$ rpki-client -vvf rpki.apnic.net/member_repository/A916FA49/A4C0CA96900911EE9E54A033C4F9AE02/zWXmdAuufrM71eU4ye5t6LM1RDE.mft File: zWXmdAuufrM71eU4ye5t6LM1RDE.mft (raw, json) Hash identifier: dj8A4b5GaXAwkipejpmR1z7SEyI4wuR7sHeGdQluKE8= Subject key identifier: F2:7E:3E:F9:5C:8F:4D:4E:08:16:CF:D9:D7:DB:64:F3:B9:22:AA:A3 Authority key identifier: CD:65:E6:74:0B:AE:7E:B3:3B:D5:E5:38:C9:EE:6D:E8:B3:35:44:31 Certificate issuer: /CN=A916FA49/serialNumber=CD65E6740BAE7EB33BD5E538C9EE6DE8B3354431 Certificate serial: 012D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/zWXmdAuufrM71eU4ye5t6LM1RDE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916FA49/A4C0CA96900911EE9E54A033C4F9AE02/zWXmdAuufrM71eU4ye5t6LM1RDE.mft Manifest number: 0126 Signing time: Mon 02 Jun 2025 17:02:54 +0000 Manifest this update: Mon 02 Jun 2025 17:02:53 +0000 Manifest next update: Mon 09 Jun 2025 17:02:53 +0000 Files and hashes: 1: zWXmdAuufrM71eU4ye5t6LM1RDE.crl (hash: UI/B8vcufjnr4JdwoSZk6J7vs/lv7TlSaYhussHoAxs=) 2: 74F996F62F2511EF8D78DC62C4F9AE02.roa (hash: TReNRUcB9Slmh+4MFPwcv7z0b4ojdmnvbTh9IbkrL54=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916FA49/A4C0CA96900911EE9E54A033C4F9AE02/zWXmdAuufrM71eU4ye5t6LM1RDE.crl rsync://rpki.apnic.net/member_repository/A916FA49/A4C0CA96900911EE9E54A033C4F9AE02/zWXmdAuufrM71eU4ye5t6LM1RDE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/zWXmdAuufrM71eU4ye5t6LM1RDE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 05:53:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 301 (0x12d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916FA49, serialNumber=CD65E6740BAE7EB33BD5E538C9EE6DE8B3354431 Validity Not Before: Jun 2 17:02:53 2025 GMT Not After : Jun 9 17:02:53 2025 GMT Subject: CN=683dd93e-3925 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:4d:4c:62:99:5e:8b:d1:34:dd:91:63:5b:85: 88:35:9d:03:29:48:91:25:7d:9f:32:1b:5b:ae:0c: 33:86:11:10:4a:8f:5e:4d:9e:3e:c0:35:75:2b:c0: 58:6e:b6:ee:38:c2:cb:be:ba:03:a2:03:da:62:81: c3:22:7b:8e:0a:23:4c:5a:35:1b:49:a9:c6:0d:82: d9:14:c9:f2:9e:04:60:a7:89:fc:15:06:49:8e:c3: 97:54:3f:b7:84:a4:7e:d6:eb:81:59:77:ae:c5:ad: e1:61:43:30:9b:d8:ad:31:be:e2:9b:bd:b3:87:15: 29:52:4d:1b:fb:00:2d:97:37:39:4a:44:49:07:cb: 47:b4:cc:ed:79:12:16:83:b5:9d:ff:60:cd:39:5e: 66:f5:88:a6:95:d1:57:bd:eb:ee:9b:3a:c6:08:f6: 31:22:51:d8:12:8f:82:13:cc:98:46:83:d9:ac:bb: 2d:1e:01:c1:0d:1d:ad:8d:2c:8c:9c:2d:3f:88:3c: 07:59:e5:db:93:1e:0d:1e:73:e0:39:5a:ca:47:b1: 6a:5e:3b:9f:ea:cf:21:ee:f0:31:4e:ae:88:4c:a3: 90:6c:c1:ba:71:33:c3:54:9a:6e:af:4e:2c:40:c5: 6b:c4:3a:2c:48:0a:13:3a:b1:8b:54:83:65:74:d6: a3:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:7E:3E:F9:5C:8F:4D:4E:08:16:CF:D9:D7:DB:64:F3:B9:22:AA:A3 X509v3 Authority Key Identifier: keyid:CD:65:E6:74:0B:AE:7E:B3:3B:D5:E5:38:C9:EE:6D:E8:B3:35:44:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916FA49/A4C0CA96900911EE9E54A033C4F9AE02/zWXmdAuufrM71eU4ye5t6LM1RDE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/zWXmdAuufrM71eU4ye5t6LM1RDE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916FA49/A4C0CA96900911EE9E54A033C4F9AE02/zWXmdAuufrM71eU4ye5t6LM1RDE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 46:af:30:e8:c0:67:bd:0e:0f:b8:92:f0:02:62:0c:ad:d7:2d: da:01:aa:bd:cf:a9:b2:fc:32:a2:d5:86:49:d8:6d:c8:99:e3: 43:13:fe:be:25:dc:05:0c:6a:6a:c3:9e:94:29:b3:2f:61:5a: 69:2e:88:17:e4:47:ad:55:a8:f5:25:66:0c:07:d0:9d:ba:f2: ad:7d:e8:2d:61:06:2a:c9:56:0a:a3:e3:8f:50:8f:51:a0:9e: 77:77:d9:a7:39:39:54:45:8b:e6:49:18:eb:a7:c3:fb:10:12: 2e:81:2b:84:73:5d:86:c5:1c:3f:db:b1:a1:dc:ca:9e:6f:1a: a8:32:de:fe:de:02:a0:fd:85:aa:cf:ee:a3:b9:f7:1b:1b:06: e1:09:9a:e4:6c:7b:45:e4:c3:b0:44:89:a4:fa:8b:f4:29:5d: ae:ee:6d:ab:51:45:51:24:a8:e2:de:02:96:b9:5e:92:67:90: 2b:ad:09:4c:38:05:0c:12:50:6e:d2:ac:51:f7:a3:0f:27:50: 09:24:7d:f9:f0:21:f6:d0:69:a9:b1:f1:91:0a:aa:8f:2c:e6: 5e:36:51:8c:f4:41:39:a4:1d:48:5c:77:5b:cd:57:9d:a4:56: f0:22:df:8c:48:d3:a8:d2:93:47:b4:98:81:85:bf:5d:76:b2: 16:49:58:ab -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAS0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkZBNDkxMTAvBgNVBAUTKENENjVFNjc0MEJBRTdFQjMzQkQ1RTUzOEM5RUU2REU4 QjMzNTQ0MzEwHhcNMjUwNjAyMTcwMjUzWhcNMjUwNjA5MTcwMjUzWjAYMRYwFAYD VQQDEw02ODNkZDkzZS0zOTI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA101MYplei9E03ZFjW4WINZ0DKUiRJX2fMhtbrgwzhhEQSo9eTZ4+wDV1K8BY brbuOMLLvroDogPaYoHDInuOCiNMWjUbSanGDYLZFMnyngRgp4n8FQZJjsOXVD+3 hKR+1uuBWXeuxa3hYUMwm9itMb7im72zhxUpUk0b+wAtlzc5SkRJB8tHtMzteRIW g7Wd/2DNOV5m9YimldFXvevumzrGCPYxIlHYEo+CE8yYRoPZrLstHgHBDR2tjSyM nC0/iDwHWeXbkx4NHnPgOVrKR7FqXjuf6s8h7vAxTq6ITKOQbMG6cTPDVJpur04s QMVrxDosSAoTOrGLVINldNajywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPJ+Pvlc j01OCBbP2dfbZPO5IqqjMB8GA1UdIwQYMBaAFM1l5nQLrn6zO9XlOMnubeizNUQx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RkE0OS9BNEMwQ0E5Njkw MDkxMUVFOUU1NEEwMzNDNEY5QUUwMi96V1htZEF1dWZyTTcxZVU0eWU1dDZMTTFS REUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3pXWG1kQXV1ZnJNNzFlVTR5ZTV0NkxNMVJERS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 RkE0OS9BNEMwQ0E5NjkwMDkxMUVFOUU1NEEwMzNDNEY5QUUwMi96V1htZEF1dWZy TTcxZVU0eWU1dDZMTTFSREUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBGrzDowGe9Dg+4kvACYgyt1y3aAaq9z6my/DKi1YZJ2G3ImeNDE/6+ JdwFDGpqw56UKbMvYVppLogX5EetVaj1JWYMB9CduvKtfegtYQYqyVYKo+OPUI9R oJ53d9mnOTlURYvmSRjrp8P7EBIugSuEc12GxRw/27Gh3MqebxqoMt7+3gKg/YWq z+6jufcbGwbhCZrkbHtF5MOwRImk+ov0KV2u7m2rUUVRJKji3gKWuV6SZ5ArrQlM OAUMElBu0qxR96MPJ1AJJH358CH20GmpsfGRCqqPLOZeNlGM9EE5pB1IXHdbzVed pFbwIt+MSNOo0pNHtJiBhb9ddrIWSVir -----END CERTIFICATE-----Generated at Mon Jun 2 20:47:07 2025 by rpki-client