$ rpki-client -vvf rpki.apnic.net/member_repository/A915FE77/7B909554FBAA11E989AD8140C4F9AE02/ZT-tpTip40Eufv3Y-2OfIn9aPuI.mft File: ZT-tpTip40Eufv3Y-2OfIn9aPuI.mft (raw, json) Hash identifier: Z1h2KTRlbcP/WNFnys7HdHYfYqoxpBxYXNX+H3rNjXY= Subject key identifier: 76:E4:1E:71:B5:F3:86:ED:EC:5F:74:22:29:E7:3E:26:DC:7F:D9:8B Authority key identifier: 65:3F:AD:A5:38:A9:E3:41:2E:7E:FD:D8:FB:63:9F:22:7F:5A:3E:E2 Certificate issuer: /CN=A915FE77/serialNumber=653FADA538A9E3412E7EFDD8FB639F227F5A3EE2 Certificate serial: 0C98 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZT-tpTip40Eufv3Y-2OfIn9aPuI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915FE77/7B909554FBAA11E989AD8140C4F9AE02/ZT-tpTip40Eufv3Y-2OfIn9aPuI.mft Manifest number: 0C93 Signing time: Mon 04 Aug 2025 18:25:57 +0000 Manifest this update: Mon 04 Aug 2025 18:25:57 +0000 Manifest next update: Mon 11 Aug 2025 18:25:57 +0000 Files and hashes: 1: ZT-tpTip40Eufv3Y-2OfIn9aPuI.crl (hash: jjtLxFgovQHwcIKjFTyKFUxRmKcy+z5Zn0coH8ndFsQ=) 2: 357D722C67D911EEA787145FC4F9AE02.roa (hash: 7I2IqOR2xiPyGuWyUJiiPfmupUfqm37Gh46DwQEOptk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915FE77/7B909554FBAA11E989AD8140C4F9AE02/ZT-tpTip40Eufv3Y-2OfIn9aPuI.crl rsync://rpki.apnic.net/member_repository/A915FE77/7B909554FBAA11E989AD8140C4F9AE02/ZT-tpTip40Eufv3Y-2OfIn9aPuI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZT-tpTip40Eufv3Y-2OfIn9aPuI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 11 Aug 2025 18:25:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3224 (0xc98) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915FE77, serialNumber=653FADA538A9E3412E7EFDD8FB639F227F5A3EE2 Validity Not Before: Aug 4 18:25:57 2025 GMT Not After : Aug 11 18:25:57 2025 GMT Subject: CN=6890fb35-3306 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:1d:72:fb:31:d8:d2:4c:08:fd:4a:ae:ef:50: 0f:38:dd:99:f3:fc:cd:63:eb:95:86:86:38:82:6e: 1a:9f:b2:92:a0:3f:46:06:ba:e1:13:ee:38:cf:9f: f7:92:9c:9b:a5:f8:cf:f1:bf:49:b9:e9:e7:15:f4: e8:47:e3:32:fb:b4:dc:4a:5e:e4:43:70:e4:3a:41: 47:b5:43:64:ad:7a:a8:a6:5f:52:f4:fe:b4:cb:28: b4:29:3a:e9:2b:bc:7b:c5:e6:11:b4:9d:91:fd:d9: dc:9d:8e:68:ff:e5:2c:27:57:a6:fb:7e:d9:1b:d8: 13:80:1a:ef:4e:9e:f4:8e:6e:86:f8:47:3d:9f:58: 68:48:f6:24:4c:20:ce:96:23:f7:70:fb:e5:e9:d5: 0c:a9:2a:ce:bd:48:dc:86:b1:35:bf:50:77:7d:ec: 5f:d8:c8:36:c5:48:c3:ff:1c:7c:bf:00:43:2e:95: e8:a9:79:39:1a:51:2c:71:7b:f6:1c:48:07:6d:68: 80:26:31:19:bf:e7:61:28:05:dd:4f:75:7e:f7:d8: ca:ab:09:8e:ff:09:30:c3:6b:6b:5f:2d:06:7d:67: 24:78:10:bf:68:69:64:50:69:25:e5:1e:5a:c2:6e: 7b:45:03:9e:07:1c:e2:b1:be:c0:49:c9:af:0a:79: 57:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:E4:1E:71:B5:F3:86:ED:EC:5F:74:22:29:E7:3E:26:DC:7F:D9:8B X509v3 Authority Key Identifier: keyid:65:3F:AD:A5:38:A9:E3:41:2E:7E:FD:D8:FB:63:9F:22:7F:5A:3E:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915FE77/7B909554FBAA11E989AD8140C4F9AE02/ZT-tpTip40Eufv3Y-2OfIn9aPuI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZT-tpTip40Eufv3Y-2OfIn9aPuI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915FE77/7B909554FBAA11E989AD8140C4F9AE02/ZT-tpTip40Eufv3Y-2OfIn9aPuI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1c:25:23:51:2f:a0:8f:83:6c:e0:ad:63:82:3c:95:95:04:cd: 38:7f:1f:94:d5:8c:36:fb:1a:71:3f:35:61:f1:3e:6b:bc:69: ff:50:be:80:30:69:c5:36:6e:b0:d1:33:65:56:f1:f6:a1:75: c2:49:f8:bf:a5:4e:8d:40:8e:d4:7a:52:6c:a3:40:a3:b8:fa: 56:8d:c9:8b:5a:81:84:9a:6b:7b:69:17:c5:0a:e2:05:db:e3: 06:9a:b2:6e:f0:e1:aa:a1:20:43:e5:67:8c:4f:be:79:30:23: 96:c9:34:da:67:0d:a8:05:d1:00:50:2e:5a:7d:d0:a0:12:c0: 2e:ab:7a:06:5b:c3:ca:2a:73:6b:1b:a7:7b:b4:25:86:04:2a: 3d:b1:26:03:5c:b8:c6:a7:10:09:29:4e:07:be:21:84:58:09: 9b:b1:be:7b:56:3e:da:e5:40:ed:5e:6e:9e:c9:7e:dc:5a:ac: 81:1e:2f:e3:e8:af:ef:82:ce:04:65:16:c9:00:72:a0:db:d7: 91:ae:29:87:cd:cf:38:49:e6:2f:a3:81:e7:bd:a5:b9:19:fc: 26:a1:55:01:59:49:13:3d:c2:89:1b:bb:5a:0a:a9:ab:3f:bb: e4:f3:ff:14:bc:e1:47:35:fb:10:31:bb:18:0c:9c:a3:84:dc: 1e:42:95:c2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDJgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUZFNzcxMTAvBgNVBAUTKDY1M0ZBREE1MzhBOUUzNDEyRTdFRkREOEZCNjM5RjIy N0Y1QTNFRTIwHhcNMjUwODA0MTgyNTU3WhcNMjUwODExMTgyNTU3WjAYMRYwFAYD VQQDEw02ODkwZmIzNS0zMzA2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9B1y+zHY0kwI/Uqu71APON2Z8/zNY+uVhoY4gm4an7KSoD9GBrrhE+44z5/3 kpybpfjP8b9JuennFfToR+My+7TcSl7kQ3DkOkFHtUNkrXqopl9S9P60yyi0KTrp K7x7xeYRtJ2R/dncnY5o/+UsJ1em+37ZG9gTgBrvTp70jm6G+Ec9n1hoSPYkTCDO liP3cPvl6dUMqSrOvUjchrE1v1B3fexf2Mg2xUjD/xx8vwBDLpXoqXk5GlEscXv2 HEgHbWiAJjEZv+dhKAXdT3V+99jKqwmO/wkww2trXy0GfWckeBC/aGlkUGkl5R5a wm57RQOeBxzisb7AScmvCnlXVQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHbkHnG1 84bt7F90IinnPibcf9mLMB8GA1UdIwQYMBaAFGU/raU4qeNBLn792PtjnyJ/Wj7i MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RkU3Ny83QjkwOTU1NEZC QUExMUU5ODlBRDgxNDBDNEY5QUUwMi9aVC10cFRpcDQwRXVmdjNZLTJPZkluOWFQ dUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pULXRwVGlwNDBFdWZ2M1ktMk9mSW45YVB1SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RkU3Ny83QjkwOTU1NEZCQUExMUU5ODlBRDgxNDBDNEY5QUUwMi9aVC10cFRpcDQw RXVmdjNZLTJPZkluOWFQdUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAcJSNRL6CPg2zgrWOCPJWVBM04fx+U1Yw2+xpxPzVh8T5rvGn/UL6A MGnFNm6w0TNlVvH2oXXCSfi/pU6NQI7UelJso0CjuPpWjcmLWoGEmmt7aRfFCuIF 2+MGmrJu8OGqoSBD5WeMT755MCOWyTTaZw2oBdEAUC5afdCgEsAuq3oGW8PKKnNr G6d7tCWGBCo9sSYDXLjGpxAJKU4HviGEWAmbsb57Vj7a5UDtXm6eyX7cWqyBHi/j 6K/vgs4EZRbJAHKg29eRrimHzc84SeYvo4HnvaW5GfwmoVUBWUkTPcKJG7taCqmr P7vk8/8UvOFHNfsQMbsYDJyjhNweQpXC -----END CERTIFICATE-----Generated at Wed Aug 6 10:18:46 2025 by rpki-client