$ rpki-client -vvf rpki.apnic.net/member_repository/A916FA49/A4C0CA96900911EE9E54A033C4F9AE02/zWXmdAuufrM71eU4ye5t6LM1RDE.mft File: zWXmdAuufrM71eU4ye5t6LM1RDE.mft (raw, json) Hash identifier: VR45QV+ZuvMs+vWVgGGOCPOfyDoXpTjy9xaTL/GFeus= Subject key identifier: B2:F6:CF:73:25:13:9B:AB:E9:8D:88:0D:EA:25:5F:D4:0D:D0:20:13 Authority key identifier: CD:65:E6:74:0B:AE:7E:B3:3B:D5:E5:38:C9:EE:6D:E8:B3:35:44:31 Certificate issuer: /CN=A916FA49/serialNumber=CD65E6740BAE7EB33BD5E538C9EE6DE8B3354431 Certificate serial: 0145 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/zWXmdAuufrM71eU4ye5t6LM1RDE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916FA49/A4C0CA96900911EE9E54A033C4F9AE02/zWXmdAuufrM71eU4ye5t6LM1RDE.mft Manifest number: 013E Signing time: Sun 20 Jul 2025 16:52:11 +0000 Manifest this update: Sun 20 Jul 2025 16:52:11 +0000 Manifest next update: Sun 27 Jul 2025 16:52:11 +0000 Files and hashes: 1: zWXmdAuufrM71eU4ye5t6LM1RDE.crl (hash: tOTae0zM405+yivXde3o7JdDQZ4sDYKPc5h3gF27Kxs=) 2: 74F996F62F2511EF8D78DC62C4F9AE02.roa (hash: TReNRUcB9Slmh+4MFPwcv7z0b4ojdmnvbTh9IbkrL54=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916FA49/A4C0CA96900911EE9E54A033C4F9AE02/zWXmdAuufrM71eU4ye5t6LM1RDE.crl rsync://rpki.apnic.net/member_repository/A916FA49/A4C0CA96900911EE9E54A033C4F9AE02/zWXmdAuufrM71eU4ye5t6LM1RDE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/zWXmdAuufrM71eU4ye5t6LM1RDE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 16:52:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 325 (0x145) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916FA49, serialNumber=CD65E6740BAE7EB33BD5E538C9EE6DE8B3354431 Validity Not Before: Jul 20 16:52:11 2025 GMT Not After : Jul 27 16:52:11 2025 GMT Subject: CN=687d1ebb-d49a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:e7:a6:77:4f:4f:fc:fd:ad:7a:a7:28:9f:eb: 02:11:9b:4d:74:50:c2:cc:fa:ac:74:6f:88:5a:5d: b3:53:45:e8:69:fe:3c:c4:7f:74:5d:7f:2a:c7:85: de:2e:65:67:2b:72:d6:7a:e0:1f:05:9c:6e:ce:04: 81:80:20:d0:7f:fc:50:ff:98:5a:87:e6:7e:63:be: 7a:96:ed:ff:ac:3f:a5:69:a7:95:8d:0a:02:c1:26: 01:82:10:ec:ad:a1:db:4f:71:19:4a:e3:7a:b2:d1: 12:61:d3:3c:e1:61:7e:ab:26:00:50:cc:68:77:74: 10:66:53:02:07:91:25:cb:0f:1f:7d:38:a6:30:ef: e8:02:36:52:83:79:9f:67:4b:a5:d7:cb:e8:7e:68: df:33:b4:50:72:33:79:23:4d:a9:99:26:06:1d:2c: 33:b8:5f:84:5d:95:32:f7:af:ca:ac:98:45:ff:05: 92:24:67:8e:4e:d0:14:b4:07:f4:a9:87:54:4a:da: 74:67:06:32:61:b0:23:d3:f0:23:10:f2:90:8c:d3: 4f:c6:6d:f3:23:a8:d4:a3:33:38:11:e6:fd:db:2b: dd:eb:3a:4c:fb:84:fc:02:8e:d9:fa:4d:af:07:f9: d3:db:73:c5:c5:56:90:b7:b3:1f:c0:91:50:28:f7: 6c:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:F6:CF:73:25:13:9B:AB:E9:8D:88:0D:EA:25:5F:D4:0D:D0:20:13 X509v3 Authority Key Identifier: keyid:CD:65:E6:74:0B:AE:7E:B3:3B:D5:E5:38:C9:EE:6D:E8:B3:35:44:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916FA49/A4C0CA96900911EE9E54A033C4F9AE02/zWXmdAuufrM71eU4ye5t6LM1RDE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/zWXmdAuufrM71eU4ye5t6LM1RDE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916FA49/A4C0CA96900911EE9E54A033C4F9AE02/zWXmdAuufrM71eU4ye5t6LM1RDE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 26:f7:81:a7:f8:b9:b7:6c:36:8d:b0:cc:a4:3e:d1:3b:1f:21: 8f:c2:d3:98:b3:b5:e1:3e:60:25:b7:74:cd:bd:d4:7c:8a:03: 88:ba:78:3c:d9:f9:a0:fe:b8:7a:d6:1e:45:52:94:c3:6e:88: 94:04:ef:86:85:77:ed:ba:86:d0:57:75:f3:e9:a9:53:d5:e0: 45:39:3b:f8:50:21:90:bd:a3:af:e7:2d:66:02:5f:48:de:d3: 5e:66:78:70:7a:e4:19:af:16:38:e9:67:5d:6d:bd:42:e1:8e: e4:f4:5c:bf:74:f0:bd:98:b1:75:76:1a:92:ee:1c:2d:de:47: 11:5a:88:6f:0f:42:21:63:18:54:ba:65:2d:86:00:bc:fa:06: ad:a9:a0:65:35:b7:1c:03:35:a4:06:83:b7:8e:e6:57:73:9b: a8:61:56:6e:a1:9c:fa:c9:76:22:c1:19:a7:12:ff:f5:99:fd: dc:42:69:72:f2:6f:59:56:dd:06:08:2b:63:5e:c6:4e:bf:11: d2:1f:d5:c3:60:ba:57:4e:ba:00:1e:19:db:0e:73:05:f9:48: 93:ad:74:a1:54:90:9a:7a:30:34:aa:61:b3:70:ef:b2:cd:d6: 6c:23:f2:a2:1c:c8:3c:80:d8:9b:e1:c6:69:50:80:50:bc:7a: 32:75:10:5c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkZBNDkxMTAvBgNVBAUTKENENjVFNjc0MEJBRTdFQjMzQkQ1RTUzOEM5RUU2REU4 QjMzNTQ0MzEwHhcNMjUwNzIwMTY1MjExWhcNMjUwNzI3MTY1MjExWjAYMRYwFAYD VQQDEw02ODdkMWViYi1kNDlhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt+emd09P/P2teqcon+sCEZtNdFDCzPqsdG+IWl2zU0Xoaf48xH90XX8qx4Xe LmVnK3LWeuAfBZxuzgSBgCDQf/xQ/5hah+Z+Y756lu3/rD+laaeVjQoCwSYBghDs raHbT3EZSuN6stESYdM84WF+qyYAUMxod3QQZlMCB5Elyw8ffTimMO/oAjZSg3mf Z0ul18vofmjfM7RQcjN5I02pmSYGHSwzuF+EXZUy96/KrJhF/wWSJGeOTtAUtAf0 qYdUStp0ZwYyYbAj0/AjEPKQjNNPxm3zI6jUozM4Eeb92yvd6zpM+4T8Ao7Z+k2v B/nT23PFxVaQt7MfwJFQKPdspwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLL2z3Ml E5ur6Y2IDeolX9QN0CATMB8GA1UdIwQYMBaAFM1l5nQLrn6zO9XlOMnubeizNUQx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RkE0OS9BNEMwQ0E5Njkw MDkxMUVFOUU1NEEwMzNDNEY5QUUwMi96V1htZEF1dWZyTTcxZVU0eWU1dDZMTTFS REUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3pXWG1kQXV1ZnJNNzFlVTR5ZTV0NkxNMVJERS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 RkE0OS9BNEMwQ0E5NjkwMDkxMUVFOUU1NEEwMzNDNEY5QUUwMi96V1htZEF1dWZy TTcxZVU0eWU1dDZMTTFSREUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAm94Gn+Lm3bDaNsMykPtE7HyGPwtOYs7XhPmAlt3TNvdR8igOIung8 2fmg/rh61h5FUpTDboiUBO+GhXftuobQV3Xz6alT1eBFOTv4UCGQvaOv5y1mAl9I 3tNeZnhweuQZrxY46Wddbb1C4Y7k9Fy/dPC9mLF1dhqS7hwt3kcRWohvD0IhYxhU umUthgC8+gatqaBlNbccAzWkBoO3juZXc5uoYVZuoZz6yXYiwRmnEv/1mf3cQmly 8m9ZVt0GCCtjXsZOvxHSH9XDYLpXTroAHhnbDnMF+UiTrXShVJCaejA0qmGzcO+y zdZsI/KiHMg8gNib4cZpUIBQvHoydRBc -----END CERTIFICATE-----Generated at Tue Jul 22 00:01:40 2025 by rpki-client