$ rpki-client -vvf rpki.apnic.net/member_repository/A9144EC5/439E3C28C51111EB91640C87C4F9AE02/WAfnFR1ax7dL8iyZCSvS6S6mBig.mft File: WAfnFR1ax7dL8iyZCSvS6S6mBig.mft (raw, json) Hash identifier: yaODCBTYDx2J2nMzW2qdxe1n8oEFkjEJVxKe7cMR2wo= Subject key identifier: A4:EC:39:64:A4:2F:39:2B:17:B0:6D:F6:C3:03:85:60:83:7C:8E:AD Authority key identifier: 58:07:E7:15:1D:5A:C7:B7:4B:F2:2C:99:09:2B:D2:E9:2E:A6:06:28 Certificate issuer: /CN=A9144EC5/serialNumber=5807E7151D5AC7B74BF22C99092BD2E92EA60628 Certificate serial: 05DB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WAfnFR1ax7dL8iyZCSvS6S6mBig.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9144EC5/439E3C28C51111EB91640C87C4F9AE02/WAfnFR1ax7dL8iyZCSvS6S6mBig.mft Manifest number: 05D0 Signing time: Wed 02 Jul 2025 23:21:56 +0000 Manifest this update: Wed 02 Jul 2025 23:21:55 +0000 Manifest next update: Wed 09 Jul 2025 23:21:55 +0000 Files and hashes: 1: WAfnFR1ax7dL8iyZCSvS6S6mBig.crl (hash: FMh/SR9iTYWlxf9mJeF8e7gb58tp6aHwqt6DIytM1wM=) 2: 9CCB30B0C5F411EB8A6F1525C4F9AE02.roa (hash: W3evTqtE3AeQu/+UCpmY09IhagDrzP1HZj8k+plv7KQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9144EC5/439E3C28C51111EB91640C87C4F9AE02/WAfnFR1ax7dL8iyZCSvS6S6mBig.crl rsync://rpki.apnic.net/member_repository/A9144EC5/439E3C28C51111EB91640C87C4F9AE02/WAfnFR1ax7dL8iyZCSvS6S6mBig.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WAfnFR1ax7dL8iyZCSvS6S6mBig.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 23:21:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1499 (0x5db) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9144EC5, serialNumber=5807E7151D5AC7B74BF22C99092BD2E92EA60628 Validity Not Before: Jul 2 23:21:55 2025 GMT Not After : Jul 9 23:21:55 2025 GMT Subject: CN=6865bf13-8fd1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:cb:b7:87:c8:2c:1e:5b:72:bd:77:e6:b9:0a: 5b:34:b7:23:26:ff:e4:e7:c6:0e:41:db:74:10:a8: 87:15:22:9c:80:58:1e:be:b2:a9:17:b8:21:c8:b9: bb:46:fa:24:60:3f:c7:a6:ff:df:2b:e4:32:fe:80: 35:2f:ee:20:88:fd:17:f5:0f:66:e8:85:bd:e5:dd: 6d:54:be:4f:e7:23:54:3f:26:f2:a1:05:02:18:c4: c7:61:48:59:de:2b:33:37:37:bd:4b:5b:43:85:51: f9:5c:31:7a:ef:91:ce:e1:a3:1c:57:27:3e:68:bf: 0e:08:ba:73:d2:f4:8f:b7:68:d6:22:d0:fb:fb:a5: bd:28:59:9b:fa:96:e0:ad:5d:2e:c9:1a:55:da:87: eb:91:47:b8:12:fe:c5:eb:ef:47:ab:ca:6e:d9:50: 0d:04:09:a0:e3:a2:80:eb:7f:72:9c:0f:7b:10:1f: 29:88:d4:4c:7f:a8:3c:45:3c:17:cf:45:28:75:e3: 6f:f6:63:c2:84:16:79:24:46:68:7c:53:b3:06:4d: 2b:4e:6c:99:dc:2c:d1:ec:0f:91:46:18:65:5d:95: 4f:41:aa:e7:c5:f0:1f:e7:40:a3:63:05:4b:65:5b: 35:b4:7b:25:e7:28:3e:cf:0d:c9:c0:c6:ab:70:42: 5d:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:EC:39:64:A4:2F:39:2B:17:B0:6D:F6:C3:03:85:60:83:7C:8E:AD X509v3 Authority Key Identifier: keyid:58:07:E7:15:1D:5A:C7:B7:4B:F2:2C:99:09:2B:D2:E9:2E:A6:06:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9144EC5/439E3C28C51111EB91640C87C4F9AE02/WAfnFR1ax7dL8iyZCSvS6S6mBig.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WAfnFR1ax7dL8iyZCSvS6S6mBig.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9144EC5/439E3C28C51111EB91640C87C4F9AE02/WAfnFR1ax7dL8iyZCSvS6S6mBig.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:f3:fe:ad:6c:77:00:21:da:6c:9c:15:0c:21:2f:f5:ce:c2: b8:29:bb:d5:b9:36:24:b2:f4:9d:32:6b:ac:41:7b:40:02:80: d6:e3:dd:06:fc:01:11:42:3a:96:98:e5:8d:3b:4f:56:f1:a9: 34:b3:34:0e:d7:fb:d9:53:80:46:ce:00:d7:11:54:6d:ba:d3: b6:06:da:4c:eb:1a:79:39:f5:c6:65:b6:17:d2:ae:c3:bd:1d: 06:37:5d:c0:e8:67:d0:ba:9c:e3:c3:a6:d3:af:aa:0d:2a:02: 18:be:25:ec:30:cf:cb:a2:f5:84:d1:8d:6a:c2:10:1e:77:f0: 8c:4d:dc:20:48:69:f9:6c:69:60:50:e3:5f:53:37:72:b7:07: f4:8a:68:fb:2d:b4:ff:07:fb:21:2d:4e:4d:a7:50:df:53:eb: 17:1b:16:f2:8a:ad:d4:a3:8e:20:95:55:15:5e:08:03:97:44: a0:48:36:23:de:ba:7f:d9:5e:c4:ad:08:87:86:af:58:b0:ce: 9e:ec:45:d6:a0:fa:7c:8e:38:97:d6:22:8d:36:9b:08:16:bb: 68:c3:a5:18:94:b0:e2:9b:88:82:32:d8:87:bd:47:23:1f:1c: e7:bf:67:92:8a:14:48:06:ea:22:6b:f3:d3:03:d6:c1:6d:34: 44:06:85:09 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBdswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDRFQzUxMTAvBgNVBAUTKDU4MDdFNzE1MUQ1QUM3Qjc0QkYyMkM5OTA5MkJEMkU5 MkVBNjA2MjgwHhcNMjUwNzAyMjMyMTU1WhcNMjUwNzA5MjMyMTU1WjAYMRYwFAYD VQQDEw02ODY1YmYxMy04ZmQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArsu3h8gsHltyvXfmuQpbNLcjJv/k58YOQdt0EKiHFSKcgFgevrKpF7ghyLm7 RvokYD/Hpv/fK+Qy/oA1L+4giP0X9Q9m6IW95d1tVL5P5yNUPybyoQUCGMTHYUhZ 3iszNze9S1tDhVH5XDF675HO4aMcVyc+aL8OCLpz0vSPt2jWItD7+6W9KFmb+pbg rV0uyRpV2ofrkUe4Ev7F6+9Hq8pu2VANBAmg46KA639ynA97EB8piNRMf6g8RTwX z0UodeNv9mPChBZ5JEZofFOzBk0rTmyZ3CzR7A+RRhhlXZVPQarnxfAf50CjYwVL ZVs1tHsl5yg+zw3JwMarcEJdbQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKTsOWSk LzkrF7Bt9sMDhWCDfI6tMB8GA1UdIwQYMBaAFFgH5xUdWse3S/IsmQkr0ukupgYo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NEVDNS80MzlFM0MyOEM1 MTExMUVCOTE2NDBDODdDNEY5QUUwMi9XQWZuRlIxYXg3ZEw4aXlaQ1N2UzZTNm1C aWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dBZm5GUjFheDdkTDhpeVpDU3ZTNlM2bUJpZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NEVDNS80MzlFM0MyOEM1MTExMUVCOTE2NDBDODdDNEY5QUUwMi9XQWZuRlIxYXg3 ZEw4aXlaQ1N2UzZTNm1CaWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA68/6tbHcAIdpsnBUMIS/1zsK4KbvVuTYksvSdMmusQXtAAoDW490G /AERQjqWmOWNO09W8ak0szQO1/vZU4BGzgDXEVRtutO2BtpM6xp5OfXGZbYX0q7D vR0GN13A6GfQupzjw6bTr6oNKgIYviXsMM/LovWE0Y1qwhAed/CMTdwgSGn5bGlg UONfUzdytwf0imj7LbT/B/shLU5Np1DfU+sXGxbyiq3Uo44glVUVXggDl0SgSDYj 3rp/2V7ErQiHhq9YsM6e7EXWoPp8jjiX1iKNNpsIFrtow6UYlLDim4iCMtiHvUcj Hxznv2eSihRIBuoia/PTA9bBbTREBoUJ -----END CERTIFICATE-----Generated at Thu Jul 3 20:38:48 2025 by rpki-client