$ rpki-client -vvf rpki.apnic.net/member_repository/A914A75A/3FAA7C54F48711EF849A2772C4F9AE02/WO7lLSrgkuxVhuBw5kYsNjUPpuE.mft File: WO7lLSrgkuxVhuBw5kYsNjUPpuE.mft (raw, json) Hash identifier: 0rwl1UYp8BLlFlc2UQQIOwSqW8mV5Iru/NoOOQokOGc= Subject key identifier: 13:F1:C6:5B:2E:C6:99:B9:91:1F:E7:3F:E2:C1:C1:FF:84:9F:F2:3B Authority key identifier: 58:EE:E5:2D:2A:E0:92:EC:55:86:E0:70:E6:46:2C:36:35:0F:A6:E1 Certificate issuer: /CN=A914A75A/serialNumber=58EEE52D2AE092EC5586E070E6462C36350FA6E1 Certificate serial: 5C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WO7lLSrgkuxVhuBw5kYsNjUPpuE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914A75A/3FAA7C54F48711EF849A2772C4F9AE02/WO7lLSrgkuxVhuBw5kYsNjUPpuE.mft Manifest number: 5B Signing time: Sat 23 Aug 2025 07:21:50 +0000 Manifest this update: Sat 23 Aug 2025 07:21:50 +0000 Manifest next update: Sat 30 Aug 2025 07:21:50 +0000 Files and hashes: 1: WO7lLSrgkuxVhuBw5kYsNjUPpuE.crl (hash: 4VOWS65RDZZSH1RrhQhQslyxG7Dz5XyaC552cBcOYNY=) 2: D56D67B0F48711EFBB2D9D73C4F9AE02.roa (hash: IcKmF13UvgbjR5e+pq74azw6DFKPoTGhWhM8VYVh+JY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914A75A/3FAA7C54F48711EF849A2772C4F9AE02/WO7lLSrgkuxVhuBw5kYsNjUPpuE.crl rsync://rpki.apnic.net/member_repository/A914A75A/3FAA7C54F48711EF849A2772C4F9AE02/WO7lLSrgkuxVhuBw5kYsNjUPpuE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WO7lLSrgkuxVhuBw5kYsNjUPpuE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 07:21:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 92 (0x5c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914A75A, serialNumber=58EEE52D2AE092EC5586E070E6462C36350FA6E1 Validity Not Before: Aug 23 07:21:50 2025 GMT Not After : Aug 30 07:21:50 2025 GMT Subject: CN=68a96c0e-6b22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:df:b6:65:ac:65:9e:f1:ed:91:a4:9c:ea:09: 65:6d:1b:b7:b3:a4:e0:d4:77:31:be:ae:28:c4:5a: 23:cb:65:9a:d7:f4:b6:84:ae:75:fe:dc:59:af:c4: 81:98:60:80:4f:00:49:5b:e5:65:ed:be:37:bf:27: bf:37:76:f1:6f:e9:5b:7b:75:3f:5b:71:10:c1:a5: 6c:8a:a4:66:70:5c:de:c2:2f:34:8c:87:cc:48:96: 76:4c:e5:f9:bd:22:5f:4c:8c:35:30:4e:4b:75:07: 79:d5:0f:96:3a:4d:94:3a:5b:e3:b5:94:0d:88:ab: 4a:26:27:df:85:61:e1:36:01:3d:3b:24:fc:02:26: 28:15:59:6d:ce:85:49:6e:fd:4e:df:14:48:7b:10: aa:9f:ca:18:a4:ed:9a:ed:0d:99:29:45:1a:d4:3f: 1f:c5:9b:2d:ac:b3:a1:f2:81:05:6b:f5:b2:9c:f4: 50:af:4d:c6:a3:14:82:7d:eb:15:15:28:8c:5f:f6: dc:98:c6:50:b2:c6:d3:6d:03:4c:d8:ab:03:4b:6f: 72:65:a7:45:eb:5b:ea:12:5e:86:75:28:7b:74:e7: 8c:7c:6e:50:4f:3b:81:8d:e2:3b:5f:88:a1:9c:44: bb:9f:4d:92:e1:de:1e:38:af:42:36:da:34:50:ed: 5e:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:F1:C6:5B:2E:C6:99:B9:91:1F:E7:3F:E2:C1:C1:FF:84:9F:F2:3B X509v3 Authority Key Identifier: keyid:58:EE:E5:2D:2A:E0:92:EC:55:86:E0:70:E6:46:2C:36:35:0F:A6:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914A75A/3FAA7C54F48711EF849A2772C4F9AE02/WO7lLSrgkuxVhuBw5kYsNjUPpuE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WO7lLSrgkuxVhuBw5kYsNjUPpuE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914A75A/3FAA7C54F48711EF849A2772C4F9AE02/WO7lLSrgkuxVhuBw5kYsNjUPpuE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5b:e4:bb:7b:12:a9:bf:90:94:1d:7d:cd:02:18:c9:c3:1a:7f: ab:33:16:ee:fd:42:83:81:c3:6e:c0:93:7e:8e:26:38:9a:4d: 35:d9:18:cc:0a:eb:a5:c3:3a:07:7c:ef:a5:f1:40:7f:ae:4d: a3:7f:10:6a:6e:8d:9c:81:4f:d9:99:1c:e3:48:1e:d5:fb:2b: f2:13:f8:0a:70:de:64:80:fc:b2:2c:75:c5:20:32:96:a6:f4: 28:20:dd:6f:81:ba:e5:88:e4:65:7f:59:5d:2a:5f:72:41:33: 0d:88:e4:b9:c1:51:cb:4d:b5:5a:94:d0:96:60:b3:82:a3:71: ce:02:ce:54:76:39:79:24:0e:f5:cf:ab:68:cd:d8:08:ca:1f: 7f:28:5e:8b:5f:35:13:53:ec:31:de:9d:1e:ff:b5:42:0d:a8: 83:6e:0b:f8:b2:a7:72:64:06:e2:7d:16:27:67:d8:58:7f:39: 83:0b:d4:0f:25:bb:ca:5e:46:f5:45:fe:98:84:b8:d6:79:4d: 34:13:ed:3b:1a:65:a4:f3:36:2f:e8:3a:c5:37:c8:6f:a9:9a: f0:76:03:a9:5b:94:af:19:a6:50:e9:22:bb:58:97:c5:6d:be: d6:72:98:27:f1:a5:47:78:5c:72:1e:fa:25:b0:61:d4:9f:79: 78:f1:15:5f -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBXDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 QTc1QTExMC8GA1UEBRMoNThFRUU1MkQyQUUwOTJFQzU1ODZFMDcwRTY0NjJDMzYz NTBGQTZFMTAeFw0yNTA4MjMwNzIxNTBaFw0yNTA4MzAwNzIxNTBaMBgxFjAUBgNV BAMTDTY4YTk2YzBlLTZiMjIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDC37ZlrGWe8e2RpJzqCWVtG7ezpODUdzG+rijEWiPLZZrX9LaErnX+3FmvxIGY YIBPAElb5WXtvje/J783dvFv6Vt7dT9bcRDBpWyKpGZwXN7CLzSMh8xIlnZM5fm9 Il9MjDUwTkt1B3nVD5Y6TZQ6W+O1lA2Iq0omJ9+FYeE2AT07JPwCJigVWW3OhUlu /U7fFEh7EKqfyhik7ZrtDZkpRRrUPx/Fmy2ss6HygQVr9bKc9FCvTcajFIJ96xUV KIxf9tyYxlCyxtNtA0zYqwNLb3Jlp0XrW+oSXoZ1KHt054x8blBPO4GN4jtfiKGc RLufTZLh3h44r0I22jRQ7V4vAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUE/HGWy7G mbmRH+c/4sHB/4Sf8jswHwYDVR0jBBgwFoAUWO7lLSrgkuxVhuBw5kYsNjUPpuEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTRBNzVBLzNGQUE3QzU0RjQ4 NzExRUY4NDlBMjc3MkM0RjlBRTAyL1dPN2xMU3Jna3V4Vmh1Qnc1a1lzTmpVUHB1 RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvV083bExTcmdrdXhWaHVCdzVrWXNOalVQcHVFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTRB NzVBLzNGQUE3QzU0RjQ4NzExRUY4NDlBMjc3MkM0RjlBRTAyL1dPN2xMU3Jna3V4 Vmh1Qnc1a1lzTmpVUHB1RS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFvku3sSqb+QlB19zQIYycMaf6szFu79QoOBw27Ak36OJjiaTTXZGMwK 66XDOgd876XxQH+uTaN/EGpujZyBT9mZHONIHtX7K/IT+Apw3mSA/LIsdcUgMpam 9Cgg3W+BuuWI5GV/WV0qX3JBMw2I5LnBUctNtVqU0JZgs4Kjcc4CzlR2OXkkDvXP q2jN2AjKH38oXotfNRNT7DHenR7/tUINqINuC/iyp3JkBuJ9Fidn2Fh/OYML1A8l u8peRvVF/piEuNZ5TTQT7TsaZaTzNi/oOsU3yG+pmvB2A6lblK8ZplDpIrtYl8Vt vtZymCfxpUd4XHIe+iWwYdSfeXjxFV8= -----END CERTIFICATE-----Generated at Sat Aug 23 19:39:11 2025 by rpki-client