$ rpki-client -vvf rpki.apnic.net/member_repository/A916FA49/A4C0CA96900911EE9E54A033C4F9AE02/zWXmdAuufrM71eU4ye5t6LM1RDE.mft File: zWXmdAuufrM71eU4ye5t6LM1RDE.mft (raw, json) Hash identifier: gnu/aKufe2uJoKfunTcLDKoXh5MvRUx6kUvjdjUI0KE= Subject key identifier: DA:22:C8:9F:3A:DC:A3:78:56:FC:FF:45:68:95:F2:B0:59:36:7E:C0 Authority key identifier: CD:65:E6:74:0B:AE:7E:B3:3B:D5:E5:38:C9:EE:6D:E8:B3:35:44:31 Certificate issuer: /CN=A916FA49/serialNumber=CD65E6740BAE7EB33BD5E538C9EE6DE8B3354431 Certificate serial: 0119 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/zWXmdAuufrM71eU4ye5t6LM1RDE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916FA49/A4C0CA96900911EE9E54A033C4F9AE02/zWXmdAuufrM71eU4ye5t6LM1RDE.mft Manifest number: 0112 Signing time: Thu 24 Apr 2025 16:52:39 +0000 Manifest this update: Thu 24 Apr 2025 16:52:38 +0000 Manifest next update: Thu 01 May 2025 16:52:38 +0000 Files and hashes: 1: zWXmdAuufrM71eU4ye5t6LM1RDE.crl (hash: msCBwbpiMns9ChLC2fSdLqMui7b0kRTOlOfixDyWXDo=) 2: 74F996F62F2511EF8D78DC62C4F9AE02.roa (hash: TReNRUcB9Slmh+4MFPwcv7z0b4ojdmnvbTh9IbkrL54=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916FA49/A4C0CA96900911EE9E54A033C4F9AE02/zWXmdAuufrM71eU4ye5t6LM1RDE.crl rsync://rpki.apnic.net/member_repository/A916FA49/A4C0CA96900911EE9E54A033C4F9AE02/zWXmdAuufrM71eU4ye5t6LM1RDE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/zWXmdAuufrM71eU4ye5t6LM1RDE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 16:52:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 281 (0x119) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916FA49, serialNumber=CD65E6740BAE7EB33BD5E538C9EE6DE8B3354431 Validity Not Before: Apr 24 16:52:38 2025 GMT Not After : May 1 16:52:38 2025 GMT Subject: CN=680a6c56-cb44 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:f0:37:72:61:9f:d9:5e:00:f7:66:68:7d:1e: 8f:c5:a4:6c:6e:44:04:e9:f3:37:af:b5:53:1d:01: ed:3b:bc:d2:26:d1:aa:b3:a4:c3:de:79:36:06:6e: 58:e2:b9:26:d3:70:24:3f:c7:26:be:50:9b:b8:ef: 8f:1e:f8:5e:b3:4e:50:83:dd:6a:db:65:0f:4c:27: 00:63:c3:cf:f2:03:30:87:b0:56:14:e0:8d:a4:4b: 51:b0:61:38:7e:2e:7a:da:a2:05:1f:3f:e8:b3:01: ef:12:bd:28:d9:be:0e:5a:3e:40:aa:62:07:6d:81: 5b:5a:43:fd:72:68:00:2f:b4:80:25:d2:7c:fd:8f: e3:ce:f5:9a:c2:3e:7b:65:ab:fa:20:fc:94:70:24: c0:22:b3:47:45:28:27:25:e9:9b:9b:f7:0c:67:d6: 15:42:7c:49:7f:3e:5e:cc:f8:cb:3a:6b:a2:67:45: dd:f1:40:ab:7e:dc:42:68:8f:86:9f:3b:e2:c2:ae: 24:af:27:92:ff:c6:05:55:2a:63:dd:50:61:a8:2a: 30:d4:6b:83:bc:53:33:bc:cd:99:b1:3c:cb:7f:f8: d3:86:fb:f3:67:33:7c:76:85:c1:50:36:9f:0d:ef: 22:bb:a5:53:39:20:4c:cf:d5:11:4c:3d:0e:37:b9: 39:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:22:C8:9F:3A:DC:A3:78:56:FC:FF:45:68:95:F2:B0:59:36:7E:C0 X509v3 Authority Key Identifier: keyid:CD:65:E6:74:0B:AE:7E:B3:3B:D5:E5:38:C9:EE:6D:E8:B3:35:44:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916FA49/A4C0CA96900911EE9E54A033C4F9AE02/zWXmdAuufrM71eU4ye5t6LM1RDE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/zWXmdAuufrM71eU4ye5t6LM1RDE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916FA49/A4C0CA96900911EE9E54A033C4F9AE02/zWXmdAuufrM71eU4ye5t6LM1RDE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5e:e2:f2:c9:3d:b9:e8:fc:d7:57:d7:59:39:94:7d:3d:0e:55: 5b:07:68:56:6f:81:ee:f5:36:7f:9c:c3:3e:0e:7d:6e:20:dd: 9f:c4:a1:c3:a8:76:1b:81:42:a2:4d:dc:9f:4b:53:f5:74:3e: ee:19:84:ba:3f:90:84:c9:90:2b:89:84:69:fe:56:ae:33:0d: af:63:16:20:46:02:b8:bb:16:80:f2:92:3e:45:01:20:c2:fb: 7e:d8:0f:b7:d4:db:f3:50:eb:46:31:73:df:b4:3d:5e:0d:8b: 20:cd:f9:4d:94:78:e6:75:4d:47:3d:a9:0e:5a:c2:0d:7b:5c: 25:f9:73:dc:e8:f8:51:dd:b8:e8:ef:44:44:1e:6d:f4:44:ec: ba:a6:a9:ce:ff:27:45:e2:b2:70:54:38:3f:8f:67:f1:5b:45: d7:b7:da:14:ae:72:4c:81:5f:8a:66:c0:9e:65:83:7e:10:cf: 4c:f3:e3:00:21:4c:6e:44:70:95:b7:f4:4e:a3:e7:d5:54:f1: a7:9e:fa:c3:ba:f5:8d:0b:98:d6:b0:57:cf:58:13:cb:a9:62: 32:83:52:d3:d4:1f:58:86:95:5d:3d:0c:da:7e:c9:bb:64:a4: 57:44:8f:1f:47:84:22:a5:16:bb:19:64:76:ca:26:3c:e5:a5: 6b:c1:4f:3d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkZBNDkxMTAvBgNVBAUTKENENjVFNjc0MEJBRTdFQjMzQkQ1RTUzOEM5RUU2REU4 QjMzNTQ0MzEwHhcNMjUwNDI0MTY1MjM4WhcNMjUwNTAxMTY1MjM4WjAYMRYwFAYD VQQDEw02ODBhNmM1Ni1jYjQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5/A3cmGf2V4A92ZofR6PxaRsbkQE6fM3r7VTHQHtO7zSJtGqs6TD3nk2Bm5Y 4rkm03AkP8cmvlCbuO+PHvhes05Qg91q22UPTCcAY8PP8gMwh7BWFOCNpEtRsGE4 fi562qIFHz/oswHvEr0o2b4OWj5AqmIHbYFbWkP9cmgAL7SAJdJ8/Y/jzvWawj57 Zav6IPyUcCTAIrNHRSgnJembm/cMZ9YVQnxJfz5ezPjLOmuiZ0Xd8UCrftxCaI+G nzviwq4kryeS/8YFVSpj3VBhqCow1GuDvFMzvM2ZsTzLf/jThvvzZzN8doXBUDaf De8iu6VTOSBMz9URTD0ON7k5HQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNoiyJ86 3KN4Vvz/RWiV8rBZNn7AMB8GA1UdIwQYMBaAFM1l5nQLrn6zO9XlOMnubeizNUQx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RkE0OS9BNEMwQ0E5Njkw MDkxMUVFOUU1NEEwMzNDNEY5QUUwMi96V1htZEF1dWZyTTcxZVU0eWU1dDZMTTFS REUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3pXWG1kQXV1ZnJNNzFlVTR5ZTV0NkxNMVJERS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 RkE0OS9BNEMwQ0E5NjkwMDkxMUVFOUU1NEEwMzNDNEY5QUUwMi96V1htZEF1dWZy TTcxZVU0eWU1dDZMTTFSREUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBe4vLJPbno/NdX11k5lH09DlVbB2hWb4Hu9TZ/nMM+Dn1uIN2fxKHD qHYbgUKiTdyfS1P1dD7uGYS6P5CEyZAriYRp/lauMw2vYxYgRgK4uxaA8pI+RQEg wvt+2A+31NvzUOtGMXPftD1eDYsgzflNlHjmdU1HPakOWsINe1wl+XPc6PhR3bjo 70REHm30ROy6pqnO/ydF4rJwVDg/j2fxW0XXt9oUrnJMgV+KZsCeZYN+EM9M8+MA IUxuRHCVt/ROo+fVVPGnnvrDuvWNC5jWsFfPWBPLqWIyg1LT1B9YhpVdPQzafsm7 ZKRXRI8fR4QipRa7GWR2yiY85aVrwU89 -----END CERTIFICATE-----Generated at Sat Apr 26 17:06:38 2025 by rpki-client