$ rpki-client -vvf rpki.apnic.net/member_repository/A919941E/EF1FAD18966E11EDB0ECC069C4F9AE02/wTdkoKY6d2fzpHXXqBro3xiv4I0.mft File: wTdkoKY6d2fzpHXXqBro3xiv4I0.mft (raw, json) Hash identifier: ykQw1s7seA+iYxQfpV2hOROBdYdzUskMZ+C3wl3omsg= Subject key identifier: 83:7D:95:3E:14:FA:74:BB:28:DB:F4:DD:50:10:8C:0F:71:66:23:87 Authority key identifier: C1:37:64:A0:A6:3A:77:67:F3:A4:75:D7:A8:1A:E8:DF:18:AF:E0:8D Certificate issuer: /CN=A919941E/serialNumber=C13764A0A63A7767F3A475D7A81AE8DF18AFE08D Certificate serial: 01AE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wTdkoKY6d2fzpHXXqBro3xiv4I0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919941E/EF1FAD18966E11EDB0ECC069C4F9AE02/wTdkoKY6d2fzpHXXqBro3xiv4I0.mft Manifest number: 01AA Signing time: Fri 25 Apr 2025 02:25:29 +0000 Manifest this update: Fri 25 Apr 2025 02:25:29 +0000 Manifest next update: Fri 02 May 2025 02:25:29 +0000 Files and hashes: 1: wTdkoKY6d2fzpHXXqBro3xiv4I0.crl (hash: kc5X3huzfugvSpdwiR6uuc9F4CluDhyWiev4IGee0js=) 2: 7FB6349E967111ED94CA8D6AC4F9AE02.roa (hash: 97+gzhAAN1jx023w+y9KRceLVSjaEZt6bEgs1V+xpKw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919941E/EF1FAD18966E11EDB0ECC069C4F9AE02/wTdkoKY6d2fzpHXXqBro3xiv4I0.crl rsync://rpki.apnic.net/member_repository/A919941E/EF1FAD18966E11EDB0ECC069C4F9AE02/wTdkoKY6d2fzpHXXqBro3xiv4I0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wTdkoKY6d2fzpHXXqBro3xiv4I0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 02:25:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 430 (0x1ae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919941E, serialNumber=C13764A0A63A7767F3A475D7A81AE8DF18AFE08D Validity Not Before: Apr 25 02:25:29 2025 GMT Not After : May 2 02:25:29 2025 GMT Subject: CN=680af299-0b39 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:57:3a:05:08:5e:6c:a6:8e:1a:61:e5:96:c8: 13:66:6b:0f:0b:70:65:93:13:71:b3:48:e2:5e:92: 21:06:74:fd:da:7d:bf:a5:73:29:0b:57:3c:11:7e: 07:8c:d4:03:7e:64:3c:88:37:8b:2c:3c:c1:79:a7: e2:2d:9b:e0:2d:bc:85:cf:ba:d7:cd:f6:5f:0f:60: 0c:2d:ba:8f:88:fa:b7:1b:bf:e3:d7:21:87:f4:af: 3d:e2:14:60:fa:e2:03:85:2e:5f:fb:9f:ef:b8:40: e8:4d:28:44:58:f5:42:6f:88:2c:7a:39:f5:44:d4: d3:59:ee:47:c9:64:f2:d9:b4:e1:f1:d3:06:06:d4: dc:2c:1b:bc:b7:8d:22:d0:ac:11:4a:30:d2:38:eb: 01:1a:20:78:12:d8:54:ba:e0:02:24:05:f7:0a:3a: 11:f0:b3:fb:f0:23:42:a8:3e:b8:39:15:3c:2a:2b: c3:33:08:1f:d5:fc:15:cc:98:93:6c:36:b5:9b:62: ed:d7:09:71:93:6e:2e:d2:33:d2:34:86:db:ab:09: 7c:d0:d4:69:00:77:91:d0:c2:3e:74:5e:9b:1b:b0: 2b:4e:2e:af:b0:99:cb:59:df:ed:35:da:39:a9:52: 98:00:fc:42:bd:85:7c:00:c1:71:ea:89:89:7f:8c: e7:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:7D:95:3E:14:FA:74:BB:28:DB:F4:DD:50:10:8C:0F:71:66:23:87 X509v3 Authority Key Identifier: keyid:C1:37:64:A0:A6:3A:77:67:F3:A4:75:D7:A8:1A:E8:DF:18:AF:E0:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919941E/EF1FAD18966E11EDB0ECC069C4F9AE02/wTdkoKY6d2fzpHXXqBro3xiv4I0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wTdkoKY6d2fzpHXXqBro3xiv4I0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919941E/EF1FAD18966E11EDB0ECC069C4F9AE02/wTdkoKY6d2fzpHXXqBro3xiv4I0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 55:1b:cd:7f:30:92:44:68:ce:08:82:b4:5e:a8:bd:32:4f:5a: 72:06:2c:d6:ec:c6:8e:46:91:81:eb:83:58:c3:f2:6e:dd:e9: fe:6b:10:5b:b5:df:6c:2b:09:34:9a:e2:94:77:7e:5b:da:f2: 05:ee:03:25:7a:1e:88:eb:d7:1c:5e:7f:60:ea:04:5d:59:bb: 6f:66:1c:d3:a4:b0:22:8f:0e:e8:99:d7:f8:29:a4:69:0c:a7: 41:8b:fb:05:b0:4b:86:e5:41:1d:36:5c:ff:c5:6f:fc:95:54: 73:99:af:70:1d:29:30:52:78:a7:ff:92:e3:87:f8:04:f4:a2: 28:55:45:ac:44:2c:39:a7:06:c5:e0:5e:7f:55:ba:9a:c8:ac: 43:97:23:a5:0e:66:d2:72:e2:3a:88:b9:71:fb:d3:d0:87:ab: 93:1f:44:85:02:37:58:11:df:6b:1e:03:fc:e7:52:38:0b:80: 59:b0:9f:84:d3:f7:6d:9d:43:29:40:f2:bf:21:e3:a3:13:03: ba:9a:bc:2c:e9:71:5d:61:41:26:24:eb:53:93:72:03:46:87: 7c:1f:91:a0:53:1e:f0:13:3c:fd:96:a0:9c:aa:0b:04:cb:ef: 38:77:c9:d1:80:f8:3d:8e:b7:cb:ab:2c:ec:d3:f7:06:60:25: cb:fd:54:1c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAa4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTk0MUUxMTAvBgNVBAUTKEMxMzc2NEEwQTYzQTc3NjdGM0E0NzVEN0E4MUFFOERG MThBRkUwOEQwHhcNMjUwNDI1MDIyNTI5WhcNMjUwNTAyMDIyNTI5WjAYMRYwFAYD VQQDEw02ODBhZjI5OS0wYjM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAulc6BQhebKaOGmHllsgTZmsPC3BlkxNxs0jiXpIhBnT92n2/pXMpC1c8EX4H jNQDfmQ8iDeLLDzBeafiLZvgLbyFz7rXzfZfD2AMLbqPiPq3G7/j1yGH9K894hRg +uIDhS5f+5/vuEDoTShEWPVCb4gsejn1RNTTWe5HyWTy2bTh8dMGBtTcLBu8t40i 0KwRSjDSOOsBGiB4EthUuuACJAX3CjoR8LP78CNCqD64ORU8KivDMwgf1fwVzJiT bDa1m2Lt1wlxk24u0jPSNIbbqwl80NRpAHeR0MI+dF6bG7ArTi6vsJnLWd/tNdo5 qVKYAPxCvYV8AMFx6omJf4znewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIN9lT4U +nS7KNv03VAQjA9xZiOHMB8GA1UdIwQYMBaAFME3ZKCmOndn86R116ga6N8Yr+CN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OTQxRS9FRjFGQUQxODk2 NkUxMUVEQjBFQ0MwNjlDNEY5QUUwMi93VGRrb0tZNmQyZnpwSFhYcUJybzN4aXY0 STAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3dUZGtvS1k2ZDJmenBIWFhxQnJvM3hpdjRJMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OTQxRS9FRjFGQUQxODk2NkUxMUVEQjBFQ0MwNjlDNEY5QUUwMi93VGRrb0tZNmQy ZnpwSFhYcUJybzN4aXY0STAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBVG81/MJJEaM4IgrReqL0yT1pyBizW7MaORpGB64NYw/Ju3en+axBb td9sKwk0muKUd35b2vIF7gMleh6I69ccXn9g6gRdWbtvZhzTpLAijw7omdf4KaRp DKdBi/sFsEuG5UEdNlz/xW/8lVRzma9wHSkwUnin/5Ljh/gE9KIoVUWsRCw5pwbF 4F5/VbqayKxDlyOlDmbScuI6iLlx+9PQh6uTH0SFAjdYEd9rHgP851I4C4BZsJ+E 0/dtnUMpQPK/IeOjEwO6mrws6XFdYUEmJOtTk3IDRod8H5GgUx7wEzz9lqCcqgsE y+84d8nRgPg9jrfLqyzs0/cGYCXL/VQc -----END CERTIFICATE-----Generated at Sat Apr 26 04:22:01 2025 by rpki-client