$ rpki-client -vvf rpki.apnic.net/member_repository/A916FA49/A4C0CA96900911EE9E54A033C4F9AE02/zWXmdAuufrM71eU4ye5t6LM1RDE.mft File: zWXmdAuufrM71eU4ye5t6LM1RDE.mft (raw, json) Hash identifier: PVOA+hgK30fV6uAjG2bPfmezZ7UI++pP8JqPh52HZas= Subject key identifier: BC:4D:3C:F6:0D:B9:B5:52:C0:20:43:78:31:9F:19:92:91:EC:DB:8E Authority key identifier: CD:65:E6:74:0B:AE:7E:B3:3B:D5:E5:38:C9:EE:6D:E8:B3:35:44:31 Certificate issuer: /CN=A916FA49/serialNumber=CD65E6740BAE7EB33BD5E538C9EE6DE8B3354431 Certificate serial: 0150 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/zWXmdAuufrM71eU4ye5t6LM1RDE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916FA49/A4C0CA96900911EE9E54A033C4F9AE02/zWXmdAuufrM71eU4ye5t6LM1RDE.mft Manifest number: 0149 Signing time: Sun 10 Aug 2025 16:49:42 +0000 Manifest this update: Sun 10 Aug 2025 16:49:42 +0000 Manifest next update: Sun 17 Aug 2025 16:49:42 +0000 Files and hashes: 1: zWXmdAuufrM71eU4ye5t6LM1RDE.crl (hash: SZC/csBtqSuZWtDHrDkWJbxoWJ7yHxIJM8FCRhwQVj8=) 2: 74F996F62F2511EF8D78DC62C4F9AE02.roa (hash: TReNRUcB9Slmh+4MFPwcv7z0b4ojdmnvbTh9IbkrL54=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916FA49/A4C0CA96900911EE9E54A033C4F9AE02/zWXmdAuufrM71eU4ye5t6LM1RDE.crl rsync://rpki.apnic.net/member_repository/A916FA49/A4C0CA96900911EE9E54A033C4F9AE02/zWXmdAuufrM71eU4ye5t6LM1RDE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/zWXmdAuufrM71eU4ye5t6LM1RDE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 336 (0x150) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916FA49, serialNumber=CD65E6740BAE7EB33BD5E538C9EE6DE8B3354431 Validity Not Before: Aug 10 16:49:42 2025 GMT Not After : Aug 17 16:49:42 2025 GMT Subject: CN=6898cda6-eb58 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:45:0a:36:0c:c6:25:8c:0d:26:75:93:0c:c0: 38:d4:b1:04:58:5f:a2:d6:f3:c4:f8:26:28:0e:26: 66:81:4a:09:d4:97:f6:22:4e:6e:75:06:f2:41:db: de:58:cd:1b:32:be:79:b9:e4:1e:25:e4:43:86:9a: 62:64:46:bc:98:c5:74:40:d9:27:d2:e2:67:5e:b8: 92:33:8e:1a:8d:44:87:cc:a8:6e:22:19:fd:ee:e4: 51:32:95:fe:72:05:61:28:02:45:5f:6e:55:f3:52: 8a:f9:e7:b2:c1:2f:8f:7e:1a:de:98:c5:ec:0c:ad: 98:0b:c4:28:28:c1:c9:c4:3d:c3:0f:6e:08:d4:01: e8:c1:93:d9:b6:d5:a7:3a:cb:71:42:80:88:53:70: f5:07:d7:d9:ea:d8:ac:39:5d:c5:8c:e2:76:42:9c: 7e:de:1c:34:37:6d:89:06:52:96:d8:42:e7:ff:b9: 32:f9:b3:ac:ed:7a:b7:d3:2e:f1:d2:2a:e7:52:a0: f4:84:16:88:bf:6c:24:5e:c2:47:43:e8:95:f1:22: 85:54:b6:56:58:b5:d8:4d:03:27:d2:d9:2c:6e:6e: ff:c0:41:33:aa:fe:64:2e:7b:4d:7e:98:0b:23:b6: f8:d1:ca:60:73:a6:a5:2e:0f:27:04:33:74:e8:16: f7:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:4D:3C:F6:0D:B9:B5:52:C0:20:43:78:31:9F:19:92:91:EC:DB:8E X509v3 Authority Key Identifier: keyid:CD:65:E6:74:0B:AE:7E:B3:3B:D5:E5:38:C9:EE:6D:E8:B3:35:44:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916FA49/A4C0CA96900911EE9E54A033C4F9AE02/zWXmdAuufrM71eU4ye5t6LM1RDE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/zWXmdAuufrM71eU4ye5t6LM1RDE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916FA49/A4C0CA96900911EE9E54A033C4F9AE02/zWXmdAuufrM71eU4ye5t6LM1RDE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 18:c6:22:ed:1f:48:ad:4a:9f:af:e5:15:ee:b1:a4:30:57:fb: 57:06:0e:a2:2c:79:b9:73:6f:83:6a:76:1e:11:74:a7:42:bd: 50:57:82:e2:d4:a1:8a:c9:35:e1:52:ee:f1:d4:cd:49:e3:de: 5d:cd:8d:77:96:60:de:e9:b5:91:0a:11:ec:e0:5c:bf:50:56: f4:94:07:10:e8:a9:79:c4:96:f3:b4:ef:1c:49:6c:80:15:36: 8c:9d:ac:70:1b:05:eb:67:41:97:b8:c4:d9:f5:24:4f:91:a4: 08:7a:f6:cc:66:0e:44:50:7c:5d:f1:4b:e5:dc:23:a0:ab:db: 61:e4:70:de:fb:08:12:5d:e6:c0:e0:6f:f9:ad:19:f7:9a:07: ad:0b:65:a4:6f:49:33:9d:c8:e9:e4:5d:c5:df:a1:32:f7:7b: bb:a0:74:49:2b:ab:e6:90:1d:ed:31:46:78:d4:fb:b8:fd:14: 73:46:49:81:90:03:07:bf:0b:8c:9d:9f:ad:cf:19:64:eb:e6: d8:4b:8a:4a:bd:12:5e:19:60:83:8f:1d:cc:21:63:f9:0e:f3: dc:f5:74:62:e2:81:ba:5f:60:ba:16:64:f5:78:e5:76:90:f8: 8d:65:0b:0e:bb:2a:9c:d0:23:0f:32:b6:45:c7:f3:ed:9f:32: 3f:b3:67:e0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkZBNDkxMTAvBgNVBAUTKENENjVFNjc0MEJBRTdFQjMzQkQ1RTUzOEM5RUU2REU4 QjMzNTQ0MzEwHhcNMjUwODEwMTY0OTQyWhcNMjUwODE3MTY0OTQyWjAYMRYwFAYD VQQDEw02ODk4Y2RhNi1lYjU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz0UKNgzGJYwNJnWTDMA41LEEWF+i1vPE+CYoDiZmgUoJ1Jf2Ik5udQbyQdve WM0bMr55ueQeJeRDhppiZEa8mMV0QNkn0uJnXriSM44ajUSHzKhuIhn97uRRMpX+ cgVhKAJFX25V81KK+eeywS+PfhremMXsDK2YC8QoKMHJxD3DD24I1AHowZPZttWn OstxQoCIU3D1B9fZ6tisOV3FjOJ2Qpx+3hw0N22JBlKW2ELn/7ky+bOs7Xq30y7x 0irnUqD0hBaIv2wkXsJHQ+iV8SKFVLZWWLXYTQMn0tksbm7/wEEzqv5kLntNfpgL I7b40cpgc6alLg8nBDN06Bb39wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLxNPPYN ubVSwCBDeDGfGZKR7NuOMB8GA1UdIwQYMBaAFM1l5nQLrn6zO9XlOMnubeizNUQx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RkE0OS9BNEMwQ0E5Njkw MDkxMUVFOUU1NEEwMzNDNEY5QUUwMi96V1htZEF1dWZyTTcxZVU0eWU1dDZMTTFS REUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3pXWG1kQXV1ZnJNNzFlVTR5ZTV0NkxNMVJERS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 RkE0OS9BNEMwQ0E5NjkwMDkxMUVFOUU1NEEwMzNDNEY5QUUwMi96V1htZEF1dWZy TTcxZVU0eWU1dDZMTTFSREUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAYxiLtH0itSp+v5RXusaQwV/tXBg6iLHm5c2+DanYeEXSnQr1QV4Li 1KGKyTXhUu7x1M1J495dzY13lmDe6bWRChHs4Fy/UFb0lAcQ6Kl5xJbztO8cSWyA FTaMnaxwGwXrZ0GXuMTZ9SRPkaQIevbMZg5EUHxd8Uvl3COgq9th5HDe+wgSXebA 4G/5rRn3mgetC2Wkb0kzncjp5F3F36Ey93u7oHRJK6vmkB3tMUZ41Pu4/RRzRkmB kAMHvwuMnZ+tzxlk6+bYS4pKvRJeGWCDjx3MIWP5DvPc9XRi4oG6X2C6FmT1eOV2 kPiNZQsOuyqc0CMPMrZFx/PtnzI/s2fg -----END CERTIFICATE-----Generated at Sun Aug 10 18:50:50 2025 by rpki-client