$ rpki-client -vvf rpki.apnic.net/member_repository/A9198F53/CD06217640F411EAAE778261C4F9AE02/_wsVRthMDZNVkFtsopPiW0QJSMU.mft File: _wsVRthMDZNVkFtsopPiW0QJSMU.mft (raw, json) Hash identifier: urYsDNhxAr9R4ckaQncGRg5BL/bcSrSi3w6Rh+hK8mg= Subject key identifier: 34:05:4B:DD:88:1A:75:24:2F:46:30:84:CC:FF:10:23:32:94:24:5E Authority key identifier: FF:0B:15:46:D8:4C:0D:93:55:90:5B:6C:A2:93:E2:5B:44:09:48:C5 Certificate issuer: /CN=A9198F53/serialNumber=FF0B1546D84C0D9355905B6CA293E25B440948C5 Certificate serial: 0B27 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_wsVRthMDZNVkFtsopPiW0QJSMU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9198F53/CD06217640F411EAAE778261C4F9AE02/_wsVRthMDZNVkFtsopPiW0QJSMU.mft Manifest number: 0B20 Signing time: Wed 02 Jul 2025 19:26:46 +0000 Manifest this update: Wed 02 Jul 2025 19:26:45 +0000 Manifest next update: Wed 09 Jul 2025 19:26:45 +0000 Files and hashes: 1: _wsVRthMDZNVkFtsopPiW0QJSMU.crl (hash: FgcYIgkl24rpg7qEyv9XJ+NYgJYl543T5J8/MrpORB0=) 2: 0B1FBD4A40F611EAACD44866C4F9AE02.roa (hash: O+1TVwNVO9fy4asd+g6mFvUYSSGMZxyCsanhKoUd1UE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9198F53/CD06217640F411EAAE778261C4F9AE02/_wsVRthMDZNVkFtsopPiW0QJSMU.crl rsync://rpki.apnic.net/member_repository/A9198F53/CD06217640F411EAAE778261C4F9AE02/_wsVRthMDZNVkFtsopPiW0QJSMU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_wsVRthMDZNVkFtsopPiW0QJSMU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 19:26:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2855 (0xb27) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9198F53, serialNumber=FF0B1546D84C0D9355905B6CA293E25B440948C5 Validity Not Before: Jul 2 19:26:45 2025 GMT Not After : Jul 9 19:26:45 2025 GMT Subject: CN=686587f5-b4ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:12:7b:bf:52:c1:0c:e1:c4:3a:cc:b2:31:17: 51:7f:c1:02:b7:8b:50:5d:3d:f5:51:2f:42:9c:69: 29:0e:d7:bf:0d:c8:99:33:8e:01:23:ba:f0:35:02: c7:49:56:22:4b:ce:0d:11:0b:a9:17:63:1c:22:bf: d4:45:c4:c5:ee:c7:91:c6:14:7f:f5:04:a6:9c:5f: f7:04:d9:12:cb:e6:80:84:95:d6:03:39:3e:f2:4b: a5:59:1e:d5:91:b6:cc:ef:0c:43:31:38:69:be:0f: 19:c3:50:0d:72:ef:66:8c:95:ed:80:f4:b7:9e:9b: 80:a6:10:42:d2:26:13:7a:50:f7:8c:2c:2a:b9:0d: 47:90:9d:ff:83:30:0c:4a:65:cc:d2:ed:f7:09:ca: 49:98:52:d0:13:af:39:83:3a:e7:cf:89:94:b7:fc: 30:db:fb:17:b9:69:78:21:46:85:15:9d:2a:10:2a: ed:9f:8b:20:b2:90:c2:58:d8:c4:65:12:b1:97:5f: 3c:8f:9a:5c:d0:85:df:cb:4f:3d:a9:1c:99:c8:f9: 2c:59:ed:03:b9:cd:2e:61:fc:08:e5:e0:d5:fa:24: 44:76:9a:62:b5:62:0e:1c:98:ee:3d:e1:9b:ff:6a: bb:f6:98:aa:1a:fb:90:3d:b3:3c:fe:12:21:42:b8: 34:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:05:4B:DD:88:1A:75:24:2F:46:30:84:CC:FF:10:23:32:94:24:5E X509v3 Authority Key Identifier: keyid:FF:0B:15:46:D8:4C:0D:93:55:90:5B:6C:A2:93:E2:5B:44:09:48:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9198F53/CD06217640F411EAAE778261C4F9AE02/_wsVRthMDZNVkFtsopPiW0QJSMU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_wsVRthMDZNVkFtsopPiW0QJSMU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9198F53/CD06217640F411EAAE778261C4F9AE02/_wsVRthMDZNVkFtsopPiW0QJSMU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 76:71:b4:01:a1:4e:aa:0f:ab:a9:de:13:89:41:ab:67:5a:89: 38:fc:ef:ab:9c:cc:8b:99:a0:a4:9c:7a:b2:11:95:c0:e2:7b: 98:7d:f2:eb:f0:e7:f3:61:b0:a5:f0:5e:d7:87:f6:fe:0d:07: 5e:7c:90:34:43:5f:73:d3:aa:44:96:e8:73:26:63:cf:86:d2: ac:2b:8b:2a:35:2b:b6:25:15:4a:5b:17:ae:bc:6c:f4:1e:71: ae:f8:68:e0:a5:81:5f:64:b4:96:a7:cc:71:10:59:53:41:47: 43:ee:fd:fb:ed:10:50:23:fd:6c:1f:7c:9c:2b:3d:05:8b:f2: fc:86:37:cf:1b:8d:40:ba:79:7d:b3:eb:72:09:c5:f1:cf:be: 53:1a:b3:f3:d1:0d:fb:fb:71:18:82:e9:f0:8a:ed:9d:83:ea: dd:50:a2:6d:82:b8:7d:02:bd:41:5e:3d:54:b3:32:d7:76:11: 71:59:06:31:85:68:83:94:01:52:a2:d6:27:fd:9c:e4:9e:ec: da:19:f8:41:3c:65:07:10:a8:17:98:0e:d3:b1:02:c6:2c:55: f3:34:e5:02:fe:88:cf:1f:cf:4b:55:f2:62:bb:df:cc:29:0f: b3:f6:b1:8e:8b:83:8f:7d:c8:ea:12:06:e3:f3:e3:15:06:25: 16:65:a3:fd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCycwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OThGNTMxMTAvBgNVBAUTKEZGMEIxNTQ2RDg0QzBEOTM1NTkwNUI2Q0EyOTNFMjVC NDQwOTQ4QzUwHhcNMjUwNzAyMTkyNjQ1WhcNMjUwNzA5MTkyNjQ1WjAYMRYwFAYD VQQDEw02ODY1ODdmNS1iNGZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArxJ7v1LBDOHEOsyyMRdRf8ECt4tQXT31US9CnGkpDte/DciZM44BI7rwNQLH SVYiS84NEQupF2McIr/URcTF7seRxhR/9QSmnF/3BNkSy+aAhJXWAzk+8kulWR7V kbbM7wxDMThpvg8Zw1ANcu9mjJXtgPS3npuAphBC0iYTelD3jCwquQ1HkJ3/gzAM SmXM0u33CcpJmFLQE685gzrnz4mUt/ww2/sXuWl4IUaFFZ0qECrtn4sgspDCWNjE ZRKxl188j5pc0IXfy089qRyZyPksWe0Duc0uYfwI5eDV+iREdppitWIOHJjuPeGb /2q79piqGvuQPbM8/hIhQrg00wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDQFS92I GnUkL0YwhMz/ECMylCReMB8GA1UdIwQYMBaAFP8LFUbYTA2TVZBbbKKT4ltECUjF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OEY1My9DRDA2MjE3NjQw RjQxMUVBQUU3NzgyNjFDNEY5QUUwMi9fd3NWUnRoTURaTlZrRnRzb3BQaVcwUUpT TVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL193c1ZSdGhNRFpOVmtGdHNvcFBpVzBRSlNNVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OEY1My9DRDA2MjE3NjQwRjQxMUVBQUU3NzgyNjFDNEY5QUUwMi9fd3NWUnRoTURa TlZrRnRzb3BQaVcwUUpTTVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB2cbQBoU6qD6up3hOJQatnWok4/O+rnMyLmaCknHqyEZXA4nuYffLr 8OfzYbCl8F7Xh/b+DQdefJA0Q19z06pEluhzJmPPhtKsK4sqNSu2JRVKWxeuvGz0 HnGu+GjgpYFfZLSWp8xxEFlTQUdD7v377RBQI/1sH3ycKz0Fi/L8hjfPG41Aunl9 s+tyCcXxz75TGrPz0Q37+3EYgunwiu2dg+rdUKJtgrh9Ar1BXj1UszLXdhFxWQYx hWiDlAFSotYn/ZzknuzaGfhBPGUHEKgXmA7TsQLGLFXzNOUC/ojPH89LVfJiu9/M KQ+z9rGOi4OPfcjqEgbj8+MVBiUWZaP9 -----END CERTIFICATE-----Generated at Thu Jul 3 02:45:45 2025 by rpki-client