$ rpki-client -vvf rpki.apnic.net/member_repository/A914C086/A8114F581DA211E2A0558B9508B02CD2/1WjiWa6pXRNIxmPjlfyma-wQwwk.mft File: 1WjiWa6pXRNIxmPjlfyma-wQwwk.mft (raw, json) Hash identifier: /kHLoDb1iSBKIqXMBqWgHP1u55SPs0SZcU4HQwLgH8I= Subject key identifier: C1:94:5F:82:80:6B:86:98:56:58:EF:34:E9:FA:50:C3:AD:4C:40:D4 Authority key identifier: D5:68:E2:59:AE:A9:5D:13:48:C6:63:E3:95:FC:A6:6B:EC:10:C3:09 Certificate issuer: /CN=A914C086/serialNumber=D568E259AEA95D1348C663E395FCA66BEC10C309 Certificate serial: 34B0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1WjiWa6pXRNIxmPjlfyma-wQwwk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914C086/A8114F581DA211E2A0558B9508B02CD2/1WjiWa6pXRNIxmPjlfyma-wQwwk.mft Manifest number: 34AF Signing time: Fri 22 Aug 2025 15:08:43 +0000 Manifest this update: Fri 22 Aug 2025 15:08:42 +0000 Manifest next update: Fri 29 Aug 2025 15:08:42 +0000 Files and hashes: 1: 1WjiWa6pXRNIxmPjlfyma-wQwwk.crl (hash: glbZYgN5g0CIDtaAC5umppygd/2ArlVgxYEepUiO7KA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914C086/A8114F581DA211E2A0558B9508B02CD2/1WjiWa6pXRNIxmPjlfyma-wQwwk.crl rsync://rpki.apnic.net/member_repository/A914C086/A8114F581DA211E2A0558B9508B02CD2/1WjiWa6pXRNIxmPjlfyma-wQwwk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1WjiWa6pXRNIxmPjlfyma-wQwwk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 15:08:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13488 (0x34b0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914C086, serialNumber=D568E259AEA95D1348C663E395FCA66BEC10C309 Validity Not Before: Aug 22 15:08:42 2025 GMT Not After : Aug 29 15:08:42 2025 GMT Subject: CN=68a887fb-b348 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:8f:d0:c5:84:f2:61:0f:1b:c4:f8:bd:2e:f8: fb:c6:9a:35:4f:a5:a8:e0:3b:a7:9a:25:43:95:be: 54:3a:0e:ef:e9:1a:bb:93:2f:8c:17:ec:95:2d:4f: d8:0c:4d:ea:07:36:38:c1:a0:cb:cc:fc:9d:23:a9: cd:bc:d6:1e:5f:93:1d:30:53:d3:30:b6:54:88:04: 7b:ce:12:89:41:bd:1d:39:5e:8c:82:4c:59:bc:9d: 3c:d4:61:24:bc:cb:aa:70:06:26:b3:e4:f1:16:ef: 55:ab:ea:9a:ed:69:4c:06:01:0e:89:c1:9f:f2:9e: f9:19:44:a2:82:c8:cd:d2:34:7b:6b:3a:90:5e:a4: 9a:ed:c6:13:7a:63:70:1c:49:bb:f7:e3:f4:f7:84: 72:67:41:cc:5f:de:b7:43:99:be:23:0e:43:b0:60: fe:49:70:2a:c0:53:d1:10:c7:93:e9:22:38:43:57: d2:20:94:de:37:15:30:fc:e5:38:ca:93:2d:37:ea: c5:4a:21:95:7e:63:e8:a2:0e:eb:73:b9:4c:a9:10: cf:eb:72:62:85:e0:b5:64:77:83:18:5a:ff:b1:40: 6c:af:b4:12:a2:81:d0:e2:4c:0d:99:aa:9d:7e:f9: 57:6d:77:85:a3:b2:13:2f:49:e3:c4:0c:de:bc:b3: a0:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:94:5F:82:80:6B:86:98:56:58:EF:34:E9:FA:50:C3:AD:4C:40:D4 X509v3 Authority Key Identifier: keyid:D5:68:E2:59:AE:A9:5D:13:48:C6:63:E3:95:FC:A6:6B:EC:10:C3:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914C086/A8114F581DA211E2A0558B9508B02CD2/1WjiWa6pXRNIxmPjlfyma-wQwwk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1WjiWa6pXRNIxmPjlfyma-wQwwk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914C086/A8114F581DA211E2A0558B9508B02CD2/1WjiWa6pXRNIxmPjlfyma-wQwwk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 04:fc:58:97:b5:f4:9a:a3:ac:7d:51:71:d4:80:59:e8:87:9a: e6:e7:be:f3:51:e1:dc:4e:55:3a:1e:de:1e:3f:29:e2:99:40: 4a:80:7c:c5:e8:a7:0e:1f:cf:5b:29:72:3c:aa:f2:c3:d8:82: 0a:51:d9:09:33:e1:70:63:13:c2:2d:7d:bf:70:80:e4:8d:17: a8:3a:45:f3:ef:89:d8:98:17:8b:ab:bb:0c:cb:79:a1:8c:f3: 39:99:5b:87:0d:14:d9:b4:b6:40:ea:a2:7a:a2:8e:21:e6:5f: 38:ca:be:f1:3b:20:f5:0f:d2:8d:9b:99:36:c6:c6:8c:49:d9: ac:9f:5a:3d:a4:ae:73:09:cf:76:b0:83:d8:31:77:52:76:ac: 7a:ba:eb:fd:0f:d9:e3:4d:05:ec:66:f5:c0:e0:c0:1b:e4:09: 75:81:7f:0e:6e:eb:ec:6b:8c:98:62:04:06:07:90:4e:00:ed: 50:9d:d8:ac:90:c1:27:6b:fd:9a:e9:45:3f:46:d5:fb:c1:2a: 5a:2a:34:27:c5:fc:c3:1f:49:f3:72:78:3c:c4:a7:f7:ca:86: e2:70:7f:fe:26:ad:ce:62:4e:2b:61:4d:7c:58:92:78:44:8e: 02:c9:8a:4f:7f:9a:02:30:15:6c:87:86:af:e9:80:8d:b6:0e: d6:c3:ef:2e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNLAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEMwODYxMTAvBgNVBAUTKEQ1NjhFMjU5QUVBOTVEMTM0OEM2NjNFMzk1RkNBNjZC RUMxMEMzMDkwHhcNMjUwODIyMTUwODQyWhcNMjUwODI5MTUwODQyWjAYMRYwFAYD VQQDEw02OGE4ODdmYi1iMzQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv4/QxYTyYQ8bxPi9Lvj7xpo1T6Wo4DunmiVDlb5UOg7v6Rq7ky+MF+yVLU/Y DE3qBzY4waDLzPydI6nNvNYeX5MdMFPTMLZUiAR7zhKJQb0dOV6MgkxZvJ081GEk vMuqcAYms+TxFu9Vq+qa7WlMBgEOicGf8p75GUSigsjN0jR7azqQXqSa7cYTemNw HEm79+P094RyZ0HMX963Q5m+Iw5DsGD+SXAqwFPREMeT6SI4Q1fSIJTeNxUw/OU4 ypMtN+rFSiGVfmPoog7rc7lMqRDP63JiheC1ZHeDGFr/sUBsr7QSooHQ4kwNmaqd fvlXbXeFo7ITL0njxAzevLOg5wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMGUX4KA a4aYVljvNOn6UMOtTEDUMB8GA1UdIwQYMBaAFNVo4lmuqV0TSMZj45X8pmvsEMMJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QzA4Ni9BODExNEY1ODFE QTIxMUUyQTA1NThCOTUwOEIwMkNEMi8xV2ppV2E2cFhSTkl4bVBqbGZ5bWEtd1F3 d2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFXamlXYTZwWFJOSXhtUGpsZnltYS13UXd3ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QzA4Ni9BODExNEY1ODFEQTIxMUUyQTA1NThCOTUwOEIwMkNEMi8xV2ppV2E2cFhS Tkl4bVBqbGZ5bWEtd1F3d2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAE/FiXtfSao6x9UXHUgFnoh5rm577zUeHcTlU6Ht4ePynimUBKgHzF 6KcOH89bKXI8qvLD2IIKUdkJM+FwYxPCLX2/cIDkjReoOkXz74nYmBeLq7sMy3mh jPM5mVuHDRTZtLZA6qJ6oo4h5l84yr7xOyD1D9KNm5k2xsaMSdmsn1o9pK5zCc92 sIPYMXdSdqx6uuv9D9njTQXsZvXA4MAb5Al1gX8Obuvsa4yYYgQGB5BOAO1Qndis kMEna/2a6UU/RtX7wSpaKjQnxfzDH0nzcng8xKf3yobicH/+Jq3OYk4rYU18WJJ4 RI4CyYpPf5oCMBVsh4av6YCNtg7Ww+8u -----END CERTIFICATE-----Generated at Sun Aug 24 03:09:04 2025 by rpki-client