$ rpki-client -vvf rpki.apnic.net/member_repository/A9165568/BD1A95D21D8711E29BE3E6DF08B02CD2/Zwl-SS9z1tvTH6AWotW1uGqbP9g.mft File: Zwl-SS9z1tvTH6AWotW1uGqbP9g.mft (raw, json) Hash identifier: KiT29YXqNY+RRWnIaXFvK6FDDUBdcEUbr3VtiUdgfCk= Subject key identifier: 02:2A:9C:CF:0C:CE:DF:A1:28:5C:0A:66:32:0B:2F:FB:38:A9:0A:90 Authority key identifier: 67:09:7E:49:2F:73:D6:DB:D3:1F:A0:16:A2:D5:B5:B8:6A:9B:3F:D8 Certificate issuer: /CN=A9165568/serialNumber=67097E492F73D6DBD31FA016A2D5B5B86A9B3FD8 Certificate serial: 1CFA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Zwl-SS9z1tvTH6AWotW1uGqbP9g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9165568/BD1A95D21D8711E29BE3E6DF08B02CD2/Zwl-SS9z1tvTH6AWotW1uGqbP9g.mft Manifest number: 3EFF Signing time: Sun 10 Aug 2025 14:28:46 +0000 Manifest this update: Sun 10 Aug 2025 14:28:46 +0000 Manifest next update: Sun 17 Aug 2025 14:28:46 +0000 Files and hashes: 1: Zwl-SS9z1tvTH6AWotW1uGqbP9g.crl (hash: CFnGBwyLDjghlxXicrv4VJcdU7P4a10aks0Ql3iWyu8=) 2: 711F090E8AB411EA89D83541C4F9AE02.roa (hash: V43Il4g6nzN/Oi9NZNkfIg3qfCZBm83zni76jTMor3c=) 3: D2EF531219AE11EB8D3BC20EC4F9AE02.roa (hash: ecbq5n9i8YsI1DnV/FNeUcy7K6RyCgb2n5KgFVtlRys=) 4: 777F5CEE8AA611EA94BC0D13C4F9AE02.roa (hash: QIByum0Q8MqWfLpB0ykV4dVr25yJxf+XqNJq06uiuWw=) 5: E1B073B689F011EABAEDCE2FC4F9AE02.roa (hash: 3mizSI3ttwr9fYLhX95SY8SiU7O6qd9AnRwusH6MEfo=) 6: 671FF9F6943011EA8988B883C4F9AE02.roa (hash: Wdg4VF5GLoHlwlPyl6+HlE/ibrc1SiBo2CXSWmJGq0s=) 7: A310F2FC8AB811EA9F89B54EC4F9AE02.roa (hash: kTpEYCAmunxJIp4Id6sV5egINJOtqBpQw2yNKgEwrR4=) 8: FDC7AB404C4711F0BDC34276C4F9AE02.roa (hash: JZoWxsRbV7qWkDrZjMBEtqXRAY211vcz/IuFZQVqVOA=) 9: E206DF40E79011E699B81D0FC4F9AE02.roa (hash: 05JiHZhW4FX5F4m2ta1eoZQOXujb14zXuKofXn8V9ts=) 10: 095798588ABA11EAB5EDDE54C4F9AE02.roa (hash: lXnIjaE79MbFJFMKpPmyaG2gWaI8IDWerJKv1saa/n0=) 11: 66891B80943011EA8988B883C4F9AE02.roa (hash: e8EsUIru5I+kvcxrClJSF0og6ruHigKw4K5qZx/355g=) 12: 727C68508AB411EA89D83541C4F9AE02.roa (hash: 3/YHfMJFd4+/uHvYeznP2jrI3k3cNg88tQA8zxhGa9Q=) 13: A75964A28E4B11EA8A347A3EC4F9AE02.roa (hash: KqNlQBgDzVn6oYtQRMX2oZuYkDyyOGts1nvV6+UnhlU=) 14: 084044FC19AC11EB8759456DC4F9AE02.roa (hash: W9G6BLl6GrAu6NpuOira3w9ONwVWK7LaREYQeOaaW/o=) 15: 5D24529CAB0C11EA8D5ADE09C4F9AE02.roa (hash: jQLZJj3VvPR1niUIT7DA9sty7btEtK8rmHNsN8IaW9w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9165568/BD1A95D21D8711E29BE3E6DF08B02CD2/Zwl-SS9z1tvTH6AWotW1uGqbP9g.crl rsync://rpki.apnic.net/member_repository/A9165568/BD1A95D21D8711E29BE3E6DF08B02CD2/Zwl-SS9z1tvTH6AWotW1uGqbP9g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Zwl-SS9z1tvTH6AWotW1uGqbP9g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7418 (0x1cfa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9165568, serialNumber=67097E492F73D6DBD31FA016A2D5B5B86A9B3FD8 Validity Not Before: Aug 10 14:28:46 2025 GMT Not After : Aug 17 14:28:46 2025 GMT Subject: CN=6898ac9e-187a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:86:11:d0:de:96:21:5d:29:a5:34:dc:b5:11: 68:47:5b:1e:fc:43:6f:f8:72:5b:4b:4e:37:62:cd: f3:50:cc:ec:79:ff:0e:f5:6b:29:d3:9d:be:1f:0c: 56:21:81:58:a3:60:ea:89:77:d0:50:a0:54:40:ad: 40:d5:fc:e6:66:2b:b7:0f:a4:f2:e0:f2:f2:3a:0a: 2c:b4:2b:c7:fa:da:01:5f:03:0e:9c:89:c7:56:3f: 3f:c5:89:56:44:11:f3:c4:f9:38:34:1c:af:ff:75: d3:19:b1:fe:56:f4:fc:b6:cd:af:b9:f5:17:a6:bc: 1f:9f:03:97:ca:ac:9d:6e:01:70:8b:e4:7f:72:f1: 37:ca:46:b0:8f:f4:8a:7c:13:f6:77:35:10:51:38: e3:ab:6c:ea:0c:82:1e:4c:4f:c0:63:bd:17:20:e2: 08:d4:79:a5:32:f9:be:d1:67:e2:9f:1b:5c:bb:d4: 25:4b:67:aa:8d:1d:b8:db:a5:2a:36:cb:be:45:e6: a4:63:b0:e7:91:f3:49:2c:b5:0e:ef:c0:32:d7:87: 25:b7:8d:c6:f6:50:26:29:2a:11:a6:b8:fc:f3:64: 5a:29:d8:ee:3d:64:0a:06:72:79:28:bc:61:f6:3b: 4a:3c:1b:1a:3a:da:1c:39:1e:57:37:73:f5:bb:9f: a3:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:2A:9C:CF:0C:CE:DF:A1:28:5C:0A:66:32:0B:2F:FB:38:A9:0A:90 X509v3 Authority Key Identifier: keyid:67:09:7E:49:2F:73:D6:DB:D3:1F:A0:16:A2:D5:B5:B8:6A:9B:3F:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9165568/BD1A95D21D8711E29BE3E6DF08B02CD2/Zwl-SS9z1tvTH6AWotW1uGqbP9g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Zwl-SS9z1tvTH6AWotW1uGqbP9g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9165568/BD1A95D21D8711E29BE3E6DF08B02CD2/Zwl-SS9z1tvTH6AWotW1uGqbP9g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b4:a1:83:e5:fc:03:a8:05:2e:c4:f1:12:0c:14:c4:9e:cf:43: f2:26:61:b6:b3:6a:99:67:d6:11:2b:58:e2:05:35:53:f5:a8: e5:fa:53:b7:98:ca:0d:2d:4b:64:d8:35:a1:33:02:e5:93:3c: cc:35:67:6e:b6:eb:88:28:6a:b2:73:37:b1:5a:19:d1:1a:cc: 0d:25:2a:37:1f:f9:df:ee:7c:ee:e9:e8:a7:e8:9b:a9:88:c2: a1:53:85:d7:e3:d6:c6:9a:2f:8a:cf:10:b6:71:7b:f6:09:00: 0a:8e:93:89:50:f9:bf:95:e8:29:48:4b:a1:ec:8a:d9:74:36: 19:96:5d:0a:50:1b:f6:50:55:ce:70:75:9a:b9:3d:1b:60:cf: cc:5a:02:a7:f9:e4:75:0c:fa:69:79:8f:81:31:16:d7:10:92: 77:47:48:4e:81:34:47:99:41:41:c9:48:3e:13:0c:d4:ce:7a: 28:97:98:e0:56:07:c5:bc:94:e2:b0:1f:0e:37:26:05:b1:6d: bc:07:56:aa:50:59:6f:72:36:c2:5a:e1:e4:89:7d:7d:79:ab: a8:95:db:d3:ab:fd:c9:e3:76:7e:cc:4b:a3:cc:a6:0b:2f:b5: 9a:5c:08:43:67:69:e5:38:1c:f0:03:9b:9d:30:9b:7a:8b:a3: 66:45:f3:34 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHPowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjU1NjgxMTAvBgNVBAUTKDY3MDk3RTQ5MkY3M0Q2REJEMzFGQTAxNkEyRDVCNUI4 NkE5QjNGRDgwHhcNMjUwODEwMTQyODQ2WhcNMjUwODE3MTQyODQ2WjAYMRYwFAYD VQQDEw02ODk4YWM5ZS0xODdhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmoYR0N6WIV0ppTTctRFoR1se/ENv+HJbS043Ys3zUMzsef8O9Wsp052+HwxW IYFYo2DqiXfQUKBUQK1A1fzmZiu3D6Ty4PLyOgostCvH+toBXwMOnInHVj8/xYlW RBHzxPk4NByv/3XTGbH+VvT8ts2vufUXprwfnwOXyqydbgFwi+R/cvE3ykawj/SK fBP2dzUQUTjjq2zqDIIeTE/AY70XIOII1HmlMvm+0Wfinxtcu9QlS2eqjR2426Uq Nsu+ReakY7DnkfNJLLUO78Ay14clt43G9lAmKSoRprj882RaKdjuPWQKBnJ5KLxh 9jtKPBsaOtocOR5XN3P1u5+j6QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAIqnM8M zt+hKFwKZjILL/s4qQqQMB8GA1UdIwQYMBaAFGcJfkkvc9bb0x+gFqLVtbhqmz/Y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NTU2OC9CRDFBOTVEMjFE ODcxMUUyOUJFM0U2REYwOEIwMkNEMi9ad2wtU1M5ejF0dlRINkFXb3RXMXVHcWJQ OWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1p3bC1TUzl6MXR2VEg2QVdvdFcxdUdxYlA5Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NTU2OC9CRDFBOTVEMjFEODcxMUUyOUJFM0U2REYwOEIwMkNEMi9ad2wtU1M5ejF0 dlRINkFXb3RXMXVHcWJQOWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC0oYPl/AOoBS7E8RIMFMSez0PyJmG2s2qZZ9YRK1jiBTVT9ajl+lO3 mMoNLUtk2DWhMwLlkzzMNWdutuuIKGqyczexWhnRGswNJSo3H/nf7nzu6ein6Jup iMKhU4XX49bGmi+KzxC2cXv2CQAKjpOJUPm/legpSEuh7IrZdDYZll0KUBv2UFXO cHWauT0bYM/MWgKn+eR1DPppeY+BMRbXEJJ3R0hOgTRHmUFByUg+EwzUznool5jg VgfFvJTisB8ONyYFsW28B1aqUFlvcjbCWuHkiX19eauoldvTq/3J43Z+zEujzKYL L7WaXAhDZ2nlOBzwA5udMJt6i6NmRfM0 -----END CERTIFICATE-----Generated at Sun Aug 10 18:13:04 2025 by rpki-client