$ rpki-client -vvf rpki.apnic.net/member_repository/A91172C6/0AA4D6646A4D11E99F05432EC4F9AE02/WXbvXQvxZojiXsXi3Iyp9a-uG1M.mft File: WXbvXQvxZojiXsXi3Iyp9a-uG1M.mft (raw, json) Hash identifier: Z2w73BocoEW5lLA0pymUFtFz1uVY2melaZeunLMCmNw= Subject key identifier: 22:33:25:2E:3D:C0:0A:AB:F6:60:0B:A0:F1:18:C5:6C:26:45:F7:C9 Authority key identifier: 59:76:EF:5D:0B:F1:66:88:E2:5E:C5:E2:DC:8C:A9:F5:AF:AE:1B:53 Certificate issuer: /CN=A91172C6/serialNumber=5976EF5D0BF16688E25EC5E2DC8CA9F5AFAE1B53 Certificate serial: 0F64 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WXbvXQvxZojiXsXi3Iyp9a-uG1M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91172C6/0AA4D6646A4D11E99F05432EC4F9AE02/WXbvXQvxZojiXsXi3Iyp9a-uG1M.mft Manifest number: 0F5C Signing time: Wed 18 Jun 2025 17:30:56 +0000 Manifest this update: Wed 18 Jun 2025 17:30:56 +0000 Manifest next update: Wed 25 Jun 2025 17:30:56 +0000 Files and hashes: 1: WXbvXQvxZojiXsXi3Iyp9a-uG1M.crl (hash: PS9bgLMzjHYOSdCKxT4GDG4e81Fqi0ShSv34DV7jv2w=) 2: 16FA72386A4E11E992F4832FC4F9AE02.roa (hash: OgNGu/mRKm6xVdHYanAV24opwQSD/lMEZY85nUgEHHI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91172C6/0AA4D6646A4D11E99F05432EC4F9AE02/WXbvXQvxZojiXsXi3Iyp9a-uG1M.crl rsync://rpki.apnic.net/member_repository/A91172C6/0AA4D6646A4D11E99F05432EC4F9AE02/WXbvXQvxZojiXsXi3Iyp9a-uG1M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WXbvXQvxZojiXsXi3Iyp9a-uG1M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Jun 2025 17:30:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3940 (0xf64) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91172C6, serialNumber=5976EF5D0BF16688E25EC5E2DC8CA9F5AFAE1B53 Validity Not Before: Jun 18 17:30:56 2025 GMT Not After : Jun 25 17:30:56 2025 GMT Subject: CN=6852f7d0-5245 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:95:84:9e:e0:33:92:cf:90:12:e4:88:23:29: a0:8e:63:29:78:d1:8f:54:07:48:3e:7a:88:e0:ec: 73:b2:d2:c3:d4:7d:db:66:cd:25:9a:a2:72:e4:e1: 94:fb:04:9b:cf:b8:c6:8e:c6:aa:6d:6b:33:dd:b8: 00:a9:db:f6:43:9f:9f:44:15:86:bf:ca:4a:8f:d2: 4d:18:83:3a:34:3a:9d:f3:f6:ed:0c:e4:ce:9a:7d: d4:a8:be:d7:ce:25:ff:24:ba:58:1f:ec:b0:5b:1f: 2f:c2:06:7f:15:5e:0d:30:2c:d9:fa:3b:e0:1f:11: f1:39:0e:f3:76:2d:09:56:01:93:49:25:9e:34:a8: f6:48:59:d7:14:e8:68:18:69:ba:02:2f:69:13:a0: 26:14:4c:1b:8e:15:e2:4d:fc:a3:a1:6b:e8:92:11: 00:e9:7f:ef:ee:e4:8f:42:4e:e9:eb:20:fa:85:9e: 8b:a2:20:b6:63:fb:41:a2:f0:d4:2c:df:52:91:52: 2e:47:58:13:51:a5:cc:7a:35:1d:fc:0b:92:79:b1: 77:07:7c:3b:33:8a:76:fb:c9:fc:d7:0c:c9:81:03: 09:94:87:d4:52:98:83:ad:0b:f4:fa:57:9b:1a:fa: 85:26:76:df:9b:42:88:15:5a:a3:fb:f8:36:ea:6e: ad:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:33:25:2E:3D:C0:0A:AB:F6:60:0B:A0:F1:18:C5:6C:26:45:F7:C9 X509v3 Authority Key Identifier: keyid:59:76:EF:5D:0B:F1:66:88:E2:5E:C5:E2:DC:8C:A9:F5:AF:AE:1B:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91172C6/0AA4D6646A4D11E99F05432EC4F9AE02/WXbvXQvxZojiXsXi3Iyp9a-uG1M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WXbvXQvxZojiXsXi3Iyp9a-uG1M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91172C6/0AA4D6646A4D11E99F05432EC4F9AE02/WXbvXQvxZojiXsXi3Iyp9a-uG1M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 63:65:0a:b5:31:00:5f:63:1f:f8:26:b9:ad:c5:c6:b8:66:cb: ab:be:10:dd:07:5a:83:f0:ef:6c:28:99:e5:d5:b4:f2:89:9a: f6:47:54:77:93:ff:39:2f:82:60:8b:e1:8e:bc:fa:1a:67:2f: 0f:76:47:17:d3:2e:fd:e6:5e:33:27:f4:45:b4:16:42:72:8f: cd:71:58:53:34:f6:16:79:51:df:4c:b5:09:28:e8:37:d6:e2: 78:da:06:85:e9:29:5f:e8:d2:9a:25:ec:ed:61:85:98:36:3c: e2:af:f2:f1:6e:8b:b8:69:80:f9:c6:23:a8:9d:44:f4:71:03: 5d:2a:fe:bb:8c:c6:b0:ed:c2:df:66:3a:1a:82:ee:42:be:c9: 37:c4:b6:6d:ff:82:6a:60:e2:7c:ed:74:18:f1:dd:bd:89:48: 0e:fc:e0:f2:c3:77:3e:51:09:e2:32:16:05:35:b5:93:4e:35: 51:9d:0c:09:ca:74:9a:5e:eb:d5:f5:d3:8c:bd:81:2d:db:07: fc:85:45:fc:c4:65:33:0c:bc:ad:6f:cb:ad:8f:ba:07:a2:12: ee:f8:a5:71:01:b0:41:6e:88:a4:13:48:bd:39:44:6c:ff:f0: 6c:91:26:26:45:a7:6c:3b:ad:cf:ab:62:5d:7d:71:37:38:e4: 9f:45:67:02 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD2QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTcyQzYxMTAvBgNVBAUTKDU5NzZFRjVEMEJGMTY2ODhFMjVFQzVFMkRDOENBOUY1 QUZBRTFCNTMwHhcNMjUwNjE4MTczMDU2WhcNMjUwNjI1MTczMDU2WjAYMRYwFAYD VQQDEw02ODUyZjdkMC01MjQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0ZWEnuAzks+QEuSIIymgjmMpeNGPVAdIPnqI4OxzstLD1H3bZs0lmqJy5OGU +wSbz7jGjsaqbWsz3bgAqdv2Q5+fRBWGv8pKj9JNGIM6NDqd8/btDOTOmn3UqL7X ziX/JLpYH+ywWx8vwgZ/FV4NMCzZ+jvgHxHxOQ7zdi0JVgGTSSWeNKj2SFnXFOho GGm6Ai9pE6AmFEwbjhXiTfyjoWvokhEA6X/v7uSPQk7p6yD6hZ6LoiC2Y/tBovDU LN9SkVIuR1gTUaXMejUd/AuSebF3B3w7M4p2+8n81wzJgQMJlIfUUpiDrQv0+leb GvqFJnbfm0KIFVqj+/g26m6tzQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCIzJS49 wAqr9mALoPEYxWwmRffJMB8GA1UdIwQYMBaAFFl2710L8WaI4l7F4tyMqfWvrhtT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNzJDNi8wQUE0RDY2NDZB NEQxMUU5OUYwNTQzMkVDNEY5QUUwMi9XWGJ2WFF2eFpvamlYc1hpM0l5cDlhLXVH MU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dYYnZYUXZ4Wm9qaVhzWGkzSXlwOWEtdUcxTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NzJDNi8wQUE0RDY2NDZBNEQxMUU5OUYwNTQzMkVDNEY5QUUwMi9XWGJ2WFF2eFpv amlYc1hpM0l5cDlhLXVHMU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBjZQq1MQBfYx/4Jrmtxca4ZsurvhDdB1qD8O9sKJnl1bTyiZr2R1R3 k/85L4Jgi+GOvPoaZy8PdkcX0y795l4zJ/RFtBZCco/NcVhTNPYWeVHfTLUJKOg3 1uJ42gaF6Slf6NKaJeztYYWYNjzir/Lxbou4aYD5xiOonUT0cQNdKv67jMaw7cLf Zjoagu5Cvsk3xLZt/4JqYOJ87XQY8d29iUgO/ODyw3c+UQniMhYFNbWTTjVRnQwJ ynSaXuvV9dOMvYEt2wf8hUX8xGUzDLytb8utj7oHohLu+KVxAbBBboikE0i9OURs //BskSYmRadsO63Pq2JdfXE3OOSfRWcC -----END CERTIFICATE-----Generated at Thu Jun 19 22:21:25 2025 by rpki-client