$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4C30/0F1F7CE8964111EDBA9DCC4FC4F9AE02/WKDd0CVVyDdIbVVDUYbcxXahKD4.mft File: WKDd0CVVyDdIbVVDUYbcxXahKD4.mft (raw, json) Hash identifier: b5erPMbN/kR6kOXkfsYz5U787k/9WOPtno/DXxoL8y8= Subject key identifier: E3:B1:7C:52:60:AB:AD:02:F7:D8:D8:FD:8D:E7:16:63:F6:8B:2E:36 Authority key identifier: 58:A0:DD:D0:25:55:C8:37:48:6D:55:43:51:86:DC:C5:76:A1:28:3E Certificate issuer: /CN=A91E4C30/serialNumber=58A0DDD02555C837486D55435186DCC576A1283E Certificate serial: 01FA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WKDd0CVVyDdIbVVDUYbcxXahKD4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4C30/0F1F7CE8964111EDBA9DCC4FC4F9AE02/WKDd0CVVyDdIbVVDUYbcxXahKD4.mft Manifest number: 01ED Signing time: Sat 23 Aug 2025 02:44:28 +0000 Manifest this update: Sat 23 Aug 2025 02:44:28 +0000 Manifest next update: Sat 30 Aug 2025 02:44:28 +0000 Files and hashes: 1: WKDd0CVVyDdIbVVDUYbcxXahKD4.crl (hash: atc5CQiDZq1BYCGJILVcdNhJCC9DIemFVasZng0nidk=) 2: 8C48B22C47E711EE91530D28C4F9AE02.roa (hash: wKqJN3HUJdyX5elWCqbGG36RonSJ+MBkLKESMLKx2qQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4C30/0F1F7CE8964111EDBA9DCC4FC4F9AE02/WKDd0CVVyDdIbVVDUYbcxXahKD4.crl rsync://rpki.apnic.net/member_repository/A91E4C30/0F1F7CE8964111EDBA9DCC4FC4F9AE02/WKDd0CVVyDdIbVVDUYbcxXahKD4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WKDd0CVVyDdIbVVDUYbcxXahKD4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 02:44:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 506 (0x1fa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4C30, serialNumber=58A0DDD02555C837486D55435186DCC576A1283E Validity Not Before: Aug 23 02:44:28 2025 GMT Not After : Aug 30 02:44:28 2025 GMT Subject: CN=68a92b0c-777a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:b3:c6:3f:b7:9b:25:60:30:07:19:1a:b3:9e: 35:fe:cb:af:d8:bb:ce:c7:d3:24:f9:22:e5:ec:f8: cb:b0:a4:e8:74:f4:c8:5a:22:56:7b:8d:2b:f1:a5: 3b:21:90:61:cc:b2:f8:b0:6d:6f:2c:af:ee:85:bc: f9:a8:3d:9d:29:0a:ef:c6:4f:d9:97:2f:47:9c:64: 0e:db:49:98:ba:0c:0f:ba:8a:d7:31:13:af:62:fd: b4:1c:f5:3b:81:7a:21:97:51:32:77:73:1d:bd:5c: 7a:8a:7f:46:31:6a:9c:cd:a0:74:7e:d8:f0:b4:91: 11:5a:32:cf:d7:e8:71:f8:53:57:12:5d:70:8e:b4: 77:cc:69:8f:63:52:71:fb:f4:d1:1d:f2:0c:a8:2e: 8d:ba:ca:6c:85:d6:40:72:c2:06:d3:00:fa:e4:b6: 82:f1:85:a6:75:56:7e:48:36:af:4d:63:47:e3:d7: e9:61:70:20:b8:02:d6:ca:1f:55:53:a2:03:f1:9c: 1f:39:14:9e:0c:4a:94:ef:1f:5b:a5:a1:3c:31:f6: e5:75:9e:e1:46:73:b1:79:d0:da:0a:fb:9a:fd:ac: a2:bf:a9:17:bc:fb:d3:27:50:f9:9e:90:27:c6:01: 11:e1:74:32:f7:24:df:91:e9:83:23:af:04:b7:93: e6:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:B1:7C:52:60:AB:AD:02:F7:D8:D8:FD:8D:E7:16:63:F6:8B:2E:36 X509v3 Authority Key Identifier: keyid:58:A0:DD:D0:25:55:C8:37:48:6D:55:43:51:86:DC:C5:76:A1:28:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4C30/0F1F7CE8964111EDBA9DCC4FC4F9AE02/WKDd0CVVyDdIbVVDUYbcxXahKD4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WKDd0CVVyDdIbVVDUYbcxXahKD4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4C30/0F1F7CE8964111EDBA9DCC4FC4F9AE02/WKDd0CVVyDdIbVVDUYbcxXahKD4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9c:16:23:15:2e:40:57:17:2a:ba:04:8f:00:3f:c1:b2:7a:ee: 8a:9f:38:55:fe:68:50:05:b8:dc:4c:85:a9:ae:18:02:7a:f4: 50:86:84:70:77:dc:3f:a0:26:a0:fb:9e:be:73:52:04:d8:86: 0a:5b:19:23:71:8e:32:88:d2:a1:60:07:bd:04:5f:ab:5d:c8: a8:c6:13:f7:24:a2:b8:d2:ff:9d:17:6c:1c:98:8b:05:44:ab: fa:d7:2b:06:a3:9c:af:2b:f2:d7:2e:3d:b9:90:65:3a:fa:b7: 20:77:a9:1f:47:ac:3a:c8:62:9e:23:1f:d8:7a:14:49:84:70: 4f:dd:2c:b3:bf:d1:cc:65:56:9d:d6:3e:ad:32:1a:b3:3e:22: 1d:6d:92:0b:35:f8:52:47:3b:1c:60:0d:d0:f5:3c:ad:f9:be: d1:c9:0c:2a:71:57:0c:87:32:8b:63:ca:1b:7b:e2:71:99:fb: 16:e0:68:d9:14:42:ef:e0:30:46:df:75:78:c8:ac:16:15:cd: 8a:6e:d8:ed:c2:97:c4:7b:f0:e6:a0:0d:bd:24:83:2b:d9:c4: cb:40:e3:97:03:68:65:74:b7:b5:f4:02:7f:e8:88:73:e0:f5: 89:43:51:27:cb:c6:ea:dc:a2:17:d3:0f:98:6e:fd:72:7e:26: 6a:ff:11:73 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAfowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTRDMzAxMTAvBgNVBAUTKDU4QTBEREQwMjU1NUM4Mzc0ODZENTU0MzUxODZEQ0M1 NzZBMTI4M0UwHhcNMjUwODIzMDI0NDI4WhcNMjUwODMwMDI0NDI4WjAYMRYwFAYD VQQDEw02OGE5MmIwYy03NzdhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvLPGP7ebJWAwBxkas541/suv2LvOx9Mk+SLl7PjLsKTodPTIWiJWe40r8aU7 IZBhzLL4sG1vLK/uhbz5qD2dKQrvxk/Zly9HnGQO20mYugwPuorXMROvYv20HPU7 gXohl1Eyd3MdvVx6in9GMWqczaB0ftjwtJERWjLP1+hx+FNXEl1wjrR3zGmPY1Jx +/TRHfIMqC6NuspshdZAcsIG0wD65LaC8YWmdVZ+SDavTWNH49fpYXAguALWyh9V U6ID8ZwfORSeDEqU7x9bpaE8MfbldZ7hRnOxedDaCvua/ayiv6kXvPvTJ1D5npAn xgER4XQy9yTfkemDI68Et5PmMwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOOxfFJg q60C99jY/Y3nFmP2iy42MB8GA1UdIwQYMBaAFFig3dAlVcg3SG1VQ1GG3MV2oSg+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNEMzMC8wRjFGN0NFODk2 NDExMUVEQkE5RENDNEZDNEY5QUUwMi9XS0RkMENWVnlEZEliVlZEVVliY3hYYWhL RDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dLRGQwQ1ZWeURkSWJWVkRVWWJjeFhhaEtENC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NEMzMC8wRjFGN0NFODk2NDExMUVEQkE5RENDNEZDNEY5QUUwMi9XS0RkMENWVnlE ZEliVlZEVVliY3hYYWhLRDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCcFiMVLkBXFyq6BI8AP8Gyeu6KnzhV/mhQBbjcTIWprhgCevRQhoRw d9w/oCag+56+c1IE2IYKWxkjcY4yiNKhYAe9BF+rXcioxhP3JKK40v+dF2wcmIsF RKv61ysGo5yvK/LXLj25kGU6+rcgd6kfR6w6yGKeIx/YehRJhHBP3Syzv9HMZVad 1j6tMhqzPiIdbZILNfhSRzscYA3Q9Tyt+b7RyQwqcVcMhzKLY8obe+JxmfsW4GjZ FELv4DBG33V4yKwWFc2KbtjtwpfEe/DmoA29JIMr2cTLQOOXA2hldLe19AJ/6Ihz 4PWJQ1Eny8bq3KIX0w+Ybv1yfiZq/xFz -----END CERTIFICATE-----Generated at Sat Aug 23 18:42:25 2025 by rpki-client