$ rpki-client -vvf rpki.apnic.net/member_repository/A91A445C/5A8AD0880B1811E3B637C6795911EA32/wPfY1tVBY3Zf9vPi-zN_z-FQchk.mft File: wPfY1tVBY3Zf9vPi-zN_z-FQchk.mft (raw, json) Hash identifier: 9dprOMFb08i6ptbdcngaqi9wy0XWMmlByvIPGKjWV0Y= Subject key identifier: 6B:79:71:83:08:2E:54:A4:B3:79:23:CF:39:E4:FD:F9:9B:6A:1E:64 Authority key identifier: C0:F7:D8:D6:D5:41:63:76:5F:F6:F3:E2:FB:33:7F:CF:E1:50:72:19 Certificate issuer: /CN=A91A445C/serialNumber=C0F7D8D6D54163765FF6F3E2FB337FCFE1507219 Certificate serial: 3005 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wPfY1tVBY3Zf9vPi-zN_z-FQchk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A445C/5A8AD0880B1811E3B637C6795911EA32/wPfY1tVBY3Zf9vPi-zN_z-FQchk.mft Manifest number: 2FFC Signing time: Wed 06 Aug 2025 15:30:20 +0000 Manifest this update: Wed 06 Aug 2025 15:30:20 +0000 Manifest next update: Wed 13 Aug 2025 15:30:20 +0000 Files and hashes: 1: wPfY1tVBY3Zf9vPi-zN_z-FQchk.crl (hash: 6t+17gf+NuOjJp7ahrJVfGIyBbwXg+tpGCH5NwY8Eok=) 2: 47A21580B6CC11EC98672826C4F9AE02.roa (hash: qjc1TRQ4aj3UWDrfE4OMe7D9VpKX+4bRXdtLVlC/TX8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A445C/5A8AD0880B1811E3B637C6795911EA32/wPfY1tVBY3Zf9vPi-zN_z-FQchk.crl rsync://rpki.apnic.net/member_repository/A91A445C/5A8AD0880B1811E3B637C6795911EA32/wPfY1tVBY3Zf9vPi-zN_z-FQchk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wPfY1tVBY3Zf9vPi-zN_z-FQchk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 Aug 2025 15:30:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12293 (0x3005) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A445C, serialNumber=C0F7D8D6D54163765FF6F3E2FB337FCFE1507219 Validity Not Before: Aug 6 15:30:20 2025 GMT Not After : Aug 13 15:30:20 2025 GMT Subject: CN=6893750c-459f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:3f:50:e2:6d:13:c2:db:40:47:51:cc:10:e5: 14:76:47:61:c8:20:03:b9:57:7e:4d:cd:1b:50:26: dd:8c:eb:af:65:f2:64:0c:65:d3:74:a8:f8:1f:c6: a8:14:eb:94:76:42:bf:12:5e:0b:39:03:98:fb:84: 43:9d:fa:79:35:8d:3e:99:79:d8:90:f2:68:bc:ed: 52:9b:11:16:55:d6:9b:2c:26:11:c7:cf:c2:18:ee: 29:2e:d2:73:cc:ca:54:61:a0:b7:0a:d1:6c:37:33: 90:1c:e3:34:fa:f2:fc:24:3d:e6:eb:3b:5c:f6:c4: a3:80:5e:d3:0e:2b:ab:73:69:31:24:c6:cc:35:d8: 25:af:60:a2:da:94:a2:fc:0b:84:8f:24:cb:d3:07: 8a:e2:d9:1d:e5:66:a4:02:bd:bb:7a:59:c7:70:70: 94:0a:90:db:41:0f:47:1b:d0:09:f6:c2:05:40:d0: 42:38:78:a1:3c:00:c3:bd:86:d0:b5:a1:01:59:48: bd:0a:3d:cc:32:fb:36:47:b3:4f:54:91:1e:1b:bb: 02:32:cc:e9:9a:34:9b:85:c0:34:e3:22:cc:5e:67: 09:5c:20:5c:3b:0a:21:34:e7:27:9c:c1:c4:a3:81: 4c:1d:45:e9:6a:f5:0d:91:ca:4d:c4:ee:0e:3a:87: ba:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:79:71:83:08:2E:54:A4:B3:79:23:CF:39:E4:FD:F9:9B:6A:1E:64 X509v3 Authority Key Identifier: keyid:C0:F7:D8:D6:D5:41:63:76:5F:F6:F3:E2:FB:33:7F:CF:E1:50:72:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A445C/5A8AD0880B1811E3B637C6795911EA32/wPfY1tVBY3Zf9vPi-zN_z-FQchk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wPfY1tVBY3Zf9vPi-zN_z-FQchk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A445C/5A8AD0880B1811E3B637C6795911EA32/wPfY1tVBY3Zf9vPi-zN_z-FQchk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 72:30:2d:60:5e:c5:49:1f:59:c9:61:8b:ee:5f:ca:5a:a5:d8: 77:62:ee:c6:a9:24:cd:fc:22:fd:7b:d7:7a:fb:cd:80:ce:7c: 1e:5c:fd:bf:db:5c:00:da:42:8a:b1:8a:a2:16:56:7f:ba:aa: 38:0c:4d:f2:1e:6e:05:96:c3:c5:b8:49:cb:f7:31:0f:74:5f: 62:f1:a8:4c:5b:ca:34:aa:5f:c6:0a:9b:9e:c1:08:0e:1b:90: db:b3:66:1a:0f:2b:12:c4:2d:59:27:83:aa:91:cd:c2:25:5c: 80:5e:62:7c:26:d8:75:ac:b9:63:84:71:76:ee:2b:b3:5b:aa: 4b:81:34:bc:54:da:b7:b5:f4:31:74:8f:91:78:a3:76:05:ea: 7c:90:f9:15:15:e5:f1:c1:78:d0:fb:0f:1e:7d:30:8d:42:21: d5:58:dd:8b:f9:01:19:db:78:5e:8c:88:5d:44:fe:2d:a6:44: f1:fc:ca:36:4f:33:ea:f8:f7:81:6c:31:06:cf:7a:42:c0:a7: 25:0a:41:96:fb:fe:6e:d3:f1:2e:18:c5:6d:f6:d7:e6:09:9a: d9:f4:3f:5c:41:0b:8a:c0:e6:30:07:c6:16:1e:02:a5:35:50: 22:82:85:d2:19:e7:2b:7f:35:10:a3:0e:de:73:72:d6:b3:16: 04:51:5b:67 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICMAUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTQ0NUMxMTAvBgNVBAUTKEMwRjdEOEQ2RDU0MTYzNzY1RkY2RjNFMkZCMzM3RkNG RTE1MDcyMTkwHhcNMjUwODA2MTUzMDIwWhcNMjUwODEzMTUzMDIwWjAYMRYwFAYD VQQDEw02ODkzNzUwYy00NTlmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApT9Q4m0TwttAR1HMEOUUdkdhyCADuVd+Tc0bUCbdjOuvZfJkDGXTdKj4H8ao FOuUdkK/El4LOQOY+4RDnfp5NY0+mXnYkPJovO1SmxEWVdabLCYRx8/CGO4pLtJz zMpUYaC3CtFsNzOQHOM0+vL8JD3m6ztc9sSjgF7TDiurc2kxJMbMNdglr2Ci2pSi /AuEjyTL0weK4tkd5WakAr27elnHcHCUCpDbQQ9HG9AJ9sIFQNBCOHihPADDvYbQ taEBWUi9Cj3MMvs2R7NPVJEeG7sCMszpmjSbhcA04yLMXmcJXCBcOwohNOcnnMHE o4FMHUXpavUNkcpNxO4OOoe6bQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGt5cYMI LlSks3kjzznk/fmbah5kMB8GA1UdIwQYMBaAFMD32NbVQWN2X/bz4vszf8/hUHIZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNDQ1Qy81QThBRDA4ODBC MTgxMUUzQjYzN0M2Nzk1OTExRUEzMi93UGZZMXRWQlkzWmY5dlBpLXpOX3otRlFj aGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3dQZlkxdFZCWTNaZjl2UGktek5fei1GUWNoay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NDQ1Qy81QThBRDA4ODBCMTgxMUUzQjYzN0M2Nzk1OTExRUEzMi93UGZZMXRWQlkz WmY5dlBpLXpOX3otRlFjaGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQByMC1gXsVJH1nJYYvuX8papdh3Yu7GqSTN/CL9e9d6+82AznweXP2/ 21wA2kKKsYqiFlZ/uqo4DE3yHm4FlsPFuEnL9zEPdF9i8ahMW8o0ql/GCpuewQgO G5Dbs2YaDysSxC1ZJ4Oqkc3CJVyAXmJ8Jth1rLljhHF27iuzW6pLgTS8VNq3tfQx dI+ReKN2Bep8kPkVFeXxwXjQ+w8efTCNQiHVWN2L+QEZ23hejIhdRP4tpkTx/Mo2 TzPq+PeBbDEGz3pCwKclCkGW+/5u0/EuGMVt9tfmCZrZ9D9cQQuKwOYwB8YWHgKl NVAigoXSGecrfzUQow7ec3LWsxYEUVtn -----END CERTIFICATE-----Generated at Thu Aug 7 04:28:14 2025 by rpki-client