$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6D5D/9DCB68E01D8811E294B955E108B02CD2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.mft File: ZKZlgWrv7XOzB1AH2lM3rH3sS4E.mft (raw, json) Hash identifier: uHPATAVR777d+ijj86s7SgyTREIWrSErSNFfbzAs8Og= Subject key identifier: 16:3C:05:37:B5:7F:38:EC:7A:51:5B:4C:FC:3D:25:35:23:99:7C:B5 Authority key identifier: 64:A6:65:81:6A:EF:ED:73:B3:07:50:07:DA:53:37:AC:7D:EC:4B:81 Certificate issuer: /CN=A91E6D5D/serialNumber=64A665816AEFED73B3075007DA5337AC7DEC4B81 Certificate serial: 1AE2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E6D5D/9DCB68E01D8811E294B955E108B02CD2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.mft Manifest number: 9F46 Signing time: Sat 31 May 2025 14:30:12 +0000 Manifest this update: Sat 31 May 2025 14:30:12 +0000 Manifest next update: Sat 07 Jun 2025 14:30:12 +0000 Files and hashes: 1: ZKZlgWrv7XOzB1AH2lM3rH3sS4E.crl (hash: EiZuwLxwsFH3s/MJdFzTYbrlynCnFSqhLpX5spEc3cI=) 2: 9907DC46D4BC11EF9BDDAF2EC4F9AE02.roa (hash: RYynr8uizf4mxXQD/bYs58a0i9OmwI4vdpj7nHmjiJU=) 3: 959AC422557911EBBD21EB2FC4F9AE02.roa (hash: oMF/P2hGXRHcLkAXgbmeUw5lcthqUMWdcFQRgDGmw2Q=) 4: 20C6F2EC699D11EAA33EAE83C4F9AE02.roa (hash: 68iXhMXoCKzkvFm4ZJIC/ibhTxkbyNkKn12MmIsJUjc=) 5: 191363A69DD911EC99D91668C4F9AE02.roa (hash: oqniAucPfqcKV0mTFTmt9sxkwi/yyX2GOXb0nYNRsyI=) 6: ACC8833824DE11EDAEC0E529C4F9AE02.roa (hash: SpN5g9M2rsSW+Cra37fKcK/lk5XqYbPAMh8S4vUS9qk=) 7: 4FF339D8F01D11EB8C4B505BC4F9AE02.roa (hash: U9RF+JaWcsKZTr1DEGw1Y5hTdB+oWxy9sRXTz5ZgIuo=) 8: C89FD6DA557611EBA04C290BC4F9AE02.roa (hash: Y+JgutBZqKB0sr/67XUkEfaEMyqBwPZIYt+9Yv44r5c=) 9: FC6A19D892D511EC8FBFF32AC4F9AE02.roa (hash: kjWRly5sP345NgQNsNa2Y38tsuhMAJkUf7cDKkslnxQ=) 10: 1BF3A43C15BE11EF93ABFD7DC4F9AE02.roa (hash: Dnw6VZCydK3JoKDSOzotlEvfgmRpxLVN7ezEA2ZyyGo=) 11: 0B24875C7A4411EB804B7430C4F9AE02.roa (hash: Y+xehgtewaeOdOL6PowHHRPVgAd4mQJAADuq74in7FA=) 12: 3D68F8C29A4A11EA94706012C4F9AE02.roa (hash: +Q2D0d9yEIcvHWqL458RmFQjgHnoWa/Nyf3wOjdRqJY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E6D5D/9DCB68E01D8811E294B955E108B02CD2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.crl rsync://rpki.apnic.net/member_repository/A91E6D5D/9DCB68E01D8811E294B955E108B02CD2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 14:30:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6882 (0x1ae2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E6D5D, serialNumber=64A665816AEFED73B3075007DA5337AC7DEC4B81 Validity Not Before: May 31 14:30:12 2025 GMT Not After : Jun 7 14:30:12 2025 GMT Subject: CN=683b1274-5eaf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:f0:47:ff:9e:e2:09:37:93:9f:a4:52:0c:7b: c2:2e:ac:74:7d:ca:7f:de:f0:6d:33:9c:e4:41:bb: 22:00:a6:e2:d4:38:f1:27:1a:d1:28:f9:9d:70:4f: 54:3b:dd:1d:8d:95:e5:9a:de:da:e1:e3:fb:c3:85: 4b:80:d9:7d:88:78:76:e0:98:3d:31:08:a1:63:cc: db:3e:75:c7:20:20:a1:56:cb:eb:78:8d:d7:b2:2e: ca:8c:4f:2f:c8:6b:09:56:f9:0c:3b:85:b4:7b:da: 32:f1:b9:5d:96:09:cd:46:57:a4:93:25:f8:19:de: 63:e4:93:9d:9a:e8:07:10:4b:2e:ba:fe:5e:78:4d: 77:ed:bc:e1:ca:e4:89:ee:76:bf:e2:19:41:9e:50: af:b2:8f:17:aa:db:59:eb:13:04:a7:1f:58:0e:82: 09:d6:ed:8b:69:8b:c5:18:3f:6e:23:78:2e:49:85: d9:3e:56:c2:7a:08:36:c0:cc:a9:ae:e7:28:c9:47: b6:59:51:52:b2:9a:8a:00:7c:53:cd:e8:0b:ae:c1: 08:38:b4:21:46:11:a6:75:22:44:97:03:0c:b0:05: 2b:40:49:21:e6:4e:31:85:2d:76:64:1c:bd:fc:72: 47:8b:58:53:b5:22:16:6b:cd:f0:6e:31:f7:96:f3: bf:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:3C:05:37:B5:7F:38:EC:7A:51:5B:4C:FC:3D:25:35:23:99:7C:B5 X509v3 Authority Key Identifier: keyid:64:A6:65:81:6A:EF:ED:73:B3:07:50:07:DA:53:37:AC:7D:EC:4B:81 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E6D5D/9DCB68E01D8811E294B955E108B02CD2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6D5D/9DCB68E01D8811E294B955E108B02CD2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 64:7c:e4:cf:01:48:15:bb:7e:ab:c9:fa:ec:41:38:70:ae:2c: d6:61:6d:82:a0:64:09:d2:c0:68:06:23:e2:03:34:44:75:6a: 89:62:0b:20:98:24:de:49:10:44:00:91:ce:a6:89:7f:30:72: a0:94:2d:7d:ba:85:8c:c5:78:ce:2a:68:8e:74:12:e1:eb:fe: 49:e4:f1:85:a4:79:d6:0b:cd:f0:7b:88:e4:bb:06:44:48:4e: c3:6a:b6:52:1f:42:d7:e8:95:0e:01:26:35:e0:de:a9:06:64: bb:e2:21:64:8a:9a:4b:88:a8:03:12:c1:62:6c:92:3b:5b:1f: 37:74:ea:82:a3:2e:55:51:b3:83:0a:bc:2a:66:b6:b7:df:85: da:08:05:41:56:b3:95:a0:25:71:cc:0e:d5:69:f2:00:25:a6: 80:ab:8f:1f:1c:74:97:36:50:74:b4:22:6c:40:a0:79:51:7f: 0b:0f:7f:08:ed:c5:61:c2:34:7d:fa:e4:f7:7c:e8:dd:8e:e1: ef:93:30:c8:66:85:5f:0e:7c:3b:98:0d:de:c8:6d:7c:fc:2e: 33:1b:30:14:e7:26:ea:82:91:6e:8d:38:77:f9:6a:e3:1c:ae: 0d:d8:41:fe:4b:18:9e:b2:0b:94:9f:4d:1e:4a:91:ba:2d:3a: 01:31:03:e0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGuIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTZENUQxMTAvBgNVBAUTKDY0QTY2NTgxNkFFRkVENzNCMzA3NTAwN0RBNTMzN0FD N0RFQzRCODEwHhcNMjUwNTMxMTQzMDEyWhcNMjUwNjA3MTQzMDEyWjAYMRYwFAYD VQQDEw02ODNiMTI3NC01ZWFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx/BH/57iCTeTn6RSDHvCLqx0fcp/3vBtM5zkQbsiAKbi1DjxJxrRKPmdcE9U O90djZXlmt7a4eP7w4VLgNl9iHh24Jg9MQihY8zbPnXHICChVsvreI3Xsi7KjE8v yGsJVvkMO4W0e9oy8bldlgnNRlekkyX4Gd5j5JOdmugHEEsuuv5eeE137bzhyuSJ 7na/4hlBnlCvso8XqttZ6xMEpx9YDoIJ1u2LaYvFGD9uI3guSYXZPlbCegg2wMyp rucoyUe2WVFSspqKAHxTzegLrsEIOLQhRhGmdSJElwMMsAUrQEkh5k4xhS12ZBy9 /HJHi1hTtSIWa83wbjH3lvO/MQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBY8BTe1 fzjselFbTPw9JTUjmXy1MB8GA1UdIwQYMBaAFGSmZYFq7+1zswdQB9pTN6x97EuB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNkQ1RC85RENCNjhFMDFE ODgxMUUyOTRCOTU1RTEwOEIwMkNEMi9aS1psZ1dydjdYT3pCMUFIMmxNM3JIM3NT NEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pLWmxnV3J2N1hPekIxQUgybE0zckgzc1M0RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NkQ1RC85RENCNjhFMDFEODgxMUUyOTRCOTU1RTEwOEIwMkNEMi9aS1psZ1dydjdY T3pCMUFIMmxNM3JIM3NTNEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBkfOTPAUgVu36ryfrsQThwrizWYW2CoGQJ0sBoBiPiAzREdWqJYgsg mCTeSRBEAJHOpol/MHKglC19uoWMxXjOKmiOdBLh6/5J5PGFpHnWC83we4jkuwZE SE7DarZSH0LX6JUOASY14N6pBmS74iFkippLiKgDEsFibJI7Wx83dOqCoy5VUbOD CrwqZra334XaCAVBVrOVoCVxzA7VafIAJaaAq48fHHSXNlB0tCJsQKB5UX8LD38I 7cVhwjR9+uT3fOjdjuHvkzDIZoVfDnw7mA3eyG18/C4zGzAU5ybqgpFujTh3+Wrj HK4N2EH+SxiesguUn00eSpG6LToBMQPg -----END CERTIFICATE-----Generated at Sat May 31 17:42:38 2025 by rpki-client