$ rpki-client -vvf rpki.apnic.net/member_repository/A916FA49/A4C0CA96900911EE9E54A033C4F9AE02/zWXmdAuufrM71eU4ye5t6LM1RDE.mft File: zWXmdAuufrM71eU4ye5t6LM1RDE.mft (raw, json) Hash identifier: xEWoaHWisCYsCAWHaqi1ICZ5AxWMIts/jMVNBst5pGg= Subject key identifier: F5:5D:31:47:10:9B:8F:24:8E:33:9E:E4:9B:25:FB:FD:96:80:F4:28 Authority key identifier: CD:65:E6:74:0B:AE:7E:B3:3B:D5:E5:38:C9:EE:6D:E8:B3:35:44:31 Certificate issuer: /CN=A916FA49/serialNumber=CD65E6740BAE7EB33BD5E538C9EE6DE8B3354431 Certificate serial: 0136 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/zWXmdAuufrM71eU4ye5t6LM1RDE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916FA49/A4C0CA96900911EE9E54A033C4F9AE02/zWXmdAuufrM71eU4ye5t6LM1RDE.mft Manifest number: 012F Signing time: Fri 20 Jun 2025 16:51:57 +0000 Manifest this update: Fri 20 Jun 2025 16:51:56 +0000 Manifest next update: Fri 27 Jun 2025 16:51:56 +0000 Files and hashes: 1: zWXmdAuufrM71eU4ye5t6LM1RDE.crl (hash: eAbpacL1QMkAP8AqLDQQaw+76om0AKWpTMTUxuiHzNY=) 2: 74F996F62F2511EF8D78DC62C4F9AE02.roa (hash: TReNRUcB9Slmh+4MFPwcv7z0b4ojdmnvbTh9IbkrL54=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916FA49/A4C0CA96900911EE9E54A033C4F9AE02/zWXmdAuufrM71eU4ye5t6LM1RDE.crl rsync://rpki.apnic.net/member_repository/A916FA49/A4C0CA96900911EE9E54A033C4F9AE02/zWXmdAuufrM71eU4ye5t6LM1RDE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/zWXmdAuufrM71eU4ye5t6LM1RDE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 27 Jun 2025 16:51:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 310 (0x136) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916FA49, serialNumber=CD65E6740BAE7EB33BD5E538C9EE6DE8B3354431 Validity Not Before: Jun 20 16:51:56 2025 GMT Not After : Jun 27 16:51:56 2025 GMT Subject: CN=685591ad-ab95 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:12:c7:ee:05:50:e8:4d:8d:04:74:36:d7:c9: fc:f1:36:de:d3:c2:52:09:07:fb:e1:ca:ff:51:a9: b3:ec:d6:f6:62:80:ec:49:2c:04:97:f1:f0:38:99: 82:01:85:7a:3a:fd:01:63:c7:25:1a:b5:6b:e9:58: f3:ea:9a:ab:ee:b2:0f:a7:53:96:a9:d6:20:6e:0b: f4:22:b6:57:8c:57:6f:24:05:1a:09:85:fd:cc:4f: 6e:95:45:23:ea:5c:4f:fb:a5:c3:68:68:94:30:17: ef:1b:43:d3:de:98:75:7f:ad:0a:85:ee:1d:ad:68: 59:75:5c:18:49:8a:a8:c4:e2:b4:ae:bd:eb:12:72: 7b:df:15:98:e5:a0:0b:01:b9:4c:88:fa:93:2a:57: 3b:a3:bf:64:b9:10:d4:48:d4:5d:ab:8e:80:b0:69: b0:b0:e0:97:b9:85:68:96:b9:31:3c:03:25:27:32: d2:d9:a7:8d:90:1b:71:34:38:cc:38:7e:53:22:54: 50:9d:11:1e:e4:76:da:f5:d2:8a:75:ec:93:a2:e5: 45:37:63:d9:93:72:1b:de:ab:cb:27:ae:21:82:2d: 89:18:f1:4c:09:1e:a5:fb:28:1c:a5:56:91:20:11: 35:31:f4:cc:1f:31:82:6e:7f:67:1d:04:9a:c7:d0: 28:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:5D:31:47:10:9B:8F:24:8E:33:9E:E4:9B:25:FB:FD:96:80:F4:28 X509v3 Authority Key Identifier: keyid:CD:65:E6:74:0B:AE:7E:B3:3B:D5:E5:38:C9:EE:6D:E8:B3:35:44:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916FA49/A4C0CA96900911EE9E54A033C4F9AE02/zWXmdAuufrM71eU4ye5t6LM1RDE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/zWXmdAuufrM71eU4ye5t6LM1RDE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916FA49/A4C0CA96900911EE9E54A033C4F9AE02/zWXmdAuufrM71eU4ye5t6LM1RDE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5e:2d:66:93:01:14:bf:3e:e3:2b:e1:4d:61:5c:5b:ee:f2:68: 09:ab:df:43:e1:e0:e2:71:f4:f7:4e:cd:89:4f:5b:03:7c:f8: 90:71:88:04:60:44:f7:65:69:ef:0c:fd:61:36:2e:c6:fe:92: 3e:eb:f9:af:16:ba:87:14:39:df:f1:15:ed:f6:7b:62:13:84: 98:2f:a3:51:84:38:f8:c3:f2:74:06:82:d7:6d:5b:76:06:36: 2d:a2:42:09:d3:bc:86:46:9a:6f:1c:46:06:bf:0b:9d:74:c7: bf:e8:66:af:e2:32:b2:ac:66:0d:7e:2b:7d:af:68:c9:f3:1a: dd:7f:95:a2:56:75:bb:16:ba:45:6b:0d:ed:f6:7a:2c:26:54: c7:da:92:88:ef:8a:e6:80:88:bc:70:dd:6f:c5:2b:13:f3:67: e9:fb:9c:bd:c7:1c:c5:f6:7b:91:a0:e1:ac:55:db:0c:ca:30: 91:54:79:e9:dc:76:8d:72:19:46:46:f1:26:29:ca:a6:e7:00: 7e:b2:0f:d9:06:b1:58:09:7e:f4:06:8c:08:2d:63:ff:e2:a4: 15:72:83:f3:c5:c0:09:62:ea:6d:dc:2e:b0:54:11:73:de:46: 90:2e:99:19:34:6f:9a:f1:94:65:4c:69:ee:69:32:c3:a4:9a: 55:4f:9a:f8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkZBNDkxMTAvBgNVBAUTKENENjVFNjc0MEJBRTdFQjMzQkQ1RTUzOEM5RUU2REU4 QjMzNTQ0MzEwHhcNMjUwNjIwMTY1MTU2WhcNMjUwNjI3MTY1MTU2WjAYMRYwFAYD VQQDEw02ODU1OTFhZC1hYjk1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3RLH7gVQ6E2NBHQ218n88Tbe08JSCQf74cr/Uamz7Nb2YoDsSSwEl/HwOJmC AYV6Ov0BY8clGrVr6Vjz6pqr7rIPp1OWqdYgbgv0IrZXjFdvJAUaCYX9zE9ulUUj 6lxP+6XDaGiUMBfvG0PT3ph1f60Khe4drWhZdVwYSYqoxOK0rr3rEnJ73xWY5aAL AblMiPqTKlc7o79kuRDUSNRdq46AsGmwsOCXuYVolrkxPAMlJzLS2aeNkBtxNDjM OH5TIlRQnREe5Hba9dKKdeyTouVFN2PZk3Ib3qvLJ64hgi2JGPFMCR6l+ygcpVaR IBE1MfTMHzGCbn9nHQSax9AoxQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPVdMUcQ m48kjjOe5Jsl+/2WgPQoMB8GA1UdIwQYMBaAFM1l5nQLrn6zO9XlOMnubeizNUQx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RkE0OS9BNEMwQ0E5Njkw MDkxMUVFOUU1NEEwMzNDNEY5QUUwMi96V1htZEF1dWZyTTcxZVU0eWU1dDZMTTFS REUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3pXWG1kQXV1ZnJNNzFlVTR5ZTV0NkxNMVJERS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 RkE0OS9BNEMwQ0E5NjkwMDkxMUVFOUU1NEEwMzNDNEY5QUUwMi96V1htZEF1dWZy TTcxZVU0eWU1dDZMTTFSREUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBeLWaTARS/PuMr4U1hXFvu8mgJq99D4eDicfT3Ts2JT1sDfPiQcYgE YET3ZWnvDP1hNi7G/pI+6/mvFrqHFDnf8RXt9ntiE4SYL6NRhDj4w/J0BoLXbVt2 BjYtokIJ07yGRppvHEYGvwuddMe/6Gav4jKyrGYNfit9r2jJ8xrdf5WiVnW7FrpF aw3t9nosJlTH2pKI74rmgIi8cN1vxSsT82fp+5y9xxzF9nuRoOGsVdsMyjCRVHnp 3HaNchlGRvEmKcqm5wB+sg/ZBrFYCX70BowILWP/4qQVcoPzxcAJYupt3C6wVBFz 3kaQLpkZNG+a8ZRlTGnuaTLDpJpVT5r4 -----END CERTIFICATE-----Generated at Sat Jun 21 12:30:17 2025 by rpki-client