$ rpki-client -vvf rpki.apnic.net/member_repository/A912871A/05BD0F30524011EC8658060EC4F9AE02/WF3cT9n54xQAXzcZj9HiLmgknes.mft File: WF3cT9n54xQAXzcZj9HiLmgknes.mft (raw, json) Hash identifier: 2BD5MUgZ07qS4mxD9e7anZeSkNVFdgYuZoIEww+ugeM= Subject key identifier: 05:D5:86:FB:B1:A3:91:D4:B6:BD:B4:DB:47:7D:61:78:47:B8:29:88 Authority key identifier: 58:5D:DC:4F:D9:F9:E3:14:00:5F:37:19:8F:D1:E2:2E:68:24:9D:EB Certificate issuer: /CN=A912871A/serialNumber=585DDC4FD9F9E314005F37198FD1E22E68249DEB Certificate serial: 0487 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WF3cT9n54xQAXzcZj9HiLmgknes.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912871A/05BD0F30524011EC8658060EC4F9AE02/WF3cT9n54xQAXzcZj9HiLmgknes.mft Manifest number: 0482 Signing time: Sat 23 Aug 2025 00:16:43 +0000 Manifest this update: Sat 23 Aug 2025 00:16:43 +0000 Manifest next update: Sat 30 Aug 2025 00:16:43 +0000 Files and hashes: 1: WF3cT9n54xQAXzcZj9HiLmgknes.crl (hash: UeYwX2ceLmVuAHwHc+S4S2J3kQl0wXTrqettGua+3CU=) 2: 5431D022524211ECA52D990FC4F9AE02.roa (hash: ngVDpB9EeVUj1wtwuXlGNZD63XjFCao61CO9K4ARPTk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912871A/05BD0F30524011EC8658060EC4F9AE02/WF3cT9n54xQAXzcZj9HiLmgknes.crl rsync://rpki.apnic.net/member_repository/A912871A/05BD0F30524011EC8658060EC4F9AE02/WF3cT9n54xQAXzcZj9HiLmgknes.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WF3cT9n54xQAXzcZj9HiLmgknes.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 00:16:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1159 (0x487) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912871A, serialNumber=585DDC4FD9F9E314005F37198FD1E22E68249DEB Validity Not Before: Aug 23 00:16:43 2025 GMT Not After : Aug 30 00:16:43 2025 GMT Subject: CN=68a9086b-b91b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:c4:11:ea:67:45:91:6d:6f:7e:1a:86:45:b4: 27:11:e8:c0:ae:d0:04:c6:ba:9d:12:e6:07:a5:75: a6:ff:ea:1c:5d:f0:e3:f4:0e:26:38:14:8a:88:2d: 1f:18:e9:20:fc:a3:d6:df:e5:6f:bf:bd:81:2a:49: 12:5c:a1:fb:00:17:49:f2:9a:64:c3:33:b3:e0:e0: ee:1e:7f:d9:9b:e6:3e:f6:4a:49:17:3c:b4:20:b5: d5:59:b6:99:f3:84:dd:c9:aa:ab:7c:95:85:75:97: 52:79:32:12:92:c8:c7:1f:cd:73:3e:71:8b:77:9b: 73:70:9c:a6:64:e7:9c:b8:91:5c:5d:89:d4:25:bf: d8:cc:81:1e:70:be:f7:d8:fb:50:03:8a:8a:d3:90: e2:bc:01:72:24:8d:16:7a:bd:9d:72:ed:42:00:e4: 4a:f7:c7:b7:bb:b0:66:ee:a2:2f:7f:05:ea:e6:5b: df:e7:1f:5e:82:56:cb:3a:ff:f0:3f:8d:b3:fe:ca: 8b:fc:a6:bd:47:1b:35:d3:6c:30:83:1c:0b:40:20: bb:cc:c5:15:a9:e5:90:fb:44:87:19:08:d8:23:81: 72:ac:58:f7:52:2f:5b:9b:ce:80:31:eb:4a:4e:c2: 44:9c:b7:65:f1:0c:56:2f:b8:95:c2:1c:50:98:3e: 5b:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:D5:86:FB:B1:A3:91:D4:B6:BD:B4:DB:47:7D:61:78:47:B8:29:88 X509v3 Authority Key Identifier: keyid:58:5D:DC:4F:D9:F9:E3:14:00:5F:37:19:8F:D1:E2:2E:68:24:9D:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912871A/05BD0F30524011EC8658060EC4F9AE02/WF3cT9n54xQAXzcZj9HiLmgknes.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WF3cT9n54xQAXzcZj9HiLmgknes.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912871A/05BD0F30524011EC8658060EC4F9AE02/WF3cT9n54xQAXzcZj9HiLmgknes.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b4:9b:b8:98:43:7b:c5:d8:e3:48:6e:d8:06:2c:f0:fb:2d:bf: 48:9e:64:02:9b:90:15:f4:1d:69:4b:d2:a1:57:ee:e6:74:d4: 13:09:d7:82:67:16:a7:d3:dc:92:3e:83:46:66:5f:13:d5:62: 39:b2:6a:d6:63:d9:03:0a:15:36:e5:4c:fe:03:a3:99:58:bb: 5d:6b:46:b2:e6:c3:cd:0f:0d:8f:44:19:db:ca:75:10:b7:9a: e1:e3:88:d8:76:21:40:26:c3:1c:7a:5c:72:c3:8b:18:cd:1f: 37:05:7f:4f:42:a6:4e:ce:6c:9c:61:28:38:dc:0e:60:d1:70: 58:c7:26:7c:42:af:10:49:56:68:81:73:6d:4d:52:4c:f2:72: 5b:ca:fb:d8:b3:1e:e9:4e:72:b6:65:27:69:96:a1:d1:3f:22: 17:b9:5c:f8:e2:76:84:4d:5c:e3:a9:3d:29:3d:e1:e9:c5:f3: 70:a0:e5:cb:c8:99:00:1c:32:fc:92:b6:79:62:31:21:45:b5: 20:ea:75:f4:d8:44:01:88:a2:b9:32:3a:17:4b:cf:2b:eb:27: a9:f5:1f:ab:af:12:53:f0:05:19:8f:dd:da:e2:9d:fc:af:4f: 02:58:b4:37:0e:bb:b3:0e:6f:f0:23:ee:0a:5c:07:44:bc:7f: f0:d9:ca:69 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBIcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjg3MUExMTAvBgNVBAUTKDU4NUREQzRGRDlGOUUzMTQwMDVGMzcxOThGRDFFMjJF NjgyNDlERUIwHhcNMjUwODIzMDAxNjQzWhcNMjUwODMwMDAxNjQzWjAYMRYwFAYD VQQDEw02OGE5MDg2Yi1iOTFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA18QR6mdFkW1vfhqGRbQnEejArtAExrqdEuYHpXWm/+ocXfDj9A4mOBSKiC0f GOkg/KPW3+Vvv72BKkkSXKH7ABdJ8ppkwzOz4ODuHn/Zm+Y+9kpJFzy0ILXVWbaZ 84TdyaqrfJWFdZdSeTISksjHH81zPnGLd5tzcJymZOecuJFcXYnUJb/YzIEecL73 2PtQA4qK05DivAFyJI0Wer2dcu1CAORK98e3u7Bm7qIvfwXq5lvf5x9eglbLOv/w P42z/sqL/Ka9Rxs102wwgxwLQCC7zMUVqeWQ+0SHGQjYI4FyrFj3Ui9bm86AMetK TsJEnLdl8QxWL7iVwhxQmD5bcQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAXVhvux o5HUtr2020d9YXhHuCmIMB8GA1UdIwQYMBaAFFhd3E/Z+eMUAF83GY/R4i5oJJ3r MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyODcxQS8wNUJEMEYzMDUy NDAxMUVDODY1ODA2MEVDNEY5QUUwMi9XRjNjVDluNTR4UUFYemNaajlIaUxtZ2tu ZXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dGM2NUOW41NHhRQVh6Y1pqOUhpTG1na25lcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy ODcxQS8wNUJEMEYzMDUyNDAxMUVDODY1ODA2MEVDNEY5QUUwMi9XRjNjVDluNTR4 UUFYemNaajlIaUxtZ2tuZXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC0m7iYQ3vF2ONIbtgGLPD7Lb9InmQCm5AV9B1pS9KhV+7mdNQTCdeC Zxan09ySPoNGZl8T1WI5smrWY9kDChU25Uz+A6OZWLtda0ay5sPNDw2PRBnbynUQ t5rh44jYdiFAJsMcelxyw4sYzR83BX9PQqZOzmycYSg43A5g0XBYxyZ8Qq8QSVZo gXNtTVJM8nJbyvvYsx7pTnK2ZSdplqHRPyIXuVz44naETVzjqT0pPeHpxfNwoOXL yJkAHDL8krZ5YjEhRbUg6nX02EQBiKK5MjoXS88r6yep9R+rrxJT8AUZj93a4p38 r08CWLQ3DruzDm/wI+4KXAdEvH/w2cpp -----END CERTIFICATE-----Generated at Sun Aug 24 02:36:40 2025 by rpki-client