$ rpki-client -vvf rpki.apnic.net/member_repository/A912DB97/5D8B52640A1411F0B43DC586C4F9AE02/wfSjmGHK0883hCGN7aegXoUvIn8.mft File: wfSjmGHK0883hCGN7aegXoUvIn8.mft (raw, json) Hash identifier: iuNzpt9KZAk8tQJ/x7kPsEgT25LvPuZNHMbaZ5bWY1k= Subject key identifier: 48:DB:73:96:AA:11:99:ED:83:18:6F:22:59:48:F3:08:61:5D:5E:EA Authority key identifier: C1:F4:A3:98:61:CA:D3:CF:37:84:21:8D:ED:A7:A0:5E:85:2F:22:7F Certificate issuer: /CN=A912DB97/serialNumber=C1F4A39861CAD3CF3784218DEDA7A05E852F227F Certificate serial: 13 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wfSjmGHK0883hCGN7aegXoUvIn8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912DB97/5D8B52640A1411F0B43DC586C4F9AE02/wfSjmGHK0883hCGN7aegXoUvIn8.mft Manifest number: 12 Signing time: Fri 25 Apr 2025 07:03:12 +0000 Manifest this update: Fri 25 Apr 2025 07:03:11 +0000 Manifest next update: Fri 02 May 2025 07:03:11 +0000 Files and hashes: 1: wfSjmGHK0883hCGN7aegXoUvIn8.crl (hash: +RGSVOg3+Ljcmq32eGTIa7Jn+KWRz4xHo2vW4VWbu2k=) 2: 28F87D180A1611F0BC8FD10DC4F9AE02.roa (hash: kwR4HiPzGhpK5SEPo+ThTcF7apxZuPZzTOyt4h1UDag=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912DB97/5D8B52640A1411F0B43DC586C4F9AE02/wfSjmGHK0883hCGN7aegXoUvIn8.crl rsync://rpki.apnic.net/member_repository/A912DB97/5D8B52640A1411F0B43DC586C4F9AE02/wfSjmGHK0883hCGN7aegXoUvIn8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wfSjmGHK0883hCGN7aegXoUvIn8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 07:03:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19 (0x13) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912DB97, serialNumber=C1F4A39861CAD3CF3784218DEDA7A05E852F227F Validity Not Before: Apr 25 07:03:11 2025 GMT Not After : May 2 07:03:11 2025 GMT Subject: CN=680b33af-2e57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:38:06:92:34:79:cd:d3:cb:e2:b5:11:8c:cc: c0:bc:51:3d:5f:f2:93:ce:c3:cc:ed:44:d5:65:42: 13:e9:44:25:3c:94:06:e1:30:d8:84:6e:dc:00:04: 91:52:c2:c5:fd:7c:f6:85:aa:9f:a2:7c:3c:a6:e3: 60:c8:06:84:ca:b7:bf:e5:23:93:32:32:8d:41:89: 4e:5a:f2:75:99:61:4d:c2:0f:2e:5c:31:34:fc:f1: af:93:ef:34:15:72:3c:6e:3b:07:8d:92:bb:21:9d: 77:ad:18:43:1c:48:2e:cf:6a:9f:f9:75:07:2f:05: f1:c8:70:91:2b:a0:7c:e6:06:93:cf:e2:16:55:32: f4:cc:4e:16:82:09:bc:7d:66:0b:49:62:c8:39:10: 32:33:21:81:74:1b:b3:19:1a:71:e6:c9:fe:31:ec: 34:f4:f2:a9:7f:b7:7f:fd:ca:2a:ee:a5:24:53:c2: 33:3f:d7:c5:e6:7c:82:e6:8f:a8:8d:05:4d:fd:a2: cf:a2:8a:90:f7:8b:9e:68:0b:db:ab:a9:41:8f:d9: ee:99:fc:be:c3:a1:71:82:5b:bf:6b:07:c1:87:55: 7e:db:4b:cd:9f:80:71:bf:51:cd:49:99:be:c9:56: 38:b8:6a:a1:95:e8:1e:25:3a:04:35:ce:b6:ff:d9: 47:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:DB:73:96:AA:11:99:ED:83:18:6F:22:59:48:F3:08:61:5D:5E:EA X509v3 Authority Key Identifier: keyid:C1:F4:A3:98:61:CA:D3:CF:37:84:21:8D:ED:A7:A0:5E:85:2F:22:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912DB97/5D8B52640A1411F0B43DC586C4F9AE02/wfSjmGHK0883hCGN7aegXoUvIn8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wfSjmGHK0883hCGN7aegXoUvIn8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912DB97/5D8B52640A1411F0B43DC586C4F9AE02/wfSjmGHK0883hCGN7aegXoUvIn8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 04:e8:b6:c6:f9:ba:7b:b0:90:46:ad:b6:e8:41:ab:84:2a:62: 79:ec:f3:63:84:2e:da:4a:10:5a:82:f9:9a:b5:b7:7e:1a:a0: de:c2:16:3b:18:b8:b9:db:69:65:af:9d:16:6f:01:85:b8:c0: 94:fe:06:be:f7:29:f0:b2:ea:74:8d:71:f8:05:2b:f8:4b:9a: 1e:ac:71:0a:04:19:fa:cc:f9:ee:3d:22:e5:a6:fb:61:62:f4: 23:51:b5:de:2e:21:4e:67:fd:eb:23:d0:e5:ba:28:7b:d0:bc: 93:d1:c8:3f:b7:82:11:3e:22:d0:52:dc:2d:60:cc:2e:87:ff: 5c:19:af:2f:3d:52:f9:2e:1f:93:dc:e0:5f:df:82:3b:e5:73: 54:80:2e:98:b1:b2:6e:18:11:6d:cc:77:b7:1f:09:d6:36:1f: aa:b9:c5:09:0e:21:d8:5f:eb:6f:cd:0c:a0:70:8b:df:ec:ec: 45:e2:6c:84:7c:d0:88:33:cb:0c:72:d8:56:eb:75:bc:6e:c6: 6b:86:14:b4:fd:30:d8:88:fc:cc:0f:03:e5:dc:71:20:65:69: 35:df:55:83:ea:d9:68:d5:c8:45:f9:c2:eb:29:6e:84:e0:16: 91:e9:6a:bb:86:1c:68:65:28:11:20:4c:34:16:03:49:5c:46: be:e5:9e:08 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBEzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy REI5NzExMC8GA1UEBRMoQzFGNEEzOTg2MUNBRDNDRjM3ODQyMThERURBN0EwNUU4 NTJGMjI3RjAeFw0yNTA0MjUwNzAzMTFaFw0yNTA1MDIwNzAzMTFaMBgxFjAUBgNV BAMTDTY4MGIzM2FmLTJlNTcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDwOAaSNHnN08vitRGMzMC8UT1f8pPOw8ztRNVlQhPpRCU8lAbhMNiEbtwABJFS wsX9fPaFqp+ifDym42DIBoTKt7/lI5MyMo1BiU5a8nWZYU3CDy5cMTT88a+T7zQV cjxuOweNkrshnXetGEMcSC7Pap/5dQcvBfHIcJEroHzmBpPP4hZVMvTMThaCCbx9 ZgtJYsg5EDIzIYF0G7MZGnHmyf4x7DT08ql/t3/9yirupSRTwjM/18XmfILmj6iN BU39os+iipD3i55oC9urqUGP2e6Z/L7DoXGCW79rB8GHVX7bS82fgHG/Uc1Jmb7J Vji4aqGV6B4lOgQ1zrb/2UcpAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUSNtzlqoR me2DGG8iWUjzCGFdXuowHwYDVR0jBBgwFoAUwfSjmGHK0883hCGN7aegXoUvIn8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTJEQjk3LzVEOEI1MjY0MEEx NDExRjBCNDNEQzU4NkM0RjlBRTAyL3dmU2ptR0hLMDg4M2hDR043YWVnWG9Vdklu OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvd2ZTam1HSEswODgzaENHTjdhZWdYb1V2SW44LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTJE Qjk3LzVEOEI1MjY0MEExNDExRjBCNDNEQzU4NkM0RjlBRTAyL3dmU2ptR0hLMDg4 M2hDR043YWVnWG9VdkluOC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAATotsb5unuwkEattuhBq4QqYnns82OELtpKEFqC+Zq1t34aoN7CFjsY uLnbaWWvnRZvAYW4wJT+Br73KfCy6nSNcfgFK/hLmh6scQoEGfrM+e49IuWm+2Fi 9CNRtd4uIU5n/esj0OW6KHvQvJPRyD+3ghE+ItBS3C1gzC6H/1wZry89UvkuH5Pc 4F/fgjvlc1SALpixsm4YEW3Md7cfCdY2H6q5xQkOIdhf62/NDKBwi9/s7EXibIR8 0Igzywxy2FbrdbxuxmuGFLT9MNiI/MwPA+XccSBlaTXfVYPq2WjVyEX5wuspboTg FpHparuGHGhlKBEgTDQWA0lcRr7lngg= -----END CERTIFICATE-----Generated at Sat Apr 26 13:06:47 2025 by rpki-client