$ rpki-client -vvf rpki.apnic.net/member_repository/A917FED9/C0BA8AAE221B11EEA508D62EC4F9AE02/wTqfYqFLBRA8WsV1b5dlkoiKSVo.mft File: wTqfYqFLBRA8WsV1b5dlkoiKSVo.mft (raw, json) Hash identifier: bsWZXBVCYJcaF9LebXUXulo8NB4uGqrBDJFgBsrVkYk= Subject key identifier: D8:FA:C2:12:B9:59:EF:80:64:A0:49:6B:DF:3C:CA:14:31:AB:66:72 Authority key identifier: C1:3A:9F:62:A1:4B:05:10:3C:5A:C5:75:6F:97:65:92:88:8A:49:5A Certificate issuer: /CN=A917FED9/serialNumber=C13A9F62A14B05103C5AC5756F976592888A495A Certificate serial: 0177 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wTqfYqFLBRA8WsV1b5dlkoiKSVo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917FED9/C0BA8AAE221B11EEA508D62EC4F9AE02/wTqfYqFLBRA8WsV1b5dlkoiKSVo.mft Manifest number: 0174 Signing time: Sat 05 Jul 2025 04:04:38 +0000 Manifest this update: Sat 05 Jul 2025 04:04:37 +0000 Manifest next update: Sat 12 Jul 2025 04:04:37 +0000 Files and hashes: 1: wTqfYqFLBRA8WsV1b5dlkoiKSVo.crl (hash: hP9ALR4h61epoXgBqCd43hXQ7Bq1iGfiP82HW+lzewM=) 2: 32503D0625FC11EE9A575E36C4F9AE02.roa (hash: AlPEcyEIDBXADdQ7LcHDoET2vUI4PMePKSIHLdjtTsU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917FED9/C0BA8AAE221B11EEA508D62EC4F9AE02/wTqfYqFLBRA8WsV1b5dlkoiKSVo.crl rsync://rpki.apnic.net/member_repository/A917FED9/C0BA8AAE221B11EEA508D62EC4F9AE02/wTqfYqFLBRA8WsV1b5dlkoiKSVo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wTqfYqFLBRA8WsV1b5dlkoiKSVo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 375 (0x177) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917FED9, serialNumber=C13A9F62A14B05103C5AC5756F976592888A495A Validity Not Before: Jul 5 04:04:37 2025 GMT Not After : Jul 12 04:04:37 2025 GMT Subject: CN=6868a455-a3ca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:7e:8e:e4:5b:f8:a4:f8:70:7a:93:fa:a7:14: 09:84:41:1d:e4:59:2d:47:6a:c6:db:20:9b:9b:0a: 05:9d:d5:20:36:97:34:8f:db:35:14:af:ed:bf:68: 68:93:43:7f:5d:2d:93:08:03:5d:ac:1c:89:ea:15: 5a:3c:be:de:20:d7:e2:c5:ea:1f:96:bb:b3:c3:12: 28:35:a4:11:42:c9:fa:f0:01:34:a9:08:0c:93:15: 3b:e4:e4:ea:16:d3:11:0a:25:71:80:0d:33:6c:4b: 87:96:ae:15:46:8a:50:2d:63:38:a5:69:38:7a:89: 06:c4:e6:61:77:75:1a:1f:a8:12:6b:0e:9e:d9:9e: 87:8a:99:77:b1:cf:94:10:b7:91:6b:c7:89:e3:46: 2a:2d:e0:be:34:59:b4:e5:a5:c0:4a:ba:79:dd:17: ce:0b:5e:ef:58:87:d2:27:7f:91:ef:66:1a:0f:e1: a5:f3:b2:41:2b:3d:50:a1:ca:a4:d8:b6:83:c4:c8: 63:4e:cc:e9:7d:2e:4d:6a:0b:39:e8:c5:0e:3a:b1: 03:7e:0b:d2:f1:8d:1b:c0:1e:d1:f9:d3:a7:39:13: a1:6b:2f:c5:0c:9c:fb:cf:b1:bb:a9:b2:c5:8f:2d: f4:cb:35:95:9a:83:a2:dd:77:bb:3a:8c:25:91:3c: 01:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:FA:C2:12:B9:59:EF:80:64:A0:49:6B:DF:3C:CA:14:31:AB:66:72 X509v3 Authority Key Identifier: keyid:C1:3A:9F:62:A1:4B:05:10:3C:5A:C5:75:6F:97:65:92:88:8A:49:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917FED9/C0BA8AAE221B11EEA508D62EC4F9AE02/wTqfYqFLBRA8WsV1b5dlkoiKSVo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wTqfYqFLBRA8WsV1b5dlkoiKSVo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917FED9/C0BA8AAE221B11EEA508D62EC4F9AE02/wTqfYqFLBRA8WsV1b5dlkoiKSVo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b9:c5:f0:1c:35:2c:0c:48:fe:e9:9b:f1:55:66:45:35:c7:2a: 37:62:ab:b9:63:c4:a5:df:f8:a4:d9:27:4b:d9:ab:de:6a:3d: 89:bb:b2:ef:69:e7:ae:05:1d:a5:3e:5b:e6:83:e7:e9:3a:77: d1:4d:29:4b:28:8c:5e:b8:47:d9:48:41:c9:6f:09:d0:81:27: 3b:33:f5:95:f5:5b:f5:9c:39:4f:29:c5:e2:ee:7f:79:6d:d9: b0:8e:1c:c0:76:4d:26:7a:6f:8e:45:6c:3c:ed:20:01:a5:04: 5b:0a:08:38:c3:cd:cd:6d:92:4c:37:26:7f:00:bb:3e:88:fb: dd:e6:c8:c4:6b:b9:44:4e:30:ad:c4:30:0c:eb:ee:be:e2:99: ec:55:01:2d:4f:8d:1b:6b:85:82:5c:b9:07:a0:3e:56:ec:be: aa:33:a8:2c:33:31:ee:17:a7:d2:fb:a9:1b:89:9e:47:cf:be: 17:79:04:04:d5:ab:69:7d:00:76:ed:27:4d:92:92:6c:f2:15: fb:63:f0:c0:0a:97:f5:43:63:d6:95:42:56:17:e1:3d:57:77: b2:0e:82:2b:50:fa:d6:7a:b0:f4:5f:dc:45:6e:99:62:4b:ff: 1e:08:c4:fe:08:99:88:f2:4a:f3:0e:74:f4:63:fc:b5:2e:2d: da:b5:45:ef -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0ZFRDkxMTAvBgNVBAUTKEMxM0E5RjYyQTE0QjA1MTAzQzVBQzU3NTZGOTc2NTky ODg4QTQ5NUEwHhcNMjUwNzA1MDQwNDM3WhcNMjUwNzEyMDQwNDM3WjAYMRYwFAYD VQQDEw02ODY4YTQ1NS1hM2NhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtX6O5Fv4pPhwepP6pxQJhEEd5FktR2rG2yCbmwoFndUgNpc0j9s1FK/tv2ho k0N/XS2TCANdrByJ6hVaPL7eINfixeoflruzwxIoNaQRQsn68AE0qQgMkxU75OTq FtMRCiVxgA0zbEuHlq4VRopQLWM4pWk4eokGxOZhd3UaH6gSaw6e2Z6Hipl3sc+U ELeRa8eJ40YqLeC+NFm05aXASrp53RfOC17vWIfSJ3+R72YaD+Gl87JBKz1Qocqk 2LaDxMhjTszpfS5Nags56MUOOrEDfgvS8Y0bwB7R+dOnOROhay/FDJz7z7G7qbLF jy30yzWVmoOi3Xe7OowlkTwB4wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNj6whK5 We+AZKBJa988yhQxq2ZyMB8GA1UdIwQYMBaAFME6n2KhSwUQPFrFdW+XZZKIikla MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RkVEOS9DMEJBOEFBRTIy MUIxMUVFQTUwOEQ2MkVDNEY5QUUwMi93VHFmWXFGTEJSQThXc1YxYjVkbGtvaUtT Vm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3dUcWZZcUZMQlJBOFdzVjFiNWRsa29pS1NWby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RkVEOS9DMEJBOEFBRTIyMUIxMUVFQTUwOEQ2MkVDNEY5QUUwMi93VHFmWXFGTEJS QThXc1YxYjVkbGtvaUtTVm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC5xfAcNSwMSP7pm/FVZkU1xyo3Yqu5Y8Sl3/ik2SdL2aveaj2Ju7Lv aeeuBR2lPlvmg+fpOnfRTSlLKIxeuEfZSEHJbwnQgSc7M/WV9Vv1nDlPKcXi7n95 bdmwjhzAdk0mem+ORWw87SABpQRbCgg4w83NbZJMNyZ/ALs+iPvd5sjEa7lETjCt xDAM6+6+4pnsVQEtT40ba4WCXLkHoD5W7L6qM6gsMzHuF6fS+6kbiZ5Hz74XeQQE 1atpfQB27SdNkpJs8hX7Y/DACpf1Q2PWlUJWF+E9V3eyDoIrUPrWerD0X9xFbpli S/8eCMT+CJmI8krzDnT0Y/y1Li3atUXv -----END CERTIFICATE-----Generated at Sat Jul 5 08:01:49 2025 by rpki-client