$ rpki-client -vvf rpki.apnic.net/member_repository/A91731EA/9AF3ED285EEC11E6886EC51BC4F9AE02/1WeS1ZfpzdAr_BbQtJLaParggPw.mft File: 1WeS1ZfpzdAr_BbQtJLaParggPw.mft (raw, json) Hash identifier: 2nzhO6wena2wlEW2hJp4xdpjyJve2rsd5DSqL8+6pp4= Subject key identifier: A4:35:6A:C4:70:EB:E4:8C:CF:78:C0:2B:42:F0:BE:C1:A4:4A:4C:C5 Authority key identifier: D5:67:92:D5:97:E9:CD:D0:2B:FC:16:D0:B4:92:DA:3D:AA:E0:80:FC Certificate issuer: /CN=A91731EA/serialNumber=D56792D597E9CDD02BFC16D0B492DA3DAAE080FC Certificate serial: 1F40 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1WeS1ZfpzdAr_BbQtJLaParggPw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91731EA/9AF3ED285EEC11E6886EC51BC4F9AE02/1WeS1ZfpzdAr_BbQtJLaParggPw.mft Manifest number: 1F1B Signing time: Fri 08 Aug 2025 16:08:29 +0000 Manifest this update: Fri 08 Aug 2025 16:08:28 +0000 Manifest next update: Fri 15 Aug 2025 16:08:28 +0000 Files and hashes: 1: 1WeS1ZfpzdAr_BbQtJLaParggPw.crl (hash: eDov21eaowq6yQTEpwPrAm5xIdR7p/iaZiRNKd079P8=) 2: 317CF2A634E811EFA8BEA738C4F9AE02.roa (hash: Uo0DI8uu4MaKQTtSGimWFCEZqnoAxk8F8R7u5G4FQ3c=) 3: 500DFDA8578611EA8CC3B124C4F9AE02.roa (hash: 1vTwS6NmMwWfh2eOEtEYiCFnJVIHS5ywk/KgkT3QCd4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91731EA/9AF3ED285EEC11E6886EC51BC4F9AE02/1WeS1ZfpzdAr_BbQtJLaParggPw.crl rsync://rpki.apnic.net/member_repository/A91731EA/9AF3ED285EEC11E6886EC51BC4F9AE02/1WeS1ZfpzdAr_BbQtJLaParggPw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1WeS1ZfpzdAr_BbQtJLaParggPw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8000 (0x1f40) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91731EA, serialNumber=D56792D597E9CDD02BFC16D0B492DA3DAAE080FC Validity Not Before: Aug 8 16:08:28 2025 GMT Not After : Aug 15 16:08:28 2025 GMT Subject: CN=689620fc-ca69 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:b3:fb:3a:e6:b0:d2:b2:4d:99:72:6b:9c:7c: 1c:d5:fd:4a:72:97:88:38:b8:05:0d:00:ec:0b:67: e8:f5:f2:11:72:8d:e9:63:c2:61:f5:9b:32:c5:53: c1:e9:80:c2:e7:4f:32:ac:80:df:53:1f:d6:f0:c2: 02:c2:2b:4a:fd:9e:ed:27:e2:21:b4:35:04:dd:02: 4c:2c:d9:77:90:22:c5:d3:42:19:af:8e:c7:64:3f: 47:83:5c:b8:78:ea:27:a2:ec:82:71:b2:cd:b7:4b: ce:92:64:19:b2:6e:91:cf:a7:84:f2:11:8c:17:50: e7:8c:f8:84:eb:1f:d5:ab:89:dd:a2:1b:42:d2:05: 68:54:d7:af:19:c0:4b:84:54:dc:1a:21:cd:f2:00: 72:9e:48:21:d9:f3:fb:c5:f9:dd:2f:5f:e3:6d:79: 56:35:f2:d7:36:60:22:77:c9:04:01:af:32:9d:a3: ed:62:c5:e7:eb:b6:f1:b4:cf:d2:cc:27:1f:72:b2: a8:82:01:50:17:c5:12:a5:ae:44:c2:c6:61:80:11: cd:4a:d5:0d:8b:91:08:d0:ae:d5:52:12:4e:05:bb: a7:72:f2:39:7c:ab:53:4c:23:ec:96:61:f3:8d:85: 0b:23:ac:b1:da:e3:03:cb:f1:17:04:3d:95:a8:92: d4:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:35:6A:C4:70:EB:E4:8C:CF:78:C0:2B:42:F0:BE:C1:A4:4A:4C:C5 X509v3 Authority Key Identifier: keyid:D5:67:92:D5:97:E9:CD:D0:2B:FC:16:D0:B4:92:DA:3D:AA:E0:80:FC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91731EA/9AF3ED285EEC11E6886EC51BC4F9AE02/1WeS1ZfpzdAr_BbQtJLaParggPw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1WeS1ZfpzdAr_BbQtJLaParggPw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91731EA/9AF3ED285EEC11E6886EC51BC4F9AE02/1WeS1ZfpzdAr_BbQtJLaParggPw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4d:6d:ba:b2:22:83:47:ab:a6:55:ae:06:88:ac:c2:74:31:aa: 94:30:2f:69:af:d7:b7:d2:ca:e2:14:df:ac:74:9f:df:25:9a: 26:71:ee:59:f3:61:1d:95:c8:0e:25:5b:29:c7:6c:c5:a1:20: 4c:06:87:f8:0d:d3:d5:68:0a:fd:39:c7:ba:93:86:87:8c:77: e6:4f:af:ab:b4:0f:ee:36:13:f7:c0:8c:57:bb:3b:34:64:2d: 6e:8c:79:cd:6d:65:ab:9b:3d:12:96:c8:35:d2:ae:cb:65:73: 29:91:50:05:2c:09:f6:ee:2d:d5:d0:00:c3:bf:75:bb:5a:cc: 84:9f:52:a0:bd:a1:ed:01:6e:11:09:00:d5:43:e6:18:6e:18: ba:11:e2:6a:6f:d3:c2:8e:49:ef:2d:39:1a:29:96:75:15:f1: 15:73:d9:4b:43:6a:07:e7:8e:c1:02:ef:5f:6e:bf:26:cf:19: 05:14:61:62:77:ea:69:68:8b:4d:19:6b:37:83:21:a0:15:de: d9:9e:69:46:fe:37:09:ef:35:b3:ee:bc:48:6c:fc:34:1f:95: 82:ef:9d:ea:a9:f9:37:f4:9d:7e:97:f0:8b:25:30:5a:97:d4: 77:2c:70:47:64:7d:63:3d:3c:94:ec:c5:55:d7:d6:ba:d1:b1: bf:d7:0a:1e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICH0AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzMxRUExMTAvBgNVBAUTKEQ1Njc5MkQ1OTdFOUNERDAyQkZDMTZEMEI0OTJEQTNE QUFFMDgwRkMwHhcNMjUwODA4MTYwODI4WhcNMjUwODE1MTYwODI4WjAYMRYwFAYD VQQDEw02ODk2MjBmYy1jYTY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt7P7Ouaw0rJNmXJrnHwc1f1KcpeIOLgFDQDsC2fo9fIRco3pY8Jh9ZsyxVPB 6YDC508yrIDfUx/W8MICwitK/Z7tJ+IhtDUE3QJMLNl3kCLF00IZr47HZD9Hg1y4 eOonouyCcbLNt0vOkmQZsm6Rz6eE8hGMF1DnjPiE6x/Vq4ndohtC0gVoVNevGcBL hFTcGiHN8gBynkgh2fP7xfndL1/jbXlWNfLXNmAid8kEAa8ynaPtYsXn67bxtM/S zCcfcrKoggFQF8USpa5EwsZhgBHNStUNi5EI0K7VUhJOBbuncvI5fKtTTCPslmHz jYULI6yx2uMDy/EXBD2VqJLURwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKQ1asRw 6+SMz3jAK0LwvsGkSkzFMB8GA1UdIwQYMBaAFNVnktWX6c3QK/wW0LSS2j2q4ID8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MzFFQS85QUYzRUQyODVF RUMxMUU2ODg2RUM1MUJDNEY5QUUwMi8xV2VTMVpmcHpkQXJfQmJRdEpMYVBhcmdn UHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFXZVMxWmZwemRBcl9CYlF0SkxhUGFyZ2dQdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MzFFQS85QUYzRUQyODVFRUMxMUU2ODg2RUM1MUJDNEY5QUUwMi8xV2VTMVpmcHpk QXJfQmJRdEpMYVBhcmdnUHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBNbbqyIoNHq6ZVrgaIrMJ0MaqUMC9pr9e30sriFN+sdJ/fJZomce5Z 82EdlcgOJVspx2zFoSBMBof4DdPVaAr9Oce6k4aHjHfmT6+rtA/uNhP3wIxXuzs0 ZC1ujHnNbWWrmz0Slsg10q7LZXMpkVAFLAn27i3V0ADDv3W7WsyEn1KgvaHtAW4R CQDVQ+YYbhi6EeJqb9PCjknvLTkaKZZ1FfEVc9lLQ2oH547BAu9fbr8mzxkFFGFi d+ppaItNGWs3gyGgFd7ZnmlG/jcJ7zWz7rxIbPw0H5WC753qqfk39J1+l/CLJTBa l9R3LHBHZH1jPTyU7MVV19a60bG/1woe -----END CERTIFICATE-----Generated at Fri Aug 8 20:44:52 2025 by rpki-client