$ rpki-client -vvf rpki.apnic.net/member_repository/A91656C7/85DEDAD850A511F0B2D1DE4FC4F9AE02/WKIeeyP68huJ00Jw61b3RJwjmYY.mft File: WKIeeyP68huJ00Jw61b3RJwjmYY.mft (raw, json) Hash identifier: RkfCN6ySDIGjz5MPSJE5Z+8NYAaBFQpWJdtlsgog5HM= Subject key identifier: F2:69:86:D3:A8:F7:30:D8:A9:6A:F7:BA:BB:91:BF:34:74:7B:65:19 Authority key identifier: 58:A2:1E:7B:23:FA:F2:1B:89:D3:42:70:EB:56:F7:44:9C:23:99:86 Certificate issuer: /CN=A91656C7/serialNumber=58A21E7B23FAF21B89D34270EB56F7449C239986 Certificate serial: 26 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/WKIeeyP68huJ00Jw61b3RJwjmYY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91656C7/85DEDAD850A511F0B2D1DE4FC4F9AE02/WKIeeyP68huJ00Jw61b3RJwjmYY.mft Manifest number: 24 Signing time: Sat 23 Aug 2025 07:58:19 +0000 Manifest this update: Sat 23 Aug 2025 07:58:19 +0000 Manifest next update: Sat 30 Aug 2025 07:58:19 +0000 Files and hashes: 1: WKIeeyP68huJ00Jw61b3RJwjmYY.crl (hash: pk7SK87unIFYeHSBdJvztHh/xqH520amExCLzuiMJWA=) 2: 559FC8C054F411F08DC15C53C4F9AE02.roa (hash: Bm8WKhY+hNcg+fjUuluI2/RvbnR7gkU6ugwO04YyI/s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91656C7/85DEDAD850A511F0B2D1DE4FC4F9AE02/WKIeeyP68huJ00Jw61b3RJwjmYY.crl rsync://rpki.apnic.net/member_repository/A91656C7/85DEDAD850A511F0B2D1DE4FC4F9AE02/WKIeeyP68huJ00Jw61b3RJwjmYY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/WKIeeyP68huJ00Jw61b3RJwjmYY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 07:58:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38 (0x26) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91656C7, serialNumber=58A21E7B23FAF21B89D34270EB56F7449C239986 Validity Not Before: Aug 23 07:58:19 2025 GMT Not After : Aug 30 07:58:19 2025 GMT Subject: CN=68a9749b-a7dc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:2f:89:fc:d2:b4:1a:a2:c7:f4:7c:51:c7:28: e6:5a:1e:15:e9:ac:56:49:21:96:08:a1:7e:48:ce: 1d:eb:96:aa:43:79:89:b6:b3:34:15:4b:3e:48:7b: fe:1c:7f:a1:48:00:d4:d4:44:91:d6:e4:7c:35:0d: c4:ef:59:13:71:d9:97:af:5b:e5:79:d3:f4:f5:ad: 50:ba:20:2b:58:0c:04:07:f4:11:2a:3a:46:3b:d3: 69:0f:5e:bf:2d:25:ab:6a:14:96:37:46:12:e4:5b: 7a:3d:5d:45:24:f3:db:bd:01:a2:8f:86:48:62:8e: 3a:b9:96:0b:76:b7:ab:64:ce:5d:b8:d2:3c:fc:88: 24:ab:f0:df:12:4e:07:68:81:4e:c2:0e:d3:26:1c: fa:ec:e7:b2:04:13:39:ef:4b:52:0d:04:ec:22:a7: 0d:64:4c:1c:63:34:28:9a:d4:04:5e:b3:5e:fb:c4: 2c:af:b2:f3:88:31:67:f9:8a:6b:f8:ac:2d:89:fc: d0:79:07:c1:1d:6e:e5:21:4a:61:57:f4:1c:ae:37: ad:b2:05:52:98:d4:4b:93:20:e1:2f:62:d7:51:96: 64:d5:c4:ae:1f:4a:8d:99:97:e5:47:b3:d8:33:22: bd:34:c5:4b:68:4f:ad:d7:e8:32:6b:46:27:c8:fe: d9:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:69:86:D3:A8:F7:30:D8:A9:6A:F7:BA:BB:91:BF:34:74:7B:65:19 X509v3 Authority Key Identifier: keyid:58:A2:1E:7B:23:FA:F2:1B:89:D3:42:70:EB:56:F7:44:9C:23:99:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91656C7/85DEDAD850A511F0B2D1DE4FC4F9AE02/WKIeeyP68huJ00Jw61b3RJwjmYY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/WKIeeyP68huJ00Jw61b3RJwjmYY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91656C7/85DEDAD850A511F0B2D1DE4FC4F9AE02/WKIeeyP68huJ00Jw61b3RJwjmYY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 87:c0:ea:c6:39:63:0d:91:73:56:fb:d0:03:c3:99:6d:64:e8: c1:11:30:57:36:74:92:c8:b6:48:63:71:15:59:e8:1e:65:dc: 0e:af:97:1c:0d:86:c2:ae:d0:70:a9:8c:ef:aa:3f:03:1b:e7: a8:e4:99:e8:c0:0e:70:22:be:66:84:21:4c:64:53:ce:83:07: 1e:eb:09:a2:c3:d6:64:1a:ab:ec:6b:9d:46:d6:5c:dd:89:86: 65:bc:50:05:70:d3:7e:b1:f6:b1:cb:b8:f1:bf:55:ca:bd:45: f9:2b:27:e5:80:e3:21:3c:c6:51:81:74:10:9c:79:4e:c5:d0: f3:12:62:b7:10:64:ef:ea:d6:07:39:18:a3:75:a7:61:35:47: ed:95:78:5f:79:dc:56:37:8a:49:91:15:8e:f3:fb:99:86:34: 74:96:a5:73:39:c6:9b:85:e7:78:ed:71:43:4d:6a:bb:8c:e9: 57:1c:40:eb:14:85:86:5f:d2:ba:3d:c7:b4:98:f3:cd:5a:02: fb:6c:f4:d3:6b:b3:12:86:ad:56:02:e1:5f:17:eb:fb:3e:f0: 56:fc:de:10:22:5a:d3:ed:31:cc:85:18:32:dd:52:7a:47:cd: f4:37:e4:2e:07:b9:71:f8:3b:f6:e9:07:f8:1d:35:b1:e8:6f: c9:a4:05:ac -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBJjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 NTZDNzExMC8GA1UEBRMoNThBMjFFN0IyM0ZBRjIxQjg5RDM0MjcwRUI1NkY3NDQ5 QzIzOTk4NjAeFw0yNTA4MjMwNzU4MTlaFw0yNTA4MzAwNzU4MTlaMBgxFjAUBgNV BAMTDTY4YTk3NDliLWE3ZGMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCtL4n80rQaosf0fFHHKOZaHhXprFZJIZYIoX5Izh3rlqpDeYm2szQVSz5Ie/4c f6FIANTURJHW5Hw1DcTvWRNx2ZevW+V50/T1rVC6ICtYDAQH9BEqOkY702kPXr8t JatqFJY3RhLkW3o9XUUk89u9AaKPhkhijjq5lgt2t6tkzl240jz8iCSr8N8STgdo gU7CDtMmHPrs57IEEznvS1INBOwipw1kTBxjNCia1ARes177xCyvsvOIMWf5imv4 rC2J/NB5B8EdbuUhSmFX9ByuN62yBVKY1EuTIOEvYtdRlmTVxK4fSo2Zl+VHs9gz Ir00xUtoT63X6DJrRifI/tmzAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU8mmG06j3 MNipave6u5G/NHR7ZRkwHwYDVR0jBBgwFoAUWKIeeyP68huJ00Jw61b3RJwjmYYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY1NkM3Lzg1REVEQUQ4NTBB NTExRjBCMkQxREU0RkM0RjlBRTAyL1dLSWVleVA2OGh1SjAwSnc2MWIzUkp3am1Z WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvV0tJZWV5UDY4aHVKMDBKdzYxYjNSSndqbVlZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY1 NkM3Lzg1REVEQUQ4NTBBNTExRjBCMkQxREU0RkM0RjlBRTAyL1dLSWVleVA2OGh1 SjAwSnc2MWIzUkp3am1ZWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAIfA6sY5Yw2Rc1b70APDmW1k6MERMFc2dJLItkhjcRVZ6B5l3A6vlxwN hsKu0HCpjO+qPwMb56jkmejADnAivmaEIUxkU86DBx7rCaLD1mQaq+xrnUbWXN2J hmW8UAVw036x9rHLuPG/Vcq9RfkrJ+WA4yE8xlGBdBCceU7F0PMSYrcQZO/q1gc5 GKN1p2E1R+2VeF953FY3ikmRFY7z+5mGNHSWpXM5xpuF53jtcUNNaruM6VccQOsU hYZf0ro9x7SY881aAvts9NNrsxKGrVYC4V8X6/s+8Fb83hAiWtPtMcyFGDLdUnpH zfQ35C4HuXH4O/bpB/gdNbHob8mkBaw= -----END CERTIFICATE-----Generated at Sat Aug 23 18:38:54 2025 by rpki-client