$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6D5D/9DCB68E01D8811E294B955E108B02CD2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.mft File: ZKZlgWrv7XOzB1AH2lM3rH3sS4E.mft (raw, json) Hash identifier: Ez8vSsxYSYgrTa/Zepxh/wxEmLHS2sK6fPqwu81lRXA= Subject key identifier: 91:59:D5:DE:9F:4A:5C:6D:F7:34:4E:A6:FE:77:6D:26:CB:11:2B:5C Authority key identifier: 64:A6:65:81:6A:EF:ED:73:B3:07:50:07:DA:53:37:AC:7D:EC:4B:81 Certificate issuer: /CN=A91E6D5D/serialNumber=64A665816AEFED73B3075007DA5337AC7DEC4B81 Certificate serial: 1B14 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E6D5D/9DCB68E01D8811E294B955E108B02CD2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.mft Manifest number: A00E Signing time: Sat 06 Sep 2025 14:30:45 +0000 Manifest this update: Sat 06 Sep 2025 14:30:44 +0000 Manifest next update: Sat 13 Sep 2025 14:30:44 +0000 Files and hashes: 1: ZKZlgWrv7XOzB1AH2lM3rH3sS4E.crl (hash: melvWz8CTJ3f8iTJjv/j47Q3XKFVduXD7vaz5CHz8ZI=) 2: 9907DC46D4BC11EF9BDDAF2EC4F9AE02.roa (hash: RYynr8uizf4mxXQD/bYs58a0i9OmwI4vdpj7nHmjiJU=) 3: 959AC422557911EBBD21EB2FC4F9AE02.roa (hash: oMF/P2hGXRHcLkAXgbmeUw5lcthqUMWdcFQRgDGmw2Q=) 4: 20C6F2EC699D11EAA33EAE83C4F9AE02.roa (hash: 68iXhMXoCKzkvFm4ZJIC/ibhTxkbyNkKn12MmIsJUjc=) 5: 191363A69DD911EC99D91668C4F9AE02.roa (hash: oqniAucPfqcKV0mTFTmt9sxkwi/yyX2GOXb0nYNRsyI=) 6: ACC8833824DE11EDAEC0E529C4F9AE02.roa (hash: SpN5g9M2rsSW+Cra37fKcK/lk5XqYbPAMh8S4vUS9qk=) 7: 4FF339D8F01D11EB8C4B505BC4F9AE02.roa (hash: U9RF+JaWcsKZTr1DEGw1Y5hTdB+oWxy9sRXTz5ZgIuo=) 8: C89FD6DA557611EBA04C290BC4F9AE02.roa (hash: Y+JgutBZqKB0sr/67XUkEfaEMyqBwPZIYt+9Yv44r5c=) 9: FC6A19D892D511EC8FBFF32AC4F9AE02.roa (hash: kjWRly5sP345NgQNsNa2Y38tsuhMAJkUf7cDKkslnxQ=) 10: 1BF3A43C15BE11EF93ABFD7DC4F9AE02.roa (hash: Dnw6VZCydK3JoKDSOzotlEvfgmRpxLVN7ezEA2ZyyGo=) 11: 0B24875C7A4411EB804B7430C4F9AE02.roa (hash: Y+xehgtewaeOdOL6PowHHRPVgAd4mQJAADuq74in7FA=) 12: 3D68F8C29A4A11EA94706012C4F9AE02.roa (hash: +Q2D0d9yEIcvHWqL458RmFQjgHnoWa/Nyf3wOjdRqJY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E6D5D/9DCB68E01D8811E294B955E108B02CD2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.crl rsync://rpki.apnic.net/member_repository/A91E6D5D/9DCB68E01D8811E294B955E108B02CD2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Sep 2025 14:30:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6932 (0x1b14) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E6D5D, serialNumber=64A665816AEFED73B3075007DA5337AC7DEC4B81 Validity Not Before: Sep 6 14:30:44 2025 GMT Not After : Sep 13 14:30:44 2025 GMT Subject: CN=68bc4594-0004 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:7b:dd:92:16:42:0e:5f:48:c4:87:85:1d:8c: 51:e4:e0:c4:c3:12:1e:ed:43:50:ec:45:a4:ca:1e: 57:31:06:22:f8:b9:ac:43:66:97:f5:7d:d1:ef:72: b7:df:91:2b:25:16:1f:39:e3:a2:83:95:86:f6:bc: 60:c5:20:41:0d:33:22:8d:81:4a:40:b3:a1:1e:35: 3b:27:85:2b:b9:d9:f0:0d:45:a5:c7:49:fa:95:49: ae:f9:97:6b:a2:8b:8b:01:c4:38:a0:86:e2:ed:f1: f1:7f:6a:0c:91:32:d4:ad:cf:1a:bc:0b:59:af:9a: 29:4a:47:39:cd:0a:8c:1d:ed:5c:f0:8b:7c:f6:ad: b0:d2:61:f4:35:b8:0b:09:3f:53:1a:41:e8:fa:f4: 47:0b:c1:f2:44:4f:5f:99:0a:a2:27:63:2c:e1:7b: 5a:82:54:4f:62:7b:dc:b7:c0:a0:c0:df:dd:c7:81: 20:0a:81:00:6f:d5:67:61:58:41:2f:df:a1:79:16: 81:78:42:74:99:ff:00:8d:d8:42:cd:ea:a2:13:02: 63:75:fd:95:db:dd:41:79:9d:67:ef:4a:43:a9:99: e9:95:ab:33:ec:22:aa:59:c4:7b:d2:ce:b0:b7:ff: ec:5f:ae:86:68:e2:66:78:3a:d1:1d:b3:21:82:78: 0e:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:59:D5:DE:9F:4A:5C:6D:F7:34:4E:A6:FE:77:6D:26:CB:11:2B:5C X509v3 Authority Key Identifier: keyid:64:A6:65:81:6A:EF:ED:73:B3:07:50:07:DA:53:37:AC:7D:EC:4B:81 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E6D5D/9DCB68E01D8811E294B955E108B02CD2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6D5D/9DCB68E01D8811E294B955E108B02CD2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ae:de:a6:bd:9e:b6:4a:9b:d4:98:bd:eb:39:74:95:c8:cc:89: 8a:77:b8:c6:bb:c0:d7:45:74:e4:d8:44:48:9f:56:9e:35:a3: 6c:a4:1e:a1:a1:00:11:4b:55:ef:30:dc:01:24:ee:d2:78:44: d9:b6:21:81:e1:12:35:ad:59:22:24:5d:2e:a7:ec:56:3b:ab: 5c:e7:d4:32:5f:92:62:3a:e1:b7:00:e2:cb:17:39:ff:85:69: 8f:af:4b:ab:c3:7e:fc:20:0a:9a:ed:c5:19:c4:6a:50:7b:68: 55:ef:42:0e:c8:cc:d1:27:09:f2:51:8c:f6:a4:e6:b6:85:6e: 61:06:ca:5a:80:46:22:26:3e:77:17:0b:e6:5e:87:12:98:ff: 21:85:13:d6:34:d9:7a:8a:62:88:c1:e4:37:0d:22:b4:60:4c: a1:50:79:59:bf:d5:a5:2e:14:e6:74:f8:bf:b1:ed:76:0c:2e: 97:37:88:f0:26:90:32:61:dc:bf:e9:06:7a:a2:64:32:35:f0: cc:ce:0b:8c:33:ab:a3:e1:9e:7e:6b:3f:57:30:58:be:1f:64: 4d:79:d5:0d:49:9d:36:52:10:32:1c:f0:64:69:c0:95:ac:c8: 0e:11:fb:4f:ab:27:78:72:ab:c6:13:f2:1a:32:60:d0:9e:65: a7:03:df:84 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGxQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTZENUQxMTAvBgNVBAUTKDY0QTY2NTgxNkFFRkVENzNCMzA3NTAwN0RBNTMzN0FD N0RFQzRCODEwHhcNMjUwOTA2MTQzMDQ0WhcNMjUwOTEzMTQzMDQ0WjAYMRYwFAYD VQQDEw02OGJjNDU5NC0wMDA0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwXvdkhZCDl9IxIeFHYxR5ODEwxIe7UNQ7EWkyh5XMQYi+LmsQ2aX9X3R73K3 35ErJRYfOeOig5WG9rxgxSBBDTMijYFKQLOhHjU7J4UrudnwDUWlx0n6lUmu+Zdr oouLAcQ4oIbi7fHxf2oMkTLUrc8avAtZr5opSkc5zQqMHe1c8It89q2w0mH0NbgL CT9TGkHo+vRHC8HyRE9fmQqiJ2Ms4XtaglRPYnvct8CgwN/dx4EgCoEAb9VnYVhB L9+heRaBeEJ0mf8AjdhCzeqiEwJjdf2V291BeZ1n70pDqZnplasz7CKqWcR70s6w t//sX66GaOJmeDrRHbMhgngO0wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJFZ1d6f Slxt9zROpv53bSbLEStcMB8GA1UdIwQYMBaAFGSmZYFq7+1zswdQB9pTN6x97EuB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNkQ1RC85RENCNjhFMDFE ODgxMUUyOTRCOTU1RTEwOEIwMkNEMi9aS1psZ1dydjdYT3pCMUFIMmxNM3JIM3NT NEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pLWmxnV3J2N1hPekIxQUgybE0zckgzc1M0RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NkQ1RC85RENCNjhFMDFEODgxMUUyOTRCOTU1RTEwOEIwMkNEMi9aS1psZ1dydjdY T3pCMUFIMmxNM3JIM3NTNEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCu3qa9nrZKm9SYves5dJXIzImKd7jGu8DXRXTk2ERIn1aeNaNspB6h oQARS1XvMNwBJO7SeETZtiGB4RI1rVkiJF0up+xWO6tc59QyX5JiOuG3AOLLFzn/ hWmPr0urw378IAqa7cUZxGpQe2hV70IOyMzRJwnyUYz2pOa2hW5hBspagEYiJj53 FwvmXocSmP8hhRPWNNl6imKIweQ3DSK0YEyhUHlZv9WlLhTmdPi/se12DC6XN4jw JpAyYdy/6QZ6omQyNfDMzguMM6uj4Z5+az9XMFi+H2RNedUNSZ02UhAyHPBkacCV rMgOEftPqyd4cqvGE/IaMmDQnmWnA9+E -----END CERTIFICATE-----Generated at Sat Sep 6 17:21:53 2025 by rpki-client