$ rpki-client -vvf rpki.apnic.net/member_repository/A91DEFAF/07176240492C11EBA981BF52C4F9AE02/We3oFpsKLDIUaf8RsWKL3gwfLEE.mft File: We3oFpsKLDIUaf8RsWKL3gwfLEE.mft (raw, json) Hash identifier: AKwu1/a3/fjwqdftydyZRr+/17RaRp9JW7rTUhbEMRo= Subject key identifier: A2:F7:9F:39:0E:5F:64:9F:6E:1F:E5:8D:D9:9B:92:F5:CA:B2:44:41 Authority key identifier: 59:ED:E8:16:9B:0A:2C:32:14:69:FF:11:B1:62:8B:DE:0C:1F:2C:41 Certificate issuer: /CN=A91DEFAF/serialNumber=59EDE8169B0A2C321469FF11B1628BDE0C1F2C41 Certificate serial: 0709 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/We3oFpsKLDIUaf8RsWKL3gwfLEE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DEFAF/07176240492C11EBA981BF52C4F9AE02/We3oFpsKLDIUaf8RsWKL3gwfLEE.mft Manifest number: 0702 Signing time: Sat 14 Jun 2025 21:40:58 +0000 Manifest this update: Sat 14 Jun 2025 21:40:58 +0000 Manifest next update: Sat 21 Jun 2025 21:40:58 +0000 Files and hashes: 1: We3oFpsKLDIUaf8RsWKL3gwfLEE.crl (hash: ofHKqF+3P0TqQ6copnm6slGNZtBPsrOv2T78Er0s11Y=) 2: A793BA7E492D11EB8BE07D54C4F9AE02.roa (hash: rr5k3fKZgvDyXFLnJfEeotntvMNKxGcDJEuXf2w7Hns=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DEFAF/07176240492C11EBA981BF52C4F9AE02/We3oFpsKLDIUaf8RsWKL3gwfLEE.crl rsync://rpki.apnic.net/member_repository/A91DEFAF/07176240492C11EBA981BF52C4F9AE02/We3oFpsKLDIUaf8RsWKL3gwfLEE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/We3oFpsKLDIUaf8RsWKL3gwfLEE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 21:40:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1801 (0x709) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DEFAF, serialNumber=59EDE8169B0A2C321469FF11B1628BDE0C1F2C41 Validity Not Before: Jun 14 21:40:58 2025 GMT Not After : Jun 21 21:40:58 2025 GMT Subject: CN=684dec6a-a35f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:83:3f:b2:c6:01:69:33:04:a6:1b:89:47:6e: 9c:cb:16:1a:1f:38:67:04:c1:57:ed:cf:60:1f:79: 56:2d:ce:aa:a0:2f:99:7d:24:0b:0c:15:78:81:23: 3f:fb:4c:87:9c:ed:3c:57:1b:eb:f6:54:a9:de:25: 37:62:fa:f9:e3:ab:96:36:88:b8:fa:84:d2:24:37: 8c:ca:82:a4:24:a1:aa:42:f7:6a:3e:0f:79:dc:cc: 2f:b1:2a:10:8a:87:6a:0d:f0:33:d6:c7:17:02:0f: 85:ec:55:81:f6:5d:c0:54:c2:95:4c:8f:82:85:4b: 4d:d2:59:58:a8:55:1e:b7:84:b7:e4:88:b2:84:d2: a1:2a:c4:8b:d7:57:48:68:9e:2b:81:53:18:00:97: bd:b6:60:69:f6:37:93:9c:48:2d:77:12:f7:2c:a0: 0a:c0:cb:c9:e9:18:c4:ab:bc:f1:02:77:98:3a:d9: ac:67:2e:77:1d:ed:2b:54:7b:b5:6a:07:b0:d5:8f: f7:1a:a5:5d:6e:89:45:27:78:24:96:73:be:3e:cf: b1:98:fa:58:17:ca:0b:15:ad:75:74:90:3b:3a:5d: fc:73:2b:7d:c2:9f:e2:2e:09:9b:43:35:33:81:e1: 00:30:d4:36:c8:a2:9a:9a:41:25:13:5c:f6:ac:1a: 82:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:F7:9F:39:0E:5F:64:9F:6E:1F:E5:8D:D9:9B:92:F5:CA:B2:44:41 X509v3 Authority Key Identifier: keyid:59:ED:E8:16:9B:0A:2C:32:14:69:FF:11:B1:62:8B:DE:0C:1F:2C:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DEFAF/07176240492C11EBA981BF52C4F9AE02/We3oFpsKLDIUaf8RsWKL3gwfLEE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/We3oFpsKLDIUaf8RsWKL3gwfLEE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DEFAF/07176240492C11EBA981BF52C4F9AE02/We3oFpsKLDIUaf8RsWKL3gwfLEE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6d:30:57:aa:21:77:f7:1b:5e:a1:fc:17:90:aa:79:4e:28:e5: 32:7f:ed:64:f2:f6:7c:c5:e6:67:52:47:1a:13:68:80:3b:a9: f7:65:d6:4b:5e:e3:90:85:a5:85:2f:cb:58:2c:80:6b:92:ae: f5:89:5e:08:bc:a2:3c:1b:eb:21:a0:3d:7b:01:65:93:6e:64: bd:fc:51:43:2a:cc:5e:3b:40:29:57:b9:bb:bb:17:ef:e2:cc: 57:5d:ee:12:6c:8e:95:5d:ec:37:bc:ff:e6:ff:9d:21:db:eb: 52:a6:67:59:71:aa:f8:73:91:45:d6:b1:8d:7a:a9:93:9d:49: 7b:a5:60:06:e1:ce:a1:be:25:ef:8b:8d:50:f0:43:4c:b6:18: 4d:bc:1e:cc:3f:b5:92:c1:81:85:1a:b2:d4:ad:46:d3:9c:ed: 84:83:af:60:6b:e3:29:64:e6:e3:6e:a5:0e:cb:6a:d1:5d:bc: 4b:e1:3c:4e:49:f6:1b:72:44:62:00:7b:66:3a:52:f6:f9:f7: 9b:13:26:9d:a8:ed:b4:ba:da:d3:57:79:43:a2:7b:42:89:1f: 64:35:ef:0c:dd:c2:0c:f1:5b:9d:de:da:15:8e:6f:fb:a0:04: e2:38:35:23:be:de:ab:9d:46:13:11:dd:f5:97:bd:06:a1:48: c4:bf:8a:4d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBwkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REVGQUYxMTAvBgNVBAUTKDU5RURFODE2OUIwQTJDMzIxNDY5RkYxMUIxNjI4QkRF MEMxRjJDNDEwHhcNMjUwNjE0MjE0MDU4WhcNMjUwNjIxMjE0MDU4WjAYMRYwFAYD VQQDEw02ODRkZWM2YS1hMzVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuoM/ssYBaTMEphuJR26cyxYaHzhnBMFX7c9gH3lWLc6qoC+ZfSQLDBV4gSM/ +0yHnO08Vxvr9lSp3iU3Yvr546uWNoi4+oTSJDeMyoKkJKGqQvdqPg953MwvsSoQ iodqDfAz1scXAg+F7FWB9l3AVMKVTI+ChUtN0llYqFUet4S35IiyhNKhKsSL11dI aJ4rgVMYAJe9tmBp9jeTnEgtdxL3LKAKwMvJ6RjEq7zxAneYOtmsZy53He0rVHu1 agew1Y/3GqVdbolFJ3gklnO+Ps+xmPpYF8oLFa11dJA7Ol38cyt9wp/iLgmbQzUz geEAMNQ2yKKamkElE1z2rBqC4wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKL3nzkO X2Sfbh/ljdmbkvXKskRBMB8GA1UdIwQYMBaAFFnt6BabCiwyFGn/EbFii94MHyxB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERUZBRi8wNzE3NjI0MDQ5 MkMxMUVCQTk4MUJGNTJDNEY5QUUwMi9XZTNvRnBzS0xESVVhZjhSc1dLTDNnd2ZM RUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dlM29GcHNLTERJVWFmOFJzV0tMM2d3ZkxFRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RUZBRi8wNzE3NjI0MDQ5MkMxMUVCQTk4MUJGNTJDNEY5QUUwMi9XZTNvRnBzS0xE SVVhZjhSc1dLTDNnd2ZMRUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBtMFeqIXf3G16h/BeQqnlOKOUyf+1k8vZ8xeZnUkcaE2iAO6n3ZdZL XuOQhaWFL8tYLIBrkq71iV4IvKI8G+shoD17AWWTbmS9/FFDKsxeO0ApV7m7uxfv 4sxXXe4SbI6VXew3vP/m/50h2+tSpmdZcar4c5FF1rGNeqmTnUl7pWAG4c6hviXv i41Q8ENMthhNvB7MP7WSwYGFGrLUrUbTnO2Eg69ga+MpZObjbqUOy2rRXbxL4TxO SfYbckRiAHtmOlL2+febEyadqO20utrTV3lDontCiR9kNe8M3cIM8Vud3toVjm/7 oATiODUjvt6rnUYTEd31l70GoUjEv4pN -----END CERTIFICATE-----Generated at Sun Jun 15 08:35:48 2025 by rpki-client