$ rpki-client -vvf rpki.apnic.net/member_repository/A915FE77/7B909554FBAA11E989AD8140C4F9AE02/ZT-tpTip40Eufv3Y-2OfIn9aPuI.mft File: ZT-tpTip40Eufv3Y-2OfIn9aPuI.mft (raw, json) Hash identifier: LDmSsA5zRa2gj6TOuYq6OrFhOXJXJtAY18NxuW6AnO0= Subject key identifier: 6B:BF:9D:08:C9:9F:C4:A2:C5:73:64:B2:5D:B3:B1:FF:7E:B0:AC:9D Authority key identifier: 65:3F:AD:A5:38:A9:E3:41:2E:7E:FD:D8:FB:63:9F:22:7F:5A:3E:E2 Certificate issuer: /CN=A915FE77/serialNumber=653FADA538A9E3412E7EFDD8FB639F227F5A3EE2 Certificate serial: 0C7D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZT-tpTip40Eufv3Y-2OfIn9aPuI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915FE77/7B909554FBAA11E989AD8140C4F9AE02/ZT-tpTip40Eufv3Y-2OfIn9aPuI.mft Manifest number: 0C78 Signing time: Thu 12 Jun 2025 18:05:55 +0000 Manifest this update: Thu 12 Jun 2025 18:05:54 +0000 Manifest next update: Thu 19 Jun 2025 18:05:54 +0000 Files and hashes: 1: ZT-tpTip40Eufv3Y-2OfIn9aPuI.crl (hash: WkqumNocUXBIwSVknj+0GCYwdUJr84D1wQqvQhvEpjA=) 2: 357D722C67D911EEA787145FC4F9AE02.roa (hash: 7I2IqOR2xiPyGuWyUJiiPfmupUfqm37Gh46DwQEOptk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915FE77/7B909554FBAA11E989AD8140C4F9AE02/ZT-tpTip40Eufv3Y-2OfIn9aPuI.crl rsync://rpki.apnic.net/member_repository/A915FE77/7B909554FBAA11E989AD8140C4F9AE02/ZT-tpTip40Eufv3Y-2OfIn9aPuI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZT-tpTip40Eufv3Y-2OfIn9aPuI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 18:05:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3197 (0xc7d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915FE77, serialNumber=653FADA538A9E3412E7EFDD8FB639F227F5A3EE2 Validity Not Before: Jun 12 18:05:54 2025 GMT Not After : Jun 19 18:05:54 2025 GMT Subject: CN=684b1703-09cd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:62:55:05:dc:49:5c:81:b7:e4:2b:a1:51:f2: fb:61:0c:35:f0:38:7f:a8:eb:f1:eb:2f:01:cf:47: 14:f9:8c:d7:f7:bc:dc:df:c9:52:d2:d4:30:d2:87: 2d:7d:eb:f6:cf:77:e6:24:58:3f:3a:6e:38:78:4f: c5:82:65:21:44:2f:c4:82:9e:66:0f:60:31:2e:6d: 79:50:b5:5e:63:53:49:a8:96:a0:db:28:a4:9d:ac: e3:f0:6d:cc:c7:10:11:43:e8:3b:75:4c:1a:8b:54: 26:d0:0b:94:d7:c1:45:ff:fa:7e:d0:69:4b:7f:6d: 9c:93:88:60:88:2e:dc:f5:16:9e:21:c0:86:10:bc: ce:83:01:60:07:eb:6e:4a:50:fd:27:03:bc:12:0f: 31:e2:a9:13:d7:d7:86:13:e0:8c:40:f7:a7:4a:07: 33:10:36:78:bb:86:cf:d7:42:4e:ad:59:38:1f:89: 76:0d:d2:32:1e:04:0d:71:72:ab:32:1c:ed:14:49: 74:03:eb:e4:8c:a3:36:f5:63:3f:f8:98:cc:10:27: f5:aa:29:62:3b:0b:b8:9d:9a:d2:e6:51:5a:2b:e6: 74:55:49:3f:8b:97:ce:61:84:ce:69:af:67:fb:b3: db:f2:d9:21:3a:4d:81:ec:53:5e:f1:f9:cf:7d:10: 2b:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:BF:9D:08:C9:9F:C4:A2:C5:73:64:B2:5D:B3:B1:FF:7E:B0:AC:9D X509v3 Authority Key Identifier: keyid:65:3F:AD:A5:38:A9:E3:41:2E:7E:FD:D8:FB:63:9F:22:7F:5A:3E:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915FE77/7B909554FBAA11E989AD8140C4F9AE02/ZT-tpTip40Eufv3Y-2OfIn9aPuI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZT-tpTip40Eufv3Y-2OfIn9aPuI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915FE77/7B909554FBAA11E989AD8140C4F9AE02/ZT-tpTip40Eufv3Y-2OfIn9aPuI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 53:73:8c:b8:c6:53:d6:76:1b:c7:24:94:6e:9a:5b:32:b2:09: 88:09:cc:21:73:cf:05:83:75:51:ca:97:4a:1f:d4:33:3c:e7: 34:f9:83:97:75:f4:58:0b:99:da:2f:fc:a5:fb:fd:29:17:49: 32:c9:34:a7:43:6f:23:5f:6b:e3:4d:1a:5f:bb:67:37:40:63: 80:6f:17:35:4f:bf:9c:0c:8a:62:bb:6c:6e:bd:b5:2b:e5:e5: f9:fe:5f:9d:58:9f:6f:56:ae:78:e0:c1:81:ec:80:13:09:fc: 2c:06:ab:6e:2a:11:6f:3c:5e:31:74:22:da:cc:d0:d1:37:2f: 41:9d:64:8f:98:f5:c3:89:fb:a1:97:11:2a:2e:af:26:5a:ec: 6c:03:15:71:64:cb:27:96:b3:81:ba:7b:f4:25:40:dd:df:d5: 7b:de:c9:b4:b6:9a:38:74:59:7b:83:f3:16:53:22:c0:f1:be: 6b:1e:e9:21:7f:74:48:d4:21:d3:39:25:c6:66:dd:50:a5:4f: 91:c6:0d:d9:1f:f3:de:9e:5e:e9:1f:5e:ba:67:a1:6b:63:f3: 49:f4:2a:ae:34:04:e6:2f:ef:7e:85:bf:d6:10:d2:42:7a:d2: 58:f1:30:ed:80:f8:cd:f5:25:6a:aa:a9:29:99:74:aa:a5:0f: c0:3f:9b:a7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDH0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUZFNzcxMTAvBgNVBAUTKDY1M0ZBREE1MzhBOUUzNDEyRTdFRkREOEZCNjM5RjIy N0Y1QTNFRTIwHhcNMjUwNjEyMTgwNTU0WhcNMjUwNjE5MTgwNTU0WjAYMRYwFAYD VQQDEw02ODRiMTcwMy0wOWNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA32JVBdxJXIG35CuhUfL7YQw18Dh/qOvx6y8Bz0cU+YzX97zc38lS0tQw0oct fev2z3fmJFg/Om44eE/FgmUhRC/Egp5mD2AxLm15ULVeY1NJqJag2yiknazj8G3M xxARQ+g7dUwai1Qm0AuU18FF//p+0GlLf22ck4hgiC7c9RaeIcCGELzOgwFgB+tu SlD9JwO8Eg8x4qkT19eGE+CMQPenSgczEDZ4u4bP10JOrVk4H4l2DdIyHgQNcXKr MhztFEl0A+vkjKM29WM/+JjMECf1qiliOwu4nZrS5lFaK+Z0VUk/i5fOYYTOaa9n +7Pb8tkhOk2B7FNe8fnPfRArqQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGu/nQjJ n8SixXNksl2zsf9+sKydMB8GA1UdIwQYMBaAFGU/raU4qeNBLn792PtjnyJ/Wj7i MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RkU3Ny83QjkwOTU1NEZC QUExMUU5ODlBRDgxNDBDNEY5QUUwMi9aVC10cFRpcDQwRXVmdjNZLTJPZkluOWFQ dUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pULXRwVGlwNDBFdWZ2M1ktMk9mSW45YVB1SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RkU3Ny83QjkwOTU1NEZCQUExMUU5ODlBRDgxNDBDNEY5QUUwMi9aVC10cFRpcDQw RXVmdjNZLTJPZkluOWFQdUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBTc4y4xlPWdhvHJJRumlsysgmICcwhc88Fg3VRypdKH9QzPOc0+YOX dfRYC5naL/yl+/0pF0kyyTSnQ28jX2vjTRpfu2c3QGOAbxc1T7+cDIpiu2xuvbUr 5eX5/l+dWJ9vVq544MGB7IATCfwsBqtuKhFvPF4xdCLazNDRNy9BnWSPmPXDifuh lxEqLq8mWuxsAxVxZMsnlrOBunv0JUDd39V73sm0tpo4dFl7g/MWUyLA8b5rHukh f3RI1CHTOSXGZt1QpU+Rxg3ZH/Penl7pH166Z6FrY/NJ9CquNATmL+9+hb/WENJC etJY8TDtgPjN9SVqqqkpmXSqpQ/AP5un -----END CERTIFICATE-----Generated at Sat Jun 14 17:32:21 2025 by rpki-client