$ rpki-client -vvf rpki.apnic.net/member_repository/A912C8FA/4003F93054A311EEB75F4686C4F9AE02/AO-zr_90_WIfS42RFpt6HEOzlBc.mft File: AO-zr_90_WIfS42RFpt6HEOzlBc.mft (raw, json) Hash identifier: xo8BAEK7RcdggNQXyrty9aTMLkj770WUX8jTYbd3Zpk= Subject key identifier: F4:B0:5F:D6:05:73:37:6C:6C:D2:8D:D1:65:44:9D:04:AF:97:05:E1 Authority key identifier: 00:EF:B3:AF:FF:74:FD:62:1F:4B:8D:91:16:9B:7A:1C:43:B3:94:17 Certificate issuer: /CN=A912C8FA/serialNumber=00EFB3AFFF74FD621F4B8D91169B7A1C43B39417 Certificate serial: 016C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AO-zr_90_WIfS42RFpt6HEOzlBc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912C8FA/4003F93054A311EEB75F4686C4F9AE02/AO-zr_90_WIfS42RFpt6HEOzlBc.mft Manifest number: 0164 Signing time: Fri 25 Jul 2025 04:15:41 +0000 Manifest this update: Fri 25 Jul 2025 04:15:40 +0000 Manifest next update: Fri 01 Aug 2025 04:15:40 +0000 Files and hashes: 1: AO-zr_90_WIfS42RFpt6HEOzlBc.crl (hash: dK+cBqMKH41m3E7vpxdG/hxcjLrGHNw8Mt8TJqe6prw=) 2: A80498FABAAB11EEBA024655C4F9AE02.roa (hash: g6wCJDrtHyuCox1Dak/0D/0mdLei/24CwRHwHNh/Oi8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912C8FA/4003F93054A311EEB75F4686C4F9AE02/AO-zr_90_WIfS42RFpt6HEOzlBc.crl rsync://rpki.apnic.net/member_repository/A912C8FA/4003F93054A311EEB75F4686C4F9AE02/AO-zr_90_WIfS42RFpt6HEOzlBc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AO-zr_90_WIfS42RFpt6HEOzlBc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 01 Aug 2025 04:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 364 (0x16c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912C8FA, serialNumber=00EFB3AFFF74FD621F4B8D91169B7A1C43B39417 Validity Not Before: Jul 25 04:15:40 2025 GMT Not After : Aug 1 04:15:40 2025 GMT Subject: CN=688304ed-9c91 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:40:44:4c:ee:be:44:69:8b:b4:93:78:cf:ae: 05:ee:d5:47:f4:87:79:60:d4:99:b2:4b:fd:7b:b5: 06:26:2d:05:d6:3b:50:f9:16:af:1e:d6:3c:47:be: 03:3a:6b:72:37:6a:27:c1:1b:ab:7a:cf:19:07:89: 79:55:fd:c5:d9:bc:e4:aa:58:fd:fd:b6:c7:e1:0a: 15:c5:41:7d:df:67:42:4c:23:93:d1:89:cf:7f:2e: 72:be:5a:42:33:35:d6:dc:26:1b:81:aa:ac:f5:2b: f8:59:f6:98:60:9d:85:dd:b5:18:e4:30:30:e0:b0: af:ee:10:9b:2d:11:02:64:a8:c5:72:10:04:e9:8a: a4:e5:b4:e6:7d:0e:31:56:43:ff:8a:b5:70:7b:0b: 18:70:10:eb:e1:c9:f7:2d:b3:43:dd:af:e3:83:73: bf:07:6b:be:02:0f:bd:91:5f:9b:eb:dc:5a:a8:a2: 7e:26:71:0b:4f:4f:a6:fe:0f:7b:52:6f:b8:55:29: a6:2b:d1:b1:1c:7a:c0:3a:e3:5a:b5:0b:08:8a:25: de:f3:f0:1a:d8:70:a6:eb:e8:c2:e5:fc:84:69:5d: 87:7a:56:87:01:2f:8b:83:e6:ef:dd:0d:06:ba:45: 8c:96:85:11:42:f8:dd:a6:e4:e3:88:6c:d5:66:37: a3:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:B0:5F:D6:05:73:37:6C:6C:D2:8D:D1:65:44:9D:04:AF:97:05:E1 X509v3 Authority Key Identifier: keyid:00:EF:B3:AF:FF:74:FD:62:1F:4B:8D:91:16:9B:7A:1C:43:B3:94:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912C8FA/4003F93054A311EEB75F4686C4F9AE02/AO-zr_90_WIfS42RFpt6HEOzlBc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AO-zr_90_WIfS42RFpt6HEOzlBc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912C8FA/4003F93054A311EEB75F4686C4F9AE02/AO-zr_90_WIfS42RFpt6HEOzlBc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:01:b0:83:da:38:e7:26:3f:36:6d:a3:81:85:0f:57:a5:f9: e9:c3:be:c4:c7:96:dd:10:ce:e7:ac:6b:3f:6a:57:76:cc:07: df:e3:de:5c:13:73:2c:20:29:74:fa:39:4e:f1:30:62:e0:c2: 35:3f:5c:d9:c8:ef:3b:95:95:09:19:0b:34:d2:3f:42:cb:6b: 6a:83:4e:3d:a9:f6:bb:c9:69:a3:fe:8c:45:22:08:84:05:fc: e6:04:42:d6:f0:d4:7f:4b:8a:37:96:e1:f4:40:55:cb:f3:61: 35:ef:2b:22:53:d1:e1:ca:db:4a:a0:84:b3:9a:fd:29:34:be: b1:a5:66:c8:32:09:6c:14:cf:e8:d2:1e:c1:69:01:7b:d1:60: 09:64:a8:75:8e:34:b2:ee:b1:c7:ce:73:86:79:24:3d:8f:56: 25:08:b4:16:2e:b6:be:75:fb:08:94:45:cf:72:04:cf:6f:78: 7c:43:28:f5:e5:04:c0:fe:af:41:27:9a:82:ee:fd:a9:19:b3: 03:63:3f:fb:c4:05:0b:18:bf:01:22:09:a3:60:bb:9e:bf:2b: ec:fa:cc:a3:ed:54:85:a6:07:fb:60:9b:29:b8:8c:b3:ee:20: 0a:41:a8:34:0d:08:08:63:ec:4d:d4:68:c4:7d:b8:73:10:c9: 24:21:9a:41 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAWwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkM4RkExMTAvBgNVBAUTKDAwRUZCM0FGRkY3NEZENjIxRjRCOEQ5MTE2OUI3QTFD NDNCMzk0MTcwHhcNMjUwNzI1MDQxNTQwWhcNMjUwODAxMDQxNTQwWjAYMRYwFAYD VQQDEw02ODgzMDRlZC05YzkxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0kBETO6+RGmLtJN4z64F7tVH9Id5YNSZskv9e7UGJi0F1jtQ+RavHtY8R74D OmtyN2onwRures8ZB4l5Vf3F2bzkqlj9/bbH4QoVxUF932dCTCOT0YnPfy5yvlpC MzXW3CYbgaqs9Sv4WfaYYJ2F3bUY5DAw4LCv7hCbLRECZKjFchAE6Yqk5bTmfQ4x VkP/irVwewsYcBDr4cn3LbND3a/jg3O/B2u+Ag+9kV+b69xaqKJ+JnELT0+m/g97 Um+4VSmmK9GxHHrAOuNatQsIiiXe8/Aa2HCm6+jC5fyEaV2HelaHAS+Lg+bv3Q0G ukWMloURQvjdpuTjiGzVZjejwQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPSwX9YF czdsbNKN0WVEnQSvlwXhMB8GA1UdIwQYMBaAFADvs6//dP1iH0uNkRabehxDs5QX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQzhGQS80MDAzRjkzMDU0 QTMxMUVFQjc1RjQ2ODZDNEY5QUUwMi9BTy16cl85MF9XSWZTNDJSRnB0NkhFT3ps QmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FPLXpyXzkwX1dJZlM0MlJGcHQ2SEVPemxCYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QzhGQS80MDAzRjkzMDU0QTMxMUVFQjc1RjQ2ODZDNEY5QUUwMi9BTy16cl85MF9X SWZTNDJSRnB0NkhFT3psQmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCaAbCD2jjnJj82baOBhQ9Xpfnpw77Ex5bdEM7nrGs/ald2zAff495c E3MsICl0+jlO8TBi4MI1P1zZyO87lZUJGQs00j9Cy2tqg049qfa7yWmj/oxFIgiE BfzmBELW8NR/S4o3luH0QFXL82E17ysiU9HhyttKoISzmv0pNL6xpWbIMglsFM/o 0h7BaQF70WAJZKh1jjSy7rHHznOGeSQ9j1YlCLQWLra+dfsIlEXPcgTPb3h8Qyj1 5QTA/q9BJ5qC7v2pGbMDYz/7xAULGL8BIgmjYLuevyvs+syj7VSFpgf7YJspuIyz 7iAKQag0DQgIY+xN1GjEfbhzEMkkIZpB -----END CERTIFICATE-----Generated at Sat Jul 26 02:04:13 2025 by rpki-client