$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6D5D/9DCB68E01D8811E294B955E108B02CD2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.mft File: ZKZlgWrv7XOzB1AH2lM3rH3sS4E.mft (raw, json) Hash identifier: LMVhG1PFAgANRjtjur6ajUP8WMv1LuTUlwRCx436gFo= Subject key identifier: E3:71:12:5A:11:D1:76:A3:37:A1:4E:FC:CD:E9:36:64:17:42:08:05 Authority key identifier: 64:A6:65:81:6A:EF:ED:73:B3:07:50:07:DA:53:37:AC:7D:EC:4B:81 Certificate issuer: /CN=A91E6D5D/serialNumber=64A665816AEFED73B3075007DA5337AC7DEC4B81 Certificate serial: 1AF2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E6D5D/9DCB68E01D8811E294B955E108B02CD2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.mft Manifest number: 9F86 Signing time: Wed 02 Jul 2025 14:30:42 +0000 Manifest this update: Wed 02 Jul 2025 14:30:42 +0000 Manifest next update: Wed 09 Jul 2025 14:30:42 +0000 Files and hashes: 1: ZKZlgWrv7XOzB1AH2lM3rH3sS4E.crl (hash: qEO5rbXfxePPnsAmF5ox7dfkRzHdTvsQyaGW9AU7VZE=) 2: 9907DC46D4BC11EF9BDDAF2EC4F9AE02.roa (hash: RYynr8uizf4mxXQD/bYs58a0i9OmwI4vdpj7nHmjiJU=) 3: 959AC422557911EBBD21EB2FC4F9AE02.roa (hash: oMF/P2hGXRHcLkAXgbmeUw5lcthqUMWdcFQRgDGmw2Q=) 4: 20C6F2EC699D11EAA33EAE83C4F9AE02.roa (hash: 68iXhMXoCKzkvFm4ZJIC/ibhTxkbyNkKn12MmIsJUjc=) 5: 191363A69DD911EC99D91668C4F9AE02.roa (hash: oqniAucPfqcKV0mTFTmt9sxkwi/yyX2GOXb0nYNRsyI=) 6: ACC8833824DE11EDAEC0E529C4F9AE02.roa (hash: SpN5g9M2rsSW+Cra37fKcK/lk5XqYbPAMh8S4vUS9qk=) 7: 4FF339D8F01D11EB8C4B505BC4F9AE02.roa (hash: U9RF+JaWcsKZTr1DEGw1Y5hTdB+oWxy9sRXTz5ZgIuo=) 8: C89FD6DA557611EBA04C290BC4F9AE02.roa (hash: Y+JgutBZqKB0sr/67XUkEfaEMyqBwPZIYt+9Yv44r5c=) 9: FC6A19D892D511EC8FBFF32AC4F9AE02.roa (hash: kjWRly5sP345NgQNsNa2Y38tsuhMAJkUf7cDKkslnxQ=) 10: 1BF3A43C15BE11EF93ABFD7DC4F9AE02.roa (hash: Dnw6VZCydK3JoKDSOzotlEvfgmRpxLVN7ezEA2ZyyGo=) 11: 0B24875C7A4411EB804B7430C4F9AE02.roa (hash: Y+xehgtewaeOdOL6PowHHRPVgAd4mQJAADuq74in7FA=) 12: 3D68F8C29A4A11EA94706012C4F9AE02.roa (hash: +Q2D0d9yEIcvHWqL458RmFQjgHnoWa/Nyf3wOjdRqJY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E6D5D/9DCB68E01D8811E294B955E108B02CD2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.crl rsync://rpki.apnic.net/member_repository/A91E6D5D/9DCB68E01D8811E294B955E108B02CD2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 14:30:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6898 (0x1af2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E6D5D, serialNumber=64A665816AEFED73B3075007DA5337AC7DEC4B81 Validity Not Before: Jul 2 14:30:42 2025 GMT Not After : Jul 9 14:30:42 2025 GMT Subject: CN=68654292-1957 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:de:35:2d:06:a0:69:d7:ca:3c:f9:d6:41:01: 32:92:17:05:86:3a:a9:51:fc:7a:90:35:11:56:28: 02:09:55:c2:f6:93:3a:96:f1:d3:66:cc:0a:5d:53: 55:63:89:73:45:7b:d5:ba:6a:2e:62:6c:08:d5:c6: 27:8b:37:83:d3:bd:d9:67:7c:73:b1:fa:41:15:6b: 02:96:b7:74:c2:7f:02:e8:00:14:65:5e:e3:f2:2b: a4:2c:c9:47:14:80:49:1a:24:08:eb:70:6e:ca:e3: 41:64:eb:b2:14:c5:b6:cf:73:eb:0d:c8:44:9e:5b: e5:1e:42:8b:9c:ea:2f:42:5c:fa:7f:19:cc:43:dc: 3d:cc:44:b0:3c:54:d2:9d:85:0c:2e:66:0d:c5:e8: eb:95:03:53:bb:94:6b:f0:7f:83:3e:b9:39:ed:75: 11:3c:52:8a:59:ca:c7:7e:a9:91:ab:92:7c:9b:b1: 19:76:3a:c4:26:6f:21:75:da:23:67:f9:9d:ba:84: 10:07:f2:eb:a3:70:4f:95:9a:64:d7:46:b1:2d:36: 9c:e0:08:fa:1d:e7:a6:94:19:29:ab:91:e6:3c:7e: cd:59:80:ba:ad:37:d8:2f:e8:17:79:8b:77:04:aa: 67:0c:99:86:a4:af:cb:50:cb:2e:f4:fb:20:6e:02: b8:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:71:12:5A:11:D1:76:A3:37:A1:4E:FC:CD:E9:36:64:17:42:08:05 X509v3 Authority Key Identifier: keyid:64:A6:65:81:6A:EF:ED:73:B3:07:50:07:DA:53:37:AC:7D:EC:4B:81 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E6D5D/9DCB68E01D8811E294B955E108B02CD2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6D5D/9DCB68E01D8811E294B955E108B02CD2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5b:31:b9:82:40:bc:c4:50:a3:21:19:ec:26:76:76:25:10:e5: 87:df:f2:eb:c9:a4:54:8b:dc:68:f8:be:2d:49:65:7a:75:b1: d9:07:f9:db:7e:e7:de:7c:0f:bb:80:83:bc:d3:d1:2a:7d:37: 93:ac:16:0f:4e:0c:06:e3:54:e7:91:5a:14:0f:c1:14:a3:91: c7:59:4c:d7:53:c6:0b:47:1b:a7:4f:c6:62:95:57:63:6e:5b: 42:2f:ed:02:27:30:4b:2f:c6:6b:b0:91:a1:b6:dd:89:7b:2b: fb:d2:b7:f6:cc:d1:26:9c:ed:15:02:f1:6e:bd:b9:d3:4a:0b: b4:6f:2b:31:87:9e:d0:3f:a1:8e:59:f0:e1:7e:27:8e:a2:db: 3e:ed:ec:7e:9f:6d:ac:90:c6:98:50:e1:d2:34:03:44:bd:1c: 21:01:70:80:98:48:98:27:af:0e:49:4d:e6:58:b0:cf:da:49: 54:20:4a:13:0d:60:16:1d:f2:19:0d:b9:e0:a9:c5:c6:f6:6a: 1c:1f:53:99:50:05:ff:a8:96:a5:ab:58:5e:5e:60:9e:5d:b7: d9:59:f1:7d:f6:02:9b:20:50:60:51:cf:90:d7:bf:f3:31:58: 22:50:82:74:8b:24:e8:8f:1e:c2:f8:b9:3e:34:79:89:2b:fa: 4e:7f:19:d6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGvIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTZENUQxMTAvBgNVBAUTKDY0QTY2NTgxNkFFRkVENzNCMzA3NTAwN0RBNTMzN0FD N0RFQzRCODEwHhcNMjUwNzAyMTQzMDQyWhcNMjUwNzA5MTQzMDQyWjAYMRYwFAYD VQQDEw02ODY1NDI5Mi0xOTU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0d41LQagadfKPPnWQQEykhcFhjqpUfx6kDURVigCCVXC9pM6lvHTZswKXVNV Y4lzRXvVumouYmwI1cYnizeD073ZZ3xzsfpBFWsClrd0wn8C6AAUZV7j8iukLMlH FIBJGiQI63BuyuNBZOuyFMW2z3PrDchEnlvlHkKLnOovQlz6fxnMQ9w9zESwPFTS nYUMLmYNxejrlQNTu5Rr8H+DPrk57XURPFKKWcrHfqmRq5J8m7EZdjrEJm8hddoj Z/mduoQQB/Lro3BPlZpk10axLTac4Aj6HeemlBkpq5HmPH7NWYC6rTfYL+gXeYt3 BKpnDJmGpK/LUMsu9PsgbgK40QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFONxEloR 0XajN6FO/M3pNmQXQggFMB8GA1UdIwQYMBaAFGSmZYFq7+1zswdQB9pTN6x97EuB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNkQ1RC85RENCNjhFMDFE ODgxMUUyOTRCOTU1RTEwOEIwMkNEMi9aS1psZ1dydjdYT3pCMUFIMmxNM3JIM3NT NEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pLWmxnV3J2N1hPekIxQUgybE0zckgzc1M0RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NkQ1RC85RENCNjhFMDFEODgxMUUyOTRCOTU1RTEwOEIwMkNEMi9aS1psZ1dydjdY T3pCMUFIMmxNM3JIM3NTNEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBbMbmCQLzEUKMhGewmdnYlEOWH3/LryaRUi9xo+L4tSWV6dbHZB/nb fufefA+7gIO809EqfTeTrBYPTgwG41TnkVoUD8EUo5HHWUzXU8YLRxunT8ZilVdj bltCL+0CJzBLL8ZrsJGhtt2Jeyv70rf2zNEmnO0VAvFuvbnTSgu0bysxh57QP6GO WfDhfieOots+7ex+n22skMaYUOHSNANEvRwhAXCAmEiYJ68OSU3mWLDP2klUIEoT DWAWHfIZDbngqcXG9mocH1OZUAX/qJalq1heXmCeXbfZWfF99gKbIFBgUc+Q17/z MVgiUIJ0iyTojx7C+Lk+NHmJK/pOfxnW -----END CERTIFICATE-----Generated at Thu Jul 3 09:24:22 2025 by rpki-client