$ rpki-client -vvf rpki.apnic.net/member_repository/A9168197/A4DDA52444D211EBB1379C3EC4F9AE02/w7ZI6y4jhyqRjQV3Ew81hT9vY54.mft File: w7ZI6y4jhyqRjQV3Ew81hT9vY54.mft (raw, json) Hash identifier: wGANPh78kVVFPL7iipEiVtQog4yfUuUMcezuTLiEkmU= Subject key identifier: 5B:A4:43:FF:95:D2:93:64:AD:F4:F9:40:B0:91:EF:9D:8F:9B:48:3E Authority key identifier: C3:B6:48:EB:2E:23:87:2A:91:8D:05:77:13:0F:35:85:3F:6F:63:9E Certificate issuer: /CN=A9168197/serialNumber=C3B648EB2E23872A918D0577130F35853F6F639E Certificate serial: 06F7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/w7ZI6y4jhyqRjQV3Ew81hT9vY54.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9168197/A4DDA52444D211EBB1379C3EC4F9AE02/w7ZI6y4jhyqRjQV3Ew81hT9vY54.mft Manifest number: 06F2 Signing time: Sat 10 May 2025 21:36:05 +0000 Manifest this update: Sat 10 May 2025 21:36:05 +0000 Manifest next update: Sat 17 May 2025 21:36:05 +0000 Files and hashes: 1: w7ZI6y4jhyqRjQV3Ew81hT9vY54.crl (hash: k6+mP2vUnzYN/PO1ogOxKlZFJ8l/C1ac4tyrevIWVZE=) 2: 43854B4044D411EB85615640C4F9AE02.roa (hash: CB1GFrJ7tsJbFUks8uu9Gdd9FZeKLh0J1F3T+doC6dY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9168197/A4DDA52444D211EBB1379C3EC4F9AE02/w7ZI6y4jhyqRjQV3Ew81hT9vY54.crl rsync://rpki.apnic.net/member_repository/A9168197/A4DDA52444D211EBB1379C3EC4F9AE02/w7ZI6y4jhyqRjQV3Ew81hT9vY54.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/w7ZI6y4jhyqRjQV3Ew81hT9vY54.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 21:36:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1783 (0x6f7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9168197, serialNumber=C3B648EB2E23872A918D0577130F35853F6F639E Validity Not Before: May 10 21:36:05 2025 GMT Not After : May 17 21:36:05 2025 GMT Subject: CN=681fc6c5-bff9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:2f:a0:da:86:0c:68:a7:05:e3:3a:a0:72:4c: f7:b5:a7:67:cf:68:b4:b5:1e:f8:b8:27:f0:6c:6b: 57:00:21:2c:46:0c:f2:6c:96:ee:9e:d9:0e:53:e1: d6:4e:d2:31:97:bc:22:56:32:33:24:fa:90:58:c2: 5c:48:4b:1f:49:71:ce:98:dd:7b:99:18:e3:40:08: 6d:b7:20:1f:38:cf:fa:18:be:3e:5b:98:8b:8b:d7: ed:2c:9f:5d:ed:5a:35:f0:dc:df:42:02:72:97:81: b4:95:ff:f6:4b:d1:cf:82:7d:8c:2b:05:3b:be:5d: 9d:87:f4:9e:60:a3:3d:06:49:a6:a7:10:a9:fd:86: 03:2f:fc:02:61:44:a5:04:49:f3:10:52:13:94:34: 12:19:33:56:0e:5f:79:36:b8:52:44:fe:2a:42:43: 15:9f:17:03:91:3b:07:31:ca:cb:d2:ef:ac:62:12: 7d:ff:30:35:ee:ac:f3:a9:62:af:09:4f:f5:14:26: fe:46:a6:56:66:e8:ce:e3:e7:b9:55:d3:77:c4:d1: 5d:33:59:19:a5:63:1c:77:20:57:68:e0:15:e6:5b: 06:a1:f9:40:5d:b2:bf:4e:de:8c:ce:84:41:af:46: 91:37:34:fe:bc:5e:5c:50:3d:37:2d:aa:75:19:ac: 1a:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:A4:43:FF:95:D2:93:64:AD:F4:F9:40:B0:91:EF:9D:8F:9B:48:3E X509v3 Authority Key Identifier: keyid:C3:B6:48:EB:2E:23:87:2A:91:8D:05:77:13:0F:35:85:3F:6F:63:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9168197/A4DDA52444D211EBB1379C3EC4F9AE02/w7ZI6y4jhyqRjQV3Ew81hT9vY54.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/w7ZI6y4jhyqRjQV3Ew81hT9vY54.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9168197/A4DDA52444D211EBB1379C3EC4F9AE02/w7ZI6y4jhyqRjQV3Ew81hT9vY54.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 01:79:69:ae:4d:8a:65:9d:64:38:dc:04:8a:e3:16:5b:c2:22: 1a:be:17:ef:56:d5:d0:83:36:e8:74:9a:90:d0:6e:83:c9:27: 56:8b:cf:b7:b7:fd:6b:31:eb:a7:69:8a:60:a4:d6:f0:13:a8: 79:86:a5:8d:d0:84:78:97:6a:7a:8a:8a:14:b7:fa:97:bf:48: 23:42:43:b2:59:50:59:32:a8:f0:47:91:19:5d:c6:03:f6:24: 0d:e3:eb:7b:58:83:da:43:6b:39:b6:4f:4f:7f:25:91:23:d9: 92:f4:f9:32:76:d6:31:9c:49:19:00:5d:7c:5f:84:7e:b7:bb: cd:86:ff:b7:61:76:95:10:9e:8f:a7:35:f9:34:7d:95:b4:94: 7b:ff:60:4b:32:2f:0e:a7:16:00:2c:a0:b3:6d:97:4f:97:6f: 5a:1c:81:de:1c:ed:34:21:c4:c1:8a:aa:90:b0:03:7b:dc:4f: 25:07:30:be:c1:ac:d4:bb:aa:7f:a7:52:7a:7f:26:d6:3d:62: 5e:7d:16:57:99:fe:1e:54:ff:4e:e1:e3:52:5a:fa:14:2a:34: d1:08:24:d2:3f:94:99:e9:61:2f:7c:32:52:d9:a5:33:5f:9f: 8b:2c:c1:97:2e:26:07:af:c7:75:d6:b9:ea:2a:e5:9e:06:b2: cd:61:5b:74 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBvcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjgxOTcxMTAvBgNVBAUTKEMzQjY0OEVCMkUyMzg3MkE5MThEMDU3NzEzMEYzNTg1 M0Y2RjYzOUUwHhcNMjUwNTEwMjEzNjA1WhcNMjUwNTE3MjEzNjA1WjAYMRYwFAYD VQQDEw02ODFmYzZjNS1iZmY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyi+g2oYMaKcF4zqgckz3tadnz2i0tR74uCfwbGtXACEsRgzybJbuntkOU+HW TtIxl7wiVjIzJPqQWMJcSEsfSXHOmN17mRjjQAhttyAfOM/6GL4+W5iLi9ftLJ9d 7Vo18NzfQgJyl4G0lf/2S9HPgn2MKwU7vl2dh/SeYKM9BkmmpxCp/YYDL/wCYUSl BEnzEFITlDQSGTNWDl95NrhSRP4qQkMVnxcDkTsHMcrL0u+sYhJ9/zA17qzzqWKv CU/1FCb+RqZWZujO4+e5VdN3xNFdM1kZpWMcdyBXaOAV5lsGoflAXbK/Tt6MzoRB r0aRNzT+vF5cUD03Lap1GawajQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFukQ/+V 0pNkrfT5QLCR752Pm0g+MB8GA1UdIwQYMBaAFMO2SOsuI4cqkY0FdxMPNYU/b2Oe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2ODE5Ny9BNEREQTUyNDQ0 RDIxMUVCQjEzNzlDM0VDNEY5QUUwMi93N1pJNnk0amh5cVJqUVYzRXc4MWhUOXZZ NTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3c3Wkk2eTRqaHlxUmpRVjNFdzgxaFQ5dlk1NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 ODE5Ny9BNEREQTUyNDQ0RDIxMUVCQjEzNzlDM0VDNEY5QUUwMi93N1pJNnk0amh5 cVJqUVYzRXc4MWhUOXZZNTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQABeWmuTYplnWQ43ASK4xZbwiIavhfvVtXQgzbodJqQ0G6DySdWi8+3 t/1rMeunaYpgpNbwE6h5hqWN0IR4l2p6iooUt/qXv0gjQkOyWVBZMqjwR5EZXcYD 9iQN4+t7WIPaQ2s5tk9PfyWRI9mS9PkydtYxnEkZAF18X4R+t7vNhv+3YXaVEJ6P pzX5NH2VtJR7/2BLMi8OpxYALKCzbZdPl29aHIHeHO00IcTBiqqQsAN73E8lBzC+ wazUu6p/p1J6fybWPWJefRZXmf4eVP9O4eNSWvoUKjTRCCTSP5SZ6WEvfDJS2aUz X5+LLMGXLiYHr8d11rnqKuWeBrLNYVt0 -----END CERTIFICATE-----Generated at Mon May 12 19:09:56 2025 by rpki-client