$ rpki-client -vvf rpki.apnic.net/member_repository/A912C7DC/64BA4BA8C58B11EFB87E5F33C4F9AE02/ZajQiy7I9C1Duap6QjUXK7ftFmU.mft File: ZajQiy7I9C1Duap6QjUXK7ftFmU.mft (raw, json) Hash identifier: LFCYQFmRNj9lbwf45U8ItwN1nTBDEnG82IukP7VYEDs= Subject key identifier: C4:7D:F4:6D:AE:1B:BB:86:75:52:D4:0B:0B:5F:A6:0B:6C:10:73:EB Authority key identifier: 65:A8:D0:8B:2E:C8:F4:2D:43:B9:AA:7A:42:35:17:2B:B7:ED:16:65 Certificate issuer: /CN=A912C7DC/serialNumber=65A8D08B2EC8F42D43B9AA7A4235172BB7ED1665 Certificate serial: 73 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ZajQiy7I9C1Duap6QjUXK7ftFmU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912C7DC/64BA4BA8C58B11EFB87E5F33C4F9AE02/ZajQiy7I9C1Duap6QjUXK7ftFmU.mft Manifest number: 72 Signing time: Thu 07 Aug 2025 07:25:39 +0000 Manifest this update: Thu 07 Aug 2025 07:25:38 +0000 Manifest next update: Thu 14 Aug 2025 07:25:38 +0000 Files and hashes: 1: ZajQiy7I9C1Duap6QjUXK7ftFmU.crl (hash: kcKaRVL076IDVTlYT9RC+6u7dDh9pSl7X8fo2QcO6jw=) 2: E29CD82EC58B11EFBA44DE34C4F9AE02.roa (hash: Dm+Qler0DP4/BlS/cktwlrkhP2z4/Lue67gvK431F+w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912C7DC/64BA4BA8C58B11EFB87E5F33C4F9AE02/ZajQiy7I9C1Duap6QjUXK7ftFmU.crl rsync://rpki.apnic.net/member_repository/A912C7DC/64BA4BA8C58B11EFB87E5F33C4F9AE02/ZajQiy7I9C1Duap6QjUXK7ftFmU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ZajQiy7I9C1Duap6QjUXK7ftFmU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 115 (0x73) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912C7DC, serialNumber=65A8D08B2EC8F42D43B9AA7A4235172BB7ED1665 Validity Not Before: Aug 7 07:25:38 2025 GMT Not After : Aug 14 07:25:38 2025 GMT Subject: CN=689454f3-ccbd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:db:30:d5:bc:99:90:38:48:e8:cc:7b:f4:e7: 7e:70:d2:bb:95:ee:11:52:e6:86:eb:49:15:e0:c0: 96:28:12:ac:5e:44:f3:eb:d2:5a:3c:7b:40:2e:31: 48:cd:e9:8a:2d:7d:9e:bc:bb:e0:12:b8:6b:ba:bf: cd:f2:a8:53:83:e1:5e:cb:61:d5:b8:5a:b2:3a:ad: 31:db:d0:a0:8d:64:7f:d9:bf:df:50:2c:64:ca:4b: 30:7d:4e:e9:d5:28:10:8a:6f:31:cd:b9:05:bc:27: 53:38:30:fc:d5:b6:66:7c:ca:f2:13:00:89:48:4e: 61:c5:36:9a:95:7f:c4:55:ad:48:88:17:40:41:93: 7d:8c:50:bc:f9:77:fe:0f:59:8d:e2:6a:d4:07:45: 8f:95:2c:37:16:70:32:d5:c5:ae:e2:97:da:81:0f: 5a:0f:ce:38:0b:6b:3d:88:55:df:74:47:98:7c:4e: 54:de:b8:c4:b8:0e:3a:e6:d5:c4:7a:bd:38:d9:55: cc:13:f2:73:12:47:84:07:1c:c6:e8:61:0d:45:75: a9:3c:c5:f9:bd:15:6a:8a:b3:8a:34:d3:3d:26:3a: 74:a9:3f:ef:a7:83:67:63:b1:b4:af:28:25:ff:b4: 2f:75:44:e1:44:e6:9e:7b:fa:70:74:61:bd:a2:4b: 36:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:7D:F4:6D:AE:1B:BB:86:75:52:D4:0B:0B:5F:A6:0B:6C:10:73:EB X509v3 Authority Key Identifier: keyid:65:A8:D0:8B:2E:C8:F4:2D:43:B9:AA:7A:42:35:17:2B:B7:ED:16:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912C7DC/64BA4BA8C58B11EFB87E5F33C4F9AE02/ZajQiy7I9C1Duap6QjUXK7ftFmU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ZajQiy7I9C1Duap6QjUXK7ftFmU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912C7DC/64BA4BA8C58B11EFB87E5F33C4F9AE02/ZajQiy7I9C1Duap6QjUXK7ftFmU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 32:82:6c:ce:d7:6c:56:35:e2:4d:9e:38:df:62:27:a7:b5:f1: 35:cc:a6:36:a6:a2:18:6e:bc:be:c5:ce:d0:99:f7:23:80:ce: 54:08:f6:71:58:07:49:2e:87:e2:0e:4f:44:cc:ef:86:9a:55: 87:63:a7:3f:8f:11:ae:9a:e5:b5:14:97:87:68:79:55:3c:8c: 0d:25:f9:d1:a7:c7:fc:e7:4c:83:13:ce:8c:8e:17:72:f3:64: e0:1e:d9:75:72:b7:02:59:d7:8b:10:31:e7:e3:b0:6f:56:d4: 45:19:fc:2d:7d:07:9f:a7:0c:3f:44:59:6e:42:5d:07:03:ef: 9e:69:c3:21:39:01:65:70:14:7a:92:71:e6:36:ff:9f:51:6e: 4f:37:04:33:d9:db:c3:13:b9:0f:e7:b0:29:79:07:25:6d:e5: f4:eb:25:15:8a:10:91:bf:77:64:59:42:ca:6a:d9:1f:c9:03: d9:00:58:04:21:41:73:df:27:f2:d5:98:99:5d:96:9c:90:4c: 71:1e:a0:7c:07:ab:c3:ed:07:79:73:0e:74:ce:a1:0d:d0:06: 4d:0f:e0:28:0b:18:c5:11:88:e1:be:d9:b3:c2:ae:38:5e:e8: df:99:2d:3f:9b:4d:58:32:96:fe:d9:5d:d1:a2:72:54:f3:52: 73:cb:51:d8 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBczANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy QzdEQzExMC8GA1UEBRMoNjVBOEQwOEIyRUM4RjQyRDQzQjlBQTdBNDIzNTE3MkJC N0VEMTY2NTAeFw0yNTA4MDcwNzI1MzhaFw0yNTA4MTQwNzI1MzhaMBgxFjAUBgNV BAMTDTY4OTQ1NGYzLWNjYmQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCp2zDVvJmQOEjozHv0535w0ruV7hFS5obrSRXgwJYoEqxeRPPr0lo8e0AuMUjN 6YotfZ68u+ASuGu6v83yqFOD4V7LYdW4WrI6rTHb0KCNZH/Zv99QLGTKSzB9TunV KBCKbzHNuQW8J1M4MPzVtmZ8yvITAIlITmHFNpqVf8RVrUiIF0BBk32MULz5d/4P WY3iatQHRY+VLDcWcDLVxa7il9qBD1oPzjgLaz2IVd90R5h8TlTeuMS4Djrm1cR6 vTjZVcwT8nMSR4QHHMboYQ1Fdak8xfm9FWqKs4o00z0mOnSpP++ng2djsbSvKCX/ tC91ROFE5p57+nB0Yb2iSzbvAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUxH30ba4b u4Z1UtQLC1+mC2wQc+swHwYDVR0jBBgwFoAUZajQiy7I9C1Duap6QjUXK7ftFmUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTJDN0RDLzY0QkE0QkE4QzU4 QjExRUZCODdFNUYzM0M0RjlBRTAyL1phalFpeTdJOUMxRHVhcDZRalVYSzdmdEZt VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvWmFqUWl5N0k5QzFEdWFwNlFqVVhLN2Z0Rm1VLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTJD N0RDLzY0QkE0QkE4QzU4QjExRUZCODdFNUYzM0M0RjlBRTAyL1phalFpeTdJOUMx RHVhcDZRalVYSzdmdEZtVS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADKCbM7XbFY14k2eON9iJ6e18TXMpjamohhuvL7FztCZ9yOAzlQI9nFY B0kuh+IOT0TM74aaVYdjpz+PEa6a5bUUl4doeVU8jA0l+dGnx/znTIMTzoyOF3Lz ZOAe2XVytwJZ14sQMefjsG9W1EUZ/C19B5+nDD9EWW5CXQcD755pwyE5AWVwFHqS ceY2/59Rbk83BDPZ28MTuQ/nsCl5ByVt5fTrJRWKEJG/d2RZQspq2R/JA9kAWAQh QXPfJ/LVmJldlpyQTHEeoHwHq8PtB3lzDnTOoQ3QBk0P4CgLGMURiOG+2bPCrjhe 6N+ZLT+bTVgylv7ZXdGiclTzUnPLUdg= -----END CERTIFICATE-----Generated at Fri Aug 8 20:47:32 2025 by rpki-client