$ rpki-client -vvf rpki.apnic.net/member_repository/A917FED9/C0BA8AAE221B11EEA508D62EC4F9AE02/wTqfYqFLBRA8WsV1b5dlkoiKSVo.mft File: wTqfYqFLBRA8WsV1b5dlkoiKSVo.mft (raw, json) Hash identifier: MIXAZsHkhyAj7qbmMFzBC3Dfhvsqdx/LAYCiBQOG6YA= Subject key identifier: A6:B5:A5:6E:44:C6:BC:C3:A5:0C:46:C8:A9:1E:C5:3D:B2:D9:32:64 Authority key identifier: C1:3A:9F:62:A1:4B:05:10:3C:5A:C5:75:6F:97:65:92:88:8A:49:5A Certificate issuer: /CN=A917FED9/serialNumber=C13A9F62A14B05103C5AC5756F976592888A495A Certificate serial: 015C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wTqfYqFLBRA8WsV1b5dlkoiKSVo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917FED9/C0BA8AAE221B11EEA508D62EC4F9AE02/wTqfYqFLBRA8WsV1b5dlkoiKSVo.mft Manifest number: 0159 Signing time: Sun 11 May 2025 02:59:33 +0000 Manifest this update: Sun 11 May 2025 02:59:33 +0000 Manifest next update: Sun 18 May 2025 02:59:33 +0000 Files and hashes: 1: wTqfYqFLBRA8WsV1b5dlkoiKSVo.crl (hash: YnEL3O/jT4KqYZjIwrO4VldVCGX3ObuQeFJD3erGSzU=) 2: 32503D0625FC11EE9A575E36C4F9AE02.roa (hash: AlPEcyEIDBXADdQ7LcHDoET2vUI4PMePKSIHLdjtTsU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917FED9/C0BA8AAE221B11EEA508D62EC4F9AE02/wTqfYqFLBRA8WsV1b5dlkoiKSVo.crl rsync://rpki.apnic.net/member_repository/A917FED9/C0BA8AAE221B11EEA508D62EC4F9AE02/wTqfYqFLBRA8WsV1b5dlkoiKSVo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wTqfYqFLBRA8WsV1b5dlkoiKSVo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 02:59:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 348 (0x15c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917FED9, serialNumber=C13A9F62A14B05103C5AC5756F976592888A495A Validity Not Before: May 11 02:59:33 2025 GMT Not After : May 18 02:59:33 2025 GMT Subject: CN=68201295-d9f4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:54:74:2f:0f:82:34:d7:30:61:be:37:44:b2: 96:88:db:42:60:9c:1f:7e:3e:d1:2a:74:9b:9b:63: b2:5c:bc:8e:1f:42:4c:ee:74:be:90:30:06:81:c9: d0:b8:04:da:55:05:19:81:cc:99:6b:c8:75:4e:fe: fb:89:49:a2:0e:f8:66:d7:c4:e3:65:40:66:e2:b3: d3:6a:76:2a:08:69:10:d2:0e:47:e3:0a:f8:8a:5f: f0:a4:93:98:71:eb:c9:1e:bc:32:24:44:66:71:e1: d8:aa:1d:dc:f6:ae:09:07:ad:91:a2:6d:96:b0:05: 9d:5a:35:11:d4:36:5c:d6:6c:1b:23:93:a3:32:c0: 55:41:a8:20:cf:7c:2b:f8:44:11:39:50:f8:9a:ce: 7c:6a:75:d7:cb:e6:e9:f8:4a:e7:eb:cd:b6:9f:63: d2:30:6d:a3:9f:56:4d:3b:ed:03:4c:85:64:35:05: c1:51:8b:72:f5:15:4b:3a:08:31:18:86:e3:56:3d: dc:1b:90:5e:b6:fb:51:f4:7d:65:74:9a:8a:a2:61: f7:51:9d:29:3b:e8:34:97:97:db:be:cd:0a:5d:cc: 50:6b:92:3e:87:e9:e0:72:d8:5a:31:b5:08:b1:fb: ec:e2:23:38:69:8c:4f:6c:be:f8:15:2d:6b:56:c7: ed:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:B5:A5:6E:44:C6:BC:C3:A5:0C:46:C8:A9:1E:C5:3D:B2:D9:32:64 X509v3 Authority Key Identifier: keyid:C1:3A:9F:62:A1:4B:05:10:3C:5A:C5:75:6F:97:65:92:88:8A:49:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917FED9/C0BA8AAE221B11EEA508D62EC4F9AE02/wTqfYqFLBRA8WsV1b5dlkoiKSVo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wTqfYqFLBRA8WsV1b5dlkoiKSVo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917FED9/C0BA8AAE221B11EEA508D62EC4F9AE02/wTqfYqFLBRA8WsV1b5dlkoiKSVo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cc:2e:67:86:67:97:1a:b5:0f:6c:3d:0f:c8:c8:cc:a2:77:d3: be:55:76:f3:2d:c7:a7:3d:9e:0d:05:e5:b0:10:3f:2c:c0:e6: dc:58:fa:64:c0:90:38:42:29:91:54:02:f1:46:68:09:b4:8c: dc:48:75:65:a2:ba:c5:bb:79:60:ce:d1:2b:56:0c:7a:88:97: 85:9e:35:9f:f7:19:27:a5:32:3e:b7:18:37:d3:33:bc:fe:ad: 34:bf:01:00:17:45:be:cf:24:d8:bf:3e:ff:51:e9:8e:57:76: fa:13:3e:98:21:51:b8:c2:b4:a9:ef:9b:ae:77:61:c0:bc:d0: d9:e2:e4:71:82:00:fd:49:f5:2e:24:b9:ad:1f:41:d2:c2:c0: 5f:df:e0:5f:61:79:be:c1:e5:87:d3:98:c8:ab:f6:c1:fb:f9: 7a:08:61:f5:b9:2e:91:7c:19:6c:2d:0a:4f:25:3b:94:d0:4b: ae:33:8a:08:27:6c:3c:26:2c:37:d2:c1:31:3d:b1:92:65:ff: e5:43:81:53:06:8e:3a:d7:7f:ad:2a:8e:44:2d:79:11:1a:d9: f0:2b:0c:57:6b:7e:d7:99:db:f9:ab:59:fb:38:50:8e:bc:19: 59:f1:81:76:65:66:7b:0a:bb:3f:5a:12:00:a8:6e:1a:23:b3: c0:ca:b4:17 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0ZFRDkxMTAvBgNVBAUTKEMxM0E5RjYyQTE0QjA1MTAzQzVBQzU3NTZGOTc2NTky ODg4QTQ5NUEwHhcNMjUwNTExMDI1OTMzWhcNMjUwNTE4MDI1OTMzWjAYMRYwFAYD VQQDEw02ODIwMTI5NS1kOWY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2lR0Lw+CNNcwYb43RLKWiNtCYJwffj7RKnSbm2OyXLyOH0JM7nS+kDAGgcnQ uATaVQUZgcyZa8h1Tv77iUmiDvhm18TjZUBm4rPTanYqCGkQ0g5H4wr4il/wpJOY cevJHrwyJERmceHYqh3c9q4JB62Rom2WsAWdWjUR1DZc1mwbI5OjMsBVQaggz3wr +EQROVD4ms58anXXy+bp+Ern6822n2PSMG2jn1ZNO+0DTIVkNQXBUYty9RVLOggx GIbjVj3cG5BetvtR9H1ldJqKomH3UZ0pO+g0l5fbvs0KXcxQa5I+h+ngcthaMbUI sfvs4iM4aYxPbL74FS1rVsftOQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKa1pW5E xrzDpQxGyKkexT2y2TJkMB8GA1UdIwQYMBaAFME6n2KhSwUQPFrFdW+XZZKIikla MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RkVEOS9DMEJBOEFBRTIy MUIxMUVFQTUwOEQ2MkVDNEY5QUUwMi93VHFmWXFGTEJSQThXc1YxYjVkbGtvaUtT Vm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3dUcWZZcUZMQlJBOFdzVjFiNWRsa29pS1NWby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RkVEOS9DMEJBOEFBRTIyMUIxMUVFQTUwOEQ2MkVDNEY5QUUwMi93VHFmWXFGTEJS QThXc1YxYjVkbGtvaUtTVm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDMLmeGZ5catQ9sPQ/IyMyid9O+VXbzLcenPZ4NBeWwED8swObcWPpk wJA4QimRVALxRmgJtIzcSHVlorrFu3lgztErVgx6iJeFnjWf9xknpTI+txg30zO8 /q00vwEAF0W+zyTYvz7/UemOV3b6Ez6YIVG4wrSp75uud2HAvNDZ4uRxggD9SfUu JLmtH0HSwsBf3+BfYXm+weWH05jIq/bB+/l6CGH1uS6RfBlsLQpPJTuU0EuuM4oI J2w8Jiw30sExPbGSZf/lQ4FTBo4613+tKo5ELXkRGtnwKwxXa37Xmdv5q1n7OFCO vBlZ8YF2ZWZ7Crs/WhIAqG4aI7PAyrQX -----END CERTIFICATE-----Generated at Tue May 13 00:30:11 2025 by rpki-client