$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6D5D/9DCB68E01D8811E294B955E108B02CD2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.mft File: ZKZlgWrv7XOzB1AH2lM3rH3sS4E.mft (raw, json) Hash identifier: 0q1SPr4UUOTvcUzcISETaX6DWE9eyIQ0oYKXBxMEgc0= Subject key identifier: D4:66:41:AE:EA:77:73:39:83:CB:5A:28:20:51:F1:A6:23:4E:CE:81 Authority key identifier: 64:A6:65:81:6A:EF:ED:73:B3:07:50:07:DA:53:37:AC:7D:EC:4B:81 Certificate issuer: /CN=A91E6D5D/serialNumber=64A665816AEFED73B3075007DA5337AC7DEC4B81 Certificate serial: 1B0C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E6D5D/9DCB68E01D8811E294B955E108B02CD2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.mft Manifest number: 9FEE Signing time: Fri 22 Aug 2025 14:30:36 +0000 Manifest this update: Fri 22 Aug 2025 14:30:35 +0000 Manifest next update: Fri 29 Aug 2025 14:30:35 +0000 Files and hashes: 1: ZKZlgWrv7XOzB1AH2lM3rH3sS4E.crl (hash: nPS1uZoKl2esOLUPNyhXhSsO8Xr1PgPYUBvCEqgqIWw=) 2: 9907DC46D4BC11EF9BDDAF2EC4F9AE02.roa (hash: RYynr8uizf4mxXQD/bYs58a0i9OmwI4vdpj7nHmjiJU=) 3: 959AC422557911EBBD21EB2FC4F9AE02.roa (hash: oMF/P2hGXRHcLkAXgbmeUw5lcthqUMWdcFQRgDGmw2Q=) 4: 20C6F2EC699D11EAA33EAE83C4F9AE02.roa (hash: 68iXhMXoCKzkvFm4ZJIC/ibhTxkbyNkKn12MmIsJUjc=) 5: 191363A69DD911EC99D91668C4F9AE02.roa (hash: oqniAucPfqcKV0mTFTmt9sxkwi/yyX2GOXb0nYNRsyI=) 6: ACC8833824DE11EDAEC0E529C4F9AE02.roa (hash: SpN5g9M2rsSW+Cra37fKcK/lk5XqYbPAMh8S4vUS9qk=) 7: 4FF339D8F01D11EB8C4B505BC4F9AE02.roa (hash: U9RF+JaWcsKZTr1DEGw1Y5hTdB+oWxy9sRXTz5ZgIuo=) 8: C89FD6DA557611EBA04C290BC4F9AE02.roa (hash: Y+JgutBZqKB0sr/67XUkEfaEMyqBwPZIYt+9Yv44r5c=) 9: FC6A19D892D511EC8FBFF32AC4F9AE02.roa (hash: kjWRly5sP345NgQNsNa2Y38tsuhMAJkUf7cDKkslnxQ=) 10: 1BF3A43C15BE11EF93ABFD7DC4F9AE02.roa (hash: Dnw6VZCydK3JoKDSOzotlEvfgmRpxLVN7ezEA2ZyyGo=) 11: 0B24875C7A4411EB804B7430C4F9AE02.roa (hash: Y+xehgtewaeOdOL6PowHHRPVgAd4mQJAADuq74in7FA=) 12: 3D68F8C29A4A11EA94706012C4F9AE02.roa (hash: +Q2D0d9yEIcvHWqL458RmFQjgHnoWa/Nyf3wOjdRqJY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E6D5D/9DCB68E01D8811E294B955E108B02CD2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.crl rsync://rpki.apnic.net/member_repository/A91E6D5D/9DCB68E01D8811E294B955E108B02CD2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 14:30:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6924 (0x1b0c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E6D5D, serialNumber=64A665816AEFED73B3075007DA5337AC7DEC4B81 Validity Not Before: Aug 22 14:30:35 2025 GMT Not After : Aug 29 14:30:35 2025 GMT Subject: CN=68a87f0b-0a28 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:6c:26:0a:4a:90:81:67:a3:1d:d4:7d:40:fb: 69:59:49:c6:34:8c:c1:7f:59:b9:6e:a0:d0:04:e3: e2:be:9d:c7:52:10:59:4b:c8:9c:23:df:36:a9:4a: 7b:d5:39:37:c2:62:92:f2:61:5c:cc:1e:89:20:8e: 7b:ec:12:15:e1:4f:ff:30:59:28:85:31:5a:b5:9e: 8a:23:2f:e0:53:0f:d4:1b:e3:5a:79:b6:1b:fb:04: 63:72:2d:5f:b5:de:a1:9b:d8:29:93:95:0c:b5:50: 45:4c:31:5f:1a:7b:15:91:7c:ad:79:b0:aa:80:f3: 03:f6:df:8a:28:63:a3:87:87:7d:14:46:f4:37:11: 25:ee:96:53:6b:10:3a:ed:f3:de:b8:cb:68:02:ab: 1f:e0:3f:03:b8:2b:94:84:18:7a:65:2f:cb:51:69: d4:f3:b4:43:fe:79:c0:a1:ce:aa:31:2b:bb:ac:8c: 43:db:6a:cd:7a:60:fb:df:89:d7:be:40:dd:bc:44: 8e:df:ba:69:6f:3c:70:d8:3a:fe:6b:c1:68:e6:09: a9:3b:0c:4f:42:86:d5:4b:22:4f:d6:af:a4:76:6c: 55:35:a0:fd:8b:d5:38:51:39:89:61:2b:0b:b1:3a: 18:c1:d3:7e:49:51:79:0f:2b:54:fc:1e:b4:96:7b: 1c:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:66:41:AE:EA:77:73:39:83:CB:5A:28:20:51:F1:A6:23:4E:CE:81 X509v3 Authority Key Identifier: keyid:64:A6:65:81:6A:EF:ED:73:B3:07:50:07:DA:53:37:AC:7D:EC:4B:81 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E6D5D/9DCB68E01D8811E294B955E108B02CD2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6D5D/9DCB68E01D8811E294B955E108B02CD2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 48:d1:44:ba:d0:dc:cb:03:f0:c4:06:4b:85:56:fa:e3:f2:e6: 8a:43:43:49:a1:40:8d:6b:c4:f6:1c:9d:8e:0c:57:37:b9:1e: 76:9e:fb:6b:10:f6:c9:e8:29:88:c0:3c:53:d1:ca:0d:d2:7c: d8:db:f8:ce:3b:33:c3:bd:65:f6:72:1e:f6:9d:8b:44:61:d4: 3f:61:94:ba:9e:f7:a8:31:3a:37:d7:c7:88:14:e4:54:0d:ef: 63:b9:92:16:1e:83:dd:40:df:ec:34:60:46:0c:3b:ea:2d:a7: b4:67:86:ad:19:17:b8:60:4c:d9:8b:2b:bb:c2:f3:9b:a8:6e: fc:93:d8:95:ed:db:b5:bc:3f:65:a6:7f:ae:2f:c8:39:6c:08: 27:57:2f:5f:65:e2:bf:23:2b:fd:8f:8f:8b:58:8b:b8:0b:bd: 15:05:0b:9b:8e:be:41:92:8c:22:e4:04:f6:9c:2f:74:d9:17: 0f:29:ec:74:e3:5b:4a:1e:ca:5e:90:34:a9:31:72:c4:ce:6c: 6d:ad:ec:7d:90:27:9b:ac:1c:de:ff:fb:b2:6f:2b:31:f8:7d: 8f:d3:f5:a2:32:5f:d8:55:41:1d:88:74:a3:e7:69:ee:e7:c3: 03:2a:b0:87:d8:32:ef:96:02:f2:bf:83:7f:aa:e3:8c:29:d1: 1a:0d:80:55 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGwwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTZENUQxMTAvBgNVBAUTKDY0QTY2NTgxNkFFRkVENzNCMzA3NTAwN0RBNTMzN0FD N0RFQzRCODEwHhcNMjUwODIyMTQzMDM1WhcNMjUwODI5MTQzMDM1WjAYMRYwFAYD VQQDEw02OGE4N2YwYi0wYTI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqWwmCkqQgWejHdR9QPtpWUnGNIzBf1m5bqDQBOPivp3HUhBZS8icI982qUp7 1Tk3wmKS8mFczB6JII577BIV4U//MFkohTFatZ6KIy/gUw/UG+NaebYb+wRjci1f td6hm9gpk5UMtVBFTDFfGnsVkXytebCqgPMD9t+KKGOjh4d9FEb0NxEl7pZTaxA6 7fPeuMtoAqsf4D8DuCuUhBh6ZS/LUWnU87RD/nnAoc6qMSu7rIxD22rNemD734nX vkDdvESO37ppbzxw2Dr+a8Fo5gmpOwxPQobVSyJP1q+kdmxVNaD9i9U4UTmJYSsL sToYwdN+SVF5DytU/B60lnscTwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNRmQa7q d3M5g8taKCBR8aYjTs6BMB8GA1UdIwQYMBaAFGSmZYFq7+1zswdQB9pTN6x97EuB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNkQ1RC85RENCNjhFMDFE ODgxMUUyOTRCOTU1RTEwOEIwMkNEMi9aS1psZ1dydjdYT3pCMUFIMmxNM3JIM3NT NEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pLWmxnV3J2N1hPekIxQUgybE0zckgzc1M0RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NkQ1RC85RENCNjhFMDFEODgxMUUyOTRCOTU1RTEwOEIwMkNEMi9aS1psZ1dydjdY T3pCMUFIMmxNM3JIM3NTNEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBI0US60NzLA/DEBkuFVvrj8uaKQ0NJoUCNa8T2HJ2ODFc3uR52nvtr EPbJ6CmIwDxT0coN0nzY2/jOOzPDvWX2ch72nYtEYdQ/YZS6nveoMTo318eIFORU De9juZIWHoPdQN/sNGBGDDvqLae0Z4atGRe4YEzZiyu7wvObqG78k9iV7du1vD9l pn+uL8g5bAgnVy9fZeK/Iyv9j4+LWIu4C70VBQubjr5Bkowi5AT2nC902RcPKex0 41tKHspekDSpMXLEzmxtrex9kCebrBze//uybysx+H2P0/WiMl/YVUEdiHSj52nu 58MDKrCH2DLvlgLyv4N/quOMKdEaDYBV -----END CERTIFICATE-----Generated at Sun Aug 24 00:45:27 2025 by rpki-client