$ rpki-client -vvf rpki.apnic.net/member_repository/A9198F53/CD06217640F411EAAE778261C4F9AE02/_wsVRthMDZNVkFtsopPiW0QJSMU.mft File: _wsVRthMDZNVkFtsopPiW0QJSMU.mft (raw, json) Hash identifier: Nra7259aqp3sfzYLNagMqS3YKjpBMBttGvAgrJVuxpU= Subject key identifier: B6:53:56:AF:48:D7:84:EE:BA:1F:40:35:F4:04:76:35:CF:98:2E:25 Authority key identifier: FF:0B:15:46:D8:4C:0D:93:55:90:5B:6C:A2:93:E2:5B:44:09:48:C5 Certificate issuer: /CN=A9198F53/serialNumber=FF0B1546D84C0D9355905B6CA293E25B440948C5 Certificate serial: 0B0F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_wsVRthMDZNVkFtsopPiW0QJSMU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9198F53/CD06217640F411EAAE778261C4F9AE02/_wsVRthMDZNVkFtsopPiW0QJSMU.mft Manifest number: 0B08 Signing time: Wed 14 May 2025 19:23:54 +0000 Manifest this update: Wed 14 May 2025 19:23:53 +0000 Manifest next update: Wed 21 May 2025 19:23:53 +0000 Files and hashes: 1: _wsVRthMDZNVkFtsopPiW0QJSMU.crl (hash: cU2RXxGZsqkBcktzzDNU57O0b857j4qku1oB+yqPY84=) 2: 0B1FBD4A40F611EAACD44866C4F9AE02.roa (hash: O+1TVwNVO9fy4asd+g6mFvUYSSGMZxyCsanhKoUd1UE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9198F53/CD06217640F411EAAE778261C4F9AE02/_wsVRthMDZNVkFtsopPiW0QJSMU.crl rsync://rpki.apnic.net/member_repository/A9198F53/CD06217640F411EAAE778261C4F9AE02/_wsVRthMDZNVkFtsopPiW0QJSMU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_wsVRthMDZNVkFtsopPiW0QJSMU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 19:23:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2831 (0xb0f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9198F53, serialNumber=FF0B1546D84C0D9355905B6CA293E25B440948C5 Validity Not Before: May 14 19:23:53 2025 GMT Not After : May 21 19:23:53 2025 GMT Subject: CN=6824edca-27a9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:3a:45:8d:1c:4b:8c:eb:69:93:68:5a:25:f7: dc:e8:ad:a8:57:2e:d5:8d:a0:c3:f8:1c:7f:2a:41: c8:59:bc:f4:b6:cb:4c:03:0b:9f:3f:6b:0e:33:85: eb:6d:e8:8a:b4:e2:79:99:47:0e:36:6c:c6:11:ea: 5d:f9:d6:42:b2:25:b8:81:b9:da:c0:45:b7:65:7d: bc:ee:b9:20:9d:70:2a:3c:62:3a:27:5a:96:47:2c: 95:c2:15:35:e9:4f:07:6b:39:83:d1:ba:31:b0:f9: 3e:68:89:ff:01:46:f3:ef:0e:c0:f8:9d:ab:de:46: fc:c8:a7:11:be:e2:59:e5:ed:38:f4:ea:b9:50:fa: f5:0f:fa:ca:6a:1d:8c:1f:e6:e5:85:6b:c1:43:41: d3:f5:6d:56:82:5d:09:1d:6c:c3:61:36:f7:b0:cf: 12:11:7d:f1:f2:7d:af:79:83:81:61:44:e1:fd:2c: 41:f9:56:3c:1d:e9:4d:48:ed:38:4e:16:4d:9f:e7: b8:fe:83:22:87:85:39:3c:83:62:0a:24:82:74:b9: ba:79:b8:d2:95:b1:1a:ef:46:81:5b:fa:98:10:64: 8b:f1:f9:37:2f:a2:f2:aa:c6:71:57:c1:97:f4:50: 78:22:c3:51:22:98:80:3c:cf:25:1f:3c:64:40:9f: fe:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:53:56:AF:48:D7:84:EE:BA:1F:40:35:F4:04:76:35:CF:98:2E:25 X509v3 Authority Key Identifier: keyid:FF:0B:15:46:D8:4C:0D:93:55:90:5B:6C:A2:93:E2:5B:44:09:48:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9198F53/CD06217640F411EAAE778261C4F9AE02/_wsVRthMDZNVkFtsopPiW0QJSMU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_wsVRthMDZNVkFtsopPiW0QJSMU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9198F53/CD06217640F411EAAE778261C4F9AE02/_wsVRthMDZNVkFtsopPiW0QJSMU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 60:94:be:73:70:64:bb:f1:1d:46:6f:ff:cc:fc:45:b0:9f:af: b3:bd:3d:3a:45:52:55:38:90:5b:14:07:e8:10:7b:78:ac:86: 75:c1:28:db:86:45:c6:bc:81:7a:25:7a:7a:9c:e8:d1:93:57: eb:da:7e:05:29:46:03:4c:01:76:e5:20:f5:76:13:35:c3:60: 55:a3:7b:07:b9:e9:47:b5:2c:b3:90:8c:48:53:a5:4e:bf:76: 27:a1:9a:26:c4:50:89:27:04:fb:14:e1:ba:cc:17:df:d5:8f: 7e:d5:0b:48:85:62:3b:00:37:10:7d:d0:86:88:50:c4:d3:c6: 71:8f:f9:3c:34:5d:f6:89:1f:ba:f5:4c:6f:a6:7d:7a:52:d7: 5c:16:38:7f:d7:2d:c5:aa:c7:34:5f:31:bd:f1:28:cd:43:dd: 94:f3:68:01:89:1d:b6:f6:35:01:8b:ea:4a:7e:71:c6:79:6e: 6b:1e:30:72:5f:47:6d:13:ad:71:f3:b3:8a:49:88:54:cd:65: d5:78:34:63:27:50:d3:78:7b:e3:13:74:d4:df:27:32:fa:97: 8b:6d:cf:f8:86:fc:87:ff:64:a3:1d:09:4c:c0:96:ef:7b:8c: 66:05:21:6a:54:42:97:4d:19:cf:9d:44:35:b8:ad:f0:25:69: b8:91:46:2a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCw8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OThGNTMxMTAvBgNVBAUTKEZGMEIxNTQ2RDg0QzBEOTM1NTkwNUI2Q0EyOTNFMjVC NDQwOTQ4QzUwHhcNMjUwNTE0MTkyMzUzWhcNMjUwNTIxMTkyMzUzWjAYMRYwFAYD VQQDEw02ODI0ZWRjYS0yN2E5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqzpFjRxLjOtpk2haJffc6K2oVy7VjaDD+Bx/KkHIWbz0tstMAwufP2sOM4Xr beiKtOJ5mUcONmzGEepd+dZCsiW4gbnawEW3ZX287rkgnXAqPGI6J1qWRyyVwhU1 6U8HazmD0boxsPk+aIn/AUbz7w7A+J2r3kb8yKcRvuJZ5e049Oq5UPr1D/rKah2M H+blhWvBQ0HT9W1Wgl0JHWzDYTb3sM8SEX3x8n2veYOBYUTh/SxB+VY8HelNSO04 ThZNn+e4/oMih4U5PINiCiSCdLm6ebjSlbEa70aBW/qYEGSL8fk3L6LyqsZxV8GX 9FB4IsNRIpiAPM8lHzxkQJ/+TQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLZTVq9I 14Tuuh9ANfQEdjXPmC4lMB8GA1UdIwQYMBaAFP8LFUbYTA2TVZBbbKKT4ltECUjF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OEY1My9DRDA2MjE3NjQw RjQxMUVBQUU3NzgyNjFDNEY5QUUwMi9fd3NWUnRoTURaTlZrRnRzb3BQaVcwUUpT TVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL193c1ZSdGhNRFpOVmtGdHNvcFBpVzBRSlNNVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OEY1My9DRDA2MjE3NjQwRjQxMUVBQUU3NzgyNjFDNEY5QUUwMi9fd3NWUnRoTURa TlZrRnRzb3BQaVcwUUpTTVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBglL5zcGS78R1Gb//M/EWwn6+zvT06RVJVOJBbFAfoEHt4rIZ1wSjb hkXGvIF6JXp6nOjRk1fr2n4FKUYDTAF25SD1dhM1w2BVo3sHuelHtSyzkIxIU6VO v3YnoZomxFCJJwT7FOG6zBff1Y9+1QtIhWI7ADcQfdCGiFDE08Zxj/k8NF32iR+6 9Uxvpn16UtdcFjh/1y3Fqsc0XzG98SjNQ92U82gBiR229jUBi+pKfnHGeW5rHjBy X0dtE61x87OKSYhUzWXVeDRjJ1DTeHvjE3TU3ycy+peLbc/4hvyH/2SjHQlMwJbv e4xmBSFqVEKXTRnPnUQ1uK3wJWm4kUYq -----END CERTIFICATE-----Generated at Thu May 15 13:17:03 2025 by rpki-client