$ rpki-client -vvf rpki.apnic.net/member_repository/A915FE77/7B909554FBAA11E989AD8140C4F9AE02/ZT-tpTip40Eufv3Y-2OfIn9aPuI.mft File: ZT-tpTip40Eufv3Y-2OfIn9aPuI.mft (raw, json) Hash identifier: dJVue49EcNuL+/Q9OGQuQup7mnqLPu7Tz+Rl984PsUQ= Subject key identifier: D5:88:9E:D4:3A:62:20:CB:F2:8D:F4:92:B9:3F:78:B5:51:A8:8F:49 Authority key identifier: 65:3F:AD:A5:38:A9:E3:41:2E:7E:FD:D8:FB:63:9F:22:7F:5A:3E:E2 Certificate issuer: /CN=A915FE77/serialNumber=653FADA538A9E3412E7EFDD8FB639F227F5A3EE2 Certificate serial: 0CC7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZT-tpTip40Eufv3Y-2OfIn9aPuI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915FE77/7B909554FBAA11E989AD8140C4F9AE02/ZT-tpTip40Eufv3Y-2OfIn9aPuI.mft Manifest number: 0CC2 Signing time: Tue 04 Nov 2025 18:15:38 +0000 Manifest this update: Tue 04 Nov 2025 18:15:38 +0000 Manifest next update: Tue 11 Nov 2025 18:15:38 +0000 Files and hashes: 1: ZT-tpTip40Eufv3Y-2OfIn9aPuI.crl (hash: vz3nuG0hV9X+RFTpOM0ONuHtYJHNTIMqgk44iWwXZd0=) 2: 357D722C67D911EEA787145FC4F9AE02.roa (hash: 7I2IqOR2xiPyGuWyUJiiPfmupUfqm37Gh46DwQEOptk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915FE77/7B909554FBAA11E989AD8140C4F9AE02/ZT-tpTip40Eufv3Y-2OfIn9aPuI.crl rsync://rpki.apnic.net/member_repository/A915FE77/7B909554FBAA11E989AD8140C4F9AE02/ZT-tpTip40Eufv3Y-2OfIn9aPuI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZT-tpTip40Eufv3Y-2OfIn9aPuI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 18:15:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3271 (0xcc7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915FE77, serialNumber=653FADA538A9E3412E7EFDD8FB639F227F5A3EE2 Validity Not Before: Nov 4 18:15:38 2025 GMT Not After : Nov 11 18:15:38 2025 GMT Subject: CN=690a42ca-4895 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:b6:25:de:77:02:bc:9a:49:0e:66:3f:b7:74: e9:8a:45:ff:82:0e:fd:13:85:fe:98:39:ce:ed:dc: 5f:63:8e:e9:b4:a4:ea:b9:3d:cc:a6:a6:0b:42:b1: 6a:2a:1b:78:d5:ee:7e:18:fe:40:84:ef:df:63:0b: 85:40:44:13:2e:f1:2c:20:25:40:34:e6:13:de:9d: ac:8c:6e:48:27:25:b3:88:5f:73:99:58:8e:55:08: f9:0a:b3:c2:a6:94:41:15:59:9f:05:b4:4f:e6:b2: b4:97:27:ee:ce:0a:d5:15:fd:74:91:13:12:cf:b5: c6:5a:41:b8:2e:c0:a0:e8:58:4e:e2:60:ec:4a:60: 5f:c4:ac:f6:bf:99:de:61:a4:d7:b5:e0:76:88:78: 28:16:c3:6c:fa:86:e2:4a:20:cd:bd:e6:a0:b6:d6: 13:07:a2:ae:c4:a1:bb:e6:52:71:d2:f0:10:23:5c: 12:01:6d:6d:8e:ce:80:83:a8:a1:e2:e5:e5:cc:28: 13:d8:c1:b0:2d:9c:24:ae:ac:e6:3e:44:fd:f5:61: f7:4b:5f:17:79:f1:e7:1e:42:ef:5e:ad:38:c9:28: 89:7a:48:66:50:05:8f:b2:ea:14:b5:f8:49:a0:28: 9a:a6:af:58:80:81:ab:2a:d1:b8:cb:43:7f:47:9a: 78:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:88:9E:D4:3A:62:20:CB:F2:8D:F4:92:B9:3F:78:B5:51:A8:8F:49 X509v3 Authority Key Identifier: keyid:65:3F:AD:A5:38:A9:E3:41:2E:7E:FD:D8:FB:63:9F:22:7F:5A:3E:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915FE77/7B909554FBAA11E989AD8140C4F9AE02/ZT-tpTip40Eufv3Y-2OfIn9aPuI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZT-tpTip40Eufv3Y-2OfIn9aPuI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915FE77/7B909554FBAA11E989AD8140C4F9AE02/ZT-tpTip40Eufv3Y-2OfIn9aPuI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 68:8d:25:f2:42:85:12:43:30:61:3c:02:0a:97:3c:b6:39:fb: 27:e5:c6:bf:d1:27:d9:46:e5:7b:64:ae:ea:f9:3b:45:90:33: 99:ab:8d:66:e7:34:2c:c1:06:8e:81:fc:d7:18:be:fd:76:d6: 0e:5e:a3:6c:e9:de:e7:55:90:55:ac:85:f0:68:4d:be:f2:cc: d6:41:dc:d2:62:5a:56:07:be:7d:7f:82:9e:90:23:f9:78:4e: 71:9a:f6:8a:e4:e4:fd:36:b2:9e:b3:b0:82:45:a8:c1:ec:cf: b1:3e:a1:6e:31:2a:af:14:b3:b5:00:45:f6:c8:4f:b0:65:a7: 33:cd:da:4b:b2:69:79:51:13:2e:e6:8d:d3:6a:ef:78:d2:da: c9:f9:05:ec:db:1b:d9:00:62:48:c7:54:53:72:73:4c:cd:3e: 29:e5:1f:27:34:a1:f4:ba:fc:1a:e9:48:72:1f:47:a0:9b:ec: 99:ab:28:44:8f:59:7e:63:37:ba:6a:f5:5c:ca:37:c7:12:fd: bb:ea:38:6e:9b:ea:9b:c3:50:f8:c1:99:75:ac:91:b5:27:e4: 7a:55:78:9c:56:48:7a:c9:4a:80:80:59:90:76:35:d3:e8:11: ce:e8:4c:7e:90:69:41:4e:5e:a2:45:cf:5c:87:29:ca:68:e2: 9d:d2:06:51 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDMcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUZFNzcxMTAvBgNVBAUTKDY1M0ZBREE1MzhBOUUzNDEyRTdFRkREOEZCNjM5RjIy N0Y1QTNFRTIwHhcNMjUxMTA0MTgxNTM4WhcNMjUxMTExMTgxNTM4WjAYMRYwFAYD VQQDEw02OTBhNDJjYS00ODk1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA67Yl3ncCvJpJDmY/t3TpikX/gg79E4X+mDnO7dxfY47ptKTquT3MpqYLQrFq Kht41e5+GP5AhO/fYwuFQEQTLvEsICVANOYT3p2sjG5IJyWziF9zmViOVQj5CrPC ppRBFVmfBbRP5rK0lyfuzgrVFf10kRMSz7XGWkG4LsCg6FhO4mDsSmBfxKz2v5ne YaTXteB2iHgoFsNs+obiSiDNveagttYTB6KuxKG75lJx0vAQI1wSAW1tjs6Ag6ih 4uXlzCgT2MGwLZwkrqzmPkT99WH3S18XefHnHkLvXq04ySiJekhmUAWPsuoUtfhJ oCiapq9YgIGrKtG4y0N/R5p4QQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNWIntQ6 YiDL8o30krk/eLVRqI9JMB8GA1UdIwQYMBaAFGU/raU4qeNBLn792PtjnyJ/Wj7i MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RkU3Ny83QjkwOTU1NEZC QUExMUU5ODlBRDgxNDBDNEY5QUUwMi9aVC10cFRpcDQwRXVmdjNZLTJPZkluOWFQ dUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pULXRwVGlwNDBFdWZ2M1ktMk9mSW45YVB1SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RkU3Ny83QjkwOTU1NEZCQUExMUU5ODlBRDgxNDBDNEY5QUUwMi9aVC10cFRpcDQw RXVmdjNZLTJPZkluOWFQdUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBojSXyQoUSQzBhPAIKlzy2Ofsn5ca/0SfZRuV7ZK7q+TtFkDOZq41m 5zQswQaOgfzXGL79dtYOXqNs6d7nVZBVrIXwaE2+8szWQdzSYlpWB759f4KekCP5 eE5xmvaK5OT9NrKes7CCRajB7M+xPqFuMSqvFLO1AEX2yE+wZaczzdpLsml5URMu 5o3Tau940trJ+QXs2xvZAGJIx1RTcnNMzT4p5R8nNKH0uvwa6UhyH0egm+yZqyhE j1l+Yze6avVcyjfHEv276jhum+qbw1D4wZl1rJG1J+R6VXicVkh6yUqAgFmQdjXT 6BHO6Ex+kGlBTl6iRc9chynKaOKd0gZR -----END CERTIFICATE-----Generated at Wed Nov 5 07:49:53 2025 by rpki-client