$ rpki-client -vvf rpki.apnic.net/member_repository/A9112407/900DFF5E905911EB8F1EEE10C4F9AE02/zyFSbZJsuDI3TI6b1c4dW7zWYIQ.mft File: zyFSbZJsuDI3TI6b1c4dW7zWYIQ.mft (raw, json) Hash identifier: DU2YbDPRjC7uxEE8IA4BSDegPAV2eYbqzb1xGLdljiU= Subject key identifier: 26:3F:CB:0E:5E:46:4B:DA:8A:A4:89:69:D4:47:1C:DD:9E:0B:26:B3 Authority key identifier: CF:21:52:6D:92:6C:B8:32:37:4C:8E:9B:D5:CE:1D:5B:BC:D6:60:84 Certificate issuer: /CN=A9112407/serialNumber=CF21526D926CB832374C8E9BD5CE1D5BBCD66084 Certificate serial: 06A3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zyFSbZJsuDI3TI6b1c4dW7zWYIQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9112407/900DFF5E905911EB8F1EEE10C4F9AE02/zyFSbZJsuDI3TI6b1c4dW7zWYIQ.mft Manifest number: 069A Signing time: Tue 04 Nov 2025 22:28:47 +0000 Manifest this update: Tue 04 Nov 2025 22:28:47 +0000 Manifest next update: Tue 11 Nov 2025 22:28:47 +0000 Files and hashes: 1: zyFSbZJsuDI3TI6b1c4dW7zWYIQ.crl (hash: JClV+ggc/PqMeeilXzQBmOXlgOD3hRSL2nVDv3jvtXY=) 2: 3DF2A2EC3AB311EC977A5D60C4F9AE02.roa (hash: 3IT5sXfzQ0Hxvtz12P+0YoEVny7bB7FC9cV7U/XrkKk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9112407/900DFF5E905911EB8F1EEE10C4F9AE02/zyFSbZJsuDI3TI6b1c4dW7zWYIQ.crl rsync://rpki.apnic.net/member_repository/A9112407/900DFF5E905911EB8F1EEE10C4F9AE02/zyFSbZJsuDI3TI6b1c4dW7zWYIQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zyFSbZJsuDI3TI6b1c4dW7zWYIQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 22:28:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1699 (0x6a3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9112407, serialNumber=CF21526D926CB832374C8E9BD5CE1D5BBCD66084 Validity Not Before: Nov 4 22:28:47 2025 GMT Not After : Nov 11 22:28:47 2025 GMT Subject: CN=690a7e1f-a8c7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:67:bd:1b:9f:9c:8d:53:1a:78:64:7b:ea:5c: c6:91:8c:62:ca:a6:3b:39:ea:5e:72:44:1a:36:7c: be:86:b7:7c:48:34:b9:a6:fb:4d:73:03:58:4c:05: 66:a7:1c:ef:88:67:97:b5:48:86:f7:49:c3:8b:84: 34:78:ed:8d:3d:73:35:dd:93:5c:28:36:be:13:ce: bb:9d:81:b1:b8:64:26:7d:77:f5:73:94:24:5e:19: 2f:99:1c:00:06:12:90:3d:41:e8:16:71:1e:c3:ed: af:71:a0:b6:56:41:35:bf:05:61:c1:41:d1:a4:a2: 10:35:ce:e2:1f:6e:2e:73:90:61:e9:68:95:8d:89: f6:39:93:5a:1f:bb:2f:0f:c3:86:2a:21:2f:17:09: 50:d3:e5:21:e1:6d:63:d7:8b:dd:40:ef:b3:5c:52: 5f:b1:80:06:3d:0d:a9:9c:ed:8a:4b:b8:13:5f:61: c0:f7:f3:9e:ac:b4:2d:60:8a:62:a9:c6:64:ce:10: 92:9c:ec:49:18:1a:59:80:f0:a8:60:a2:ec:94:56: 7f:98:77:ec:68:ee:ec:c4:6c:2a:9b:91:f0:23:e9: 22:65:1b:67:cb:13:bb:6c:4d:13:77:f0:72:eb:3f: 41:f2:e0:50:32:b0:ae:af:e8:d9:be:6c:48:27:8e: d5:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:3F:CB:0E:5E:46:4B:DA:8A:A4:89:69:D4:47:1C:DD:9E:0B:26:B3 X509v3 Authority Key Identifier: keyid:CF:21:52:6D:92:6C:B8:32:37:4C:8E:9B:D5:CE:1D:5B:BC:D6:60:84 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9112407/900DFF5E905911EB8F1EEE10C4F9AE02/zyFSbZJsuDI3TI6b1c4dW7zWYIQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zyFSbZJsuDI3TI6b1c4dW7zWYIQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9112407/900DFF5E905911EB8F1EEE10C4F9AE02/zyFSbZJsuDI3TI6b1c4dW7zWYIQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7c:68:e2:09:eb:94:39:a6:0b:aa:87:5b:95:19:d4:e4:40:73: 3f:b7:b6:c1:01:27:a4:d7:19:ef:33:a9:d7:ae:92:29:2a:2d: 84:5d:fb:7a:5e:17:e9:b5:ad:d9:5e:b7:83:de:8e:aa:2d:3d: fe:dd:df:38:dd:68:f8:76:6f:a6:ef:39:ec:4d:8c:c3:c4:cf: 62:4e:44:1b:fe:0e:a6:fa:e6:04:46:8c:6d:13:ff:4b:73:54: 90:73:a3:f6:de:6e:ca:77:f2:3a:6b:4f:03:32:0a:5e:c5:4c: 19:2f:15:8b:41:4e:77:45:c3:7e:ce:81:a9:93:ca:1d:a3:b9: a1:28:a7:61:bf:21:03:de:8b:8b:cb:33:54:11:1c:ff:89:5f: af:dc:00:9f:c2:31:45:87:63:86:46:45:78:8b:d5:3a:83:f5: 88:8f:44:9b:b4:c9:1f:35:9f:5d:6a:3a:87:85:b0:d9:0e:b3: b7:21:19:68:de:7f:51:26:19:ab:d0:03:de:5d:7f:8f:6e:14: 3c:4d:04:63:6c:92:3d:3d:8d:74:ad:cf:6c:64:f7:9a:3e:31: b7:5d:97:95:b8:e5:78:76:a8:27:6f:b9:23:e8:b2:ca:f0:fd: bd:8b:75:2a:7d:86:45:8f:46:24:92:4d:13:94:0a:68:1c:95: 3a:df:4c:e3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBqMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTI0MDcxMTAvBgNVBAUTKENGMjE1MjZEOTI2Q0I4MzIzNzRDOEU5QkQ1Q0UxRDVC QkNENjYwODQwHhcNMjUxMTA0MjIyODQ3WhcNMjUxMTExMjIyODQ3WjAYMRYwFAYD VQQDEw02OTBhN2UxZi1hOGM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo2e9G5+cjVMaeGR76lzGkYxiyqY7OepeckQaNny+hrd8SDS5pvtNcwNYTAVm pxzviGeXtUiG90nDi4Q0eO2NPXM13ZNcKDa+E867nYGxuGQmfXf1c5QkXhkvmRwA BhKQPUHoFnEew+2vcaC2VkE1vwVhwUHRpKIQNc7iH24uc5Bh6WiVjYn2OZNaH7sv D8OGKiEvFwlQ0+Uh4W1j14vdQO+zXFJfsYAGPQ2pnO2KS7gTX2HA9/OerLQtYIpi qcZkzhCSnOxJGBpZgPCoYKLslFZ/mHfsaO7sxGwqm5HwI+kiZRtnyxO7bE0Td/By 6z9B8uBQMrCur+jZvmxIJ47VoQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCY/yw5e RkvaiqSJadRHHN2eCyazMB8GA1UdIwQYMBaAFM8hUm2SbLgyN0yOm9XOHVu81mCE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMjQwNy85MDBERkY1RTkw NTkxMUVCOEYxRUVFMTBDNEY5QUUwMi96eUZTYlpKc3VESTNUSTZiMWM0ZFc3eldZ SVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3p5RlNiWkpzdURJM1RJNmIxYzRkVzd6V1lJUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MjQwNy85MDBERkY1RTkwNTkxMUVCOEYxRUVFMTBDNEY5QUUwMi96eUZTYlpKc3VE STNUSTZiMWM0ZFc3eldZSVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB8aOIJ65Q5pguqh1uVGdTkQHM/t7bBASek1xnvM6nXrpIpKi2EXft6 Xhfpta3ZXreD3o6qLT3+3d843Wj4dm+m7znsTYzDxM9iTkQb/g6m+uYERoxtE/9L c1SQc6P23m7Kd/I6a08DMgpexUwZLxWLQU53RcN+zoGpk8odo7mhKKdhvyED3ouL yzNUERz/iV+v3ACfwjFFh2OGRkV4i9U6g/WIj0SbtMkfNZ9dajqHhbDZDrO3IRlo 3n9RJhmr0APeXX+PbhQ8TQRjbJI9PY10rc9sZPeaPjG3XZeVuOV4dqgnb7kj6LLK 8P29i3UqfYZFj0Ykkk0TlApoHJU630zj -----END CERTIFICATE-----Generated at Wed Nov 5 00:38:21 2025 by rpki-client