$ rpki-client -vvf rpki.apnic.net/member_repository/A912871A/05BD0F30524011EC8658060EC4F9AE02/WF3cT9n54xQAXzcZj9HiLmgknes.mft File: WF3cT9n54xQAXzcZj9HiLmgknes.mft (raw, json) Hash identifier: wsjBHjUkP29GT1O0L6gbtmbfa7wLDEV9ZmNBvlsEEqk= Subject key identifier: 00:AB:46:1A:1E:29:E5:E3:E8:B7:C7:94:70:55:7A:5D:20:05:4C:C9 Authority key identifier: 58:5D:DC:4F:D9:F9:E3:14:00:5F:37:19:8F:D1:E2:2E:68:24:9D:EB Certificate issuer: /CN=A912871A/serialNumber=585DDC4FD9F9E314005F37198FD1E22E68249DEB Certificate serial: 0454 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WF3cT9n54xQAXzcZj9HiLmgknes.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912871A/05BD0F30524011EC8658060EC4F9AE02/WF3cT9n54xQAXzcZj9HiLmgknes.mft Manifest number: 044F Signing time: Tue 13 May 2025 00:00:46 +0000 Manifest this update: Tue 13 May 2025 00:00:45 +0000 Manifest next update: Tue 20 May 2025 00:00:45 +0000 Files and hashes: 1: WF3cT9n54xQAXzcZj9HiLmgknes.crl (hash: uJzUv3iKHnDUh/zXYM3DqaPE+vAnoYOZZily9HDSNX4=) 2: 5431D022524211ECA52D990FC4F9AE02.roa (hash: ngVDpB9EeVUj1wtwuXlGNZD63XjFCao61CO9K4ARPTk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912871A/05BD0F30524011EC8658060EC4F9AE02/WF3cT9n54xQAXzcZj9HiLmgknes.crl rsync://rpki.apnic.net/member_repository/A912871A/05BD0F30524011EC8658060EC4F9AE02/WF3cT9n54xQAXzcZj9HiLmgknes.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WF3cT9n54xQAXzcZj9HiLmgknes.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 00:00:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1108 (0x454) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912871A, serialNumber=585DDC4FD9F9E314005F37198FD1E22E68249DEB Validity Not Before: May 13 00:00:45 2025 GMT Not After : May 20 00:00:45 2025 GMT Subject: CN=68228bae-dc73 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:18:b8:60:ed:9a:89:40:34:42:61:ef:cb:ce: b6:81:9f:ad:c0:d5:57:12:79:63:91:f8:66:42:3a: 9d:6c:d8:97:3d:4f:5e:1f:d4:80:51:db:a5:05:2a: 24:6e:fe:3c:f4:77:4b:42:04:19:d5:5b:9b:35:31: 1c:45:d9:d6:ae:af:fc:a2:0e:16:a1:34:13:fb:99: ec:a5:59:b3:4a:68:94:56:f4:0f:26:8a:0b:f1:64: e1:e9:d6:52:ff:a2:11:4e:ee:e4:4d:46:01:07:16: 21:ef:4d:15:c3:c4:ae:c9:23:f6:11:99:92:fa:e8: 7e:52:b3:29:0f:17:d1:90:e4:24:df:5a:2f:f2:5b: fe:d6:49:1b:b3:df:6d:96:f2:f5:54:7f:a4:9c:d4: 66:94:08:fb:68:51:6a:69:29:73:69:68:09:7a:8e: fb:32:3e:28:10:03:d8:5c:d1:ca:8b:e9:d2:59:d2: df:be:d7:48:0e:d2:60:f8:ff:c7:cc:b3:92:17:02: 02:6a:d2:98:2c:18:d5:ca:de:34:56:9b:10:27:e9: 4b:f0:d1:20:84:b8:28:52:0a:9f:87:29:82:be:96: 6f:cb:c9:41:c6:5f:2c:9b:ad:1e:64:ec:d9:15:3f: 10:37:6f:c9:10:b6:7a:18:f9:9d:e9:82:15:db:bc: a6:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:AB:46:1A:1E:29:E5:E3:E8:B7:C7:94:70:55:7A:5D:20:05:4C:C9 X509v3 Authority Key Identifier: keyid:58:5D:DC:4F:D9:F9:E3:14:00:5F:37:19:8F:D1:E2:2E:68:24:9D:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912871A/05BD0F30524011EC8658060EC4F9AE02/WF3cT9n54xQAXzcZj9HiLmgknes.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WF3cT9n54xQAXzcZj9HiLmgknes.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912871A/05BD0F30524011EC8658060EC4F9AE02/WF3cT9n54xQAXzcZj9HiLmgknes.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7e:04:4d:8e:3e:0e:db:15:14:b7:45:91:93:cc:7b:b1:7d:54: a8:37:5a:94:08:28:2e:87:f5:3d:52:97:81:24:2e:a9:33:4f: be:b7:4c:7f:90:27:b7:ef:f6:b4:70:35:03:b8:0f:39:6b:cb: c2:3f:17:6f:a4:39:ea:a0:ac:2f:f9:0e:70:2c:18:34:2b:97: e0:ac:3e:7d:a6:2c:6c:4a:5e:97:d2:3e:06:17:d7:c1:bd:e7: a2:7d:0a:a7:2b:0c:07:5a:6d:36:d9:65:61:24:ab:0b:55:d6: c1:fb:58:71:b1:3d:81:b6:77:79:4a:1c:52:64:2f:c8:86:84: 53:f1:be:5c:a5:3c:5d:4d:e9:ca:94:f2:c7:c5:29:79:ec:ed: 28:32:4b:51:61:a1:26:1c:90:f8:89:ef:da:e7:b0:20:64:49: 91:75:87:c1:df:8a:67:26:13:e5:02:9d:66:08:71:98:29:75: b8:d5:73:be:cf:20:89:db:77:c2:ff:90:17:d4:7b:69:d5:c5: 78:a8:3a:36:fb:a3:4a:84:31:8d:33:ef:8a:9b:10:71:0d:24: 42:f3:7f:51:e8:ef:7d:43:27:26:31:71:69:c5:70:8c:f5:b5: 86:00:b5:44:9e:36:2b:63:f7:ef:32:22:a0:67:83:ec:4b:75: 04:be:9e:16 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBFQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjg3MUExMTAvBgNVBAUTKDU4NUREQzRGRDlGOUUzMTQwMDVGMzcxOThGRDFFMjJF NjgyNDlERUIwHhcNMjUwNTEzMDAwMDQ1WhcNMjUwNTIwMDAwMDQ1WjAYMRYwFAYD VQQDEw02ODIyOGJhZS1kYzczMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1Ri4YO2aiUA0QmHvy862gZ+twNVXEnljkfhmQjqdbNiXPU9eH9SAUdulBSok bv489HdLQgQZ1VubNTEcRdnWrq/8og4WoTQT+5nspVmzSmiUVvQPJooL8WTh6dZS /6IRTu7kTUYBBxYh700Vw8SuySP2EZmS+uh+UrMpDxfRkOQk31ov8lv+1kkbs99t lvL1VH+knNRmlAj7aFFqaSlzaWgJeo77Mj4oEAPYXNHKi+nSWdLfvtdIDtJg+P/H zLOSFwICatKYLBjVyt40VpsQJ+lL8NEghLgoUgqfhymCvpZvy8lBxl8sm60eZOzZ FT8QN2/JELZ6GPmd6YIV27ym9wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFACrRhoe KeXj6LfHlHBVel0gBUzJMB8GA1UdIwQYMBaAFFhd3E/Z+eMUAF83GY/R4i5oJJ3r MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyODcxQS8wNUJEMEYzMDUy NDAxMUVDODY1ODA2MEVDNEY5QUUwMi9XRjNjVDluNTR4UUFYemNaajlIaUxtZ2tu ZXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dGM2NUOW41NHhRQVh6Y1pqOUhpTG1na25lcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy ODcxQS8wNUJEMEYzMDUyNDAxMUVDODY1ODA2MEVDNEY5QUUwMi9XRjNjVDluNTR4 UUFYemNaajlIaUxtZ2tuZXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB+BE2OPg7bFRS3RZGTzHuxfVSoN1qUCCguh/U9UpeBJC6pM0++t0x/ kCe37/a0cDUDuA85a8vCPxdvpDnqoKwv+Q5wLBg0K5fgrD59pixsSl6X0j4GF9fB veeifQqnKwwHWm022WVhJKsLVdbB+1hxsT2Btnd5ShxSZC/IhoRT8b5cpTxdTenK lPLHxSl57O0oMktRYaEmHJD4ie/a57AgZEmRdYfB34pnJhPlAp1mCHGYKXW41XO+ zyCJ23fC/5AX1Htp1cV4qDo2+6NKhDGNM++KmxBxDSRC839R6O99QycmMXFpxXCM 9bWGALVEnjYrY/fvMiKgZ4PsS3UEvp4W -----END CERTIFICATE-----Generated at Wed May 14 01:08:56 2025 by rpki-client