$ rpki-client -vvf rpki.apnic.net/member_repository/A91E11D6/77DEFD32063911ED818C4016C4F9AE02/woYQciwbyJvjK01LiizCHeZxfMg.mft File: woYQciwbyJvjK01LiizCHeZxfMg.mft (raw, json) Hash identifier: PcQNsQzOgkDjQ3Wy1ymX8qyzg3U9wl8qFXZ+WJPY0VI= Subject key identifier: 40:3E:98:25:4B:51:46:48:BE:6F:0F:AD:11:0C:7D:0B:C3:C9:17:5D Authority key identifier: C2:86:10:72:2C:1B:C8:9B:E3:2B:4D:4B:8A:2C:C2:1D:E6:71:7C:C8 Certificate issuer: /CN=A91E11D6/serialNumber=C28610722C1BC89BE32B4D4B8A2CC21DE6717CC8 Certificate serial: 029D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/woYQciwbyJvjK01LiizCHeZxfMg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E11D6/77DEFD32063911ED818C4016C4F9AE02/woYQciwbyJvjK01LiizCHeZxfMg.mft Manifest number: 0297 Signing time: Fri 13 Jun 2025 01:05:32 +0000 Manifest this update: Fri 13 Jun 2025 01:05:32 +0000 Manifest next update: Fri 20 Jun 2025 01:05:32 +0000 Files and hashes: 1: woYQciwbyJvjK01LiizCHeZxfMg.crl (hash: 5p21v00MISvsG1OtWO9FbpZrE9xfe7JzdiBLr8iuoNA=) 2: ACBFA1221CD111EFB2BDF412C4F9AE02.roa (hash: ifFLN+8twN04B6jY6cx/b65AiJj/Z2yB7h3ev34IjTI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E11D6/77DEFD32063911ED818C4016C4F9AE02/woYQciwbyJvjK01LiizCHeZxfMg.crl rsync://rpki.apnic.net/member_repository/A91E11D6/77DEFD32063911ED818C4016C4F9AE02/woYQciwbyJvjK01LiizCHeZxfMg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/woYQciwbyJvjK01LiizCHeZxfMg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 01:05:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 669 (0x29d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E11D6, serialNumber=C28610722C1BC89BE32B4D4B8A2CC21DE6717CC8 Validity Not Before: Jun 13 01:05:32 2025 GMT Not After : Jun 20 01:05:32 2025 GMT Subject: CN=684b795c-faf7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:60:cc:5f:03:07:21:b0:31:fe:5d:ca:fc:ed: bf:94:04:27:e4:a0:27:cb:6e:9c:58:9a:8b:6c:f2: 84:55:23:ff:66:7d:54:c3:aa:bd:62:47:9c:d8:12: eb:c7:f5:86:f8:74:9c:72:e6:a8:27:eb:b9:d7:4b: 46:08:91:6b:d8:64:0f:7f:a4:29:17:20:ed:8a:db: c9:b9:ad:4a:19:69:02:30:44:d1:07:c8:ad:13:9f: fb:07:c3:94:52:ba:58:72:e4:9c:40:e2:5f:a7:f0: e9:04:1b:42:b7:e9:3f:a9:cf:2e:dd:5c:e8:0e:08: 65:44:96:c4:2f:f5:d9:db:e2:71:7f:02:a6:2e:15: f0:9d:4d:08:cb:24:9f:39:cb:b8:b5:0c:2b:43:7d: e1:33:a2:bf:84:99:db:e0:5f:6c:5d:46:e3:52:4f: 7d:2d:94:c3:a0:73:ad:4a:66:de:1b:e6:72:0e:5c: ff:d3:20:ea:81:68:c8:5e:09:b8:b2:99:4e:79:21: 19:80:17:ba:17:fd:e5:e5:58:a3:7a:ae:f7:46:71: 5c:f5:ee:c5:b2:c9:87:52:47:f7:a8:a2:ef:8e:3c: b4:ee:88:8c:5a:e1:ea:23:21:fb:c1:f5:f3:7a:35: 3a:3e:94:1c:67:40:ab:f1:cf:43:9d:6a:92:2b:4f: bc:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:3E:98:25:4B:51:46:48:BE:6F:0F:AD:11:0C:7D:0B:C3:C9:17:5D X509v3 Authority Key Identifier: keyid:C2:86:10:72:2C:1B:C8:9B:E3:2B:4D:4B:8A:2C:C2:1D:E6:71:7C:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E11D6/77DEFD32063911ED818C4016C4F9AE02/woYQciwbyJvjK01LiizCHeZxfMg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/woYQciwbyJvjK01LiizCHeZxfMg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E11D6/77DEFD32063911ED818C4016C4F9AE02/woYQciwbyJvjK01LiizCHeZxfMg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 38:39:88:46:16:93:5d:16:7b:f1:dc:62:c9:86:0f:f7:2e:6d: d4:8b:d7:40:8b:80:34:43:54:6f:0d:0f:93:72:9f:c8:fb:80: 19:7a:7f:db:c9:1a:15:a0:61:31:26:fa:8a:80:ac:ef:3f:cf: b7:04:6e:46:9f:aa:a4:99:4b:19:e1:a2:dd:3d:51:bb:16:59: 0a:a0:6e:fe:01:f4:59:36:15:01:93:db:79:52:f7:de:25:9b: df:00:8a:0b:58:d2:24:09:d8:4b:b8:45:88:ca:ed:53:7a:7c: 4a:c4:f0:a4:21:4f:85:b9:e8:d9:ee:bc:9c:6c:a8:e4:3f:4c: 26:9f:f5:79:ab:4e:1b:43:33:db:d5:71:c7:43:df:ef:b4:e9: 9e:b7:b7:5a:b2:38:01:64:81:32:be:05:f5:e1:51:ba:58:84: 34:c9:79:c4:4f:42:d4:ec:9e:9e:e7:6f:e1:6b:0c:78:5b:c0: 71:af:22:29:c9:fe:04:06:cf:46:24:c9:f6:ac:33:55:54:a4: dc:c6:96:a3:92:08:8e:ad:e0:ea:ea:0d:c9:9e:0c:31:53:d8: 8e:e7:a1:74:c4:88:19:1c:ea:c9:76:08:85:28:d1:6f:ed:ee: 84:e4:fb:bb:bb:57:81:bc:59:e2:b8:80:3c:92:53:b6:8e:b5: 65:a5:b4:b6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAp0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTExRDYxMTAvBgNVBAUTKEMyODYxMDcyMkMxQkM4OUJFMzJCNEQ0QjhBMkNDMjFE RTY3MTdDQzgwHhcNMjUwNjEzMDEwNTMyWhcNMjUwNjIwMDEwNTMyWjAYMRYwFAYD VQQDEw02ODRiNzk1Yy1mYWY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA72DMXwMHIbAx/l3K/O2/lAQn5KAny26cWJqLbPKEVSP/Zn1Uw6q9Ykec2BLr x/WG+HSccuaoJ+u510tGCJFr2GQPf6QpFyDtitvJua1KGWkCMETRB8itE5/7B8OU UrpYcuScQOJfp/DpBBtCt+k/qc8u3VzoDghlRJbEL/XZ2+JxfwKmLhXwnU0IyySf Ocu4tQwrQ33hM6K/hJnb4F9sXUbjUk99LZTDoHOtSmbeG+ZyDlz/0yDqgWjIXgm4 splOeSEZgBe6F/3l5Vijeq73RnFc9e7FssmHUkf3qKLvjjy07oiMWuHqIyH7wfXz ejU6PpQcZ0Cr8c9DnWqSK0+8mwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEA+mCVL UUZIvm8PrREMfQvDyRddMB8GA1UdIwQYMBaAFMKGEHIsG8ib4ytNS4oswh3mcXzI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMTFENi83N0RFRkQzMjA2 MzkxMUVEODE4QzQwMTZDNEY5QUUwMi93b1lRY2l3YnlKdmpLMDFMaWl6Q0hlWnhm TWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3dvWVFjaXdieUp2akswMUxpaXpDSGVaeGZNZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MTFENi83N0RFRkQzMjA2MzkxMUVEODE4QzQwMTZDNEY5QUUwMi93b1lRY2l3YnlK dmpLMDFMaWl6Q0hlWnhmTWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA4OYhGFpNdFnvx3GLJhg/3Lm3Ui9dAi4A0Q1RvDQ+Tcp/I+4AZen/b yRoVoGExJvqKgKzvP8+3BG5Gn6qkmUsZ4aLdPVG7FlkKoG7+AfRZNhUBk9t5Uvfe JZvfAIoLWNIkCdhLuEWIyu1TenxKxPCkIU+FuejZ7rycbKjkP0wmn/V5q04bQzPb 1XHHQ9/vtOmet7dasjgBZIEyvgX14VG6WIQ0yXnET0LU7J6e52/hawx4W8BxryIp yf4EBs9GJMn2rDNVVKTcxpajkgiOreDq6g3JngwxU9iO56F0xIgZHOrJdgiFKNFv 7e6E5Pu7u1eBvFniuIA8klO2jrVlpbS2 -----END CERTIFICATE-----Generated at Sat Jun 14 19:34:35 2025 by rpki-client