$ rpki-client -vvf rpki.apnic.net/member_repository/A91C2E87/A9F3C6EE129F11EAAB27202FC4F9AE02/WkoaHy2STehVVccdPbZrm7DkNkM.mft File: WkoaHy2STehVVccdPbZrm7DkNkM.mft (raw, json) Hash identifier: KYDd9zdMQVa5XE3Z/XUx0z/haIGufGqPNZkjLbGn6o4= Subject key identifier: 0D:6C:C0:E4:B4:FE:23:F3:90:09:E5:2D:9A:B4:07:C9:5A:42:04:21 Authority key identifier: 5A:4A:1A:1F:2D:92:4D:E8:55:55:C7:1D:3D:B6:6B:9B:B0:E4:36:43 Certificate issuer: /CN=A91C2E87/serialNumber=5A4A1A1F2D924DE85555C71D3DB66B9BB0E43643 Certificate serial: 0C3C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WkoaHy2STehVVccdPbZrm7DkNkM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C2E87/A9F3C6EE129F11EAAB27202FC4F9AE02/WkoaHy2STehVVccdPbZrm7DkNkM.mft Manifest number: 0C24 Signing time: Mon 04 Aug 2025 18:54:11 +0000 Manifest this update: Mon 04 Aug 2025 18:54:10 +0000 Manifest next update: Mon 11 Aug 2025 18:54:10 +0000 Files and hashes: 1: WkoaHy2STehVVccdPbZrm7DkNkM.crl (hash: ulLIC7R4ocqiPgAqQTr+3tZ//1P0msV2eLCSGrPlCeQ=) 2: 4EB9FBD63CDE11EAB553996BC4F9AE02.roa (hash: 5Pl69Ojf2kmCxfLr0FSueU3iqe1LbesPtFydiCfx1IQ=) 3: 4F4A22E23CDE11EAB553996BC4F9AE02.roa (hash: 5dNjtUvyRJQ8rKds7M86B2djQAg4WheDaP9EfyZTla8=) 4: 504C179A3CDE11EAB553996BC4F9AE02.roa (hash: bqf4/Z70iNIgP7UdmtL9Kr8ESUyHQDpHnkrIZZGc+Nc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C2E87/A9F3C6EE129F11EAAB27202FC4F9AE02/WkoaHy2STehVVccdPbZrm7DkNkM.crl rsync://rpki.apnic.net/member_repository/A91C2E87/A9F3C6EE129F11EAAB27202FC4F9AE02/WkoaHy2STehVVccdPbZrm7DkNkM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WkoaHy2STehVVccdPbZrm7DkNkM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 11 Aug 2025 18:54:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3132 (0xc3c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C2E87, serialNumber=5A4A1A1F2D924DE85555C71D3DB66B9BB0E43643 Validity Not Before: Aug 4 18:54:10 2025 GMT Not After : Aug 11 18:54:10 2025 GMT Subject: CN=689101d2-1970 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:a5:af:b2:da:ad:09:fd:48:a0:7a:5e:0b:8c: 3d:d9:89:84:04:a3:20:3a:89:49:9a:e2:66:a0:9c: e2:53:24:de:06:7a:f0:54:51:53:85:8f:24:19:48: 55:5d:0a:9d:02:e4:c6:03:95:c0:3a:44:8e:2d:90: f1:7f:b5:9b:04:2e:c0:a5:a1:ad:e0:31:f9:41:66: 6d:c1:65:cd:8d:78:e9:ed:05:03:23:bd:23:76:46: 08:63:55:c2:02:51:29:6e:0e:75:04:c0:f1:16:1b: 4f:24:2c:c0:90:7d:98:8a:67:c4:83:c6:b6:b0:92: b2:c5:d9:02:1e:f4:c2:55:6f:c5:ad:ec:4f:d2:9a: f2:71:a9:48:45:43:25:16:fb:e1:ab:5c:17:12:17: 48:92:da:a5:3d:fc:91:59:e9:f9:ca:e9:77:87:2c: 0b:1d:dd:a2:4a:6f:ae:e7:8b:80:64:6b:45:4f:57: 32:f7:15:e9:bf:86:47:f3:9a:8e:83:f5:b6:bd:59: 52:90:1b:05:6e:98:c5:cf:7f:3d:25:68:38:d3:a8: 22:08:4b:a7:8f:30:c7:d6:be:87:8c:ee:86:c5:55: d6:31:f9:0b:9d:20:17:0d:5c:d9:f0:4e:6b:7f:16: 47:d4:ac:83:61:16:12:a5:c6:89:bc:16:a7:a2:46: db:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:6C:C0:E4:B4:FE:23:F3:90:09:E5:2D:9A:B4:07:C9:5A:42:04:21 X509v3 Authority Key Identifier: keyid:5A:4A:1A:1F:2D:92:4D:E8:55:55:C7:1D:3D:B6:6B:9B:B0:E4:36:43 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C2E87/A9F3C6EE129F11EAAB27202FC4F9AE02/WkoaHy2STehVVccdPbZrm7DkNkM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WkoaHy2STehVVccdPbZrm7DkNkM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C2E87/A9F3C6EE129F11EAAB27202FC4F9AE02/WkoaHy2STehVVccdPbZrm7DkNkM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 97:3b:1f:8e:62:4e:c7:f5:e4:4f:d8:8a:7c:47:5f:92:83:53: 7f:15:06:37:2f:cf:89:21:89:04:55:df:a2:2c:8b:64:5d:a0: ba:16:e6:07:77:6f:bc:24:66:26:57:dd:b2:15:5f:a6:7d:38: a7:bd:7a:30:f4:f8:5e:93:78:80:50:94:a9:fa:41:c8:62:3c: d7:fb:54:30:43:40:05:af:b2:42:de:bc:17:e7:2d:52:a2:19: c0:41:3a:0e:8e:c3:f5:0f:35:1a:04:38:07:ee:da:78:08:b0: 14:ff:15:85:7b:2e:c3:f1:36:b5:9c:aa:d2:35:56:fa:7e:55: 46:cd:be:87:db:18:38:f0:1b:97:2c:bd:d0:58:2f:ce:ef:3c: e8:69:aa:0b:79:a3:95:05:87:ea:84:ec:28:97:69:00:64:e5: 8c:4b:d0:5f:c4:5b:69:d1:4b:e5:df:69:38:bd:61:18:61:8d: 34:d6:60:26:7a:01:42:55:cf:01:ca:a8:a9:26:e2:01:bb:6e: 3b:1c:c4:16:ae:4e:d9:9d:2c:a8:52:95:a5:5f:29:f3:65:18: 70:08:86:df:3b:69:9b:99:55:46:86:63:47:f4:5b:0d:f2:b0: ab:ec:7a:8f:d1:aa:34:b7:8f:27:a5:14:64:82:10:d1:f0:4a: 47:31:d7:da -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDDwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzJFODcxMTAvBgNVBAUTKDVBNEExQTFGMkQ5MjRERTg1NTU1QzcxRDNEQjY2QjlC QjBFNDM2NDMwHhcNMjUwODA0MTg1NDEwWhcNMjUwODExMTg1NDEwWjAYMRYwFAYD VQQDEw02ODkxMDFkMi0xOTcwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3qWvstqtCf1IoHpeC4w92YmEBKMgOolJmuJmoJziUyTeBnrwVFFThY8kGUhV XQqdAuTGA5XAOkSOLZDxf7WbBC7ApaGt4DH5QWZtwWXNjXjp7QUDI70jdkYIY1XC AlEpbg51BMDxFhtPJCzAkH2YimfEg8a2sJKyxdkCHvTCVW/FrexP0prycalIRUMl Fvvhq1wXEhdIktqlPfyRWen5yul3hywLHd2iSm+u54uAZGtFT1cy9xXpv4ZH85qO g/W2vVlSkBsFbpjFz389JWg406giCEunjzDH1r6HjO6GxVXWMfkLnSAXDVzZ8E5r fxZH1KyDYRYSpcaJvBanokbbIwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA1swOS0 /iPzkAnlLZq0B8laQgQhMB8GA1UdIwQYMBaAFFpKGh8tkk3oVVXHHT22a5uw5DZD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMkU4Ny9BOUYzQzZFRTEy OUYxMUVBQUIyNzIwMkZDNEY5QUUwMi9Xa29hSHkyU1RlaFZWY2NkUGJacm03RGtO a00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1drb2FIeTJTVGVoVlZjY2RQYlpybTdEa05rTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MkU4Ny9BOUYzQzZFRTEyOUYxMUVBQUIyNzIwMkZDNEY5QUUwMi9Xa29hSHkyU1Rl aFZWY2NkUGJacm03RGtOa00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCXOx+OYk7H9eRP2Ip8R1+Sg1N/FQY3L8+JIYkEVd+iLItkXaC6FuYH d2+8JGYmV92yFV+mfTinvXow9Phek3iAUJSp+kHIYjzX+1QwQ0AFr7JC3rwX5y1S ohnAQToOjsP1DzUaBDgH7tp4CLAU/xWFey7D8Ta1nKrSNVb6flVGzb6H2xg48BuX LL3QWC/O7zzoaaoLeaOVBYfqhOwol2kAZOWMS9BfxFtp0Uvl32k4vWEYYY001mAm egFCVc8ByqipJuIBu247HMQWrk7ZnSyoUpWlXynzZRhwCIbfO2mbmVVGhmNH9FsN 8rCr7HqP0ao0t48npRRkghDR8EpHMdfa -----END CERTIFICATE-----Generated at Wed Aug 6 11:10:41 2025 by rpki-client