$ rpki-client -vvf rpki.apnic.net/member_repository/A91899BB/88C2F15E885811EB96CE6817C4F9AE02/ZfYWHHNtGpxBkf38x6T4JM4RIy0.mft File: ZfYWHHNtGpxBkf38x6T4JM4RIy0.mft (raw, json) Hash identifier: iHBQ41wC0YmK/0L/76lgB8jleCBsYDnuIAOeC++hQbY= Subject key identifier: AF:42:B0:5C:BD:00:63:48:F4:59:B2:90:75:05:4F:18:5B:9C:19:36 Authority key identifier: 65:F6:16:1C:73:6D:1A:9C:41:91:FD:FC:C7:A4:F8:24:CE:11:23:2D Certificate issuer: /CN=A91899BB/serialNumber=65F6161C736D1A9C4191FDFCC7A4F824CE11232D Certificate serial: 067A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZfYWHHNtGpxBkf38x6T4JM4RIy0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91899BB/88C2F15E885811EB96CE6817C4F9AE02/ZfYWHHNtGpxBkf38x6T4JM4RIy0.mft Manifest number: 0678 Signing time: Wed 20 Aug 2025 22:29:56 +0000 Manifest this update: Wed 20 Aug 2025 22:29:55 +0000 Manifest next update: Wed 27 Aug 2025 22:29:55 +0000 Files and hashes: 1: ZfYWHHNtGpxBkf38x6T4JM4RIy0.crl (hash: z2Yqbto4I0NxhaMQIauJ6iK+FX01xBUA5XJ4XkuxSi4=) 2: 54CB555C57A311F09664E82DC4F9AE02.roa (hash: POZE+H9XHhkiQ7gss75Xc9Cmj2rXvVlOeUNyrwPPxT4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91899BB/88C2F15E885811EB96CE6817C4F9AE02/ZfYWHHNtGpxBkf38x6T4JM4RIy0.crl rsync://rpki.apnic.net/member_repository/A91899BB/88C2F15E885811EB96CE6817C4F9AE02/ZfYWHHNtGpxBkf38x6T4JM4RIy0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZfYWHHNtGpxBkf38x6T4JM4RIy0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Aug 2025 22:29:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1658 (0x67a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91899BB, serialNumber=65F6161C736D1A9C4191FDFCC7A4F824CE11232D Validity Not Before: Aug 20 22:29:55 2025 GMT Not After : Aug 27 22:29:55 2025 GMT Subject: CN=68a64c64-1aa5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:f3:ea:57:0c:46:68:14:3d:0c:d0:7e:aa:1a: 48:3d:87:e7:16:10:7a:aa:91:4b:1b:d3:ce:8b:29: 1d:70:6d:d0:c7:e4:13:a3:c7:e3:05:a8:ec:54:65: 12:29:58:9b:f7:0d:54:18:d9:09:1f:13:5d:57:4f: fd:47:80:fe:1f:7f:20:1d:02:90:28:3f:5a:22:a2: 12:32:bf:3c:97:0f:f9:e2:22:ba:1f:b3:3c:4a:37: b7:ad:3d:ff:30:03:66:a4:aa:06:3e:86:f6:e4:7e: 46:b2:d1:2e:7c:70:3b:d8:d9:4c:af:fb:02:20:50: a5:f5:81:98:9f:25:10:30:d7:b1:30:75:d7:dd:1f: cc:f6:f5:ef:35:09:71:71:2b:16:34:4b:19:4a:38: 82:8a:71:2d:6b:aa:6e:d5:a8:00:13:ae:24:96:f9: 52:5c:e6:b9:0e:9c:7e:bd:9a:b6:82:70:d5:61:b9: 32:be:39:cc:20:a8:04:b1:00:3e:57:b4:8c:9a:d7: d0:a6:29:fc:89:f9:97:8e:c0:fb:e5:98:fd:54:ee: 5c:9a:e4:03:19:6c:ab:72:1c:24:5a:07:d5:a8:09: 41:80:b2:76:d7:fb:48:52:ba:0c:e1:e2:85:77:9a: 24:9a:b5:e7:ce:aa:6b:0b:1e:a6:9a:67:ed:87:dc: a2:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:42:B0:5C:BD:00:63:48:F4:59:B2:90:75:05:4F:18:5B:9C:19:36 X509v3 Authority Key Identifier: keyid:65:F6:16:1C:73:6D:1A:9C:41:91:FD:FC:C7:A4:F8:24:CE:11:23:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91899BB/88C2F15E885811EB96CE6817C4F9AE02/ZfYWHHNtGpxBkf38x6T4JM4RIy0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZfYWHHNtGpxBkf38x6T4JM4RIy0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91899BB/88C2F15E885811EB96CE6817C4F9AE02/ZfYWHHNtGpxBkf38x6T4JM4RIy0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 78:ec:98:88:1f:b2:2d:6d:36:74:ff:01:21:55:59:af:11:e8: 36:1d:8f:18:b6:6c:05:9d:be:6c:ab:0d:96:55:4a:a4:22:85: 86:53:cc:e3:2b:0d:75:ad:00:47:40:45:db:c6:af:aa:cb:af: 95:09:52:91:24:93:92:3e:17:f6:a7:ad:d5:eb:17:a1:15:ce: 13:2f:31:12:2b:c5:ce:dc:48:63:a9:eb:66:63:76:15:d2:f9: bd:83:6d:b8:50:b5:4e:75:1f:c1:53:ea:f4:2e:ec:9c:b9:d9: 61:92:04:a4:c2:bc:74:2a:8b:6b:7c:df:2d:d5:7d:24:33:b0: e2:ae:a4:cc:0b:54:7a:00:0c:a7:38:91:07:2e:02:15:9f:11: 39:55:21:b9:fb:f4:3c:27:9d:b3:95:50:b0:fb:7f:71:91:ed: 08:16:03:6b:1e:ce:f0:30:68:5e:3b:55:6a:e9:5c:64:02:f0: b0:00:6f:29:69:9f:39:2a:b9:ac:a3:bb:ab:40:c2:1d:9c:4a: 98:a5:f8:99:29:4f:f0:12:34:03:9a:11:51:46:96:6c:6e:8e: 7d:f0:2f:b0:1f:75:38:b2:1f:71:1a:b5:38:0b:f5:02:48:a0: c3:a6:d1:43:80:85:35:8f:96:63:d9:35:ac:14:4e:b3:ad:d1: a5:40:8a:cb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBnowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODk5QkIxMTAvBgNVBAUTKDY1RjYxNjFDNzM2RDFBOUM0MTkxRkRGQ0M3QTRGODI0 Q0UxMTIzMkQwHhcNMjUwODIwMjIyOTU1WhcNMjUwODI3MjIyOTU1WjAYMRYwFAYD VQQDEw02OGE2NGM2NC0xYWE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzfPqVwxGaBQ9DNB+qhpIPYfnFhB6qpFLG9POiykdcG3Qx+QTo8fjBajsVGUS KVib9w1UGNkJHxNdV0/9R4D+H38gHQKQKD9aIqISMr88lw/54iK6H7M8Sje3rT3/ MANmpKoGPob25H5GstEufHA72NlMr/sCIFCl9YGYnyUQMNexMHXX3R/M9vXvNQlx cSsWNEsZSjiCinEta6pu1agAE64klvlSXOa5Dpx+vZq2gnDVYbkyvjnMIKgEsQA+ V7SMmtfQpin8ifmXjsD75Zj9VO5cmuQDGWyrchwkWgfVqAlBgLJ21/tIUroM4eKF d5okmrXnzqprCx6mmmfth9yiZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK9CsFy9 AGNI9FmykHUFTxhbnBk2MB8GA1UdIwQYMBaAFGX2FhxzbRqcQZH9/Mek+CTOESMt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4OTlCQi84OEMyRjE1RTg4 NTgxMUVCOTZDRTY4MTdDNEY5QUUwMi9aZllXSEhOdEdweEJrZjM4eDZUNEpNNFJJ eTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pmWVdISE50R3B4QmtmMzh4NlQ0Sk00Ukl5MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 OTlCQi84OEMyRjE1RTg4NTgxMUVCOTZDRTY4MTdDNEY5QUUwMi9aZllXSEhOdEdw eEJrZjM4eDZUNEpNNFJJeTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB47JiIH7ItbTZ0/wEhVVmvEeg2HY8YtmwFnb5sqw2WVUqkIoWGU8zj Kw11rQBHQEXbxq+qy6+VCVKRJJOSPhf2p63V6xehFc4TLzESK8XO3EhjqetmY3YV 0vm9g224ULVOdR/BU+r0LuycudlhkgSkwrx0KotrfN8t1X0kM7DirqTMC1R6AAyn OJEHLgIVnxE5VSG5+/Q8J52zlVCw+39xke0IFgNrHs7wMGheO1Vq6VxkAvCwAG8p aZ85Krmso7urQMIdnEqYpfiZKU/wEjQDmhFRRpZsbo598C+wH3U4sh9xGrU4C/UC SKDDptFDgIU1j5Zj2TWsFE6zrdGlQIrL -----END CERTIFICATE-----Generated at Fri Aug 22 16:19:30 2025 by rpki-client