$ rpki-client -vvf rpki.apnic.net/member_repository/A914A75A/3FAA7C54F48711EF849A2772C4F9AE02/WO7lLSrgkuxVhuBw5kYsNjUPpuE.mft File: WO7lLSrgkuxVhuBw5kYsNjUPpuE.mft (raw, json) Hash identifier: 5q+JCeGibp/mKEWRI029iKBMcmXzBU9aThapewrNgAA= Subject key identifier: 1C:2D:F1:4E:51:23:A8:9C:98:1E:CF:E4:69:D1:8D:5B:43:98:33:F5 Authority key identifier: 58:EE:E5:2D:2A:E0:92:EC:55:86:E0:70:E6:46:2C:36:35:0F:A6:E1 Certificate issuer: /CN=A914A75A/serialNumber=58EEE52D2AE092EC5586E070E6462C36350FA6E1 Certificate serial: 12 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WO7lLSrgkuxVhuBw5kYsNjUPpuE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914A75A/3FAA7C54F48711EF849A2772C4F9AE02/WO7lLSrgkuxVhuBw5kYsNjUPpuE.mft Manifest number: 11 Signing time: Sat 29 Mar 2025 07:20:58 +0000 Manifest this update: Sat 29 Mar 2025 07:20:58 +0000 Manifest next update: Sat 05 Apr 2025 07:20:58 +0000 Files and hashes: 1: WO7lLSrgkuxVhuBw5kYsNjUPpuE.crl (hash: YyXdzSHUYY5SYcktV9ogxGAtSAPWpW5OQqpOuEj1wqs=) 2: D56D67B0F48711EFBB2D9D73C4F9AE02.roa (hash: IcKmF13UvgbjR5e+pq74azw6DFKPoTGhWhM8VYVh+JY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914A75A/3FAA7C54F48711EF849A2772C4F9AE02/WO7lLSrgkuxVhuBw5kYsNjUPpuE.crl rsync://rpki.apnic.net/member_repository/A914A75A/3FAA7C54F48711EF849A2772C4F9AE02/WO7lLSrgkuxVhuBw5kYsNjUPpuE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WO7lLSrgkuxVhuBw5kYsNjUPpuE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 05:08:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18 (0x12) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914A75A Validity Not Before: Mar 29 07:20:58 2025 GMT Not After : Apr 5 07:20:58 2025 GMT Subject: CN=67e79f5a-b68a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:73:bb:df:a8:ca:0e:f7:8b:9f:44:67:35:9d: 57:b3:e0:5e:b3:a5:ee:99:73:ba:60:f0:2f:91:51: 29:22:d5:52:b3:b6:af:c3:bc:38:ab:87:18:d5:7d: 09:38:f5:ed:d2:2c:9f:b9:33:d9:23:fa:3c:bc:f4: 20:f4:b6:38:21:9f:db:df:98:7a:bf:be:f8:9b:4e: 6d:ac:93:2f:12:d8:52:09:77:13:33:2a:11:b1:db: 11:e3:47:a8:24:41:76:75:1a:06:6c:bc:59:ea:78: dc:e0:50:94:4a:4f:2b:75:3b:4a:96:4e:02:f5:1b: 58:96:7b:01:a5:36:88:6b:31:ab:56:29:05:d9:34: 71:7f:75:86:ae:92:d1:5c:56:cc:2f:f0:3b:d7:c0: 62:5e:2a:85:77:50:2f:e8:25:dc:56:4b:80:f9:1a: 87:91:71:a7:ab:df:1b:49:36:78:8e:18:69:c4:82: 99:94:d8:06:00:09:9c:ba:61:4e:25:2e:02:11:3d: 4e:73:a3:06:fa:35:22:f5:70:dc:27:a6:8f:fe:c8: 20:75:1e:65:ec:2b:db:34:72:c1:44:3b:27:a3:fa: bc:89:3b:9a:ad:36:cf:95:0f:32:f5:e4:eb:58:20: d8:51:b9:f2:5e:09:b8:87:6f:f9:14:87:f8:85:a2: 4d:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:2D:F1:4E:51:23:A8:9C:98:1E:CF:E4:69:D1:8D:5B:43:98:33:F5 X509v3 Authority Key Identifier: keyid:58:EE:E5:2D:2A:E0:92:EC:55:86:E0:70:E6:46:2C:36:35:0F:A6:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914A75A/3FAA7C54F48711EF849A2772C4F9AE02/WO7lLSrgkuxVhuBw5kYsNjUPpuE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WO7lLSrgkuxVhuBw5kYsNjUPpuE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914A75A/3FAA7C54F48711EF849A2772C4F9AE02/WO7lLSrgkuxVhuBw5kYsNjUPpuE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 58:1c:cb:b9:cb:12:01:0c:d3:e8:7b:f7:70:ea:93:c7:4a:cf: 87:d8:86:d3:43:7c:d2:d8:fb:df:8c:ff:e5:e6:81:31:d2:20: af:81:fe:af:a0:6e:37:2b:8b:c4:58:47:69:11:ee:31:79:a8: a8:e5:8d:55:b1:3f:f8:fe:8c:cc:0b:0a:2e:83:5e:f5:3d:c1: a1:18:29:17:22:48:2c:70:5d:d7:2e:d8:2b:70:6f:0f:a9:1a: 6e:11:e5:a3:07:21:bf:87:f2:23:b2:84:3a:2c:21:5b:6c:40: 2f:41:42:44:b5:f5:0c:32:84:af:7f:32:92:ea:b9:76:23:83: 75:71:77:ba:d4:59:6f:5a:3c:f6:63:1c:ac:71:f6:d0:75:6b: a6:55:af:ec:b0:06:33:c6:08:bf:6a:32:e8:7c:cd:f2:22:13: f1:bd:71:c9:fb:ff:81:98:b6:c6:85:72:87:aa:31:3c:9e:cd: f2:37:47:09:8a:57:21:3f:3a:97:1e:c1:0c:0d:a6:ad:ce:9a: 75:60:f7:51:ac:bc:74:bd:70:ee:71:63:5a:27:ef:54:4c:67: 47:f3:9c:6a:38:e9:03:82:8f:35:e1:da:a8:cc:5c:cd:f6:ad: ab:70:5a:39:aa:df:d1:87:22:07:1a:7a:97:19:2c:e5:51:3b: ad:b4:6c:fe -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBEjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 QTc1QTExMC8GA1UEBRMoNThFRUU1MkQyQUUwOTJFQzU1ODZFMDcwRTY0NjJDMzYz NTBGQTZFMTAeFw0yNTAzMjkwNzIwNThaFw0yNTA0MDUwNzIwNThaMBgxFjAUBgNV BAMTDTY3ZTc5ZjVhLWI2OGEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCUc7vfqMoO94ufRGc1nVez4F6zpe6Zc7pg8C+RUSki1VKztq/DvDirhxjVfQk4 9e3SLJ+5M9kj+jy89CD0tjghn9vfmHq/vvibTm2sky8S2FIJdxMzKhGx2xHjR6gk QXZ1GgZsvFnqeNzgUJRKTyt1O0qWTgL1G1iWewGlNohrMatWKQXZNHF/dYauktFc Vswv8DvXwGJeKoV3UC/oJdxWS4D5GoeRcaer3xtJNniOGGnEgpmU2AYACZy6YU4l LgIRPU5zowb6NSL1cNwnpo/+yCB1HmXsK9s0csFEOyej+ryJO5qtNs+VDzL15OtY INhRufJeCbiHb/kUh/iFok0RAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUHC3xTlEj qJyYHs/kadGNW0OYM/UwHwYDVR0jBBgwFoAUWO7lLSrgkuxVhuBw5kYsNjUPpuEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTRBNzVBLzNGQUE3QzU0RjQ4 NzExRUY4NDlBMjc3MkM0RjlBRTAyL1dPN2xMU3Jna3V4Vmh1Qnc1a1lzTmpVUHB1 RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvV083bExTcmdrdXhWaHVCdzVrWXNOalVQcHVFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTRB NzVBLzNGQUE3QzU0RjQ4NzExRUY4NDlBMjc3MkM0RjlBRTAyL1dPN2xMU3Jna3V4 Vmh1Qnc1a1lzTmpVUHB1RS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFgcy7nLEgEM0+h793Dqk8dKz4fYhtNDfNLY+9+M/+XmgTHSIK+B/q+g bjcri8RYR2kR7jF5qKjljVWxP/j+jMwLCi6DXvU9waEYKRciSCxwXdcu2Ctwbw+p Gm4R5aMHIb+H8iOyhDosIVtsQC9BQkS19QwyhK9/MpLquXYjg3Vxd7rUWW9aPPZj HKxx9tB1a6ZVr+ywBjPGCL9qMuh8zfIiE/G9ccn7/4GYtsaFcoeqMTyezfI3RwmK VyE/OpcewQwNpq3OmnVg91GsvHS9cO5xY1on71RMZ0fznGo46QOCjzXh2qjMXM32 ratwWjmq39GHIgcaepcZLOVRO620bP4= -----END CERTIFICATE-----Generated at Fri Apr 4 22:22:12 2025 by rpki-client