$ rpki-client -vvf rpki.apnic.net/member_repository/A917E475/DBFB3EB4E41A11E9AD79B811C4F9AE02/_whTCVKXG6BlIktSH1ZWO20hJO0.mft File: _whTCVKXG6BlIktSH1ZWO20hJO0.mft (raw, json) Hash identifier: UFryxdFk+XpZRDqWbhJ4D52trVtingkWlP1IdtDswnQ= Subject key identifier: F2:37:DA:BA:A6:D4:B1:13:F0:F4:E9:A0:7F:19:CF:6A:51:D6:3C:0C Authority key identifier: FF:08:53:09:52:97:1B:A0:65:22:4B:52:1F:56:56:3B:6D:21:24:ED Certificate issuer: /CN=A917E475/serialNumber=FF08530952971BA065224B521F56563B6D2124ED Certificate serial: 0D11 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_whTCVKXG6BlIktSH1ZWO20hJO0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E475/DBFB3EB4E41A11E9AD79B811C4F9AE02/_whTCVKXG6BlIktSH1ZWO20hJO0.mft Manifest number: 0D0B Signing time: Wed 06 Aug 2025 18:14:32 +0000 Manifest this update: Wed 06 Aug 2025 18:14:32 +0000 Manifest next update: Wed 13 Aug 2025 18:14:32 +0000 Files and hashes: 1: _whTCVKXG6BlIktSH1ZWO20hJO0.crl (hash: i3nN2Om8EzgjhzRYjN+kKQVo7Xe+nX0ALowJWLmL1+Y=) 2: 3A8AC908E41C11E9AD4A8D16C4F9AE02.roa (hash: 7Dst7szyPWooV+5WFj8vI4oANvEvXDCaESLYXfhjMk0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E475/DBFB3EB4E41A11E9AD79B811C4F9AE02/_whTCVKXG6BlIktSH1ZWO20hJO0.crl rsync://rpki.apnic.net/member_repository/A917E475/DBFB3EB4E41A11E9AD79B811C4F9AE02/_whTCVKXG6BlIktSH1ZWO20hJO0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_whTCVKXG6BlIktSH1ZWO20hJO0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 Aug 2025 18:14:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3345 (0xd11) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E475, serialNumber=FF08530952971BA065224B521F56563B6D2124ED Validity Not Before: Aug 6 18:14:32 2025 GMT Not After : Aug 13 18:14:32 2025 GMT Subject: CN=68939b88-2309 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:ee:69:9d:aa:f6:9e:44:95:82:a9:93:de:bf: 6e:a9:f7:ad:4c:a9:a2:23:84:5d:08:9a:ca:38:03: 6f:90:93:d7:53:be:e6:aa:f0:00:76:a1:84:f4:5e: e7:bb:34:7e:59:dc:54:78:44:e1:4b:f4:00:19:56: 89:98:0c:88:f9:e3:f8:c4:bc:be:75:c2:43:dc:57: 9f:ea:d0:31:1e:ee:46:95:fc:b0:db:b6:5c:2a:f0: d4:93:44:dc:b5:d1:21:d6:d4:53:55:3b:10:bc:a4: 25:4c:50:d2:7f:98:0c:81:8d:43:bb:a2:09:ba:73: fe:02:62:3a:b1:f9:aa:a7:b0:b1:ce:7d:b4:7a:dc: c4:92:11:e3:12:46:cd:b4:dc:52:95:c1:5e:ac:d7: c7:0d:96:76:16:e5:7a:18:7f:12:80:c8:37:4e:21: e9:a0:7f:1d:a3:c1:95:80:d5:72:87:b7:52:a6:c2: 91:fd:97:af:2a:45:20:8d:64:b1:26:8f:ce:62:df: f9:7b:2c:7e:fb:8f:bd:81:0c:66:06:6b:e2:17:4d: 47:50:e0:af:ec:5d:69:4d:90:26:2b:1c:e8:a2:93: 64:b2:20:78:e7:fb:e9:50:14:6b:f4:d5:1e:e8:ca: ee:0d:8e:0e:26:32:71:fb:7a:70:79:99:4d:76:e1: f4:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:37:DA:BA:A6:D4:B1:13:F0:F4:E9:A0:7F:19:CF:6A:51:D6:3C:0C X509v3 Authority Key Identifier: keyid:FF:08:53:09:52:97:1B:A0:65:22:4B:52:1F:56:56:3B:6D:21:24:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E475/DBFB3EB4E41A11E9AD79B811C4F9AE02/_whTCVKXG6BlIktSH1ZWO20hJO0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_whTCVKXG6BlIktSH1ZWO20hJO0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E475/DBFB3EB4E41A11E9AD79B811C4F9AE02/_whTCVKXG6BlIktSH1ZWO20hJO0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 63:bf:02:cc:73:aa:8e:7d:2e:f7:a4:7a:28:8a:0a:87:6d:a5: bf:70:01:12:cb:2c:9e:08:8b:96:da:11:52:d0:02:b8:18:66: e6:94:bb:43:e2:7b:6e:ee:1e:22:be:61:31:05:64:04:2a:46: 99:e3:a9:7c:58:bc:8c:b2:9f:53:58:da:ef:ac:31:5d:30:09: c5:70:82:4f:53:67:0f:9c:5e:b8:f1:53:22:22:65:c0:92:9d: ca:59:22:c8:25:92:88:4c:89:fb:6d:d5:c6:88:86:2d:42:0a: f6:0c:a3:e2:d9:77:32:51:0f:1e:18:21:53:7e:8e:b2:0d:f0: 29:11:bb:66:8a:63:71:3f:1b:39:fa:97:dd:91:df:f4:33:04: bc:2b:e9:80:d4:1d:1e:f2:97:e7:4e:09:e5:6b:b9:a8:d6:4e: 4f:12:bd:f5:14:4b:c8:92:18:90:25:53:13:90:0f:1a:ca:ce: 70:69:fa:33:09:26:49:c1:01:77:60:0e:d2:4e:9b:0a:9a:bb: 70:ea:92:5d:b7:66:3b:8e:8d:6b:2e:02:a9:85:8a:a5:b3:3b: 6a:af:8f:cc:28:ce:81:fe:91:7f:ad:3c:2b:ff:23:8e:4c:e9: 8b:89:86:a0:26:78:76:8d:e6:73:f3:73:46:ab:d1:ff:39:60: 46:6f:89:51 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDREwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U0NzUxMTAvBgNVBAUTKEZGMDg1MzA5NTI5NzFCQTA2NTIyNEI1MjFGNTY1NjNC NkQyMTI0RUQwHhcNMjUwODA2MTgxNDMyWhcNMjUwODEzMTgxNDMyWjAYMRYwFAYD VQQDEw02ODkzOWI4OC0yMzA5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8e5pnar2nkSVgqmT3r9uqfetTKmiI4RdCJrKOANvkJPXU77mqvAAdqGE9F7n uzR+WdxUeEThS/QAGVaJmAyI+eP4xLy+dcJD3Fef6tAxHu5Glfyw27ZcKvDUk0Tc tdEh1tRTVTsQvKQlTFDSf5gMgY1Du6IJunP+AmI6sfmqp7Cxzn20etzEkhHjEkbN tNxSlcFerNfHDZZ2FuV6GH8SgMg3TiHpoH8do8GVgNVyh7dSpsKR/ZevKkUgjWSx Jo/OYt/5eyx++4+9gQxmBmviF01HUOCv7F1pTZAmKxzoopNksiB45/vpUBRr9NUe 6MruDY4OJjJx+3pweZlNduH0fQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPI32rqm 1LET8PTpoH8Zz2pR1jwMMB8GA1UdIwQYMBaAFP8IUwlSlxugZSJLUh9WVjttISTt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTQ3NS9EQkZCM0VCNEU0 MUExMUU5QUQ3OUI4MTFDNEY5QUUwMi9fd2hUQ1ZLWEc2QmxJa3RTSDFaV08yMGhK TzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL193aFRDVktYRzZCbElrdFNIMVpXTzIwaEpPMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTQ3NS9EQkZCM0VCNEU0MUExMUU5QUQ3OUI4MTFDNEY5QUUwMi9fd2hUQ1ZLWEc2 QmxJa3RTSDFaV08yMGhKTzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBjvwLMc6qOfS73pHooigqHbaW/cAESyyyeCIuW2hFS0AK4GGbmlLtD 4ntu7h4ivmExBWQEKkaZ46l8WLyMsp9TWNrvrDFdMAnFcIJPU2cPnF648VMiImXA kp3KWSLIJZKITIn7bdXGiIYtQgr2DKPi2XcyUQ8eGCFTfo6yDfApEbtmimNxPxs5 +pfdkd/0MwS8K+mA1B0e8pfnTgnla7mo1k5PEr31FEvIkhiQJVMTkA8ays5wafoz CSZJwQF3YA7STpsKmrtw6pJdt2Y7jo1rLgKphYqlsztqr4/MKM6B/pF/rTwr/yOO TOmLiYagJnh2jeZz83NGq9H/OWBGb4lR -----END CERTIFICATE-----Generated at Thu Aug 7 04:44:15 2025 by rpki-client