$ rpki-client -vvf rpki.apnic.net/member_repository/A9144EC5/439E3C28C51111EB91640C87C4F9AE02/WAfnFR1ax7dL8iyZCSvS6S6mBig.mft File: WAfnFR1ax7dL8iyZCSvS6S6mBig.mft (raw, json) Hash identifier: /pm8OaNILWSAku5AKoLBG8D1M0vsRiazjLf/9wGU2s8= Subject key identifier: 1F:3D:E2:85:AB:56:7E:9E:EF:A2:A1:33:A9:E4:C6:AE:C4:75:BF:10 Authority key identifier: 58:07:E7:15:1D:5A:C7:B7:4B:F2:2C:99:09:2B:D2:E9:2E:A6:06:28 Certificate issuer: /CN=A9144EC5/serialNumber=5807E7151D5AC7B74BF22C99092BD2E92EA60628 Certificate serial: 05EF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WAfnFR1ax7dL8iyZCSvS6S6mBig.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9144EC5/439E3C28C51111EB91640C87C4F9AE02/WAfnFR1ax7dL8iyZCSvS6S6mBig.mft Manifest number: 05E4 Signing time: Sun 10 Aug 2025 23:05:11 +0000 Manifest this update: Sun 10 Aug 2025 23:05:10 +0000 Manifest next update: Sun 17 Aug 2025 23:05:10 +0000 Files and hashes: 1: WAfnFR1ax7dL8iyZCSvS6S6mBig.crl (hash: LmiD7C54ny5cQ0y3bbD09jdIRs4jTdatQdfnVFyDNN0=) 2: 9CCB30B0C5F411EB8A6F1525C4F9AE02.roa (hash: W3evTqtE3AeQu/+UCpmY09IhagDrzP1HZj8k+plv7KQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9144EC5/439E3C28C51111EB91640C87C4F9AE02/WAfnFR1ax7dL8iyZCSvS6S6mBig.crl rsync://rpki.apnic.net/member_repository/A9144EC5/439E3C28C51111EB91640C87C4F9AE02/WAfnFR1ax7dL8iyZCSvS6S6mBig.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WAfnFR1ax7dL8iyZCSvS6S6mBig.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1519 (0x5ef) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9144EC5, serialNumber=5807E7151D5AC7B74BF22C99092BD2E92EA60628 Validity Not Before: Aug 10 23:05:10 2025 GMT Not After : Aug 17 23:05:10 2025 GMT Subject: CN=689925a7-ff3b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:8f:8a:de:59:55:18:26:f4:73:c1:80:99:71: 65:b4:16:dc:25:65:c7:33:06:11:17:4a:59:ea:fb: 7f:f2:c9:59:16:93:a3:8b:48:8e:02:5d:fa:0f:fe: 64:17:0c:d4:a5:9b:06:e8:47:2c:24:2f:67:93:cb: b2:99:1e:0f:1d:f9:e2:59:86:2f:32:a5:8b:41:ff: e8:51:d3:f4:65:0b:24:03:98:44:e5:2a:e5:0c:17: 7a:49:bb:72:b4:07:64:2c:6b:34:59:08:59:96:ff: f7:6d:8f:21:3f:a1:ec:06:fe:11:29:70:95:0f:88: b8:00:ff:87:ec:b4:27:d2:50:56:cb:ab:43:1d:b6: da:f0:fb:09:e3:f8:3e:f6:85:a8:a5:9f:e3:43:76: da:2f:7e:70:5a:b9:76:fc:86:be:60:13:76:80:41: fb:8f:c4:83:3c:26:73:e8:b7:f9:76:13:40:15:64: 91:c2:df:1e:bc:ae:10:3f:78:6e:33:57:dd:5d:6c: 1c:49:fb:a4:e9:df:70:4e:d1:b3:61:c2:2c:5f:a8: e8:58:4e:cb:45:b7:a7:05:62:3b:15:19:08:90:4d: 1f:fb:fb:1f:31:32:21:05:de:16:a5:fb:53:e3:9f: ec:fd:d0:be:3c:a7:f1:1d:69:13:9b:19:ba:da:f5: 0d:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:3D:E2:85:AB:56:7E:9E:EF:A2:A1:33:A9:E4:C6:AE:C4:75:BF:10 X509v3 Authority Key Identifier: keyid:58:07:E7:15:1D:5A:C7:B7:4B:F2:2C:99:09:2B:D2:E9:2E:A6:06:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9144EC5/439E3C28C51111EB91640C87C4F9AE02/WAfnFR1ax7dL8iyZCSvS6S6mBig.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WAfnFR1ax7dL8iyZCSvS6S6mBig.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9144EC5/439E3C28C51111EB91640C87C4F9AE02/WAfnFR1ax7dL8iyZCSvS6S6mBig.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ae:24:8d:56:04:e8:ff:7f:9e:d3:bf:a9:27:a8:cc:33:c4:be: 33:26:d4:bc:3c:ed:db:50:4e:48:94:d6:b1:07:ab:50:af:29: b2:65:cd:91:d9:ec:36:2f:c6:d1:2a:d5:a2:57:62:64:27:61: 7d:0c:b2:ba:24:5d:00:4c:32:f4:17:eb:44:9b:64:e4:45:5b: 86:fd:f6:0c:a4:98:31:b1:09:19:bc:73:6f:85:79:bf:b4:76: 65:15:5d:8c:2f:1c:78:b2:27:9e:1b:cf:c5:76:a7:cf:ff:5c: 71:3e:a5:6a:fc:4b:3e:38:78:cb:85:bb:5a:5d:a4:fd:ec:e1: 00:db:db:73:af:80:ca:6f:72:8a:6d:51:b7:62:4e:43:82:68: ea:e3:a3:f3:3a:d1:1a:6d:1f:8a:30:67:39:18:6e:55:ef:27: fc:94:67:55:9e:90:3c:60:52:e2:e8:54:b3:26:f9:e0:f7:1f: 6c:90:5b:05:98:4b:dc:24:e1:d6:da:b5:93:5d:e4:90:5d:46: c3:5f:6f:75:75:37:4d:ce:43:d2:e4:80:8e:82:b9:f5:8f:23: 30:41:44:33:7b:c3:7a:40:e7:9e:7d:08:ff:db:d6:7a:00:ea: fa:86:85:99:d8:cd:71:c7:8d:1d:f4:3b:83:12:40:05:91:4e: f2:9f:26:a7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBe8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDRFQzUxMTAvBgNVBAUTKDU4MDdFNzE1MUQ1QUM3Qjc0QkYyMkM5OTA5MkJEMkU5 MkVBNjA2MjgwHhcNMjUwODEwMjMwNTEwWhcNMjUwODE3MjMwNTEwWjAYMRYwFAYD VQQDEw02ODk5MjVhNy1mZjNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApo+K3llVGCb0c8GAmXFltBbcJWXHMwYRF0pZ6vt/8slZFpOji0iOAl36D/5k FwzUpZsG6EcsJC9nk8uymR4PHfniWYYvMqWLQf/oUdP0ZQskA5hE5SrlDBd6Sbty tAdkLGs0WQhZlv/3bY8hP6HsBv4RKXCVD4i4AP+H7LQn0lBWy6tDHbba8PsJ4/g+ 9oWopZ/jQ3baL35wWrl2/Ia+YBN2gEH7j8SDPCZz6Lf5dhNAFWSRwt8evK4QP3hu M1fdXWwcSfuk6d9wTtGzYcIsX6joWE7LRbenBWI7FRkIkE0f+/sfMTIhBd4WpftT 45/s/dC+PKfxHWkTmxm62vUNrwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB894oWr Vn6e76KhM6nkxq7Edb8QMB8GA1UdIwQYMBaAFFgH5xUdWse3S/IsmQkr0ukupgYo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NEVDNS80MzlFM0MyOEM1 MTExMUVCOTE2NDBDODdDNEY5QUUwMi9XQWZuRlIxYXg3ZEw4aXlaQ1N2UzZTNm1C aWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dBZm5GUjFheDdkTDhpeVpDU3ZTNlM2bUJpZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NEVDNS80MzlFM0MyOEM1MTExMUVCOTE2NDBDODdDNEY5QUUwMi9XQWZuRlIxYXg3 ZEw4aXlaQ1N2UzZTNm1CaWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCuJI1WBOj/f57Tv6knqMwzxL4zJtS8PO3bUE5IlNaxB6tQrymyZc2R 2ew2L8bRKtWiV2JkJ2F9DLK6JF0ATDL0F+tEm2TkRVuG/fYMpJgxsQkZvHNvhXm/ tHZlFV2MLxx4sieeG8/FdqfP/1xxPqVq/Es+OHjLhbtaXaT97OEA29tzr4DKb3KK bVG3Yk5Dgmjq46PzOtEabR+KMGc5GG5V7yf8lGdVnpA8YFLi6FSzJvng9x9skFsF mEvcJOHW2rWTXeSQXUbDX291dTdNzkPS5ICOgrn1jyMwQUQze8N6QOeefQj/29Z6 AOr6hoWZ2M1xx40d9DuDEkAFkU7ynyan -----END CERTIFICATE-----Generated at Mon Aug 11 01:47:44 2025 by rpki-client