$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7150/5842E9E092C011EB8AA5A920C4F9AE02/ZzeGJRGhdM3TidNT8ODnLJdzzoQ.mft File: ZzeGJRGhdM3TidNT8ODnLJdzzoQ.mft (raw, json) Hash identifier: s9FIuuFjcDvRLsCHynm4DQ78B8gVAZsbufZovznZLBQ= Subject key identifier: 44:37:62:12:57:1F:DE:AA:CF:54:0F:25:92:65:88:B1:47:16:D4:AC Authority key identifier: 67:37:86:25:11:A1:74:CD:D3:89:D3:53:F0:E0:E7:2C:97:73:CE:84 Certificate issuer: /CN=A91A7150/serialNumber=6737862511A174CDD389D353F0E0E72C9773CE84 Certificate serial: 0663 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZzeGJRGhdM3TidNT8ODnLJdzzoQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A7150/5842E9E092C011EB8AA5A920C4F9AE02/ZzeGJRGhdM3TidNT8ODnLJdzzoQ.mft Manifest number: 065D Signing time: Fri 08 Aug 2025 22:59:00 +0000 Manifest this update: Fri 08 Aug 2025 22:58:59 +0000 Manifest next update: Fri 15 Aug 2025 22:58:59 +0000 Files and hashes: 1: ZzeGJRGhdM3TidNT8ODnLJdzzoQ.crl (hash: lD0tagxyLW6cNk+0L5WDOHnVRLJ4lP/uzb3qcK5u3RM=) 2: BA7F7BA892C211EBBBF0055FC4F9AE02.roa (hash: DxARsL+2J5rkvhwXm2iR36A3nQFpWBmz2UuZUXtaoP8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A7150/5842E9E092C011EB8AA5A920C4F9AE02/ZzeGJRGhdM3TidNT8ODnLJdzzoQ.crl rsync://rpki.apnic.net/member_repository/A91A7150/5842E9E092C011EB8AA5A920C4F9AE02/ZzeGJRGhdM3TidNT8ODnLJdzzoQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZzeGJRGhdM3TidNT8ODnLJdzzoQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1635 (0x663) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A7150, serialNumber=6737862511A174CDD389D353F0E0E72C9773CE84 Validity Not Before: Aug 8 22:58:59 2025 GMT Not After : Aug 15 22:58:59 2025 GMT Subject: CN=68968134-ceb3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:48:aa:30:fc:9a:85:8b:06:dd:56:40:2c:c4: 81:00:65:2a:14:9c:8f:9a:ce:af:1a:d4:09:8d:46: 96:fd:fb:74:38:c0:c2:53:2c:58:1b:fa:64:55:e3: 17:22:f7:e6:0e:af:e1:db:da:c1:ef:cc:79:1f:b7: 93:89:47:19:56:b7:1c:6a:c6:ea:e9:71:7a:58:c1: d1:6f:e8:02:ce:ba:be:fc:b9:34:dc:ea:45:bf:3c: 79:0c:b2:98:4c:e7:51:c4:af:fa:b2:f9:f1:72:9a: 38:1c:e5:6c:e3:47:bb:27:80:dc:df:11:12:b7:a1: f9:a8:0b:e9:cf:6a:4e:f1:c7:89:2c:25:14:3e:8d: 81:d9:da:dc:6c:78:94:6f:9e:b6:cb:2a:9a:03:5b: 9d:2e:6a:70:ea:46:ff:75:26:87:61:e2:0d:65:1a: a8:a6:70:6a:f4:5e:3b:19:73:6c:d7:38:23:dc:ee: 89:26:80:9e:41:23:0a:27:c7:2e:f5:5d:1c:fd:c3: cc:46:5c:60:49:b7:9c:8b:0a:54:85:8f:86:56:bd: da:44:b6:3b:c0:86:c2:81:9d:d7:35:e0:0a:84:8f: 6d:b1:89:a8:7c:0c:6f:6a:51:61:be:e2:74:67:c7: 47:6a:11:6b:d1:c1:7d:d6:ce:46:fc:50:f7:6a:a0: d3:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:37:62:12:57:1F:DE:AA:CF:54:0F:25:92:65:88:B1:47:16:D4:AC X509v3 Authority Key Identifier: keyid:67:37:86:25:11:A1:74:CD:D3:89:D3:53:F0:E0:E7:2C:97:73:CE:84 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A7150/5842E9E092C011EB8AA5A920C4F9AE02/ZzeGJRGhdM3TidNT8ODnLJdzzoQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZzeGJRGhdM3TidNT8ODnLJdzzoQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7150/5842E9E092C011EB8AA5A920C4F9AE02/ZzeGJRGhdM3TidNT8ODnLJdzzoQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 55:31:45:be:19:0b:4c:a2:fd:95:9f:0c:6d:ee:36:0d:9c:55: 7c:61:ab:20:b2:ea:31:a5:03:f1:91:d0:ee:1d:d4:e6:2b:49: db:e3:41:62:bc:ee:40:c9:ba:61:3c:09:f3:df:99:a3:c2:db: 9d:f3:ff:ac:97:23:6b:d5:e7:c1:0e:9b:a2:be:ed:d1:f4:1c: f9:d5:cf:34:c6:bf:0c:d6:2f:d7:bf:37:80:83:39:8b:5c:21: d4:24:75:ea:f7:78:c4:b2:ff:32:1f:8e:9c:56:03:19:3c:2e: 93:87:a3:c9:92:db:68:1f:f7:1a:ff:1a:52:eb:a1:f6:77:66: 88:2b:ff:de:f4:84:32:4d:1e:2c:3b:d6:ae:d4:3d:53:b6:bb: 1e:c2:0d:e9:18:18:b5:42:a8:40:93:00:9f:25:87:db:f0:13: ed:36:fe:c1:bc:33:c0:6b:46:ae:7a:58:73:50:b0:8f:bb:98: 26:08:30:7c:d2:c4:e3:57:c4:73:3a:c9:61:ef:1b:22:25:e0: 2f:05:cc:e0:b9:57:c9:3a:cc:c9:35:fe:a5:ab:a0:f6:7a:c5: 41:72:52:2f:e1:70:c0:bc:c6:db:27:c8:0b:86:65:06:78:28: fd:4c:2f:da:c8:b4:67:14:4f:5b:b8:53:77:73:89:dc:6c:33: 45:9a:69:29 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBmMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTcxNTAxMTAvBgNVBAUTKDY3Mzc4NjI1MTFBMTc0Q0REMzg5RDM1M0YwRTBFNzJD OTc3M0NFODQwHhcNMjUwODA4MjI1ODU5WhcNMjUwODE1MjI1ODU5WjAYMRYwFAYD VQQDEw02ODk2ODEzNC1jZWIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApUiqMPyahYsG3VZALMSBAGUqFJyPms6vGtQJjUaW/ft0OMDCUyxYG/pkVeMX IvfmDq/h29rB78x5H7eTiUcZVrccasbq6XF6WMHRb+gCzrq+/Lk03OpFvzx5DLKY TOdRxK/6svnxcpo4HOVs40e7J4Dc3xESt6H5qAvpz2pO8ceJLCUUPo2B2drcbHiU b562yyqaA1udLmpw6kb/dSaHYeINZRqopnBq9F47GXNs1zgj3O6JJoCeQSMKJ8cu 9V0c/cPMRlxgSbeciwpUhY+GVr3aRLY7wIbCgZ3XNeAKhI9tsYmofAxvalFhvuJ0 Z8dHahFr0cF91s5G/FD3aqDTqQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEQ3YhJX H96qz1QPJZJliLFHFtSsMB8GA1UdIwQYMBaAFGc3hiURoXTN04nTU/Dg5yyXc86E MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNzE1MC81ODQyRTlFMDky QzAxMUVCOEFBNUE5MjBDNEY5QUUwMi9aemVHSlJHaGRNM1RpZE5UOE9EbkxKZHp6 b1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1p6ZUdKUkdoZE0zVGlkTlQ4T0RuTEpkenpvUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NzE1MC81ODQyRTlFMDkyQzAxMUVCOEFBNUE5MjBDNEY5QUUwMi9aemVHSlJHaGRN M1RpZE5UOE9EbkxKZHp6b1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBVMUW+GQtMov2Vnwxt7jYNnFV8YasgsuoxpQPxkdDuHdTmK0nb40Fi vO5AybphPAnz35mjwtud8/+slyNr1efBDpuivu3R9Bz51c80xr8M1i/XvzeAgzmL XCHUJHXq93jEsv8yH46cVgMZPC6Th6PJkttoH/ca/xpS66H2d2aIK//e9IQyTR4s O9au1D1Ttrsewg3pGBi1QqhAkwCfJYfb8BPtNv7BvDPAa0auelhzULCPu5gmCDB8 0sTjV8RzOslh7xsiJeAvBczguVfJOszJNf6lq6D2esVBclIv4XDAvMbbJ8gLhmUG eCj9TC/ayLRnFE9buFN3c4ncbDNFmmkp -----END CERTIFICATE-----Generated at Sun Aug 10 18:51:21 2025 by rpki-client