$ rpki-client -vvf rpki.apnic.net/member_repository/A917FED9/C0BA8AAE221B11EEA508D62EC4F9AE02/wTqfYqFLBRA8WsV1b5dlkoiKSVo.mft File: wTqfYqFLBRA8WsV1b5dlkoiKSVo.mft (raw, json) Hash identifier: iu1yY/WKiIaEyDZq7ff1jXbwdyre31wlEg3AMqpeb5k= Subject key identifier: 40:5E:5D:34:78:7C:A5:01:5B:16:1E:9B:A4:66:5E:6A:D6:1C:A4:56 Authority key identifier: C1:3A:9F:62:A1:4B:05:10:3C:5A:C5:75:6F:97:65:92:88:8A:49:5A Certificate issuer: /CN=A917FED9/serialNumber=C13A9F62A14B05103C5AC5756F976592888A495A Certificate serial: 0193 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wTqfYqFLBRA8WsV1b5dlkoiKSVo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917FED9/C0BA8AAE221B11EEA508D62EC4F9AE02/wTqfYqFLBRA8WsV1b5dlkoiKSVo.mft Manifest number: 018F Signing time: Sat 23 Aug 2025 03:38:04 +0000 Manifest this update: Sat 23 Aug 2025 03:38:04 +0000 Manifest next update: Sat 30 Aug 2025 03:38:04 +0000 Files and hashes: 1: wTqfYqFLBRA8WsV1b5dlkoiKSVo.crl (hash: mvTftgdPiIFSFVGNeK0fTpgVFrkRpQbvjWIMPW2jufI=) 2: 32503D0625FC11EE9A575E36C4F9AE02.roa (hash: coDJ25CP62J5iPaE/zCXs0A10y/EaRgWhlToPaB3W0E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917FED9/C0BA8AAE221B11EEA508D62EC4F9AE02/wTqfYqFLBRA8WsV1b5dlkoiKSVo.crl rsync://rpki.apnic.net/member_repository/A917FED9/C0BA8AAE221B11EEA508D62EC4F9AE02/wTqfYqFLBRA8WsV1b5dlkoiKSVo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wTqfYqFLBRA8WsV1b5dlkoiKSVo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 03:38:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 403 (0x193) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917FED9, serialNumber=C13A9F62A14B05103C5AC5756F976592888A495A Validity Not Before: Aug 23 03:38:04 2025 GMT Not After : Aug 30 03:38:04 2025 GMT Subject: CN=68a9379c-187f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:60:df:84:6d:3d:2a:39:0d:a9:75:63:ac:a5: 8a:85:13:a0:89:47:bf:1d:57:51:76:ba:76:13:c3: 55:d6:3d:b1:d0:44:5f:11:1b:5c:2b:9f:04:13:8e: 0e:7e:fe:e9:c7:e0:51:6a:c4:0a:10:33:ef:da:9e: c3:44:75:ce:00:c5:43:a1:9b:a3:bc:30:a2:45:8a: d3:83:0c:42:03:ab:6d:10:0f:0c:41:95:5a:ab:cd: ed:bf:33:ee:66:b6:e9:cf:9d:c3:7a:82:df:e9:92: 5e:41:59:a4:e9:3e:fc:44:6d:41:f4:ea:c0:76:cb: 3d:13:e9:64:9a:01:44:03:dd:1c:75:92:b2:92:e3: e0:52:58:e4:4a:0b:0b:17:4b:cd:16:c0:62:ce:37: 95:b5:f8:ba:19:af:e6:dd:d1:e7:86:74:2b:57:fa: d2:61:ce:6f:da:44:c0:c3:45:61:2d:2b:39:ac:9a: 79:3c:dd:6d:c5:cc:d0:c7:6d:68:6c:a4:b8:d2:3e: 5e:cd:2a:36:24:0e:44:ef:11:2c:aa:21:18:98:34: f7:22:d7:5d:56:c1:c0:cd:47:ee:28:47:3f:6f:b2: 96:60:01:26:a0:41:77:44:6a:a2:70:66:43:af:69: a9:60:33:17:23:86:51:8e:91:7c:99:05:b1:10:76: 16:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:5E:5D:34:78:7C:A5:01:5B:16:1E:9B:A4:66:5E:6A:D6:1C:A4:56 X509v3 Authority Key Identifier: keyid:C1:3A:9F:62:A1:4B:05:10:3C:5A:C5:75:6F:97:65:92:88:8A:49:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917FED9/C0BA8AAE221B11EEA508D62EC4F9AE02/wTqfYqFLBRA8WsV1b5dlkoiKSVo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wTqfYqFLBRA8WsV1b5dlkoiKSVo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917FED9/C0BA8AAE221B11EEA508D62EC4F9AE02/wTqfYqFLBRA8WsV1b5dlkoiKSVo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 48:ce:fc:49:78:27:f7:4e:89:0c:72:3a:58:9e:9a:54:5f:c8: 56:84:4b:80:f1:d8:77:d3:a4:3d:eb:36:f3:8e:ef:00:c6:10: ce:97:47:fb:19:4c:55:55:e3:0f:12:20:a8:df:f3:21:e3:c9: d9:26:09:ac:f3:7b:79:eb:e3:22:ab:33:cd:5a:36:6e:3a:96: 3f:ff:28:d7:bb:4a:e3:0e:36:a1:c5:04:15:e2:c1:19:d5:33: 99:ed:4c:82:dc:82:fd:27:4b:90:d2:ba:8a:4d:63:e5:d4:56: 2d:dd:92:f8:87:fe:d2:ef:c9:60:74:2b:de:10:cd:52:34:00: 20:93:83:87:04:b6:e6:a3:2c:0a:f7:af:dd:be:2f:28:05:4f: 49:5b:7e:cd:58:4b:9c:f6:2d:89:f2:af:db:ae:b6:6f:1c:53: fc:61:9c:36:f0:02:60:f5:6b:f1:00:7d:d6:31:22:84:5b:6e: b1:95:88:26:36:05:5b:a6:39:13:8b:6e:89:db:90:49:e7:44: 65:63:2a:42:87:e8:c0:f2:eb:a7:4a:94:2c:f2:09:04:bc:b1: 5a:25:ee:35:3c:e0:8f:3b:b7:0c:bd:48:a4:50:fb:77:a2:29: e0:18:b4:54:41:51:61:21:90:fc:68:f4:80:f2:b5:96:35:e1: f1:24:22:4c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0ZFRDkxMTAvBgNVBAUTKEMxM0E5RjYyQTE0QjA1MTAzQzVBQzU3NTZGOTc2NTky ODg4QTQ5NUEwHhcNMjUwODIzMDMzODA0WhcNMjUwODMwMDMzODA0WjAYMRYwFAYD VQQDEw02OGE5Mzc5Yy0xODdmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuWDfhG09KjkNqXVjrKWKhROgiUe/HVdRdrp2E8NV1j2x0ERfERtcK58EE44O fv7px+BRasQKEDPv2p7DRHXOAMVDoZujvDCiRYrTgwxCA6ttEA8MQZVaq83tvzPu Zrbpz53DeoLf6ZJeQVmk6T78RG1B9OrAdss9E+lkmgFEA90cdZKykuPgUljkSgsL F0vNFsBizjeVtfi6Ga/m3dHnhnQrV/rSYc5v2kTAw0VhLSs5rJp5PN1txczQx21o bKS40j5ezSo2JA5E7xEsqiEYmDT3ItddVsHAzUfuKEc/b7KWYAEmoEF3RGqicGZD r2mpYDMXI4ZRjpF8mQWxEHYWvQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEBeXTR4 fKUBWxYem6RmXmrWHKRWMB8GA1UdIwQYMBaAFME6n2KhSwUQPFrFdW+XZZKIikla MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RkVEOS9DMEJBOEFBRTIy MUIxMUVFQTUwOEQ2MkVDNEY5QUUwMi93VHFmWXFGTEJSQThXc1YxYjVkbGtvaUtT Vm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3dUcWZZcUZMQlJBOFdzVjFiNWRsa29pS1NWby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RkVEOS9DMEJBOEFBRTIyMUIxMUVFQTUwOEQ2MkVDNEY5QUUwMi93VHFmWXFGTEJS QThXc1YxYjVkbGtvaUtTVm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBIzvxJeCf3TokMcjpYnppUX8hWhEuA8dh306Q96zbzju8AxhDOl0f7 GUxVVeMPEiCo3/Mh48nZJgms83t56+MiqzPNWjZuOpY//yjXu0rjDjahxQQV4sEZ 1TOZ7UyC3IL9J0uQ0rqKTWPl1FYt3ZL4h/7S78lgdCveEM1SNAAgk4OHBLbmoywK 96/dvi8oBU9JW37NWEuc9i2J8q/brrZvHFP8YZw28AJg9WvxAH3WMSKEW26xlYgm NgVbpjkTi26J25BJ50RlYypCh+jA8uunSpQs8gkEvLFaJe41POCPO7cMvUikUPt3 oingGLRUQVFhIZD8aPSA8rWWNeHxJCJM -----END CERTIFICATE-----Generated at Sat Aug 23 15:15:44 2025 by rpki-client