$ rpki-client -vvf rpki.apnic.net/member_repository/A9165568/BD1A95D21D8711E29BE3E6DF08B02CD2/Zwl-SS9z1tvTH6AWotW1uGqbP9g.mft File: Zwl-SS9z1tvTH6AWotW1uGqbP9g.mft (raw, json) Hash identifier: qjUGB4b5It0smyUIymC5VYAStHESPdNqzhJFtWAjIDA= Subject key identifier: 70:AB:51:84:C3:EB:17:CD:6E:79:54:8E:F1:DA:6F:E6:6F:AC:3B:5A Authority key identifier: 67:09:7E:49:2F:73:D6:DB:D3:1F:A0:16:A2:D5:B5:B8:6A:9B:3F:D8 Certificate issuer: /CN=A9165568/serialNumber=67097E492F73D6DBD31FA016A2D5B5B86A9B3FD8 Certificate serial: 1D26 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Zwl-SS9z1tvTH6AWotW1uGqbP9g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9165568/BD1A95D21D8711E29BE3E6DF08B02CD2/Zwl-SS9z1tvTH6AWotW1uGqbP9g.mft Manifest number: 3F28 Signing time: Wed 22 Oct 2025 14:30:23 +0000 Manifest this update: Wed 22 Oct 2025 14:30:22 +0000 Manifest next update: Wed 29 Oct 2025 14:30:22 +0000 Files and hashes: 1: Zwl-SS9z1tvTH6AWotW1uGqbP9g.crl (hash: JiSgRlVDbVab1PDxI5Wjik65dIekMsZJt39ZFLXsZZU=) 2: 711F090E8AB411EA89D83541C4F9AE02.roa (hash: V43Il4g6nzN/Oi9NZNkfIg3qfCZBm83zni76jTMor3c=) 3: D2EF531219AE11EB8D3BC20EC4F9AE02.roa (hash: ecbq5n9i8YsI1DnV/FNeUcy7K6RyCgb2n5KgFVtlRys=) 4: 777F5CEE8AA611EA94BC0D13C4F9AE02.roa (hash: lWY3HuGd5fIJF8Oe8hPwzrYQ3DgR98qCqY9Pi+cBvM8=) 5: E1B073B689F011EABAEDCE2FC4F9AE02.roa (hash: 3mizSI3ttwr9fYLhX95SY8SiU7O6qd9AnRwusH6MEfo=) 6: 671FF9F6943011EA8988B883C4F9AE02.roa (hash: Wdg4VF5GLoHlwlPyl6+HlE/ibrc1SiBo2CXSWmJGq0s=) 7: A310F2FC8AB811EA9F89B54EC4F9AE02.roa (hash: kTpEYCAmunxJIp4Id6sV5egINJOtqBpQw2yNKgEwrR4=) 8: FDC7AB404C4711F0BDC34276C4F9AE02.roa (hash: JZoWxsRbV7qWkDrZjMBEtqXRAY211vcz/IuFZQVqVOA=) 9: E206DF40E79011E699B81D0FC4F9AE02.roa (hash: 05JiHZhW4FX5F4m2ta1eoZQOXujb14zXuKofXn8V9ts=) 10: 095798588ABA11EAB5EDDE54C4F9AE02.roa (hash: lXnIjaE79MbFJFMKpPmyaG2gWaI8IDWerJKv1saa/n0=) 11: 66891B80943011EA8988B883C4F9AE02.roa (hash: e8EsUIru5I+kvcxrClJSF0og6ruHigKw4K5qZx/355g=) 12: 195AEC4287CF11F09EDBA229C4F9AE02.roa (hash: 3GbbC1+2jl0vL9FRkvPdOxEiS1lz+xyVoZFUlqkOUwg=) 13: 727C68508AB411EA89D83541C4F9AE02.roa (hash: 3/YHfMJFd4+/uHvYeznP2jrI3k3cNg88tQA8zxhGa9Q=) 14: A75964A28E4B11EA8A347A3EC4F9AE02.roa (hash: KqNlQBgDzVn6oYtQRMX2oZuYkDyyOGts1nvV6+UnhlU=) 15: 084044FC19AC11EB8759456DC4F9AE02.roa (hash: W9G6BLl6GrAu6NpuOira3w9ONwVWK7LaREYQeOaaW/o=) 16: 5D24529CAB0C11EA8D5ADE09C4F9AE02.roa (hash: jQLZJj3VvPR1niUIT7DA9sty7btEtK8rmHNsN8IaW9w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9165568/BD1A95D21D8711E29BE3E6DF08B02CD2/Zwl-SS9z1tvTH6AWotW1uGqbP9g.crl rsync://rpki.apnic.net/member_repository/A9165568/BD1A95D21D8711E29BE3E6DF08B02CD2/Zwl-SS9z1tvTH6AWotW1uGqbP9g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Zwl-SS9z1tvTH6AWotW1uGqbP9g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 29 Oct 2025 14:30:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7462 (0x1d26) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9165568, serialNumber=67097E492F73D6DBD31FA016A2D5B5B86A9B3FD8 Validity Not Before: Oct 22 14:30:22 2025 GMT Not After : Oct 29 14:30:22 2025 GMT Subject: CN=68f8ea7f-9f2a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:2e:e6:1c:55:e4:03:62:5d:0c:6c:95:3b:57: 94:f5:0d:90:bb:39:88:ab:a2:f2:06:76:a4:5e:05: 1a:0e:d5:cb:ff:77:4a:4e:84:46:61:61:85:c0:86: 34:f4:19:8c:d7:ff:57:68:63:00:94:55:76:23:6e: 0f:98:e4:45:da:9d:7e:d2:c7:15:5d:ca:5a:41:55: ab:8e:2c:47:9a:dc:a0:eb:c9:12:90:55:20:c1:46: 4d:8c:b5:ab:45:16:48:75:8c:c7:44:6f:34:c8:c3: 1d:c7:09:54:f5:49:e8:08:cb:3f:4b:32:d0:cb:8e: 6b:2d:fe:28:28:7f:cc:2f:6a:8b:89:5d:ad:6f:c5: cb:53:e2:09:67:20:e7:dd:3f:42:8e:e5:85:c7:82: 3a:91:45:33:d1:bf:f6:0a:c6:3d:66:ae:de:36:86: 8a:ab:63:39:8a:d0:ba:1b:37:9c:f4:e5:83:59:9c: 9f:82:d2:bc:c6:8f:62:67:df:f3:2a:7b:0d:6c:49: f5:ee:73:c9:3c:06:71:5f:13:a9:c9:bd:7b:fa:39: d8:a0:0d:68:a7:5e:0c:cb:f0:42:f3:85:b1:8c:dd: d2:3c:34:25:f7:7a:fa:d2:92:86:cb:7b:a3:b6:f4: c1:25:19:af:81:83:74:cc:63:4e:0f:5e:fe:e4:1c: 61:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:AB:51:84:C3:EB:17:CD:6E:79:54:8E:F1:DA:6F:E6:6F:AC:3B:5A X509v3 Authority Key Identifier: keyid:67:09:7E:49:2F:73:D6:DB:D3:1F:A0:16:A2:D5:B5:B8:6A:9B:3F:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9165568/BD1A95D21D8711E29BE3E6DF08B02CD2/Zwl-SS9z1tvTH6AWotW1uGqbP9g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Zwl-SS9z1tvTH6AWotW1uGqbP9g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9165568/BD1A95D21D8711E29BE3E6DF08B02CD2/Zwl-SS9z1tvTH6AWotW1uGqbP9g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 07:59:8d:66:88:ca:ff:cd:05:a4:c5:1a:97:9b:7e:cb:fe:60: 13:1d:0c:78:23:84:c8:3f:30:7d:67:77:d6:91:07:2c:88:dc: 59:e1:f6:93:fa:e3:96:f1:64:b0:4f:ea:6a:c6:a0:e2:f6:68: 42:84:3a:bf:00:af:8f:2b:37:3c:4a:a5:41:ea:a2:d4:02:25: fa:a7:d4:0c:05:b7:a0:b0:1f:a4:2c:77:0a:85:9b:8a:cd:39: ca:b3:cb:10:b5:b1:c9:dc:ef:c2:b1:9b:d6:d7:59:46:ff:18: 04:3e:f1:f6:2b:b7:eb:15:55:f9:d4:99:91:87:29:c1:39:4d: e8:e6:fb:a1:d2:bc:31:c5:e9:d8:c7:c2:9b:45:54:5b:5b:1e: a0:ea:25:bc:e1:3d:b8:65:44:87:51:ae:fa:f2:01:11:c6:b3: 56:c9:c5:58:bc:de:1d:36:cf:9b:4c:ff:3c:32:81:e4:ed:e7: 17:82:3d:e9:59:2d:4a:41:d9:66:55:d3:7e:76:16:dd:a5:1d: 45:75:22:32:be:d0:34:3d:f5:14:f0:d3:01:ef:83:10:96:22: 2f:f6:9b:7d:83:a8:d5:96:c8:22:fd:0d:9e:62:b6:5d:e1:40: 89:e2:12:59:a7:26:49:69:16:11:c4:05:47:63:25:d1:a3:87: 85:0b:cb:61 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHSYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjU1NjgxMTAvBgNVBAUTKDY3MDk3RTQ5MkY3M0Q2REJEMzFGQTAxNkEyRDVCNUI4 NkE5QjNGRDgwHhcNMjUxMDIyMTQzMDIyWhcNMjUxMDI5MTQzMDIyWjAYMRYwFAYD VQQDEw02OGY4ZWE3Zi05ZjJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArC7mHFXkA2JdDGyVO1eU9Q2QuzmIq6LyBnakXgUaDtXL/3dKToRGYWGFwIY0 9BmM1/9XaGMAlFV2I24PmORF2p1+0scVXcpaQVWrjixHmtyg68kSkFUgwUZNjLWr RRZIdYzHRG80yMMdxwlU9UnoCMs/SzLQy45rLf4oKH/ML2qLiV2tb8XLU+IJZyDn 3T9CjuWFx4I6kUUz0b/2CsY9Zq7eNoaKq2M5itC6Gzec9OWDWZyfgtK8xo9iZ9/z KnsNbEn17nPJPAZxXxOpyb17+jnYoA1op14My/BC84WxjN3SPDQl93r60pKGy3uj tvTBJRmvgYN0zGNOD17+5Bxh/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHCrUYTD 6xfNbnlUjvHab+ZvrDtaMB8GA1UdIwQYMBaAFGcJfkkvc9bb0x+gFqLVtbhqmz/Y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NTU2OC9CRDFBOTVEMjFE ODcxMUUyOUJFM0U2REYwOEIwMkNEMi9ad2wtU1M5ejF0dlRINkFXb3RXMXVHcWJQ OWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1p3bC1TUzl6MXR2VEg2QVdvdFcxdUdxYlA5Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NTU2OC9CRDFBOTVEMjFEODcxMUUyOUJFM0U2REYwOEIwMkNEMi9ad2wtU1M5ejF0 dlRINkFXb3RXMXVHcWJQOWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAHWY1miMr/zQWkxRqXm37L/mATHQx4I4TIPzB9Z3fWkQcsiNxZ4faT +uOW8WSwT+pqxqDi9mhChDq/AK+PKzc8SqVB6qLUAiX6p9QMBbegsB+kLHcKhZuK zTnKs8sQtbHJ3O/CsZvW11lG/xgEPvH2K7frFVX51JmRhynBOU3o5vuh0rwxxenY x8KbRVRbWx6g6iW84T24ZUSHUa768gERxrNWycVYvN4dNs+bTP88MoHk7ecXgj3p WS1KQdlmVdN+dhbdpR1FdSIyvtA0PfUU8NMB74MQliIv9pt9g6jVlsgi/Q2eYrZd 4UCJ4hJZpyZJaRYRxAVHYyXRo4eFC8th -----END CERTIFICATE-----Generated at Wed Oct 22 21:37:00 2025 by rpki-client