$ rpki-client -vvf rpki.apnic.net/member_repository/A919941E/EF1FAD18966E11EDB0ECC069C4F9AE02/wTdkoKY6d2fzpHXXqBro3xiv4I0.mft File: wTdkoKY6d2fzpHXXqBro3xiv4I0.mft (raw, json) Hash identifier: qB8ROI6BlkWVbFCoP24++jLQ7QX9FNv2MvCjS1+GdYw= Subject key identifier: 75:F6:42:B7:F1:CD:98:9E:C6:10:BD:58:91:86:C6:AC:B2:CB:CA:21 Authority key identifier: C1:37:64:A0:A6:3A:77:67:F3:A4:75:D7:A8:1A:E8:DF:18:AF:E0:8D Certificate issuer: /CN=A919941E/serialNumber=C13764A0A63A7767F3A475D7A81AE8DF18AFE08D Certificate serial: 01D4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wTdkoKY6d2fzpHXXqBro3xiv4I0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919941E/EF1FAD18966E11EDB0ECC069C4F9AE02/wTdkoKY6d2fzpHXXqBro3xiv4I0.mft Manifest number: 01CA Signing time: Fri 13 Jun 2025 02:03:49 +0000 Manifest this update: Fri 13 Jun 2025 02:03:49 +0000 Manifest next update: Fri 20 Jun 2025 02:03:49 +0000 Files and hashes: 1: wTdkoKY6d2fzpHXXqBro3xiv4I0.crl (hash: oGfjmnudFeJIsAFcNKZ0A90kUAxYfBFXbyBAZwkzyUY=) 2: 8A7D7EA2426B11F0B0160739C4F9AE02.roa (hash: /DDZk7wXmoPoez1s38SJjUYi204sJqoeZ/e78IsM+C0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919941E/EF1FAD18966E11EDB0ECC069C4F9AE02/wTdkoKY6d2fzpHXXqBro3xiv4I0.crl rsync://rpki.apnic.net/member_repository/A919941E/EF1FAD18966E11EDB0ECC069C4F9AE02/wTdkoKY6d2fzpHXXqBro3xiv4I0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wTdkoKY6d2fzpHXXqBro3xiv4I0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 02:03:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 468 (0x1d4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919941E, serialNumber=C13764A0A63A7767F3A475D7A81AE8DF18AFE08D Validity Not Before: Jun 13 02:03:49 2025 GMT Not After : Jun 20 02:03:49 2025 GMT Subject: CN=684b8705-122c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:51:7c:9b:26:90:29:4f:c9:29:fd:ed:65:28: 5c:16:1e:97:0c:5d:7c:38:eb:2e:fe:b0:81:84:04: 64:8d:0d:4d:11:1d:24:2f:ff:e8:23:02:04:0d:f2: de:c4:22:80:a5:1e:6b:6f:5a:01:16:38:bd:df:24: 50:5f:29:a7:95:0c:94:51:80:2a:98:ce:74:aa:9c: 6f:e2:81:5e:ec:1b:c2:a0:46:62:61:a7:5f:ba:80: fb:21:38:c9:95:7e:d7:0d:eb:76:68:49:11:38:73: 33:23:8d:56:4d:fc:31:d7:0b:b4:4a:b1:0e:4c:25: 70:7e:dc:03:63:61:2a:06:bc:f1:23:69:aa:f1:6c: ef:29:f3:b0:b1:92:b5:30:04:1a:79:43:fd:0f:44: 91:a5:94:4b:79:c4:5f:b5:e2:cb:82:50:d3:13:f8: 0b:86:28:26:0e:2c:10:a5:c0:03:12:6f:0e:11:58: d6:50:4e:8f:39:c6:93:fd:dd:1e:93:7a:35:e0:bc: 43:07:3f:78:09:25:62:9d:ca:59:b3:b0:2d:db:af: a4:39:cc:ed:86:98:3d:ac:53:66:c2:ff:7d:9b:25: 04:4f:ca:73:11:ae:b5:7f:19:97:02:fe:1e:a7:34: 8a:a4:0d:2b:b9:f1:54:74:9e:5a:fd:20:fa:e3:0f: 09:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:F6:42:B7:F1:CD:98:9E:C6:10:BD:58:91:86:C6:AC:B2:CB:CA:21 X509v3 Authority Key Identifier: keyid:C1:37:64:A0:A6:3A:77:67:F3:A4:75:D7:A8:1A:E8:DF:18:AF:E0:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919941E/EF1FAD18966E11EDB0ECC069C4F9AE02/wTdkoKY6d2fzpHXXqBro3xiv4I0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wTdkoKY6d2fzpHXXqBro3xiv4I0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919941E/EF1FAD18966E11EDB0ECC069C4F9AE02/wTdkoKY6d2fzpHXXqBro3xiv4I0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 42:a2:a3:d8:e3:ba:19:99:a5:a8:a6:cc:f6:8f:6c:05:88:b3: 99:19:fc:f3:98:30:33:03:19:7f:81:47:51:36:4b:1a:dd:61: 64:3b:80:42:35:9f:4c:40:c3:cf:ea:82:9a:10:ba:7c:cb:17: 9a:5b:5f:db:42:d1:cd:a1:e2:4c:55:fd:46:38:8a:e5:4a:99: d6:21:4c:7b:75:19:62:37:ac:b9:4b:60:2b:6b:ed:25:64:ce: 27:db:e2:ca:3d:07:87:ad:1b:cc:ba:bb:81:4b:0b:be:23:58: 84:82:c6:dd:67:ea:63:98:f9:84:56:2e:6b:a8:15:f8:a8:24: 70:0f:04:17:8e:e1:42:fd:68:d8:b4:c3:ba:ce:a2:75:03:6d: 88:ba:e2:dc:57:79:b1:20:09:63:0e:ab:04:b6:6d:0a:c1:59: a1:39:5e:59:87:50:87:d1:ee:b4:fe:7d:98:3f:59:56:fe:8c: dc:e6:2f:4d:74:59:82:83:75:ae:34:24:19:f2:0a:71:4e:b5: b2:b1:2b:ce:05:cf:a1:0f:8a:fb:07:5d:38:a4:78:2d:3f:be: 02:45:fa:53:30:56:f8:e1:51:7c:e2:75:9f:e8:2e:9c:db:d4: 6b:d3:67:b6:c8:71:a8:e5:3a:31:19:38:34:86:c1:e4:16:53: ec:b7:82:a8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTk0MUUxMTAvBgNVBAUTKEMxMzc2NEEwQTYzQTc3NjdGM0E0NzVEN0E4MUFFOERG MThBRkUwOEQwHhcNMjUwNjEzMDIwMzQ5WhcNMjUwNjIwMDIwMzQ5WjAYMRYwFAYD VQQDEw02ODRiODcwNS0xMjJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA51F8myaQKU/JKf3tZShcFh6XDF18OOsu/rCBhARkjQ1NER0kL//oIwIEDfLe xCKApR5rb1oBFji93yRQXymnlQyUUYAqmM50qpxv4oFe7BvCoEZiYadfuoD7ITjJ lX7XDet2aEkROHMzI41WTfwx1wu0SrEOTCVwftwDY2EqBrzxI2mq8WzvKfOwsZK1 MAQaeUP9D0SRpZRLecRfteLLglDTE/gLhigmDiwQpcADEm8OEVjWUE6POcaT/d0e k3o14LxDBz94CSVincpZs7At26+kOczthpg9rFNmwv99myUET8pzEa61fxmXAv4e pzSKpA0rufFUdJ5a/SD64w8JBQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHX2Qrfx zZiexhC9WJGGxqyyy8ohMB8GA1UdIwQYMBaAFME3ZKCmOndn86R116ga6N8Yr+CN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OTQxRS9FRjFGQUQxODk2 NkUxMUVEQjBFQ0MwNjlDNEY5QUUwMi93VGRrb0tZNmQyZnpwSFhYcUJybzN4aXY0 STAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3dUZGtvS1k2ZDJmenBIWFhxQnJvM3hpdjRJMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OTQxRS9FRjFGQUQxODk2NkUxMUVEQjBFQ0MwNjlDNEY5QUUwMi93VGRrb0tZNmQy ZnpwSFhYcUJybzN4aXY0STAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBCoqPY47oZmaWopsz2j2wFiLOZGfzzmDAzAxl/gUdRNksa3WFkO4BC NZ9MQMPP6oKaELp8yxeaW1/bQtHNoeJMVf1GOIrlSpnWIUx7dRliN6y5S2Ara+0l ZM4n2+LKPQeHrRvMuruBSwu+I1iEgsbdZ+pjmPmEVi5rqBX4qCRwDwQXjuFC/WjY tMO6zqJ1A22IuuLcV3mxIAljDqsEtm0KwVmhOV5Zh1CH0e60/n2YP1lW/ozc5i9N dFmCg3WuNCQZ8gpxTrWysSvOBc+hD4r7B104pHgtP74CRfpTMFb44VF84nWf6C6c 29Rr02e2yHGo5ToxGTg0hsHkFlPst4Ko -----END CERTIFICATE-----Generated at Sat Jun 14 18:49:59 2025 by rpki-client