$ rpki-client -vvf rpki.apnic.net/member_repository/A913C4FD/A57CABECA55411EF8A975247C4F9AE02/WZD0w7sjQ2yVEAtISNyRhqpJUxk.mft File: WZD0w7sjQ2yVEAtISNyRhqpJUxk.mft (raw, json) Hash identifier: u79U0ABoYP1sUNPRQUEEyHcc58hZqWfQDAVYG625x8U= Subject key identifier: AD:7C:3D:D2:89:7D:7E:4A:D1:B1:6E:71:BE:67:3D:B0:64:7B:30:D5 Authority key identifier: 59:90:F4:C3:BB:23:43:6C:95:10:0B:48:48:DC:91:86:AA:49:53:19 Certificate issuer: /CN=A913C4FD/serialNumber=5990F4C3BB23436C95100B4848DC9186AA495319 Certificate serial: A1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WZD0w7sjQ2yVEAtISNyRhqpJUxk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913C4FD/A57CABECA55411EF8A975247C4F9AE02/WZD0w7sjQ2yVEAtISNyRhqpJUxk.mft Manifest number: 9F Signing time: Fri 19 Sep 2025 06:59:49 +0000 Manifest this update: Fri 19 Sep 2025 06:59:49 +0000 Manifest next update: Fri 26 Sep 2025 06:59:49 +0000 Files and hashes: 1: WZD0w7sjQ2yVEAtISNyRhqpJUxk.crl (hash: w3Fo70nFCi+pgnmVYnt8cPPt5bwvmn5+EyAw8rKf5wI=) 2: 7C321BDEA55711EFB8317F6BC4F9AE02.roa (hash: xTT8Qi7eRLtjGj1MJV5lOZ1nPkMc9OMOKapYnFfPneA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913C4FD/A57CABECA55411EF8A975247C4F9AE02/WZD0w7sjQ2yVEAtISNyRhqpJUxk.crl rsync://rpki.apnic.net/member_repository/A913C4FD/A57CABECA55411EF8A975247C4F9AE02/WZD0w7sjQ2yVEAtISNyRhqpJUxk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WZD0w7sjQ2yVEAtISNyRhqpJUxk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Sep 2025 06:59:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 161 (0xa1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913C4FD, serialNumber=5990F4C3BB23436C95100B4848DC9186AA495319 Validity Not Before: Sep 19 06:59:49 2025 GMT Not After : Sep 26 06:59:49 2025 GMT Subject: CN=68ccff65-120d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:8f:6d:04:99:4f:66:81:e6:05:4d:e1:5e:e0: ed:fc:30:07:f7:66:9f:7d:d4:4a:12:ba:7e:8f:f3: 88:5d:2f:d6:07:3d:bf:37:af:4e:06:75:ff:43:a8: 79:48:4c:d5:0e:8a:64:20:0d:97:92:40:d5:ec:a8: 4c:23:7d:13:2b:5a:72:a9:6a:b6:59:59:9c:00:7c: ae:39:6f:08:97:95:86:55:fd:15:fa:49:0b:a9:cd: ba:d6:98:92:14:ee:7d:e2:bf:9b:a2:8e:7e:88:c9: 2b:7d:9b:cf:cf:fe:24:e7:39:06:21:df:60:6a:30: 2d:96:e6:92:ad:50:9a:8a:90:28:e5:11:3f:3d:f5: fb:9b:cf:37:fd:dd:ad:6d:14:50:cd:09:35:27:eb: 5e:f3:a5:be:d2:17:71:9f:a8:49:80:6e:a6:ed:58: c2:f1:6b:fa:ca:f3:56:cc:b9:ee:a7:fa:5b:bf:9a: 77:c8:83:c5:b2:52:25:71:7b:b4:15:03:80:8a:f5: ff:8f:d0:d0:91:66:2d:d6:ac:b3:41:53:12:c8:a3: 17:58:0c:3e:b6:1b:4c:91:18:39:cb:b6:f9:dd:b8: 96:0a:72:75:01:e4:cc:e9:06:19:71:a7:a7:50:7f: a2:da:b9:eb:0c:a8:05:5a:82:1f:67:96:1a:3a:ba: ec:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:7C:3D:D2:89:7D:7E:4A:D1:B1:6E:71:BE:67:3D:B0:64:7B:30:D5 X509v3 Authority Key Identifier: keyid:59:90:F4:C3:BB:23:43:6C:95:10:0B:48:48:DC:91:86:AA:49:53:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913C4FD/A57CABECA55411EF8A975247C4F9AE02/WZD0w7sjQ2yVEAtISNyRhqpJUxk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WZD0w7sjQ2yVEAtISNyRhqpJUxk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913C4FD/A57CABECA55411EF8A975247C4F9AE02/WZD0w7sjQ2yVEAtISNyRhqpJUxk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 96:5a:e3:fb:5a:c2:43:6a:43:c4:75:2d:b9:5f:88:af:fe:d5: ed:2c:2e:ee:70:19:9f:c6:ec:9c:39:47:10:cf:5a:52:95:f3: 82:5e:74:7e:69:79:82:94:8b:ed:7e:30:55:0c:61:59:73:6b: 62:c9:1a:ac:a9:ba:f0:e8:da:f1:56:84:ba:05:58:ab:0a:1f: 92:9d:2c:e6:2f:40:b5:99:44:3e:f2:97:81:fc:74:54:e5:4f: 1e:69:7c:10:31:a6:43:3e:c7:63:92:1b:f9:aa:f0:bf:34:a0: f1:3f:a7:1f:ac:7f:63:c7:fc:b7:6b:9a:68:2b:61:08:8c:fd: 14:ff:d4:bc:3b:cd:c4:29:49:8a:eb:35:86:39:b3:e8:3a:21: db:65:08:cc:27:d2:cd:ab:c0:dc:94:5f:78:18:8c:07:01:a2: 4c:45:db:20:bc:c4:33:d7:a4:b2:3c:0d:31:f7:9a:db:5d:18: c1:33:61:9c:83:84:c1:01:03:83:07:f2:78:a8:60:75:7a:2d: aa:af:12:51:9d:ab:f6:13:e3:71:44:63:4b:5b:40:ed:c2:ec: 76:f7:3d:f8:98:6c:b8:f4:1a:7b:9d:cf:bc:fc:b1:a3:19:c3: 8e:99:e6:b9:04:2f:d7:dc:44:8f:83:dd:ef:83:cd:76:20:4a: df:9e:10:3c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0M0RkQxMTAvBgNVBAUTKDU5OTBGNEMzQkIyMzQzNkM5NTEwMEI0ODQ4REM5MTg2 QUE0OTUzMTkwHhcNMjUwOTE5MDY1OTQ5WhcNMjUwOTI2MDY1OTQ5WjAYMRYwFAYD VQQDEw02OGNjZmY2NS0xMjBkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5I9tBJlPZoHmBU3hXuDt/DAH92affdRKErp+j/OIXS/WBz2/N69OBnX/Q6h5 SEzVDopkIA2XkkDV7KhMI30TK1pyqWq2WVmcAHyuOW8Il5WGVf0V+kkLqc261piS FO594r+boo5+iMkrfZvPz/4k5zkGId9gajAtluaSrVCaipAo5RE/PfX7m883/d2t bRRQzQk1J+te86W+0hdxn6hJgG6m7VjC8Wv6yvNWzLnup/pbv5p3yIPFslIlcXu0 FQOAivX/j9DQkWYt1qyzQVMSyKMXWAw+thtMkRg5y7b53biWCnJ1AeTM6QYZcaen UH+i2rnrDKgFWoIfZ5YaOrrsawIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK18PdKJ fX5K0bFucb5nPbBkezDVMB8GA1UdIwQYMBaAFFmQ9MO7I0NslRALSEjckYaqSVMZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQzRGRC9BNTdDQUJFQ0E1 NTQxMUVGOEE5NzUyNDdDNEY5QUUwMi9XWkQwdzdzalEyeVZFQXRJU055UmhxcEpV eGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1daRDB3N3NqUTJ5VkVBdElTTnlSaHFwSlV4ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QzRGRC9BNTdDQUJFQ0E1NTQxMUVGOEE5NzUyNDdDNEY5QUUwMi9XWkQwdzdzalEy eVZFQXRJU055UmhxcEpVeGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCWWuP7WsJDakPEdS25X4iv/tXtLC7ucBmfxuycOUcQz1pSlfOCXnR+ aXmClIvtfjBVDGFZc2tiyRqsqbrw6NrxVoS6BVirCh+SnSzmL0C1mUQ+8peB/HRU 5U8eaXwQMaZDPsdjkhv5qvC/NKDxP6cfrH9jx/y3a5poK2EIjP0U/9S8O83EKUmK 6zWGObPoOiHbZQjMJ9LNq8DclF94GIwHAaJMRdsgvMQz16SyPA0x95rbXRjBM2Gc g4TBAQODB/J4qGB1ei2qrxJRnav2E+NxRGNLW0Dtwux29z34mGy49Bp7nc+8/LGj GcOOmea5BC/X3ESPg93vg812IErfnhA8 -----END CERTIFICATE-----Generated at Sat Sep 20 00:30:07 2025 by rpki-client