$ rpki-client -vvf rpki.apnic.net/member_repository/A9165568/BD1A95D21D8711E29BE3E6DF08B02CD2/Zwl-SS9z1tvTH6AWotW1uGqbP9g.mft File: Zwl-SS9z1tvTH6AWotW1uGqbP9g.mft (raw, json) Hash identifier: aipAY3+Vh3Z69mkvwZgBaPG0uEX9M0iHilQlwznhBK8= Subject key identifier: 03:3F:05:2D:A0:A6:25:86:27:44:21:C9:01:9A:12:74:25:84:90:88 Authority key identifier: 67:09:7E:49:2F:73:D6:DB:D3:1F:A0:16:A2:D5:B5:B8:6A:9B:3F:D8 Certificate issuer: /CN=A9165568/serialNumber=67097E492F73D6DBD31FA016A2D5B5B86A9B3FD8 Certificate serial: 1CB5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Zwl-SS9z1tvTH6AWotW1uGqbP9g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9165568/BD1A95D21D8711E29BE3E6DF08B02CD2/Zwl-SS9z1tvTH6AWotW1uGqbP9g.mft Manifest number: 3EBB Signing time: Fri 04 Apr 2025 14:29:00 +0000 Manifest this update: Fri 04 Apr 2025 14:29:00 +0000 Manifest next update: Fri 11 Apr 2025 14:29:00 +0000 Files and hashes: 1: Zwl-SS9z1tvTH6AWotW1uGqbP9g.crl (hash: GGw+5hMtzRuE0QsgUEt+ygj3ymaqaLs9OND1/mdlgN4=) 2: 711F090E8AB411EA89D83541C4F9AE02.roa (hash: V43Il4g6nzN/Oi9NZNkfIg3qfCZBm83zni76jTMor3c=) 3: D2EF531219AE11EB8D3BC20EC4F9AE02.roa (hash: ecbq5n9i8YsI1DnV/FNeUcy7K6RyCgb2n5KgFVtlRys=) 4: 777F5CEE8AA611EA94BC0D13C4F9AE02.roa (hash: QIByum0Q8MqWfLpB0ykV4dVr25yJxf+XqNJq06uiuWw=) 5: E1B073B689F011EABAEDCE2FC4F9AE02.roa (hash: 3mizSI3ttwr9fYLhX95SY8SiU7O6qd9AnRwusH6MEfo=) 6: 671FF9F6943011EA8988B883C4F9AE02.roa (hash: Wdg4VF5GLoHlwlPyl6+HlE/ibrc1SiBo2CXSWmJGq0s=) 7: A310F2FC8AB811EA9F89B54EC4F9AE02.roa (hash: kTpEYCAmunxJIp4Id6sV5egINJOtqBpQw2yNKgEwrR4=) 8: E206DF40E79011E699B81D0FC4F9AE02.roa (hash: 05JiHZhW4FX5F4m2ta1eoZQOXujb14zXuKofXn8V9ts=) 9: 095798588ABA11EAB5EDDE54C4F9AE02.roa (hash: lXnIjaE79MbFJFMKpPmyaG2gWaI8IDWerJKv1saa/n0=) 10: 66891B80943011EA8988B883C4F9AE02.roa (hash: e8EsUIru5I+kvcxrClJSF0og6ruHigKw4K5qZx/355g=) 11: 727C68508AB411EA89D83541C4F9AE02.roa (hash: 3/YHfMJFd4+/uHvYeznP2jrI3k3cNg88tQA8zxhGa9Q=) 12: A75964A28E4B11EA8A347A3EC4F9AE02.roa (hash: KqNlQBgDzVn6oYtQRMX2oZuYkDyyOGts1nvV6+UnhlU=) 13: 084044FC19AC11EB8759456DC4F9AE02.roa (hash: W9G6BLl6GrAu6NpuOira3w9ONwVWK7LaREYQeOaaW/o=) 14: 5D24529CAB0C11EA8D5ADE09C4F9AE02.roa (hash: jQLZJj3VvPR1niUIT7DA9sty7btEtK8rmHNsN8IaW9w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9165568/BD1A95D21D8711E29BE3E6DF08B02CD2/Zwl-SS9z1tvTH6AWotW1uGqbP9g.crl rsync://rpki.apnic.net/member_repository/A9165568/BD1A95D21D8711E29BE3E6DF08B02CD2/Zwl-SS9z1tvTH6AWotW1uGqbP9g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Zwl-SS9z1tvTH6AWotW1uGqbP9g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 14:28:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7349 (0x1cb5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9165568 Validity Not Before: Apr 4 14:29:00 2025 GMT Not After : Apr 11 14:29:00 2025 GMT Subject: CN=67efecac-d546 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:c4:9f:b0:cf:ff:f5:4e:41:b7:68:bf:fa:e8: 60:43:39:83:40:d6:bd:d4:96:b9:ed:81:a3:43:42: 2f:55:b8:9e:67:4b:78:99:b4:99:1e:18:b7:85:a3: 17:e5:6d:c3:60:9a:0a:60:bf:a9:13:63:29:ad:46: aa:76:ef:b2:f2:59:83:9e:27:8b:c5:df:23:19:56: 79:4c:cf:a3:f0:f8:7a:3b:a0:6c:b3:1a:42:7e:57: 58:2b:2b:53:18:b3:18:45:c9:63:74:39:88:8e:0a: 6d:a8:3c:e9:58:76:80:3f:12:1e:cd:b7:bf:08:71: d6:00:f4:e3:76:95:4a:25:8c:59:c4:2e:94:be:73: 43:14:b4:34:24:a8:3f:2c:91:50:db:c7:e8:77:bf: fc:a5:3c:4b:72:ab:5c:a6:48:01:5b:af:78:58:1c: 1e:df:9e:1a:04:46:5b:4e:11:37:5c:9f:2b:51:52: d4:23:4a:65:1e:ab:75:9e:ab:3d:a3:30:4c:dc:9a: 42:1d:73:48:b7:45:e2:1f:48:a4:cb:e1:69:e2:30: a7:50:1a:ef:6a:13:ee:52:23:0d:c0:dd:ea:5e:a6: 0f:e5:b9:ad:ab:ff:50:9b:60:d0:ed:92:77:4e:5d: 5a:7f:8e:a2:70:ac:02:17:52:22:4f:2a:43:54:5d: ac:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:3F:05:2D:A0:A6:25:86:27:44:21:C9:01:9A:12:74:25:84:90:88 X509v3 Authority Key Identifier: keyid:67:09:7E:49:2F:73:D6:DB:D3:1F:A0:16:A2:D5:B5:B8:6A:9B:3F:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9165568/BD1A95D21D8711E29BE3E6DF08B02CD2/Zwl-SS9z1tvTH6AWotW1uGqbP9g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Zwl-SS9z1tvTH6AWotW1uGqbP9g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9165568/BD1A95D21D8711E29BE3E6DF08B02CD2/Zwl-SS9z1tvTH6AWotW1uGqbP9g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0e:8b:1f:02:0c:6e:c3:29:4a:8a:32:42:ae:84:29:e1:cb:db: f9:2b:00:da:fb:8c:96:10:a2:4b:7b:07:04:a5:57:2d:c0:ea: 63:bc:84:39:b6:8a:b8:a1:98:72:83:c7:f8:22:57:c3:bf:73: d2:a2:a8:2b:33:03:98:fa:17:31:4e:67:1b:ed:b5:89:4f:3b: 63:5a:dc:59:ed:10:4b:c9:41:ed:3c:c4:16:d3:93:20:54:de: 39:28:55:6d:e5:a3:5c:e1:38:ce:15:54:60:a1:4f:4f:64:c2: ed:1b:af:a4:f5:ba:91:e2:68:44:ea:85:ea:78:2f:bf:a2:13: 87:8e:44:4c:4e:b5:3b:57:ca:da:94:c6:e1:47:ba:4e:31:e0: cf:06:aa:33:d3:63:ea:ba:44:5c:05:8e:84:a5:11:39:5b:55: 45:16:b6:ac:42:b5:b6:81:5b:0f:73:0c:35:5e:42:ed:d9:bf: a8:14:5b:00:9a:45:d7:62:b9:a7:7b:05:b7:ff:c8:5d:4e:6b: 18:5c:81:2c:ea:93:f2:a4:aa:67:bf:8d:c0:3f:6f:29:e0:02: 20:be:20:8d:e1:1d:84:e5:87:42:9a:ae:86:de:bc:32:54:bb: 91:1a:f5:04:07:4f:06:ff:d1:97:23:8e:c6:90:97:72:6a:12: 05:ab:25:76 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHLUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjU1NjgxMTAvBgNVBAUTKDY3MDk3RTQ5MkY3M0Q2REJEMzFGQTAxNkEyRDVCNUI4 NkE5QjNGRDgwHhcNMjUwNDA0MTQyOTAwWhcNMjUwNDExMTQyOTAwWjAYMRYwFAYD VQQDEw02N2VmZWNhYy1kNTQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA48SfsM//9U5Bt2i/+uhgQzmDQNa91Ja57YGjQ0IvVbieZ0t4mbSZHhi3haMX 5W3DYJoKYL+pE2MprUaqdu+y8lmDnieLxd8jGVZ5TM+j8Ph6O6BssxpCfldYKytT GLMYRcljdDmIjgptqDzpWHaAPxIezbe/CHHWAPTjdpVKJYxZxC6UvnNDFLQ0JKg/ LJFQ28fod7/8pTxLcqtcpkgBW694WBwe354aBEZbThE3XJ8rUVLUI0plHqt1nqs9 ozBM3JpCHXNIt0XiH0iky+Fp4jCnUBrvahPuUiMNwN3qXqYP5bmtq/9Qm2DQ7ZJ3 Tl1af46icKwCF1IiTypDVF2sDwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAM/BS2g piWGJ0QhyQGaEnQlhJCIMB8GA1UdIwQYMBaAFGcJfkkvc9bb0x+gFqLVtbhqmz/Y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NTU2OC9CRDFBOTVEMjFE ODcxMUUyOUJFM0U2REYwOEIwMkNEMi9ad2wtU1M5ejF0dlRINkFXb3RXMXVHcWJQ OWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1p3bC1TUzl6MXR2VEg2QVdvdFcxdUdxYlA5Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NTU2OC9CRDFBOTVEMjFEODcxMUUyOUJFM0U2REYwOEIwMkNEMi9ad2wtU1M5ejF0 dlRINkFXb3RXMXVHcWJQOWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAOix8CDG7DKUqKMkKuhCnhy9v5KwDa+4yWEKJLewcEpVctwOpjvIQ5 toq4oZhyg8f4IlfDv3PSoqgrMwOY+hcxTmcb7bWJTztjWtxZ7RBLyUHtPMQW05Mg VN45KFVt5aNc4TjOFVRgoU9PZMLtG6+k9bqR4mhE6oXqeC+/ohOHjkRMTrU7V8ra lMbhR7pOMeDPBqoz02PqukRcBY6EpRE5W1VFFrasQrW2gVsPcww1XkLt2b+oFFsA mkXXYrmnewW3/8hdTmsYXIEs6pPypKpnv43AP28p4AIgviCN4R2E5YdCmq6G3rwy VLuRGvUEB08G/9GXI47GkJdyahIFqyV2 -----END CERTIFICATE-----Generated at Fri Apr 4 21:55:30 2025 by rpki-client