$ rpki-client -vvf rpki.apnic.net/member_repository/A9198F53/CD06217640F411EAAE778261C4F9AE02/_wsVRthMDZNVkFtsopPiW0QJSMU.mft File: _wsVRthMDZNVkFtsopPiW0QJSMU.mft (raw, json) Hash identifier: qz85eram2oC5IHrJrNnTL4i0EnZVm6dxP/brgjm7BRc= Subject key identifier: 08:BB:28:1E:EF:02:8C:15:20:BF:FF:62:48:A3:C2:6B:EE:96:0F:FC Authority key identifier: FF:0B:15:46:D8:4C:0D:93:55:90:5B:6C:A2:93:E2:5B:44:09:48:C5 Certificate issuer: /CN=A9198F53/serialNumber=FF0B1546D84C0D9355905B6CA293E25B440948C5 Certificate serial: 0B1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_wsVRthMDZNVkFtsopPiW0QJSMU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9198F53/CD06217640F411EAAE778261C4F9AE02/_wsVRthMDZNVkFtsopPiW0QJSMU.mft Manifest number: 0B16 Signing time: Thu 12 Jun 2025 19:02:38 +0000 Manifest this update: Thu 12 Jun 2025 19:02:38 +0000 Manifest next update: Thu 19 Jun 2025 19:02:38 +0000 Files and hashes: 1: _wsVRthMDZNVkFtsopPiW0QJSMU.crl (hash: m3P5yGPHu1Y6WSOD8zCISv1PNfYcsJgmIFisjlv1dp0=) 2: 0B1FBD4A40F611EAACD44866C4F9AE02.roa (hash: O+1TVwNVO9fy4asd+g6mFvUYSSGMZxyCsanhKoUd1UE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9198F53/CD06217640F411EAAE778261C4F9AE02/_wsVRthMDZNVkFtsopPiW0QJSMU.crl rsync://rpki.apnic.net/member_repository/A9198F53/CD06217640F411EAAE778261C4F9AE02/_wsVRthMDZNVkFtsopPiW0QJSMU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_wsVRthMDZNVkFtsopPiW0QJSMU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 19:02:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2845 (0xb1d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9198F53, serialNumber=FF0B1546D84C0D9355905B6CA293E25B440948C5 Validity Not Before: Jun 12 19:02:38 2025 GMT Not After : Jun 19 19:02:38 2025 GMT Subject: CN=684b244e-8386 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:89:2e:04:de:a6:a8:3c:64:57:37:3a:92:00: a4:d4:9c:46:41:e8:2d:22:08:37:4f:0c:eb:e9:0d: 12:a1:85:33:71:e5:ed:02:48:7d:ba:05:2b:c4:49: 7e:50:8a:bf:d2:c7:a6:f2:5c:bf:bf:1d:bc:b7:6d: 8b:66:7b:e3:8f:3b:27:b2:5f:9c:e3:ca:e9:51:da: 2a:6a:8a:8f:20:a4:03:9b:c6:9c:27:bd:e6:9a:7b: 0d:5a:d0:01:e3:4a:a5:d3:7a:4a:2d:0c:4a:a3:f6: e6:fb:ca:66:87:92:23:60:3d:7b:91:77:0c:33:63: 32:da:74:48:6d:03:34:a7:e0:1e:bb:5e:8b:82:1a: 1f:3e:12:a1:83:2d:ba:b5:70:73:b5:74:ba:ad:d0: 4c:29:fc:9b:8f:19:4b:ac:fa:f0:db:1f:05:5f:2f: d6:aa:6d:eb:c6:d1:db:58:68:95:b6:98:f1:3f:b0: b1:fb:fd:1c:99:b5:0e:a3:55:c3:4c:24:6d:60:69: 79:8c:2a:17:eb:fa:38:3c:0d:2e:be:72:53:22:bf: 9e:67:37:d5:b7:85:f9:cf:46:15:a0:ba:8c:aa:d2: b0:02:e5:62:7c:25:95:ce:75:d8:27:6d:13:6c:b7: 11:11:0d:be:7f:8c:1a:a9:ec:56:b1:c0:5e:d4:0b: 5d:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:BB:28:1E:EF:02:8C:15:20:BF:FF:62:48:A3:C2:6B:EE:96:0F:FC X509v3 Authority Key Identifier: keyid:FF:0B:15:46:D8:4C:0D:93:55:90:5B:6C:A2:93:E2:5B:44:09:48:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9198F53/CD06217640F411EAAE778261C4F9AE02/_wsVRthMDZNVkFtsopPiW0QJSMU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_wsVRthMDZNVkFtsopPiW0QJSMU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9198F53/CD06217640F411EAAE778261C4F9AE02/_wsVRthMDZNVkFtsopPiW0QJSMU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 00:be:2b:22:74:72:db:4c:9f:dd:b0:29:19:d9:a6:c4:41:94: 84:0c:15:a5:c3:3a:13:7f:f7:0f:73:c4:32:91:66:de:5c:bf: 4a:f5:51:bf:ac:4c:9a:bf:56:df:b5:d2:40:dc:8e:8f:2a:4a: 17:28:2b:83:38:9a:7b:35:32:ee:de:2f:49:cd:d1:0f:1f:a0: 97:f1:34:ea:d0:53:e0:bf:ca:69:7e:04:7d:f5:c5:dc:80:81: cf:f4:73:75:7d:ba:00:c1:83:00:b7:49:ab:52:aa:1c:fc:06: 83:57:c7:e4:dd:75:de:38:8f:4d:3d:7d:ec:c4:a2:ac:43:a2: f5:29:dc:39:76:34:15:7e:70:15:9d:55:13:d2:21:3d:f5:35: 3f:98:e5:63:96:b7:e2:40:cc:84:cd:9b:1a:8c:f7:1d:00:f3: af:c0:df:9f:27:3d:a1:ac:0a:40:85:b9:35:91:b6:d6:4c:d2: 80:c6:f3:33:04:10:c9:5a:4d:cc:7f:5e:2e:28:ac:ca:3f:80: 38:c2:51:b4:97:ff:90:52:a8:71:95:94:10:14:76:db:25:d3: 32:5b:16:75:30:97:25:a8:77:a7:41:38:55:53:12:b1:08:7a: 70:69:ba:23:d9:f4:a2:0b:76:37:b9:85:e3:4d:b8:47:28:ef: ca:e9:7a:5a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCx0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OThGNTMxMTAvBgNVBAUTKEZGMEIxNTQ2RDg0QzBEOTM1NTkwNUI2Q0EyOTNFMjVC NDQwOTQ4QzUwHhcNMjUwNjEyMTkwMjM4WhcNMjUwNjE5MTkwMjM4WjAYMRYwFAYD VQQDEw02ODRiMjQ0ZS04Mzg2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnokuBN6mqDxkVzc6kgCk1JxGQegtIgg3Twzr6Q0SoYUzceXtAkh9ugUrxEl+ UIq/0sem8ly/vx28t22LZnvjjzsnsl+c48rpUdoqaoqPIKQDm8acJ73mmnsNWtAB 40ql03pKLQxKo/bm+8pmh5IjYD17kXcMM2My2nRIbQM0p+Aeu16LghofPhKhgy26 tXBztXS6rdBMKfybjxlLrPrw2x8FXy/Wqm3rxtHbWGiVtpjxP7Cx+/0cmbUOo1XD TCRtYGl5jCoX6/o4PA0uvnJTIr+eZzfVt4X5z0YVoLqMqtKwAuVifCWVznXYJ20T bLcREQ2+f4waqexWscBe1AtdyQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAi7KB7v AowVIL//Ykijwmvulg/8MB8GA1UdIwQYMBaAFP8LFUbYTA2TVZBbbKKT4ltECUjF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OEY1My9DRDA2MjE3NjQw RjQxMUVBQUU3NzgyNjFDNEY5QUUwMi9fd3NWUnRoTURaTlZrRnRzb3BQaVcwUUpT TVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL193c1ZSdGhNRFpOVmtGdHNvcFBpVzBRSlNNVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OEY1My9DRDA2MjE3NjQwRjQxMUVBQUU3NzgyNjFDNEY5QUUwMi9fd3NWUnRoTURa TlZrRnRzb3BQaVcwUUpTTVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAAvisidHLbTJ/dsCkZ2abEQZSEDBWlwzoTf/cPc8QykWbeXL9K9VG/ rEyav1bftdJA3I6PKkoXKCuDOJp7NTLu3i9JzdEPH6CX8TTq0FPgv8ppfgR99cXc gIHP9HN1fboAwYMAt0mrUqoc/AaDV8fk3XXeOI9NPX3sxKKsQ6L1Kdw5djQVfnAV nVUT0iE99TU/mOVjlrfiQMyEzZsajPcdAPOvwN+fJz2hrApAhbk1kbbWTNKAxvMz BBDJWk3Mf14uKKzKP4A4wlG0l/+QUqhxlZQQFHbbJdMyWxZ1MJclqHenQThVUxKx CHpwaboj2fSiC3Y3uYXjTbhHKO/K6Xpa -----END CERTIFICATE-----Generated at Sat Jun 14 19:28:14 2025 by rpki-client