$ rpki-client -vvf rpki.apnic.net/member_repository/A9112407/900DFF5E905911EB8F1EEE10C4F9AE02/zyFSbZJsuDI3TI6b1c4dW7zWYIQ.mft File: zyFSbZJsuDI3TI6b1c4dW7zWYIQ.mft (raw, json) Hash identifier: QNEpASOtfs4N+SZQms663zL595yslO0loJ6dWXHmOjw= Subject key identifier: 4F:D1:41:C7:BB:7B:B8:9A:4B:1C:A2:6B:65:7F:F3:96:78:57:39:D8 Authority key identifier: CF:21:52:6D:92:6C:B8:32:37:4C:8E:9B:D5:CE:1D:5B:BC:D6:60:84 Certificate issuer: /CN=A9112407/serialNumber=CF21526D926CB832374C8E9BD5CE1D5BBCD66084 Certificate serial: 0670 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zyFSbZJsuDI3TI6b1c4dW7zWYIQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9112407/900DFF5E905911EB8F1EEE10C4F9AE02/zyFSbZJsuDI3TI6b1c4dW7zWYIQ.mft Manifest number: 0668 Signing time: Sat 02 Aug 2025 22:55:46 +0000 Manifest this update: Sat 02 Aug 2025 22:55:45 +0000 Manifest next update: Sat 09 Aug 2025 22:55:45 +0000 Files and hashes: 1: zyFSbZJsuDI3TI6b1c4dW7zWYIQ.crl (hash: LbNXH23eTTXLmloEKMt5VK6Vaeh4rDFQXCHTUVb6kNk=) 2: 3DF2A2EC3AB311EC977A5D60C4F9AE02.roa (hash: Ccp5i/dm7+8eXzkZNFr+8Fkp38efiWixun6YhIXlQUA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9112407/900DFF5E905911EB8F1EEE10C4F9AE02/zyFSbZJsuDI3TI6b1c4dW7zWYIQ.crl rsync://rpki.apnic.net/member_repository/A9112407/900DFF5E905911EB8F1EEE10C4F9AE02/zyFSbZJsuDI3TI6b1c4dW7zWYIQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zyFSbZJsuDI3TI6b1c4dW7zWYIQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 09 Aug 2025 22:55:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1648 (0x670) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9112407, serialNumber=CF21526D926CB832374C8E9BD5CE1D5BBCD66084 Validity Not Before: Aug 2 22:55:45 2025 GMT Not After : Aug 9 22:55:45 2025 GMT Subject: CN=688e9771-81a7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:b7:9d:ce:e2:b2:58:73:7f:31:a5:27:60:2d: d6:f2:62:61:8f:33:69:b3:fd:7b:00:9e:92:0c:52: 4e:71:9d:70:9c:b7:0c:d2:33:b5:0b:38:50:f7:62: e3:72:4f:82:0e:c6:db:6e:73:0d:45:60:72:e1:91: e4:03:0b:3e:45:05:48:57:13:27:87:f2:25:26:54: 6a:21:75:d5:28:5b:1f:0f:f8:3a:c0:6f:23:d1:14: 59:0e:fb:d0:18:7d:4b:66:46:94:53:05:f9:4f:3e: 05:0d:4b:8e:45:b7:04:2c:bf:85:4f:91:f7:d7:84: 7f:e2:79:53:57:41:b5:60:94:7d:7c:33:06:30:62: 2b:14:07:be:91:97:9b:1e:f2:a5:98:3d:97:00:2c: 1b:af:b4:2e:ce:41:dd:ab:ea:c6:e3:27:bc:69:db: a3:64:e6:82:42:e7:19:7c:4c:b2:0f:e0:d7:a0:45: 49:23:01:c5:56:14:aa:cf:7c:5a:a4:2a:35:d3:83: 84:40:25:75:fe:66:f7:b9:43:cb:12:9d:e8:11:5c: a4:66:7b:3b:66:07:4d:ec:15:28:11:74:54:8d:bf: 92:b2:06:c2:5f:13:89:ad:18:63:11:7a:db:f7:70: a8:d6:7c:c1:cd:24:9e:85:f5:47:9d:0a:83:de:c0: 89:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:D1:41:C7:BB:7B:B8:9A:4B:1C:A2:6B:65:7F:F3:96:78:57:39:D8 X509v3 Authority Key Identifier: keyid:CF:21:52:6D:92:6C:B8:32:37:4C:8E:9B:D5:CE:1D:5B:BC:D6:60:84 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9112407/900DFF5E905911EB8F1EEE10C4F9AE02/zyFSbZJsuDI3TI6b1c4dW7zWYIQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zyFSbZJsuDI3TI6b1c4dW7zWYIQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9112407/900DFF5E905911EB8F1EEE10C4F9AE02/zyFSbZJsuDI3TI6b1c4dW7zWYIQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3e:40:00:78:7d:f4:3a:9f:44:61:73:43:2d:bd:89:05:32:c8: d6:88:72:8b:6e:52:aa:33:11:3e:b6:77:80:77:4d:83:3b:df: b8:1c:7b:b2:27:51:5d:d9:43:0a:37:c0:96:c8:d2:30:1b:1d: f2:bf:13:d0:91:37:86:8a:e0:e5:0e:77:94:44:96:9a:a7:ff: e2:12:d5:bd:57:32:81:68:d5:d7:37:91:48:a4:00:0d:41:51: af:30:46:86:5b:62:7f:af:3b:80:c9:b4:bd:e0:c0:3f:83:1a: 5a:1c:94:31:56:6f:cd:66:2a:8b:96:fb:ac:07:47:57:48:31: e8:4e:bf:35:5c:d4:ce:87:d9:0a:34:26:4b:25:c2:8c:37:1e: 49:b9:d9:36:80:8d:11:77:b4:b0:e7:8d:44:90:6e:52:a4:23: 2d:1c:ba:a6:49:98:7b:87:b1:55:53:f3:6e:38:b5:43:aa:e3: d6:f5:0d:4e:b0:f6:e3:3d:fc:9e:58:bc:25:a2:1c:57:43:93: 1b:e6:41:8e:2b:0a:be:6d:3e:af:87:01:ec:72:f4:6e:68:d3: 58:3e:78:55:c9:f8:b5:4f:83:a9:20:d5:7c:e0:bb:88:0f:ac: bf:f4:7b:eb:c7:43:9e:c3:be:16:a4:0d:27:49:61:2b:c9:b6: 75:47:41:0c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBnAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTI0MDcxMTAvBgNVBAUTKENGMjE1MjZEOTI2Q0I4MzIzNzRDOEU5QkQ1Q0UxRDVC QkNENjYwODQwHhcNMjUwODAyMjI1NTQ1WhcNMjUwODA5MjI1NTQ1WjAYMRYwFAYD VQQDEw02ODhlOTc3MS04MWE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtredzuKyWHN/MaUnYC3W8mJhjzNps/17AJ6SDFJOcZ1wnLcM0jO1CzhQ92Lj ck+CDsbbbnMNRWBy4ZHkAws+RQVIVxMnh/IlJlRqIXXVKFsfD/g6wG8j0RRZDvvQ GH1LZkaUUwX5Tz4FDUuORbcELL+FT5H314R/4nlTV0G1YJR9fDMGMGIrFAe+kZeb HvKlmD2XACwbr7QuzkHdq+rG4ye8adujZOaCQucZfEyyD+DXoEVJIwHFVhSqz3xa pCo104OEQCV1/mb3uUPLEp3oEVykZns7ZgdN7BUoEXRUjb+SsgbCXxOJrRhjEXrb 93Co1nzBzSSehfVHnQqD3sCJEQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE/RQce7 e7iaSxyia2V/85Z4VznYMB8GA1UdIwQYMBaAFM8hUm2SbLgyN0yOm9XOHVu81mCE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMjQwNy85MDBERkY1RTkw NTkxMUVCOEYxRUVFMTBDNEY5QUUwMi96eUZTYlpKc3VESTNUSTZiMWM0ZFc3eldZ SVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3p5RlNiWkpzdURJM1RJNmIxYzRkVzd6V1lJUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MjQwNy85MDBERkY1RTkwNTkxMUVCOEYxRUVFMTBDNEY5QUUwMi96eUZTYlpKc3VE STNUSTZiMWM0ZFc3eldZSVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA+QAB4ffQ6n0Rhc0MtvYkFMsjWiHKLblKqMxE+tneAd02DO9+4HHuy J1Fd2UMKN8CWyNIwGx3yvxPQkTeGiuDlDneURJaap//iEtW9VzKBaNXXN5FIpAAN QVGvMEaGW2J/rzuAybS94MA/gxpaHJQxVm/NZiqLlvusB0dXSDHoTr81XNTOh9kK NCZLJcKMNx5Judk2gI0Rd7Sw541EkG5SpCMtHLqmSZh7h7FVU/NuOLVDquPW9Q1O sPbjPfyeWLwlohxXQ5Mb5kGOKwq+bT6vhwHscvRuaNNYPnhVyfi1T4OpINV84LuI D6y/9Hvrx0Oew74WpA0nSWErybZ1R0EM -----END CERTIFICATE-----Generated at Mon Aug 4 11:11:27 2025 by rpki-client