$ rpki-client -vvf rpki.apnic.net/member_repository/A912C8FA/4003F93054A311EEB75F4686C4F9AE02/AO-zr_90_WIfS42RFpt6HEOzlBc.mft File: AO-zr_90_WIfS42RFpt6HEOzlBc.mft (raw, json) Hash identifier: i7cdXho9yYI0iMzB8DIb9w+QhQX75kyDh47sQT4Cyzk= Subject key identifier: AE:4B:E6:F0:90:11:47:2B:29:7D:D4:C1:DA:7E:E0:65:B5:22:1D:68 Authority key identifier: 00:EF:B3:AF:FF:74:FD:62:1F:4B:8D:91:16:9B:7A:1C:43:B3:94:17 Certificate issuer: /CN=A912C8FA/serialNumber=00EFB3AFFF74FD621F4B8D91169B7A1C43B39417 Certificate serial: 0174 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AO-zr_90_WIfS42RFpt6HEOzlBc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912C8FA/4003F93054A311EEB75F4686C4F9AE02/AO-zr_90_WIfS42RFpt6HEOzlBc.mft Manifest number: 016C Signing time: Sat 09 Aug 2025 04:19:52 +0000 Manifest this update: Sat 09 Aug 2025 04:19:51 +0000 Manifest next update: Sat 16 Aug 2025 04:19:51 +0000 Files and hashes: 1: AO-zr_90_WIfS42RFpt6HEOzlBc.crl (hash: 8/4rEw2PSyy9uu9575SVe/TO+ngL3Y0xjmqYZv8Z02s=) 2: A80498FABAAB11EEBA024655C4F9AE02.roa (hash: g6wCJDrtHyuCox1Dak/0D/0mdLei/24CwRHwHNh/Oi8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912C8FA/4003F93054A311EEB75F4686C4F9AE02/AO-zr_90_WIfS42RFpt6HEOzlBc.crl rsync://rpki.apnic.net/member_repository/A912C8FA/4003F93054A311EEB75F4686C4F9AE02/AO-zr_90_WIfS42RFpt6HEOzlBc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AO-zr_90_WIfS42RFpt6HEOzlBc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 372 (0x174) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912C8FA, serialNumber=00EFB3AFFF74FD621F4B8D91169B7A1C43B39417 Validity Not Before: Aug 9 04:19:51 2025 GMT Not After : Aug 16 04:19:51 2025 GMT Subject: CN=6896cc67-795a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:f1:cd:f7:e7:f3:a9:fa:8e:74:a7:25:a6:15: ed:29:1f:68:df:76:f0:26:45:e6:13:d8:e4:de:8e: ed:6d:71:0f:a8:7d:c8:23:db:2e:20:b5:84:c9:30: 4b:44:f6:db:f0:19:70:60:c9:b9:bf:b3:07:ca:9b: d0:17:1e:46:b0:9b:a0:d1:5e:97:de:1b:f2:b8:f2: fe:55:fe:02:19:00:0c:aa:32:7a:64:f9:e6:74:10: cc:35:35:0a:55:5d:68:d2:53:dd:40:98:5a:71:3c: 87:2b:79:8f:ba:4b:f8:43:e5:ab:e9:16:d3:9c:2f: 56:e0:63:06:35:9e:f3:05:32:7c:1d:37:6a:f8:f9: 8a:ab:ab:52:1e:a3:9a:23:9f:fd:45:c8:65:7a:8f: 38:fa:ed:37:cb:48:e5:9b:a7:a1:4e:71:f9:fd:d7: df:24:f5:81:4c:1b:a1:a6:3c:1d:19:09:31:8e:54: 53:87:61:89:60:e4:49:09:38:5b:70:82:c7:fd:f8: b3:8a:34:36:b8:dc:67:ca:4d:59:9e:b2:13:87:6b: 02:9a:50:0e:68:46:f2:ff:2a:d7:40:2b:ad:81:a7: 6e:6a:d6:f2:a6:f2:f0:03:35:ee:15:c1:48:37:20: 20:72:70:e4:a9:c4:2a:e4:59:cc:07:b6:90:cd:60: c3:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:4B:E6:F0:90:11:47:2B:29:7D:D4:C1:DA:7E:E0:65:B5:22:1D:68 X509v3 Authority Key Identifier: keyid:00:EF:B3:AF:FF:74:FD:62:1F:4B:8D:91:16:9B:7A:1C:43:B3:94:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912C8FA/4003F93054A311EEB75F4686C4F9AE02/AO-zr_90_WIfS42RFpt6HEOzlBc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AO-zr_90_WIfS42RFpt6HEOzlBc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912C8FA/4003F93054A311EEB75F4686C4F9AE02/AO-zr_90_WIfS42RFpt6HEOzlBc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:4f:6b:98:84:2a:50:8b:1a:d4:aa:fc:d7:55:81:f4:f2:c4: 9f:b3:c8:8f:6f:bf:ec:38:00:cd:bc:84:83:85:2e:71:65:6e: 60:00:12:f6:89:6c:af:f6:53:a1:63:a9:0f:1d:19:ab:4c:22: 22:7c:49:36:ba:22:d5:dc:7f:25:9e:54:11:e6:87:15:17:ef: dd:5e:e8:59:52:80:58:c5:40:37:6b:b3:b9:c6:66:60:ff:b2: c2:a9:e5:41:f2:50:16:d3:ba:c8:68:8e:db:63:cb:4d:08:24: 14:21:37:ba:56:8a:61:78:3a:75:f6:14:b3:71:7a:e5:7f:49: ed:5b:31:bd:97:fe:73:9d:dd:08:28:d3:ed:17:54:f2:97:df: f6:23:e5:be:5a:a2:12:3e:ab:b8:c7:e1:41:f3:7c:30:c9:a5: 30:68:55:2a:16:76:48:c5:f5:53:2a:c7:ee:43:96:0b:eb:d1: 91:c4:fb:fa:e6:97:4f:79:e9:e7:f9:4d:8c:a2:b8:93:b1:d8: 7f:ab:94:43:99:5c:47:99:5f:34:64:3f:86:9f:6b:6e:2f:6c: 10:3f:d9:8d:8f:21:f1:c2:df:eb:98:07:a9:39:ef:45:08:3b: b6:e9:3c:7b:0a:4a:14:c7:4d:08:0a:58:97:4a:f3:98:05:ed: 46:c0:9b:29 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkM4RkExMTAvBgNVBAUTKDAwRUZCM0FGRkY3NEZENjIxRjRCOEQ5MTE2OUI3QTFD NDNCMzk0MTcwHhcNMjUwODA5MDQxOTUxWhcNMjUwODE2MDQxOTUxWjAYMRYwFAYD VQQDEw02ODk2Y2M2Ny03OTVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3fHN9+fzqfqOdKclphXtKR9o33bwJkXmE9jk3o7tbXEPqH3II9suILWEyTBL RPbb8BlwYMm5v7MHypvQFx5GsJug0V6X3hvyuPL+Vf4CGQAMqjJ6ZPnmdBDMNTUK VV1o0lPdQJhacTyHK3mPukv4Q+Wr6RbTnC9W4GMGNZ7zBTJ8HTdq+PmKq6tSHqOa I5/9Rchleo84+u03y0jlm6ehTnH5/dffJPWBTBuhpjwdGQkxjlRTh2GJYORJCThb cILH/fizijQ2uNxnyk1ZnrITh2sCmlAOaEby/yrXQCutgaduatbypvLwAzXuFcFI NyAgcnDkqcQq5FnMB7aQzWDDbwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK5L5vCQ EUcrKX3Uwdp+4GW1Ih1oMB8GA1UdIwQYMBaAFADvs6//dP1iH0uNkRabehxDs5QX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQzhGQS80MDAzRjkzMDU0 QTMxMUVFQjc1RjQ2ODZDNEY5QUUwMi9BTy16cl85MF9XSWZTNDJSRnB0NkhFT3ps QmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FPLXpyXzkwX1dJZlM0MlJGcHQ2SEVPemxCYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QzhGQS80MDAzRjkzMDU0QTMxMUVFQjc1RjQ2ODZDNEY5QUUwMi9BTy16cl85MF9X SWZTNDJSRnB0NkhFT3psQmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCaT2uYhCpQixrUqvzXVYH08sSfs8iPb7/sOADNvISDhS5xZW5gABL2 iWyv9lOhY6kPHRmrTCIifEk2uiLV3H8lnlQR5ocVF+/dXuhZUoBYxUA3a7O5xmZg /7LCqeVB8lAW07rIaI7bY8tNCCQUITe6VopheDp19hSzcXrlf0ntWzG9l/5znd0I KNPtF1Tyl9/2I+W+WqISPqu4x+FB83wwyaUwaFUqFnZIxfVTKsfuQ5YL69GRxPv6 5pdPeenn+U2MoriTsdh/q5RDmVxHmV80ZD+Gn2tuL2wQP9mNjyHxwt/rmAepOe9F CDu26Tx7CkoUx00ICliXSvOYBe1GwJsp -----END CERTIFICATE-----Generated at Mon Aug 11 01:51:58 2025 by rpki-client