$ rpki-client -vvf rpki.apnic.net/member_repository/A911CC1D/8CFE1D9AD1E211ED923C611FC4F9AE02/-wGX2AKmYYboQL1i6I7kDtlelSk.mft File: -wGX2AKmYYboQL1i6I7kDtlelSk.mft (raw, json) Hash identifier: u27ayfDtbk/IGYO5uj7ZZbRk0ZopopG0eqA6/DZDbEQ= Subject key identifier: 0C:C2:88:59:C2:88:58:7E:B3:07:6A:E9:6A:77:43:8F:29:28:9E:D6 Authority key identifier: FB:01:97:D8:02:A6:61:86:E8:40:BD:62:E8:8E:E4:0E:D9:5E:95:29 Certificate issuer: /CN=A911CC1D/serialNumber=FB0197D802A66186E840BD62E88EE40ED95E9529 Certificate serial: 01BE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-wGX2AKmYYboQL1i6I7kDtlelSk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911CC1D/8CFE1D9AD1E211ED923C611FC4F9AE02/-wGX2AKmYYboQL1i6I7kDtlelSk.mft Manifest number: 01B4 Signing time: Sat 19 Jul 2025 03:22:52 +0000 Manifest this update: Sat 19 Jul 2025 03:22:51 +0000 Manifest next update: Sat 26 Jul 2025 03:22:51 +0000 Files and hashes: 1: -wGX2AKmYYboQL1i6I7kDtlelSk.crl (hash: R/DurvlKaP915qG+sQhf0IpC7g57BPnGZas5dNw3nps=) 2: 60377A8C695311EEB599BD23C4F9AE02.roa (hash: e9UJAcJ07X5sik6oJ0l9nVp35GOCmRSlbj3wJmjgBrI=) 3: 8FF4E2E2EFAE11EDBD96F26BC4F9AE02.roa (hash: W+oeT9rREoYMeOrigBJ91wQkGtgMzcafqibSzxam1Bk=) 4: 359322B2D1E711EDB90DBF27C4F9AE02.roa (hash: oqC6m15GvkoEhYAheA3+Yegw0Ae9mcHaCs/xuTvq3ak=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911CC1D/8CFE1D9AD1E211ED923C611FC4F9AE02/-wGX2AKmYYboQL1i6I7kDtlelSk.crl rsync://rpki.apnic.net/member_repository/A911CC1D/8CFE1D9AD1E211ED923C611FC4F9AE02/-wGX2AKmYYboQL1i6I7kDtlelSk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-wGX2AKmYYboQL1i6I7kDtlelSk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 03:22:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 446 (0x1be) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911CC1D, serialNumber=FB0197D802A66186E840BD62E88EE40ED95E9529 Validity Not Before: Jul 19 03:22:51 2025 GMT Not After : Jul 26 03:22:51 2025 GMT Subject: CN=687b0f8b-b9e8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:8e:37:53:fc:8b:c2:39:31:2a:1e:66:bb:ad: 8c:34:f4:5d:9b:99:a5:d8:73:2a:ad:17:f7:4f:8f: 75:7c:84:d8:a5:76:56:71:d0:f1:bb:d8:2d:35:4c: 71:cd:98:70:f6:9d:d9:85:77:c8:89:58:fe:f4:01: 72:66:33:1c:6e:91:41:c0:e9:f3:b0:80:9c:af:13: 8b:3c:e9:8c:83:39:01:d5:57:2a:94:ab:e1:63:d4: 30:e9:d1:3a:f9:7e:14:17:64:92:a1:33:40:e8:6e: 4a:74:7a:f0:20:58:a3:14:3c:5b:db:1e:6b:66:55: 45:ca:22:4a:e1:aa:d2:60:6e:11:1a:22:95:6a:5f: 35:1e:2b:42:dd:3a:24:27:45:16:99:00:23:60:ec: e7:c4:c6:60:d9:55:fd:26:e2:1f:62:db:4f:2f:82: b9:e4:3c:4e:f5:29:56:66:cb:e9:d4:ad:15:2b:ab: d0:b8:ec:e7:e3:5d:52:36:50:cb:9a:84:48:71:6b: 59:7f:c6:e7:92:05:6e:45:a1:e6:16:f0:f2:5f:68: 47:dc:14:ed:a8:7a:e9:17:81:e3:05:6b:6b:3d:82: 20:04:37:30:18:e7:f6:7d:19:e3:83:90:1d:e5:a4: 1e:ea:1f:58:41:91:11:66:bc:fe:cc:fd:77:9f:2a: 63:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:C2:88:59:C2:88:58:7E:B3:07:6A:E9:6A:77:43:8F:29:28:9E:D6 X509v3 Authority Key Identifier: keyid:FB:01:97:D8:02:A6:61:86:E8:40:BD:62:E8:8E:E4:0E:D9:5E:95:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911CC1D/8CFE1D9AD1E211ED923C611FC4F9AE02/-wGX2AKmYYboQL1i6I7kDtlelSk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-wGX2AKmYYboQL1i6I7kDtlelSk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911CC1D/8CFE1D9AD1E211ED923C611FC4F9AE02/-wGX2AKmYYboQL1i6I7kDtlelSk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 83:a4:aa:c8:07:89:e6:50:44:c7:3b:7f:ff:83:d5:a9:c9:88: 9a:3d:84:ec:ed:52:76:ae:b4:93:5b:fa:df:f4:30:75:a2:e2: 2e:66:46:55:de:76:70:e5:95:07:6c:4f:2f:e2:71:88:02:06: 40:3e:2c:3a:45:e5:61:27:7d:c7:7f:1e:dc:61:86:99:b4:ef: ca:db:2a:13:bd:33:42:50:15:e1:2a:38:1f:7c:8a:a9:18:f8: 8a:73:4c:d8:1b:75:0d:20:2a:4d:b2:44:c5:55:86:d4:fb:e4: 89:03:87:0c:8e:a7:5d:49:bc:72:75:62:7f:a4:d3:2d:13:3c: b4:c4:36:3d:5d:56:9b:8b:c3:68:c3:f9:94:18:4a:91:5c:55: 4c:57:2c:5a:a9:09:4f:54:4c:7f:5f:2b:ce:62:9c:71:29:7c: c2:86:9c:ce:11:e2:94:d5:b6:d1:1f:10:23:8a:2a:7b:26:9c: d8:5e:dd:32:30:77:1b:f4:ed:75:a0:f6:d7:de:93:9f:a4:34: d5:1c:ef:ad:0e:a8:10:cb:09:17:be:6e:da:cd:3c:f9:e1:59: de:b3:22:a8:48:07:be:a5:51:50:a1:1e:25:2d:ff:50:c9:b3: 64:6b:38:a6:02:07:46:f6:b4:0e:5e:a3:4d:65:18:b4:76:d0: 3a:e5:cb:dc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAb4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUNDMUQxMTAvBgNVBAUTKEZCMDE5N0Q4MDJBNjYxODZFODQwQkQ2MkU4OEVFNDBF RDk1RTk1MjkwHhcNMjUwNzE5MDMyMjUxWhcNMjUwNzI2MDMyMjUxWjAYMRYwFAYD VQQDEw02ODdiMGY4Yi1iOWU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr443U/yLwjkxKh5mu62MNPRdm5ml2HMqrRf3T491fITYpXZWcdDxu9gtNUxx zZhw9p3ZhXfIiVj+9AFyZjMcbpFBwOnzsICcrxOLPOmMgzkB1VcqlKvhY9Qw6dE6 +X4UF2SSoTNA6G5KdHrwIFijFDxb2x5rZlVFyiJK4arSYG4RGiKVal81HitC3Tok J0UWmQAjYOznxMZg2VX9JuIfYttPL4K55DxO9SlWZsvp1K0VK6vQuOzn411SNlDL moRIcWtZf8bnkgVuRaHmFvDyX2hH3BTtqHrpF4HjBWtrPYIgBDcwGOf2fRnjg5Ad 5aQe6h9YQZERZrz+zP13nypj7QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAzCiFnC iFh+swdq6Wp3Q48pKJ7WMB8GA1UdIwQYMBaAFPsBl9gCpmGG6EC9YuiO5A7ZXpUp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQ0MxRC84Q0ZFMUQ5QUQx RTIxMUVEOTIzQzYxMUZDNEY5QUUwMi8td0dYMkFLbVlZYm9RTDFpNkk3a0R0bGVs U2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy13R1gyQUttWVlib1FMMWk2STdrRHRsZWxTay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx Q0MxRC84Q0ZFMUQ5QUQxRTIxMUVEOTIzQzYxMUZDNEY5QUUwMi8td0dYMkFLbVlZ Ym9RTDFpNkk3a0R0bGVsU2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCDpKrIB4nmUETHO3//g9WpyYiaPYTs7VJ2rrSTW/rf9DB1ouIuZkZV 3nZw5ZUHbE8v4nGIAgZAPiw6ReVhJ33Hfx7cYYaZtO/K2yoTvTNCUBXhKjgffIqp GPiKc0zYG3UNICpNskTFVYbU++SJA4cMjqddSbxydWJ/pNMtEzy0xDY9XVabi8No w/mUGEqRXFVMVyxaqQlPVEx/XyvOYpxxKXzChpzOEeKU1bbRHxAjiip7JpzYXt0y MHcb9O11oPbX3pOfpDTVHO+tDqgQywkXvm7azTz54VnesyKoSAe+pVFQoR4lLf9Q ybNkazimAgdG9rQOXqNNZRi0dtA65cvc -----END CERTIFICATE-----Generated at Mon Jul 21 02:39:22 2025 by rpki-client