$ rpki-client -vvf rpki.apnic.net/member_repository/A9165568/BD1A95D21D8711E29BE3E6DF08B02CD2/Zwl-SS9z1tvTH6AWotW1uGqbP9g.mft File: Zwl-SS9z1tvTH6AWotW1uGqbP9g.mft (raw, json) Hash identifier: 0zOnGKW7qKArii/dgMV4/wvuJPOQAMLZLxTT76S+uaE= Subject key identifier: E5:AE:BA:F3:55:55:DF:FD:73:BB:9B:C3:DD:0E:18:B0:64:C3:F8:C4 Authority key identifier: 67:09:7E:49:2F:73:D6:DB:D3:1F:A0:16:A2:D5:B5:B8:6A:9B:3F:D8 Certificate issuer: /CN=A9165568/serialNumber=67097E492F73D6DBD31FA016A2D5B5B86A9B3FD8 Certificate serial: 1D0F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Zwl-SS9z1tvTH6AWotW1uGqbP9g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9165568/BD1A95D21D8711E29BE3E6DF08B02CD2/Zwl-SS9z1tvTH6AWotW1uGqbP9g.mft Manifest number: 3F11 Signing time: Sat 06 Sep 2025 14:29:17 +0000 Manifest this update: Sat 06 Sep 2025 14:29:17 +0000 Manifest next update: Sat 13 Sep 2025 14:29:17 +0000 Files and hashes: 1: Zwl-SS9z1tvTH6AWotW1uGqbP9g.crl (hash: WO5fln9SkbqPsGppnLAM5QE8/e1/4IPZQLR5ucl0A4g=) 2: 711F090E8AB411EA89D83541C4F9AE02.roa (hash: V43Il4g6nzN/Oi9NZNkfIg3qfCZBm83zni76jTMor3c=) 3: D2EF531219AE11EB8D3BC20EC4F9AE02.roa (hash: ecbq5n9i8YsI1DnV/FNeUcy7K6RyCgb2n5KgFVtlRys=) 4: 777F5CEE8AA611EA94BC0D13C4F9AE02.roa (hash: lWY3HuGd5fIJF8Oe8hPwzrYQ3DgR98qCqY9Pi+cBvM8=) 5: E1B073B689F011EABAEDCE2FC4F9AE02.roa (hash: 3mizSI3ttwr9fYLhX95SY8SiU7O6qd9AnRwusH6MEfo=) 6: 671FF9F6943011EA8988B883C4F9AE02.roa (hash: Wdg4VF5GLoHlwlPyl6+HlE/ibrc1SiBo2CXSWmJGq0s=) 7: A310F2FC8AB811EA9F89B54EC4F9AE02.roa (hash: kTpEYCAmunxJIp4Id6sV5egINJOtqBpQw2yNKgEwrR4=) 8: FDC7AB404C4711F0BDC34276C4F9AE02.roa (hash: JZoWxsRbV7qWkDrZjMBEtqXRAY211vcz/IuFZQVqVOA=) 9: E206DF40E79011E699B81D0FC4F9AE02.roa (hash: 05JiHZhW4FX5F4m2ta1eoZQOXujb14zXuKofXn8V9ts=) 10: 095798588ABA11EAB5EDDE54C4F9AE02.roa (hash: lXnIjaE79MbFJFMKpPmyaG2gWaI8IDWerJKv1saa/n0=) 11: 66891B80943011EA8988B883C4F9AE02.roa (hash: e8EsUIru5I+kvcxrClJSF0og6ruHigKw4K5qZx/355g=) 12: 195AEC4287CF11F09EDBA229C4F9AE02.roa (hash: 3GbbC1+2jl0vL9FRkvPdOxEiS1lz+xyVoZFUlqkOUwg=) 13: 727C68508AB411EA89D83541C4F9AE02.roa (hash: 3/YHfMJFd4+/uHvYeznP2jrI3k3cNg88tQA8zxhGa9Q=) 14: A75964A28E4B11EA8A347A3EC4F9AE02.roa (hash: KqNlQBgDzVn6oYtQRMX2oZuYkDyyOGts1nvV6+UnhlU=) 15: 084044FC19AC11EB8759456DC4F9AE02.roa (hash: W9G6BLl6GrAu6NpuOira3w9ONwVWK7LaREYQeOaaW/o=) 16: 5D24529CAB0C11EA8D5ADE09C4F9AE02.roa (hash: jQLZJj3VvPR1niUIT7DA9sty7btEtK8rmHNsN8IaW9w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9165568/BD1A95D21D8711E29BE3E6DF08B02CD2/Zwl-SS9z1tvTH6AWotW1uGqbP9g.crl rsync://rpki.apnic.net/member_repository/A9165568/BD1A95D21D8711E29BE3E6DF08B02CD2/Zwl-SS9z1tvTH6AWotW1uGqbP9g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Zwl-SS9z1tvTH6AWotW1uGqbP9g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Sep 2025 14:29:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7439 (0x1d0f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9165568, serialNumber=67097E492F73D6DBD31FA016A2D5B5B86A9B3FD8 Validity Not Before: Sep 6 14:29:17 2025 GMT Not After : Sep 13 14:29:17 2025 GMT Subject: CN=68bc453d-ea6f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:ac:be:e6:58:2a:7c:bf:93:0d:5f:f2:98:e1: 2c:c4:c3:ed:bb:1b:72:d1:3d:43:99:e9:09:b8:79: ee:00:23:d3:b1:3e:44:51:57:c6:6b:1a:b0:5c:7b: 22:a7:d8:e9:4b:2d:8e:ef:8e:53:4c:7e:8d:36:83: d3:19:ec:e1:f7:e7:d1:85:94:f9:c9:94:33:6f:3b: ec:03:8d:94:17:85:da:a6:ec:e1:5e:ea:82:b0:64: 34:6f:ed:d9:85:a4:1b:ac:3a:7c:68:f4:2b:55:92: d5:c0:ca:5b:8c:00:fb:4d:a1:14:82:4c:65:a5:cc: 23:cd:3b:bf:0c:7f:8b:46:b8:ff:07:2e:d1:2a:06: 34:28:eb:e8:f1:0f:38:5c:d1:bc:a1:3e:c7:27:e1: 49:fa:71:ac:e2:47:f2:37:d9:1b:7c:6c:c2:d6:a5: 9f:5c:ff:c4:2a:ae:22:08:03:1e:df:97:e0:c1:52: dd:0b:33:c9:29:22:9d:17:61:ec:58:70:80:8e:4f: dc:bc:90:1a:ff:d2:c6:79:ba:ea:87:a9:bd:3b:c4: cc:47:47:54:00:a9:c3:47:d9:21:cd:51:2d:14:d4: e7:42:34:17:09:ba:14:53:b6:44:43:87:a5:4d:c9: fe:95:9f:2c:75:b0:0c:60:50:de:7c:7a:86:8d:89: b1:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:AE:BA:F3:55:55:DF:FD:73:BB:9B:C3:DD:0E:18:B0:64:C3:F8:C4 X509v3 Authority Key Identifier: keyid:67:09:7E:49:2F:73:D6:DB:D3:1F:A0:16:A2:D5:B5:B8:6A:9B:3F:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9165568/BD1A95D21D8711E29BE3E6DF08B02CD2/Zwl-SS9z1tvTH6AWotW1uGqbP9g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Zwl-SS9z1tvTH6AWotW1uGqbP9g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9165568/BD1A95D21D8711E29BE3E6DF08B02CD2/Zwl-SS9z1tvTH6AWotW1uGqbP9g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 56:ba:80:05:26:1b:b2:eb:b4:04:78:c9:8f:21:f3:8c:46:33: 4c:19:8b:b1:85:a9:57:38:1f:83:24:ba:37:89:c3:10:4e:eb: bd:35:5c:35:c0:85:a8:66:91:e0:97:3f:a4:f6:cc:f5:1d:c1: eb:7e:08:ea:47:93:19:cc:ec:ee:46:2a:75:9c:e4:58:56:d7: 6d:7f:bc:8d:b1:48:89:a5:bd:34:03:a3:f8:df:4c:f8:ed:0e: 89:e1:38:73:ed:33:d7:98:20:70:01:64:8b:85:ee:44:cd:6a: 46:a0:4d:17:1b:eb:ad:ff:d9:fe:6d:64:34:08:f9:f9:4f:00: cb:40:4e:cf:58:19:29:f4:e6:eb:d9:c4:55:38:f4:64:39:21: 73:ac:46:48:c6:ad:cf:21:db:5d:5c:3a:7d:28:76:7d:c8:64: 04:de:e6:16:0e:43:f3:40:c9:5e:40:23:b6:49:ad:02:44:2b: 9d:d3:95:05:20:d3:24:de:93:ea:1a:ae:e2:34:54:78:9a:f9: 6c:23:8c:61:76:b9:45:b8:93:59:7f:8d:9d:b1:82:55:cd:8a: 27:d4:57:87:1b:eb:3f:b5:71:e0:01:69:97:3c:8b:9c:a1:e3: 24:59:b1:1e:2d:76:0a:97:68:23:46:be:7b:31:a4:ff:a9:a7: 1a:4a:45:77 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHQ8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjU1NjgxMTAvBgNVBAUTKDY3MDk3RTQ5MkY3M0Q2REJEMzFGQTAxNkEyRDVCNUI4 NkE5QjNGRDgwHhcNMjUwOTA2MTQyOTE3WhcNMjUwOTEzMTQyOTE3WjAYMRYwFAYD VQQDEw02OGJjNDUzZC1lYTZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9Ky+5lgqfL+TDV/ymOEsxMPtuxty0T1DmekJuHnuACPTsT5EUVfGaxqwXHsi p9jpSy2O745TTH6NNoPTGezh9+fRhZT5yZQzbzvsA42UF4XapuzhXuqCsGQ0b+3Z haQbrDp8aPQrVZLVwMpbjAD7TaEUgkxlpcwjzTu/DH+LRrj/By7RKgY0KOvo8Q84 XNG8oT7HJ+FJ+nGs4kfyN9kbfGzC1qWfXP/EKq4iCAMe35fgwVLdCzPJKSKdF2Hs WHCAjk/cvJAa/9LGebrqh6m9O8TMR0dUAKnDR9khzVEtFNTnQjQXCboUU7ZEQ4el Tcn+lZ8sdbAMYFDefHqGjYmxuQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOWuuvNV Vd/9c7ubw90OGLBkw/jEMB8GA1UdIwQYMBaAFGcJfkkvc9bb0x+gFqLVtbhqmz/Y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NTU2OC9CRDFBOTVEMjFE ODcxMUUyOUJFM0U2REYwOEIwMkNEMi9ad2wtU1M5ejF0dlRINkFXb3RXMXVHcWJQ OWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1p3bC1TUzl6MXR2VEg2QVdvdFcxdUdxYlA5Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NTU2OC9CRDFBOTVEMjFEODcxMUUyOUJFM0U2REYwOEIwMkNEMi9ad2wtU1M5ejF0 dlRINkFXb3RXMXVHcWJQOWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBWuoAFJhuy67QEeMmPIfOMRjNMGYuxhalXOB+DJLo3icMQTuu9NVw1 wIWoZpHglz+k9sz1HcHrfgjqR5MZzOzuRip1nORYVtdtf7yNsUiJpb00A6P430z4 7Q6J4Thz7TPXmCBwAWSLhe5EzWpGoE0XG+ut/9n+bWQ0CPn5TwDLQE7PWBkp9Obr 2cRVOPRkOSFzrEZIxq3PIdtdXDp9KHZ9yGQE3uYWDkPzQMleQCO2Sa0CRCud05UF INMk3pPqGq7iNFR4mvlsI4xhdrlFuJNZf42dsYJVzYon1FeHG+s/tXHgAWmXPIuc oeMkWbEeLXYKl2gjRr57MaT/qacaSkV3 -----END CERTIFICATE-----Generated at Sat Sep 6 16:49:59 2025 by rpki-client