$ rpki-client -vvf rpki.apnic.net/member_repository/A914C086/A8114F581DA211E2A0558B9508B02CD2/1WjiWa6pXRNIxmPjlfyma-wQwwk.mft File: 1WjiWa6pXRNIxmPjlfyma-wQwwk.mft (raw, json) Hash identifier: gGo4+G7Y9ilSKCMj8ufh9lPgJelAZpuYDo3HKcq1N8I= Subject key identifier: 6B:53:75:4D:3D:95:8C:6C:96:5A:6B:D7:3B:1A:18:BB:E6:14:52:D5 Authority key identifier: D5:68:E2:59:AE:A9:5D:13:48:C6:63:E3:95:FC:A6:6B:EC:10:C3:09 Certificate issuer: /CN=A914C086/serialNumber=D568E259AEA95D1348C663E395FCA66BEC10C309 Certificate serial: 347C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1WjiWa6pXRNIxmPjlfyma-wQwwk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914C086/A8114F581DA211E2A0558B9508B02CD2/1WjiWa6pXRNIxmPjlfyma-wQwwk.mft Manifest number: 347B Signing time: Mon 12 May 2025 15:05:29 +0000 Manifest this update: Mon 12 May 2025 15:05:28 +0000 Manifest next update: Mon 19 May 2025 15:05:28 +0000 Files and hashes: 1: 1WjiWa6pXRNIxmPjlfyma-wQwwk.crl (hash: Gu76qANIkBOPzTGHiBI9FBsIMUfRE5UFgAt2qFOzEgY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914C086/A8114F581DA211E2A0558B9508B02CD2/1WjiWa6pXRNIxmPjlfyma-wQwwk.crl rsync://rpki.apnic.net/member_repository/A914C086/A8114F581DA211E2A0558B9508B02CD2/1WjiWa6pXRNIxmPjlfyma-wQwwk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1WjiWa6pXRNIxmPjlfyma-wQwwk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 15:05:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13436 (0x347c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914C086, serialNumber=D568E259AEA95D1348C663E395FCA66BEC10C309 Validity Not Before: May 12 15:05:28 2025 GMT Not After : May 19 15:05:28 2025 GMT Subject: CN=68220e38-cc1d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:c1:88:2b:26:ae:52:d4:22:ad:23:5b:ab:88: 9a:ea:54:bd:be:45:e7:4d:98:71:0a:33:d8:7b:08: 8b:92:63:71:30:b6:58:54:e1:1c:aa:50:f5:1f:6c: 50:17:1d:06:05:b3:2b:97:0c:f1:2c:d3:30:d8:e5: 20:5d:35:a1:4e:ed:05:0d:f1:73:c1:6d:d7:e8:2d: 1a:9c:ac:cf:ea:5b:8a:72:0f:e0:e0:08:0c:ea:4d: c9:44:b7:9a:77:40:09:0c:c0:65:c2:26:1d:b2:9d: ff:01:77:0b:57:52:24:03:77:b0:26:f0:6b:8f:f8: 86:2e:ae:72:ec:94:d7:c4:de:43:e0:17:4d:2e:f7: 6b:1c:d5:df:1f:9b:99:a4:2b:1a:05:a6:95:74:bb: 98:4a:d4:60:4c:a3:49:0c:05:4b:fa:b6:84:4c:4e: d7:e8:26:a3:c5:c2:d3:32:97:29:19:76:1c:07:4b: 0e:2b:35:68:82:0f:05:d9:af:02:b7:a5:d8:64:42: ab:07:c4:67:11:52:42:73:c2:4e:00:8a:10:e6:72: ab:a7:ab:25:c6:26:68:1a:90:15:13:da:12:f8:c9: fd:67:81:56:2b:81:0c:46:1a:47:41:83:50:ab:22: ed:bf:5f:f5:57:10:95:db:3e:d3:68:90:20:f0:3f: 32:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:53:75:4D:3D:95:8C:6C:96:5A:6B:D7:3B:1A:18:BB:E6:14:52:D5 X509v3 Authority Key Identifier: keyid:D5:68:E2:59:AE:A9:5D:13:48:C6:63:E3:95:FC:A6:6B:EC:10:C3:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914C086/A8114F581DA211E2A0558B9508B02CD2/1WjiWa6pXRNIxmPjlfyma-wQwwk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1WjiWa6pXRNIxmPjlfyma-wQwwk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914C086/A8114F581DA211E2A0558B9508B02CD2/1WjiWa6pXRNIxmPjlfyma-wQwwk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5a:b7:60:a2:d2:66:00:90:48:83:0d:e9:72:df:a1:0b:cd:13: 6e:08:1d:b2:3d:01:d8:49:70:d9:c1:a0:7b:2e:d0:d6:e7:fb: 59:6d:ca:a0:44:45:47:16:6f:ba:01:5f:72:f3:46:69:b5:7e: 3a:04:f6:45:1b:32:ac:d7:9d:e1:e2:1a:d5:0b:d9:f3:98:70: 7b:56:30:f3:ef:48:6a:ee:45:0d:dd:e4:44:41:a7:7a:b8:a5: 83:0e:74:e3:d9:ce:cf:11:fa:8a:83:74:0b:e3:f1:ee:5f:e0: 66:2c:1b:2f:d2:ae:97:b4:c7:71:e6:c7:87:c4:d8:7f:fe:9a: 17:43:f8:69:b2:c0:07:e7:e8:34:0d:5c:a0:36:7c:4e:10:3a: 93:1a:d0:1f:4e:a3:40:38:df:a5:f5:30:b6:3a:56:68:2e:7a: 21:59:39:d3:00:9d:2e:95:8e:5d:0a:2a:0c:f7:8f:b1:71:53: 8b:6b:05:97:19:ef:fc:cf:d4:db:a7:2c:b7:53:bf:0e:14:28: c7:63:7a:89:6f:c5:fd:64:6d:4b:be:93:8b:26:7f:67:b1:c2: 1e:67:fb:11:43:e1:df:6a:00:a1:c9:ae:be:88:15:a8:dd:e0: 15:c0:01:e8:2f:45:05:79:30:5b:a9:b0:12:11:52:f2:10:fa: 72:37:cd:da -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNHwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEMwODYxMTAvBgNVBAUTKEQ1NjhFMjU5QUVBOTVEMTM0OEM2NjNFMzk1RkNBNjZC RUMxMEMzMDkwHhcNMjUwNTEyMTUwNTI4WhcNMjUwNTE5MTUwNTI4WjAYMRYwFAYD VQQDEw02ODIyMGUzOC1jYzFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqcGIKyauUtQirSNbq4ia6lS9vkXnTZhxCjPYewiLkmNxMLZYVOEcqlD1H2xQ Fx0GBbMrlwzxLNMw2OUgXTWhTu0FDfFzwW3X6C0anKzP6luKcg/g4AgM6k3JRLea d0AJDMBlwiYdsp3/AXcLV1IkA3ewJvBrj/iGLq5y7JTXxN5D4BdNLvdrHNXfH5uZ pCsaBaaVdLuYStRgTKNJDAVL+raETE7X6CajxcLTMpcpGXYcB0sOKzVogg8F2a8C t6XYZEKrB8RnEVJCc8JOAIoQ5nKrp6slxiZoGpAVE9oS+Mn9Z4FWK4EMRhpHQYNQ qyLtv1/1VxCV2z7TaJAg8D8yRQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGtTdU09 lYxsllpr1zsaGLvmFFLVMB8GA1UdIwQYMBaAFNVo4lmuqV0TSMZj45X8pmvsEMMJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QzA4Ni9BODExNEY1ODFE QTIxMUUyQTA1NThCOTUwOEIwMkNEMi8xV2ppV2E2cFhSTkl4bVBqbGZ5bWEtd1F3 d2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFXamlXYTZwWFJOSXhtUGpsZnltYS13UXd3ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QzA4Ni9BODExNEY1ODFEQTIxMUUyQTA1NThCOTUwOEIwMkNEMi8xV2ppV2E2cFhS Tkl4bVBqbGZ5bWEtd1F3d2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBat2Ci0mYAkEiDDely36ELzRNuCB2yPQHYSXDZwaB7LtDW5/tZbcqg REVHFm+6AV9y80ZptX46BPZFGzKs153h4hrVC9nzmHB7VjDz70hq7kUN3eREQad6 uKWDDnTj2c7PEfqKg3QL4/HuX+BmLBsv0q6XtMdx5seHxNh//poXQ/hpssAH5+g0 DVygNnxOEDqTGtAfTqNAON+l9TC2OlZoLnohWTnTAJ0ulY5dCioM94+xcVOLawWX Ge/8z9Tbpyy3U78OFCjHY3qJb8X9ZG1LvpOLJn9nscIeZ/sRQ+HfagChya6+iBWo 3eAVwAHoL0UFeTBbqbASEVLyEPpyN83a -----END CERTIFICATE-----Generated at Tue May 13 08:51:52 2025 by rpki-client