$ rpki-client -vvf rpki.apnic.net/member_repository/A91951DE/904F870A60B411F08ED7AE63C4F9AE02/ZH5crcsfv367iZpyGcOg8D0_ew0.mft File: ZH5crcsfv367iZpyGcOg8D0_ew0.mft (raw, json) Hash identifier: hZYBSKBLxqkFLnUYLDRxHkr+220cAfJLNE/t6OkFs0Q= Subject key identifier: 2A:B5:23:04:35:4A:C4:D5:1C:43:EE:6B:25:E2:8D:3D:66:70:18:1F Authority key identifier: 64:7E:5C:AD:CB:1F:BF:7E:BB:89:9A:72:19:C3:A0:F0:3D:3F:7B:0D Certificate issuer: /CN=A91951DE/serialNumber=647E5CADCB1FBF7EBB899A7219C3A0F03D3F7B0D Certificate serial: 08 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZH5crcsfv367iZpyGcOg8D0_ew0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91951DE/904F870A60B411F08ED7AE63C4F9AE02/ZH5crcsfv367iZpyGcOg8D0_ew0.mft Manifest number: 07 Signing time: Wed 23 Jul 2025 08:33:01 +0000 Manifest this update: Wed 23 Jul 2025 08:33:01 +0000 Manifest next update: Wed 30 Jul 2025 08:33:01 +0000 Files and hashes: 1: ZH5crcsfv367iZpyGcOg8D0_ew0.crl (hash: b4FqYWxfLJYNi7WUdZRDg+P/nX3mUNHg5jmTS/MpEwI=) 2: 533DC25E60B511F0AB567568C4F9AE02.roa (hash: 9UZrURL/5cYm+3q79UbhWbJw8l3P1ZGycupb15ORpsw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91951DE/904F870A60B411F08ED7AE63C4F9AE02/ZH5crcsfv367iZpyGcOg8D0_ew0.crl rsync://rpki.apnic.net/member_repository/A91951DE/904F870A60B411F08ED7AE63C4F9AE02/ZH5crcsfv367iZpyGcOg8D0_ew0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZH5crcsfv367iZpyGcOg8D0_ew0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 30 Jul 2025 08:33:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8 (0x8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91951DE, serialNumber=647E5CADCB1FBF7EBB899A7219C3A0F03D3F7B0D Validity Not Before: Jul 23 08:33:01 2025 GMT Not After : Jul 30 08:33:01 2025 GMT Subject: CN=68809e3d-3cf9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:32:e2:87:04:26:0f:62:1d:9e:14:69:e2:fc: de:03:bf:d8:1e:3b:5b:5a:92:d4:97:2f:53:9f:bb: 7e:85:4c:63:69:d1:9f:af:df:12:49:d7:7a:a6:34: 08:44:22:09:e0:1f:7c:3b:c6:c2:a8:78:99:43:5b: 1b:cd:d2:da:6a:36:c8:8d:bb:be:33:5d:26:8d:7a: c9:d3:96:7a:02:b4:f3:61:35:8d:a0:e1:31:fe:d8: 6d:94:2f:c7:85:f4:51:70:44:89:05:88:84:22:40: 9c:1c:3b:46:05:50:31:eb:14:d3:8d:8c:09:a0:cf: 56:55:b9:74:24:37:13:7a:f2:9f:1f:73:d8:2b:44: 1d:5a:12:01:bb:f3:38:dc:4b:61:21:79:74:eb:3f: 14:cd:d0:1d:75:c7:d6:9f:32:7c:77:8e:28:d9:c8: e5:cb:47:46:99:dc:8a:37:87:a3:21:d7:44:e1:1b: a5:15:02:e1:47:19:2b:ad:29:3d:25:c0:c3:ce:ec: 38:26:91:cc:0b:70:4c:33:d8:2d:01:af:00:4b:1a: 82:d3:8c:00:bf:f4:d2:54:4a:c5:32:a2:ab:7e:07: 0e:6a:b3:e0:56:c6:0c:14:69:ee:79:a5:7e:79:eb: b0:13:cf:38:4c:67:09:3e:b8:20:10:a1:cf:f5:3f: 11:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:B5:23:04:35:4A:C4:D5:1C:43:EE:6B:25:E2:8D:3D:66:70:18:1F X509v3 Authority Key Identifier: keyid:64:7E:5C:AD:CB:1F:BF:7E:BB:89:9A:72:19:C3:A0:F0:3D:3F:7B:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91951DE/904F870A60B411F08ED7AE63C4F9AE02/ZH5crcsfv367iZpyGcOg8D0_ew0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZH5crcsfv367iZpyGcOg8D0_ew0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91951DE/904F870A60B411F08ED7AE63C4F9AE02/ZH5crcsfv367iZpyGcOg8D0_ew0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 79:51:ff:32:4c:f1:13:15:10:1c:d8:a8:31:db:5b:e2:c1:6b: 9a:d8:ae:b8:9b:9e:35:e7:b8:d3:5a:6e:04:87:d7:c6:9f:4b: 1a:41:f2:e0:3c:d4:86:e0:4a:0b:37:79:3b:42:5b:69:30:9e: 80:02:82:a3:0c:93:34:eb:cc:c8:c6:9d:fc:0e:2a:9b:6f:37: b7:e0:a7:12:e5:53:0e:09:30:af:2c:65:32:02:34:95:2b:96: 2c:0b:41:21:f0:3c:17:97:64:ab:c2:2f:51:a8:7a:9b:82:e3: c3:a2:80:57:24:bc:b6:91:bc:94:dd:4f:88:c7:47:88:c9:4d: bc:a5:27:1e:3c:d2:73:26:68:9e:d8:55:b0:44:54:b6:c6:ab: d1:3c:d8:fa:a7:9e:a2:af:1a:eb:ec:7a:c3:0b:17:1e:6b:5b: 53:66:24:93:71:e1:0c:d4:8a:c6:c1:4d:8d:96:7e:66:3d:a1: 44:ac:dc:4c:f3:1f:b3:42:87:fb:f5:b8:c6:95:f4:d0:1d:da: fb:fc:ed:38:ba:4b:41:fa:a9:3a:d5:f3:2b:78:c6:4c:f0:09: 7c:a2:13:5a:06:f5:69:71:1c:00:0b:f4:41:ee:a9:0e:de:d6: 79:55:a4:21:dc:bc:17:68:2c:63:07:c7:0a:fb:0d:3b:1a:fd: fd:c9:69:c1 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBCDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 NTFERTExMC8GA1UEBRMoNjQ3RTVDQURDQjFGQkY3RUJCODk5QTcyMTlDM0EwRjAz RDNGN0IwRDAeFw0yNTA3MjMwODMzMDFaFw0yNTA3MzAwODMzMDFaMBgxFjAUBgNV BAMTDTY4ODA5ZTNkLTNjZjkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDAMuKHBCYPYh2eFGni/N4Dv9geO1taktSXL1Ofu36FTGNp0Z+v3xJJ13qmNAhE IgngH3w7xsKoeJlDWxvN0tpqNsiNu74zXSaNesnTlnoCtPNhNY2g4TH+2G2UL8eF 9FFwRIkFiIQiQJwcO0YFUDHrFNONjAmgz1ZVuXQkNxN68p8fc9grRB1aEgG78zjc S2EheXTrPxTN0B11x9afMnx3jijZyOXLR0aZ3Io3h6Mh10ThG6UVAuFHGSutKT0l wMPO7DgmkcwLcEwz2C0BrwBLGoLTjAC/9NJUSsUyoqt+Bw5qs+BWxgwUae55pX55 67ATzzhMZwk+uCAQoc/1PxHtAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUKrUjBDVK xNUcQ+5rJeKNPWZwGB8wHwYDVR0jBBgwFoAUZH5crcsfv367iZpyGcOg8D0/ew0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk1MURFLzkwNEY4NzBBNjBC NDExRjA4RUQ3QUU2M0M0RjlBRTAyL1pINWNyY3NmdjM2N2lacHlHY09nOEQwX2V3 MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWkg1Y3Jjc2Z2MzY3aVpweUdjT2c4RDBfZXcwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk1 MURFLzkwNEY4NzBBNjBCNDExRjA4RUQ3QUU2M0M0RjlBRTAyL1pINWNyY3NmdjM2 N2lacHlHY09nOEQwX2V3MC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHlR/zJM8RMVEBzYqDHbW+LBa5rYrribnjXnuNNabgSH18afSxpB8uA8 1IbgSgs3eTtCW2kwnoACgqMMkzTrzMjGnfwOKptvN7fgpxLlUw4JMK8sZTICNJUr liwLQSHwPBeXZKvCL1GoepuC48OigFckvLaRvJTdT4jHR4jJTbylJx480nMmaJ7Y VbBEVLbGq9E82PqnnqKvGuvsesMLFx5rW1NmJJNx4QzUisbBTY2WfmY9oUSs3Ezz H7NCh/v1uMaV9NAd2vv87Ti6S0H6qTrV8yt4xkzwCXyiE1oG9WlxHAAL9EHuqQ7e 1nlVpCHcvBdoLGMHxwr7DTsa/f3JacE= -----END CERTIFICATE-----Generated at Thu Jul 24 04:59:33 2025 by rpki-client