$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4C30/0F1F7CE8964111EDBA9DCC4FC4F9AE02/WKDd0CVVyDdIbVVDUYbcxXahKD4.mft File: WKDd0CVVyDdIbVVDUYbcxXahKD4.mft (raw, json) Hash identifier: 2fZpBSHCACMbW/tU5ZkG49JzecFlnezzJ/bFj9hunwo= Subject key identifier: 7A:04:DA:E3:32:EC:1A:6B:4B:4F:A5:E6:09:75:F2:94:38:99:B1:73 Authority key identifier: 58:A0:DD:D0:25:55:C8:37:48:6D:55:43:51:86:DC:C5:76:A1:28:3E Certificate issuer: /CN=A91E4C30/serialNumber=58A0DDD02555C837486D55435186DCC576A1283E Certificate serial: 01DF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WKDd0CVVyDdIbVVDUYbcxXahKD4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4C30/0F1F7CE8964111EDBA9DCC4FC4F9AE02/WKDd0CVVyDdIbVVDUYbcxXahKD4.mft Manifest number: 01D2 Signing time: Tue 01 Jul 2025 03:18:49 +0000 Manifest this update: Tue 01 Jul 2025 03:18:49 +0000 Manifest next update: Tue 08 Jul 2025 03:18:49 +0000 Files and hashes: 1: WKDd0CVVyDdIbVVDUYbcxXahKD4.crl (hash: Y1kDyGlccrG9yM+GD4GyR/GHCuNbOh9C7h5Z5I0Jcdg=) 2: 8C48B22C47E711EE91530D28C4F9AE02.roa (hash: wKqJN3HUJdyX5elWCqbGG36RonSJ+MBkLKESMLKx2qQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4C30/0F1F7CE8964111EDBA9DCC4FC4F9AE02/WKDd0CVVyDdIbVVDUYbcxXahKD4.crl rsync://rpki.apnic.net/member_repository/A91E4C30/0F1F7CE8964111EDBA9DCC4FC4F9AE02/WKDd0CVVyDdIbVVDUYbcxXahKD4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WKDd0CVVyDdIbVVDUYbcxXahKD4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 03:18:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 479 (0x1df) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4C30, serialNumber=58A0DDD02555C837486D55435186DCC576A1283E Validity Not Before: Jul 1 03:18:49 2025 GMT Not After : Jul 8 03:18:49 2025 GMT Subject: CN=68635399-885c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:22:be:f0:70:b2:59:6d:0f:da:53:0e:3e:97: e5:b9:26:ac:f7:fc:0b:a3:54:de:da:ff:79:5e:2f: 4f:f7:73:9e:95:6e:95:fb:91:fe:5e:36:a2:67:83: 57:a2:a8:d6:46:04:10:97:d6:08:c1:e0:49:b5:0b: 83:47:06:f7:02:62:c8:84:ba:9d:cd:14:fe:1a:b3: 0d:cf:43:dc:9c:6f:a6:26:69:03:83:5f:68:0b:5f: 8d:a7:af:bf:cb:e1:a7:fe:6a:cc:b9:31:a2:01:74: ce:2c:4c:56:a6:83:86:f7:e0:4f:9e:84:13:46:ff: 03:bf:cc:e1:b9:27:6e:18:c4:fc:b4:61:a7:78:52: aa:24:a6:8d:43:68:0d:51:6c:e4:f6:5b:b7:7b:e7: e0:44:d0:b5:7d:23:ca:1c:38:24:6e:cd:d4:da:1b: 0f:46:4b:c8:7b:57:58:d7:48:b8:f4:48:d7:ef:b8: 4d:07:f8:7d:1a:8a:9c:83:86:b6:c0:be:c1:31:93: 31:d7:15:9f:44:69:d6:b7:a4:49:4f:f3:be:3a:37: a5:22:41:f0:e8:e8:c3:b6:0c:64:29:a0:df:da:df: 12:57:6f:8e:57:cd:85:db:51:fd:a9:23:44:6b:fd: f9:ec:01:44:b0:17:e5:86:18:37:3d:76:0f:d3:64: e7:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:04:DA:E3:32:EC:1A:6B:4B:4F:A5:E6:09:75:F2:94:38:99:B1:73 X509v3 Authority Key Identifier: keyid:58:A0:DD:D0:25:55:C8:37:48:6D:55:43:51:86:DC:C5:76:A1:28:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4C30/0F1F7CE8964111EDBA9DCC4FC4F9AE02/WKDd0CVVyDdIbVVDUYbcxXahKD4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WKDd0CVVyDdIbVVDUYbcxXahKD4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4C30/0F1F7CE8964111EDBA9DCC4FC4F9AE02/WKDd0CVVyDdIbVVDUYbcxXahKD4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a7:62:70:55:86:f8:4a:dd:15:16:c5:72:a1:76:b7:e4:e8:2a: a3:e5:cb:13:11:8d:ee:17:23:72:86:7b:ab:a5:7c:ed:13:74: fe:39:b1:e6:84:bf:3b:ef:a9:5c:4b:3f:f2:44:58:1c:27:02: 2e:37:b2:1e:82:98:cf:72:94:fe:5c:9e:bd:79:11:aa:06:bf: 04:bc:88:65:4f:a7:75:7d:e4:e5:29:33:e0:0c:7e:b8:23:9f: 8a:5d:38:10:bf:95:64:19:25:fe:fb:1b:f5:6c:b2:26:a2:72: 41:a0:2c:2b:03:5b:f0:fe:b9:ae:85:dc:c2:2f:28:a9:3a:2e: 22:55:74:cb:67:df:35:29:ac:7f:c7:7a:48:90:41:3c:d4:5e: 53:b6:34:3b:bf:3f:38:cd:55:c2:2c:97:2a:2b:76:de:23:c3: 74:fb:48:14:be:2a:85:81:fd:42:10:1e:a5:70:23:d1:ef:8e: 57:aa:d3:5a:75:4d:94:0f:13:9a:c3:60:f8:ef:e1:a2:d9:f5: bf:c9:0f:da:48:91:a0:11:d9:e2:09:a3:5e:78:a3:9d:d8:fc: de:8b:da:35:df:65:d4:2f:e7:56:49:a7:69:ce:15:4f:4b:e7: 43:25:37:94:00:72:a2:e5:db:d5:1d:9c:e2:71:8b:b0:1e:f3: 64:9d:eb:7b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAd8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTRDMzAxMTAvBgNVBAUTKDU4QTBEREQwMjU1NUM4Mzc0ODZENTU0MzUxODZEQ0M1 NzZBMTI4M0UwHhcNMjUwNzAxMDMxODQ5WhcNMjUwNzA4MDMxODQ5WjAYMRYwFAYD VQQDEw02ODYzNTM5OS04ODVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0iK+8HCyWW0P2lMOPpfluSas9/wLo1Te2v95Xi9P93OelW6V+5H+XjaiZ4NX oqjWRgQQl9YIweBJtQuDRwb3AmLIhLqdzRT+GrMNz0PcnG+mJmkDg19oC1+Np6+/ y+Gn/mrMuTGiAXTOLExWpoOG9+BPnoQTRv8Dv8zhuSduGMT8tGGneFKqJKaNQ2gN UWzk9lu3e+fgRNC1fSPKHDgkbs3U2hsPRkvIe1dY10i49EjX77hNB/h9Goqcg4a2 wL7BMZMx1xWfRGnWt6RJT/O+OjelIkHw6OjDtgxkKaDf2t8SV2+OV82F21H9qSNE a/357AFEsBflhhg3PXYP02TnAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHoE2uMy 7BprS0+l5gl18pQ4mbFzMB8GA1UdIwQYMBaAFFig3dAlVcg3SG1VQ1GG3MV2oSg+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNEMzMC8wRjFGN0NFODk2 NDExMUVEQkE5RENDNEZDNEY5QUUwMi9XS0RkMENWVnlEZEliVlZEVVliY3hYYWhL RDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dLRGQwQ1ZWeURkSWJWVkRVWWJjeFhhaEtENC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NEMzMC8wRjFGN0NFODk2NDExMUVEQkE5RENDNEZDNEY5QUUwMi9XS0RkMENWVnlE ZEliVlZEVVliY3hYYWhLRDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCnYnBVhvhK3RUWxXKhdrfk6Cqj5csTEY3uFyNyhnurpXztE3T+ObHm hL8776lcSz/yRFgcJwIuN7IegpjPcpT+XJ69eRGqBr8EvIhlT6d1feTlKTPgDH64 I5+KXTgQv5VkGSX++xv1bLImonJBoCwrA1vw/rmuhdzCLyipOi4iVXTLZ981Kax/ x3pIkEE81F5TtjQ7vz84zVXCLJcqK3beI8N0+0gUviqFgf1CEB6lcCPR745XqtNa dU2UDxOaw2D47+Gi2fW/yQ/aSJGgEdniCaNeeKOd2Pzei9o132XUL+dWSadpzhVP S+dDJTeUAHKi5dvVHZzicYuwHvNknet7 -----END CERTIFICATE-----Generated at Tue Jul 1 16:04:22 2025 by rpki-client