$ rpki-client -vvf rpki.apnic.net/member_repository/A91FFEDB/34D5D7E6550211ED964B7A4AC4F9AE02/WU96C6m9HBOGhHzoljlj_k5xY2w.mft File: WU96C6m9HBOGhHzoljlj_k5xY2w.mft (raw, json) Hash identifier: Rge6DyIqd0Hetl3h9ukfoS+ElPTW8rjbxMwejwjGMQs= Subject key identifier: 27:7E:E7:04:D0:91:FE:B6:4C:2E:98:21:68:25:FA:98:18:34:42:D5 Authority key identifier: 59:4F:7A:0B:A9:BD:1C:13:86:84:7C:E8:96:39:63:FE:4E:71:63:6C Certificate issuer: /CN=A91FFEDB/serialNumber=594F7A0BA9BD1C1386847CE8963963FE4E71636C Certificate serial: 01E8 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/WU96C6m9HBOGhHzoljlj_k5xY2w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FFEDB/34D5D7E6550211ED964B7A4AC4F9AE02/WU96C6m9HBOGhHzoljlj_k5xY2w.mft Manifest number: 01E3 Signing time: Tue 13 May 2025 01:59:30 +0000 Manifest this update: Tue 13 May 2025 01:59:29 +0000 Manifest next update: Tue 20 May 2025 01:59:29 +0000 Files and hashes: 1: WU96C6m9HBOGhHzoljlj_k5xY2w.crl (hash: hUOdFF5H3Su6ZaUFRBwfXbfXU+gwA+Nd/wQbYeknsbU=) 2: 3CE5C23A550611ED96C8F350C4F9AE02.roa (hash: tljXT8G1BNgl+pD66knbjuh1b8kVzEqRHqexSVNncjs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FFEDB/34D5D7E6550211ED964B7A4AC4F9AE02/WU96C6m9HBOGhHzoljlj_k5xY2w.crl rsync://rpki.apnic.net/member_repository/A91FFEDB/34D5D7E6550211ED964B7A4AC4F9AE02/WU96C6m9HBOGhHzoljlj_k5xY2w.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/WU96C6m9HBOGhHzoljlj_k5xY2w.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 01:59:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 488 (0x1e8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FFEDB, serialNumber=594F7A0BA9BD1C1386847CE8963963FE4E71636C Validity Not Before: May 13 01:59:29 2025 GMT Not After : May 20 01:59:29 2025 GMT Subject: CN=6822a781-9657 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:7a:69:9e:07:2a:a7:8c:47:cf:a1:5b:16:f6: 37:f1:dd:5f:62:1d:ce:90:76:95:22:ee:01:ce:2c: 31:d0:94:da:d2:2b:f1:45:56:61:4b:55:f0:61:4f: 91:f7:b5:e8:ae:39:e2:8e:87:d8:74:48:e2:bc:4d: 63:57:57:94:d7:14:77:03:0b:d3:65:5e:d6:17:69: e8:a4:3e:66:3c:ab:3a:03:71:73:b7:0c:ef:69:7d: 1f:cf:bc:68:3b:73:15:b2:cd:60:2a:8b:5b:12:a0: 22:d6:c3:6a:b9:a8:5d:8e:22:ae:e6:20:f5:df:f7: 8d:8e:5a:a3:bb:44:c0:95:e7:35:51:9b:4d:8e:6f: be:e8:e0:dc:d6:bf:a7:98:05:2e:e1:20:cd:89:98: 98:94:d0:74:41:8f:5b:e1:7d:d4:56:56:31:b4:60: f0:92:84:52:75:c0:ca:d3:5a:28:d9:74:05:2c:69: 0f:c1:d9:e3:cb:af:be:87:07:6b:4f:c6:77:98:fb: 48:86:d8:e3:82:61:b0:bb:c8:10:d7:ce:60:85:3d: 33:a6:d6:ec:8d:be:c1:60:0c:f2:17:15:d1:f4:bd: b9:bc:b3:e7:61:89:37:39:70:51:a9:65:ac:9d:6d: c0:c1:f6:1b:62:f0:b2:74:b7:44:9d:fe:30:9d:97: df:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:7E:E7:04:D0:91:FE:B6:4C:2E:98:21:68:25:FA:98:18:34:42:D5 X509v3 Authority Key Identifier: keyid:59:4F:7A:0B:A9:BD:1C:13:86:84:7C:E8:96:39:63:FE:4E:71:63:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FFEDB/34D5D7E6550211ED964B7A4AC4F9AE02/WU96C6m9HBOGhHzoljlj_k5xY2w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/WU96C6m9HBOGhHzoljlj_k5xY2w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FFEDB/34D5D7E6550211ED964B7A4AC4F9AE02/WU96C6m9HBOGhHzoljlj_k5xY2w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7f:dd:0b:81:9f:34:bb:aa:14:4f:d7:69:a1:0b:1f:d0:dc:00: 53:79:0b:3a:23:48:ad:a7:4f:8c:2e:16:27:3c:67:22:9a:56: 74:9d:5b:2d:80:ed:c6:a8:a2:52:5e:02:75:74:c0:cc:80:46: 75:57:11:d7:c8:6a:f1:4e:f6:48:72:c6:d3:bb:26:15:3e:d0: 21:3b:57:86:a3:9f:e8:aa:7b:0f:d0:fc:bd:20:b7:95:17:b4: 7d:8b:fc:16:0f:77:8e:ee:0b:54:82:52:c0:0f:6e:69:a2:de: 1a:4a:e7:39:b8:2c:fd:93:5b:b5:3a:3e:e0:ca:a3:e5:34:87: eb:60:04:57:42:4d:7b:96:50:a6:ea:69:2b:e5:5f:ec:4b:e1: f0:d7:a9:1b:05:4e:a7:84:8d:3c:cb:72:a1:dc:be:07:05:9b: bd:97:a9:a1:91:6a:39:ca:2b:b2:db:20:b9:ef:75:30:c1:2e: 0a:b4:f7:f3:17:bd:a1:3a:81:b1:68:93:c4:d1:02:f1:54:21: a5:e6:1e:63:e9:73:6d:42:8e:9b:f8:a3:6d:c2:d5:7a:46:ff: 5a:35:1e:c3:e0:e7:90:07:c4:38:47:dd:ac:1c:74:19:de:9b: c8:76:23:1f:28:3c:85:be:8c:d3:2b:4f:25:df:62:42:15:60: 7d:55:05:9e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAegwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkZFREIxMTAvBgNVBAUTKDU5NEY3QTBCQTlCRDFDMTM4Njg0N0NFODk2Mzk2M0ZF NEU3MTYzNkMwHhcNMjUwNTEzMDE1OTI5WhcNMjUwNTIwMDE1OTI5WjAYMRYwFAYD VQQDEw02ODIyYTc4MS05NjU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApXppngcqp4xHz6FbFvY38d1fYh3OkHaVIu4Bziwx0JTa0ivxRVZhS1XwYU+R 97XorjnijofYdEjivE1jV1eU1xR3AwvTZV7WF2nopD5mPKs6A3FztwzvaX0fz7xo O3MVss1gKotbEqAi1sNquahdjiKu5iD13/eNjlqju0TAlec1UZtNjm++6ODc1r+n mAUu4SDNiZiYlNB0QY9b4X3UVlYxtGDwkoRSdcDK01oo2XQFLGkPwdnjy6++hwdr T8Z3mPtIhtjjgmGwu8gQ185ghT0zptbsjb7BYAzyFxXR9L25vLPnYYk3OXBRqWWs nW3AwfYbYvCydLdEnf4wnZffuQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCd+5wTQ kf62TC6YIWgl+pgYNELVMB8GA1UdIwQYMBaAFFlPegupvRwThoR86JY5Y/5OcWNs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRkVEQi8zNEQ1RDdFNjU1 MDIxMUVEOTY0QjdBNEFDNEY5QUUwMi9XVTk2QzZtOUhCT0doSHpvbGpsal9rNXhZ MncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1dVOTZDNm05SEJPR2hIem9samxqX2s1eFkydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RkVEQi8zNEQ1RDdFNjU1MDIxMUVEOTY0QjdBNEFDNEY5QUUwMi9XVTk2QzZtOUhC T0doSHpvbGpsal9rNXhZMncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB/3QuBnzS7qhRP12mhCx/Q3ABTeQs6I0itp0+MLhYnPGcimlZ0nVst gO3GqKJSXgJ1dMDMgEZ1VxHXyGrxTvZIcsbTuyYVPtAhO1eGo5/oqnsP0Py9ILeV F7R9i/wWD3eO7gtUglLAD25pot4aSuc5uCz9k1u1Oj7gyqPlNIfrYARXQk17llCm 6mkr5V/sS+Hw16kbBU6nhI08y3Kh3L4HBZu9l6mhkWo5yiuy2yC573UwwS4KtPfz F72hOoGxaJPE0QLxVCGl5h5j6XNtQo6b+KNtwtV6Rv9aNR7D4OeQB8Q4R92sHHQZ 3pvIdiMfKDyFvozTK08l32JCFWB9VQWe -----END CERTIFICATE-----Generated at Wed May 14 15:05:45 2025 by rpki-client