$ rpki-client -vvf rpki.apnic.net/member_repository/A91FFEDB/34D5D7E6550211ED964B7A4AC4F9AE02/WU96C6m9HBOGhHzoljlj_k5xY2w.mft File: WU96C6m9HBOGhHzoljlj_k5xY2w.mft (raw, json) Hash identifier: 9Tl29kTK9R+iUENxQTGQjBtTm2SppRX+SpJSC0qldQw= Subject key identifier: CF:B3:36:EE:09:29:DC:CE:51:FB:93:0E:BE:8D:43:F7:64:18:2F:16 Authority key identifier: 59:4F:7A:0B:A9:BD:1C:13:86:84:7C:E8:96:39:63:FE:4E:71:63:6C Certificate issuer: /CN=A91FFEDB/serialNumber=594F7A0BA9BD1C1386847CE8963963FE4E71636C Certificate serial: 021B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/WU96C6m9HBOGhHzoljlj_k5xY2w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FFEDB/34D5D7E6550211ED964B7A4AC4F9AE02/WU96C6m9HBOGhHzoljlj_k5xY2w.mft Manifest number: 0216 Signing time: Sat 23 Aug 2025 02:17:17 +0000 Manifest this update: Sat 23 Aug 2025 02:17:16 +0000 Manifest next update: Sat 30 Aug 2025 02:17:16 +0000 Files and hashes: 1: WU96C6m9HBOGhHzoljlj_k5xY2w.crl (hash: WndFZmcjMH5HEZFwm5/un+mfIreUnoTQVm+X0zkiC3k=) 2: 3CE5C23A550611ED96C8F350C4F9AE02.roa (hash: tljXT8G1BNgl+pD66knbjuh1b8kVzEqRHqexSVNncjs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FFEDB/34D5D7E6550211ED964B7A4AC4F9AE02/WU96C6m9HBOGhHzoljlj_k5xY2w.crl rsync://rpki.apnic.net/member_repository/A91FFEDB/34D5D7E6550211ED964B7A4AC4F9AE02/WU96C6m9HBOGhHzoljlj_k5xY2w.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/WU96C6m9HBOGhHzoljlj_k5xY2w.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 02:17:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 539 (0x21b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FFEDB, serialNumber=594F7A0BA9BD1C1386847CE8963963FE4E71636C Validity Not Before: Aug 23 02:17:16 2025 GMT Not After : Aug 30 02:17:16 2025 GMT Subject: CN=68a924ac-2b97 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:c4:d0:37:cf:f5:11:1e:cd:85:cb:fb:1c:cf: ce:fa:3b:15:ab:03:db:2b:91:bd:82:1e:f7:cf:dd: dd:e3:7c:36:1c:f0:39:92:14:08:1b:8c:7e:54:6a: e2:e6:2f:f0:e5:a1:ad:61:b7:ca:89:d6:09:29:df: 75:7f:28:c4:32:b5:4b:a6:29:41:b4:fc:3a:d6:98: ce:c8:0b:1a:11:fd:ce:93:99:ab:68:cc:74:1a:23: 41:d1:5b:62:35:c2:8d:60:b9:f2:47:dd:98:c3:14: 8a:f3:6a:a8:5a:1f:07:22:41:2a:ec:ae:9d:41:97: 44:d0:1d:72:96:48:f1:03:a9:b3:db:b8:9c:f6:cd: e8:f7:86:e3:03:e7:54:70:8f:62:a0:42:eb:a9:b4: fc:53:22:24:4b:b7:2e:f6:00:2a:9e:e1:76:57:5d: e6:f6:14:44:04:a1:0c:84:9c:23:67:2f:59:a9:31: af:94:eb:01:32:f0:a8:77:da:42:21:4d:18:d6:4d: 5b:24:cf:53:fb:2e:eb:dd:39:bc:b8:d4:a7:14:55: fa:5f:31:42:67:03:36:e1:c4:a4:5e:6f:f6:3d:6c: 78:ec:9a:49:7a:dd:93:e7:ac:39:46:77:6b:69:75: d8:cb:1a:ce:36:ac:97:3c:35:6c:dc:10:3d:5c:e5: 89:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:B3:36:EE:09:29:DC:CE:51:FB:93:0E:BE:8D:43:F7:64:18:2F:16 X509v3 Authority Key Identifier: keyid:59:4F:7A:0B:A9:BD:1C:13:86:84:7C:E8:96:39:63:FE:4E:71:63:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FFEDB/34D5D7E6550211ED964B7A4AC4F9AE02/WU96C6m9HBOGhHzoljlj_k5xY2w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/WU96C6m9HBOGhHzoljlj_k5xY2w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FFEDB/34D5D7E6550211ED964B7A4AC4F9AE02/WU96C6m9HBOGhHzoljlj_k5xY2w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 14:2d:d4:d4:8b:db:7e:91:73:31:59:ba:c4:44:33:00:06:4e: 06:67:b7:be:a1:e9:06:e0:25:26:97:75:7c:b5:5c:85:f3:f2: f8:94:c9:ed:b7:b8:16:95:38:cc:69:34:28:c4:5f:01:dc:33: 92:da:3b:05:8b:96:95:72:aa:b4:a9:bf:50:56:bd:8f:b1:f1: 72:c2:4d:4c:94:81:a5:d7:1d:c7:c2:44:c8:ef:3a:e6:45:a4: ad:7a:b3:86:54:f5:83:99:cb:c0:f2:e3:44:07:41:0c:b8:73: 6e:ce:83:67:7d:6c:38:8d:eb:a2:96:9a:34:7e:9d:e2:43:5c: dc:fd:bb:ae:91:b2:33:8f:97:89:ee:7c:e2:96:de:68:f7:9c: 1a:c1:48:06:fa:e1:d0:b3:85:25:10:d7:97:51:2d:1c:6c:c9: ce:57:d0:ed:23:db:f2:6a:c4:32:1a:65:7b:a2:32:15:f5:5e: f1:0c:1a:50:b2:ce:3d:36:c1:45:11:de:62:a8:22:a5:15:2e: a6:47:46:89:1a:5d:d8:f0:82:fa:dd:95:a1:b4:02:fc:32:92: 6e:17:88:6b:23:c4:4a:fd:e6:a7:b1:72:a9:33:8f:0b:a5:db: 90:e3:42:d0:e1:fc:0a:bb:bc:7c:94:fc:98:57:6d:60:3c:bc: e8:40:7d:f1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAhswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkZFREIxMTAvBgNVBAUTKDU5NEY3QTBCQTlCRDFDMTM4Njg0N0NFODk2Mzk2M0ZF NEU3MTYzNkMwHhcNMjUwODIzMDIxNzE2WhcNMjUwODMwMDIxNzE2WjAYMRYwFAYD VQQDEw02OGE5MjRhYy0yYjk3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw8TQN8/1ER7Nhcv7HM/O+jsVqwPbK5G9gh73z93d43w2HPA5khQIG4x+VGri 5i/w5aGtYbfKidYJKd91fyjEMrVLpilBtPw61pjOyAsaEf3Ok5mraMx0GiNB0Vti NcKNYLnyR92YwxSK82qoWh8HIkEq7K6dQZdE0B1ylkjxA6mz27ic9s3o94bjA+dU cI9ioELrqbT8UyIkS7cu9gAqnuF2V13m9hREBKEMhJwjZy9ZqTGvlOsBMvCod9pC IU0Y1k1bJM9T+y7r3Tm8uNSnFFX6XzFCZwM24cSkXm/2PWx47JpJet2T56w5Rndr aXXYyxrONqyXPDVs3BA9XOWJYQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM+zNu4J KdzOUfuTDr6NQ/dkGC8WMB8GA1UdIwQYMBaAFFlPegupvRwThoR86JY5Y/5OcWNs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRkVEQi8zNEQ1RDdFNjU1 MDIxMUVEOTY0QjdBNEFDNEY5QUUwMi9XVTk2QzZtOUhCT0doSHpvbGpsal9rNXhZ MncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1dVOTZDNm05SEJPR2hIem9samxqX2s1eFkydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RkVEQi8zNEQ1RDdFNjU1MDIxMUVEOTY0QjdBNEFDNEY5QUUwMi9XVTk2QzZtOUhC T0doSHpvbGpsal9rNXhZMncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAULdTUi9t+kXMxWbrERDMABk4GZ7e+oekG4CUml3V8tVyF8/L4lMnt t7gWlTjMaTQoxF8B3DOS2jsFi5aVcqq0qb9QVr2PsfFywk1MlIGl1x3HwkTI7zrm RaSterOGVPWDmcvA8uNEB0EMuHNuzoNnfWw4jeuilpo0fp3iQ1zc/buukbIzj5eJ 7nzilt5o95wawUgG+uHQs4UlENeXUS0cbMnOV9DtI9vyasQyGmV7ojIV9V7xDBpQ ss49NsFFEd5iqCKlFS6mR0aJGl3Y8IL63ZWhtAL8MpJuF4hrI8RK/eansXKpM48L pduQ40LQ4fwKu7x8lPyYV21gPLzoQH3x -----END CERTIFICATE-----Generated at Sat Aug 23 10:42:57 2025 by rpki-client