$ rpki-client -vvf rpki.apnic.net/member_repository/A91C2E87/A9F3C6EE129F11EAAB27202FC4F9AE02/WkoaHy2STehVVccdPbZrm7DkNkM.mft File: WkoaHy2STehVVccdPbZrm7DkNkM.mft (raw, json) Hash identifier: UEjw9w9+9ldVT4tiWBqcVALBp40YlbsdzGwX5Helh2E= Subject key identifier: CD:80:DF:17:A1:D6:63:38:D3:0A:92:DF:25:AD:5D:E6:6B:F4:23:43 Authority key identifier: 5A:4A:1A:1F:2D:92:4D:E8:55:55:C7:1D:3D:B6:6B:9B:B0:E4:36:43 Certificate issuer: /CN=A91C2E87/serialNumber=5A4A1A1F2D924DE85555C71D3DB66B9BB0E43643 Certificate serial: 0C09 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WkoaHy2STehVVccdPbZrm7DkNkM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C2E87/A9F3C6EE129F11EAAB27202FC4F9AE02/WkoaHy2STehVVccdPbZrm7DkNkM.mft Manifest number: 0BF1 Signing time: Thu 24 Apr 2025 18:40:58 +0000 Manifest this update: Thu 24 Apr 2025 18:40:58 +0000 Manifest next update: Thu 01 May 2025 18:40:58 +0000 Files and hashes: 1: WkoaHy2STehVVccdPbZrm7DkNkM.crl (hash: tZ2L7pIq8HIIRsAKslu9uhLreLYYCGO33Pv0E+tr85U=) 2: 4EB9FBD63CDE11EAB553996BC4F9AE02.roa (hash: 5Pl69Ojf2kmCxfLr0FSueU3iqe1LbesPtFydiCfx1IQ=) 3: 4F4A22E23CDE11EAB553996BC4F9AE02.roa (hash: 5dNjtUvyRJQ8rKds7M86B2djQAg4WheDaP9EfyZTla8=) 4: 504C179A3CDE11EAB553996BC4F9AE02.roa (hash: bqf4/Z70iNIgP7UdmtL9Kr8ESUyHQDpHnkrIZZGc+Nc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C2E87/A9F3C6EE129F11EAAB27202FC4F9AE02/WkoaHy2STehVVccdPbZrm7DkNkM.crl rsync://rpki.apnic.net/member_repository/A91C2E87/A9F3C6EE129F11EAAB27202FC4F9AE02/WkoaHy2STehVVccdPbZrm7DkNkM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WkoaHy2STehVVccdPbZrm7DkNkM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 18:40:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3081 (0xc09) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C2E87, serialNumber=5A4A1A1F2D924DE85555C71D3DB66B9BB0E43643 Validity Not Before: Apr 24 18:40:58 2025 GMT Not After : May 1 18:40:58 2025 GMT Subject: CN=680a85ba-6040 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:61:35:74:51:f0:8c:c8:31:a1:24:2a:77:50: 14:5e:ec:f5:2e:aa:85:8e:16:88:cc:21:dd:c4:0f: ad:d6:1c:d3:b4:ac:90:9f:f1:84:b4:eb:4d:20:23: c9:e8:df:aa:1d:fb:7d:fd:76:7e:aa:d5:7b:d4:a2: 73:3b:65:4b:a8:cd:06:68:2b:53:54:21:1b:e0:f4: 4f:17:d9:94:b4:86:7c:53:9c:2b:e4:1c:1a:9e:17: 69:26:e0:82:aa:8d:c5:a4:52:56:93:cf:58:fd:43: c0:bc:be:1b:ac:60:6b:3a:c3:61:56:92:4e:b8:e0: 30:97:37:1e:ad:16:18:10:17:19:54:0b:25:fc:b0: b8:6b:83:14:76:b2:c7:8f:6e:01:e1:0a:8c:af:81: 73:4e:58:0a:99:e9:b5:41:1c:79:b8:18:bc:94:d6: 31:1a:0a:3a:51:cb:99:fc:0f:92:fe:51:6d:c3:5d: 25:60:20:5a:33:e8:eb:c5:86:02:1e:52:97:5a:c4: af:03:43:77:d3:d8:3f:d5:0b:e4:62:7d:ab:5f:3d: 34:64:4a:10:e2:6b:1a:cc:08:0f:a1:db:15:27:5e: 20:62:a1:8c:75:d4:0e:51:e3:b5:4f:68:fa:4b:84: b1:f9:fa:18:8a:8a:5b:ab:38:c5:41:b9:5d:e7:bb: 91:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:80:DF:17:A1:D6:63:38:D3:0A:92:DF:25:AD:5D:E6:6B:F4:23:43 X509v3 Authority Key Identifier: keyid:5A:4A:1A:1F:2D:92:4D:E8:55:55:C7:1D:3D:B6:6B:9B:B0:E4:36:43 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C2E87/A9F3C6EE129F11EAAB27202FC4F9AE02/WkoaHy2STehVVccdPbZrm7DkNkM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WkoaHy2STehVVccdPbZrm7DkNkM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C2E87/A9F3C6EE129F11EAAB27202FC4F9AE02/WkoaHy2STehVVccdPbZrm7DkNkM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4e:fd:a8:81:ed:36:41:6d:4d:0a:42:10:33:f3:e3:ab:e8:80: 04:d0:dd:02:4d:0d:92:10:0d:d5:4e:2a:5b:70:29:17:1c:20: 9c:c4:9a:c7:f6:05:c5:2b:44:e5:4b:2c:57:db:cc:c1:ea:03: 5d:d1:ed:d2:da:16:c1:6f:fc:9f:92:a1:b8:3a:96:18:13:69: 9c:28:ce:e2:6b:ec:31:11:8b:c7:3a:30:2e:fc:84:57:4e:cc: cf:af:5a:f0:14:74:16:94:8c:18:df:5d:84:bb:0e:33:4d:ed: db:30:86:e5:5b:5d:46:60:8f:de:c3:f0:52:13:c6:6f:12:58: 90:37:d7:8b:a9:e5:3e:a7:d6:58:94:f1:b1:d3:d6:84:5f:e4: 38:39:99:04:b8:2d:2c:83:34:5a:d3:70:53:55:b4:e5:f1:bc: b8:41:0f:52:8d:e1:7a:fc:6a:6d:05:06:a5:0a:77:06:c9:75: 47:07:19:72:32:4e:7b:6a:8d:99:1f:9f:a5:b9:13:61:bf:39: 9a:39:1c:94:33:c8:c5:c0:22:48:49:1e:f2:c2:24:bb:b9:27: c8:8b:3a:bc:ed:33:37:f8:5e:f6:3e:0c:02:3b:36:ac:d9:8b: 1a:e4:0f:45:27:37:f3:30:da:49:c2:73:79:20:1d:26:2a:03: 5d:73:a2:59 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDAkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzJFODcxMTAvBgNVBAUTKDVBNEExQTFGMkQ5MjRERTg1NTU1QzcxRDNEQjY2QjlC QjBFNDM2NDMwHhcNMjUwNDI0MTg0MDU4WhcNMjUwNTAxMTg0MDU4WjAYMRYwFAYD VQQDEw02ODBhODViYS02MDQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0mE1dFHwjMgxoSQqd1AUXuz1LqqFjhaIzCHdxA+t1hzTtKyQn/GEtOtNICPJ 6N+qHft9/XZ+qtV71KJzO2VLqM0GaCtTVCEb4PRPF9mUtIZ8U5wr5BwanhdpJuCC qo3FpFJWk89Y/UPAvL4brGBrOsNhVpJOuOAwlzcerRYYEBcZVAsl/LC4a4MUdrLH j24B4QqMr4FzTlgKmem1QRx5uBi8lNYxGgo6UcuZ/A+S/lFtw10lYCBaM+jrxYYC HlKXWsSvA0N309g/1QvkYn2rXz00ZEoQ4msazAgPodsVJ14gYqGMddQOUeO1T2j6 S4Sx+foYiopbqzjFQbld57uRtQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM2A3xeh 1mM40wqS3yWtXeZr9CNDMB8GA1UdIwQYMBaAFFpKGh8tkk3oVVXHHT22a5uw5DZD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMkU4Ny9BOUYzQzZFRTEy OUYxMUVBQUIyNzIwMkZDNEY5QUUwMi9Xa29hSHkyU1RlaFZWY2NkUGJacm03RGtO a00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1drb2FIeTJTVGVoVlZjY2RQYlpybTdEa05rTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MkU4Ny9BOUYzQzZFRTEyOUYxMUVBQUIyNzIwMkZDNEY5QUUwMi9Xa29hSHkyU1Rl aFZWY2NkUGJacm03RGtOa00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBO/aiB7TZBbU0KQhAz8+Or6IAE0N0CTQ2SEA3VTipbcCkXHCCcxJrH 9gXFK0TlSyxX28zB6gNd0e3S2hbBb/yfkqG4OpYYE2mcKM7ia+wxEYvHOjAu/IRX TszPr1rwFHQWlIwY312Euw4zTe3bMIblW11GYI/ew/BSE8ZvEliQN9eLqeU+p9ZY lPGx09aEX+Q4OZkEuC0sgzRa03BTVbTl8by4QQ9SjeF6/GptBQalCncGyXVHBxly Mk57ao2ZH5+luRNhvzmaORyUM8jFwCJISR7ywiS7uSfIizq87TM3+F72PgwCOzas 2Ysa5A9FJzfzMNpJwnN5IB0mKgNdc6JZ -----END CERTIFICATE-----Generated at Sat Apr 26 04:20:45 2025 by rpki-client