$ rpki-client -vvf rpki.apnic.net/member_repository/A9112407/900DFF5E905911EB8F1EEE10C4F9AE02/zyFSbZJsuDI3TI6b1c4dW7zWYIQ.mft File: zyFSbZJsuDI3TI6b1c4dW7zWYIQ.mft (raw, json) Hash identifier: FRwvrn7Kd16ezecVOzCdaKZZ36KcWnWV8k0K/OHKLME= Subject key identifier: 27:20:2D:7A:DF:53:7C:9A:AF:9E:02:A2:A8:3E:3C:1F:A7:A6:BE:D4 Authority key identifier: CF:21:52:6D:92:6C:B8:32:37:4C:8E:9B:D5:CE:1D:5B:BC:D6:60:84 Certificate issuer: /CN=A9112407/serialNumber=CF21526D926CB832374C8E9BD5CE1D5BBCD66084 Certificate serial: 0656 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zyFSbZJsuDI3TI6b1c4dW7zWYIQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9112407/900DFF5E905911EB8F1EEE10C4F9AE02/zyFSbZJsuDI3TI6b1c4dW7zWYIQ.mft Manifest number: 064E Signing time: Thu 12 Jun 2025 22:14:36 +0000 Manifest this update: Thu 12 Jun 2025 22:14:35 +0000 Manifest next update: Thu 19 Jun 2025 22:14:35 +0000 Files and hashes: 1: zyFSbZJsuDI3TI6b1c4dW7zWYIQ.crl (hash: efTsx5QuiLiqDyvLZUKKRZNOKN89qPksEFvGi/OC+OI=) 2: 3DF2A2EC3AB311EC977A5D60C4F9AE02.roa (hash: Ccp5i/dm7+8eXzkZNFr+8Fkp38efiWixun6YhIXlQUA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9112407/900DFF5E905911EB8F1EEE10C4F9AE02/zyFSbZJsuDI3TI6b1c4dW7zWYIQ.crl rsync://rpki.apnic.net/member_repository/A9112407/900DFF5E905911EB8F1EEE10C4F9AE02/zyFSbZJsuDI3TI6b1c4dW7zWYIQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zyFSbZJsuDI3TI6b1c4dW7zWYIQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 22:14:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1622 (0x656) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9112407, serialNumber=CF21526D926CB832374C8E9BD5CE1D5BBCD66084 Validity Not Before: Jun 12 22:14:35 2025 GMT Not After : Jun 19 22:14:35 2025 GMT Subject: CN=684b514b-f259 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:67:82:98:c1:2c:35:e1:96:97:49:13:aa:53: 5d:b7:2d:02:07:3d:f7:4c:60:59:92:c1:74:4b:f6: 15:50:1b:9f:3b:fc:0c:f8:e6:6e:6a:27:d9:32:fd: 4a:b6:bd:4b:35:a8:38:5f:e6:1b:db:3b:79:cd:fe: 00:85:f5:33:08:ef:2d:2d:26:72:0a:29:df:ba:bd: 65:cf:94:4a:ae:25:bc:9f:d8:18:ea:26:8c:52:5e: 9f:e9:20:03:4a:8a:d3:8a:68:46:86:9f:76:3d:37: 2a:a1:20:5b:12:ca:68:64:29:f8:7b:17:48:c0:c4: 18:4b:e6:be:f9:e3:14:53:ae:51:44:88:8d:e0:16: ab:6e:43:d4:eb:05:e7:bd:e5:0b:e4:6e:0a:1c:41: ca:20:66:14:50:f3:ee:47:ab:dd:1d:3f:00:88:b5: d0:a0:9e:42:de:75:26:7f:cd:02:b2:8c:0e:c8:a4: cc:9a:77:9e:66:2c:2e:f6:fb:b6:b5:f3:84:a5:31: 0f:bf:08:0b:29:61:eb:04:15:e1:54:a9:90:1b:cf: af:2f:49:38:55:95:f9:10:34:82:aa:7f:56:cb:63: bb:29:d9:04:d7:39:0e:9e:0b:df:76:fe:c8:81:a3: 36:d5:c7:6b:8f:49:88:e0:bd:69:24:30:43:2f:50: 65:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:20:2D:7A:DF:53:7C:9A:AF:9E:02:A2:A8:3E:3C:1F:A7:A6:BE:D4 X509v3 Authority Key Identifier: keyid:CF:21:52:6D:92:6C:B8:32:37:4C:8E:9B:D5:CE:1D:5B:BC:D6:60:84 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9112407/900DFF5E905911EB8F1EEE10C4F9AE02/zyFSbZJsuDI3TI6b1c4dW7zWYIQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zyFSbZJsuDI3TI6b1c4dW7zWYIQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9112407/900DFF5E905911EB8F1EEE10C4F9AE02/zyFSbZJsuDI3TI6b1c4dW7zWYIQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 83:85:71:29:97:78:ce:95:fe:9a:69:32:64:12:c2:d6:af:9a: d7:d5:57:8c:e9:db:76:77:4e:66:a9:dd:ed:1d:f7:d5:d2:d6: b2:e2:0d:08:cf:7d:05:43:67:3b:58:69:00:2d:85:25:a0:bc: 95:d6:77:08:03:47:3d:58:d1:4a:3e:60:ff:b5:5d:2e:07:36: c1:9a:c8:41:76:14:41:1c:e0:a9:4f:a3:b4:62:06:22:2b:4d: 53:bd:ab:5d:45:03:ce:de:3e:7d:e8:e8:21:a7:c4:88:b2:dc: 87:80:49:ed:00:70:e3:74:87:96:2d:97:32:fd:3d:9b:c5:29: 7e:e5:77:e0:38:d6:fa:04:16:a3:c5:dd:90:33:63:00:76:16: f8:5d:66:d4:f6:20:6e:4a:7c:91:09:1e:af:33:ee:07:ec:b1: b8:b5:43:dc:70:a2:43:98:d8:d9:05:91:bc:9b:13:26:b7:ec: 17:26:cf:6a:f7:04:2c:22:6e:6b:7f:02:02:4e:f4:0c:e1:8e: 96:b9:43:3a:e6:2f:6b:3d:ed:ff:fc:84:27:9c:3a:9e:3a:54: 04:98:07:20:26:c8:00:d7:f2:87:2d:0c:08:0b:6b:6d:26:72: 33:95:18:29:8b:c6:cf:bf:c9:00:16:c2:b8:cf:d9:50:f3:58: c5:03:6a:77 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBlYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTI0MDcxMTAvBgNVBAUTKENGMjE1MjZEOTI2Q0I4MzIzNzRDOEU5QkQ1Q0UxRDVC QkNENjYwODQwHhcNMjUwNjEyMjIxNDM1WhcNMjUwNjE5MjIxNDM1WjAYMRYwFAYD VQQDEw02ODRiNTE0Yi1mMjU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw2eCmMEsNeGWl0kTqlNdty0CBz33TGBZksF0S/YVUBufO/wM+OZuaifZMv1K tr1LNag4X+Yb2zt5zf4AhfUzCO8tLSZyCinfur1lz5RKriW8n9gY6iaMUl6f6SAD SorTimhGhp92PTcqoSBbEspoZCn4exdIwMQYS+a++eMUU65RRIiN4BarbkPU6wXn veUL5G4KHEHKIGYUUPPuR6vdHT8AiLXQoJ5C3nUmf80CsowOyKTMmneeZiwu9vu2 tfOEpTEPvwgLKWHrBBXhVKmQG8+vL0k4VZX5EDSCqn9Wy2O7KdkE1zkOngvfdv7I gaM21cdrj0mI4L1pJDBDL1BlpQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCcgLXrf U3yar54Coqg+PB+npr7UMB8GA1UdIwQYMBaAFM8hUm2SbLgyN0yOm9XOHVu81mCE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMjQwNy85MDBERkY1RTkw NTkxMUVCOEYxRUVFMTBDNEY5QUUwMi96eUZTYlpKc3VESTNUSTZiMWM0ZFc3eldZ SVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3p5RlNiWkpzdURJM1RJNmIxYzRkVzd6V1lJUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MjQwNy85MDBERkY1RTkwNTkxMUVCOEYxRUVFMTBDNEY5QUUwMi96eUZTYlpKc3VE STNUSTZiMWM0ZFc3eldZSVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCDhXEpl3jOlf6aaTJkEsLWr5rX1VeM6dt2d05mqd3tHffV0tay4g0I z30FQ2c7WGkALYUloLyV1ncIA0c9WNFKPmD/tV0uBzbBmshBdhRBHOCpT6O0YgYi K01TvatdRQPO3j596Oghp8SIstyHgEntAHDjdIeWLZcy/T2bxSl+5XfgONb6BBaj xd2QM2MAdhb4XWbU9iBuSnyRCR6vM+4H7LG4tUPccKJDmNjZBZG8mxMmt+wXJs9q 9wQsIm5rfwICTvQM4Y6WuUM65i9rPe3//IQnnDqeOlQEmAcgJsgA1/KHLQwIC2tt JnIzlRgpi8bPv8kAFsK4z9lQ81jFA2p3 -----END CERTIFICATE-----Generated at Sat Jun 14 18:36:27 2025 by rpki-client