C8D Certificate serial: 135D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZyEk9jPIkZyl12bYnpzP8LIfDI0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CAA4E/55E9795AA94F11E8AA0C900EC4F9AE02/ZyEk9jPIkZyl12bYnpzP8LIfDI0.mft Manifest number: 1A9B Signing time: Fri 22 Aug 2025 17:07:45 +0000 Manifest this update: Fri 22 Aug 2025 17:07:44 +0000 Manifest next update: Fri 29 Aug 2025 17:07:44 +0000 Files and hashes: 1: ZyEk9jPIkZyl12bYnpzP8LIfDI0.crl (hash: obmpUoQdywel4Z3g504BbqF0VBDsZgKBdtXy8MXNs0E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CAA4E/55E9795AA94F11E8AA0C900EC4F9AE02/ZyEk9jPIkZyl12bYnpzP8LIfDI0.crl rsync://rpki.apnic.net/member_repository/A91CAA4E/55E9795AA94F11E8AA0C900EC4F9AE02/ZyEk9jPIkZyl12bYnpzP8LIfDI0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZyEk9jPIkZyl12bYnpzP8LIfDI0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 17:07:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4957 (0x135d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CAA4E, serialNumber=672124F633C8919CA5D766D89E9CCFF0B21F0C8D Validity Not Before: Aug 22 17:07:44 2025 GMT Not After : Aug 29 17:07:44 2025 GMT Subject: CN=68a8a3e0-3645 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:d2:ea:fe:a6:b5:22:6a:6e:0e:54:ed:b1:19: 31:8e:fe:7e:00:2f:d0:56:50:75:3e:25:62:ba:3a: 4f:3c:cd:25:97:ab:6d:c3:c0:9a:11:3f:03:73:46: 7b:f6:00:0c:87:6a:44:26:ec:e3:1d:d0:2c:84:22: c8:0c:ad:97:9a:34:8f:37:ab:fa:f9:e1:5c:4f:e4: 59:0e:95:e0:d0:04:e0:38:a7:f9:86:e2:9b:14:06: 31:cc:6f:ca:cf:5f:ac:30:d6:5c:ce:80:8e:cf:46: 9a:6f:d9:2d:07:b4:cc:2c:04:6d:73:19:eb:80:22: 72:8c:e2:f8:d1:71:c8:80:9e:da:08:00:0a:c1:70: 80:11:ec:ec:4a:15:eb:b3:a1:89:66:93:77:25:97: ca:cb:fb:2d:a8:92:ff:9a:37:59:35:0b:f8:13:89: b0:e1:7f:6b:46:d5:4c:25:dc:17:56:05:02:fe:b8: 8e:1e:16:5b:dd:9b:6b:ab:bf:4a:d6:f2:c7:dc:15: 3d:ee:01:bd:bb:0b:fc:b1:c1:bb:9b:13:2b:b6:62: e9:70:a9:07:58:f3:e4:f1:8b:ef:c4:9e:e7:28:61: 2e:84:d3:fc:8b:84:ed:aa:58:61:ad:f0:9e:b8:5a: be:85:e3:ab:ee:a4:5c:c9:0e:98:71:22:ac:96:82: 43:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:66:80:1E:0E:87:DB:CD:6A:B6:D2:DA:2F:8C:6C:27:3B:C0:51:C3 X509v3 Authority Key Identifier: keyid:67:21:24:F6:33:C8:91:9C:A5:D7:66:D8:9E:9C:CF:F0:B2:1F:0C:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CAA4E/55E9795AA94F11E8AA0C900EC4F9AE02/ZyEk9jPIkZyl12bYnpzP8LIfDI0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZyEk9jPIkZyl12bYnpzP8LIfDI0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CAA4E/55E9795AA94F11E8AA0C900EC4F9AE02/ZyEk9jPIkZyl12bYnpzP8LIfDI0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 28:99:6b:3b:94:38:79:7c:15:15:ed:7d:09:1b:f7:1a:b4:5c: 32:06:53:f2:c6:9a:5e:c6:61:b9:e3:37:e8:11:a1:f9:46:b0: 94:2a:70:53:55:18:57:b6:b5:cd:a8:3b:5a:5e:d9:73:e1:83: a6:2b:b3:31:73:74:a1:ff:50:8e:6f:3d:35:3e:b5:81:73:1d: bb:96:35:aa:fd:04:c5:39:9a:04:01:52:f4:63:b8:a4:a6:c3: 20:1d:9a:0f:a2:1b:d7:48:b6:63:03:c3:69:99:48:c3:60:0a: d9:30:75:12:0e:a1:03:b8:1d:4b:90:ee:c6:ec:33:0c:f6:43: fc:a6:1f:70:5f:6c:44:e2:c7:57:a5:ff:7a:d5:75:f8:c2:42: 5d:27:2e:bd:12:70:8b:57:28:97:21:d4:31:d3:75:d9:11:4e: 91:ea:7b:c0:26:a2:ef:24:fd:1b:9b:a5:ad:91:52:2a:a8:f3: 5f:3d:c5:01:fa:99:48:32:5d:00:1d:69:6d:0b:12:3e:0e:82: fe:fa:1c:80:cf:b2:28:43:03:07:58:38:0b:c8:8f:2e:8b:c5: 49:e2:25:c9:a4:de:f7:ce:83:f3:0f:0b:09:d3:71:a8:d5:d3: 6f:a2:24:40:52:35:bd:f7:e6:bc:48:8a:32:eb:01:9b:49:cc: 6a:35:72:39 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICE10wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0FBNEUxMTAvBgNVBAUTKDY3MjEyNEY2MzNDODkxOUNBNUQ3NjZEODlFOUNDRkYw QjIxRjBDOEQwHhcNMjUwODIyMTcwNzQ0WhcNMjUwODI5MTcwNzQ0WjAYMRYwFAYD VQQDEw02OGE4YTNlMC0zNjQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1dLq/qa1ImpuDlTtsRkxjv5+AC/QVlB1PiViujpPPM0ll6ttw8CaET8Dc0Z7 9gAMh2pEJuzjHdAshCLIDK2XmjSPN6v6+eFcT+RZDpXg0ATgOKf5huKbFAYxzG/K z1+sMNZczoCOz0aab9ktB7TMLARtcxnrgCJyjOL40XHIgJ7aCAAKwXCAEezsShXr s6GJZpN3JZfKy/stqJL/mjdZNQv4E4mw4X9rRtVMJdwXVgUC/riOHhZb3Ztrq79K 1vLH3BU97gG9uwv8scG7mxMrtmLpcKkHWPPk8YvvxJ7nKGEuhNP8i4TtqlhhrfCe uFq+heOr7qRcyQ6YcSKsloJD/wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCdmgB4O h9vNarbS2i+MbCc7wFHDMB8GA1UdIwQYMBaAFGchJPYzyJGcpddm2J6cz/CyHwyN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQUE0RS81NUU5Nzk1QUE5 NEYxMUU4QUEwQzkwMEVDNEY5QUUwMi9aeUVrOWpQSWtaeWwxMmJZbnB6UDhMSWZE STAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1p5RWs5alBJa1p5bDEyYllucHpQOExJZkRJMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QUE0RS81NUU5Nzk1QUE5NEYxMUU4QUEwQzkwMEVDNEY5QUUwMi9aeUVrOWpQSWta eWwxMmJZbnB6UDhMSWZESTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAomWs7lDh5fBUV7X0JG/catFwyBlPyxppexmG54zfoEaH5RrCUKnBT VRhXtrXNqDtaXtlz4YOmK7Mxc3Sh/1CObz01PrWBcx27ljWq/QTFOZoEAVL0Y7ik psMgHZoPohvXSLZjA8NpmUjDYArZMHUSDqEDuB1LkO7G7DMM9kP8ph9wX2xE4sdX pf961XX4wkJdJy69EnCLVyiXIdQx03XZEU6R6nvAJqLvJP0bm6WtkVIqqPNfPcUB +plIMl0AHWltCxI+DoL++hyAz7IoQwMHWDgLyI8ui8VJ4iXJpN73zoPzDwsJ03Go 1dNvoiRAUjW99+a8SIoy6wGbScxqNXI5 -----END CERTIFICATE-----Generated at Sat Aug 23 21:23:08 2025 by rpki-client