$ rpki-client -vvf rpki.apnic.net/member_repository/A91FFEDB/34D5D7E6550211ED964B7A4AC4F9AE02/WU96C6m9HBOGhHzoljlj_k5xY2w.mft File: WU96C6m9HBOGhHzoljlj_k5xY2w.mft (raw, json) Hash identifier: i0HG3T6Eb14ggM5tXRTq+PjxhIhjS9w0rMKqZF7V1YU= Subject key identifier: 4F:42:FC:29:A4:6C:3E:16:A5:2F:C1:EC:A5:88:21:27:2E:01:8B:88 Authority key identifier: 59:4F:7A:0B:A9:BD:1C:13:86:84:7C:E8:96:39:63:FE:4E:71:63:6C Certificate issuer: /CN=A91FFEDB/serialNumber=594F7A0BA9BD1C1386847CE8963963FE4E71636C Certificate serial: 0201 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/WU96C6m9HBOGhHzoljlj_k5xY2w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FFEDB/34D5D7E6550211ED964B7A4AC4F9AE02/WU96C6m9HBOGhHzoljlj_k5xY2w.mft Manifest number: 01FC Signing time: Thu 03 Jul 2025 02:31:30 +0000 Manifest this update: Thu 03 Jul 2025 02:31:30 +0000 Manifest next update: Thu 10 Jul 2025 02:31:30 +0000 Files and hashes: 1: WU96C6m9HBOGhHzoljlj_k5xY2w.crl (hash: 6NeYum0xvQqRz09WOfsHiXYNn4ctubJXN5Gizlb6DTE=) 2: 3CE5C23A550611ED96C8F350C4F9AE02.roa (hash: tljXT8G1BNgl+pD66knbjuh1b8kVzEqRHqexSVNncjs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FFEDB/34D5D7E6550211ED964B7A4AC4F9AE02/WU96C6m9HBOGhHzoljlj_k5xY2w.crl rsync://rpki.apnic.net/member_repository/A91FFEDB/34D5D7E6550211ED964B7A4AC4F9AE02/WU96C6m9HBOGhHzoljlj_k5xY2w.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/WU96C6m9HBOGhHzoljlj_k5xY2w.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 02:31:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 513 (0x201) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FFEDB, serialNumber=594F7A0BA9BD1C1386847CE8963963FE4E71636C Validity Not Before: Jul 3 02:31:30 2025 GMT Not After : Jul 10 02:31:30 2025 GMT Subject: CN=6865eb82-4f6a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:db:5a:2b:e8:6e:ae:8e:7a:05:7e:9f:38:c3: f8:81:98:96:a5:d3:7a:67:f4:03:66:41:67:79:9d: e3:f4:b3:6d:40:3f:2d:f2:74:0a:3d:f6:e6:3b:96: 6f:db:75:fd:a0:3c:36:8d:c9:a5:0f:1c:fe:4d:48: a7:a3:6d:54:4b:72:16:1e:ce:86:77:92:f4:ad:a7: 53:32:ec:40:dd:4a:b5:84:84:48:c6:51:4e:50:1e: b0:e4:98:66:19:2b:2a:e6:64:71:f1:0a:c5:1d:81: fb:2d:8b:ec:6f:0f:09:b0:53:34:34:d1:62:50:eb: e2:1d:67:c4:0f:c6:3f:c4:e8:fb:80:ce:48:14:c3: 08:0d:0d:1d:ac:e0:16:6f:de:56:fc:9a:f6:b7:84: 7a:ba:1b:e6:af:18:43:1e:9a:89:6e:9e:5c:f9:0f: 6d:27:89:9c:12:b8:f0:67:31:04:e5:7e:99:76:2e: 47:63:67:7e:26:b7:05:9d:60:57:39:d7:78:de:4b: 83:4a:0d:ab:69:f5:f9:e1:15:33:8c:4d:82:5a:00: 60:cd:d7:90:0d:f3:08:6f:79:21:1c:41:b2:d8:a0: 81:2b:b2:ce:6e:97:79:a0:c0:bc:45:a1:8b:17:c7: 8c:0b:d0:f7:73:db:a4:a9:a3:61:a9:5d:7b:5d:99: ce:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:42:FC:29:A4:6C:3E:16:A5:2F:C1:EC:A5:88:21:27:2E:01:8B:88 X509v3 Authority Key Identifier: keyid:59:4F:7A:0B:A9:BD:1C:13:86:84:7C:E8:96:39:63:FE:4E:71:63:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FFEDB/34D5D7E6550211ED964B7A4AC4F9AE02/WU96C6m9HBOGhHzoljlj_k5xY2w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/WU96C6m9HBOGhHzoljlj_k5xY2w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FFEDB/34D5D7E6550211ED964B7A4AC4F9AE02/WU96C6m9HBOGhHzoljlj_k5xY2w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 15:7f:95:00:f6:67:36:78:f3:20:c3:68:c4:50:b7:0a:4f:7f: be:75:c8:75:9d:55:93:41:d8:01:88:83:01:a8:06:77:82:18: 77:aa:9e:c3:b1:97:02:de:3b:8f:c6:5d:fc:de:7e:80:3e:ba: 5f:9d:64:2c:58:56:99:a7:5c:97:06:66:c8:da:8f:54:c8:f5: 55:dc:b6:fe:d5:05:a7:b7:c3:9a:62:6f:79:6e:f5:1e:46:f1: 97:21:af:db:5c:4b:ea:bf:01:51:b1:1e:cd:c9:00:b7:b3:25: f4:ee:16:71:c3:d5:13:59:cc:51:6f:e0:ec:d9:f6:2f:c2:07: 18:2b:fc:0a:7d:df:1c:87:a7:c3:1c:0b:b1:2c:5a:72:3b:75: db:1d:be:99:f5:23:99:bb:ef:de:23:d8:e1:30:6f:8c:0d:af: c2:81:9b:47:97:44:6d:0b:f1:83:f6:24:bf:7c:33:76:69:70: 01:ba:06:20:61:9e:2a:1c:71:77:a9:96:09:6c:e0:33:84:c1: 5e:91:5a:95:76:bb:c1:16:12:21:f2:91:53:02:2b:04:b9:8b: f0:5d:16:6c:c8:7f:02:26:d7:92:32:46:e2:11:93:62:bb:35: 09:19:41:56:9e:99:55:d2:30:db:b5:31:04:4a:aa:4e:68:27: ec:85:4b:f4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAgEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkZFREIxMTAvBgNVBAUTKDU5NEY3QTBCQTlCRDFDMTM4Njg0N0NFODk2Mzk2M0ZF NEU3MTYzNkMwHhcNMjUwNzAzMDIzMTMwWhcNMjUwNzEwMDIzMTMwWjAYMRYwFAYD VQQDEw02ODY1ZWI4Mi00ZjZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv9taK+huro56BX6fOMP4gZiWpdN6Z/QDZkFneZ3j9LNtQD8t8nQKPfbmO5Zv 23X9oDw2jcmlDxz+TUino21US3IWHs6Gd5L0radTMuxA3Uq1hIRIxlFOUB6w5Jhm GSsq5mRx8QrFHYH7LYvsbw8JsFM0NNFiUOviHWfED8Y/xOj7gM5IFMMIDQ0drOAW b95W/Jr2t4R6uhvmrxhDHpqJbp5c+Q9tJ4mcErjwZzEE5X6Zdi5HY2d+JrcFnWBX Odd43kuDSg2rafX54RUzjE2CWgBgzdeQDfMIb3khHEGy2KCBK7LObpd5oMC8RaGL F8eMC9D3c9ukqaNhqV17XZnOcwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE9C/Cmk bD4WpS/B7KWIIScuAYuIMB8GA1UdIwQYMBaAFFlPegupvRwThoR86JY5Y/5OcWNs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRkVEQi8zNEQ1RDdFNjU1 MDIxMUVEOTY0QjdBNEFDNEY5QUUwMi9XVTk2QzZtOUhCT0doSHpvbGpsal9rNXhZ MncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1dVOTZDNm05SEJPR2hIem9samxqX2s1eFkydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RkVEQi8zNEQ1RDdFNjU1MDIxMUVEOTY0QjdBNEFDNEY5QUUwMi9XVTk2QzZtOUhC T0doSHpvbGpsal9rNXhZMncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAVf5UA9mc2ePMgw2jEULcKT3++dch1nVWTQdgBiIMBqAZ3ghh3qp7D sZcC3juPxl383n6APrpfnWQsWFaZp1yXBmbI2o9UyPVV3Lb+1QWnt8OaYm95bvUe RvGXIa/bXEvqvwFRsR7NyQC3syX07hZxw9UTWcxRb+Ds2fYvwgcYK/wKfd8ch6fD HAuxLFpyO3XbHb6Z9SOZu+/eI9jhMG+MDa/CgZtHl0RtC/GD9iS/fDN2aXABugYg YZ4qHHF3qZYJbOAzhMFekVqVdrvBFhIh8pFTAisEuYvwXRZsyH8CJteSMkbiEZNi uzUJGUFWnplV0jDbtTEESqpOaCfshUv0 -----END CERTIFICATE-----Generated at Fri Jul 4 07:39:16 2025 by rpki-client