$ rpki-client -vvf rpki.apnic.net/member_repository/A91731EA/9AF3ED285EEC11E6886EC51BC4F9AE02/1WeS1ZfpzdAr_BbQtJLaParggPw.mft File: 1WeS1ZfpzdAr_BbQtJLaParggPw.mft (raw, json) Hash identifier: d5u/6D60wnhKuBUl26AKPOHLYDOd5k8GUp/2wAbF7uE= Subject key identifier: CD:CE:EB:2D:59:83:6A:96:D8:4E:00:62:FB:61:E8:C7:A9:35:91:C7 Authority key identifier: D5:67:92:D5:97:E9:CD:D0:2B:FC:16:D0:B4:92:DA:3D:AA:E0:80:FC Certificate issuer: /CN=A91731EA/serialNumber=D56792D597E9CDD02BFC16D0B492DA3DAAE080FC Certificate serial: 1F25 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1WeS1ZfpzdAr_BbQtJLaParggPw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91731EA/9AF3ED285EEC11E6886EC51BC4F9AE02/1WeS1ZfpzdAr_BbQtJLaParggPw.mft Manifest number: 1F00 Signing time: Mon 16 Jun 2025 16:06:16 +0000 Manifest this update: Mon 16 Jun 2025 16:06:15 +0000 Manifest next update: Mon 23 Jun 2025 16:06:15 +0000 Files and hashes: 1: 1WeS1ZfpzdAr_BbQtJLaParggPw.crl (hash: QkqRJh+c1eWSP24mCcuYLAI0HYQtgKTeurL2rlXXmGU=) 2: 317CF2A634E811EFA8BEA738C4F9AE02.roa (hash: Uo0DI8uu4MaKQTtSGimWFCEZqnoAxk8F8R7u5G4FQ3c=) 3: 500DFDA8578611EA8CC3B124C4F9AE02.roa (hash: 1vTwS6NmMwWfh2eOEtEYiCFnJVIHS5ywk/KgkT3QCd4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91731EA/9AF3ED285EEC11E6886EC51BC4F9AE02/1WeS1ZfpzdAr_BbQtJLaParggPw.crl rsync://rpki.apnic.net/member_repository/A91731EA/9AF3ED285EEC11E6886EC51BC4F9AE02/1WeS1ZfpzdAr_BbQtJLaParggPw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1WeS1ZfpzdAr_BbQtJLaParggPw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 23 Jun 2025 16:06:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7973 (0x1f25) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91731EA, serialNumber=D56792D597E9CDD02BFC16D0B492DA3DAAE080FC Validity Not Before: Jun 16 16:06:15 2025 GMT Not After : Jun 23 16:06:15 2025 GMT Subject: CN=685040f8-cf26 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:30:ff:f6:a9:dd:6b:bf:e8:35:37:d7:6a:dd: 9e:0f:78:ea:8b:53:64:9e:db:4e:86:84:cf:87:03: a1:45:52:b1:ce:5e:6d:fd:d7:cb:fd:7b:f3:7c:35: 07:f6:5f:34:7f:f9:81:d5:96:82:c0:db:ff:12:1b: 50:d3:25:3a:b0:98:c6:40:3d:71:5e:fe:ce:de:5b: 34:5c:fc:74:76:d8:61:d8:28:55:42:9d:86:d3:34: 5f:f2:97:6e:c5:67:7f:85:eb:e3:77:89:b3:ff:89: 01:bd:ca:5d:08:b6:9f:b6:52:a2:ad:e3:29:3a:c0: 7a:a7:41:d3:7c:93:93:dd:e9:e2:94:be:0c:0b:71: ab:eb:70:11:56:21:b4:bb:d1:21:30:b5:f2:52:7f: d3:22:88:76:c8:f4:ad:12:76:7e:15:4c:9f:33:03: af:e0:24:21:5f:92:03:48:a5:5f:69:88:e9:88:4e: 57:39:14:97:be:bd:d6:9b:e9:5f:07:ea:b1:ec:ba: 46:26:bf:d4:45:4e:84:a8:47:11:66:45:52:b6:fa: 14:e2:d8:25:01:2d:b6:9d:04:b6:d1:b6:a3:23:64: 70:ff:60:1d:75:7f:80:15:93:8e:b7:0f:20:8d:dd: 7c:ac:e9:f7:ac:78:ff:12:6b:22:db:24:d9:72:b3: 88:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:CE:EB:2D:59:83:6A:96:D8:4E:00:62:FB:61:E8:C7:A9:35:91:C7 X509v3 Authority Key Identifier: keyid:D5:67:92:D5:97:E9:CD:D0:2B:FC:16:D0:B4:92:DA:3D:AA:E0:80:FC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91731EA/9AF3ED285EEC11E6886EC51BC4F9AE02/1WeS1ZfpzdAr_BbQtJLaParggPw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1WeS1ZfpzdAr_BbQtJLaParggPw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91731EA/9AF3ED285EEC11E6886EC51BC4F9AE02/1WeS1ZfpzdAr_BbQtJLaParggPw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0d:79:c8:aa:e2:e7:a4:5c:52:79:99:a8:5d:ec:4b:18:80:c6: fd:7b:24:52:64:c0:f1:82:a2:d8:6e:c3:95:a8:d2:14:81:b4: a8:d9:0c:30:2b:a6:f5:44:fc:5c:ee:d6:04:f7:84:29:85:89: 66:45:15:ce:16:36:a4:ab:8e:84:f4:fe:1d:f2:21:13:67:4f: b9:d8:7a:34:42:5b:6d:84:60:70:14:76:95:4f:30:b1:13:06: bb:62:d1:69:39:d5:96:2b:11:ee:6b:0a:c3:48:4f:83:9f:2a: 77:25:b8:9b:7e:33:ce:0a:60:1f:b8:69:26:8c:dc:79:be:d4: 9c:24:e7:e4:02:1d:f5:d5:85:eb:18:89:c7:67:de:6d:3d:ba: ff:29:fd:f1:54:29:b6:dd:f8:34:66:16:39:ba:19:5c:6b:35: 1f:35:a7:21:37:e0:93:02:ec:fe:2e:1b:8b:76:fd:d7:58:ba: 42:fe:22:37:b5:cd:61:be:77:8d:9b:5a:d2:84:da:50:ef:89: 7b:9c:21:91:b0:fb:6e:7c:a1:70:34:25:45:61:a4:5f:df:e8: f3:5d:a9:2d:a0:1f:4d:9d:ce:52:51:f4:9d:ea:08:4c:0e:85: ff:ad:30:6b:2a:5e:db:d9:2b:19:20:e0:3d:18:83:ed:66:ea: ed:40:b2:9a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHyUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzMxRUExMTAvBgNVBAUTKEQ1Njc5MkQ1OTdFOUNERDAyQkZDMTZEMEI0OTJEQTNE QUFFMDgwRkMwHhcNMjUwNjE2MTYwNjE1WhcNMjUwNjIzMTYwNjE1WjAYMRYwFAYD VQQDEw02ODUwNDBmOC1jZjI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyjD/9qnda7/oNTfXat2eD3jqi1NknttOhoTPhwOhRVKxzl5t/dfL/XvzfDUH 9l80f/mB1ZaCwNv/EhtQ0yU6sJjGQD1xXv7O3ls0XPx0dthh2ChVQp2G0zRf8pdu xWd/hevjd4mz/4kBvcpdCLaftlKireMpOsB6p0HTfJOT3enilL4MC3Gr63ARViG0 u9EhMLXyUn/TIoh2yPStEnZ+FUyfMwOv4CQhX5IDSKVfaYjpiE5XORSXvr3Wm+lf B+qx7LpGJr/URU6EqEcRZkVStvoU4tglAS22nQS20bajI2Rw/2AddX+AFZOOtw8g jd18rOn3rHj/Emsi2yTZcrOIPwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM3O6y1Z g2qW2E4AYvth6MepNZHHMB8GA1UdIwQYMBaAFNVnktWX6c3QK/wW0LSS2j2q4ID8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MzFFQS85QUYzRUQyODVF RUMxMUU2ODg2RUM1MUJDNEY5QUUwMi8xV2VTMVpmcHpkQXJfQmJRdEpMYVBhcmdn UHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFXZVMxWmZwemRBcl9CYlF0SkxhUGFyZ2dQdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MzFFQS85QUYzRUQyODVFRUMxMUU2ODg2RUM1MUJDNEY5QUUwMi8xV2VTMVpmcHpk QXJfQmJRdEpMYVBhcmdnUHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQANeciq4uekXFJ5mahd7EsYgMb9eyRSZMDxgqLYbsOVqNIUgbSo2Qww K6b1RPxc7tYE94QphYlmRRXOFjakq46E9P4d8iETZ0+52Ho0QltthGBwFHaVTzCx Ewa7YtFpOdWWKxHuawrDSE+Dnyp3JbibfjPOCmAfuGkmjNx5vtScJOfkAh311YXr GInHZ95tPbr/Kf3xVCm23fg0ZhY5uhlcazUfNachN+CTAuz+LhuLdv3XWLpC/iI3 tc1hvneNm1rShNpQ74l7nCGRsPtufKFwNCVFYaRf3+jzXaktoB9Nnc5SUfSd6ghM DoX/rTBrKl7b2SsZIOA9GIPtZurtQLKa -----END CERTIFICATE-----Generated at Wed Jun 18 02:47:44 2025 by rpki-client