$ rpki-client -vvf rpki.apnic.net/member_repository/A91656C7/85DEDAD850A511F0B2D1DE4FC4F9AE02/WKIeeyP68huJ00Jw61b3RJwjmYY.mft File: WKIeeyP68huJ00Jw61b3RJwjmYY.mft (raw, json) Hash identifier: rCIb6CszhnKukt6ks6OqqBJzIAhhGFVHQ5AaY2ohY0s= Subject key identifier: B5:5C:50:9F:3E:26:A4:9E:7E:6F:D0:2A:7B:B0:FD:06:92:77:2C:75 Authority key identifier: 58:A2:1E:7B:23:FA:F2:1B:89:D3:42:70:EB:56:F7:44:9C:23:99:86 Certificate issuer: /CN=A91656C7/serialNumber=58A21E7B23FAF21B89D34270EB56F7449C239986 Certificate serial: 0C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/WKIeeyP68huJ00Jw61b3RJwjmYY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91656C7/85DEDAD850A511F0B2D1DE4FC4F9AE02/WKIeeyP68huJ00Jw61b3RJwjmYY.mft Manifest number: 0A Signing time: Thu 03 Jul 2025 08:19:43 +0000 Manifest this update: Thu 03 Jul 2025 08:19:42 +0000 Manifest next update: Thu 10 Jul 2025 08:19:42 +0000 Files and hashes: 1: WKIeeyP68huJ00Jw61b3RJwjmYY.crl (hash: 1Z+zCDezCC/9dFaI3njBokNkEGztlN4CApEyoE0WXuY=) 2: 559FC8C054F411F08DC15C53C4F9AE02.roa (hash: Bm8WKhY+hNcg+fjUuluI2/RvbnR7gkU6ugwO04YyI/s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91656C7/85DEDAD850A511F0B2D1DE4FC4F9AE02/WKIeeyP68huJ00Jw61b3RJwjmYY.crl rsync://rpki.apnic.net/member_repository/A91656C7/85DEDAD850A511F0B2D1DE4FC4F9AE02/WKIeeyP68huJ00Jw61b3RJwjmYY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/WKIeeyP68huJ00Jw61b3RJwjmYY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12 (0xc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91656C7, serialNumber=58A21E7B23FAF21B89D34270EB56F7449C239986 Validity Not Before: Jul 3 08:19:42 2025 GMT Not After : Jul 10 08:19:42 2025 GMT Subject: CN=68663d1f-bb4e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:1f:de:6b:8d:58:47:d2:e1:fc:97:74:d9:67: 72:95:40:6b:b0:71:57:88:e5:3c:67:09:a3:e7:ec: c9:1f:98:e0:e7:6c:89:61:4e:6e:3e:cf:e8:c9:cb: 9b:51:b9:c1:db:19:b5:4b:d7:ad:c0:00:03:37:05: 82:30:dc:9c:39:f8:47:14:89:0f:87:b2:ac:6a:5c: 30:4c:0c:91:65:54:a8:13:83:29:b2:71:3a:d8:76: bd:0d:c3:d9:fa:3b:0d:4f:b4:b0:64:17:af:2d:70: 0d:37:d4:c5:99:4e:ad:c3:e3:44:e2:e9:95:12:34: d7:3c:cc:57:7a:04:89:d7:19:99:4d:02:82:cb:5a: ff:bc:b1:6d:21:4e:a9:c7:bf:9f:01:50:a3:ad:30: 9c:87:fc:32:21:3d:56:24:8a:b2:cf:99:95:88:dc: 9d:c2:eb:25:ce:b4:6f:49:a4:6f:43:44:2c:65:af: f0:4e:b6:aa:f8:19:f5:ad:c3:9f:8e:a4:f6:09:77: 8e:6d:4b:fb:7f:e2:41:b9:d5:95:d3:c9:de:7e:79: 28:f0:62:89:b3:eb:e6:66:ef:03:69:1c:5a:ea:30: 17:e2:50:a1:34:4f:eb:ed:73:26:9d:39:84:bc:83: 49:f8:ee:3f:e3:1d:a6:d8:eb:e1:02:67:ef:05:87: 3d:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:5C:50:9F:3E:26:A4:9E:7E:6F:D0:2A:7B:B0:FD:06:92:77:2C:75 X509v3 Authority Key Identifier: keyid:58:A2:1E:7B:23:FA:F2:1B:89:D3:42:70:EB:56:F7:44:9C:23:99:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91656C7/85DEDAD850A511F0B2D1DE4FC4F9AE02/WKIeeyP68huJ00Jw61b3RJwjmYY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/WKIeeyP68huJ00Jw61b3RJwjmYY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91656C7/85DEDAD850A511F0B2D1DE4FC4F9AE02/WKIeeyP68huJ00Jw61b3RJwjmYY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d0:33:e8:04:80:cc:b7:97:13:bc:9b:0f:2e:a3:7b:50:05:ea: 06:5b:f5:b9:e7:15:36:dd:17:6f:fa:04:89:e1:c6:e4:c6:bd: 81:38:5b:4d:ed:63:ed:da:3f:f8:45:67:f7:de:7c:31:3d:8f: ef:6a:98:cd:cb:cd:e8:13:e1:d2:5e:ad:b4:0f:4e:52:fd:e3: ad:f4:98:e9:1d:45:e0:94:38:2f:a1:d8:a1:b6:da:84:6f:f8: 80:55:4b:6b:66:95:fb:32:55:13:10:a5:12:5b:54:fb:f6:15: 96:62:ff:92:e8:ff:b5:df:34:f2:02:38:55:f2:3f:d5:f3:c9: 9c:35:1d:c5:86:43:01:5e:e6:be:fc:09:80:76:26:7c:70:c4: 4f:76:9f:77:f1:20:b4:12:85:a5:a8:af:3c:19:16:d0:6b:5b: 77:c0:1a:a4:6a:1a:6d:7e:40:4e:0b:0e:c1:15:fe:ef:0a:a3: c4:fb:0c:de:0d:99:34:11:67:2b:64:73:e8:11:4b:6b:8a:ae: 33:72:0c:cf:62:54:ee:f3:64:5b:a6:9a:79:5b:97:1c:9b:03: 80:06:3e:c3:82:47:18:e4:8a:8b:bc:e6:3f:d0:b8:a1:15:d3: 0c:f2:43:18:59:df:f1:45:e4:61:ed:82:ed:2d:94:3e:8e:d2: 4d:2a:cd:62 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBDDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 NTZDNzExMC8GA1UEBRMoNThBMjFFN0IyM0ZBRjIxQjg5RDM0MjcwRUI1NkY3NDQ5 QzIzOTk4NjAeFw0yNTA3MDMwODE5NDJaFw0yNTA3MTAwODE5NDJaMBgxFjAUBgNV BAMTDTY4NjYzZDFmLWJiNGUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDAH95rjVhH0uH8l3TZZ3KVQGuwcVeI5TxnCaPn7MkfmODnbIlhTm4+z+jJy5tR ucHbGbVL163AAAM3BYIw3Jw5+EcUiQ+HsqxqXDBMDJFlVKgTgymycTrYdr0Nw9n6 Ow1PtLBkF68tcA031MWZTq3D40Ti6ZUSNNc8zFd6BInXGZlNAoLLWv+8sW0hTqnH v58BUKOtMJyH/DIhPVYkirLPmZWI3J3C6yXOtG9JpG9DRCxlr/BOtqr4GfWtw5+O pPYJd45tS/t/4kG51ZXTyd5+eSjwYomz6+Zm7wNpHFrqMBfiUKE0T+vtcyadOYS8 g0n47j/jHabY6+ECZ+8Fhz23AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUtVxQnz4m pJ5+b9Aqe7D9BpJ3LHUwHwYDVR0jBBgwFoAUWKIeeyP68huJ00Jw61b3RJwjmYYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY1NkM3Lzg1REVEQUQ4NTBB NTExRjBCMkQxREU0RkM0RjlBRTAyL1dLSWVleVA2OGh1SjAwSnc2MWIzUkp3am1Z WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvV0tJZWV5UDY4aHVKMDBKdzYxYjNSSndqbVlZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY1 NkM3Lzg1REVEQUQ4NTBBNTExRjBCMkQxREU0RkM0RjlBRTAyL1dLSWVleVA2OGh1 SjAwSnc2MWIzUkp3am1ZWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBANAz6ASAzLeXE7ybDy6je1AF6gZb9bnnFTbdF2/6BInhxuTGvYE4W03t Y+3aP/hFZ/fefDE9j+9qmM3LzegT4dJerbQPTlL94630mOkdReCUOC+h2KG22oRv +IBVS2tmlfsyVRMQpRJbVPv2FZZi/5Lo/7XfNPICOFXyP9XzyZw1HcWGQwFe5r78 CYB2JnxwxE92n3fxILQShaWorzwZFtBrW3fAGqRqGm1+QE4LDsEV/u8Ko8T7DN4N mTQRZytkc+gRS2uKrjNyDM9iVO7zZFummnlblxybA4AGPsOCRxjkiou85j/QuKEV 0wzyQxhZ3/FF5GHtgu0tlD6O0k0qzWI= -----END CERTIFICATE-----Generated at Thu Jul 3 23:01:30 2025 by rpki-client