$ rpki-client -vvf rpki.apnic.net/member_repository/A91C4102/B78AA7F4654D11EA86E5017FC4F9AE02/0WtcAvVxqLjfvUc87xSokssNAOE.mft File: 0WtcAvVxqLjfvUc87xSokssNAOE.mft (raw, json) Hash identifier: 2WKXQPg/VwH1Bg0TrLI61znH6yKM9glM37GbbFAlBOg= Subject key identifier: CD:D8:89:C4:31:70:05:E6:BA:B4:A6:A3:28:E7:AD:95:42:E7:63:57 Authority key identifier: D1:6B:5C:02:F5:71:A8:B8:DF:BD:47:3C:EF:14:A8:92:CB:0D:00:E1 Certificate issuer: /CN=A91C4102/serialNumber=D16B5C02F571A8B8DFBD473CEF14A892CB0D00E1 Certificate serial: 07AA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0WtcAvVxqLjfvUc87xSokssNAOE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C4102/B78AA7F4654D11EA86E5017FC4F9AE02/0WtcAvVxqLjfvUc87xSokssNAOE.mft Manifest number: 11FE Signing time: Wed 02 Jul 2025 19:52:06 +0000 Manifest this update: Wed 02 Jul 2025 19:52:05 +0000 Manifest next update: Wed 09 Jul 2025 19:52:05 +0000 Files and hashes: 1: 0WtcAvVxqLjfvUc87xSokssNAOE.crl (hash: n7uwZ6PV5inLdgcnrTSnSSF36Crdziy/EBAh+OSGSIc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C4102/B78AA7F4654D11EA86E5017FC4F9AE02/0WtcAvVxqLjfvUc87xSokssNAOE.crl rsync://rpki.apnic.net/member_repository/A91C4102/B78AA7F4654D11EA86E5017FC4F9AE02/0WtcAvVxqLjfvUc87xSokssNAOE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0WtcAvVxqLjfvUc87xSokssNAOE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 19:52:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1962 (0x7aa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C4102, serialNumber=D16B5C02F571A8B8DFBD473CEF14A892CB0D00E1 Validity Not Before: Jul 2 19:52:05 2025 GMT Not After : Jul 9 19:52:05 2025 GMT Subject: CN=68658de6-963d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:a2:78:f9:46:8a:5f:24:3a:37:22:ab:83:7e: 74:9c:08:ca:8c:f6:37:cc:c0:45:5c:a5:af:f9:28: ac:27:fb:28:4e:53:2e:6e:6c:95:d4:77:01:54:9c: d3:11:6b:20:3f:b4:f0:09:eb:2f:44:5d:76:17:5c: 6e:55:ee:22:fd:5b:c4:cd:2e:09:82:b2:dc:2a:cc: 4e:2c:b5:8c:1b:a6:e9:bb:99:53:57:c5:65:78:e0: 1e:b2:79:3e:54:49:a3:7b:06:52:57:96:d3:49:8a: 80:a0:6a:1b:2d:7e:06:49:09:94:46:e0:fb:c0:eb: 9b:8f:e8:83:c8:b6:a2:67:61:93:32:b5:c1:25:57: e4:14:cb:55:23:c4:63:82:b0:13:2f:61:66:d9:ae: 22:04:19:9c:be:7b:f5:b9:8e:4b:a6:ac:85:21:71: e1:be:93:14:ec:d5:a3:5a:9f:dc:3e:df:46:4e:fc: 67:65:3d:fb:5c:d3:2d:b4:39:6b:fe:89:5f:a7:95: 63:90:5a:31:0d:95:5b:d0:63:21:c9:3a:f7:76:d7: 3d:f5:fd:3c:b0:12:0a:76:a6:a7:9a:2a:c1:c7:75: c8:cc:c2:ce:ee:66:0f:0d:c5:03:4d:4e:a2:97:3b: 63:18:88:d0:22:33:6a:e5:89:3f:71:71:da:c0:35: b2:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:D8:89:C4:31:70:05:E6:BA:B4:A6:A3:28:E7:AD:95:42:E7:63:57 X509v3 Authority Key Identifier: keyid:D1:6B:5C:02:F5:71:A8:B8:DF:BD:47:3C:EF:14:A8:92:CB:0D:00:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C4102/B78AA7F4654D11EA86E5017FC4F9AE02/0WtcAvVxqLjfvUc87xSokssNAOE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0WtcAvVxqLjfvUc87xSokssNAOE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C4102/B78AA7F4654D11EA86E5017FC4F9AE02/0WtcAvVxqLjfvUc87xSokssNAOE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0e:1b:bf:e7:43:74:4d:00:4d:51:4b:92:b8:40:82:13:0c:b3: 53:81:cb:b4:4d:3c:c4:de:cf:03:57:af:c1:5a:97:75:1c:6e: 52:17:c3:35:f7:1c:52:9a:07:62:31:7a:a4:d7:7e:92:9d:ca: 39:21:f0:b4:19:f9:5f:e1:dc:2b:27:28:6b:d4:c3:f7:2d:28: 86:6c:f4:8f:a5:d7:91:c5:de:56:f8:cc:56:37:81:ba:23:12: 59:d1:f4:79:2e:be:87:c4:46:8e:aa:de:35:a6:28:b4:54:20: 44:7e:da:03:51:6c:62:60:fb:c2:60:56:49:3a:44:b9:12:71: 7f:ad:66:d9:31:3d:53:32:33:54:b4:0b:5a:c2:5a:a7:3b:29: ff:ee:66:03:a1:8b:c8:8f:a2:7b:a7:28:53:fc:2b:ea:0f:61: 9b:13:5e:2d:d1:85:c6:1e:1f:db:7a:ad:1a:47:00:10:3f:85: 7d:17:03:25:b0:60:f2:2c:4d:24:9b:03:0f:93:e6:15:8a:f7: 07:f1:d6:7a:de:49:d5:15:24:06:0f:65:2a:63:07:8b:ca:4b: ae:b3:99:65:91:7a:42:b2:f5:9d:12:dc:f7:2c:c2:e8:4c:13: 0e:8b:f3:a0:13:34:f5:df:19:cb:86:2f:e9:9a:c9:88:75:2e: 5d:2d:5f:fc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB6owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzQxMDIxMTAvBgNVBAUTKEQxNkI1QzAyRjU3MUE4QjhERkJENDczQ0VGMTRBODky Q0IwRDAwRTEwHhcNMjUwNzAyMTk1MjA1WhcNMjUwNzA5MTk1MjA1WjAYMRYwFAYD VQQDEw02ODY1OGRlNi05NjNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA16J4+UaKXyQ6NyKrg350nAjKjPY3zMBFXKWv+SisJ/soTlMubmyV1HcBVJzT EWsgP7TwCesvRF12F1xuVe4i/VvEzS4JgrLcKsxOLLWMG6bpu5lTV8VleOAesnk+ VEmjewZSV5bTSYqAoGobLX4GSQmURuD7wOubj+iDyLaiZ2GTMrXBJVfkFMtVI8Rj grATL2Fm2a4iBBmcvnv1uY5LpqyFIXHhvpMU7NWjWp/cPt9GTvxnZT37XNMttDlr /olfp5VjkFoxDZVb0GMhyTr3dtc99f08sBIKdqanmirBx3XIzMLO7mYPDcUDTU6i lztjGIjQIjNq5Yk/cXHawDWymwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM3YicQx cAXmurSmoyjnrZVC52NXMB8GA1UdIwQYMBaAFNFrXAL1cai4371HPO8UqJLLDQDh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNDEwMi9CNzhBQTdGNDY1 NEQxMUVBODZFNTAxN0ZDNEY5QUUwMi8wV3RjQXZWeHFMamZ2VWM4N3hTb2tzc05B T0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBXdGNBdlZ4cUxqZnZVYzg3eFNva3NzTkFPRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NDEwMi9CNzhBQTdGNDY1NEQxMUVBODZFNTAxN0ZDNEY5QUUwMi8wV3RjQXZWeHFM amZ2VWM4N3hTb2tzc05BT0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAOG7/nQ3RNAE1RS5K4QIITDLNTgcu0TTzE3s8DV6/BWpd1HG5SF8M1 9xxSmgdiMXqk136Snco5IfC0Gflf4dwrJyhr1MP3LSiGbPSPpdeRxd5W+MxWN4G6 IxJZ0fR5Lr6HxEaOqt41pii0VCBEftoDUWxiYPvCYFZJOkS5EnF/rWbZMT1TMjNU tAtawlqnOyn/7mYDoYvIj6J7pyhT/CvqD2GbE14t0YXGHh/beq0aRwAQP4V9FwMl sGDyLE0kmwMPk+YVivcH8dZ63knVFSQGD2UqYweLykuus5llkXpCsvWdEtz3LMLo TBMOi/OgEzT13xnLhi/pmsmIdS5dLV/8 -----END CERTIFICATE-----Generated at Thu Jul 3 11:33:10 2025 by rpki-client