$ rpki-client -vvf rpki.apnic.net/member_repository/A9165568/BD1A95D21D8711E29BE3E6DF08B02CD2/Zwl-SS9z1tvTH6AWotW1uGqbP9g.mft File: Zwl-SS9z1tvTH6AWotW1uGqbP9g.mft (raw, json) Hash identifier: I5K9jHfqV6SwoUJwF1qFc4zMymD2A3EdcCKL4ic3Wao= Subject key identifier: 6C:5C:18:44:E1:03:A1:DA:D0:41:57:29:E5:F4:94:4B:34:BE:38:CE Authority key identifier: 67:09:7E:49:2F:73:D6:DB:D3:1F:A0:16:A2:D5:B5:B8:6A:9B:3F:D8 Certificate issuer: /CN=A9165568/serialNumber=67097E492F73D6DBD31FA016A2D5B5B86A9B3FD8 Certificate serial: 1CED Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Zwl-SS9z1tvTH6AWotW1uGqbP9g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9165568/BD1A95D21D8711E29BE3E6DF08B02CD2/Zwl-SS9z1tvTH6AWotW1uGqbP9g.mft Manifest number: 3EF2 Signing time: Sun 20 Jul 2025 14:29:17 +0000 Manifest this update: Sun 20 Jul 2025 14:29:16 +0000 Manifest next update: Sun 27 Jul 2025 14:29:16 +0000 Files and hashes: 1: Zwl-SS9z1tvTH6AWotW1uGqbP9g.crl (hash: 6LN8nuON4UR01o7cBU12ndYk7qqSlJTzs7hR8kCbjGg=) 2: 711F090E8AB411EA89D83541C4F9AE02.roa (hash: V43Il4g6nzN/Oi9NZNkfIg3qfCZBm83zni76jTMor3c=) 3: D2EF531219AE11EB8D3BC20EC4F9AE02.roa (hash: ecbq5n9i8YsI1DnV/FNeUcy7K6RyCgb2n5KgFVtlRys=) 4: 777F5CEE8AA611EA94BC0D13C4F9AE02.roa (hash: QIByum0Q8MqWfLpB0ykV4dVr25yJxf+XqNJq06uiuWw=) 5: E1B073B689F011EABAEDCE2FC4F9AE02.roa (hash: 3mizSI3ttwr9fYLhX95SY8SiU7O6qd9AnRwusH6MEfo=) 6: 671FF9F6943011EA8988B883C4F9AE02.roa (hash: Wdg4VF5GLoHlwlPyl6+HlE/ibrc1SiBo2CXSWmJGq0s=) 7: A310F2FC8AB811EA9F89B54EC4F9AE02.roa (hash: kTpEYCAmunxJIp4Id6sV5egINJOtqBpQw2yNKgEwrR4=) 8: FDC7AB404C4711F0BDC34276C4F9AE02.roa (hash: JZoWxsRbV7qWkDrZjMBEtqXRAY211vcz/IuFZQVqVOA=) 9: E206DF40E79011E699B81D0FC4F9AE02.roa (hash: 05JiHZhW4FX5F4m2ta1eoZQOXujb14zXuKofXn8V9ts=) 10: 095798588ABA11EAB5EDDE54C4F9AE02.roa (hash: lXnIjaE79MbFJFMKpPmyaG2gWaI8IDWerJKv1saa/n0=) 11: 66891B80943011EA8988B883C4F9AE02.roa (hash: e8EsUIru5I+kvcxrClJSF0og6ruHigKw4K5qZx/355g=) 12: 727C68508AB411EA89D83541C4F9AE02.roa (hash: 3/YHfMJFd4+/uHvYeznP2jrI3k3cNg88tQA8zxhGa9Q=) 13: A75964A28E4B11EA8A347A3EC4F9AE02.roa (hash: KqNlQBgDzVn6oYtQRMX2oZuYkDyyOGts1nvV6+UnhlU=) 14: 084044FC19AC11EB8759456DC4F9AE02.roa (hash: W9G6BLl6GrAu6NpuOira3w9ONwVWK7LaREYQeOaaW/o=) 15: 5D24529CAB0C11EA8D5ADE09C4F9AE02.roa (hash: jQLZJj3VvPR1niUIT7DA9sty7btEtK8rmHNsN8IaW9w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9165568/BD1A95D21D8711E29BE3E6DF08B02CD2/Zwl-SS9z1tvTH6AWotW1uGqbP9g.crl rsync://rpki.apnic.net/member_repository/A9165568/BD1A95D21D8711E29BE3E6DF08B02CD2/Zwl-SS9z1tvTH6AWotW1uGqbP9g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Zwl-SS9z1tvTH6AWotW1uGqbP9g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 14:29:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7405 (0x1ced) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9165568, serialNumber=67097E492F73D6DBD31FA016A2D5B5B86A9B3FD8 Validity Not Before: Jul 20 14:29:16 2025 GMT Not After : Jul 27 14:29:16 2025 GMT Subject: CN=687cfd3d-38b3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:4e:18:85:34:6d:e9:9c:59:77:43:c4:26:11: 2d:35:83:32:02:85:57:cc:fd:14:5d:29:76:ab:3c: 4d:b6:bc:e8:d0:6c:16:49:26:29:62:6c:20:1a:4e: bc:36:86:c0:7d:ce:66:e3:b8:2b:89:d1:38:27:15: 9c:63:d7:09:db:b3:6b:cf:57:a1:14:08:1c:3d:ec: b8:07:86:bf:da:4e:5e:1b:8e:c1:1a:68:89:80:48: c3:d0:65:24:11:49:14:f9:2e:9b:b2:e7:c2:37:5a: 95:d1:1f:95:1b:b8:e9:05:46:c0:b0:f3:0c:21:05: 86:15:c2:50:fe:78:d4:73:a6:7b:aa:85:ff:da:a1: ec:0a:0a:22:ec:0d:01:69:be:38:f4:45:bc:0c:0c: db:13:52:a9:fb:51:61:37:ab:95:6a:10:07:5f:93: eb:56:b6:51:9e:2a:90:e9:c0:b8:58:71:83:fc:c4: bb:7c:2d:f2:09:7c:6d:78:b4:da:3a:a2:3e:c5:b1: 55:5c:b9:19:3c:66:4b:da:43:0a:4f:15:99:86:ef: 17:2f:17:4f:04:16:47:62:75:f2:56:00:8f:4a:e6: 2b:fd:f4:36:48:bc:08:b6:4e:0c:ae:97:df:c9:d0: fa:db:70:0b:6e:5b:59:d0:b8:b0:60:44:02:04:b5: 81:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:5C:18:44:E1:03:A1:DA:D0:41:57:29:E5:F4:94:4B:34:BE:38:CE X509v3 Authority Key Identifier: keyid:67:09:7E:49:2F:73:D6:DB:D3:1F:A0:16:A2:D5:B5:B8:6A:9B:3F:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9165568/BD1A95D21D8711E29BE3E6DF08B02CD2/Zwl-SS9z1tvTH6AWotW1uGqbP9g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Zwl-SS9z1tvTH6AWotW1uGqbP9g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9165568/BD1A95D21D8711E29BE3E6DF08B02CD2/Zwl-SS9z1tvTH6AWotW1uGqbP9g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1b:fd:63:20:b2:7f:52:0f:0a:b3:06:13:cf:49:d3:00:2f:b8: 07:c9:cb:08:10:22:d1:f7:51:3d:22:ec:8b:aa:4b:d8:e7:a6: 3d:78:1a:be:62:1a:7e:a7:9a:a9:35:52:94:e4:f7:9c:de:4a: 3f:69:52:87:82:c6:b3:39:d8:d8:ec:d3:54:6b:ad:b4:83:52: 93:9e:79:b6:b0:8b:bd:cd:b2:b3:17:f2:64:f1:27:24:2c:7d: ff:b7:9e:1a:40:dd:f4:2f:4f:28:89:e5:83:21:b5:5d:6b:71: 8f:d0:33:e1:da:0f:9f:8c:52:ae:8d:06:b6:4d:39:68:44:af: fd:30:24:5f:dd:6d:b0:5e:02:28:78:14:a6:cf:53:58:a8:1d: 97:13:8d:d5:75:b6:91:32:53:3d:f5:8d:60:d7:4a:ce:64:91: 7a:69:1d:d9:d1:eb:37:fe:f1:2c:13:50:70:14:20:f9:47:18: 64:89:a9:72:65:c5:a1:ce:92:06:bd:e5:70:19:6f:e0:92:76: fd:91:34:0a:c7:d1:50:15:82:5a:6b:7c:c8:30:99:29:c7:7a: e3:bf:ef:42:57:96:5b:39:67:d4:72:65:d5:bc:19:e4:31:9e: 9f:fc:fc:36:93:c7:94:2b:f2:63:2c:28:cf:cc:c1:72:1d:d8: d8:2a:a2:a8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHO0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjU1NjgxMTAvBgNVBAUTKDY3MDk3RTQ5MkY3M0Q2REJEMzFGQTAxNkEyRDVCNUI4 NkE5QjNGRDgwHhcNMjUwNzIwMTQyOTE2WhcNMjUwNzI3MTQyOTE2WjAYMRYwFAYD VQQDEw02ODdjZmQzZC0zOGIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtk4YhTRt6ZxZd0PEJhEtNYMyAoVXzP0UXSl2qzxNtrzo0GwWSSYpYmwgGk68 NobAfc5m47gridE4JxWcY9cJ27Nrz1ehFAgcPey4B4a/2k5eG47BGmiJgEjD0GUk EUkU+S6bsufCN1qV0R+VG7jpBUbAsPMMIQWGFcJQ/njUc6Z7qoX/2qHsCgoi7A0B ab449EW8DAzbE1Kp+1FhN6uVahAHX5PrVrZRniqQ6cC4WHGD/MS7fC3yCXxteLTa OqI+xbFVXLkZPGZL2kMKTxWZhu8XLxdPBBZHYnXyVgCPSuYr/fQ2SLwItk4Mrpff ydD623ALbltZ0LiwYEQCBLWBkwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGxcGETh A6Ha0EFXKeX0lEs0vjjOMB8GA1UdIwQYMBaAFGcJfkkvc9bb0x+gFqLVtbhqmz/Y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NTU2OC9CRDFBOTVEMjFE ODcxMUUyOUJFM0U2REYwOEIwMkNEMi9ad2wtU1M5ejF0dlRINkFXb3RXMXVHcWJQ OWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1p3bC1TUzl6MXR2VEg2QVdvdFcxdUdxYlA5Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NTU2OC9CRDFBOTVEMjFEODcxMUUyOUJFM0U2REYwOEIwMkNEMi9ad2wtU1M5ejF0 dlRINkFXb3RXMXVHcWJQOWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAb/WMgsn9SDwqzBhPPSdMAL7gHycsIECLR91E9IuyLqkvY56Y9eBq+ Yhp+p5qpNVKU5Pec3ko/aVKHgsazOdjY7NNUa620g1KTnnm2sIu9zbKzF/Jk8Sck LH3/t54aQN30L08oieWDIbVda3GP0DPh2g+fjFKujQa2TTloRK/9MCRf3W2wXgIo eBSmz1NYqB2XE43VdbaRMlM99Y1g10rOZJF6aR3Z0es3/vEsE1BwFCD5Rxhkialy ZcWhzpIGveVwGW/gknb9kTQKx9FQFYJaa3zIMJkpx3rjv+9CV5ZbOWfUcmXVvBnk MZ6f/Pw2k8eUK/JjLCjPzMFyHdjYKqKo -----END CERTIFICATE-----Generated at Mon Jul 21 12:40:58 2025 by rpki-client