$ rpki-client -vvf rpki.apnic.net/member_repository/A919941E/EF1FAD18966E11EDB0ECC069C4F9AE02/wTdkoKY6d2fzpHXXqBro3xiv4I0.mft File: wTdkoKY6d2fzpHXXqBro3xiv4I0.mft (raw, json) Hash identifier: A0XHs0B22DByaGif6r7EtUGrWwM2NtL2zMs63t+DYKE= Subject key identifier: F1:46:13:3F:9B:3D:28:D5:4F:30:DF:BC:82:45:57:EA:1F:DC:A9:AF Authority key identifier: C1:37:64:A0:A6:3A:77:67:F3:A4:75:D7:A8:1A:E8:DF:18:AF:E0:8D Certificate issuer: /CN=A919941E/serialNumber=C13764A0A63A7767F3A475D7A81AE8DF18AFE08D Certificate serial: 01F1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wTdkoKY6d2fzpHXXqBro3xiv4I0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919941E/EF1FAD18966E11EDB0ECC069C4F9AE02/wTdkoKY6d2fzpHXXqBro3xiv4I0.mft Manifest number: 01E7 Signing time: Sat 09 Aug 2025 03:03:52 +0000 Manifest this update: Sat 09 Aug 2025 03:03:51 +0000 Manifest next update: Sat 16 Aug 2025 03:03:51 +0000 Files and hashes: 1: wTdkoKY6d2fzpHXXqBro3xiv4I0.crl (hash: PzDUtu3B5UVpHQM8DgP9xqELibNs3H/JUEHb0OdHPkI=) 2: 8A7D7EA2426B11F0B0160739C4F9AE02.roa (hash: /DDZk7wXmoPoez1s38SJjUYi204sJqoeZ/e78IsM+C0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919941E/EF1FAD18966E11EDB0ECC069C4F9AE02/wTdkoKY6d2fzpHXXqBro3xiv4I0.crl rsync://rpki.apnic.net/member_repository/A919941E/EF1FAD18966E11EDB0ECC069C4F9AE02/wTdkoKY6d2fzpHXXqBro3xiv4I0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wTdkoKY6d2fzpHXXqBro3xiv4I0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 497 (0x1f1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919941E, serialNumber=C13764A0A63A7767F3A475D7A81AE8DF18AFE08D Validity Not Before: Aug 9 03:03:51 2025 GMT Not After : Aug 16 03:03:51 2025 GMT Subject: CN=6896ba97-8786 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:e1:75:77:a4:b4:25:49:a7:f5:c6:c2:a6:e8: 29:30:b3:f0:9c:24:91:0d:11:53:42:9c:71:8e:f3: 28:5a:ae:a1:08:62:7b:be:03:ed:96:dd:6d:65:10: 0a:b8:c6:fa:2b:77:3f:6d:0c:93:a1:10:90:65:59: db:9c:c8:15:b6:71:ee:de:5f:67:73:f9:72:6a:55: 7a:6b:50:65:37:b2:f1:55:84:26:c8:e9:c2:52:8c: 48:fd:f3:c4:20:72:51:43:30:08:de:aa:9f:0a:d6: 8a:b2:80:50:3a:59:cd:97:8b:db:2a:dc:c8:a4:10: f2:1a:a0:20:b5:c7:ec:d2:b1:5a:67:21:f9:ee:c6: a0:37:c1:3e:f2:7e:ad:8c:1a:18:74:93:c8:3c:36: 49:ec:ad:03:a6:04:40:42:9b:4c:2b:d9:75:f0:6d: 35:69:86:b4:06:2f:99:36:c8:8e:bd:68:04:5c:9c: 2e:46:70:e7:91:b5:5b:8a:b1:8e:33:40:29:de:42: b6:5c:f7:5c:e3:78:0a:8b:95:8f:bd:8e:64:2b:8d: a3:d7:7c:22:ee:e4:37:ee:59:cd:27:56:48:61:6c: 7a:89:ba:f9:7c:cf:14:2d:94:d2:b1:76:9e:08:7a: 26:6e:a0:75:e0:65:90:94:14:9a:41:6b:23:20:22: 96:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:46:13:3F:9B:3D:28:D5:4F:30:DF:BC:82:45:57:EA:1F:DC:A9:AF X509v3 Authority Key Identifier: keyid:C1:37:64:A0:A6:3A:77:67:F3:A4:75:D7:A8:1A:E8:DF:18:AF:E0:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919941E/EF1FAD18966E11EDB0ECC069C4F9AE02/wTdkoKY6d2fzpHXXqBro3xiv4I0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wTdkoKY6d2fzpHXXqBro3xiv4I0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919941E/EF1FAD18966E11EDB0ECC069C4F9AE02/wTdkoKY6d2fzpHXXqBro3xiv4I0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption e3:67:2b:3e:1a:49:c3:54:d6:1a:1d:ac:00:42:0a:91:6b:24: 56:75:6b:61:ef:6c:7e:78:9d:96:fa:ae:0d:d1:c2:50:b4:fd: 73:9d:61:00:7f:72:e4:93:97:9b:d1:83:be:f0:26:ba:26:6b: bb:75:55:03:52:93:d6:a1:a6:75:f8:6a:35:44:20:9a:af:34: 6a:4d:e4:09:53:90:0b:9a:03:2c:63:02:92:8b:28:81:fb:6b: 56:e2:e6:02:0e:32:b1:06:a1:f1:62:05:9f:89:0d:2e:e0:9e: a7:58:57:ae:0f:65:46:7e:a2:28:33:6f:21:dc:fe:17:4b:40: 12:e9:87:49:6c:09:4e:0b:e6:21:e3:19:5d:0b:94:82:f7:69: a7:56:71:84:e1:90:b7:c7:7b:fa:f9:fb:59:a9:56:b8:85:fc: ed:6f:21:72:19:31:6b:6a:06:f9:71:46:13:43:12:d9:b0:89: 0d:fb:00:86:d7:96:30:87:d9:8a:61:dc:93:d0:48:0f:f1:43: 60:e9:5c:a9:56:28:6c:2c:af:e0:99:24:7f:b8:0b:5f:db:d0: c1:53:c5:0e:9c:1f:7e:52:87:bd:5c:b7:2d:e9:39:5b:4d:be: 8a:5b:8a:3b:ab:73:cd:df:f1:71:88:72:8f:68:04:e3:98:ae: 73:e3:cc:43 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAfEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTk0MUUxMTAvBgNVBAUTKEMxMzc2NEEwQTYzQTc3NjdGM0E0NzVEN0E4MUFFOERG MThBRkUwOEQwHhcNMjUwODA5MDMwMzUxWhcNMjUwODE2MDMwMzUxWjAYMRYwFAYD VQQDEw02ODk2YmE5Ny04Nzg2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz+F1d6S0JUmn9cbCpugpMLPwnCSRDRFTQpxxjvMoWq6hCGJ7vgPtlt1tZRAK uMb6K3c/bQyToRCQZVnbnMgVtnHu3l9nc/lyalV6a1BlN7LxVYQmyOnCUoxI/fPE IHJRQzAI3qqfCtaKsoBQOlnNl4vbKtzIpBDyGqAgtcfs0rFaZyH57sagN8E+8n6t jBoYdJPIPDZJ7K0DpgRAQptMK9l18G01aYa0Bi+ZNsiOvWgEXJwuRnDnkbVbirGO M0Ap3kK2XPdc43gKi5WPvY5kK42j13wi7uQ37lnNJ1ZIYWx6ibr5fM8ULZTSsXae CHombqB14GWQlBSaQWsjICKW/wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPFGEz+b PSjVTzDfvIJFV+of3KmvMB8GA1UdIwQYMBaAFME3ZKCmOndn86R116ga6N8Yr+CN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OTQxRS9FRjFGQUQxODk2 NkUxMUVEQjBFQ0MwNjlDNEY5QUUwMi93VGRrb0tZNmQyZnpwSFhYcUJybzN4aXY0 STAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3dUZGtvS1k2ZDJmenBIWFhxQnJvM3hpdjRJMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OTQxRS9FRjFGQUQxODk2NkUxMUVEQjBFQ0MwNjlDNEY5QUUwMi93VGRrb0tZNmQy ZnpwSFhYcUJybzN4aXY0STAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDjZys+GknDVNYaHawAQgqRayRWdWth72x+eJ2W+q4N0cJQtP1znWEA f3Lkk5eb0YO+8Ca6Jmu7dVUDUpPWoaZ1+Go1RCCarzRqTeQJU5ALmgMsYwKSiyiB +2tW4uYCDjKxBqHxYgWfiQ0u4J6nWFeuD2VGfqIoM28h3P4XS0AS6YdJbAlOC+Yh 4xldC5SC92mnVnGE4ZC3x3v6+ftZqVa4hfztbyFyGTFragb5cUYTQxLZsIkN+wCG 15Ywh9mKYdyT0EgP8UNg6VypVihsLK/gmSR/uAtf29DBU8UOnB9+Uoe9XLct6Tlb Tb6KW4o7q3PN3/FxiHKPaATjmK5z48xD -----END CERTIFICATE-----Generated at Sat Aug 9 05:51:58 2025 by rpki-client