$ rpki-client -vvf rpki.apnic.net/member_repository/A916FA49/A4C0CA96900911EE9E54A033C4F9AE02/zWXmdAuufrM71eU4ye5t6LM1RDE.mft File: zWXmdAuufrM71eU4ye5t6LM1RDE.mft (raw, json) Hash identifier: 2bLVNFnzqkTVshzB17QNP4+rRBEK3lUr4Pw6nmmPaC8= Subject key identifier: 05:D7:A9:58:01:36:CD:3D:3B:0F:C2:7A:57:89:9F:39:1E:2B:41:5B Authority key identifier: CD:65:E6:74:0B:AE:7E:B3:3B:D5:E5:38:C9:EE:6D:E8:B3:35:44:31 Certificate issuer: /CN=A916FA49/serialNumber=CD65E6740BAE7EB33BD5E538C9EE6DE8B3354431 Certificate serial: 017C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/zWXmdAuufrM71eU4ye5t6LM1RDE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916FA49/A4C0CA96900911EE9E54A033C4F9AE02/zWXmdAuufrM71eU4ye5t6LM1RDE.mft Manifest number: 0175 Signing time: Tue 04 Nov 2025 16:55:05 +0000 Manifest this update: Tue 04 Nov 2025 16:55:05 +0000 Manifest next update: Tue 11 Nov 2025 16:55:05 +0000 Files and hashes: 1: zWXmdAuufrM71eU4ye5t6LM1RDE.crl (hash: pTjQ54SGtR/H+CCTFSi0waXwf5cgqKWI/RVouaDa2vI=) 2: 74F996F62F2511EF8D78DC62C4F9AE02.roa (hash: TReNRUcB9Slmh+4MFPwcv7z0b4ojdmnvbTh9IbkrL54=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916FA49/A4C0CA96900911EE9E54A033C4F9AE02/zWXmdAuufrM71eU4ye5t6LM1RDE.crl rsync://rpki.apnic.net/member_repository/A916FA49/A4C0CA96900911EE9E54A033C4F9AE02/zWXmdAuufrM71eU4ye5t6LM1RDE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/zWXmdAuufrM71eU4ye5t6LM1RDE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 16:39:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 380 (0x17c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916FA49, serialNumber=CD65E6740BAE7EB33BD5E538C9EE6DE8B3354431 Validity Not Before: Nov 4 16:55:05 2025 GMT Not After : Nov 11 16:55:05 2025 GMT Subject: CN=690a2fe9-d708 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:a6:91:a6:d1:e3:3f:9b:16:4f:b9:c2:5f:4a: 1b:a2:9a:38:56:86:93:7a:2f:df:b7:e0:66:cf:b0: fe:b5:10:dd:92:bf:fe:9c:11:ba:4b:47:5e:04:e7: f9:ad:d8:44:28:a6:9e:e2:f7:c3:34:ce:e0:5a:79: 48:07:75:e6:16:b1:f7:d8:9f:56:1b:9a:1b:3e:9c: 8c:bb:4d:0e:81:d1:a8:71:ab:1b:b6:ab:35:bf:62: e9:cb:84:fb:75:b9:40:01:be:4a:a3:ba:0e:c3:3b: 61:5b:1e:3c:cc:54:94:20:f6:8a:bb:e2:60:9b:e2: 7b:68:f0:9c:e6:1b:f3:fb:0d:cf:6a:a5:f3:9b:47: 54:e5:74:f6:75:6d:87:7f:81:fe:04:55:7c:0a:e4: 1b:24:4e:9c:b4:70:c1:4f:6e:52:20:f3:eb:ab:8d: 60:f7:e3:f7:9c:c5:23:ab:7c:59:dd:81:2d:18:c4: 65:47:11:24:0d:0b:e1:28:20:c5:65:7d:f7:fc:fe: 6e:bc:cb:5e:0a:4a:19:f4:37:2d:03:12:1c:80:00: 80:92:57:3e:e9:30:55:37:65:59:e9:65:a0:16:d8: bc:f7:f2:2f:62:60:96:67:a2:d9:87:ac:c0:ea:2d: 2f:a0:69:eb:30:9a:9b:94:97:c8:a4:30:15:ad:f5: 99:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:D7:A9:58:01:36:CD:3D:3B:0F:C2:7A:57:89:9F:39:1E:2B:41:5B X509v3 Authority Key Identifier: keyid:CD:65:E6:74:0B:AE:7E:B3:3B:D5:E5:38:C9:EE:6D:E8:B3:35:44:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916FA49/A4C0CA96900911EE9E54A033C4F9AE02/zWXmdAuufrM71eU4ye5t6LM1RDE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/zWXmdAuufrM71eU4ye5t6LM1RDE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916FA49/A4C0CA96900911EE9E54A033C4F9AE02/zWXmdAuufrM71eU4ye5t6LM1RDE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 95:88:b8:be:a3:5b:ea:b1:a0:2e:e9:c3:80:4f:9c:78:b4:a5: da:1b:5f:40:79:2c:6e:0e:b5:6b:0c:8b:12:f5:62:a8:e4:58: d7:65:f0:47:a4:3d:62:b4:d2:ba:75:a9:71:92:39:f8:89:15: 79:34:fb:7a:2e:53:95:f8:53:e5:ad:c8:43:c6:45:61:5c:53: 9a:9a:95:99:d9:e0:1d:86:b7:28:b8:b4:1a:f3:c4:ae:24:f4: 97:fe:e6:05:ec:62:ce:6b:db:c0:d2:d9:20:6d:7a:7b:6f:06: 62:63:b8:26:fa:0d:f6:c8:63:fe:45:5e:0a:6c:42:b9:06:b5: eb:91:78:d4:ff:3f:47:b9:6b:09:64:e0:dc:a0:80:01:21:62: 4d:2d:c2:3d:46:c3:c5:49:de:d9:f0:be:e1:99:7a:ea:d6:3e: fb:bb:57:87:0e:62:2e:a5:d7:17:67:89:cd:41:15:10:1b:7b: 20:c6:dd:fe:ea:73:88:ef:88:dc:d4:d2:57:52:b6:b7:09:c9: dd:24:6e:ca:4e:fd:72:4b:46:0c:10:18:82:21:ea:7c:de:54: ff:b5:ab:09:f0:a8:4f:d1:1f:60:c2:8f:6f:64:47:fa:9e:6e: 4c:3a:60:67:5e:14:c9:ee:40:3d:66:89:54:7a:46:08:50:ba: 4e:0b:68:fe -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkZBNDkxMTAvBgNVBAUTKENENjVFNjc0MEJBRTdFQjMzQkQ1RTUzOEM5RUU2REU4 QjMzNTQ0MzEwHhcNMjUxMTA0MTY1NTA1WhcNMjUxMTExMTY1NTA1WjAYMRYwFAYD VQQDEw02OTBhMmZlOS1kNzA4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuaaRptHjP5sWT7nCX0obopo4VoaTei/ft+Bmz7D+tRDdkr/+nBG6S0deBOf5 rdhEKKae4vfDNM7gWnlIB3XmFrH32J9WG5obPpyMu00OgdGocasbtqs1v2Lpy4T7 dblAAb5Ko7oOwzthWx48zFSUIPaKu+Jgm+J7aPCc5hvz+w3PaqXzm0dU5XT2dW2H f4H+BFV8CuQbJE6ctHDBT25SIPPrq41g9+P3nMUjq3xZ3YEtGMRlRxEkDQvhKCDF ZX33/P5uvMteCkoZ9DctAxIcgACAklc+6TBVN2VZ6WWgFti89/IvYmCWZ6LZh6zA 6i0voGnrMJqblJfIpDAVrfWZuQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAXXqVgB Ns09Ow/CeleJnzkeK0FbMB8GA1UdIwQYMBaAFM1l5nQLrn6zO9XlOMnubeizNUQx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RkE0OS9BNEMwQ0E5Njkw MDkxMUVFOUU1NEEwMzNDNEY5QUUwMi96V1htZEF1dWZyTTcxZVU0eWU1dDZMTTFS REUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3pXWG1kQXV1ZnJNNzFlVTR5ZTV0NkxNMVJERS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 RkE0OS9BNEMwQ0E5NjkwMDkxMUVFOUU1NEEwMzNDNEY5QUUwMi96V1htZEF1dWZy TTcxZVU0eWU1dDZMTTFSREUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCViLi+o1vqsaAu6cOAT5x4tKXaG19AeSxuDrVrDIsS9WKo5FjXZfBH pD1itNK6dalxkjn4iRV5NPt6LlOV+FPlrchDxkVhXFOampWZ2eAdhrcouLQa88Su JPSX/uYF7GLOa9vA0tkgbXp7bwZiY7gm+g32yGP+RV4KbEK5BrXrkXjU/z9HuWsJ ZODcoIABIWJNLcI9RsPFSd7Z8L7hmXrq1j77u1eHDmIupdcXZ4nNQRUQG3sgxt3+ 6nOI74jc1NJXUra3CcndJG7KTv1yS0YMEBiCIep83lT/tasJ8KhP0R9gwo9vZEf6 nm5MOmBnXhTJ7kA9ZolUekYIULpOC2j+ -----END CERTIFICATE-----Generated at Tue Nov 4 21:35:32 2025 by rpki-client