$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6D5D/9DCB68E01D8811E294B955E108B02CD2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.mft File: ZKZlgWrv7XOzB1AH2lM3rH3sS4E.mft (raw, json) Hash identifier: tLrFxb/aUwY84dkXn1+ku6RKR4Na6ruPQsezP+7bAPM= Subject key identifier: A0:5D:29:FF:65:B1:FC:F4:56:FE:AB:55:53:07:5F:6E:3A:54:3A:59 Authority key identifier: 64:A6:65:81:6A:EF:ED:73:B3:07:50:07:DA:53:37:AC:7D:EC:4B:81 Certificate issuer: /CN=A91E6D5D/serialNumber=64A665816AEFED73B3075007DA5337AC7DEC4B81 Certificate serial: 1B2B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E6D5D/9DCB68E01D8811E294B955E108B02CD2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.mft Manifest number: A06A Signing time: Wed 22 Oct 2025 14:31:55 +0000 Manifest this update: Wed 22 Oct 2025 14:31:54 +0000 Manifest next update: Wed 29 Oct 2025 14:31:54 +0000 Files and hashes: 1: ZKZlgWrv7XOzB1AH2lM3rH3sS4E.crl (hash: 3yu0VGQCGrPTBdEhbwq2J+hV+Y+0WGys/GobEynPNXw=) 2: 9907DC46D4BC11EF9BDDAF2EC4F9AE02.roa (hash: RYynr8uizf4mxXQD/bYs58a0i9OmwI4vdpj7nHmjiJU=) 3: 959AC422557911EBBD21EB2FC4F9AE02.roa (hash: oMF/P2hGXRHcLkAXgbmeUw5lcthqUMWdcFQRgDGmw2Q=) 4: 20C6F2EC699D11EAA33EAE83C4F9AE02.roa (hash: 68iXhMXoCKzkvFm4ZJIC/ibhTxkbyNkKn12MmIsJUjc=) 5: 191363A69DD911EC99D91668C4F9AE02.roa (hash: oqniAucPfqcKV0mTFTmt9sxkwi/yyX2GOXb0nYNRsyI=) 6: ACC8833824DE11EDAEC0E529C4F9AE02.roa (hash: SpN5g9M2rsSW+Cra37fKcK/lk5XqYbPAMh8S4vUS9qk=) 7: 4FF339D8F01D11EB8C4B505BC4F9AE02.roa (hash: U9RF+JaWcsKZTr1DEGw1Y5hTdB+oWxy9sRXTz5ZgIuo=) 8: C89FD6DA557611EBA04C290BC4F9AE02.roa (hash: Y+JgutBZqKB0sr/67XUkEfaEMyqBwPZIYt+9Yv44r5c=) 9: FC6A19D892D511EC8FBFF32AC4F9AE02.roa (hash: kjWRly5sP345NgQNsNa2Y38tsuhMAJkUf7cDKkslnxQ=) 10: 1BF3A43C15BE11EF93ABFD7DC4F9AE02.roa (hash: Dnw6VZCydK3JoKDSOzotlEvfgmRpxLVN7ezEA2ZyyGo=) 11: 0B24875C7A4411EB804B7430C4F9AE02.roa (hash: Y+xehgtewaeOdOL6PowHHRPVgAd4mQJAADuq74in7FA=) 12: 3D68F8C29A4A11EA94706012C4F9AE02.roa (hash: +Q2D0d9yEIcvHWqL458RmFQjgHnoWa/Nyf3wOjdRqJY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E6D5D/9DCB68E01D8811E294B955E108B02CD2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.crl rsync://rpki.apnic.net/member_repository/A91E6D5D/9DCB68E01D8811E294B955E108B02CD2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 29 Oct 2025 14:31:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6955 (0x1b2b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E6D5D, serialNumber=64A665816AEFED73B3075007DA5337AC7DEC4B81 Validity Not Before: Oct 22 14:31:54 2025 GMT Not After : Oct 29 14:31:54 2025 GMT Subject: CN=68f8eada-0c98 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:89:b2:eb:06:59:13:3b:8b:d1:47:f6:1b:1d: 91:90:9c:e4:cb:5d:eb:63:22:15:35:35:ac:c6:03: a2:d7:69:7a:f1:54:0b:ed:37:b7:52:0c:a5:a0:8d: 35:bf:0d:a6:4e:83:bb:f7:f8:7d:8b:86:75:b2:1c: 4d:56:b1:63:c8:2a:a4:10:a3:6b:d2:75:d1:4d:7f: ba:08:ac:df:95:87:2a:cd:10:88:d9:d4:d7:73:84: 79:d7:5b:dc:df:2c:7e:b3:02:48:9a:c5:12:ea:d6: 5d:25:9c:24:91:27:51:0e:50:33:ac:72:30:b4:f4: ee:75:85:23:10:3c:cf:b3:17:5d:b6:c2:0a:39:ad: 76:d5:86:19:cf:be:8f:1f:04:d6:9e:a5:ec:e3:3b: f4:03:4d:1a:d8:7a:80:fe:4c:f6:60:4f:dd:7b:d1: ef:3d:94:7c:06:51:53:cc:f8:b8:77:50:82:4e:a6: 13:10:42:83:e8:31:40:30:5f:ce:8a:39:a9:00:36: 72:ec:57:ea:8f:4b:f2:19:79:0d:81:60:8d:5c:83: 49:78:21:19:8e:d4:b7:86:29:94:80:3a:b3:2f:4f: 43:08:7f:af:b5:0c:d2:fe:92:83:6d:91:a6:d8:fe: fb:e3:cd:60:a3:cf:7e:d2:7d:8c:e0:54:01:c4:fd: 1b:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:5D:29:FF:65:B1:FC:F4:56:FE:AB:55:53:07:5F:6E:3A:54:3A:59 X509v3 Authority Key Identifier: keyid:64:A6:65:81:6A:EF:ED:73:B3:07:50:07:DA:53:37:AC:7D:EC:4B:81 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E6D5D/9DCB68E01D8811E294B955E108B02CD2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6D5D/9DCB68E01D8811E294B955E108B02CD2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:d7:05:1b:b7:6f:bb:59:31:fb:39:c6:f0:74:cc:da:20:95: 7b:c9:56:07:ee:98:f2:52:4e:b9:a4:ed:02:5f:60:a7:3c:c7: 97:1d:dd:7a:c5:b6:48:b0:a0:1b:b5:a5:52:5b:0f:49:88:db: 2f:f6:41:39:6e:dc:ce:2f:e0:99:ed:89:0c:05:63:b5:8a:73: bb:9e:60:57:d8:eb:0c:31:a9:6f:44:8f:3f:9f:e6:6e:c0:c7: 6d:cf:4f:92:72:aa:e9:f3:85:31:a4:50:cf:7d:ef:34:5e:c4: 6c:7a:3c:6c:9e:64:b3:61:8a:a0:0e:a3:09:55:e8:a2:f7:5c: 80:df:0e:9a:8a:cf:31:bc:68:de:9b:b4:f9:a4:79:a5:08:f2: 3b:19:32:19:8e:a4:e2:6b:69:47:a3:e4:f1:17:a8:98:7f:ed: 7e:db:e6:a6:3e:08:a7:3b:00:39:75:ab:df:78:7d:bf:e0:7d: d1:fd:7d:19:d6:f8:12:49:98:61:8c:74:53:1d:1f:46:b6:2f: 74:68:dd:36:e5:79:73:b8:59:8f:b4:53:25:2f:7f:0c:0b:21: 5b:99:a5:71:4b:3e:3e:f3:8b:43:80:b3:f1:51:ea:1b:1f:89: 10:1a:be:38:bb:86:ec:91:09:3d:af:1f:38:ce:fc:48:67:c6: 12:13:5a:29 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGyswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTZENUQxMTAvBgNVBAUTKDY0QTY2NTgxNkFFRkVENzNCMzA3NTAwN0RBNTMzN0FD N0RFQzRCODEwHhcNMjUxMDIyMTQzMTU0WhcNMjUxMDI5MTQzMTU0WjAYMRYwFAYD VQQDEw02OGY4ZWFkYS0wYzk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxomy6wZZEzuL0Uf2Gx2RkJzky13rYyIVNTWsxgOi12l68VQL7Te3UgyloI01 vw2mToO79/h9i4Z1shxNVrFjyCqkEKNr0nXRTX+6CKzflYcqzRCI2dTXc4R511vc 3yx+swJImsUS6tZdJZwkkSdRDlAzrHIwtPTudYUjEDzPsxddtsIKOa121YYZz76P HwTWnqXs4zv0A00a2HqA/kz2YE/de9HvPZR8BlFTzPi4d1CCTqYTEEKD6DFAMF/O ijmpADZy7Ffqj0vyGXkNgWCNXINJeCEZjtS3himUgDqzL09DCH+vtQzS/pKDbZGm 2P77481go89+0n2M4FQBxP0bjQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKBdKf9l sfz0Vv6rVVMHX246VDpZMB8GA1UdIwQYMBaAFGSmZYFq7+1zswdQB9pTN6x97EuB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNkQ1RC85RENCNjhFMDFE ODgxMUUyOTRCOTU1RTEwOEIwMkNEMi9aS1psZ1dydjdYT3pCMUFIMmxNM3JIM3NT NEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pLWmxnV3J2N1hPekIxQUgybE0zckgzc1M0RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NkQ1RC85RENCNjhFMDFEODgxMUUyOTRCOTU1RTEwOEIwMkNEMi9aS1psZ1dydjdY T3pCMUFIMmxNM3JIM3NTNEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA61wUbt2+7WTH7OcbwdMzaIJV7yVYH7pjyUk65pO0CX2CnPMeXHd16 xbZIsKAbtaVSWw9JiNsv9kE5btzOL+CZ7YkMBWO1inO7nmBX2OsMMalvRI8/n+Zu wMdtz0+Scqrp84UxpFDPfe80XsRsejxsnmSzYYqgDqMJVeii91yA3w6ais8xvGje m7T5pHmlCPI7GTIZjqTia2lHo+TxF6iYf+1+2+amPginOwA5davfeH2/4H3R/X0Z 1vgSSZhhjHRTHR9Gti90aN025XlzuFmPtFMlL38MCyFbmaVxSz4+84tDgLPxUeob H4kQGr44u4bskQk9rx84zvxIZ8YSE1op -----END CERTIFICATE-----Generated at Thu Oct 23 07:44:40 2025 by rpki-client