$ rpki-client -vvf rpki.apnic.net/member_repository/A912C8FA/4003F93054A311EEB75F4686C4F9AE02/AO-zr_90_WIfS42RFpt6HEOzlBc.mft File: AO-zr_90_WIfS42RFpt6HEOzlBc.mft (raw, json) Hash identifier: qZsLlGEBSkRCsUcrIceJHThzSZz06QX92QNDyYFff8I= Subject key identifier: E6:1D:FF:7A:9E:9A:37:82:EE:C1:4C:A3:C4:3F:DF:AA:9A:BD:FD:1C Authority key identifier: 00:EF:B3:AF:FF:74:FD:62:1F:4B:8D:91:16:9B:7A:1C:43:B3:94:17 Certificate issuer: /CN=A912C8FA/serialNumber=00EFB3AFFF74FD621F4B8D91169B7A1C43B39417 Certificate serial: 016A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AO-zr_90_WIfS42RFpt6HEOzlBc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912C8FA/4003F93054A311EEB75F4686C4F9AE02/AO-zr_90_WIfS42RFpt6HEOzlBc.mft Manifest number: 0162 Signing time: Mon 21 Jul 2025 04:08:21 +0000 Manifest this update: Mon 21 Jul 2025 04:08:21 +0000 Manifest next update: Mon 28 Jul 2025 04:08:21 +0000 Files and hashes: 1: AO-zr_90_WIfS42RFpt6HEOzlBc.crl (hash: pbmZZl6QHciemH/RltLYF7n8EBrkJP9lHldMWmeIVhM=) 2: A80498FABAAB11EEBA024655C4F9AE02.roa (hash: g6wCJDrtHyuCox1Dak/0D/0mdLei/24CwRHwHNh/Oi8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912C8FA/4003F93054A311EEB75F4686C4F9AE02/AO-zr_90_WIfS42RFpt6HEOzlBc.crl rsync://rpki.apnic.net/member_repository/A912C8FA/4003F93054A311EEB75F4686C4F9AE02/AO-zr_90_WIfS42RFpt6HEOzlBc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AO-zr_90_WIfS42RFpt6HEOzlBc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 04:08:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 362 (0x16a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912C8FA, serialNumber=00EFB3AFFF74FD621F4B8D91169B7A1C43B39417 Validity Not Before: Jul 21 04:08:21 2025 GMT Not After : Jul 28 04:08:21 2025 GMT Subject: CN=687dbd35-a5f3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:28:42:b9:81:9d:29:a6:24:25:39:6b:ea:60: 1e:49:6b:1e:38:6e:77:09:7b:43:d3:3c:d5:e2:c4: 8f:e7:de:5d:f0:56:8b:c0:43:e5:92:13:ee:f6:c5: 92:81:10:21:6e:c6:ba:2b:b4:bf:82:59:69:42:56: fc:bf:5f:9c:41:18:6a:20:39:99:5c:89:d6:f7:79: c5:03:df:33:9a:1d:22:f0:58:ce:cc:8c:44:bb:be: 6a:9c:4b:5e:29:85:03:b6:ae:34:93:85:ce:45:13: e0:fe:9d:5e:4a:32:d6:95:f6:05:81:6f:53:3d:a5: fc:2f:09:25:8e:3f:c5:65:95:88:55:b7:7b:ad:48: 66:67:30:6d:8f:64:35:da:aa:a7:c5:e4:a1:6a:c2: 73:4e:10:e4:a6:dd:5e:f1:07:27:be:a3:c3:40:64: 55:1e:38:57:79:31:77:5b:0f:1e:8f:52:2c:23:7d: c9:a2:e4:76:39:5d:c7:29:cd:ca:29:2f:f5:5d:f9: 88:25:37:14:e5:24:07:3d:c4:59:fd:d8:62:4d:ae: 3a:71:96:11:71:4c:3f:5e:7c:e7:48:42:3f:a2:e5: b9:a9:e7:fc:3a:44:e6:13:39:02:36:42:91:77:a5: 5f:00:00:81:ee:02:b7:59:76:c8:21:1b:39:39:5c: 9e:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:1D:FF:7A:9E:9A:37:82:EE:C1:4C:A3:C4:3F:DF:AA:9A:BD:FD:1C X509v3 Authority Key Identifier: keyid:00:EF:B3:AF:FF:74:FD:62:1F:4B:8D:91:16:9B:7A:1C:43:B3:94:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912C8FA/4003F93054A311EEB75F4686C4F9AE02/AO-zr_90_WIfS42RFpt6HEOzlBc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AO-zr_90_WIfS42RFpt6HEOzlBc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912C8FA/4003F93054A311EEB75F4686C4F9AE02/AO-zr_90_WIfS42RFpt6HEOzlBc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c0:a3:52:b4:e7:32:46:6e:12:67:52:e2:9a:6c:0e:f0:c5:a6: 3a:96:bc:35:58:99:29:61:c6:e3:3d:5a:c4:86:d1:8a:dc:f2: 41:4f:bf:d8:4c:bd:a0:e4:79:85:a5:9c:f4:e7:a5:9c:e8:5e: 0a:ef:63:78:5c:69:11:60:9d:30:86:2d:43:50:d8:78:19:b7: e3:11:ff:6f:93:c3:15:9a:b1:f6:21:38:75:db:1b:ec:de:02: 80:6e:42:3c:bf:24:7a:bb:55:b9:6c:34:72:49:0a:29:94:dc: 6c:41:53:b1:6f:19:03:45:39:d4:1d:74:1d:c4:48:7c:d0:88: 62:9c:ea:48:3b:25:c9:4b:8c:02:2f:c8:8c:d1:ef:39:3a:c6: 02:d2:8b:4e:1f:e2:88:3e:e3:42:f5:60:81:d2:2c:b9:19:1a: 0f:8a:a3:7e:13:14:88:08:2d:04:27:95:73:26:7a:ee:68:b3: 29:8c:fa:85:28:71:52:19:7e:37:fb:78:49:4b:bb:4c:20:f9: 82:13:dc:15:42:3b:e3:aa:10:10:87:3a:b1:7f:2d:c1:da:1e: 03:7f:4a:55:cb:e1:1b:a1:69:1b:b6:2f:14:54:dd:3c:bc:91: 8e:bd:2a:ec:90:71:4c:e8:22:2d:fd:f9:b6:5a:45:93:dc:05: ac:1c:86:c0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAWowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkM4RkExMTAvBgNVBAUTKDAwRUZCM0FGRkY3NEZENjIxRjRCOEQ5MTE2OUI3QTFD NDNCMzk0MTcwHhcNMjUwNzIxMDQwODIxWhcNMjUwNzI4MDQwODIxWjAYMRYwFAYD VQQDEw02ODdkYmQzNS1hNWYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuihCuYGdKaYkJTlr6mAeSWseOG53CXtD0zzV4sSP595d8FaLwEPlkhPu9sWS gRAhbsa6K7S/gllpQlb8v1+cQRhqIDmZXInW93nFA98zmh0i8FjOzIxEu75qnEte KYUDtq40k4XORRPg/p1eSjLWlfYFgW9TPaX8Lwkljj/FZZWIVbd7rUhmZzBtj2Q1 2qqnxeShasJzThDkpt1e8QcnvqPDQGRVHjhXeTF3Ww8ej1IsI33JouR2OV3HKc3K KS/1XfmIJTcU5SQHPcRZ/dhiTa46cZYRcUw/XnznSEI/ouW5qef8OkTmEzkCNkKR d6VfAACB7gK3WXbIIRs5OVyeDwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOYd/3qe mjeC7sFMo8Q/36qavf0cMB8GA1UdIwQYMBaAFADvs6//dP1iH0uNkRabehxDs5QX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQzhGQS80MDAzRjkzMDU0 QTMxMUVFQjc1RjQ2ODZDNEY5QUUwMi9BTy16cl85MF9XSWZTNDJSRnB0NkhFT3ps QmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FPLXpyXzkwX1dJZlM0MlJGcHQ2SEVPemxCYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QzhGQS80MDAzRjkzMDU0QTMxMUVFQjc1RjQ2ODZDNEY5QUUwMi9BTy16cl85MF9X SWZTNDJSRnB0NkhFT3psQmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDAo1K05zJGbhJnUuKabA7wxaY6lrw1WJkpYcbjPVrEhtGK3PJBT7/Y TL2g5HmFpZz056Wc6F4K72N4XGkRYJ0whi1DUNh4GbfjEf9vk8MVmrH2ITh12xvs 3gKAbkI8vyR6u1W5bDRySQoplNxsQVOxbxkDRTnUHXQdxEh80IhinOpIOyXJS4wC L8iM0e85OsYC0otOH+KIPuNC9WCB0iy5GRoPiqN+ExSICC0EJ5VzJnruaLMpjPqF KHFSGX43+3hJS7tMIPmCE9wVQjvjqhAQhzqxfy3B2h4Df0pVy+EboWkbti8UVN08 vJGOvSrskHFM6CIt/fm2WkWT3AWsHIbA -----END CERTIFICATE-----Generated at Wed Jul 23 02:34:18 2025 by rpki-client