$ rpki-client -vvf rpki.apnic.net/member_repository/A912DB97/5D8B52640A1411F0B43DC586C4F9AE02/wfSjmGHK0883hCGN7aegXoUvIn8.mft File: wfSjmGHK0883hCGN7aegXoUvIn8.mft (raw, json) Hash identifier: JgwZYJFonEK9yUkuJ5+w/w51oMsilW2nNA08KGX22bg= Subject key identifier: 11:DB:54:68:36:EE:7E:D5:86:0C:E9:31:ED:EF:00:D7:36:98:57:3C Authority key identifier: C1:F4:A3:98:61:CA:D3:CF:37:84:21:8D:ED:A7:A0:5E:85:2F:22:7F Certificate issuer: /CN=A912DB97/serialNumber=C1F4A39861CAD3CF3784218DEDA7A05E852F227F Certificate serial: 2C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wfSjmGHK0883hCGN7aegXoUvIn8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912DB97/5D8B52640A1411F0B43DC586C4F9AE02/wfSjmGHK0883hCGN7aegXoUvIn8.mft Manifest number: 2B Signing time: Sun 15 Jun 2025 06:50:54 +0000 Manifest this update: Sun 15 Jun 2025 06:50:53 +0000 Manifest next update: Sun 22 Jun 2025 06:50:53 +0000 Files and hashes: 1: wfSjmGHK0883hCGN7aegXoUvIn8.crl (hash: FLUhhUnshx7r3irmtdHNxIB0SMPiw1PSwrOLXkQDzGU=) 2: 28F87D180A1611F0BC8FD10DC4F9AE02.roa (hash: kwR4HiPzGhpK5SEPo+ThTcF7apxZuPZzTOyt4h1UDag=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912DB97/5D8B52640A1411F0B43DC586C4F9AE02/wfSjmGHK0883hCGN7aegXoUvIn8.crl rsync://rpki.apnic.net/member_repository/A912DB97/5D8B52640A1411F0B43DC586C4F9AE02/wfSjmGHK0883hCGN7aegXoUvIn8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wfSjmGHK0883hCGN7aegXoUvIn8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44 (0x2c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912DB97, serialNumber=C1F4A39861CAD3CF3784218DEDA7A05E852F227F Validity Not Before: Jun 15 06:50:53 2025 GMT Not After : Jun 22 06:50:53 2025 GMT Subject: CN=684e6d4d-2700 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:71:ad:cb:2e:b3:f7:ec:ca:99:6c:7b:ea:a3: 5f:0e:fb:40:aa:ac:8c:84:80:f3:c3:e1:c5:a0:2f: 46:67:45:08:91:d2:1b:ff:7b:81:67:d0:76:9d:d2: 3b:0e:ce:f7:af:1c:09:ba:70:dd:d2:88:35:c6:16: 53:89:61:69:b3:6f:90:09:98:ad:1a:f6:8e:90:06: a6:7d:0e:2d:bd:22:41:05:ce:e6:27:98:65:ca:1b: b3:29:54:45:a8:eb:aa:c5:00:92:45:fe:07:31:7b: 03:e8:eb:3a:08:e1:e1:6a:96:f6:24:9c:fb:0b:5f: 7f:19:70:30:a1:cd:f5:77:26:a3:7d:2e:1b:95:10: d2:af:48:25:72:6c:87:b8:ca:b4:91:d5:cd:0e:f2: 75:a1:7e:22:1d:d7:29:22:b3:18:28:a2:db:90:51: 8e:29:fe:be:56:76:3b:f5:49:52:9b:18:7b:3c:d8: 64:31:43:22:41:ba:aa:c6:05:80:91:42:bb:c4:5b: 44:e2:99:fa:6d:d4:86:da:bf:2c:c3:d8:43:13:f5: 92:7a:ad:09:45:98:08:65:64:16:7a:c6:41:66:86: 24:65:65:4b:4f:e2:8c:89:9b:74:68:7c:bd:d4:a8: 95:61:c3:05:43:63:60:61:3e:06:e1:62:b4:03:1d: b4:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:DB:54:68:36:EE:7E:D5:86:0C:E9:31:ED:EF:00:D7:36:98:57:3C X509v3 Authority Key Identifier: keyid:C1:F4:A3:98:61:CA:D3:CF:37:84:21:8D:ED:A7:A0:5E:85:2F:22:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912DB97/5D8B52640A1411F0B43DC586C4F9AE02/wfSjmGHK0883hCGN7aegXoUvIn8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wfSjmGHK0883hCGN7aegXoUvIn8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912DB97/5D8B52640A1411F0B43DC586C4F9AE02/wfSjmGHK0883hCGN7aegXoUvIn8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 42:99:dc:d5:63:f6:b1:cb:d4:ea:9a:97:dd:7f:9f:95:d6:1c: 61:01:97:b7:ee:a2:2a:5b:33:43:88:33:fe:83:24:bf:93:9b: fd:2c:99:8e:d4:c2:87:ba:47:97:1d:4b:53:e5:8c:07:c9:36: d1:6b:df:9b:47:50:b4:e1:71:32:ba:9b:53:74:2a:ef:a4:af: 51:70:bd:b1:d6:a4:da:7d:72:5a:49:b8:8f:f8:54:ef:b2:2a: 3d:16:db:14:c0:1c:05:cc:57:c1:98:2f:4c:6b:92:c7:bb:21: 43:d0:c0:d3:43:33:09:fb:b0:76:a6:85:28:3b:0a:5e:e1:19: bb:c2:69:7d:d3:7e:0b:f8:89:54:7e:18:3b:25:ca:0e:c3:04: 77:77:c6:0f:3c:4e:fd:00:d2:84:4e:87:f7:d2:5d:e4:3a:e1: 52:ba:d6:61:bf:e9:6e:74:0d:1f:5f:e8:d9:f2:41:9a:1b:ac: c6:5d:17:02:cf:ee:9c:5e:0b:ad:b2:69:fc:29:de:44:0f:5b: a7:3d:40:4e:4d:c1:60:c4:e6:a0:04:fd:b9:0b:42:fe:ba:15: b2:97:74:a0:dc:f1:04:7f:c2:08:83:03:ad:69:13:a8:b9:4a: f1:83:6a:d9:6b:97:43:30:09:54:e7:bd:2e:c6:d8:37:01:33: 21:e8:41:84 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBLDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy REI5NzExMC8GA1UEBRMoQzFGNEEzOTg2MUNBRDNDRjM3ODQyMThERURBN0EwNUU4 NTJGMjI3RjAeFw0yNTA2MTUwNjUwNTNaFw0yNTA2MjIwNjUwNTNaMBgxFjAUBgNV BAMTDTY4NGU2ZDRkLTI3MDAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDOca3LLrP37MqZbHvqo18O+0CqrIyEgPPD4cWgL0ZnRQiR0hv/e4Fn0Had0jsO zvevHAm6cN3SiDXGFlOJYWmzb5AJmK0a9o6QBqZ9Di29IkEFzuYnmGXKG7MpVEWo 66rFAJJF/gcxewPo6zoI4eFqlvYknPsLX38ZcDChzfV3JqN9LhuVENKvSCVybIe4 yrSR1c0O8nWhfiId1ykisxgootuQUY4p/r5Wdjv1SVKbGHs82GQxQyJBuqrGBYCR QrvEW0Timfpt1IbavyzD2EMT9ZJ6rQlFmAhlZBZ6xkFmhiRlZUtP4oyJm3RofL3U qJVhwwVDY2BhPgbhYrQDHbRHAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUEdtUaDbu ftWGDOkx7e8A1zaYVzwwHwYDVR0jBBgwFoAUwfSjmGHK0883hCGN7aegXoUvIn8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTJEQjk3LzVEOEI1MjY0MEEx NDExRjBCNDNEQzU4NkM0RjlBRTAyL3dmU2ptR0hLMDg4M2hDR043YWVnWG9Vdklu OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvd2ZTam1HSEswODgzaENHTjdhZWdYb1V2SW44LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTJE Qjk3LzVEOEI1MjY0MEExNDExRjBCNDNEQzU4NkM0RjlBRTAyL3dmU2ptR0hLMDg4 M2hDR043YWVnWG9VdkluOC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAEKZ3NVj9rHL1Oqal91/n5XWHGEBl7fuoipbM0OIM/6DJL+Tm/0smY7U woe6R5cdS1PljAfJNtFr35tHULThcTK6m1N0Ku+kr1FwvbHWpNp9clpJuI/4VO+y Kj0W2xTAHAXMV8GYL0xrkse7IUPQwNNDMwn7sHamhSg7Cl7hGbvCaX3Tfgv4iVR+ GDslyg7DBHd3xg88Tv0A0oROh/fSXeQ64VK61mG/6W50DR9f6NnyQZobrMZdFwLP 7pxeC62yafwp3kQPW6c9QE5NwWDE5qAE/bkLQv66FbKXdKDc8QR/wgiDA61pE6i5 SvGDatlrl0MwCVTnvS7G2DcBMyHoQYQ= -----END CERTIFICATE-----Generated at Sun Jun 15 10:16:24 2025 by rpki-client