$ rpki-client -vvf rpki.apnic.net/member_repository/A91764A1/6B7D69A6045311EAA8F8EC1DC4F9AE02/W9l8Mex4xvFX13LBu1drgCSCtyg.mft File: W9l8Mex4xvFX13LBu1drgCSCtyg.mft (raw, json) Hash identifier: /2VvLrJazNDBOA4Yhr0LyINW+cqEaNQMWBFgDb/zjbM= Subject key identifier: DB:2B:67:18:69:35:9E:DD:7A:AC:DE:82:76:15:8A:9B:B7:F1:9B:74 Authority key identifier: 5B:D9:7C:31:EC:78:C6:F1:57:D7:72:C1:BB:57:6B:80:24:82:B7:28 Certificate issuer: /CN=A91764A1/serialNumber=5BD97C31EC78C6F157D772C1BB576B802482B728 Certificate serial: 0C46 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/W9l8Mex4xvFX13LBu1drgCSCtyg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91764A1/6B7D69A6045311EAA8F8EC1DC4F9AE02/W9l8Mex4xvFX13LBu1drgCSCtyg.mft Manifest number: 0C3C Signing time: Tue 06 May 2025 18:22:26 +0000 Manifest this update: Tue 06 May 2025 18:22:26 +0000 Manifest next update: Tue 13 May 2025 18:22:26 +0000 Files and hashes: 1: W9l8Mex4xvFX13LBu1drgCSCtyg.crl (hash: Gehi/tayl4mAyxxAqJ2fVCvPd+o7lpbH4DvJujbdAHg=) 2: 753703FE045C11EAB8BF0932C4F9AE02.roa (hash: S/ofOXTredoKUYwl0LoZXr2usuoq2v/owpoDEv+TetE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91764A1/6B7D69A6045311EAA8F8EC1DC4F9AE02/W9l8Mex4xvFX13LBu1drgCSCtyg.crl rsync://rpki.apnic.net/member_repository/A91764A1/6B7D69A6045311EAA8F8EC1DC4F9AE02/W9l8Mex4xvFX13LBu1drgCSCtyg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/W9l8Mex4xvFX13LBu1drgCSCtyg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 13 May 2025 18:22:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3142 (0xc46) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91764A1, serialNumber=5BD97C31EC78C6F157D772C1BB576B802482B728 Validity Not Before: May 6 18:22:26 2025 GMT Not After : May 13 18:22:26 2025 GMT Subject: CN=681a5362-1215 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:ac:8b:88:0e:ab:8f:cf:c7:ce:77:4e:73:2d: 54:a8:d9:96:bf:33:62:31:9d:58:21:ee:d7:9a:d3: 40:5c:27:eb:80:19:59:41:55:bb:03:f2:20:57:8a: 57:b2:cc:04:3e:09:04:51:f6:cd:17:19:3b:45:01: 1f:1a:4b:d4:c0:e2:f7:69:d3:14:07:c3:05:f6:e0: 8f:ef:b4:70:9c:e1:98:27:b1:f7:a3:af:6b:ed:f2: 09:28:83:a9:7c:cc:c9:e3:a1:3e:d3:a7:ad:f0:86: 45:9f:e9:02:bd:ce:e1:7d:a7:c0:3e:66:d7:cf:20: 75:a1:ed:d1:06:a7:d3:0a:d2:9b:e7:bf:0f:29:f4: 55:b4:1f:df:a5:7c:3c:b3:8d:f0:18:9d:a5:44:cf: 2c:f2:76:19:39:21:ec:87:4c:18:69:39:e4:ee:8a: b7:49:16:1d:66:c7:e3:37:fe:82:77:03:4b:1d:2a: 52:3a:40:8f:4b:46:db:eb:19:a8:d3:89:4a:f6:20: 05:7d:1c:b0:01:b6:cb:33:88:a5:c3:b6:a3:1c:e2: c1:88:d0:f7:dc:bf:c2:ab:f8:56:10:c5:04:ae:4f: ac:3d:9e:0d:8f:c3:6d:9e:8c:f8:ad:a7:03:3c:b4: 7f:ac:1f:3e:7f:2e:1f:a0:22:36:93:21:34:05:48: 20:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:2B:67:18:69:35:9E:DD:7A:AC:DE:82:76:15:8A:9B:B7:F1:9B:74 X509v3 Authority Key Identifier: keyid:5B:D9:7C:31:EC:78:C6:F1:57:D7:72:C1:BB:57:6B:80:24:82:B7:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91764A1/6B7D69A6045311EAA8F8EC1DC4F9AE02/W9l8Mex4xvFX13LBu1drgCSCtyg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/W9l8Mex4xvFX13LBu1drgCSCtyg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91764A1/6B7D69A6045311EAA8F8EC1DC4F9AE02/W9l8Mex4xvFX13LBu1drgCSCtyg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:89:9e:de:11:a0:17:c1:18:f8:15:d7:12:c0:77:c7:8c:eb: ca:4a:ce:a5:0a:32:95:f1:6e:2a:ab:72:82:0c:28:52:b4:c9: 94:62:ae:b6:38:9d:d9:32:ff:36:72:d3:83:c9:b6:5e:75:0b: 83:00:de:f7:6f:32:24:50:c2:db:eb:48:69:f5:e9:bf:74:37: 76:1d:48:c8:55:f8:4e:d6:bc:90:59:6b:8a:85:c9:83:49:52: 93:cc:79:64:f7:e7:97:8b:20:7f:50:77:61:3c:54:ae:0d:46: 5d:ec:c4:3b:d9:62:19:6f:10:ae:fd:9e:b8:fb:0b:5c:24:51: 95:64:42:4e:82:2e:5b:e9:3f:2e:1f:18:d1:e1:c7:05:ac:19: 98:e2:ed:33:3b:0e:05:18:29:b1:28:dd:33:ba:9f:ed:e3:b0: be:77:f8:03:0b:97:2a:4a:4f:39:8d:b1:53:b1:e9:d4:15:27: 37:64:10:df:89:78:e0:66:ca:4f:57:dc:8f:b6:eb:62:44:89: 14:00:64:56:08:00:da:a7:f2:ee:39:3b:9e:22:f4:cb:52:c2: ab:ff:a0:84:ef:61:0d:3f:0b:bb:09:8c:5a:25:65:52:59:cc: 59:e0:d3:9f:f3:ae:5e:bf:83:8f:9c:d4:f7:cd:92:d1:ec:01: 3e:94:d7:16 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDEYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzY0QTExMTAvBgNVBAUTKDVCRDk3QzMxRUM3OEM2RjE1N0Q3NzJDMUJCNTc2Qjgw MjQ4MkI3MjgwHhcNMjUwNTA2MTgyMjI2WhcNMjUwNTEzMTgyMjI2WjAYMRYwFAYD VQQDEw02ODFhNTM2Mi0xMjE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp6yLiA6rj8/HzndOcy1UqNmWvzNiMZ1YIe7XmtNAXCfrgBlZQVW7A/IgV4pX sswEPgkEUfbNFxk7RQEfGkvUwOL3adMUB8MF9uCP77RwnOGYJ7H3o69r7fIJKIOp fMzJ46E+06et8IZFn+kCvc7hfafAPmbXzyB1oe3RBqfTCtKb578PKfRVtB/fpXw8 s43wGJ2lRM8s8nYZOSHsh0wYaTnk7oq3SRYdZsfjN/6CdwNLHSpSOkCPS0bb6xmo 04lK9iAFfRywAbbLM4ilw7ajHOLBiND33L/Cq/hWEMUErk+sPZ4Nj8Ntnoz4racD PLR/rB8+fy4foCI2kyE0BUggwwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNsrZxhp NZ7deqzegnYVipu38Zt0MB8GA1UdIwQYMBaAFFvZfDHseMbxV9dywbtXa4Akgrco MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NjRBMS82QjdENjlBNjA0 NTMxMUVBQThGOEVDMURDNEY5QUUwMi9XOWw4TWV4NHh2RlgxM0xCdTFkcmdDU0N0 eWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1c5bDhNZXg0eHZGWDEzTEJ1MWRyZ0NTQ3R5Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NjRBMS82QjdENjlBNjA0NTMxMUVBQThGOEVDMURDNEY5QUUwMi9XOWw4TWV4NHh2 RlgxM0xCdTFkcmdDU0N0eWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAaiZ7eEaAXwRj4FdcSwHfHjOvKSs6lCjKV8W4qq3KCDChStMmUYq62 OJ3ZMv82ctODybZedQuDAN73bzIkUMLb60hp9em/dDd2HUjIVfhO1ryQWWuKhcmD SVKTzHlk9+eXiyB/UHdhPFSuDUZd7MQ72WIZbxCu/Z64+wtcJFGVZEJOgi5b6T8u HxjR4ccFrBmY4u0zOw4FGCmxKN0zup/t47C+d/gDC5cqSk85jbFTsenUFSc3ZBDf iXjgZspPV9yPtutiRIkUAGRWCADap/LuOTueIvTLUsKr/6CE72ENPwu7CYxaJWVS WcxZ4NOf865ev4OPnNT3zZLR7AE+lNcW -----END CERTIFICATE-----Generated at Wed May 7 22:08:00 2025 by rpki-client