$ rpki-client -vvf rpki.apnic.net/member_repository/A91E77F3/94EFCC0C5B9C11EF8CEA3145C4F9AE02/ZRFLF0P9YN13KN7h6FtJ7qG_Da0.mft File: ZRFLF0P9YN13KN7h6FtJ7qG_Da0.mft (raw, json) Hash identifier: uUrNtxxeuUM+knjmBE0rUwKKeSTvI7DWP5l/kjSOR0A= Subject key identifier: EA:2D:6F:7F:2F:73:2B:59:60:C7:32:83:48:A2:6A:CF:B9:9D:F8:A6 Authority key identifier: 65:11:4B:17:43:FD:60:DD:77:28:DE:E1:E8:5B:49:EE:A1:BF:0D:AD Certificate issuer: /CN=A91E77F3/serialNumber=65114B1743FD60DD7728DEE1E85B49EEA1BF0DAD Certificate serial: B1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZRFLF0P9YN13KN7h6FtJ7qG_Da0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E77F3/94EFCC0C5B9C11EF8CEA3145C4F9AE02/ZRFLF0P9YN13KN7h6FtJ7qG_Da0.mft Manifest number: AF Signing time: Sat 19 Jul 2025 06:16:48 +0000 Manifest this update: Sat 19 Jul 2025 06:16:48 +0000 Manifest next update: Sat 26 Jul 2025 06:16:48 +0000 Files and hashes: 1: ZRFLF0P9YN13KN7h6FtJ7qG_Da0.crl (hash: bOb4DMnJUxycKIO2kiATIg0Yu/7DVuc7pnKhwZgykFo=) 2: CAADA49A5B9C11EF9AD89645C4F9AE02.roa (hash: ScK5Mkjc4CtGpC9rnxIJeiwAah1HeyqfBAVqLucgBa0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E77F3/94EFCC0C5B9C11EF8CEA3145C4F9AE02/ZRFLF0P9YN13KN7h6FtJ7qG_Da0.crl rsync://rpki.apnic.net/member_repository/A91E77F3/94EFCC0C5B9C11EF8CEA3145C4F9AE02/ZRFLF0P9YN13KN7h6FtJ7qG_Da0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZRFLF0P9YN13KN7h6FtJ7qG_Da0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 06:16:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 177 (0xb1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E77F3, serialNumber=65114B1743FD60DD7728DEE1E85B49EEA1BF0DAD Validity Not Before: Jul 19 06:16:48 2025 GMT Not After : Jul 26 06:16:48 2025 GMT Subject: CN=687b3850-da7e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:2e:92:3c:83:dd:55:4c:2d:e0:56:0c:56:f8: ea:e1:41:42:a1:a8:be:f6:36:15:1c:cb:1d:9c:90: b7:71:0a:a9:66:bd:8c:14:9e:4a:b5:ef:72:3e:cb: 86:af:83:c2:a1:b0:77:4f:24:7f:18:6f:43:53:96: e7:f2:37:d5:e3:2d:bb:5b:53:77:24:2f:9c:05:47: e2:26:2b:85:8e:63:42:05:ac:fb:db:e3:26:54:c7: 79:68:4d:a5:7f:13:ab:63:ff:f1:2a:0e:ca:12:66: 5d:03:f9:87:1c:4f:a9:51:73:6e:6b:5d:90:7d:fa: 0f:46:e5:8c:3d:eb:70:b2:70:7c:8a:53:51:9e:19: 02:cd:5c:63:46:27:18:a9:91:0c:c1:41:13:0c:20: 05:9d:f2:83:e6:44:4b:6a:a7:f8:22:08:c6:ee:78: 64:3d:ce:cd:42:9e:a1:72:09:92:ff:42:97:ed:da: c4:5a:e3:15:e4:bf:57:eb:4e:ea:ab:b3:80:c5:66: 3d:45:f6:20:9f:11:2e:c3:1f:2b:86:d3:7d:61:d0: b5:ce:19:8e:f2:7a:04:65:a9:e7:e8:af:2f:5f:a2: a7:4b:f6:13:e9:3a:2c:11:32:a5:e3:cd:85:c3:c0: d7:fd:ae:f6:a4:40:39:fd:b7:40:39:32:8c:84:99: 01:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:2D:6F:7F:2F:73:2B:59:60:C7:32:83:48:A2:6A:CF:B9:9D:F8:A6 X509v3 Authority Key Identifier: keyid:65:11:4B:17:43:FD:60:DD:77:28:DE:E1:E8:5B:49:EE:A1:BF:0D:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E77F3/94EFCC0C5B9C11EF8CEA3145C4F9AE02/ZRFLF0P9YN13KN7h6FtJ7qG_Da0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZRFLF0P9YN13KN7h6FtJ7qG_Da0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E77F3/94EFCC0C5B9C11EF8CEA3145C4F9AE02/ZRFLF0P9YN13KN7h6FtJ7qG_Da0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 87:c1:00:bd:b0:f2:53:c2:cb:23:01:5e:2b:6b:11:2d:f8:68: 25:45:34:a9:53:93:6b:aa:d3:c8:a6:32:6f:48:cb:85:cf:1d: f5:b3:ef:1e:2c:c8:f7:31:ad:f5:79:fb:9f:85:94:8e:f9:0a: 82:3e:1d:03:d1:d6:7a:fd:42:41:da:d1:fd:9a:1f:e1:f2:82: bb:90:30:2d:1a:03:28:63:c3:00:08:26:73:bd:c0:0d:c0:ea: 18:db:78:70:05:63:39:5c:16:97:51:73:ab:fd:7a:8a:9a:24: f3:88:58:08:6e:cb:06:ea:e2:ac:b1:5c:61:e5:df:20:92:3b: 72:78:50:f0:5b:4c:96:f3:63:4a:92:e2:37:fb:57:35:f7:e5: 49:c5:24:6b:fa:44:8b:39:fd:ac:44:77:23:37:24:71:fe:7c: b0:14:86:dc:cc:ee:0d:4e:25:0a:68:c9:ee:8a:0c:fd:e7:0b: 70:92:db:80:98:d8:ae:2c:81:9b:47:f4:cd:1e:b2:16:f9:84: 01:9a:12:57:66:3a:96:c4:0a:1a:16:dc:77:24:9f:24:f8:d2: 19:ee:0e:7e:b2:39:25:e1:63:e3:b6:04:5d:73:d4:1b:fb:a3: 8e:d7:ca:d0:92:fd:6f:8e:65:1c:f6:32:a2:15:e5:d9:c8:8a: 13:b9:7f:92 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTc3RjMxMTAvBgNVBAUTKDY1MTE0QjE3NDNGRDYwREQ3NzI4REVFMUU4NUI0OUVF QTFCRjBEQUQwHhcNMjUwNzE5MDYxNjQ4WhcNMjUwNzI2MDYxNjQ4WjAYMRYwFAYD VQQDEw02ODdiMzg1MC1kYTdlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzy6SPIPdVUwt4FYMVvjq4UFCoai+9jYVHMsdnJC3cQqpZr2MFJ5Kte9yPsuG r4PCobB3TyR/GG9DU5bn8jfV4y27W1N3JC+cBUfiJiuFjmNCBaz72+MmVMd5aE2l fxOrY//xKg7KEmZdA/mHHE+pUXNua12QffoPRuWMPetwsnB8ilNRnhkCzVxjRicY qZEMwUETDCAFnfKD5kRLaqf4IgjG7nhkPc7NQp6hcgmS/0KX7drEWuMV5L9X607q q7OAxWY9RfYgnxEuwx8rhtN9YdC1zhmO8noEZann6K8vX6KnS/YT6TosETKl482F w8DX/a72pEA5/bdAOTKMhJkBoQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOotb38v cytZYMcyg0iias+5nfimMB8GA1UdIwQYMBaAFGURSxdD/WDddyje4ehbSe6hvw2t MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNzdGMy85NEVGQ0MwQzVC OUMxMUVGOENFQTMxNDVDNEY5QUUwMi9aUkZMRjBQOVlOMTNLTjdoNkZ0SjdxR19E YTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pSRkxGMFA5WU4xM0tON2g2RnRKN3FHX0RhMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NzdGMy85NEVGQ0MwQzVCOUMxMUVGOENFQTMxNDVDNEY5QUUwMi9aUkZMRjBQOVlO MTNLTjdoNkZ0SjdxR19EYTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCHwQC9sPJTwssjAV4raxEt+GglRTSpU5NrqtPIpjJvSMuFzx31s+8e LMj3Ma31efufhZSO+QqCPh0D0dZ6/UJB2tH9mh/h8oK7kDAtGgMoY8MACCZzvcAN wOoY23hwBWM5XBaXUXOr/XqKmiTziFgIbssG6uKssVxh5d8gkjtyeFDwW0yW82NK kuI3+1c19+VJxSRr+kSLOf2sRHcjNyRx/nywFIbczO4NTiUKaMnuigz95wtwktuA mNiuLIGbR/TNHrIW+YQBmhJXZjqWxAoaFtx3JJ8k+NIZ7g5+sjkl4WPjtgRdc9Qb +6OO18rQkv1vjmUc9jKiFeXZyIoTuX+S -----END CERTIFICATE-----Generated at Sun Jul 20 15:10:49 2025 by rpki-client