$ rpki-client -vvf rpki.apnic.net/member_repository/A9198F53/CD06217640F411EAAE778261C4F9AE02/_wsVRthMDZNVkFtsopPiW0QJSMU.mft File: _wsVRthMDZNVkFtsopPiW0QJSMU.mft (raw, json) Hash identifier: kf+/IDs1sz/ug4Rw2reVKqFGpbYXpa3X7nrj6oAI3nQ= Subject key identifier: 66:26:90:41:E7:35:46:51:F9:43:5C:6D:6C:77:42:1F:1E:A1:B9:46 Authority key identifier: FF:0B:15:46:D8:4C:0D:93:55:90:5B:6C:A2:93:E2:5B:44:09:48:C5 Certificate issuer: /CN=A9198F53/serialNumber=FF0B1546D84C0D9355905B6CA293E25B440948C5 Certificate serial: 0B41 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_wsVRthMDZNVkFtsopPiW0QJSMU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9198F53/CD06217640F411EAAE778261C4F9AE02/_wsVRthMDZNVkFtsopPiW0QJSMU.mft Manifest number: 0B3A Signing time: Fri 22 Aug 2025 19:18:40 +0000 Manifest this update: Fri 22 Aug 2025 19:18:39 +0000 Manifest next update: Fri 29 Aug 2025 19:18:39 +0000 Files and hashes: 1: _wsVRthMDZNVkFtsopPiW0QJSMU.crl (hash: HjP/aE/719VrSKCv6VnKpCyvcFN5LWCPxJ9hfbEwMSc=) 2: 0B1FBD4A40F611EAACD44866C4F9AE02.roa (hash: O+1TVwNVO9fy4asd+g6mFvUYSSGMZxyCsanhKoUd1UE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9198F53/CD06217640F411EAAE778261C4F9AE02/_wsVRthMDZNVkFtsopPiW0QJSMU.crl rsync://rpki.apnic.net/member_repository/A9198F53/CD06217640F411EAAE778261C4F9AE02/_wsVRthMDZNVkFtsopPiW0QJSMU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_wsVRthMDZNVkFtsopPiW0QJSMU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 19:18:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2881 (0xb41) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9198F53, serialNumber=FF0B1546D84C0D9355905B6CA293E25B440948C5 Validity Not Before: Aug 22 19:18:39 2025 GMT Not After : Aug 29 19:18:39 2025 GMT Subject: CN=68a8c28f-5789 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:db:3d:a0:ab:96:11:1b:12:9a:33:23:60:97: c1:78:cc:22:8f:0d:0a:e0:c9:c3:c4:48:81:b7:52: 52:f0:2a:17:6d:5a:a3:10:32:99:70:3b:b2:5f:8c: 73:1a:30:b6:9b:c9:2b:8d:4f:6b:ec:35:f3:82:5b: ab:27:a4:1a:f3:cc:84:ea:0b:87:0f:ff:29:5e:11: c8:46:ed:7c:b1:0d:fc:7f:41:20:55:f0:6d:0b:ef: 79:67:72:e2:9a:84:53:ef:56:64:11:e7:83:82:25: 3c:24:23:bd:26:3d:36:f4:40:0f:13:38:b6:23:df: 52:7f:ac:2d:a3:23:39:40:7f:9a:29:47:d0:92:ff: b1:c7:50:d8:dc:18:af:8c:7c:a5:34:6f:83:f3:33: 9a:2b:0f:9c:72:2a:3d:c7:2c:4b:65:3c:db:cb:d5: 7d:a4:5a:9a:ae:ce:6b:8f:2e:b0:18:f3:74:c9:67: f7:9f:57:f6:85:41:0d:39:13:e2:9d:a5:5c:0f:05: 3e:ff:59:eb:86:55:25:61:67:4f:9b:e6:a0:ef:d5: ee:fb:42:fb:24:49:47:d9:8f:a3:81:6b:1c:9b:c2: 1c:c8:b5:98:0c:74:a7:58:bc:cd:96:09:ab:c7:52: ec:c7:4c:52:1a:f7:9f:fe:f5:15:ce:2e:10:e3:a3: 81:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:26:90:41:E7:35:46:51:F9:43:5C:6D:6C:77:42:1F:1E:A1:B9:46 X509v3 Authority Key Identifier: keyid:FF:0B:15:46:D8:4C:0D:93:55:90:5B:6C:A2:93:E2:5B:44:09:48:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9198F53/CD06217640F411EAAE778261C4F9AE02/_wsVRthMDZNVkFtsopPiW0QJSMU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_wsVRthMDZNVkFtsopPiW0QJSMU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9198F53/CD06217640F411EAAE778261C4F9AE02/_wsVRthMDZNVkFtsopPiW0QJSMU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2c:21:80:e5:55:de:4d:f8:2e:a0:3c:a9:a5:9a:1b:a4:b1:34: a7:97:19:4b:40:40:eb:25:2e:81:c4:34:f1:23:20:38:37:d2: 66:f2:94:e4:73:0f:3d:f4:8d:e4:33:8e:f5:3b:c8:94:bb:1a: 2e:6f:31:66:75:8b:d7:ed:35:68:26:2e:9b:46:bd:ae:92:28: 87:5a:d1:45:ab:1b:a1:7f:c1:4d:67:df:71:31:bf:9c:b4:7c: a0:b1:e0:59:4b:88:fc:2b:8a:c1:2d:f1:1b:23:27:b5:cd:f2: 5d:ea:df:a8:02:61:81:00:a5:ca:61:8c:76:9c:87:fc:24:89: f3:be:d3:45:67:a0:02:6a:03:0a:f9:5c:fc:9b:9b:3c:2e:04: 31:14:05:f0:7e:38:bf:45:d9:5a:ba:fe:9f:93:84:9d:ff:5a: d5:d2:c0:6c:a3:71:7e:68:40:99:c4:07:98:ed:5a:43:53:5e: 56:35:f1:aa:87:89:87:74:58:f3:fd:1f:02:fd:7c:53:51:db: ab:39:91:41:bd:9d:58:22:d6:2b:4a:c1:a9:af:d0:39:29:c8: 10:05:31:26:16:3c:eb:56:d1:45:6b:dd:0f:3a:6e:5b:e1:53: 62:f1:c4:dd:5d:6d:d1:41:37:f7:bc:82:a3:bb:d9:b8:b5:4d: ea:4d:30:49 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC0EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OThGNTMxMTAvBgNVBAUTKEZGMEIxNTQ2RDg0QzBEOTM1NTkwNUI2Q0EyOTNFMjVC NDQwOTQ4QzUwHhcNMjUwODIyMTkxODM5WhcNMjUwODI5MTkxODM5WjAYMRYwFAYD VQQDEw02OGE4YzI4Zi01Nzg5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuds9oKuWERsSmjMjYJfBeMwijw0K4MnDxEiBt1JS8CoXbVqjEDKZcDuyX4xz GjC2m8krjU9r7DXzglurJ6Qa88yE6guHD/8pXhHIRu18sQ38f0EgVfBtC+95Z3Li moRT71ZkEeeDgiU8JCO9Jj029EAPEzi2I99Sf6wtoyM5QH+aKUfQkv+xx1DY3Biv jHylNG+D8zOaKw+ccio9xyxLZTzby9V9pFqars5rjy6wGPN0yWf3n1f2hUENORPi naVcDwU+/1nrhlUlYWdPm+ag79Xu+0L7JElH2Y+jgWscm8IcyLWYDHSnWLzNlgmr x1Lsx0xSGvef/vUVzi4Q46OBawIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGYmkEHn NUZR+UNcbWx3Qh8eoblGMB8GA1UdIwQYMBaAFP8LFUbYTA2TVZBbbKKT4ltECUjF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OEY1My9DRDA2MjE3NjQw RjQxMUVBQUU3NzgyNjFDNEY5QUUwMi9fd3NWUnRoTURaTlZrRnRzb3BQaVcwUUpT TVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL193c1ZSdGhNRFpOVmtGdHNvcFBpVzBRSlNNVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OEY1My9DRDA2MjE3NjQwRjQxMUVBQUU3NzgyNjFDNEY5QUUwMi9fd3NWUnRoTURa TlZrRnRzb3BQaVcwUUpTTVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAsIYDlVd5N+C6gPKmlmhuksTSnlxlLQEDrJS6BxDTxIyA4N9Jm8pTk cw899I3kM471O8iUuxoubzFmdYvX7TVoJi6bRr2ukiiHWtFFqxuhf8FNZ99xMb+c tHygseBZS4j8K4rBLfEbIye1zfJd6t+oAmGBAKXKYYx2nIf8JInzvtNFZ6ACagMK +Vz8m5s8LgQxFAXwfji/Rdlauv6fk4Sd/1rV0sBso3F+aECZxAeY7VpDU15WNfGq h4mHdFjz/R8C/XxTUdurOZFBvZ1YItYrSsGpr9A5KcgQBTEmFjzrVtFFa90POm5b 4VNi8cTdXW3RQTf3vIKju9m4tU3qTTBJ -----END CERTIFICATE-----Generated at Sat Aug 23 19:38:08 2025 by rpki-client