$ rpki-client -vvf rpki.apnic.net/member_repository/A912519D/B8280664C75A11EB81E99E19C4F9AE02/ZrnYT0M2qJ2E0eAuggp5aG4eUsQ.mft File: ZrnYT0M2qJ2E0eAuggp5aG4eUsQ.mft (raw, json) Hash identifier: vS0HbqtGyjD0wdrZpvKoqMlPPqIjWj5vwQeWGStAT8Y= Subject key identifier: EE:FC:B1:FB:7E:44:F0:16:88:39:AA:08:66:DC:5B:6B:61:6E:68:6F Authority key identifier: 66:B9:D8:4F:43:36:A8:9D:84:D1:E0:2E:82:0A:79:68:6E:1E:52:C4 Certificate issuer: /CN=A912519D/serialNumber=66B9D84F4336A89D84D1E02E820A79686E1E52C4 Certificate serial: 05F2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZrnYT0M2qJ2E0eAuggp5aG4eUsQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912519D/B8280664C75A11EB81E99E19C4F9AE02/ZrnYT0M2qJ2E0eAuggp5aG4eUsQ.mft Manifest number: 05ED Signing time: Thu 18 Sep 2025 23:15:54 +0000 Manifest this update: Thu 18 Sep 2025 23:15:54 +0000 Manifest next update: Thu 25 Sep 2025 23:15:54 +0000 Files and hashes: 1: ZrnYT0M2qJ2E0eAuggp5aG4eUsQ.crl (hash: B+wZBynRfYTpWvIOf2kODNXCNWmIPJrIKCgWdMUuC2U=) 2: 10581DEAC75D11EBB00EBD1AC4F9AE02.roa (hash: JmgPCoqfxLnmCXZ9Kqg1cLPcucyGnFbjlpBzEMSmBKg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912519D/B8280664C75A11EB81E99E19C4F9AE02/ZrnYT0M2qJ2E0eAuggp5aG4eUsQ.crl rsync://rpki.apnic.net/member_repository/A912519D/B8280664C75A11EB81E99E19C4F9AE02/ZrnYT0M2qJ2E0eAuggp5aG4eUsQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZrnYT0M2qJ2E0eAuggp5aG4eUsQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 23:15:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1522 (0x5f2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912519D, serialNumber=66B9D84F4336A89D84D1E02E820A79686E1E52C4 Validity Not Before: Sep 18 23:15:54 2025 GMT Not After : Sep 25 23:15:54 2025 GMT Subject: CN=68cc92aa-cf06 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:0a:20:6c:5e:6b:51:f2:3d:9b:70:e1:17:6d: da:f2:cd:71:5e:e3:0c:76:27:8b:36:32:fc:6f:97: 35:c2:dc:bf:a9:d7:61:8e:53:c7:f7:8e:e6:79:37: e0:9a:e9:3d:5f:40:52:e9:fd:86:7e:a7:89:41:14: 7b:e7:03:e1:43:74:40:56:7c:f8:0f:27:46:c8:aa: 29:93:7d:9e:a6:ca:f5:a3:70:eb:0a:c2:8f:c1:a5: ec:98:8b:f5:0c:e9:3e:f7:c3:4b:df:9c:5c:ed:8a: 40:a9:86:35:d9:5b:99:df:de:2c:20:3f:bd:cb:c0: d8:4d:c8:aa:9f:68:95:ec:07:da:94:a8:c1:fa:53: 6a:c1:d8:ce:8c:98:f0:b8:7b:45:00:e7:7a:41:2b: 29:28:3c:65:b1:75:9d:c6:4f:55:df:5d:2d:b7:82: 6b:f2:31:79:c4:71:6c:b2:04:7c:96:8d:46:96:80: ef:13:9f:6e:c9:d7:86:be:67:f5:50:5a:21:c6:97: 06:6a:28:aa:fc:03:2c:c2:b2:72:90:3a:36:5b:49: ab:28:8e:21:94:a6:8c:6c:c5:1e:0e:5f:93:4d:ea: 5f:b7:86:dd:ec:58:2b:f8:5f:64:25:af:59:54:57: 09:18:e2:e0:4c:7b:32:a2:c5:18:95:6f:7b:e6:fe: 15:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:FC:B1:FB:7E:44:F0:16:88:39:AA:08:66:DC:5B:6B:61:6E:68:6F X509v3 Authority Key Identifier: keyid:66:B9:D8:4F:43:36:A8:9D:84:D1:E0:2E:82:0A:79:68:6E:1E:52:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912519D/B8280664C75A11EB81E99E19C4F9AE02/ZrnYT0M2qJ2E0eAuggp5aG4eUsQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZrnYT0M2qJ2E0eAuggp5aG4eUsQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912519D/B8280664C75A11EB81E99E19C4F9AE02/ZrnYT0M2qJ2E0eAuggp5aG4eUsQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 53:da:b2:df:74:c5:82:23:ff:3e:5f:09:c9:f2:8a:77:ad:b3: a1:10:f5:14:2d:0f:d4:bc:23:1f:40:60:fa:c1:40:4c:21:3d: 88:f0:ac:6a:5a:cc:2a:6d:a9:b1:27:1d:60:d0:a6:d2:a1:f5: ac:a0:9b:d5:e6:fa:2e:f6:26:9a:45:ac:4a:b7:86:22:31:ac: 21:b9:3a:61:1d:2d:fa:fe:87:fd:a9:69:3d:ab:eb:35:e2:43: c8:c7:16:18:be:6c:87:6f:86:6c:d3:af:79:74:f1:42:4f:13: 44:d6:e8:66:78:d1:bf:76:2f:43:76:8e:e1:ba:ca:34:72:dc: aa:09:e1:c0:1f:01:b6:c9:81:31:cc:b4:df:5c:eb:df:66:ce: 74:c9:ab:c1:a5:f2:cf:c2:82:34:07:53:f5:da:27:18:c2:dd: 0f:23:6c:9c:b0:bd:4e:a7:db:88:2a:1b:2f:09:96:87:91:c0: 52:7b:d1:58:d6:86:29:cb:4b:ad:59:48:ca:be:ea:bd:4d:0c: 16:30:3a:5c:2b:ec:04:f7:29:70:01:b9:ed:21:c9:89:4d:bf: 55:03:9f:3e:57:f2:d1:c1:d4:ad:00:9d:12:68:21:2c:c9:c5: 07:8f:20:91:cb:0e:73:67:b2:09:2d:f9:48:75:e3:78:bb:6f: e8:3e:97:e5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBfIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjUxOUQxMTAvBgNVBAUTKDY2QjlEODRGNDMzNkE4OUQ4NEQxRTAyRTgyMEE3OTY4 NkUxRTUyQzQwHhcNMjUwOTE4MjMxNTU0WhcNMjUwOTI1MjMxNTU0WjAYMRYwFAYD VQQDEw02OGNjOTJhYS1jZjA2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0QogbF5rUfI9m3DhF23a8s1xXuMMdieLNjL8b5c1wty/qddhjlPH947meTfg muk9X0BS6f2GfqeJQRR75wPhQ3RAVnz4DydGyKopk32epsr1o3DrCsKPwaXsmIv1 DOk+98NL35xc7YpAqYY12VuZ394sID+9y8DYTciqn2iV7AfalKjB+lNqwdjOjJjw uHtFAOd6QSspKDxlsXWdxk9V310tt4Jr8jF5xHFssgR8lo1GloDvE59uydeGvmf1 UFohxpcGaiiq/AMswrJykDo2W0mrKI4hlKaMbMUeDl+TTepft4bd7Fgr+F9kJa9Z VFcJGOLgTHsyosUYlW975v4VYQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO78sft+ RPAWiDmqCGbcW2thbmhvMB8GA1UdIwQYMBaAFGa52E9DNqidhNHgLoIKeWhuHlLE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNTE5RC9CODI4MDY2NEM3 NUExMUVCODFFOTlFMTlDNEY5QUUwMi9acm5ZVDBNMnFKMkUwZUF1Z2dwNWFHNGVV c1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pybllUME0ycUoyRTBlQXVnZ3A1YUc0ZVVzUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NTE5RC9CODI4MDY2NEM3NUExMUVCODFFOTlFMTlDNEY5QUUwMi9acm5ZVDBNMnFK MkUwZUF1Z2dwNWFHNGVVc1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBT2rLfdMWCI/8+XwnJ8op3rbOhEPUULQ/UvCMfQGD6wUBMIT2I8Kxq WswqbamxJx1g0KbSofWsoJvV5vou9iaaRaxKt4YiMawhuTphHS36/of9qWk9q+s1 4kPIxxYYvmyHb4Zs0695dPFCTxNE1uhmeNG/di9Ddo7huso0ctyqCeHAHwG2yYEx zLTfXOvfZs50yavBpfLPwoI0B1P12icYwt0PI2ycsL1Op9uIKhsvCZaHkcBSe9FY 1oYpy0utWUjKvuq9TQwWMDpcK+wE9ylwAbntIcmJTb9VA58+V/LRwdStAJ0SaCEs ycUHjyCRyw5zZ7IJLflIdeN4u2/oPpfl -----END CERTIFICATE-----Generated at Fri Sep 19 15:32:38 2025 by rpki-client