$ rpki-client -vvf rpki.apnic.net/member_repository/A9154D26/C00D9726413B11ECB06AE030C4F9AE02/zaA_ZfTTOjOZaZc_apvQfa-eNyQ.mft File: zaA_ZfTTOjOZaZc_apvQfa-eNyQ.mft (raw, json) Hash identifier: dVvP+uDvp0odCzlUrW7A4wdh+43hPDpIQd7254gRIzc= Subject key identifier: 1B:A5:E4:95:21:08:C9:C0:F7:80:BA:5B:52:83:FB:AF:39:AA:E8:E2 Authority key identifier: CD:A0:3F:65:F4:D3:3A:33:99:69:97:3F:6A:9B:D0:7D:AF:9E:37:24 Certificate issuer: /CN=A9154D26/serialNumber=CDA03F65F4D33A339969973F6A9BD07DAF9E3724 Certificate serial: 04AF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zaA_ZfTTOjOZaZc_apvQfa-eNyQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9154D26/C00D9726413B11ECB06AE030C4F9AE02/zaA_ZfTTOjOZaZc_apvQfa-eNyQ.mft Manifest number: 04A2 Signing time: Mon 21 Jul 2025 00:11:40 +0000 Manifest this update: Mon 21 Jul 2025 00:11:39 +0000 Manifest next update: Mon 28 Jul 2025 00:11:39 +0000 Files and hashes: 1: zaA_ZfTTOjOZaZc_apvQfa-eNyQ.crl (hash: 1N9+qeI+SzOGYNhp7fWrLbnwhhB9wg5UppdKxAaNCJI=) 2: AA5485827F3611ECBED94963C4F9AE02.roa (hash: L7q5MhSYBL7XAFYcbCU7483l92C9DWVyV5PtuFnvCCo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9154D26/C00D9726413B11ECB06AE030C4F9AE02/zaA_ZfTTOjOZaZc_apvQfa-eNyQ.crl rsync://rpki.apnic.net/member_repository/A9154D26/C00D9726413B11ECB06AE030C4F9AE02/zaA_ZfTTOjOZaZc_apvQfa-eNyQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zaA_ZfTTOjOZaZc_apvQfa-eNyQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 00:11:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1199 (0x4af) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9154D26, serialNumber=CDA03F65F4D33A339969973F6A9BD07DAF9E3724 Validity Not Before: Jul 21 00:11:39 2025 GMT Not After : Jul 28 00:11:39 2025 GMT Subject: CN=687d85bc-872c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:ee:91:35:d1:43:ca:93:f4:c2:4a:8e:17:68: ef:c8:e0:e3:23:86:65:8c:6d:4d:f0:d6:f6:1e:52: a0:d8:e5:78:2a:00:53:1f:e6:8f:15:9e:53:2f:ed: 75:f1:46:75:a6:4b:65:3f:e4:6c:ab:60:27:03:ca: cf:da:1e:be:b2:f7:97:61:07:9c:0d:cf:00:9b:b0: 1c:87:1a:57:0f:b8:db:77:53:46:5b:76:d9:b8:f8: d1:17:49:d9:2f:41:68:7a:60:83:f2:92:01:22:cd: 20:f5:71:83:dc:ff:06:de:ed:2f:b2:77:26:32:0e: 35:ad:43:36:0c:a3:f6:77:36:bd:e2:b0:0b:81:9f: 09:e9:c8:cb:e7:d2:5c:15:ef:80:7b:fa:54:cc:48: d6:e1:03:b2:cf:84:b2:91:8f:1a:66:09:88:6e:17: 43:3f:b0:da:ad:15:11:31:ca:49:7f:9a:66:95:44: 6f:9d:91:59:82:0e:aa:ee:e4:9e:98:fc:20:a7:eb: bb:5c:45:b4:ee:1f:aa:cc:35:d8:ca:fd:ea:c5:11: 71:5b:e4:e3:44:92:d9:a9:64:79:4e:72:62:fb:48: 36:e3:c0:40:87:fb:5d:41:89:1f:ec:01:70:99:c3: ee:88:c7:8c:f5:17:e3:5d:0d:97:59:3f:29:9a:52: 00:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:A5:E4:95:21:08:C9:C0:F7:80:BA:5B:52:83:FB:AF:39:AA:E8:E2 X509v3 Authority Key Identifier: keyid:CD:A0:3F:65:F4:D3:3A:33:99:69:97:3F:6A:9B:D0:7D:AF:9E:37:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9154D26/C00D9726413B11ECB06AE030C4F9AE02/zaA_ZfTTOjOZaZc_apvQfa-eNyQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zaA_ZfTTOjOZaZc_apvQfa-eNyQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9154D26/C00D9726413B11ECB06AE030C4F9AE02/zaA_ZfTTOjOZaZc_apvQfa-eNyQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 84:8e:32:aa:a1:ba:14:71:7e:90:0b:fe:61:a0:31:1e:6e:ca: e0:ce:d5:3e:9a:f9:70:27:cf:22:6d:b5:d8:89:04:bf:4b:56: c0:a2:dd:71:7e:e6:38:c6:fc:d9:6d:82:5b:ee:4b:db:d3:47: 89:5f:54:f3:18:81:3d:52:58:50:a7:ae:ac:96:9c:47:4b:1f: 42:ed:2b:c5:7d:96:9b:c4:c6:1c:06:01:01:85:63:32:b1:69: 4b:9c:04:12:53:a7:4f:18:3a:4a:18:34:6e:72:46:55:3e:ee: a6:51:e5:32:1a:ac:eb:b4:e9:22:fc:cd:52:7a:e7:9e:28:9a: 17:72:c4:9e:c7:e1:af:7c:e8:c4:c4:32:3b:7f:e3:a3:10:a7: be:33:eb:a2:cd:1e:b6:b1:23:de:41:36:ed:f4:f1:fb:9c:c8: b6:d1:74:38:7f:1d:ca:25:bd:d1:a5:7c:f4:d6:84:1d:3c:3c: 55:15:69:b7:bc:f4:0e:44:e3:87:e2:a4:65:da:07:f9:38:f3: 91:42:95:d6:2a:07:71:24:75:2f:65:e9:db:11:5b:3c:64:f8: f2:f0:54:2e:13:b8:8e:0b:e3:fc:82:ad:26:87:88:e3:2f:71: 43:9f:d8:9f:5a:4a:ac:2e:5e:7b:37:79:e9:5a:0c:e7:af:a5: 20:59:e9:c8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBK8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTREMjYxMTAvBgNVBAUTKENEQTAzRjY1RjREMzNBMzM5OTY5OTczRjZBOUJEMDdE QUY5RTM3MjQwHhcNMjUwNzIxMDAxMTM5WhcNMjUwNzI4MDAxMTM5WjAYMRYwFAYD VQQDEw02ODdkODViYy04NzJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvO6RNdFDypP0wkqOF2jvyODjI4ZljG1N8Nb2HlKg2OV4KgBTH+aPFZ5TL+11 8UZ1pktlP+Rsq2AnA8rP2h6+sveXYQecDc8Am7AchxpXD7jbd1NGW3bZuPjRF0nZ L0FoemCD8pIBIs0g9XGD3P8G3u0vsncmMg41rUM2DKP2dza94rALgZ8J6cjL59Jc Fe+Ae/pUzEjW4QOyz4SykY8aZgmIbhdDP7DarRURMcpJf5pmlURvnZFZgg6q7uSe mPwgp+u7XEW07h+qzDXYyv3qxRFxW+TjRJLZqWR5TnJi+0g248BAh/tdQYkf7AFw mcPuiMeM9RfjXQ2XWT8pmlIALQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBul5JUh CMnA94C6W1KD+685qujiMB8GA1UdIwQYMBaAFM2gP2X00zozmWmXP2qb0H2vnjck MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NEQyNi9DMDBEOTcyNjQx M0IxMUVDQjA2QUUwMzBDNEY5QUUwMi96YUFfWmZUVE9qT1phWmNfYXB2UWZhLWVO eVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3phQV9aZlRUT2pPWmFaY19hcHZRZmEtZU55US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NEQyNi9DMDBEOTcyNjQxM0IxMUVDQjA2QUUwMzBDNEY5QUUwMi96YUFfWmZUVE9q T1phWmNfYXB2UWZhLWVOeVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCEjjKqoboUcX6QC/5hoDEebsrgztU+mvlwJ88ibbXYiQS/S1bAot1x fuY4xvzZbYJb7kvb00eJX1TzGIE9UlhQp66slpxHSx9C7SvFfZabxMYcBgEBhWMy sWlLnAQSU6dPGDpKGDRuckZVPu6mUeUyGqzrtOki/M1SeueeKJoXcsSex+GvfOjE xDI7f+OjEKe+M+uizR62sSPeQTbt9PH7nMi20XQ4fx3KJb3RpXz01oQdPDxVFWm3 vPQOROOH4qRl2gf5OPORQpXWKgdxJHUvZenbEVs8ZPjy8FQuE7iOC+P8gq0mh4jj L3FDn9ifWkqsLl57N3npWgznr6UgWenI -----END CERTIFICATE-----Generated at Mon Jul 21 07:00:27 2025 by rpki-client