$ rpki-client -vvf rpki.apnic.net/member_repository/A9145D25/67F2B0D80BD211ECBAA4806AC4F9AE02/wvKOnRiEOcT-afY6TKptpCSWKR0.mft File: wvKOnRiEOcT-afY6TKptpCSWKR0.mft (raw, json) Hash identifier: ecklaF3NcnT7SCNGqpBMuWZJuHBZb1cRsawSiEGzJ8E= Subject key identifier: B8:A7:A6:08:74:08:17:B1:2F:4F:BE:EE:3D:5E:BE:CD:7B:C6:A7:06 Authority key identifier: C2:F2:8E:9D:18:84:39:C4:FE:69:F6:3A:4C:AA:6D:A4:24:96:29:1D Certificate issuer: /CN=A9145D25/serialNumber=C2F28E9D188439C4FE69F63A4CAA6DA42496291D Certificate serial: 0564 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wvKOnRiEOcT-afY6TKptpCSWKR0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9145D25/67F2B0D80BD211ECBAA4806AC4F9AE02/wvKOnRiEOcT-afY6TKptpCSWKR0.mft Manifest number: 0542 Signing time: Sun 03 Aug 2025 00:02:42 +0000 Manifest this update: Sun 03 Aug 2025 00:02:42 +0000 Manifest next update: Sun 10 Aug 2025 00:02:42 +0000 Files and hashes: 1: wvKOnRiEOcT-afY6TKptpCSWKR0.crl (hash: NUqgAwkhjjULxhrZicbvA8mJSfAR5bbMaf7ZezNMBvA=) 2: 35A768B8563B11EC94608B5BC4F9AE02.roa (hash: PT6HAQnCKQ1h24wBLOcqnEqZNrhbuPQnC+z2D3m/yIA=) 3: 24AE273C2D1111EE85C59810C4F9AE02.roa (hash: fJSwaqO5xx9Q9RIgs6JtYncNmKK6M8gTn37HYZrh54Y=) 4: BFFF6C4A07D911EDA41A0B25C4F9AE02.roa (hash: p2UL6GD3BL6Vbs5hBii2dCX7XInOsF8w0LqpGVSuwTU=) 5: C08B939607D911EDA41A0B25C4F9AE02.roa (hash: mYVTb3naQfgNMS7fIevSh0fymgDfaPtpkRpDdX0Fp/8=) 6: 2379396E35DA11F08BAAE414C4F9AE02.roa (hash: 918uflqRaxL4teDIN56OfUziBRRQmbbgHsTgJ3UnMS8=) 7: BCE8827C4EB011ECA708A867C4F9AE02.roa (hash: 6UFCXsHGkBs9mNJ/P0P2x3t8KMswz8UkcFEG5pRtYR0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9145D25/67F2B0D80BD211ECBAA4806AC4F9AE02/wvKOnRiEOcT-afY6TKptpCSWKR0.crl rsync://rpki.apnic.net/member_repository/A9145D25/67F2B0D80BD211ECBAA4806AC4F9AE02/wvKOnRiEOcT-afY6TKptpCSWKR0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wvKOnRiEOcT-afY6TKptpCSWKR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 10 Aug 2025 00:02:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1380 (0x564) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9145D25, serialNumber=C2F28E9D188439C4FE69F63A4CAA6DA42496291D Validity Not Before: Aug 3 00:02:42 2025 GMT Not After : Aug 10 00:02:42 2025 GMT Subject: CN=688ea722-1758 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:11:82:d8:d2:21:c9:ce:56:b4:03:aa:e6:cd: 3c:76:3e:3f:df:7d:47:22:46:a0:22:db:7f:29:51: 79:da:66:1d:5f:08:7a:d8:47:62:cd:c2:f3:d6:a0: 1d:01:39:6b:12:cd:5a:fe:c3:b9:32:99:15:fd:e6: 76:0c:ec:89:8f:70:c6:68:a4:3f:b9:6b:18:2d:77: f4:01:33:0e:7b:03:b2:a9:11:8c:38:28:89:0f:18: 3c:3c:70:86:98:89:ba:cc:57:7e:89:df:66:14:e0: d0:f7:12:53:77:87:39:82:e2:06:20:b0:ab:fc:cb: 5f:6d:a9:09:4d:62:e0:c5:26:a7:92:12:21:d3:ce: 86:47:b5:e9:16:40:4a:71:b3:9c:4e:3b:0b:6a:90: 56:71:b8:8d:ed:8c:02:1e:27:f4:b5:c0:2b:79:83: 5b:58:81:b2:b4:0a:06:82:e8:f6:c0:0f:8b:93:4b: c1:81:65:1f:ce:bc:1c:cc:e3:40:d1:7d:9d:4f:7a: 15:ac:40:52:66:7d:c3:d3:a8:d1:5a:2a:00:e5:d9: f6:7e:3a:e8:a2:8f:fe:07:b9:2d:b8:9f:ab:11:89: cb:26:f0:18:99:6f:c9:8a:72:7c:20:4e:b2:0b:51: f3:e3:6b:cd:87:dd:77:2e:ba:e2:33:2b:53:52:3a: a2:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:A7:A6:08:74:08:17:B1:2F:4F:BE:EE:3D:5E:BE:CD:7B:C6:A7:06 X509v3 Authority Key Identifier: keyid:C2:F2:8E:9D:18:84:39:C4:FE:69:F6:3A:4C:AA:6D:A4:24:96:29:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9145D25/67F2B0D80BD211ECBAA4806AC4F9AE02/wvKOnRiEOcT-afY6TKptpCSWKR0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wvKOnRiEOcT-afY6TKptpCSWKR0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9145D25/67F2B0D80BD211ECBAA4806AC4F9AE02/wvKOnRiEOcT-afY6TKptpCSWKR0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3e:06:58:60:9d:ff:1f:d1:14:fa:b3:52:c4:a0:67:6f:9a:db: d9:8f:f7:cd:1d:f5:f4:18:93:1b:4e:fe:c1:d2:bb:a0:36:84: bb:59:03:5f:37:98:99:8e:83:df:12:e7:b7:f4:3b:0d:a9:d0: 95:e4:a6:a0:88:d0:9f:65:ed:6b:54:e7:dd:eb:48:fe:73:02: 2b:71:75:16:42:fc:6b:d5:26:30:4e:84:7d:f1:a5:24:69:92: 79:02:29:63:7e:21:54:40:16:cf:83:25:82:1f:d6:66:ad:f4: 0b:4e:73:cb:c2:79:cc:61:0c:9f:b0:2c:f1:38:bf:96:2f:b5: fd:d2:fd:67:ef:a5:63:1b:a9:60:53:eb:92:56:4e:41:4e:cd: 84:ce:50:4d:a6:24:d6:9c:5a:ff:0d:81:3f:f2:62:f3:26:cd: d0:99:06:7c:73:73:c5:44:50:8e:93:48:dc:39:93:7c:3d:92: b5:b8:75:ae:46:6b:07:1b:af:a9:fc:d0:c0:bd:c9:9d:de:e3: d5:05:02:e5:b9:c6:31:3f:14:d8:8e:ce:1e:4a:58:f6:6a:4e: 50:bb:e5:26:37:59:22:7b:b7:dd:0d:93:f3:04:08:90:d9:56: 3c:93:02:16:9c:f5:9e:ed:bd:c4:4d:4a:23:28:9f:7c:64:52: 7f:70:8b:43 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBWQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDVEMjUxMTAvBgNVBAUTKEMyRjI4RTlEMTg4NDM5QzRGRTY5RjYzQTRDQUE2REE0 MjQ5NjI5MUQwHhcNMjUwODAzMDAwMjQyWhcNMjUwODEwMDAwMjQyWjAYMRYwFAYD VQQDEw02ODhlYTcyMi0xNzU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0BGC2NIhyc5WtAOq5s08dj4/331HIkagItt/KVF52mYdXwh62EdizcLz1qAd ATlrEs1a/sO5MpkV/eZ2DOyJj3DGaKQ/uWsYLXf0ATMOewOyqRGMOCiJDxg8PHCG mIm6zFd+id9mFODQ9xJTd4c5guIGILCr/MtfbakJTWLgxSankhIh086GR7XpFkBK cbOcTjsLapBWcbiN7YwCHif0tcAreYNbWIGytAoGguj2wA+Lk0vBgWUfzrwczONA 0X2dT3oVrEBSZn3D06jRWioA5dn2fjrooo/+B7ktuJ+rEYnLJvAYmW/JinJ8IE6y C1Hz42vNh913LrriMytTUjqijwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLinpgh0 CBexL0++7j1evs17xqcGMB8GA1UdIwQYMBaAFMLyjp0YhDnE/mn2OkyqbaQklikd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NUQyNS82N0YyQjBEODBC RDIxMUVDQkFBNDgwNkFDNEY5QUUwMi93dktPblJpRU9jVC1hZlk2VEtwdHBDU1dL UjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3d2S09uUmlFT2NULWFmWTZUS3B0cENTV0tSMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NUQyNS82N0YyQjBEODBCRDIxMUVDQkFBNDgwNkFDNEY5QUUwMi93dktPblJpRU9j VC1hZlk2VEtwdHBDU1dLUjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA+Blhgnf8f0RT6s1LEoGdvmtvZj/fNHfX0GJMbTv7B0rugNoS7WQNf N5iZjoPfEue39DsNqdCV5KagiNCfZe1rVOfd60j+cwIrcXUWQvxr1SYwToR98aUk aZJ5AiljfiFUQBbPgyWCH9ZmrfQLTnPLwnnMYQyfsCzxOL+WL7X90v1n76VjG6lg U+uSVk5BTs2EzlBNpiTWnFr/DYE/8mLzJs3QmQZ8c3PFRFCOk0jcOZN8PZK1uHWu RmsHG6+p/NDAvcmd3uPVBQLlucYxPxTYjs4eSlj2ak5Qu+UmN1kie7fdDZPzBAiQ 2VY8kwIWnPWe7b3ETUojKJ98ZFJ/cItD -----END CERTIFICATE-----Generated at Mon Aug 4 04:04:42 2025 by rpki-client