$ rpki-client -vvf rpki.apnic.net/member_repository/A9145D25/67F2B0D80BD211ECBAA4806AC4F9AE02/wvKOnRiEOcT-afY6TKptpCSWKR0.mft File: wvKOnRiEOcT-afY6TKptpCSWKR0.mft (raw, json) Hash identifier: lHAlxKP1HggUtJ+L+lrn7Zb+uhojinc33QBhcJGT3Ak= Subject key identifier: 02:2D:B0:F1:3A:8F:7D:4C:AF:44:4A:FE:D8:91:64:38:3B:CA:44:03 Authority key identifier: C2:F2:8E:9D:18:84:39:C4:FE:69:F6:3A:4C:AA:6D:A4:24:96:29:1D Certificate issuer: /CN=A9145D25/serialNumber=C2F28E9D188439C4FE69F63A4CAA6DA42496291D Certificate serial: 0544 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wvKOnRiEOcT-afY6TKptpCSWKR0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9145D25/67F2B0D80BD211ECBAA4806AC4F9AE02/wvKOnRiEOcT-afY6TKptpCSWKR0.mft Manifest number: 0523 Signing time: Sat 14 Jun 2025 23:21:44 +0000 Manifest this update: Sat 14 Jun 2025 23:21:43 +0000 Manifest next update: Sat 21 Jun 2025 23:21:43 +0000 Files and hashes: 1: wvKOnRiEOcT-afY6TKptpCSWKR0.crl (hash: YvjUy7F2SUifosmRQ1/F59lrkWDsfNHJQZ7qLxtOB7I=) 2: 35A768B8563B11EC94608B5BC4F9AE02.roa (hash: PT6HAQnCKQ1h24wBLOcqnEqZNrhbuPQnC+z2D3m/yIA=) 3: 24AE273C2D1111EE85C59810C4F9AE02.roa (hash: fJSwaqO5xx9Q9RIgs6JtYncNmKK6M8gTn37HYZrh54Y=) 4: BFFF6C4A07D911EDA41A0B25C4F9AE02.roa (hash: R1MK4JszBxBbOzBzvtKc2PZsYBtSXJEyXkwh6miBgAs=) 5: C08B939607D911EDA41A0B25C4F9AE02.roa (hash: mYVTb3naQfgNMS7fIevSh0fymgDfaPtpkRpDdX0Fp/8=) 6: 2379396E35DA11F08BAAE414C4F9AE02.roa (hash: 918uflqRaxL4teDIN56OfUziBRRQmbbgHsTgJ3UnMS8=) 7: BCE8827C4EB011ECA708A867C4F9AE02.roa (hash: 6UFCXsHGkBs9mNJ/P0P2x3t8KMswz8UkcFEG5pRtYR0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9145D25/67F2B0D80BD211ECBAA4806AC4F9AE02/wvKOnRiEOcT-afY6TKptpCSWKR0.crl rsync://rpki.apnic.net/member_repository/A9145D25/67F2B0D80BD211ECBAA4806AC4F9AE02/wvKOnRiEOcT-afY6TKptpCSWKR0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wvKOnRiEOcT-afY6TKptpCSWKR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 23:21:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1348 (0x544) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9145D25, serialNumber=C2F28E9D188439C4FE69F63A4CAA6DA42496291D Validity Not Before: Jun 14 23:21:43 2025 GMT Not After : Jun 21 23:21:43 2025 GMT Subject: CN=684e0408-77c8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:1f:17:f2:86:2b:0c:c2:d6:19:14:7e:59:52: b2:ba:4f:6c:a8:84:4b:05:02:9a:40:7e:eb:0f:bd: 41:1f:dc:8c:14:e5:9d:d6:f7:63:54:f6:04:0b:92: 14:4f:8c:a6:c8:ca:89:0c:89:0e:96:58:eb:6f:d9: 1d:2e:14:8f:66:68:f3:5e:5e:24:66:7b:e9:63:71: b9:ef:c1:d4:b8:b5:79:af:7a:b0:c8:89:24:9f:bd: b2:f3:84:2c:ad:ae:ae:a6:b7:11:11:07:e1:84:2f: 53:8d:f8:d1:56:12:b5:ec:24:bb:d1:7e:63:7a:27: 29:c7:38:10:0e:d3:d9:53:b7:e7:aa:b4:48:7c:f2: 8a:65:e1:7e:6c:e1:21:cb:f2:d6:9f:3a:1f:80:f1: 91:7f:21:b5:0d:75:d1:36:98:72:d1:b9:f2:7c:c4: 89:7f:5f:c4:b6:f2:6f:c6:19:8f:84:bf:ac:5c:cc: 47:52:6a:d7:af:fb:fc:95:be:20:9b:56:3e:1c:5d: e4:6e:8d:5b:6d:d8:8a:fd:3d:29:78:49:65:71:0f: d2:e8:11:08:9e:7d:f2:3d:d2:f3:c5:9c:96:c0:62: ee:10:ac:ef:28:b1:63:ff:4e:a1:ef:82:ff:6f:e2: 84:4f:e8:a9:e3:06:e7:46:b5:98:ea:96:14:af:dd: 96:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:2D:B0:F1:3A:8F:7D:4C:AF:44:4A:FE:D8:91:64:38:3B:CA:44:03 X509v3 Authority Key Identifier: keyid:C2:F2:8E:9D:18:84:39:C4:FE:69:F6:3A:4C:AA:6D:A4:24:96:29:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9145D25/67F2B0D80BD211ECBAA4806AC4F9AE02/wvKOnRiEOcT-afY6TKptpCSWKR0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wvKOnRiEOcT-afY6TKptpCSWKR0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9145D25/67F2B0D80BD211ECBAA4806AC4F9AE02/wvKOnRiEOcT-afY6TKptpCSWKR0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 86:69:23:af:33:13:f5:51:27:be:1a:a8:09:78:af:66:eb:31: 1c:f4:ec:bc:ff:5b:7d:b1:97:3d:0d:87:a2:e1:07:27:69:e0: 13:5e:3b:d8:0d:9d:fa:84:ba:f0:94:ab:3d:5d:0f:98:85:0c: 48:da:b6:a2:88:db:32:4a:ab:8c:9e:64:19:83:24:a0:ea:ca: dc:21:c8:84:68:2b:ff:88:68:cc:b2:86:40:6a:5c:eb:28:10: 22:bb:44:3e:cf:3f:e3:77:16:e7:70:e4:25:7a:13:04:6c:72: 08:b4:7f:8c:45:f1:34:37:cd:43:13:2d:62:b4:35:44:3b:c1: 8f:eb:3d:0d:e5:05:88:8b:54:b7:4d:05:6b:bf:15:79:79:a2: 95:a6:ee:f6:c1:e8:93:de:fc:52:75:14:df:d4:06:5c:5b:2e: 47:50:68:bf:33:f4:ed:20:89:2f:c0:a2:4d:bf:59:9f:89:65: 4e:a5:86:5e:0a:fa:fe:6d:ca:22:c1:9c:f2:08:89:44:17:fe: 5d:80:2a:d3:12:e2:33:08:ff:31:cc:c2:15:8a:a8:72:4a:6b: 7c:6d:85:4e:5b:bd:fb:aa:b5:70:2b:c1:8b:4e:18:57:4a:34: fb:a7:c6:d3:fc:0e:66:0f:de:a8:df:8b:d8:3a:c2:99:78:e4: 8f:3c:9f:a5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBUQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDVEMjUxMTAvBgNVBAUTKEMyRjI4RTlEMTg4NDM5QzRGRTY5RjYzQTRDQUE2REE0 MjQ5NjI5MUQwHhcNMjUwNjE0MjMyMTQzWhcNMjUwNjIxMjMyMTQzWjAYMRYwFAYD VQQDEw02ODRlMDQwOC03N2M4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxx8X8oYrDMLWGRR+WVKyuk9sqIRLBQKaQH7rD71BH9yMFOWd1vdjVPYEC5IU T4ymyMqJDIkOlljrb9kdLhSPZmjzXl4kZnvpY3G578HUuLV5r3qwyIkkn72y84Qs ra6uprcREQfhhC9TjfjRVhK17CS70X5jeicpxzgQDtPZU7fnqrRIfPKKZeF+bOEh y/LWnzofgPGRfyG1DXXRNphy0bnyfMSJf1/EtvJvxhmPhL+sXMxHUmrXr/v8lb4g m1Y+HF3kbo1bbdiK/T0peEllcQ/S6BEInn3yPdLzxZyWwGLuEKzvKLFj/06h74L/ b+KET+ip4wbnRrWY6pYUr92WGQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAItsPE6 j31Mr0RK/tiRZDg7ykQDMB8GA1UdIwQYMBaAFMLyjp0YhDnE/mn2OkyqbaQklikd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NUQyNS82N0YyQjBEODBC RDIxMUVDQkFBNDgwNkFDNEY5QUUwMi93dktPblJpRU9jVC1hZlk2VEtwdHBDU1dL UjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3d2S09uUmlFT2NULWFmWTZUS3B0cENTV0tSMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NUQyNS82N0YyQjBEODBCRDIxMUVDQkFBNDgwNkFDNEY5QUUwMi93dktPblJpRU9j VC1hZlk2VEtwdHBDU1dLUjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCGaSOvMxP1USe+GqgJeK9m6zEc9Oy8/1t9sZc9DYei4QcnaeATXjvY DZ36hLrwlKs9XQ+YhQxI2raiiNsySquMnmQZgySg6srcIciEaCv/iGjMsoZAalzr KBAiu0Q+zz/jdxbncOQlehMEbHIItH+MRfE0N81DEy1itDVEO8GP6z0N5QWIi1S3 TQVrvxV5eaKVpu72weiT3vxSdRTf1AZcWy5HUGi/M/TtIIkvwKJNv1mfiWVOpYZe Cvr+bcoiwZzyCIlEF/5dgCrTEuIzCP8xzMIViqhySmt8bYVOW737qrVwK8GLThhX SjT7p8bT/A5mD96o34vYOsKZeOSPPJ+l -----END CERTIFICATE-----Generated at Sun Jun 15 07:11:56 2025 by rpki-client