$ rpki-client -vvf rpki.apnic.net/member_repository/A91899BB/88C2F15E885811EB96CE6817C4F9AE02/ZfYWHHNtGpxBkf38x6T4JM4RIy0.mft File: ZfYWHHNtGpxBkf38x6T4JM4RIy0.mft (raw, json) Hash identifier: FCLrO5+/G8+4Rk5WGJ8U8Bae6qtOLhuUKupWlx3ZXFg= Subject key identifier: 1D:AF:4A:79:42:1D:DF:07:29:9B:9F:30:2B:15:B4:60:F5:99:71:37 Authority key identifier: 65:F6:16:1C:73:6D:1A:9C:41:91:FD:FC:C7:A4:F8:24:CE:11:23:2D Certificate issuer: /CN=A91899BB/serialNumber=65F6161C736D1A9C4191FDFCC7A4F824CE11232D Certificate serial: 0674 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZfYWHHNtGpxBkf38x6T4JM4RIy0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91899BB/88C2F15E885811EB96CE6817C4F9AE02/ZfYWHHNtGpxBkf38x6T4JM4RIy0.mft Manifest number: 0672 Signing time: Fri 08 Aug 2025 22:50:44 +0000 Manifest this update: Fri 08 Aug 2025 22:50:44 +0000 Manifest next update: Fri 15 Aug 2025 22:50:44 +0000 Files and hashes: 1: ZfYWHHNtGpxBkf38x6T4JM4RIy0.crl (hash: 1bFa+W0a2qYkEnVjsRtPJr2kzLqEs3JN9SLUsk7E4v8=) 2: 54CB555C57A311F09664E82DC4F9AE02.roa (hash: POZE+H9XHhkiQ7gss75Xc9Cmj2rXvVlOeUNyrwPPxT4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91899BB/88C2F15E885811EB96CE6817C4F9AE02/ZfYWHHNtGpxBkf38x6T4JM4RIy0.crl rsync://rpki.apnic.net/member_repository/A91899BB/88C2F15E885811EB96CE6817C4F9AE02/ZfYWHHNtGpxBkf38x6T4JM4RIy0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZfYWHHNtGpxBkf38x6T4JM4RIy0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1652 (0x674) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91899BB, serialNumber=65F6161C736D1A9C4191FDFCC7A4F824CE11232D Validity Not Before: Aug 8 22:50:44 2025 GMT Not After : Aug 15 22:50:44 2025 GMT Subject: CN=68967f44-eed2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:ee:2e:7f:ee:49:e7:e5:99:db:49:33:e2:d0: e5:c7:92:0d:2a:9e:af:0d:a7:e7:9d:5d:df:81:7f: a6:b5:18:fb:58:0d:25:3c:b8:ac:9b:11:02:20:1f: 9d:a5:d4:70:82:ae:d6:97:b4:3d:6f:36:8d:a0:b1: 86:80:3b:6a:e1:99:c3:70:ed:95:7a:8f:f7:cb:1b: b3:d8:c6:94:27:ab:59:03:08:0b:a2:d6:62:3b:2d: f6:8f:71:1e:b2:c6:33:b4:10:c8:cb:72:1a:a3:40: 09:bd:ba:74:11:0d:d2:60:02:e6:e7:42:2a:5d:cf: 03:9b:f0:0c:2c:f7:78:21:b2:a4:12:ba:4c:2e:76: 3c:df:34:a1:bf:8c:65:18:bc:d5:89:c4:05:83:30: 14:24:f2:90:15:a5:56:29:07:34:43:1a:4c:b5:d9: 74:0f:77:24:73:47:b0:64:8f:e8:cd:5d:91:1c:51: db:ed:d5:6b:05:a1:35:7b:fa:9d:e7:d8:c4:ab:75: 3b:a7:78:d0:1a:d1:c7:5c:f3:59:48:34:da:73:01: c9:1a:ff:7e:4e:ff:e0:a7:3e:7f:64:f5:6b:37:4b: 45:6b:d1:15:89:84:4d:cb:e9:2e:a9:e7:c4:37:88: 05:c3:dd:ff:cf:18:c3:e3:ae:ae:6b:72:1f:a7:c6: 36:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:AF:4A:79:42:1D:DF:07:29:9B:9F:30:2B:15:B4:60:F5:99:71:37 X509v3 Authority Key Identifier: keyid:65:F6:16:1C:73:6D:1A:9C:41:91:FD:FC:C7:A4:F8:24:CE:11:23:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91899BB/88C2F15E885811EB96CE6817C4F9AE02/ZfYWHHNtGpxBkf38x6T4JM4RIy0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZfYWHHNtGpxBkf38x6T4JM4RIy0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91899BB/88C2F15E885811EB96CE6817C4F9AE02/ZfYWHHNtGpxBkf38x6T4JM4RIy0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 05:43:55:bf:16:48:8c:3c:0f:98:4e:e6:5a:c8:d5:75:e4:e6: 20:26:aa:fb:f0:15:e8:9b:7e:61:c0:a7:6a:54:24:7f:7a:34: 2e:c8:f9:27:30:cb:38:47:9b:02:8b:b2:49:6d:ab:67:c5:3a: 67:d9:fb:03:a4:6a:43:76:bc:58:63:d1:85:cc:3f:94:4b:31: c2:a0:35:d6:81:8b:f6:3d:5c:4c:ea:84:28:5e:e8:58:cc:6f: fc:43:65:e8:1b:25:cb:3a:af:44:a0:53:48:e7:cd:ad:65:02: 27:f3:fe:b0:aa:a1:4a:f4:16:98:ce:48:b4:32:ab:f7:9e:84: ee:71:30:eb:e3:8d:60:cd:71:9c:df:13:ce:6c:23:66:4c:9a: 09:6c:d2:2a:01:dc:3d:43:cf:f9:fe:cf:58:fb:af:a8:25:28: e1:51:80:ce:8f:90:8f:c7:67:d5:e7:ff:ff:76:c8:0e:7f:aa: 8c:2f:71:72:55:99:bc:28:92:0f:3f:44:4a:8c:fa:9d:fd:9e: 85:ae:10:03:0f:41:3c:d5:a4:23:6f:08:b8:70:fe:e3:74:e0: 87:43:15:65:3c:40:d2:d6:e2:bb:57:48:26:45:3e:f2:34:a2: d6:fd:da:4c:0f:69:50:20:b3:89:44:4d:52:c6:6d:02:0a:fd: 44:8f:b7:e2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBnQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODk5QkIxMTAvBgNVBAUTKDY1RjYxNjFDNzM2RDFBOUM0MTkxRkRGQ0M3QTRGODI0 Q0UxMTIzMkQwHhcNMjUwODA4MjI1MDQ0WhcNMjUwODE1MjI1MDQ0WjAYMRYwFAYD VQQDEw02ODk2N2Y0NC1lZWQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxO4uf+5J5+WZ20kz4tDlx5INKp6vDafnnV3fgX+mtRj7WA0lPLismxECIB+d pdRwgq7Wl7Q9bzaNoLGGgDtq4ZnDcO2Veo/3yxuz2MaUJ6tZAwgLotZiOy32j3Ee ssYztBDIy3Iao0AJvbp0EQ3SYALm50IqXc8Dm/AMLPd4IbKkErpMLnY83zShv4xl GLzVicQFgzAUJPKQFaVWKQc0QxpMtdl0D3ckc0ewZI/ozV2RHFHb7dVrBaE1e/qd 59jEq3U7p3jQGtHHXPNZSDTacwHJGv9+Tv/gpz5/ZPVrN0tFa9EViYRNy+kuqefE N4gFw93/zxjD466ua3Ifp8Y2VQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB2vSnlC Hd8HKZufMCsVtGD1mXE3MB8GA1UdIwQYMBaAFGX2FhxzbRqcQZH9/Mek+CTOESMt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4OTlCQi84OEMyRjE1RTg4 NTgxMUVCOTZDRTY4MTdDNEY5QUUwMi9aZllXSEhOdEdweEJrZjM4eDZUNEpNNFJJ eTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pmWVdISE50R3B4QmtmMzh4NlQ0Sk00Ukl5MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 OTlCQi84OEMyRjE1RTg4NTgxMUVCOTZDRTY4MTdDNEY5QUUwMi9aZllXSEhOdEdw eEJrZjM4eDZUNEpNNFJJeTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAFQ1W/FkiMPA+YTuZayNV15OYgJqr78BXom35hwKdqVCR/ejQuyPkn MMs4R5sCi7JJbatnxTpn2fsDpGpDdrxYY9GFzD+USzHCoDXWgYv2PVxM6oQoXuhY zG/8Q2XoGyXLOq9EoFNI582tZQIn8/6wqqFK9BaYzki0Mqv3noTucTDr441gzXGc 3xPObCNmTJoJbNIqAdw9Q8/5/s9Y+6+oJSjhUYDOj5CPx2fV5///dsgOf6qML3Fy VZm8KJIPP0RKjPqd/Z6FrhADD0E81aQjbwi4cP7jdOCHQxVlPEDS1uK7V0gmRT7y NKLW/dpMD2lQILOJRE1Sxm0CCv1Ej7fi -----END CERTIFICATE-----Generated at Sun Aug 10 18:15:32 2025 by rpki-client