$ rpki-client -vvf rpki.apnic.net/member_repository/A91A445C/5A8AD0880B1811E3B637C6795911EA32/wPfY1tVBY3Zf9vPi-zN_z-FQchk.mft File: wPfY1tVBY3Zf9vPi-zN_z-FQchk.mft (raw, json) Hash identifier: xIzzCldZtyhGecjwJLL5IzNAYnXhheLYvuNKpHHP8JI= Subject key identifier: 96:AF:A8:65:F8:5F:EB:82:2D:94:80:15:D6:3E:43:7D:FE:95:DF:33 Authority key identifier: C0:F7:D8:D6:D5:41:63:76:5F:F6:F3:E2:FB:33:7F:CF:E1:50:72:19 Certificate issuer: /CN=A91A445C/serialNumber=C0F7D8D6D54163765FF6F3E2FB337FCFE1507219 Certificate serial: 2FEA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wPfY1tVBY3Zf9vPi-zN_z-FQchk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A445C/5A8AD0880B1811E3B637C6795911EA32/wPfY1tVBY3Zf9vPi-zN_z-FQchk.mft Manifest number: 2FE1 Signing time: Sat 14 Jun 2025 15:26:57 +0000 Manifest this update: Sat 14 Jun 2025 15:26:56 +0000 Manifest next update: Sat 21 Jun 2025 15:26:56 +0000 Files and hashes: 1: wPfY1tVBY3Zf9vPi-zN_z-FQchk.crl (hash: 1YF3EO+vuzOCekqcosI1XLbHOnnl/H0hUu2kMV/WcEQ=) 2: 47A21580B6CC11EC98672826C4F9AE02.roa (hash: qjc1TRQ4aj3UWDrfE4OMe7D9VpKX+4bRXdtLVlC/TX8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A445C/5A8AD0880B1811E3B637C6795911EA32/wPfY1tVBY3Zf9vPi-zN_z-FQchk.crl rsync://rpki.apnic.net/member_repository/A91A445C/5A8AD0880B1811E3B637C6795911EA32/wPfY1tVBY3Zf9vPi-zN_z-FQchk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wPfY1tVBY3Zf9vPi-zN_z-FQchk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 15:26:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12266 (0x2fea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A445C, serialNumber=C0F7D8D6D54163765FF6F3E2FB337FCFE1507219 Validity Not Before: Jun 14 15:26:56 2025 GMT Not After : Jun 21 15:26:56 2025 GMT Subject: CN=684d94c1-0aac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:1e:8a:e8:29:5d:e0:62:a1:7b:24:ec:16:cd: bf:97:59:20:d1:21:4a:bd:6d:ab:30:21:30:aa:6d: 49:58:19:d4:25:7a:15:bb:e3:1a:6f:e0:e3:c5:7b: 22:58:10:d4:ef:4b:5f:ed:56:88:e4:0b:43:36:ea: 5f:20:3e:39:30:f7:ff:35:c1:35:20:9d:0a:d0:e8: 84:c1:69:10:5a:ba:76:e0:81:f6:37:57:b8:48:d2: 50:1d:3a:ba:5e:85:7e:ab:fe:00:8d:b9:4a:a8:53: 64:e7:f3:27:ff:f3:71:7a:ad:e8:c4:e8:a3:6f:24: 8d:99:16:8d:ff:b9:05:bd:8c:86:d5:e1:59:52:4f: d6:4d:c4:9c:65:b5:75:38:9d:87:9d:38:9c:23:0e: b8:db:b1:24:76:7b:de:12:d6:3b:56:4a:c7:78:6a: fa:57:5f:e6:70:3f:09:20:70:4d:08:6a:ad:9a:86: 5b:9f:ef:3c:a7:d7:0e:8e:c4:f5:d9:59:e8:b2:1a: c4:73:29:77:5b:cb:db:1d:d4:90:c1:99:8a:84:c1: b4:57:2b:7d:84:39:72:50:60:8f:1e:06:47:e6:3d: 37:06:88:12:1f:32:26:f0:83:9b:b2:e3:2c:75:f8: 45:16:7f:ec:23:d1:cc:fd:f7:07:59:63:aa:66:72: 75:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:AF:A8:65:F8:5F:EB:82:2D:94:80:15:D6:3E:43:7D:FE:95:DF:33 X509v3 Authority Key Identifier: keyid:C0:F7:D8:D6:D5:41:63:76:5F:F6:F3:E2:FB:33:7F:CF:E1:50:72:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A445C/5A8AD0880B1811E3B637C6795911EA32/wPfY1tVBY3Zf9vPi-zN_z-FQchk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wPfY1tVBY3Zf9vPi-zN_z-FQchk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A445C/5A8AD0880B1811E3B637C6795911EA32/wPfY1tVBY3Zf9vPi-zN_z-FQchk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 71:c7:ab:3b:54:55:1a:ee:11:de:3a:7f:0b:7a:db:30:f3:72: b9:dc:84:1d:70:ba:6c:71:58:48:36:e3:ef:d0:b6:0e:9a:2d: 88:f2:b5:77:65:fb:9b:f0:df:6a:ed:a8:10:42:d1:a9:33:5e: 53:06:da:1e:29:64:0f:2d:88:c5:6a:74:a5:da:18:95:32:c5: 2b:02:f7:c3:9b:a6:fe:f6:ca:f9:bd:c6:32:be:42:eb:88:86: 21:7a:d8:51:f2:85:f5:e5:e6:56:16:44:be:6a:97:27:b2:86: b7:de:b3:f9:5b:af:09:91:dd:2e:3a:db:99:46:af:3c:16:21: 42:3e:9e:5f:04:54:75:5b:d4:b8:03:97:b5:2c:6f:38:ae:21: 4c:90:75:5a:7e:bf:88:9f:05:94:c3:bb:c3:c2:5f:99:5d:d1: 30:91:f1:47:2f:8a:a3:b8:60:0f:57:9d:3e:e4:ee:d6:e4:75: 5c:db:da:9c:d1:16:cd:6f:8c:4c:18:34:b8:e9:ab:f5:89:04: ac:1d:d0:b8:ce:dd:f0:2e:85:f2:ea:94:65:23:93:b0:ce:6a: f6:fd:b3:b5:d8:3e:f3:3a:91:fa:68:fd:ab:7a:56:99:c8:98: 7e:c7:dc:cf:cb:6f:a3:93:73:a3:1a:f6:57:ce:2f:c3:88:ba: 4f:3a:11:7b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICL+owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTQ0NUMxMTAvBgNVBAUTKEMwRjdEOEQ2RDU0MTYzNzY1RkY2RjNFMkZCMzM3RkNG RTE1MDcyMTkwHhcNMjUwNjE0MTUyNjU2WhcNMjUwNjIxMTUyNjU2WjAYMRYwFAYD VQQDEw02ODRkOTRjMS0wYWFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwx6K6Cld4GKheyTsFs2/l1kg0SFKvW2rMCEwqm1JWBnUJXoVu+Mab+DjxXsi WBDU70tf7VaI5AtDNupfID45MPf/NcE1IJ0K0OiEwWkQWrp24IH2N1e4SNJQHTq6 XoV+q/4AjblKqFNk5/Mn//Nxeq3oxOijbySNmRaN/7kFvYyG1eFZUk/WTcScZbV1 OJ2HnTicIw6427EkdnveEtY7VkrHeGr6V1/mcD8JIHBNCGqtmoZbn+88p9cOjsT1 2VnoshrEcyl3W8vbHdSQwZmKhMG0Vyt9hDlyUGCPHgZH5j03BogSHzIm8IObsuMs dfhFFn/sI9HM/fcHWWOqZnJ1ewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJavqGX4 X+uCLZSAFdY+Q33+ld8zMB8GA1UdIwQYMBaAFMD32NbVQWN2X/bz4vszf8/hUHIZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNDQ1Qy81QThBRDA4ODBC MTgxMUUzQjYzN0M2Nzk1OTExRUEzMi93UGZZMXRWQlkzWmY5dlBpLXpOX3otRlFj aGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3dQZlkxdFZCWTNaZjl2UGktek5fei1GUWNoay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NDQ1Qy81QThBRDA4ODBCMTgxMUUzQjYzN0M2Nzk1OTExRUEzMi93UGZZMXRWQlkz WmY5dlBpLXpOX3otRlFjaGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBxx6s7VFUa7hHeOn8Letsw83K53IQdcLpscVhINuPv0LYOmi2I8rV3 Zfub8N9q7agQQtGpM15TBtoeKWQPLYjFanSl2hiVMsUrAvfDm6b+9sr5vcYyvkLr iIYhethR8oX15eZWFkS+apcnsoa33rP5W68Jkd0uOtuZRq88FiFCPp5fBFR1W9S4 A5e1LG84riFMkHVafr+InwWUw7vDwl+ZXdEwkfFHL4qjuGAPV50+5O7W5HVc29qc 0RbNb4xMGDS46av1iQSsHdC4zt3wLoXy6pRlI5Owzmr2/bO12D7zOpH6aP2relaZ yJh+x9zPy2+jk3OjGvZXzi/DiLpPOhF7 -----END CERTIFICATE-----Generated at Mon Jun 16 16:24:18 2025 by rpki-client