$ rpki-client -vvf rpki.apnic.net/member_repository/A91594AE/3D8B8C4852B511EAA4A9D20EC4F9AE02/zaR-Ch7rUl87Wg-vsvoNuzY7-k0.mft File: zaR-Ch7rUl87Wg-vsvoNuzY7-k0.mft (raw, json) Hash identifier: wGXHeTrjwmjNerWu93xkRfQJK54k2Ff5gyRBCgFKOgY= Subject key identifier: 73:45:AF:8D:AA:49:46:A7:C0:9D:33:20:30:A6:CE:E1:BD:52:DE:CB Authority key identifier: CD:A4:7E:0A:1E:EB:52:5F:3B:5A:0F:AF:B2:FA:0D:BB:36:3B:FA:4D Certificate issuer: /CN=A91594AE/serialNumber=CDA47E0A1EEB525F3B5A0FAFB2FA0DBB363BFA4D Certificate serial: 0AD6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zaR-Ch7rUl87Wg-vsvoNuzY7-k0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91594AE/3D8B8C4852B511EAA4A9D20EC4F9AE02/zaR-Ch7rUl87Wg-vsvoNuzY7-k0.mft Manifest number: 0ACE Signing time: Sun 20 Jul 2025 19:32:53 +0000 Manifest this update: Sun 20 Jul 2025 19:32:53 +0000 Manifest next update: Sun 27 Jul 2025 19:32:53 +0000 Files and hashes: 1: zaR-Ch7rUl87Wg-vsvoNuzY7-k0.crl (hash: 2EgU+BQ/xLGtNDB3sXCy/HsCypCvDKofZZWe1V4MtF0=) 2: 38CAF4EC52B911EAACE8041BC4F9AE02.roa (hash: lj/CFwKu+N9KL+BN8rOtiVH/zU3sp7+mG9hyAnPkezU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91594AE/3D8B8C4852B511EAA4A9D20EC4F9AE02/zaR-Ch7rUl87Wg-vsvoNuzY7-k0.crl rsync://rpki.apnic.net/member_repository/A91594AE/3D8B8C4852B511EAA4A9D20EC4F9AE02/zaR-Ch7rUl87Wg-vsvoNuzY7-k0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zaR-Ch7rUl87Wg-vsvoNuzY7-k0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 19:32:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2774 (0xad6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91594AE, serialNumber=CDA47E0A1EEB525F3B5A0FAFB2FA0DBB363BFA4D Validity Not Before: Jul 20 19:32:53 2025 GMT Not After : Jul 27 19:32:53 2025 GMT Subject: CN=687d4465-5880 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:37:ce:c6:78:bd:00:ae:9e:9b:f3:1e:31:68: c8:ee:74:06:02:b6:23:d3:35:1c:2d:db:88:60:08: 2f:53:49:28:86:e4:f8:5f:8e:1f:61:98:f4:78:57: 84:fd:bb:db:37:52:48:12:f0:d2:95:23:59:bd:63: e1:94:ce:09:c1:8b:ac:71:ae:b0:d1:16:40:39:57: 4e:cb:ef:d8:08:8f:36:c5:12:c6:75:a6:5c:68:97: 42:65:af:75:42:4c:a1:fa:c7:6d:cf:ae:9a:f5:89: d9:6e:49:71:a8:4d:15:91:27:43:c2:7a:7d:5d:31: c8:ef:45:90:45:83:60:07:af:40:3a:5f:cb:e7:8d: 74:d5:3d:06:0c:0e:90:f5:20:89:e1:8c:ca:1d:f1: 47:2c:5d:39:a9:15:1f:c0:0d:cc:13:56:86:f0:24: 7e:be:9d:ab:3d:5b:03:1a:8e:bd:f5:aa:89:5d:57: 94:0a:11:17:98:8f:29:b1:3e:37:28:05:8a:8d:81: 4f:7f:ed:da:c1:56:83:0f:a5:6c:df:87:4e:64:6f: 1a:84:d8:f2:46:56:1c:91:89:e5:c4:52:1b:54:ba: e2:16:b0:94:5c:d4:2c:51:8e:86:92:e2:f9:b6:ad: 9b:4b:37:b7:af:ad:2c:b0:e2:15:30:27:de:50:92: f2:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:45:AF:8D:AA:49:46:A7:C0:9D:33:20:30:A6:CE:E1:BD:52:DE:CB X509v3 Authority Key Identifier: keyid:CD:A4:7E:0A:1E:EB:52:5F:3B:5A:0F:AF:B2:FA:0D:BB:36:3B:FA:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91594AE/3D8B8C4852B511EAA4A9D20EC4F9AE02/zaR-Ch7rUl87Wg-vsvoNuzY7-k0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zaR-Ch7rUl87Wg-vsvoNuzY7-k0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91594AE/3D8B8C4852B511EAA4A9D20EC4F9AE02/zaR-Ch7rUl87Wg-vsvoNuzY7-k0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0c:70:07:5f:8a:c5:d5:2c:2e:77:2f:78:6f:7b:44:4c:a3:05: cc:54:68:a8:f0:91:da:68:fe:57:7d:4b:50:44:af:06:e1:93: 61:c0:83:cd:2b:bf:e2:a1:00:cc:d8:91:8c:fe:e7:69:0e:51: 5c:2d:6d:71:1f:f7:04:8c:78:6a:90:01:11:9d:6b:ce:c4:b1: a4:16:d6:45:ce:08:e4:48:5c:39:31:9e:61:6c:6a:48:6a:a9: f5:a9:16:97:ee:9c:bd:19:7e:da:85:ee:ab:e2:ea:0e:d1:a0: 37:2f:ac:e3:e3:c3:8c:61:8e:a4:92:3e:72:ad:92:ee:65:62: 31:e0:22:06:7f:99:1a:f3:ad:eb:63:70:90:79:e3:66:4d:b6: 97:3a:a2:21:0d:2c:03:b7:94:95:ae:7a:9c:fe:99:9b:e7:8f: c8:2c:ef:e1:da:a7:1a:2a:90:1e:4b:99:1c:bb:51:0d:0d:e5: 66:c6:8c:80:6f:5f:1c:76:9e:7c:b3:68:7a:cb:17:7b:a8:03: 81:fe:09:59:c7:02:60:29:85:65:c2:b4:74:95:68:b3:59:d4: f0:e3:6a:f8:a5:1c:89:1e:dc:e5:52:8b:93:ac:e4:94:11:c9: 00:24:5e:e0:97:76:f5:e2:6f:dc:08:57:ca:4b:53:6f:b2:05: 93:6d:1c:14 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCtYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTk0QUUxMTAvBgNVBAUTKENEQTQ3RTBBMUVFQjUyNUYzQjVBMEZBRkIyRkEwREJC MzYzQkZBNEQwHhcNMjUwNzIwMTkzMjUzWhcNMjUwNzI3MTkzMjUzWjAYMRYwFAYD VQQDEw02ODdkNDQ2NS01ODgwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvjfOxni9AK6em/MeMWjI7nQGArYj0zUcLduIYAgvU0kohuT4X44fYZj0eFeE /bvbN1JIEvDSlSNZvWPhlM4JwYusca6w0RZAOVdOy+/YCI82xRLGdaZcaJdCZa91 Qkyh+sdtz66a9YnZbklxqE0VkSdDwnp9XTHI70WQRYNgB69AOl/L54101T0GDA6Q 9SCJ4YzKHfFHLF05qRUfwA3ME1aG8CR+vp2rPVsDGo699aqJXVeUChEXmI8psT43 KAWKjYFPf+3awVaDD6Vs34dOZG8ahNjyRlYckYnlxFIbVLriFrCUXNQsUY6GkuL5 tq2bSze3r60ssOIVMCfeUJLyiwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHNFr42q SUanwJ0zIDCmzuG9Ut7LMB8GA1UdIwQYMBaAFM2kfgoe61JfO1oPr7L6Dbs2O/pN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1OTRBRS8zRDhCOEM0ODUy QjUxMUVBQTRBOUQyMEVDNEY5QUUwMi96YVItQ2g3clVsODdXZy12c3ZvTnV6WTct azAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3phUi1DaDdyVWw4N1dnLXZzdm9OdXpZNy1rMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 OTRBRS8zRDhCOEM0ODUyQjUxMUVBQTRBOUQyMEVDNEY5QUUwMi96YVItQ2g3clVs ODdXZy12c3ZvTnV6WTctazAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAMcAdfisXVLC53L3hve0RMowXMVGio8JHaaP5XfUtQRK8G4ZNhwIPN K7/ioQDM2JGM/udpDlFcLW1xH/cEjHhqkAERnWvOxLGkFtZFzgjkSFw5MZ5hbGpI aqn1qRaX7py9GX7ahe6r4uoO0aA3L6zj48OMYY6kkj5yrZLuZWIx4CIGf5ka863r Y3CQeeNmTbaXOqIhDSwDt5SVrnqc/pmb54/ILO/h2qcaKpAeS5kcu1ENDeVmxoyA b18cdp58s2h6yxd7qAOB/glZxwJgKYVlwrR0lWizWdTw42r4pRyJHtzlUouTrOSU EckAJF7gl3b14m/cCFfKS1NvsgWTbRwU -----END CERTIFICATE-----Generated at Mon Jul 21 07:06:56 2025 by rpki-client