$ rpki-client -vvf rpki.apnic.net/member_repository/A91F09FE/3803AA1C9B1211EFA87BB43BC4F9AE02/ZMzBZsWMOP6MwZdvXPB8HdBvaBQ.mft File: ZMzBZsWMOP6MwZdvXPB8HdBvaBQ.mft (raw, json) Hash identifier: 71JyvWcqzoGprLwGOyOWQ3oBqc8SJ+QpMuH90Qk8Oso= Subject key identifier: C6:94:9D:C9:BE:AD:F9:71:D7:9F:CC:D9:41:0C:97:67:2F:7D:C7:5B Authority key identifier: 64:CC:C1:66:C5:8C:38:FE:8C:C1:97:6F:5C:F0:7C:1D:D0:6F:68:14 Certificate issuer: /CN=A91F09FE/serialNumber=64CCC166C58C38FE8CC1976F5CF07C1DD06F6814 Certificate serial: 7E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZMzBZsWMOP6MwZdvXPB8HdBvaBQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F09FE/3803AA1C9B1211EFA87BB43BC4F9AE02/ZMzBZsWMOP6MwZdvXPB8HdBvaBQ.mft Manifest number: 7C Signing time: Tue 01 Jul 2025 07:28:11 +0000 Manifest this update: Tue 01 Jul 2025 07:28:10 +0000 Manifest next update: Tue 08 Jul 2025 07:28:10 +0000 Files and hashes: 1: ZMzBZsWMOP6MwZdvXPB8HdBvaBQ.crl (hash: OQ2hx6L61h3aiAcFI05Q9hEmkQvVaccfJ0TAgZX615Y=) 2: 841585749B1211EFBFBF913CC4F9AE02.roa (hash: 0M5YhxGhV5QHRGKOQlvw9XsWvMIjTk3A7Z1MV3xW494=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F09FE/3803AA1C9B1211EFA87BB43BC4F9AE02/ZMzBZsWMOP6MwZdvXPB8HdBvaBQ.crl rsync://rpki.apnic.net/member_repository/A91F09FE/3803AA1C9B1211EFA87BB43BC4F9AE02/ZMzBZsWMOP6MwZdvXPB8HdBvaBQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZMzBZsWMOP6MwZdvXPB8HdBvaBQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 07:28:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 126 (0x7e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F09FE, serialNumber=64CCC166C58C38FE8CC1976F5CF07C1DD06F6814 Validity Not Before: Jul 1 07:28:10 2025 GMT Not After : Jul 8 07:28:10 2025 GMT Subject: CN=68638e0b-e51b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:74:36:b2:86:43:8a:41:80:de:c9:4b:a4:64: b2:59:ca:75:df:1b:4a:02:e1:27:90:3e:05:48:1d: 64:0e:da:ac:a1:cf:83:5e:54:8c:1a:06:41:37:38: ab:b4:d7:31:8a:fb:9c:97:0f:45:56:5a:9c:a9:53: 73:cd:e0:20:9c:dd:89:27:96:67:68:3a:dc:2f:e6: bc:bc:94:43:46:17:61:e4:c2:52:37:41:87:b8:8f: 1e:c4:62:56:a8:f4:85:b0:99:b7:9a:eb:26:dc:8e: 89:d0:81:b2:5e:c9:df:f0:6e:ac:8e:ce:0f:6d:7f: e1:39:71:f4:9f:3e:90:e4:61:dd:6a:33:2c:04:2b: 0e:04:95:08:57:5a:34:cd:fd:86:ae:bb:75:f5:ea: ea:72:2f:32:06:20:2f:96:78:bc:21:3b:af:df:23: 6e:23:f1:55:18:05:36:26:32:13:00:d3:4c:a9:7b: 4e:ef:9f:70:59:18:e8:12:4d:9b:c3:1f:24:a3:88: 25:53:60:f2:c8:46:ed:5b:ca:c8:b3:9f:90:79:53: e7:77:77:6f:f8:ce:43:7d:8b:89:13:0a:f1:bb:4f: 9c:a9:e9:06:bf:ae:25:6a:77:f9:ae:88:02:18:bd: d7:01:9c:ad:bc:71:dc:87:d5:1e:d1:46:1a:4e:b2: b8:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:94:9D:C9:BE:AD:F9:71:D7:9F:CC:D9:41:0C:97:67:2F:7D:C7:5B X509v3 Authority Key Identifier: keyid:64:CC:C1:66:C5:8C:38:FE:8C:C1:97:6F:5C:F0:7C:1D:D0:6F:68:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F09FE/3803AA1C9B1211EFA87BB43BC4F9AE02/ZMzBZsWMOP6MwZdvXPB8HdBvaBQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZMzBZsWMOP6MwZdvXPB8HdBvaBQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F09FE/3803AA1C9B1211EFA87BB43BC4F9AE02/ZMzBZsWMOP6MwZdvXPB8HdBvaBQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9b:b7:9f:8e:bb:01:bf:e2:89:4f:3f:7a:af:91:55:ff:e0:b0: b8:0a:ea:57:ce:1c:72:01:92:72:02:fd:db:33:d1:d3:a5:eb: 71:e1:e5:3d:a7:4c:1b:ef:66:55:ba:da:b4:27:a5:2e:6a:28: 26:70:c1:f4:55:ae:29:71:01:ae:c3:ee:41:14:f8:eb:7c:57: c6:a6:4a:68:ee:46:be:6f:5c:0d:20:41:fc:fa:2b:d1:87:98: f4:ba:d7:2d:d5:9b:56:ad:17:5d:2b:63:0e:79:33:a5:12:06: 89:d3:de:05:44:c7:f1:c4:22:0c:54:e8:93:e9:9b:5b:0b:a0: 12:19:c3:63:2e:c3:10:8d:cb:17:e1:3f:fa:1b:94:0a:f6:d6: 43:a3:04:d1:00:d6:a5:23:4f:76:cc:6c:af:3e:60:ee:b7:79: 64:ba:17:01:26:7c:f4:fa:09:6f:f7:d7:a4:e6:15:26:45:d4: c2:84:a5:45:82:97:52:91:49:ab:66:7e:ae:1c:61:3c:18:be: 39:f5:ed:64:41:3e:e3:e3:4a:da:d3:19:fb:29:0d:2f:3d:10: b8:61:75:6d:c7:54:ae:e5:c4:20:a1:38:ba:cf:62:71:a9:de: 50:a0:63:88:7e:c1:29:a4:4e:3d:ea:db:93:40:55:4f:ba:b5: 3a:29:0d:e2 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBfjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG MDlGRTExMC8GA1UEBRMoNjRDQ0MxNjZDNThDMzhGRThDQzE5NzZGNUNGMDdDMURE MDZGNjgxNDAeFw0yNTA3MDEwNzI4MTBaFw0yNTA3MDgwNzI4MTBaMBgxFjAUBgNV BAMTDTY4NjM4ZTBiLWU1MWIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDjdDayhkOKQYDeyUukZLJZynXfG0oC4SeQPgVIHWQO2qyhz4NeVIwaBkE3OKu0 1zGK+5yXD0VWWpypU3PN4CCc3YknlmdoOtwv5ry8lENGF2HkwlI3QYe4jx7EYlao 9IWwmbea6ybcjonQgbJeyd/wbqyOzg9tf+E5cfSfPpDkYd1qMywEKw4ElQhXWjTN /Yauu3X16upyLzIGIC+WeLwhO6/fI24j8VUYBTYmMhMA00ype07vn3BZGOgSTZvD HySjiCVTYPLIRu1bysizn5B5U+d3d2/4zkN9i4kTCvG7T5yp6Qa/riVqd/muiAIY vdcBnK28cdyH1R7RRhpOsrgdAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUxpSdyb6t +XHXn8zZQQyXZy99x1swHwYDVR0jBBgwFoAUZMzBZsWMOP6MwZdvXPB8HdBvaBQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUYwOUZFLzM4MDNBQTFDOUIx MjExRUZBODdCQjQzQkM0RjlBRTAyL1pNekJac1dNT1A2TXdaZHZYUEI4SGRCdmFC US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWk16QlpzV01PUDZNd1pkdlhQQjhIZEJ2YUJRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUYw OUZFLzM4MDNBQTFDOUIxMjExRUZBODdCQjQzQkM0RjlBRTAyL1pNekJac1dNT1A2 TXdaZHZYUEI4SGRCdmFCUS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJu3n467Ab/iiU8/eq+RVf/gsLgK6lfOHHIBknIC/dsz0dOl63Hh5T2n TBvvZlW62rQnpS5qKCZwwfRVrilxAa7D7kEU+Ot8V8amSmjuRr5vXA0gQfz6K9GH mPS61y3Vm1atF10rYw55M6USBonT3gVEx/HEIgxU6JPpm1sLoBIZw2MuwxCNyxfh P/oblAr21kOjBNEA1qUjT3bMbK8+YO63eWS6FwEmfPT6CW/316TmFSZF1MKEpUWC l1KRSatmfq4cYTwYvjn17WRBPuPjStrTGfspDS89ELhhdW3HVK7lxCChOLrPYnGp 3lCgY4h+wSmkTj3q25NAVU+6tTopDeI= -----END CERTIFICATE-----Generated at Thu Jul 3 00:12:08 2025 by rpki-client