$ rpki-client -vvf rpki.apnic.net/member_repository/A915FE77/7B909554FBAA11E989AD8140C4F9AE02/ZT-tpTip40Eufv3Y-2OfIn9aPuI.mft File: ZT-tpTip40Eufv3Y-2OfIn9aPuI.mft (raw, json) Hash identifier: diR2b9eD5TAY831oFHlg228dXhfMnuj1xl/qIdncajs= Subject key identifier: 7B:4F:D6:8A:99:FD:D1:6A:26:ED:DC:6B:CC:FE:E8:BF:F8:CB:B9:A2 Authority key identifier: 65:3F:AD:A5:38:A9:E3:41:2E:7E:FD:D8:FB:63:9F:22:7F:5A:3E:E2 Certificate issuer: /CN=A915FE77/serialNumber=653FADA538A9E3412E7EFDD8FB639F227F5A3EE2 Certificate serial: 0C64 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZT-tpTip40Eufv3Y-2OfIn9aPuI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915FE77/7B909554FBAA11E989AD8140C4F9AE02/ZT-tpTip40Eufv3Y-2OfIn9aPuI.mft Manifest number: 0C5F Signing time: Thu 24 Apr 2025 18:14:01 +0000 Manifest this update: Thu 24 Apr 2025 18:14:00 +0000 Manifest next update: Thu 01 May 2025 18:14:00 +0000 Files and hashes: 1: ZT-tpTip40Eufv3Y-2OfIn9aPuI.crl (hash: Riw0so2+Rp/3Fh9xWoid9binYetc9LpP1KUi96W6iMI=) 2: 357D722C67D911EEA787145FC4F9AE02.roa (hash: 7I2IqOR2xiPyGuWyUJiiPfmupUfqm37Gh46DwQEOptk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915FE77/7B909554FBAA11E989AD8140C4F9AE02/ZT-tpTip40Eufv3Y-2OfIn9aPuI.crl rsync://rpki.apnic.net/member_repository/A915FE77/7B909554FBAA11E989AD8140C4F9AE02/ZT-tpTip40Eufv3Y-2OfIn9aPuI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZT-tpTip40Eufv3Y-2OfIn9aPuI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 18:14:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3172 (0xc64) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915FE77, serialNumber=653FADA538A9E3412E7EFDD8FB639F227F5A3EE2 Validity Not Before: Apr 24 18:14:00 2025 GMT Not After : May 1 18:14:00 2025 GMT Subject: CN=680a7f69-36ce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:f0:52:ef:51:45:db:33:49:3a:05:bf:7b:b0: 14:fd:48:56:a2:9e:1c:2e:ce:1e:09:54:c2:23:1c: 8b:f4:fe:f3:ef:9d:bb:f2:7b:25:e1:9b:11:01:2e: ac:d0:16:be:da:01:a8:8c:b1:7c:e6:74:f8:86:0f: a0:7e:35:69:5c:f5:91:8c:4e:20:38:af:85:68:ac: 62:3f:f9:02:b4:1e:97:59:f7:88:dc:74:bd:bc:9a: bb:96:ae:66:d8:78:ab:6e:1b:cc:84:97:71:47:fa: e2:fb:f1:2d:28:34:1b:be:6c:4d:21:5b:86:0d:2b: 0c:bd:95:17:22:fa:5d:dd:ca:02:7f:3c:4f:d3:a9: a4:99:e1:b2:56:7c:3d:f5:c6:4a:3f:c6:e9:89:37: 38:8c:f5:81:d0:79:1a:1f:61:21:7e:fc:03:3e:88: a7:01:39:57:81:68:51:fa:35:e1:4b:25:c4:b4:2f: aa:f6:12:fd:43:79:56:54:17:5f:1c:ac:03:48:de: 48:f1:4b:7c:03:ac:96:c1:64:07:4a:5f:9f:ce:eb: d8:81:e0:57:98:90:7c:67:8c:d8:e1:28:1a:0d:da: c8:41:0d:49:33:67:15:78:08:60:fa:73:f4:3e:c7: 58:44:be:60:9f:45:e2:b6:d3:66:07:32:e0:86:77: dc:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:4F:D6:8A:99:FD:D1:6A:26:ED:DC:6B:CC:FE:E8:BF:F8:CB:B9:A2 X509v3 Authority Key Identifier: keyid:65:3F:AD:A5:38:A9:E3:41:2E:7E:FD:D8:FB:63:9F:22:7F:5A:3E:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915FE77/7B909554FBAA11E989AD8140C4F9AE02/ZT-tpTip40Eufv3Y-2OfIn9aPuI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZT-tpTip40Eufv3Y-2OfIn9aPuI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915FE77/7B909554FBAA11E989AD8140C4F9AE02/ZT-tpTip40Eufv3Y-2OfIn9aPuI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 02:e2:03:7e:cf:5a:d6:02:e1:6b:4f:02:18:b2:c7:64:67:ab: cc:da:c5:54:1c:a1:8c:0f:11:05:62:0b:1e:b4:ed:56:9c:89: 0f:00:a0:e1:dd:8c:06:af:20:5f:3b:25:05:98:c3:32:38:cb: dc:28:29:c0:03:b1:60:ed:ef:c9:50:b8:45:17:ec:09:be:48: f5:f2:16:90:b1:33:a0:39:a9:26:b1:a7:6d:2e:a6:a3:4b:b9: dc:7e:85:67:25:a6:0b:4e:84:1f:81:59:87:8f:c1:70:c6:85: fd:55:c4:f6:68:86:e9:20:fb:23:8f:b5:a4:b3:c8:81:c4:d7: af:75:b5:00:fd:ce:27:d8:24:b5:92:44:e7:58:00:27:0e:4f: a0:61:90:98:6b:0b:ec:47:91:69:09:5a:2d:fa:6f:44:2e:af: 98:35:ae:10:97:98:7e:1c:7d:4a:2f:b8:11:89:ae:c8:f9:37: c4:eb:2d:24:fd:18:6f:6d:99:2e:d3:d7:cc:61:5a:db:ba:41: b5:06:9a:4f:ba:25:ea:c7:47:f4:13:1f:39:b3:15:14:74:23: e2:9c:49:fc:58:16:b4:e6:50:e5:b3:83:00:0c:6a:4a:8c:90: 3a:28:2c:b3:09:02:69:d6:eb:0a:5d:d2:ce:fd:54:96:33:23: 8d:9d:4b:ba -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDGQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUZFNzcxMTAvBgNVBAUTKDY1M0ZBREE1MzhBOUUzNDEyRTdFRkREOEZCNjM5RjIy N0Y1QTNFRTIwHhcNMjUwNDI0MTgxNDAwWhcNMjUwNTAxMTgxNDAwWjAYMRYwFAYD VQQDEw02ODBhN2Y2OS0zNmNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq/BS71FF2zNJOgW/e7AU/UhWop4cLs4eCVTCIxyL9P7z75278nsl4ZsRAS6s 0Ba+2gGojLF85nT4hg+gfjVpXPWRjE4gOK+FaKxiP/kCtB6XWfeI3HS9vJq7lq5m 2HirbhvMhJdxR/ri+/EtKDQbvmxNIVuGDSsMvZUXIvpd3coCfzxP06mkmeGyVnw9 9cZKP8bpiTc4jPWB0HkaH2EhfvwDPoinATlXgWhR+jXhSyXEtC+q9hL9Q3lWVBdf HKwDSN5I8Ut8A6yWwWQHSl+fzuvYgeBXmJB8Z4zY4SgaDdrIQQ1JM2cVeAhg+nP0 PsdYRL5gn0XittNmBzLghnfcOQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHtP1oqZ /dFqJu3ca8z+6L/4y7miMB8GA1UdIwQYMBaAFGU/raU4qeNBLn792PtjnyJ/Wj7i MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RkU3Ny83QjkwOTU1NEZC QUExMUU5ODlBRDgxNDBDNEY5QUUwMi9aVC10cFRpcDQwRXVmdjNZLTJPZkluOWFQ dUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pULXRwVGlwNDBFdWZ2M1ktMk9mSW45YVB1SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RkU3Ny83QjkwOTU1NEZCQUExMUU5ODlBRDgxNDBDNEY5QUUwMi9aVC10cFRpcDQw RXVmdjNZLTJPZkluOWFQdUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAC4gN+z1rWAuFrTwIYssdkZ6vM2sVUHKGMDxEFYgsetO1WnIkPAKDh 3YwGryBfOyUFmMMyOMvcKCnAA7Fg7e/JULhFF+wJvkj18haQsTOgOakmsadtLqaj S7ncfoVnJaYLToQfgVmHj8FwxoX9VcT2aIbpIPsjj7Wks8iBxNevdbUA/c4n2CS1 kkTnWAAnDk+gYZCYawvsR5FpCVot+m9ELq+YNa4Ql5h+HH1KL7gRia7I+TfE6y0k /RhvbZku09fMYVrbukG1BppPuiXqx0f0Ex85sxUUdCPinEn8WBa05lDls4MADGpK jJA6KCyzCQJp1usKXdLO/VSWMyONnUu6 -----END CERTIFICATE-----Generated at Sat Apr 26 14:56:03 2025 by rpki-client