$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6D5D/9DCB68E01D8811E294B955E108B02CD2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.mft File: ZKZlgWrv7XOzB1AH2lM3rH3sS4E.mft (raw, json) Hash identifier: GF+usFT7b6bjvb2c9grLQKWdFUky1ZdpZ/sDtVab+Z0= Subject key identifier: AD:CC:AE:20:86:D2:47:A2:B7:55:AC:2E:AF:51:16:01:2E:5C:BE:37 Authority key identifier: 64:A6:65:81:6A:EF:ED:73:B3:07:50:07:DA:53:37:AC:7D:EC:4B:81 Certificate issuer: /CN=A91E6D5D/serialNumber=64A665816AEFED73B3075007DA5337AC7DEC4B81 Certificate serial: 1AE9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E6D5D/9DCB68E01D8811E294B955E108B02CD2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.mft Manifest number: 9F62 Signing time: Sat 14 Jun 2025 14:30:01 +0000 Manifest this update: Sat 14 Jun 2025 14:30:00 +0000 Manifest next update: Sat 21 Jun 2025 14:30:00 +0000 Files and hashes: 1: ZKZlgWrv7XOzB1AH2lM3rH3sS4E.crl (hash: djy5dvjgxqUyCsgaSLeICz3+1TOq3yWKAVnyX0dY3o4=) 2: 9907DC46D4BC11EF9BDDAF2EC4F9AE02.roa (hash: RYynr8uizf4mxXQD/bYs58a0i9OmwI4vdpj7nHmjiJU=) 3: 959AC422557911EBBD21EB2FC4F9AE02.roa (hash: oMF/P2hGXRHcLkAXgbmeUw5lcthqUMWdcFQRgDGmw2Q=) 4: 20C6F2EC699D11EAA33EAE83C4F9AE02.roa (hash: 68iXhMXoCKzkvFm4ZJIC/ibhTxkbyNkKn12MmIsJUjc=) 5: 191363A69DD911EC99D91668C4F9AE02.roa (hash: oqniAucPfqcKV0mTFTmt9sxkwi/yyX2GOXb0nYNRsyI=) 6: ACC8833824DE11EDAEC0E529C4F9AE02.roa (hash: SpN5g9M2rsSW+Cra37fKcK/lk5XqYbPAMh8S4vUS9qk=) 7: 4FF339D8F01D11EB8C4B505BC4F9AE02.roa (hash: U9RF+JaWcsKZTr1DEGw1Y5hTdB+oWxy9sRXTz5ZgIuo=) 8: C89FD6DA557611EBA04C290BC4F9AE02.roa (hash: Y+JgutBZqKB0sr/67XUkEfaEMyqBwPZIYt+9Yv44r5c=) 9: FC6A19D892D511EC8FBFF32AC4F9AE02.roa (hash: kjWRly5sP345NgQNsNa2Y38tsuhMAJkUf7cDKkslnxQ=) 10: 1BF3A43C15BE11EF93ABFD7DC4F9AE02.roa (hash: Dnw6VZCydK3JoKDSOzotlEvfgmRpxLVN7ezEA2ZyyGo=) 11: 0B24875C7A4411EB804B7430C4F9AE02.roa (hash: Y+xehgtewaeOdOL6PowHHRPVgAd4mQJAADuq74in7FA=) 12: 3D68F8C29A4A11EA94706012C4F9AE02.roa (hash: +Q2D0d9yEIcvHWqL458RmFQjgHnoWa/Nyf3wOjdRqJY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E6D5D/9DCB68E01D8811E294B955E108B02CD2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.crl rsync://rpki.apnic.net/member_repository/A91E6D5D/9DCB68E01D8811E294B955E108B02CD2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 14:29:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6889 (0x1ae9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E6D5D, serialNumber=64A665816AEFED73B3075007DA5337AC7DEC4B81 Validity Not Before: Jun 14 14:30:00 2025 GMT Not After : Jun 21 14:30:00 2025 GMT Subject: CN=684d8768-cb74 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:fd:13:50:2d:1d:bd:35:0a:cd:7c:24:3c:0f: 68:4a:f7:46:0e:a2:13:db:c6:82:87:c1:50:47:08: 2f:37:a4:7f:eb:56:c0:1a:a2:3a:1c:ae:e8:c8:54: e6:11:9f:90:6d:1b:41:17:8f:38:f5:73:96:cb:3f: 96:ab:e7:e7:f2:cd:64:7c:d0:e1:fc:b1:29:c8:bb: 0a:89:5a:fc:a7:bb:34:52:d3:2b:1a:bf:cc:37:33: 49:13:3e:b9:55:b3:72:a5:2c:f7:95:ad:19:99:e7: f6:17:11:38:18:69:a0:81:90:bb:4f:26:58:4c:f0: db:78:5b:a1:1e:5d:d3:7b:0c:8c:14:26:ab:a1:ad: d7:0f:80:bb:d6:4c:f6:02:b6:6b:7d:b1:dc:02:8d: e7:1c:74:72:87:66:1c:2d:bf:06:f2:9f:ad:06:5c: 12:1b:f3:b6:c1:d7:21:1d:28:95:2c:7e:1d:e9:56: 12:62:56:96:4b:3b:0b:40:f6:3d:42:a4:12:2f:bf: 22:f0:b5:0e:b7:e3:4a:b6:44:cc:18:41:c9:ac:4f: 64:9d:8e:6c:12:c8:80:aa:12:f7:29:9a:a9:24:20: b9:4e:1b:0c:41:fb:48:00:b4:74:f4:58:3d:d3:07: 72:09:e3:2a:ac:b3:37:86:07:b2:0f:be:ed:59:5d: 36:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:CC:AE:20:86:D2:47:A2:B7:55:AC:2E:AF:51:16:01:2E:5C:BE:37 X509v3 Authority Key Identifier: keyid:64:A6:65:81:6A:EF:ED:73:B3:07:50:07:DA:53:37:AC:7D:EC:4B:81 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E6D5D/9DCB68E01D8811E294B955E108B02CD2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6D5D/9DCB68E01D8811E294B955E108B02CD2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 28:b9:85:32:08:75:ca:3a:eb:80:a2:a1:69:ff:6b:7e:8c:f8: 2d:f3:45:be:c8:4f:d5:95:89:07:b2:4c:03:fe:4c:79:bb:41: e3:a6:93:8f:12:d6:8b:e7:e1:be:78:9e:c8:d9:1a:30:c1:40: 5c:27:69:07:dc:4f:a7:53:7a:19:77:b6:7a:ff:5a:e9:cf:c1: 9e:49:c7:6c:2e:dc:e6:4e:60:11:fe:83:78:ad:ae:66:d2:20: f2:e5:aa:2c:50:04:c4:a5:35:bf:2b:87:9e:76:19:ab:d1:1e: 71:cc:15:7f:4f:99:3f:0c:74:cd:5c:ba:5f:d1:59:d6:fb:e6: af:29:03:ed:b3:3c:ac:7b:23:92:26:00:9b:f1:4d:4f:d1:09: 5f:be:9c:25:64:64:69:d7:bb:f2:a9:75:0f:5d:d1:63:39:0c: 06:5d:c9:e8:a0:ea:b4:31:67:32:c2:db:c2:3b:da:54:6e:50: fb:ee:89:52:30:b3:46:c0:16:95:a4:95:62:52:0c:81:c2:1b: f3:21:7b:95:a0:1a:a3:16:e8:af:77:48:86:f3:5c:ff:74:e8: 71:f0:ad:99:3d:6e:8f:c1:cf:14:cf:7c:6a:ac:b8:46:51:3a: b1:5e:7f:c6:32:e5:4b:06:a3:10:b9:d2:26:1f:15:85:e5:c3: 6d:bd:de:85 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGukwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTZENUQxMTAvBgNVBAUTKDY0QTY2NTgxNkFFRkVENzNCMzA3NTAwN0RBNTMzN0FD N0RFQzRCODEwHhcNMjUwNjE0MTQzMDAwWhcNMjUwNjIxMTQzMDAwWjAYMRYwFAYD VQQDEw02ODRkODc2OC1jYjc0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2P0TUC0dvTUKzXwkPA9oSvdGDqIT28aCh8FQRwgvN6R/61bAGqI6HK7oyFTm EZ+QbRtBF4849XOWyz+Wq+fn8s1kfNDh/LEpyLsKiVr8p7s0UtMrGr/MNzNJEz65 VbNypSz3la0Zmef2FxE4GGmggZC7TyZYTPDbeFuhHl3TewyMFCaroa3XD4C71kz2 ArZrfbHcAo3nHHRyh2YcLb8G8p+tBlwSG/O2wdchHSiVLH4d6VYSYlaWSzsLQPY9 QqQSL78i8LUOt+NKtkTMGEHJrE9knY5sEsiAqhL3KZqpJCC5ThsMQftIALR09Fg9 0wdyCeMqrLM3hgeyD77tWV02FwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK3MriCG 0keit1WsLq9RFgEuXL43MB8GA1UdIwQYMBaAFGSmZYFq7+1zswdQB9pTN6x97EuB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNkQ1RC85RENCNjhFMDFE ODgxMUUyOTRCOTU1RTEwOEIwMkNEMi9aS1psZ1dydjdYT3pCMUFIMmxNM3JIM3NT NEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pLWmxnV3J2N1hPekIxQUgybE0zckgzc1M0RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NkQ1RC85RENCNjhFMDFEODgxMUUyOTRCOTU1RTEwOEIwMkNEMi9aS1psZ1dydjdY T3pCMUFIMmxNM3JIM3NTNEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAouYUyCHXKOuuAoqFp/2t+jPgt80W+yE/VlYkHskwD/kx5u0HjppOP EtaL5+G+eJ7I2RowwUBcJ2kH3E+nU3oZd7Z6/1rpz8GeScdsLtzmTmAR/oN4ra5m 0iDy5aosUATEpTW/K4eedhmr0R5xzBV/T5k/DHTNXLpf0VnW++avKQPtszyseyOS JgCb8U1P0QlfvpwlZGRp17vyqXUPXdFjOQwGXcnooOq0MWcywtvCO9pUblD77olS MLNGwBaVpJViUgyBwhvzIXuVoBqjFuivd0iG81z/dOhx8K2ZPW6Pwc8Uz3xqrLhG UTqxXn/GMuVLBqMQudImHxWF5cNtvd6F -----END CERTIFICATE-----Generated at Sat Jun 14 19:30:55 2025 by rpki-client