$ rpki-client -vvf rpki.apnic.net/member_repository/A9144EC5/439E3C28C51111EB91640C87C4F9AE02/WAfnFR1ax7dL8iyZCSvS6S6mBig.mft File: WAfnFR1ax7dL8iyZCSvS6S6mBig.mft (raw, json) Hash identifier: U97kT+53thqFFyVdCwPI5gJyIiAIPVBjp/yNYoeBkG4= Subject key identifier: 1B:38:AF:8B:59:86:1A:09:15:21:09:A9:8C:7E:35:7B:C7:FC:96:9C Authority key identifier: 58:07:E7:15:1D:5A:C7:B7:4B:F2:2C:99:09:2B:D2:E9:2E:A6:06:28 Certificate issuer: /CN=A9144EC5/serialNumber=5807E7151D5AC7B74BF22C99092BD2E92EA60628 Certificate serial: 05CF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WAfnFR1ax7dL8iyZCSvS6S6mBig.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9144EC5/439E3C28C51111EB91640C87C4F9AE02/WAfnFR1ax7dL8iyZCSvS6S6mBig.mft Manifest number: 05C5 Signing time: Sat 14 Jun 2025 22:49:39 +0000 Manifest this update: Sat 14 Jun 2025 22:49:39 +0000 Manifest next update: Sat 21 Jun 2025 22:49:39 +0000 Files and hashes: 1: WAfnFR1ax7dL8iyZCSvS6S6mBig.crl (hash: PynE5VDnxYC4pr9f/sd+hfLkxIZBeUi0VKTe4sSJnDI=) 2: 9CCB30B0C5F411EB8A6F1525C4F9AE02.roa (hash: 3Rc3j+d1O8Ewr6XgYdHpoNd/omQ6+BrlDickanhKcdQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9144EC5/439E3C28C51111EB91640C87C4F9AE02/WAfnFR1ax7dL8iyZCSvS6S6mBig.crl rsync://rpki.apnic.net/member_repository/A9144EC5/439E3C28C51111EB91640C87C4F9AE02/WAfnFR1ax7dL8iyZCSvS6S6mBig.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WAfnFR1ax7dL8iyZCSvS6S6mBig.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 22:49:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1487 (0x5cf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9144EC5, serialNumber=5807E7151D5AC7B74BF22C99092BD2E92EA60628 Validity Not Before: Jun 14 22:49:39 2025 GMT Not After : Jun 21 22:49:39 2025 GMT Subject: CN=684dfc83-0c9e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:5b:19:1f:5f:3f:57:8b:a9:07:66:2f:d6:d3: 3d:ef:ea:33:d7:f4:fe:64:36:6e:96:c8:9b:e8:f9: 35:04:fd:1a:23:58:1a:25:bc:5e:65:97:d6:cf:8a: 9e:63:b7:76:5b:bc:20:de:a4:0c:ac:9d:61:2f:0f: b8:e9:de:27:62:e3:f1:34:ce:96:6d:4c:e7:6d:0d: e6:fe:d9:6c:2d:2d:ed:b1:bf:fa:19:d4:f4:56:6f: 0e:17:cd:71:e6:72:98:e5:93:60:7c:46:a6:0e:5d: d7:2b:38:24:ba:82:53:a9:02:6b:5d:1e:ac:0e:cc: f0:2b:37:23:a2:67:17:9a:54:30:5b:b3:39:5b:ad: f2:1f:b1:cc:a3:ed:b1:99:13:35:1b:fe:5f:66:3d: 28:0d:2b:65:3a:9f:5d:e3:06:a3:16:90:dc:a7:15: 42:27:c0:e4:76:a5:fc:e9:4e:f4:bf:27:8e:58:9e: 0c:20:c3:43:fa:62:82:5a:3a:f4:92:a4:74:25:f2: fd:ee:cd:11:cd:a4:39:61:75:7f:63:af:c0:90:37: 2d:99:6f:c5:a1:ec:8c:41:13:35:f0:02:11:f9:0d: 11:65:b9:74:40:f2:57:32:5e:e0:c5:70:25:5c:07: a2:74:07:61:e8:61:d3:ec:c6:12:45:e1:04:3d:63: 73:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:38:AF:8B:59:86:1A:09:15:21:09:A9:8C:7E:35:7B:C7:FC:96:9C X509v3 Authority Key Identifier: keyid:58:07:E7:15:1D:5A:C7:B7:4B:F2:2C:99:09:2B:D2:E9:2E:A6:06:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9144EC5/439E3C28C51111EB91640C87C4F9AE02/WAfnFR1ax7dL8iyZCSvS6S6mBig.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WAfnFR1ax7dL8iyZCSvS6S6mBig.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9144EC5/439E3C28C51111EB91640C87C4F9AE02/WAfnFR1ax7dL8iyZCSvS6S6mBig.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4b:b9:c8:8b:bd:17:f9:58:ef:2f:d4:b2:f2:1a:7c:58:13:72: fc:c7:21:08:ad:a0:44:6a:0c:8a:16:f3:8f:bb:8a:64:06:35: 70:c6:52:b3:f4:b0:b3:89:bb:9e:b6:55:8a:1e:cb:0c:2f:cc: 81:d9:dd:65:bf:8d:73:4e:d9:dc:0a:82:c9:1b:dc:a5:4e:cf: 11:e0:64:7b:b9:b1:84:07:2c:24:de:ea:fe:ac:fb:f2:1e:23: 37:de:9f:47:43:42:4f:7e:8d:f4:a5:9c:e1:d1:43:fe:14:80: e0:76:79:3a:95:2a:e3:ec:b7:e3:75:b4:d4:e3:ce:ad:8d:e3: 4c:61:b1:aa:b7:d9:35:21:d2:cd:e0:dd:06:2e:38:3a:c1:38: 84:fa:80:f9:d6:31:88:0a:8b:5a:4e:eb:e4:c4:d9:6d:c3:09: bb:8a:86:40:cf:a0:c2:64:dd:88:96:d6:b8:53:28:cd:c6:b5: d3:7f:f4:d6:04:ec:43:77:2a:82:69:5d:b7:0d:c8:a0:f8:90: c4:c7:0c:41:08:c1:50:fc:f0:76:9c:08:d1:9f:74:96:58:d3: 23:38:c2:77:49:a6:d2:fa:f1:2d:52:f1:71:d7:09:54:89:4d: c8:2b:e8:a0:e0:1d:2f:c5:29:b3:83:57:93:99:83:3c:5f:84: 64:1e:75:54 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBc8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDRFQzUxMTAvBgNVBAUTKDU4MDdFNzE1MUQ1QUM3Qjc0QkYyMkM5OTA5MkJEMkU5 MkVBNjA2MjgwHhcNMjUwNjE0MjI0OTM5WhcNMjUwNjIxMjI0OTM5WjAYMRYwFAYD VQQDEw02ODRkZmM4My0wYzllMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv1sZH18/V4upB2Yv1tM97+oz1/T+ZDZulsib6Pk1BP0aI1gaJbxeZZfWz4qe Y7d2W7wg3qQMrJ1hLw+46d4nYuPxNM6WbUznbQ3m/tlsLS3tsb/6GdT0Vm8OF81x 5nKY5ZNgfEamDl3XKzgkuoJTqQJrXR6sDszwKzcjomcXmlQwW7M5W63yH7HMo+2x mRM1G/5fZj0oDStlOp9d4wajFpDcpxVCJ8DkdqX86U70vyeOWJ4MIMND+mKCWjr0 kqR0JfL97s0RzaQ5YXV/Y6/AkDctmW/FoeyMQRM18AIR+Q0RZbl0QPJXMl7gxXAl XAeidAdh6GHT7MYSReEEPWNzBwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBs4r4tZ hhoJFSEJqYx+NXvH/JacMB8GA1UdIwQYMBaAFFgH5xUdWse3S/IsmQkr0ukupgYo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NEVDNS80MzlFM0MyOEM1 MTExMUVCOTE2NDBDODdDNEY5QUUwMi9XQWZuRlIxYXg3ZEw4aXlaQ1N2UzZTNm1C aWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dBZm5GUjFheDdkTDhpeVpDU3ZTNlM2bUJpZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NEVDNS80MzlFM0MyOEM1MTExMUVCOTE2NDBDODdDNEY5QUUwMi9XQWZuRlIxYXg3 ZEw4aXlaQ1N2UzZTNm1CaWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBLuciLvRf5WO8v1LLyGnxYE3L8xyEIraBEagyKFvOPu4pkBjVwxlKz 9LCzibuetlWKHssML8yB2d1lv41zTtncCoLJG9ylTs8R4GR7ubGEBywk3ur+rPvy HiM33p9HQ0JPfo30pZzh0UP+FIDgdnk6lSrj7LfjdbTU486tjeNMYbGqt9k1IdLN 4N0GLjg6wTiE+oD51jGICotaTuvkxNltwwm7ioZAz6DCZN2Ilta4UyjNxrXTf/TW BOxDdyqCaV23Dcig+JDExwxBCMFQ/PB2nAjRn3SWWNMjOMJ3SabS+vEtUvFx1wlU iU3IK+ig4B0vxSmzg1eTmYM8X4RkHnVU -----END CERTIFICATE-----Generated at Sun Jun 15 10:01:48 2025 by rpki-client