$ rpki-client -vvf rpki.apnic.net/member_repository/A9198F53/CD06217640F411EAAE778261C4F9AE02/_wsVRthMDZNVkFtsopPiW0QJSMU.mft File: _wsVRthMDZNVkFtsopPiW0QJSMU.mft (raw, json) Hash identifier: tkZRQY5XHunKIGUnzBcN9KuCFrPc5IVT+DkRiFiRbxc= Subject key identifier: CA:0D:F2:D1:F8:D7:A2:5B:72:46:26:02:19:45:F5:F4:F0:3D:18:4E Authority key identifier: FF:0B:15:46:D8:4C:0D:93:55:90:5B:6C:A2:93:E2:5B:44:09:48:C5 Certificate issuer: /CN=A9198F53/serialNumber=FF0B1546D84C0D9355905B6CA293E25B440948C5 Certificate serial: 0B3B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_wsVRthMDZNVkFtsopPiW0QJSMU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9198F53/CD06217640F411EAAE778261C4F9AE02/_wsVRthMDZNVkFtsopPiW0QJSMU.mft Manifest number: 0B34 Signing time: Sun 10 Aug 2025 19:12:21 +0000 Manifest this update: Sun 10 Aug 2025 19:12:21 +0000 Manifest next update: Sun 17 Aug 2025 19:12:21 +0000 Files and hashes: 1: _wsVRthMDZNVkFtsopPiW0QJSMU.crl (hash: 2VOvjBgaLu2D6GAAAwMIXNFx/q95S6B4HNbJUQY/ETc=) 2: 0B1FBD4A40F611EAACD44866C4F9AE02.roa (hash: O+1TVwNVO9fy4asd+g6mFvUYSSGMZxyCsanhKoUd1UE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9198F53/CD06217640F411EAAE778261C4F9AE02/_wsVRthMDZNVkFtsopPiW0QJSMU.crl rsync://rpki.apnic.net/member_repository/A9198F53/CD06217640F411EAAE778261C4F9AE02/_wsVRthMDZNVkFtsopPiW0QJSMU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_wsVRthMDZNVkFtsopPiW0QJSMU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2875 (0xb3b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9198F53, serialNumber=FF0B1546D84C0D9355905B6CA293E25B440948C5 Validity Not Before: Aug 10 19:12:21 2025 GMT Not After : Aug 17 19:12:21 2025 GMT Subject: CN=6898ef15-3a1f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:ed:96:28:61:19:41:79:b1:3a:1d:da:87:61: b9:cb:a6:f4:59:ad:13:62:6c:28:7c:9e:23:b5:4a: 73:2a:37:6e:68:f5:6d:00:3e:13:97:0d:69:5a:7e: a7:e4:cf:c4:1e:2d:88:2b:48:e7:ff:f2:05:d5:00: c2:5b:b9:8b:1d:94:63:3c:65:69:a0:45:dd:5e:df: 26:9d:10:58:97:fd:e1:64:3f:23:1b:bf:14:a2:25: ec:8c:dd:4d:d9:af:1b:ec:42:c6:51:5c:ab:8e:37: 4c:7b:e5:9a:e0:7b:43:a7:86:89:a8:ff:10:2f:93: e4:c0:7a:9a:d6:ca:8b:a0:38:16:e5:19:ff:92:65: 55:14:5e:d4:0e:d2:e7:0b:1d:bb:f8:e5:61:e5:52: 33:81:3e:56:b5:b8:16:89:bb:c9:f6:92:11:4b:00: 9e:b3:4c:65:29:2b:55:30:52:16:3a:a7:3a:f8:bd: bb:11:6c:08:c9:96:2b:5f:4b:72:e5:f9:1b:cc:27: 11:c1:bd:f9:23:c3:ee:3b:57:14:26:c5:2a:08:02: 3b:05:a1:6e:cf:69:b2:ac:27:5a:52:50:30:68:a8: 46:b0:9c:f8:dc:f1:8b:0e:5d:df:1e:92:d9:b6:1e: 5a:99:7d:1c:e4:78:3e:3f:5d:74:b0:17:00:81:52: 0c:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:0D:F2:D1:F8:D7:A2:5B:72:46:26:02:19:45:F5:F4:F0:3D:18:4E X509v3 Authority Key Identifier: keyid:FF:0B:15:46:D8:4C:0D:93:55:90:5B:6C:A2:93:E2:5B:44:09:48:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9198F53/CD06217640F411EAAE778261C4F9AE02/_wsVRthMDZNVkFtsopPiW0QJSMU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_wsVRthMDZNVkFtsopPiW0QJSMU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9198F53/CD06217640F411EAAE778261C4F9AE02/_wsVRthMDZNVkFtsopPiW0QJSMU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 82:f0:30:43:69:9e:f3:f7:5e:f6:6b:5d:15:38:85:ea:ff:a4: f6:2f:bf:51:2c:c9:f0:15:00:77:03:62:a2:11:2c:99:e6:38: 81:28:8f:e3:c8:a5:83:9f:40:43:a5:f6:93:b2:d5:ce:5f:01: f5:ff:d4:5b:f2:da:a7:6e:8d:5e:6f:48:1e:68:b0:1e:15:d7: 64:d3:e7:b9:94:81:fb:9c:56:1b:39:8b:62:c2:ff:fe:6e:31: 19:aa:ca:f3:c6:13:7b:69:c8:9e:a7:03:d6:82:32:b3:50:73: 84:fb:a4:df:fa:d5:2c:e8:74:2a:a9:c2:0f:5f:4e:65:ef:ef: be:4d:ff:72:38:a1:cc:5d:e1:3c:de:6b:cf:37:a3:d1:63:41: 4d:c0:fe:a1:53:b1:ae:ae:21:99:e6:85:f9:d9:ab:3b:41:9a: 20:87:f5:cf:8f:c4:d9:9c:77:31:bd:aa:0c:03:2c:71:0d:03: 39:d2:af:43:04:32:f5:15:c7:6d:3e:89:ca:22:eb:e1:ee:f7: 6d:e0:6b:a3:4b:cd:01:bb:5b:b6:5f:04:2a:60:01:60:a8:55: 36:6d:97:e0:74:4d:48:7f:85:0a:74:62:59:99:95:ba:2d:c9: c5:bf:3c:2b:79:f4:99:89:f8:c4:8e:2b:64:65:1b:01:0c:37: c8:dd:87:e2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCzswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OThGNTMxMTAvBgNVBAUTKEZGMEIxNTQ2RDg0QzBEOTM1NTkwNUI2Q0EyOTNFMjVC NDQwOTQ4QzUwHhcNMjUwODEwMTkxMjIxWhcNMjUwODE3MTkxMjIxWjAYMRYwFAYD VQQDEw02ODk4ZWYxNS0zYTFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1O2WKGEZQXmxOh3ah2G5y6b0Wa0TYmwofJ4jtUpzKjduaPVtAD4Tlw1pWn6n 5M/EHi2IK0jn//IF1QDCW7mLHZRjPGVpoEXdXt8mnRBYl/3hZD8jG78UoiXsjN1N 2a8b7ELGUVyrjjdMe+Wa4HtDp4aJqP8QL5PkwHqa1sqLoDgW5Rn/kmVVFF7UDtLn Cx27+OVh5VIzgT5WtbgWibvJ9pIRSwCes0xlKStVMFIWOqc6+L27EWwIyZYrX0ty 5fkbzCcRwb35I8PuO1cUJsUqCAI7BaFuz2myrCdaUlAwaKhGsJz43PGLDl3fHpLZ th5amX0c5Hg+P110sBcAgVIMwwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMoN8tH4 16JbckYmAhlF9fTwPRhOMB8GA1UdIwQYMBaAFP8LFUbYTA2TVZBbbKKT4ltECUjF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OEY1My9DRDA2MjE3NjQw RjQxMUVBQUU3NzgyNjFDNEY5QUUwMi9fd3NWUnRoTURaTlZrRnRzb3BQaVcwUUpT TVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL193c1ZSdGhNRFpOVmtGdHNvcFBpVzBRSlNNVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OEY1My9DRDA2MjE3NjQwRjQxMUVBQUU3NzgyNjFDNEY5QUUwMi9fd3NWUnRoTURa TlZrRnRzb3BQaVcwUUpTTVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCC8DBDaZ7z9172a10VOIXq/6T2L79RLMnwFQB3A2KiESyZ5jiBKI/j yKWDn0BDpfaTstXOXwH1/9Rb8tqnbo1eb0geaLAeFddk0+e5lIH7nFYbOYtiwv/+ bjEZqsrzxhN7aciepwPWgjKzUHOE+6Tf+tUs6HQqqcIPX05l7+++Tf9yOKHMXeE8 3mvPN6PRY0FNwP6hU7GuriGZ5oX52as7QZogh/XPj8TZnHcxvaoMAyxxDQM50q9D BDL1FcdtPonKIuvh7vdt4GujS80Bu1u2XwQqYAFgqFU2bZfgdE1If4UKdGJZmZW6 LcnFvzwrefSZifjEjitkZRsBDDfI3Yfi -----END CERTIFICATE-----Generated at Mon Aug 11 04:18:14 2025 by rpki-client