$ rpki-client -vvf rpki.apnic.net/member_repository/A91E007B/09DE3482671311EAA4D26753C4F9AE02/wngM_VepmGmT2_bA1r3u92tFGXI.mft File: wngM_VepmGmT2_bA1r3u92tFGXI.mft (raw, json) Hash identifier: LBrfPAyQEdCs4byIAo1QEoLx2XEkC7qwQgeqHaTZ42g= Subject key identifier: 85:9F:4C:60:21:19:1C:89:FF:80:C2:52:26:2E:FD:D9:0D:65:AA:C3 Authority key identifier: C2:78:0C:FD:57:A9:98:69:93:DB:F6:C0:D6:BD:EE:F7:6B:45:19:72 Certificate issuer: /CN=A91E007B/serialNumber=C2780CFD57A9986993DBF6C0D6BDEEF76B451972 Certificate serial: 0A63 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wngM_VepmGmT2_bA1r3u92tFGXI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E007B/09DE3482671311EAA4D26753C4F9AE02/wngM_VepmGmT2_bA1r3u92tFGXI.mft Manifest number: 0A5A Signing time: Wed 18 Jun 2025 19:32:55 +0000 Manifest this update: Wed 18 Jun 2025 19:32:54 +0000 Manifest next update: Wed 25 Jun 2025 19:32:54 +0000 Files and hashes: 1: wngM_VepmGmT2_bA1r3u92tFGXI.crl (hash: pNIFjLUpb/voSyp0shtb7wMQ/yxftHQm3o7NTRLIKiY=) 2: 828FBA521E3511EB800DB148C4F9AE02.roa (hash: bbsqzdWTrHCUcjDQ3qFOyBjJItBXTD8UAHJWnxMcjUg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E007B/09DE3482671311EAA4D26753C4F9AE02/wngM_VepmGmT2_bA1r3u92tFGXI.crl rsync://rpki.apnic.net/member_repository/A91E007B/09DE3482671311EAA4D26753C4F9AE02/wngM_VepmGmT2_bA1r3u92tFGXI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wngM_VepmGmT2_bA1r3u92tFGXI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Jun 2025 19:32:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2659 (0xa63) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E007B, serialNumber=C2780CFD57A9986993DBF6C0D6BDEEF76B451972 Validity Not Before: Jun 18 19:32:54 2025 GMT Not After : Jun 25 19:32:54 2025 GMT Subject: CN=68531467-f6bf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:c8:fb:f3:10:42:a3:f1:96:b3:40:f2:8d:dc: 23:ae:b3:ba:a3:16:fe:b1:64:6e:c0:23:dc:ca:27: 7f:5f:6f:97:92:bc:dc:a4:3c:87:5d:2a:f0:99:59: 16:99:0c:ec:ad:27:3e:41:18:a5:0a:5f:bc:31:f2: f8:55:04:04:c8:69:06:68:b8:ef:98:23:34:0b:22: 8a:9b:f8:b8:9e:7f:55:3d:0e:c3:80:43:f4:f6:4d: e8:d2:50:97:e5:9c:b9:3f:a8:af:8d:2a:22:6b:3a: 68:cf:49:5d:e2:18:60:cd:e3:40:c7:15:2a:ce:c5: 49:cb:ae:a5:56:54:2c:5f:0f:57:5b:f2:b8:df:bf: ff:fa:c4:9e:5a:b7:bb:ad:7b:b2:e7:16:36:a9:9f: 23:29:33:a1:b3:3d:62:1a:b9:61:8d:dd:ab:cd:23: 49:32:6f:cc:cd:1b:a6:c0:02:c4:1e:b2:a3:7b:69: ac:18:0d:df:03:cc:4f:37:e1:81:33:7f:d7:ee:83: e6:2f:37:24:97:fa:69:c6:ed:18:60:4a:34:81:70: c5:67:d9:05:c6:31:49:91:b0:cb:9f:68:db:8f:95: 44:85:0f:a9:01:05:4b:3c:b7:ab:07:02:8c:9e:37: 33:42:66:db:c5:c3:92:51:28:e5:0e:37:5e:d4:1b: cb:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:9F:4C:60:21:19:1C:89:FF:80:C2:52:26:2E:FD:D9:0D:65:AA:C3 X509v3 Authority Key Identifier: keyid:C2:78:0C:FD:57:A9:98:69:93:DB:F6:C0:D6:BD:EE:F7:6B:45:19:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E007B/09DE3482671311EAA4D26753C4F9AE02/wngM_VepmGmT2_bA1r3u92tFGXI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wngM_VepmGmT2_bA1r3u92tFGXI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E007B/09DE3482671311EAA4D26753C4F9AE02/wngM_VepmGmT2_bA1r3u92tFGXI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 52:d6:ad:4f:06:f4:14:0d:93:5d:de:ab:d7:1a:83:0d:17:48: 2a:cf:99:a0:75:97:38:fc:b0:93:c0:e6:2b:36:e0:72:db:5e: a6:93:7f:96:d1:36:08:64:2c:e2:a0:ad:76:a5:17:2b:5a:cc: 95:d0:ee:02:44:b2:6c:cb:9c:5d:e3:af:5d:80:0e:8a:ad:7e: e3:3e:a8:f7:17:eb:61:3f:3b:b4:1a:99:e4:dd:4a:fc:35:8b: 78:2d:8e:5e:ed:3d:b9:55:ac:92:a1:77:35:d7:fd:c2:36:fe: 71:d9:55:7e:19:1d:3d:9c:07:6c:64:c8:46:51:df:27:30:be: 58:c1:17:a7:ba:ce:06:a0:a4:9a:db:e8:6f:9f:28:9d:d5:24: fe:40:16:b9:e3:3f:dd:d0:fb:1d:ac:69:51:1a:bc:4d:4a:5f: ae:99:05:22:e1:ca:17:e5:68:8b:ec:c8:77:e5:ce:47:75:1f: da:3d:8a:eb:89:4d:8c:18:78:84:e4:d5:b9:af:61:5f:da:1a: 4a:b9:d8:9a:63:47:e2:6c:e7:c1:b3:62:55:ea:ed:a0:0f:91: cb:31:b2:f2:ec:ae:0e:19:d8:3d:d1:eb:52:85:96:cb:bf:fd: 72:d2:82:6d:c7:6d:80:0a:e4:1a:9b:5f:95:b9:ed:f6:50:ea: b2:c8:59:fe -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCmMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTAwN0IxMTAvBgNVBAUTKEMyNzgwQ0ZENTdBOTk4Njk5M0RCRjZDMEQ2QkRFRUY3 NkI0NTE5NzIwHhcNMjUwNjE4MTkzMjU0WhcNMjUwNjI1MTkzMjU0WjAYMRYwFAYD VQQDEw02ODUzMTQ2Ny1mNmJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4Mj78xBCo/GWs0DyjdwjrrO6oxb+sWRuwCPcyid/X2+XkrzcpDyHXSrwmVkW mQzsrSc+QRilCl+8MfL4VQQEyGkGaLjvmCM0CyKKm/i4nn9VPQ7DgEP09k3o0lCX 5Zy5P6ivjSoiazpoz0ld4hhgzeNAxxUqzsVJy66lVlQsXw9XW/K437//+sSeWre7 rXuy5xY2qZ8jKTOhsz1iGrlhjd2rzSNJMm/MzRumwALEHrKje2msGA3fA8xPN+GB M3/X7oPmLzckl/ppxu0YYEo0gXDFZ9kFxjFJkbDLn2jbj5VEhQ+pAQVLPLerBwKM njczQmbbxcOSUSjlDjde1BvL/wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIWfTGAh GRyJ/4DCUiYu/dkNZarDMB8GA1UdIwQYMBaAFMJ4DP1XqZhpk9v2wNa97vdrRRly MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMDA3Qi8wOURFMzQ4MjY3 MTMxMUVBQTREMjY3NTNDNEY5QUUwMi93bmdNX1ZlcG1HbVQyX2JBMXIzdTkydEZH WEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3duZ01fVmVwbUdtVDJfYkExcjN1OTJ0RkdYSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MDA3Qi8wOURFMzQ4MjY3MTMxMUVBQTREMjY3NTNDNEY5QUUwMi93bmdNX1ZlcG1H bVQyX2JBMXIzdTkydEZHWEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBS1q1PBvQUDZNd3qvXGoMNF0gqz5mgdZc4/LCTwOYrNuBy216mk3+W 0TYIZCzioK12pRcrWsyV0O4CRLJsy5xd469dgA6KrX7jPqj3F+thPzu0Gpnk3Ur8 NYt4LY5e7T25VaySoXc11/3CNv5x2VV+GR09nAdsZMhGUd8nML5YwRenus4GoKSa 2+hvnyid1ST+QBa54z/d0PsdrGlRGrxNSl+umQUi4coX5WiL7Mh35c5HdR/aPYrr iU2MGHiE5NW5r2Ff2hpKudiaY0fibOfBs2JV6u2gD5HLMbLy7K4OGdg90etShZbL v/1y0oJtx22ACuQam1+Vue32UOqyyFn+ -----END CERTIFICATE-----Generated at Fri Jun 20 02:12:56 2025 by rpki-client