$ rpki-client -vvf rpki.apnic.net/member_repository/A912871A/05BD0F30524011EC8658060EC4F9AE02/WF3cT9n54xQAXzcZj9HiLmgknes.mft File: WF3cT9n54xQAXzcZj9HiLmgknes.mft (raw, json) Hash identifier: WHZZ3gpTEKjOVF5A87a4uedCoqZukDFfkKNzF3lXg2M= Subject key identifier: 73:54:CE:06:AE:9C:8F:D0:E1:01:C0:14:37:E8:4E:45:0F:C1:A5:E8 Authority key identifier: 58:5D:DC:4F:D9:F9:E3:14:00:5F:37:19:8F:D1:E2:2E:68:24:9D:EB Certificate issuer: /CN=A912871A/serialNumber=585DDC4FD9F9E314005F37198FD1E22E68249DEB Certificate serial: 0475 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WF3cT9n54xQAXzcZj9HiLmgknes.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912871A/05BD0F30524011EC8658060EC4F9AE02/WF3cT9n54xQAXzcZj9HiLmgknes.mft Manifest number: 0470 Signing time: Sat 19 Jul 2025 00:29:52 +0000 Manifest this update: Sat 19 Jul 2025 00:29:51 +0000 Manifest next update: Sat 26 Jul 2025 00:29:51 +0000 Files and hashes: 1: WF3cT9n54xQAXzcZj9HiLmgknes.crl (hash: gyIgJma1ywC73EOiLumqI7AkYSxnuTNj+WeaBKqWoZs=) 2: 5431D022524211ECA52D990FC4F9AE02.roa (hash: ngVDpB9EeVUj1wtwuXlGNZD63XjFCao61CO9K4ARPTk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912871A/05BD0F30524011EC8658060EC4F9AE02/WF3cT9n54xQAXzcZj9HiLmgknes.crl rsync://rpki.apnic.net/member_repository/A912871A/05BD0F30524011EC8658060EC4F9AE02/WF3cT9n54xQAXzcZj9HiLmgknes.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WF3cT9n54xQAXzcZj9HiLmgknes.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 00:29:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1141 (0x475) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912871A, serialNumber=585DDC4FD9F9E314005F37198FD1E22E68249DEB Validity Not Before: Jul 19 00:29:51 2025 GMT Not After : Jul 26 00:29:51 2025 GMT Subject: CN=687ae6ff-0d98 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:0c:d6:f3:20:09:58:20:84:4d:64:54:0d:5d: 6c:63:05:42:66:31:a6:d2:50:04:5d:11:a6:31:a0: bb:8c:24:e6:a6:6f:22:d0:aa:7c:a1:48:39:23:2f: 91:fc:e6:53:56:be:b6:3d:55:94:b6:81:cb:53:4a: 59:b2:81:1a:5a:8e:af:22:23:d1:5a:0d:a2:20:b5: 24:f9:37:b4:24:b1:80:34:99:70:7e:67:22:55:51: 11:eb:69:df:5a:99:a5:f9:ac:47:80:b9:34:b0:6b: 87:c7:48:ed:d3:61:18:27:92:53:50:df:7a:b8:09: f2:9b:e4:d2:41:0d:27:82:cb:5a:db:05:b0:1e:ce: ed:8d:d6:7b:8e:2f:09:46:34:5b:72:61:20:ec:e6: 9d:f8:85:b1:64:69:fb:74:30:82:02:b3:f0:09:35: 92:19:b2:41:0b:2d:8f:c1:93:c1:4d:25:db:1c:c0: a1:18:3a:54:e3:a7:ca:00:51:d8:cc:a4:7d:84:5f: 02:47:94:0e:2f:b5:f5:67:f6:fd:5f:a1:20:de:06: 01:73:0f:68:cd:e6:5d:ad:a0:07:7b:49:ac:5f:87: 97:a6:ac:8f:b1:ca:db:e0:8c:b2:ff:7d:9f:67:fe: 2f:b3:1f:68:32:87:00:5b:5e:40:81:92:22:3d:d0: b8:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:54:CE:06:AE:9C:8F:D0:E1:01:C0:14:37:E8:4E:45:0F:C1:A5:E8 X509v3 Authority Key Identifier: keyid:58:5D:DC:4F:D9:F9:E3:14:00:5F:37:19:8F:D1:E2:2E:68:24:9D:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912871A/05BD0F30524011EC8658060EC4F9AE02/WF3cT9n54xQAXzcZj9HiLmgknes.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WF3cT9n54xQAXzcZj9HiLmgknes.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912871A/05BD0F30524011EC8658060EC4F9AE02/WF3cT9n54xQAXzcZj9HiLmgknes.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 35:46:71:fc:09:97:a1:c5:13:2f:dd:3d:9f:b4:4b:d6:e6:fa: e8:0a:b0:5c:b1:bc:21:2c:f7:63:ca:49:c8:b4:54:70:a9:90: 8c:29:0a:3f:2d:fe:2a:dd:87:88:2f:66:e2:02:eb:3a:fa:43: 1a:aa:96:32:e4:c4:41:7d:a3:fb:29:bc:bf:03:91:3b:fa:5c: d3:d2:f1:c6:2e:49:ad:16:7e:25:c2:4c:e0:90:25:1a:d9:5f: 92:83:f2:73:ea:ac:84:54:bf:13:05:af:77:68:e1:79:42:8b: 85:9a:5d:e9:e4:31:03:86:43:6c:7b:8d:e9:cd:3a:c9:e6:60: d1:62:d0:09:10:24:8d:f9:aa:cf:87:9d:b4:98:b5:1e:9a:c7: 59:e6:62:70:9f:49:f6:1d:d7:e0:7d:94:10:99:29:42:96:b5: 89:0f:4b:45:ed:d8:24:a7:e0:69:a0:e8:ba:7d:5d:c0:6e:50: a3:41:d5:b8:fe:d4:15:07:ce:a8:de:63:85:28:be:e0:3a:47: 69:ce:7e:cf:f3:b3:29:e6:01:65:b8:84:4c:e6:67:da:d5:d3: f2:fd:03:e3:fe:76:af:08:71:06:8e:32:c6:9c:fe:dc:31:bb: 26:57:e6:ec:72:2f:20:ae:db:ea:bd:a6:e8:e8:90:80:a8:d7: 13:ff:fa:89 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBHUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjg3MUExMTAvBgNVBAUTKDU4NUREQzRGRDlGOUUzMTQwMDVGMzcxOThGRDFFMjJF NjgyNDlERUIwHhcNMjUwNzE5MDAyOTUxWhcNMjUwNzI2MDAyOTUxWjAYMRYwFAYD VQQDEw02ODdhZTZmZi0wZDk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArQzW8yAJWCCETWRUDV1sYwVCZjGm0lAEXRGmMaC7jCTmpm8i0Kp8oUg5Iy+R /OZTVr62PVWUtoHLU0pZsoEaWo6vIiPRWg2iILUk+Te0JLGANJlwfmciVVER62nf Wpml+axHgLk0sGuHx0jt02EYJ5JTUN96uAnym+TSQQ0ngsta2wWwHs7tjdZ7ji8J RjRbcmEg7Oad+IWxZGn7dDCCArPwCTWSGbJBCy2PwZPBTSXbHMChGDpU46fKAFHY zKR9hF8CR5QOL7X1Z/b9X6Eg3gYBcw9ozeZdraAHe0msX4eXpqyPscrb4Iyy/32f Z/4vsx9oMocAW15AgZIiPdC43QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHNUzgau nI/Q4QHAFDfoTkUPwaXoMB8GA1UdIwQYMBaAFFhd3E/Z+eMUAF83GY/R4i5oJJ3r MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyODcxQS8wNUJEMEYzMDUy NDAxMUVDODY1ODA2MEVDNEY5QUUwMi9XRjNjVDluNTR4UUFYemNaajlIaUxtZ2tu ZXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dGM2NUOW41NHhRQVh6Y1pqOUhpTG1na25lcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy ODcxQS8wNUJEMEYzMDUyNDAxMUVDODY1ODA2MEVDNEY5QUUwMi9XRjNjVDluNTR4 UUFYemNaajlIaUxtZ2tuZXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA1RnH8CZehxRMv3T2ftEvW5vroCrBcsbwhLPdjyknItFRwqZCMKQo/ Lf4q3YeIL2biAus6+kMaqpYy5MRBfaP7Kby/A5E7+lzT0vHGLkmtFn4lwkzgkCUa 2V+Sg/Jz6qyEVL8TBa93aOF5QouFml3p5DEDhkNse43pzTrJ5mDRYtAJECSN+arP h520mLUemsdZ5mJwn0n2HdfgfZQQmSlClrWJD0tF7dgkp+BpoOi6fV3AblCjQdW4 /tQVB86o3mOFKL7gOkdpzn7P87Mp5gFluIRM5mfa1dPy/QPj/navCHEGjjLGnP7c MbsmV+bsci8grtvqvabo6JCAqNcT//qJ -----END CERTIFICATE-----Generated at Sun Jul 20 07:40:46 2025 by rpki-client