$ rpki-client -vvf rpki.apnic.net/member_repository/A9145D25/67F2B0D80BD211ECBAA4806AC4F9AE02/wvKOnRiEOcT-afY6TKptpCSWKR0.mft File: wvKOnRiEOcT-afY6TKptpCSWKR0.mft (raw, json) Hash identifier: dv+HsO1u3o71e6A5jvCUV6p6OPRTlFwVa6s2yuQ/+wY= Subject key identifier: D1:C4:1E:43:A9:1B:EB:6E:A4:92:FC:29:BF:1D:A4:3F:38:74:E6:88 Authority key identifier: C2:F2:8E:9D:18:84:39:C4:FE:69:F6:3A:4C:AA:6D:A4:24:96:29:1D Certificate issuer: /CN=A9145D25/serialNumber=C2F28E9D188439C4FE69F63A4CAA6DA42496291D Certificate serial: 051A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wvKOnRiEOcT-afY6TKptpCSWKR0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9145D25/67F2B0D80BD211ECBAA4806AC4F9AE02/wvKOnRiEOcT-afY6TKptpCSWKR0.mft Manifest number: 0500 Signing time: Thu 24 Apr 2025 23:29:01 +0000 Manifest this update: Thu 24 Apr 2025 23:29:01 +0000 Manifest next update: Thu 01 May 2025 23:29:01 +0000 Files and hashes: 1: wvKOnRiEOcT-afY6TKptpCSWKR0.crl (hash: ZWq87I3cdHjAMfB8mm23VVSFylmTOF+wQ8kgIaq5yAM=) 2: 35A768B8563B11EC94608B5BC4F9AE02.roa (hash: PT6HAQnCKQ1h24wBLOcqnEqZNrhbuPQnC+z2D3m/yIA=) 3: 24AE273C2D1111EE85C59810C4F9AE02.roa (hash: YWeX1DfSGs4BQndSEpvjXp//SRdFsIHjRaQTZ+32G1w=) 4: C08B939607D911EDA41A0B25C4F9AE02.roa (hash: mYVTb3naQfgNMS7fIevSh0fymgDfaPtpkRpDdX0Fp/8=) 5: BFFF6C4A07D911EDA41A0B25C4F9AE02.roa (hash: dwJddnm1ntnsj4XMzYCHtwqdcwWHva5rTpsA08hxqqs=) 6: BCE8827C4EB011ECA708A867C4F9AE02.roa (hash: YiFunTZL5LVn069EwrhiVsys5tG1ZsT1/SQk8scoDqU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9145D25/67F2B0D80BD211ECBAA4806AC4F9AE02/wvKOnRiEOcT-afY6TKptpCSWKR0.crl rsync://rpki.apnic.net/member_repository/A9145D25/67F2B0D80BD211ECBAA4806AC4F9AE02/wvKOnRiEOcT-afY6TKptpCSWKR0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wvKOnRiEOcT-afY6TKptpCSWKR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 23:29:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1306 (0x51a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9145D25, serialNumber=C2F28E9D188439C4FE69F63A4CAA6DA42496291D Validity Not Before: Apr 24 23:29:01 2025 GMT Not After : May 1 23:29:01 2025 GMT Subject: CN=680ac93d-0aca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:49:87:e6:88:bb:a8:2a:9b:78:c9:02:33:73: 4d:a7:31:e1:9d:0d:02:22:3b:86:3d:95:93:88:c2: 0e:52:2f:c7:bd:b8:7f:f6:c4:78:5c:ac:a9:bc:d2: 05:64:88:0a:dd:f7:53:d2:ad:c9:cf:48:79:1b:4f: 4e:58:2c:c5:76:e7:59:a1:a6:8d:ed:3c:44:50:72: 73:b1:d7:4a:27:68:e3:23:78:7b:18:bc:7c:53:53: 34:de:64:e5:aa:48:b8:0c:9b:cc:1d:ca:7e:57:75: 63:cf:af:f3:85:65:16:97:1c:84:b6:a2:86:aa:b6: 8e:43:0b:57:51:ad:4b:8e:0e:b1:3b:28:c7:9b:2e: f0:c7:67:0e:83:b3:a9:59:a8:11:42:c4:96:f0:26: 38:9a:02:78:cc:2d:cc:0d:4e:0c:7f:56:72:cf:96: 5a:3f:f5:ab:d6:5e:8e:e0:7d:1b:c1:7e:f0:3e:5b: 9a:98:eb:82:18:ac:6b:82:f1:60:5c:f6:b2:df:74: e0:59:67:01:f2:4b:d2:b0:8a:22:61:f2:cc:1a:9b: 58:fb:77:18:63:82:a3:ae:8a:ef:64:fa:3f:5b:fa: 9f:06:1b:d1:04:c7:7e:82:00:b8:b0:73:f2:07:8f: 5d:88:cc:05:bc:18:05:de:88:71:cf:05:61:19:46: b9:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:C4:1E:43:A9:1B:EB:6E:A4:92:FC:29:BF:1D:A4:3F:38:74:E6:88 X509v3 Authority Key Identifier: keyid:C2:F2:8E:9D:18:84:39:C4:FE:69:F6:3A:4C:AA:6D:A4:24:96:29:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9145D25/67F2B0D80BD211ECBAA4806AC4F9AE02/wvKOnRiEOcT-afY6TKptpCSWKR0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wvKOnRiEOcT-afY6TKptpCSWKR0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9145D25/67F2B0D80BD211ECBAA4806AC4F9AE02/wvKOnRiEOcT-afY6TKptpCSWKR0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 49:12:d5:a8:92:b6:ec:e2:bc:90:57:90:ad:39:50:83:79:34: 16:d0:ab:d1:31:08:45:6d:d4:ba:b2:16:db:aa:85:9f:75:c7: 85:3d:d8:b7:89:a9:cf:55:7d:f8:55:e2:7c:bc:39:eb:70:a5: 58:c4:e3:e0:5a:83:79:73:02:e8:8d:46:65:6d:0e:69:80:bf: e1:3a:33:f3:c3:d5:d7:02:24:87:dd:30:c9:7c:d1:54:54:ee: a6:de:60:1c:7c:27:fd:de:0f:d8:1c:81:7c:32:f0:4d:62:66: a2:46:bf:09:85:39:31:68:ab:f2:eb:8a:45:f6:41:c3:a2:72: 13:81:84:d3:37:93:43:e8:07:0b:60:8a:e6:31:a8:51:39:ce: 80:1d:a1:62:5b:02:f6:77:46:13:28:1a:d6:49:49:0d:dc:2b: a9:3d:4e:5b:ae:0e:19:d2:44:6f:d6:45:92:62:f2:90:51:cf: e9:4b:4a:d6:38:4d:ca:e6:75:7b:10:8a:34:73:4f:77:b3:42: 95:68:3a:94:ce:b8:33:f3:22:51:09:14:ee:15:48:61:0e:6e: 49:62:e3:b4:76:cd:15:6d:53:4e:77:4e:35:d1:c0:33:30:48: d5:99:81:e4:fe:3e:dc:28:8d:c1:48:12:6e:a3:30:af:e8:31: 93:ef:83:05 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBRowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDVEMjUxMTAvBgNVBAUTKEMyRjI4RTlEMTg4NDM5QzRGRTY5RjYzQTRDQUE2REE0 MjQ5NjI5MUQwHhcNMjUwNDI0MjMyOTAxWhcNMjUwNTAxMjMyOTAxWjAYMRYwFAYD VQQDEw02ODBhYzkzZC0wYWNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyUmH5oi7qCqbeMkCM3NNpzHhnQ0CIjuGPZWTiMIOUi/Hvbh/9sR4XKypvNIF ZIgK3fdT0q3Jz0h5G09OWCzFdudZoaaN7TxEUHJzsddKJ2jjI3h7GLx8U1M03mTl qki4DJvMHcp+V3Vjz6/zhWUWlxyEtqKGqraOQwtXUa1Ljg6xOyjHmy7wx2cOg7Op WagRQsSW8CY4mgJ4zC3MDU4Mf1Zyz5ZaP/Wr1l6O4H0bwX7wPluamOuCGKxrgvFg XPay33TgWWcB8kvSsIoiYfLMGptY+3cYY4KjrorvZPo/W/qfBhvRBMd+ggC4sHPy B49diMwFvBgF3ohxzwVhGUa5qwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNHEHkOp G+tupJL8Kb8dpD84dOaIMB8GA1UdIwQYMBaAFMLyjp0YhDnE/mn2OkyqbaQklikd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NUQyNS82N0YyQjBEODBC RDIxMUVDQkFBNDgwNkFDNEY5QUUwMi93dktPblJpRU9jVC1hZlk2VEtwdHBDU1dL UjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3d2S09uUmlFT2NULWFmWTZUS3B0cENTV0tSMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NUQyNS82N0YyQjBEODBCRDIxMUVDQkFBNDgwNkFDNEY5QUUwMi93dktPblJpRU9j VC1hZlk2VEtwdHBDU1dLUjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBJEtWokrbs4ryQV5CtOVCDeTQW0KvRMQhFbdS6shbbqoWfdceFPdi3 ianPVX34VeJ8vDnrcKVYxOPgWoN5cwLojUZlbQ5pgL/hOjPzw9XXAiSH3TDJfNFU VO6m3mAcfCf93g/YHIF8MvBNYmaiRr8JhTkxaKvy64pF9kHDonITgYTTN5ND6AcL YIrmMahROc6AHaFiWwL2d0YTKBrWSUkN3CupPU5brg4Z0kRv1kWSYvKQUc/pS0rW OE3K5nV7EIo0c093s0KVaDqUzrgz8yJRCRTuFUhhDm5JYuO0ds0VbVNOd0410cAz MEjVmYHk/j7cKI3BSBJuozCv6DGT74MF -----END CERTIFICATE-----Generated at Sat Apr 26 04:23:57 2025 by rpki-client