$ rpki-client -vvf rpki.apnic.net/member_repository/A91172C6/0AA4D6646A4D11E99F05432EC4F9AE02/WXbvXQvxZojiXsXi3Iyp9a-uG1M.mft File: WXbvXQvxZojiXsXi3Iyp9a-uG1M.mft (raw, json) Hash identifier: 3p7wYMjDoR6ktR/fsBbBlbPgL8VV4NDWvW737BbebcE= Subject key identifier: 89:38:E2:4F:B8:A1:02:70:FC:2B:EF:8C:7D:A6:BB:C6:47:A3:E7:30 Authority key identifier: 59:76:EF:5D:0B:F1:66:88:E2:5E:C5:E2:DC:8C:A9:F5:AF:AE:1B:53 Certificate issuer: /CN=A91172C6/serialNumber=5976EF5D0BF16688E25EC5E2DC8CA9F5AFAE1B53 Certificate serial: 0F49 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WXbvXQvxZojiXsXi3Iyp9a-uG1M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91172C6/0AA4D6646A4D11E99F05432EC4F9AE02/WXbvXQvxZojiXsXi3Iyp9a-uG1M.mft Manifest number: 0F41 Signing time: Thu 24 Apr 2025 17:34:32 +0000 Manifest this update: Thu 24 Apr 2025 17:34:31 +0000 Manifest next update: Thu 01 May 2025 17:34:31 +0000 Files and hashes: 1: WXbvXQvxZojiXsXi3Iyp9a-uG1M.crl (hash: vArTZ80/xrSDmoPV3GPBcVEZYRDor/LxjmcoIOVHMLo=) 2: 16FA72386A4E11E992F4832FC4F9AE02.roa (hash: OgNGu/mRKm6xVdHYanAV24opwQSD/lMEZY85nUgEHHI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91172C6/0AA4D6646A4D11E99F05432EC4F9AE02/WXbvXQvxZojiXsXi3Iyp9a-uG1M.crl rsync://rpki.apnic.net/member_repository/A91172C6/0AA4D6646A4D11E99F05432EC4F9AE02/WXbvXQvxZojiXsXi3Iyp9a-uG1M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WXbvXQvxZojiXsXi3Iyp9a-uG1M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 17:34:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3913 (0xf49) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91172C6, serialNumber=5976EF5D0BF16688E25EC5E2DC8CA9F5AFAE1B53 Validity Not Before: Apr 24 17:34:31 2025 GMT Not After : May 1 17:34:31 2025 GMT Subject: CN=680a7627-9bb9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:d8:1d:df:78:8a:7b:8f:e5:5f:be:51:11:c9: c3:d3:df:4c:e2:86:7d:df:f2:38:56:0b:b3:9b:ed: a0:7b:43:30:12:13:e1:5e:bc:b7:db:da:da:d9:41: 9f:fd:43:b0:3a:e5:4e:f0:26:7f:24:93:7e:7c:3c: 0d:4e:f5:38:88:e7:42:ae:36:8c:a1:c5:bf:98:d2: c4:9a:2f:87:03:3a:5b:85:51:9e:18:09:85:13:58: d3:26:cd:b2:d9:e0:2f:e0:06:18:31:f5:e9:79:6c: 01:59:c6:55:b9:38:ce:d3:45:a3:a4:0b:17:39:b6: 27:63:44:ff:e5:e6:ad:4d:f3:71:e9:e2:a3:32:ce: 99:6c:b2:f4:6e:d4:55:46:83:1d:2e:64:a3:01:ae: bd:20:4e:5f:dc:a5:d8:52:82:f2:a1:69:f3:34:18: da:15:5d:54:88:6b:19:3a:e3:7d:90:20:ac:3b:37: 38:12:53:cd:f1:89:52:4e:cf:85:b9:d0:46:aa:e0: 03:3d:88:6d:09:bc:99:22:c4:9a:95:36:c0:e5:5c: 7a:cd:10:c8:8f:cd:fb:4f:a1:66:28:b9:12:9b:f6: 27:10:97:4c:ac:65:e9:4a:6e:7e:dc:80:aa:35:ff: 3a:79:95:4e:ea:75:c0:a4:c8:60:b4:3b:9b:8d:26: 9b:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:38:E2:4F:B8:A1:02:70:FC:2B:EF:8C:7D:A6:BB:C6:47:A3:E7:30 X509v3 Authority Key Identifier: keyid:59:76:EF:5D:0B:F1:66:88:E2:5E:C5:E2:DC:8C:A9:F5:AF:AE:1B:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91172C6/0AA4D6646A4D11E99F05432EC4F9AE02/WXbvXQvxZojiXsXi3Iyp9a-uG1M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WXbvXQvxZojiXsXi3Iyp9a-uG1M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91172C6/0AA4D6646A4D11E99F05432EC4F9AE02/WXbvXQvxZojiXsXi3Iyp9a-uG1M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 11:4b:97:50:b8:d3:45:58:e7:bc:03:5b:6c:88:d3:b0:ba:8e: 40:e0:df:04:d0:bc:b3:96:98:f6:bb:96:8a:62:ec:d2:74:82: 76:02:13:e8:9c:90:66:49:97:81:bc:f5:47:88:6d:a1:51:3f: cc:4c:01:90:2a:c5:ac:9d:93:9f:f2:eb:1a:1f:1e:58:17:f8: 09:df:5c:60:f9:8f:4c:e9:05:db:3b:64:46:76:42:4e:e4:b8: 21:73:f3:e7:47:84:fe:85:74:60:84:6c:19:02:40:5c:cb:be: 48:fc:7c:17:30:b5:5a:48:01:49:ff:62:63:bf:b9:17:f8:d3: 46:74:01:b2:4f:12:8d:01:a9:4b:fa:4c:95:20:2d:43:4b:36: a8:b5:d9:23:da:8e:37:86:eb:bd:7c:5d:39:ee:3b:da:cb:72: d0:97:ed:e5:f2:76:67:1c:6c:1a:49:99:6c:96:1c:09:4b:e2: 49:e4:51:ac:01:07:1d:46:8b:8e:81:8e:e4:45:a1:6a:90:45: dd:e2:f8:a4:c9:38:2a:3c:c9:87:55:af:dc:63:5a:28:c5:4d: 4d:86:94:bb:3b:c1:49:5f:95:9f:09:69:d7:d7:85:f0:73:7c: 4c:60:5f:48:e1:84:c0:5b:65:a4:3a:67:cf:d8:0e:8e:c9:dd: 07:d7:46:5d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD0kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTcyQzYxMTAvBgNVBAUTKDU5NzZFRjVEMEJGMTY2ODhFMjVFQzVFMkRDOENBOUY1 QUZBRTFCNTMwHhcNMjUwNDI0MTczNDMxWhcNMjUwNTAxMTczNDMxWjAYMRYwFAYD VQQDEw02ODBhNzYyNy05YmI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAstgd33iKe4/lX75REcnD099M4oZ93/I4Vguzm+2ge0MwEhPhXry329ra2UGf /UOwOuVO8CZ/JJN+fDwNTvU4iOdCrjaMocW/mNLEmi+HAzpbhVGeGAmFE1jTJs2y 2eAv4AYYMfXpeWwBWcZVuTjO00WjpAsXObYnY0T/5eatTfNx6eKjMs6ZbLL0btRV RoMdLmSjAa69IE5f3KXYUoLyoWnzNBjaFV1UiGsZOuN9kCCsOzc4ElPN8YlSTs+F udBGquADPYhtCbyZIsSalTbA5Vx6zRDIj837T6FmKLkSm/YnEJdMrGXpSm5+3ICq Nf86eZVO6nXApMhgtDubjSabLQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIk44k+4 oQJw/CvvjH2mu8ZHo+cwMB8GA1UdIwQYMBaAFFl2710L8WaI4l7F4tyMqfWvrhtT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNzJDNi8wQUE0RDY2NDZB NEQxMUU5OUYwNTQzMkVDNEY5QUUwMi9XWGJ2WFF2eFpvamlYc1hpM0l5cDlhLXVH MU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dYYnZYUXZ4Wm9qaVhzWGkzSXlwOWEtdUcxTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NzJDNi8wQUE0RDY2NDZBNEQxMUU5OUYwNTQzMkVDNEY5QUUwMi9XWGJ2WFF2eFpv amlYc1hpM0l5cDlhLXVHMU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQARS5dQuNNFWOe8A1tsiNOwuo5A4N8E0Lyzlpj2u5aKYuzSdIJ2AhPo nJBmSZeBvPVHiG2hUT/MTAGQKsWsnZOf8usaHx5YF/gJ31xg+Y9M6QXbO2RGdkJO 5Lghc/PnR4T+hXRghGwZAkBcy75I/HwXMLVaSAFJ/2Jjv7kX+NNGdAGyTxKNAalL +kyVIC1DSzaotdkj2o43huu9fF057jvay3LQl+3l8nZnHGwaSZlslhwJS+JJ5FGs AQcdRouOgY7kRaFqkEXd4vikyTgqPMmHVa/cY1ooxU1NhpS7O8FJX5WfCWnX14Xw c3xMYF9I4YTAW2WkOmfP2A6Oyd0H10Zd -----END CERTIFICATE-----Generated at Sat Apr 26 04:33:24 2025 by rpki-client