$ rpki-client -vvf rpki.apnic.net/member_repository/A916FA49/A4C0CA96900911EE9E54A033C4F9AE02/zWXmdAuufrM71eU4ye5t6LM1RDE.mft File: zWXmdAuufrM71eU4ye5t6LM1RDE.mft (raw, json) Hash identifier: aYNRlUQG0CJEUNDU7ZuQBNa/4shDs80mU5C4gHp+P+I= Subject key identifier: 17:F4:0C:5B:6E:21:48:82:39:7B:94:6B:C3:43:6C:62:36:E1:88:EB Authority key identifier: CD:65:E6:74:0B:AE:7E:B3:3B:D5:E5:38:C9:EE:6D:E8:B3:35:44:31 Certificate issuer: /CN=A916FA49/serialNumber=CD65E6740BAE7EB33BD5E538C9EE6DE8B3354431 Certificate serial: 015E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/zWXmdAuufrM71eU4ye5t6LM1RDE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916FA49/A4C0CA96900911EE9E54A033C4F9AE02/zWXmdAuufrM71eU4ye5t6LM1RDE.mft Manifest number: 0157 Signing time: Sat 06 Sep 2025 16:55:46 +0000 Manifest this update: Sat 06 Sep 2025 16:55:45 +0000 Manifest next update: Sat 13 Sep 2025 16:55:45 +0000 Files and hashes: 1: zWXmdAuufrM71eU4ye5t6LM1RDE.crl (hash: 8UONEBp+JddX7xssR9BUUwTSnC1qfJU5jj9wk3YhttA=) 2: 74F996F62F2511EF8D78DC62C4F9AE02.roa (hash: TReNRUcB9Slmh+4MFPwcv7z0b4ojdmnvbTh9IbkrL54=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916FA49/A4C0CA96900911EE9E54A033C4F9AE02/zWXmdAuufrM71eU4ye5t6LM1RDE.crl rsync://rpki.apnic.net/member_repository/A916FA49/A4C0CA96900911EE9E54A033C4F9AE02/zWXmdAuufrM71eU4ye5t6LM1RDE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/zWXmdAuufrM71eU4ye5t6LM1RDE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Sep 2025 16:55:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 350 (0x15e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916FA49, serialNumber=CD65E6740BAE7EB33BD5E538C9EE6DE8B3354431 Validity Not Before: Sep 6 16:55:45 2025 GMT Not After : Sep 13 16:55:45 2025 GMT Subject: CN=68bc6791-13fc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:ec:8e:9c:a6:74:57:7b:82:ae:e3:f7:c5:5c: 9b:6a:b3:a7:62:31:94:f0:78:67:97:8c:94:a4:27: 01:fe:18:91:16:76:ab:ee:19:71:af:87:72:66:a4: 88:3a:94:d6:a7:66:93:eb:d9:a7:75:a7:97:a7:94: 53:31:45:23:ba:d9:9b:f7:c2:e6:93:be:2c:b1:3b: 06:18:10:b4:20:50:1f:99:da:d5:6c:53:ab:04:b9: be:70:e6:0f:2a:7c:52:be:67:9f:25:29:1f:cc:67: 3e:8e:93:25:a8:6f:85:bb:cd:25:4d:41:3a:c6:7f: 8d:2f:63:c0:ba:fe:5c:7f:34:ee:89:ef:f7:98:ab: f3:f7:02:b6:0d:ce:34:f4:d6:b9:a1:d5:86:63:02: b2:e9:30:8e:63:15:8f:82:6f:21:b1:3b:2d:9c:62: 55:da:6f:dc:98:0c:53:f1:62:52:ba:7c:24:96:66: b4:36:83:37:2c:31:86:6e:3e:10:c1:72:5a:34:7e: 91:6c:2c:e8:8b:ac:eb:27:26:2b:37:0a:dc:4e:80: 45:7c:12:d8:7d:f2:9c:c3:1a:20:a8:fc:34:e0:61: 9f:84:cb:4f:20:fe:25:8c:63:89:ac:79:00:da:30: b7:98:0f:13:bf:f8:91:9b:c4:28:d1:c4:a2:29:f0: 73:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:F4:0C:5B:6E:21:48:82:39:7B:94:6B:C3:43:6C:62:36:E1:88:EB X509v3 Authority Key Identifier: keyid:CD:65:E6:74:0B:AE:7E:B3:3B:D5:E5:38:C9:EE:6D:E8:B3:35:44:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916FA49/A4C0CA96900911EE9E54A033C4F9AE02/zWXmdAuufrM71eU4ye5t6LM1RDE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/zWXmdAuufrM71eU4ye5t6LM1RDE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916FA49/A4C0CA96900911EE9E54A033C4F9AE02/zWXmdAuufrM71eU4ye5t6LM1RDE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5d:f4:4d:29:2d:d2:29:1b:a1:42:1a:cd:84:b6:43:26:64:8e: 71:13:c5:7d:3d:88:9f:5a:1a:1e:f9:fa:e2:01:f1:d2:67:7b: 15:23:5f:68:48:89:4a:f1:41:2d:c0:24:50:5b:6a:5f:35:a3: 36:fa:f3:5d:12:41:a6:ea:b1:c7:8b:e4:92:cf:c6:19:a0:e6: 00:d8:ac:ed:9f:2f:61:07:20:2c:2a:05:d8:0e:34:f0:18:2b: 61:b8:db:a8:45:8c:79:e5:ac:ff:57:ea:99:4f:d2:5b:e7:10: 44:16:a5:9f:38:63:5b:79:d9:28:af:0a:9b:2c:dd:c0:82:76: 50:4b:b7:00:e0:82:1f:09:99:7c:61:9b:32:58:92:4b:65:a6: 4f:c0:6d:67:3a:a5:30:21:19:d2:4e:6a:98:57:c3:39:60:c2: 1f:a3:4d:d9:eb:cd:24:bc:91:17:f1:60:16:62:f3:13:65:10: 9f:af:5b:25:8e:66:9b:3f:87:ba:d8:00:58:4d:46:4b:47:b5: c0:ff:bb:8a:69:3a:12:ce:fd:ac:7b:06:36:1e:33:8e:86:71: 12:8d:d9:cc:c6:1f:89:04:8a:b6:a4:9c:d4:d8:4b:9e:66:0b: 04:51:e0:4f:75:a0:0e:27:21:48:aa:1c:3a:07:d6:79:84:6d: af:42:da:d9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAV4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkZBNDkxMTAvBgNVBAUTKENENjVFNjc0MEJBRTdFQjMzQkQ1RTUzOEM5RUU2REU4 QjMzNTQ0MzEwHhcNMjUwOTA2MTY1NTQ1WhcNMjUwOTEzMTY1NTQ1WjAYMRYwFAYD VQQDEw02OGJjNjc5MS0xM2ZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw+yOnKZ0V3uCruP3xVybarOnYjGU8Hhnl4yUpCcB/hiRFnar7hlxr4dyZqSI OpTWp2aT69mndaeXp5RTMUUjutmb98Lmk74ssTsGGBC0IFAfmdrVbFOrBLm+cOYP KnxSvmefJSkfzGc+jpMlqG+Fu80lTUE6xn+NL2PAuv5cfzTuie/3mKvz9wK2Dc40 9Na5odWGYwKy6TCOYxWPgm8hsTstnGJV2m/cmAxT8WJSunwklma0NoM3LDGGbj4Q wXJaNH6RbCzoi6zrJyYrNwrcToBFfBLYffKcwxogqPw04GGfhMtPIP4ljGOJrHkA 2jC3mA8Tv/iRm8Qo0cSiKfBzSQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBf0DFtu IUiCOXuUa8NDbGI24YjrMB8GA1UdIwQYMBaAFM1l5nQLrn6zO9XlOMnubeizNUQx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RkE0OS9BNEMwQ0E5Njkw MDkxMUVFOUU1NEEwMzNDNEY5QUUwMi96V1htZEF1dWZyTTcxZVU0eWU1dDZMTTFS REUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3pXWG1kQXV1ZnJNNzFlVTR5ZTV0NkxNMVJERS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 RkE0OS9BNEMwQ0E5NjkwMDkxMUVFOUU1NEEwMzNDNEY5QUUwMi96V1htZEF1dWZy TTcxZVU0eWU1dDZMTTFSREUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBd9E0pLdIpG6FCGs2EtkMmZI5xE8V9PYifWhoe+friAfHSZ3sVI19o SIlK8UEtwCRQW2pfNaM2+vNdEkGm6rHHi+SSz8YZoOYA2Kztny9hByAsKgXYDjTw GCthuNuoRYx55az/V+qZT9Jb5xBEFqWfOGNbedkorwqbLN3AgnZQS7cA4IIfCZl8 YZsyWJJLZaZPwG1nOqUwIRnSTmqYV8M5YMIfo03Z680kvJEX8WAWYvMTZRCfr1sl jmabP4e62ABYTUZLR7XA/7uKaToSzv2sewY2HjOOhnESjdnMxh+JBIq2pJzU2Eue ZgsEUeBPdaAOJyFIqhw6B9Z5hG2vQtrZ -----END CERTIFICATE-----Generated at Sat Sep 6 21:09:09 2025 by rpki-client