$ rpki-client -vvf rpki.apnic.net/member_repository/A91A445C/5A8AD0880B1811E3B637C6795911EA32/wPfY1tVBY3Zf9vPi-zN_z-FQchk.mft File: wPfY1tVBY3Zf9vPi-zN_z-FQchk.mft (raw, json) Hash identifier: CazFSlOEEdGSYWcf4Kj0/vKXEyoASZ4MdeDeYLPCKT0= Subject key identifier: FD:92:71:4E:65:BD:81:95:A6:BF:03:36:B5:91:C4:0F:14:AC:3F:7D Authority key identifier: C0:F7:D8:D6:D5:41:63:76:5F:F6:F3:E2:FB:33:7F:CF:E1:50:72:19 Certificate issuer: /CN=A91A445C/serialNumber=C0F7D8D6D54163765FF6F3E2FB337FCFE1507219 Certificate serial: 2FD2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wPfY1tVBY3Zf9vPi-zN_z-FQchk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A445C/5A8AD0880B1811E3B637C6795911EA32/wPfY1tVBY3Zf9vPi-zN_z-FQchk.mft Manifest number: 2FC9 Signing time: Mon 28 Apr 2025 15:33:22 +0000 Manifest this update: Mon 28 Apr 2025 15:33:21 +0000 Manifest next update: Mon 05 May 2025 15:33:21 +0000 Files and hashes: 1: wPfY1tVBY3Zf9vPi-zN_z-FQchk.crl (hash: 7uTMLByWGv3+UTlZ5rHGHEN8iT5DOwmwQetgNJbgUew=) 2: 47A21580B6CC11EC98672826C4F9AE02.roa (hash: qjc1TRQ4aj3UWDrfE4OMe7D9VpKX+4bRXdtLVlC/TX8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A445C/5A8AD0880B1811E3B637C6795911EA32/wPfY1tVBY3Zf9vPi-zN_z-FQchk.crl rsync://rpki.apnic.net/member_repository/A91A445C/5A8AD0880B1811E3B637C6795911EA32/wPfY1tVBY3Zf9vPi-zN_z-FQchk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wPfY1tVBY3Zf9vPi-zN_z-FQchk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 15:33:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12242 (0x2fd2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A445C, serialNumber=C0F7D8D6D54163765FF6F3E2FB337FCFE1507219 Validity Not Before: Apr 28 15:33:21 2025 GMT Not After : May 5 15:33:21 2025 GMT Subject: CN=680f9fc2-412f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:21:fd:0a:60:88:3a:6d:70:40:3e:6f:8a:77: 60:ca:55:4d:5d:a7:03:7c:82:8d:28:26:01:18:c3: 1d:88:58:54:e1:d8:b2:1c:73:bd:3e:e0:0b:37:4e: 9c:0f:19:f2:b1:83:c6:d2:dd:db:77:1a:90:58:0e: 4c:10:e9:3f:ef:6e:b1:b5:62:ec:43:93:c5:13:69: bd:a9:85:e0:51:55:38:63:2d:e9:28:e5:91:b4:e1: 20:9a:e2:f7:e4:f3:b5:8c:a4:52:8e:c1:3e:70:07: f5:4d:70:be:e2:ed:70:a5:46:ce:7e:4f:78:4e:d7: 10:55:a5:58:a2:4f:3c:82:c0:a4:42:99:3c:fb:55: e4:63:bc:2c:5f:3b:83:51:fa:4c:50:86:c0:2e:ce: 28:ce:5d:8b:bf:c3:9d:3c:67:7c:ac:22:08:6a:9b: 75:71:b8:0e:3a:5e:27:57:b4:39:ba:a0:a3:30:25: d2:fe:2b:a5:ae:17:bd:95:bf:4e:d8:87:99:40:47: 9f:bf:f3:6b:49:05:eb:d1:76:8e:ec:c9:c4:da:25: 7d:f1:78:35:38:de:83:d1:b8:08:24:ec:be:86:02: d6:41:39:ae:fb:aa:a6:9c:98:5c:f8:d6:cd:20:04: ab:fe:a2:63:82:83:33:52:8b:5f:ec:1a:36:6a:60: 45:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:92:71:4E:65:BD:81:95:A6:BF:03:36:B5:91:C4:0F:14:AC:3F:7D X509v3 Authority Key Identifier: keyid:C0:F7:D8:D6:D5:41:63:76:5F:F6:F3:E2:FB:33:7F:CF:E1:50:72:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A445C/5A8AD0880B1811E3B637C6795911EA32/wPfY1tVBY3Zf9vPi-zN_z-FQchk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wPfY1tVBY3Zf9vPi-zN_z-FQchk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A445C/5A8AD0880B1811E3B637C6795911EA32/wPfY1tVBY3Zf9vPi-zN_z-FQchk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 75:f7:a0:c4:12:9a:30:87:9d:67:c1:fc:ec:e2:8b:9d:23:9b: bc:8a:87:1f:03:06:88:cc:f8:84:a0:1b:08:48:e7:fa:28:cb: 69:8a:78:44:33:8e:98:69:30:bb:35:25:fe:e4:23:cd:d0:68: 47:b5:2f:ab:cc:9f:c1:06:ef:4c:de:9a:ad:c2:0e:12:b6:3a: 73:51:36:31:a2:61:cc:2c:94:af:71:50:f6:19:89:28:3f:ae: 38:52:6c:27:bf:37:70:1e:b7:53:93:27:62:f3:01:3b:56:01: 91:60:bc:81:54:17:c7:05:de:0b:cc:8c:b0:8f:47:74:6d:16: 8b:89:60:18:c6:19:52:6f:58:61:2e:5b:cf:d0:33:aa:10:7b: 09:7d:cf:3f:09:a2:15:1c:d3:50:78:c5:46:21:b9:bd:fa:eb: d3:b5:78:17:dc:d9:4e:cd:50:50:a1:bd:71:df:e8:6f:4d:1f: 55:64:57:45:53:43:e4:ac:dd:f3:3b:d1:be:2f:53:49:0b:26: ac:76:1f:85:0c:a0:fe:87:44:41:57:72:6e:3b:21:74:59:bc: 25:af:4c:ae:1c:43:4b:ce:6d:ff:2f:59:bd:5f:1c:bd:6a:f5: 93:5e:2b:eb:04:ef:73:ef:4a:d7:6a:82:31:bc:8d:b1:a0:4c: f1:88:63:e3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICL9IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTQ0NUMxMTAvBgNVBAUTKEMwRjdEOEQ2RDU0MTYzNzY1RkY2RjNFMkZCMzM3RkNG RTE1MDcyMTkwHhcNMjUwNDI4MTUzMzIxWhcNMjUwNTA1MTUzMzIxWjAYMRYwFAYD VQQDEw02ODBmOWZjMi00MTJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3yH9CmCIOm1wQD5vindgylVNXacDfIKNKCYBGMMdiFhU4diyHHO9PuALN06c DxnysYPG0t3bdxqQWA5MEOk/726xtWLsQ5PFE2m9qYXgUVU4Yy3pKOWRtOEgmuL3 5PO1jKRSjsE+cAf1TXC+4u1wpUbOfk94TtcQVaVYok88gsCkQpk8+1XkY7wsXzuD UfpMUIbALs4ozl2Lv8OdPGd8rCIIapt1cbgOOl4nV7Q5uqCjMCXS/iulrhe9lb9O 2IeZQEefv/NrSQXr0XaO7MnE2iV98Xg1ON6D0bgIJOy+hgLWQTmu+6qmnJhc+NbN IASr/qJjgoMzUotf7Bo2amBF7wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP2ScU5l vYGVpr8DNrWRxA8UrD99MB8GA1UdIwQYMBaAFMD32NbVQWN2X/bz4vszf8/hUHIZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNDQ1Qy81QThBRDA4ODBC MTgxMUUzQjYzN0M2Nzk1OTExRUEzMi93UGZZMXRWQlkzWmY5dlBpLXpOX3otRlFj aGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3dQZlkxdFZCWTNaZjl2UGktek5fei1GUWNoay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NDQ1Qy81QThBRDA4ODBCMTgxMUUzQjYzN0M2Nzk1OTExRUEzMi93UGZZMXRWQlkz WmY5dlBpLXpOX3otRlFjaGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB196DEEpowh51nwfzs4oudI5u8iocfAwaIzPiEoBsISOf6KMtpinhE M46YaTC7NSX+5CPN0GhHtS+rzJ/BBu9M3pqtwg4StjpzUTYxomHMLJSvcVD2GYko P644UmwnvzdwHrdTkydi8wE7VgGRYLyBVBfHBd4LzIywj0d0bRaLiWAYxhlSb1hh LlvP0DOqEHsJfc8/CaIVHNNQeMVGIbm9+uvTtXgX3NlOzVBQob1x3+hvTR9VZFdF U0PkrN3zO9G+L1NJCyasdh+FDKD+h0RBV3JuOyF0Wbwlr0yuHENLzm3/L1m9Xxy9 avWTXivrBO9z70rXaoIxvI2xoEzxiGPj -----END CERTIFICATE-----Generated at Tue Apr 29 07:54:00 2025 by rpki-client