$ rpki-client -vvf rpki.apnic.net/member_repository/A917E475/DBFB3EB4E41A11E9AD79B811C4F9AE02/_whTCVKXG6BlIktSH1ZWO20hJO0.mft File: _whTCVKXG6BlIktSH1ZWO20hJO0.mft (raw, json) Hash identifier: tWzN+mYvkB9Yv0TJBhl+prQLK6na45ucpdkLJyru1as= Subject key identifier: D7:4F:9E:CF:42:6F:80:76:C7:64:0F:97:C7:26:74:9A:41:7E:BB:0F Authority key identifier: FF:08:53:09:52:97:1B:A0:65:22:4B:52:1F:56:56:3B:6D:21:24:ED Certificate issuer: /CN=A917E475/serialNumber=FF08530952971BA065224B521F56563B6D2124ED Certificate serial: 0CF6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_whTCVKXG6BlIktSH1ZWO20hJO0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E475/DBFB3EB4E41A11E9AD79B811C4F9AE02/_whTCVKXG6BlIktSH1ZWO20hJO0.mft Manifest number: 0CF0 Signing time: Sat 14 Jun 2025 17:59:14 +0000 Manifest this update: Sat 14 Jun 2025 17:59:14 +0000 Manifest next update: Sat 21 Jun 2025 17:59:14 +0000 Files and hashes: 1: _whTCVKXG6BlIktSH1ZWO20hJO0.crl (hash: D8CInZYbGUjIb8SMJ5HK3HUkqUkBCqoOx9djMQZZBrM=) 2: 3A8AC908E41C11E9AD4A8D16C4F9AE02.roa (hash: 7Dst7szyPWooV+5WFj8vI4oANvEvXDCaESLYXfhjMk0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E475/DBFB3EB4E41A11E9AD79B811C4F9AE02/_whTCVKXG6BlIktSH1ZWO20hJO0.crl rsync://rpki.apnic.net/member_repository/A917E475/DBFB3EB4E41A11E9AD79B811C4F9AE02/_whTCVKXG6BlIktSH1ZWO20hJO0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_whTCVKXG6BlIktSH1ZWO20hJO0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 17:59:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3318 (0xcf6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E475, serialNumber=FF08530952971BA065224B521F56563B6D2124ED Validity Not Before: Jun 14 17:59:14 2025 GMT Not After : Jun 21 17:59:14 2025 GMT Subject: CN=684db872-964e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:43:5b:c1:2a:2d:96:eb:64:6b:ec:64:a2:70: d5:9b:bb:1b:39:0e:5c:49:af:30:60:ac:2c:f7:2f: 6b:69:f4:f5:fe:dc:f0:f7:94:4a:52:a3:41:3e:9b: 82:b8:27:12:ee:bf:ce:5d:db:8e:15:25:e2:32:3a: ba:26:3d:81:b5:fa:e4:20:d4:0c:1a:1a:f9:3e:ec: 74:f6:57:22:72:2c:91:8e:c1:55:4c:05:f3:f0:30: 13:0b:c5:b2:76:e3:98:d6:77:4a:be:35:f1:ad:13: 79:5d:d6:0b:1e:da:3d:7e:3e:5d:b7:c3:89:60:42: 2f:89:43:0f:2f:27:2f:b5:b9:87:5b:7c:2b:09:54: 50:22:e9:22:1d:c9:f3:90:4a:b9:34:3d:5c:55:a1: 3d:83:21:ec:ec:ff:77:78:98:6b:dc:6b:40:24:92: 0b:b3:77:4c:a6:8e:00:49:51:48:b8:10:46:0b:cf: aa:8a:bc:b7:ef:1b:22:9a:0f:8f:10:43:fb:7c:c6: 95:e2:36:3a:7a:9d:ae:1f:58:dc:3b:cb:18:66:c6: 1c:81:ba:d4:ac:a7:7d:9f:21:54:e8:d5:e9:ce:01: af:9d:46:4a:08:11:a3:16:fd:eb:a9:0a:e6:f6:3a: 2a:64:7f:c3:77:e5:8a:31:c9:cc:d4:89:71:23:99: 3b:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:4F:9E:CF:42:6F:80:76:C7:64:0F:97:C7:26:74:9A:41:7E:BB:0F X509v3 Authority Key Identifier: keyid:FF:08:53:09:52:97:1B:A0:65:22:4B:52:1F:56:56:3B:6D:21:24:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E475/DBFB3EB4E41A11E9AD79B811C4F9AE02/_whTCVKXG6BlIktSH1ZWO20hJO0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_whTCVKXG6BlIktSH1ZWO20hJO0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E475/DBFB3EB4E41A11E9AD79B811C4F9AE02/_whTCVKXG6BlIktSH1ZWO20hJO0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 43:8b:a8:cc:54:42:bd:84:b2:6e:e5:82:12:22:25:ea:62:e5: 36:13:a8:59:91:64:63:6f:ae:cd:30:6a:cf:36:8d:12:5a:2d: 9d:53:26:11:af:e0:32:cb:45:6e:23:22:4e:16:aa:3e:45:18: bf:a9:67:78:8e:4b:07:60:b3:27:8b:70:8f:a7:36:ea:8a:d4: 72:67:32:2a:36:0c:cc:4b:29:7e:b4:84:9e:78:ea:3e:55:40: f0:21:e5:7d:6f:ea:83:55:bc:ac:ac:6c:1f:b6:e4:69:dd:dc: ad:ad:93:d9:3d:1f:4b:9c:fe:44:18:33:a1:6a:6e:ef:fa:9f: 71:3e:ad:c6:8c:3d:e9:d1:a6:bd:cc:d7:31:ec:62:7b:2a:8f: a3:af:ed:2e:a9:a0:87:c1:4c:42:80:ea:5b:86:1e:a4:e7:89: 88:a2:2c:95:7d:83:00:ed:a4:e9:62:b8:fa:a9:b9:65:9e:76: e8:c9:d9:9e:b2:ac:9f:46:3b:db:e3:94:f8:06:da:7f:b1:f1: b8:5e:ec:ad:1f:2c:2f:34:cb:86:4e:97:5f:cc:f8:87:e2:a3: 1a:01:19:8d:d8:49:97:50:63:ef:8b:a4:7f:27:b7:25:35:9d: f8:ce:d4:a2:90:f8:af:87:dc:e2:2b:98:53:d0:14:d4:fa:66: f0:f1:c6:a4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDPYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U0NzUxMTAvBgNVBAUTKEZGMDg1MzA5NTI5NzFCQTA2NTIyNEI1MjFGNTY1NjNC NkQyMTI0RUQwHhcNMjUwNjE0MTc1OTE0WhcNMjUwNjIxMTc1OTE0WjAYMRYwFAYD VQQDEw02ODRkYjg3Mi05NjRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxUNbwSotlutka+xkonDVm7sbOQ5cSa8wYKws9y9rafT1/tzw95RKUqNBPpuC uCcS7r/OXduOFSXiMjq6Jj2BtfrkINQMGhr5Pux09lciciyRjsFVTAXz8DATC8Wy duOY1ndKvjXxrRN5XdYLHto9fj5dt8OJYEIviUMPLycvtbmHW3wrCVRQIukiHcnz kEq5ND1cVaE9gyHs7P93eJhr3GtAJJILs3dMpo4ASVFIuBBGC8+qiry37xsimg+P EEP7fMaV4jY6ep2uH1jcO8sYZsYcgbrUrKd9nyFU6NXpzgGvnUZKCBGjFv3rqQrm 9joqZH/Dd+WKMcnM1IlxI5k74wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNdPns9C b4B2x2QPl8cmdJpBfrsPMB8GA1UdIwQYMBaAFP8IUwlSlxugZSJLUh9WVjttISTt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTQ3NS9EQkZCM0VCNEU0 MUExMUU5QUQ3OUI4MTFDNEY5QUUwMi9fd2hUQ1ZLWEc2QmxJa3RTSDFaV08yMGhK TzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL193aFRDVktYRzZCbElrdFNIMVpXTzIwaEpPMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTQ3NS9EQkZCM0VCNEU0MUExMUU5QUQ3OUI4MTFDNEY5QUUwMi9fd2hUQ1ZLWEc2 QmxJa3RTSDFaV08yMGhKTzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBDi6jMVEK9hLJu5YISIiXqYuU2E6hZkWRjb67NMGrPNo0SWi2dUyYR r+Ayy0VuIyJOFqo+RRi/qWd4jksHYLMni3CPpzbqitRyZzIqNgzMSyl+tISeeOo+ VUDwIeV9b+qDVbysrGwftuRp3dytrZPZPR9LnP5EGDOham7v+p9xPq3GjD3p0aa9 zNcx7GJ7Ko+jr+0uqaCHwUxCgOpbhh6k54mIoiyVfYMA7aTpYrj6qbllnnboydme sqyfRjvb45T4Btp/sfG4XuytHywvNMuGTpdfzPiH4qMaARmN2EmXUGPvi6R/J7cl NZ34ztSikPivh9ziK5hT0BTU+mbw8cak -----END CERTIFICATE-----Generated at Mon Jun 16 16:23:31 2025 by rpki-client