$ rpki-client -vvf rpki.apnic.net/member_repository/A9165568/BD1A95D21D8711E29BE3E6DF08B02CD2/Zwl-SS9z1tvTH6AWotW1uGqbP9g.mft File: Zwl-SS9z1tvTH6AWotW1uGqbP9g.mft (raw, json) Hash identifier: H8s1NewXlZ+e0VbM/ZsdyiHjIWWCSYISMrOdgfjXdjc= Subject key identifier: 83:0E:D1:39:B9:EE:49:E9:EF:07:76:C1:D5:C9:AD:81:4C:D9:2A:FB Authority key identifier: 67:09:7E:49:2F:73:D6:DB:D3:1F:A0:16:A2:D5:B5:B8:6A:9B:3F:D8 Certificate issuer: /CN=A9165568/serialNumber=67097E492F73D6DBD31FA016A2D5B5B86A9B3FD8 Certificate serial: 1D3E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Zwl-SS9z1tvTH6AWotW1uGqbP9g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9165568/BD1A95D21D8711E29BE3E6DF08B02CD2/Zwl-SS9z1tvTH6AWotW1uGqbP9g.mft Manifest number: 3F31 Signing time: Tue 04 Nov 2025 15:00:41 +0000 Manifest this update: Tue 04 Nov 2025 15:00:41 +0000 Manifest next update: Tue 11 Nov 2025 15:00:41 +0000 Files and hashes: 1: Zwl-SS9z1tvTH6AWotW1uGqbP9g.crl (hash: TDF5TSNS73AzgnyCF7WPV4s5pHTWld52tN4T2tInMyY=) 2: 711F090E8AB411EA89D83541C4F9AE02.roa (hash: r78eeJS+BDDH2r+y+TjbT7lul0niVaJmaG9EPRTVLEA=) 3: D2EF531219AE11EB8D3BC20EC4F9AE02.roa (hash: Rd5Er0xxqgtyrGJoJrGL9EMcQw8NMf5g6jCq0sMGA2Q=) 4: 777F5CEE8AA611EA94BC0D13C4F9AE02.roa (hash: IJCEqByUe86RyI1SEW/vBF87Iilsn4UICW7iY+WvY8E=) 5: E1B073B689F011EABAEDCE2FC4F9AE02.roa (hash: BQASzDMoZGti29AoR0Pq4aTzWnI5eU0zGxOf0N6YL7c=) 6: 671FF9F6943011EA8988B883C4F9AE02.roa (hash: /30QQO8T+zbAoJVEVmt2p73HEAnpD/qZnVwPXTZxOz4=) 7: A310F2FC8AB811EA9F89B54EC4F9AE02.roa (hash: wH+IRKZ1NIUWIXoVcdaNt57ezVht3vvSswJVKox/4MU=) 8: FDC7AB404C4711F0BDC34276C4F9AE02.roa (hash: jTW6GCgA6t5RZt4cBhqsLnaWxANLGru3wL3DllbKBA0=) 9: E206DF40E79011E699B81D0FC4F9AE02.roa (hash: DJ64IBDlDU/a8eJ5izylG8R4FJJjLaqWZZpyQhY6Hi8=) 10: 095798588ABA11EAB5EDDE54C4F9AE02.roa (hash: ry57bqRwnAlEf+uhF7YD9dV4dZUL+Moi6864EjQ+jQs=) 11: 66891B80943011EA8988B883C4F9AE02.roa (hash: JYoC4fW3kRGP8Ar/zZX8AIqfFYSLxK+uB/Z4GhIiHiU=) 12: 195AEC4287CF11F09EDBA229C4F9AE02.roa (hash: pOLY0PYhynw66mmFO8/JSImgDG/U0QyM40bUtgs0DkI=) 13: 727C68508AB411EA89D83541C4F9AE02.roa (hash: g1OdgCJIG24i3efkM1MbRleAf+V9n/PaQ+dpGNZIZlc=) 14: A75964A28E4B11EA8A347A3EC4F9AE02.roa (hash: LcHZ8dsRApo4tmI2qwJgG4gB+Gp0ezrnUO4zTwhEVS8=) 15: 084044FC19AC11EB8759456DC4F9AE02.roa (hash: tXU3H5G59bPS8ThyDNGfd71Us5C/fJZsYjLpQS/kfKY=) 16: 5D24529CAB0C11EA8D5ADE09C4F9AE02.roa (hash: bI/eJQMMkB6/dZTbCr4cB1EJKt20/rle49/P9c8Bgh8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9165568/BD1A95D21D8711E29BE3E6DF08B02CD2/Zwl-SS9z1tvTH6AWotW1uGqbP9g.crl rsync://rpki.apnic.net/member_repository/A9165568/BD1A95D21D8711E29BE3E6DF08B02CD2/Zwl-SS9z1tvTH6AWotW1uGqbP9g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Zwl-SS9z1tvTH6AWotW1uGqbP9g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 15:00:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7486 (0x1d3e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9165568, serialNumber=67097E492F73D6DBD31FA016A2D5B5B86A9B3FD8 Validity Not Before: Nov 4 15:00:41 2025 GMT Not After : Nov 11 15:00:41 2025 GMT Subject: CN=690a1519-b6dc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:a2:34:aa:d5:69:6d:6c:bf:5b:51:df:02:37: 84:ed:bb:71:f4:e1:a1:df:7a:6d:4c:0d:c0:13:06: e4:1f:d3:49:67:c2:55:cc:23:4d:59:05:58:09:bd: 57:36:ba:74:dc:16:1d:b0:4e:59:fe:cc:00:44:82: 0e:f7:40:be:b0:6c:b1:66:5e:b6:f3:50:37:55:d9: 53:4a:3c:2f:01:9d:bb:94:93:87:85:ac:45:99:5a: fa:09:43:3d:59:e6:ae:df:69:e3:f9:92:db:54:1a: de:cd:79:3c:b8:93:36:75:16:2f:b8:81:b0:4d:5c: df:bb:7f:f1:7e:47:ca:50:59:15:d5:5b:5b:1e:25: fc:95:2e:3a:45:f4:c6:b6:03:cb:f0:7b:f8:0f:d2: 9b:b9:b8:61:60:06:1a:77:71:3b:e0:01:3c:cc:ee: 8e:03:7a:1d:6f:22:7f:15:18:8b:2d:8a:81:78:79: 49:79:ba:da:93:31:b1:5d:3d:b7:7c:f2:4a:52:25: 80:e2:62:65:19:8f:4a:b7:b0:3e:8b:56:66:89:19: 3a:9a:f2:54:3a:f8:ff:6c:42:ac:31:e7:2f:d5:55: c9:d8:04:07:d8:85:7d:5b:50:1f:fe:28:bb:ff:ba: c3:b2:ea:f0:38:e2:d5:8e:8d:f9:68:db:34:fc:43: ca:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:0E:D1:39:B9:EE:49:E9:EF:07:76:C1:D5:C9:AD:81:4C:D9:2A:FB X509v3 Authority Key Identifier: keyid:67:09:7E:49:2F:73:D6:DB:D3:1F:A0:16:A2:D5:B5:B8:6A:9B:3F:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9165568/BD1A95D21D8711E29BE3E6DF08B02CD2/Zwl-SS9z1tvTH6AWotW1uGqbP9g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Zwl-SS9z1tvTH6AWotW1uGqbP9g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9165568/BD1A95D21D8711E29BE3E6DF08B02CD2/Zwl-SS9z1tvTH6AWotW1uGqbP9g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 80:20:82:9e:f7:ae:19:a6:ed:01:f5:75:34:f6:70:4a:37:cd: b8:19:cc:1e:83:0b:c2:fe:45:31:0f:27:35:a2:62:27:94:77: 43:22:8a:7b:38:9c:b0:c3:fb:91:61:2f:39:76:46:e1:00:be: 93:1d:8a:76:d5:62:22:49:48:31:5d:c0:b3:3f:06:fb:fb:61: 88:29:b2:04:f4:9c:ba:16:38:67:7f:96:10:6d:77:dc:ce:a1: 3c:09:82:87:45:a7:73:24:2f:21:2c:0a:5e:b6:c6:4b:ed:d2: 9f:9f:82:c1:41:20:ed:69:e4:f8:72:03:bf:cc:37:e5:66:20: 84:5e:65:d8:4a:93:fb:d8:6b:1b:4f:da:b1:10:47:c5:a4:a8: ba:4c:95:4d:20:c5:31:74:43:37:3d:e5:60:c9:61:a2:6a:fb: e7:9b:e1:81:be:bf:99:1a:a7:96:c7:6f:3c:85:66:34:6a:a5: c9:6a:2b:1a:12:0c:67:95:dd:f1:85:c1:7c:97:a5:27:f9:c4: 6c:34:fa:11:66:a8:8e:60:93:0a:ce:0b:09:a1:1e:24:6b:2f: 8c:99:fa:60:9f:9d:01:94:d6:01:fb:4d:bf:7e:47:d7:5f:c1: f4:5e:d2:47:58:95:12:20:69:d4:93:5f:bc:a4:9c:f7:24:75: 1f:db:46:8c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHT4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjU1NjgxMTAvBgNVBAUTKDY3MDk3RTQ5MkY3M0Q2REJEMzFGQTAxNkEyRDVCNUI4 NkE5QjNGRDgwHhcNMjUxMTA0MTUwMDQxWhcNMjUxMTExMTUwMDQxWjAYMRYwFAYD VQQDEw02OTBhMTUxOS1iNmRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4KI0qtVpbWy/W1HfAjeE7btx9OGh33ptTA3AEwbkH9NJZ8JVzCNNWQVYCb1X Nrp03BYdsE5Z/swARIIO90C+sGyxZl6281A3VdlTSjwvAZ27lJOHhaxFmVr6CUM9 Weau32nj+ZLbVBrezXk8uJM2dRYvuIGwTVzfu3/xfkfKUFkV1VtbHiX8lS46RfTG tgPL8Hv4D9KbubhhYAYad3E74AE8zO6OA3odbyJ/FRiLLYqBeHlJebrakzGxXT23 fPJKUiWA4mJlGY9Kt7A+i1ZmiRk6mvJUOvj/bEKsMecv1VXJ2AQH2IV9W1Af/ii7 /7rDsurwOOLVjo35aNs0/EPKpwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIMO0Tm5 7knp7wd2wdXJrYFM2Sr7MB8GA1UdIwQYMBaAFGcJfkkvc9bb0x+gFqLVtbhqmz/Y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NTU2OC9CRDFBOTVEMjFE ODcxMUUyOUJFM0U2REYwOEIwMkNEMi9ad2wtU1M5ejF0dlRINkFXb3RXMXVHcWJQ OWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1p3bC1TUzl6MXR2VEg2QVdvdFcxdUdxYlA5Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NTU2OC9CRDFBOTVEMjFEODcxMUUyOUJFM0U2REYwOEIwMkNEMi9ad2wtU1M5ejF0 dlRINkFXb3RXMXVHcWJQOWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCAIIKe964Zpu0B9XU09nBKN824GcwegwvC/kUxDyc1omInlHdDIop7 OJyww/uRYS85dkbhAL6THYp21WIiSUgxXcCzPwb7+2GIKbIE9Jy6Fjhnf5YQbXfc zqE8CYKHRadzJC8hLApetsZL7dKfn4LBQSDtaeT4cgO/zDflZiCEXmXYSpP72Gsb T9qxEEfFpKi6TJVNIMUxdEM3PeVgyWGiavvnm+GBvr+ZGqeWx288hWY0aqXJaisa Egxnld3xhcF8l6Un+cRsNPoRZqiOYJMKzgsJoR4kay+Mmfpgn50BlNYB+02/fkfX X8H0XtJHWJUSIGnUk1+8pJz3JHUf20aM -----END CERTIFICATE-----Generated at Wed Nov 5 10:09:58 2025 by rpki-client