$ rpki-client -vvf rpki.apnic.net/member_repository/A9196F7C/86F9161CFC5B11EEA3FF9D47C4F9AE02/wOMbX0XP5SusXO243MahoyL0cF0.mft File: wOMbX0XP5SusXO243MahoyL0cF0.mft (raw, json) Hash identifier: eQLNwVbn+0mYjay26RXNbkvnNLrZDaanY9H7AWJq+EI= Subject key identifier: 04:23:22:AE:92:54:0A:37:1F:43:31:C7:69:D7:CF:0E:18:49:CB:0E Authority key identifier: C0:E3:1B:5F:45:CF:E5:2B:AC:5C:ED:B8:DC:C6:A1:A3:22:F4:70:5D Certificate issuer: /CN=A9196F7C/serialNumber=C0E31B5F45CFE52BAC5CEDB8DCC6A1A322F4705D Certificate serial: CB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wOMbX0XP5SusXO243MahoyL0cF0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9196F7C/86F9161CFC5B11EEA3FF9D47C4F9AE02/wOMbX0XP5SusXO243MahoyL0cF0.mft Manifest number: C5 Signing time: Fri 11 Apr 2025 05:09:43 +0000 Manifest this update: Fri 11 Apr 2025 05:09:43 +0000 Manifest next update: Fri 18 Apr 2025 05:09:43 +0000 Files and hashes: 1: wOMbX0XP5SusXO243MahoyL0cF0.crl (hash: 59xQIOUfs2aQCDr1bIvAD9mx+Zi4IgRxLcMBA5x35KM=) 2: E37CCF70718911EFA0C30257C4F9AE02.roa (hash: i365RiKIVyJPWi8FiX61DimamCncEPV+eIiKwxbytNI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9196F7C/86F9161CFC5B11EEA3FF9D47C4F9AE02/wOMbX0XP5SusXO243MahoyL0cF0.crl rsync://rpki.apnic.net/member_repository/A9196F7C/86F9161CFC5B11EEA3FF9D47C4F9AE02/wOMbX0XP5SusXO243MahoyL0cF0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wOMbX0XP5SusXO243MahoyL0cF0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 18 Apr 2025 05:09:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 203 (0xcb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9196F7C, serialNumber=C0E31B5F45CFE52BAC5CEDB8DCC6A1A322F4705D Validity Not Before: Apr 11 05:09:43 2025 GMT Not After : Apr 18 05:09:43 2025 GMT Subject: CN=67f8a417-fb32 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:7b:ee:e5:d7:62:0b:55:d1:dc:5b:3e:5a:e6: 0e:a0:8a:df:2f:a1:20:53:f5:73:26:49:45:a9:aa: f2:48:51:da:4d:b1:84:bd:7a:65:7f:1b:ba:4a:40: f1:92:c3:18:52:ec:47:3e:b8:35:ff:73:87:c4:09: 9c:b5:7b:e7:7c:09:28:df:2d:72:47:2f:4e:92:26: 75:74:69:7e:20:f7:b5:a2:f2:6d:a9:52:38:ba:66: 10:34:bd:cf:c7:65:a2:62:3d:6f:a3:11:d1:f1:08: 5d:8e:fb:66:55:59:23:53:b2:71:80:a6:12:23:fa: 94:83:9a:2e:5e:d1:76:c3:b0:db:bc:88:76:05:33: 0e:c1:5f:1f:f9:49:f2:2a:6d:7a:e2:8b:7b:fc:74: 22:68:0b:54:46:b1:aa:0a:a7:90:d1:6b:12:0d:b1: 16:56:f5:e2:21:aa:89:37:a2:8f:7e:4c:a6:cc:8e: 96:60:e0:b2:47:3e:10:1c:c0:10:bf:fa:c2:0a:2c: 26:e8:0a:9c:51:47:0f:f2:b2:2c:a2:95:b3:07:68: 2c:a7:79:6d:91:0e:7f:df:b8:f8:52:9d:e0:69:36: a5:90:56:3f:56:99:71:3f:62:c0:50:9f:84:f2:e1: cb:7e:4a:61:af:c7:25:e3:40:59:e1:67:77:66:5d: 62:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:23:22:AE:92:54:0A:37:1F:43:31:C7:69:D7:CF:0E:18:49:CB:0E X509v3 Authority Key Identifier: keyid:C0:E3:1B:5F:45:CF:E5:2B:AC:5C:ED:B8:DC:C6:A1:A3:22:F4:70:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9196F7C/86F9161CFC5B11EEA3FF9D47C4F9AE02/wOMbX0XP5SusXO243MahoyL0cF0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wOMbX0XP5SusXO243MahoyL0cF0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9196F7C/86F9161CFC5B11EEA3FF9D47C4F9AE02/wOMbX0XP5SusXO243MahoyL0cF0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 46:f0:2c:7a:d1:0f:2d:38:36:65:84:93:b8:9c:61:2e:49:b0: 52:e8:b3:26:d2:f9:8d:00:26:fa:99:dc:c6:1c:78:2c:66:ce: 66:7a:41:78:93:ab:62:fb:12:82:b0:19:cd:98:da:50:71:fb: f5:b7:75:05:9b:0e:9a:48:b6:8d:53:0a:e1:2d:ea:03:31:de: 1e:15:d0:d0:04:93:84:cf:9a:9b:b3:98:fd:46:7c:9c:4e:1f: 5f:db:be:9b:84:24:76:5b:6f:db:9e:79:7e:54:29:82:0d:45: 18:a0:5f:e4:94:82:fe:74:f8:ea:a0:44:7d:25:67:6f:9b:4b: 4b:d4:10:cb:89:ef:0e:dd:e6:f8:9d:6b:49:bb:1c:04:28:5e: b0:c3:6f:96:43:a0:1e:c8:21:a5:0d:4b:52:f9:c8:a4:d7:a9: d4:64:74:8b:5f:b5:30:f6:d5:e5:d9:a5:40:5a:05:90:04:9d: 72:8f:0d:95:b0:8a:73:31:0a:c1:e4:19:87:18:cf:90:20:0b: e5:8a:f7:30:ff:9b:06:bc:df:89:12:fd:ef:62:3e:5b:bb:27: ea:5f:5c:fa:fd:70:f0:02:35:d1:36:f9:04:01:14:79:dc:53: 95:a4:c0:ea:b9:74:cb:d2:3d:07:e2:8c:4f:5c:a9:db:9f:b2: 31:1d:a3:89 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTZGN0MxMTAvBgNVBAUTKEMwRTMxQjVGNDVDRkU1MkJBQzVDRURCOERDQzZBMUEz MjJGNDcwNUQwHhcNMjUwNDExMDUwOTQzWhcNMjUwNDE4MDUwOTQzWjAYMRYwFAYD VQQDEw02N2Y4YTQxNy1mYjMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxXvu5ddiC1XR3Fs+WuYOoIrfL6EgU/VzJklFqarySFHaTbGEvXplfxu6SkDx ksMYUuxHPrg1/3OHxAmctXvnfAko3y1yRy9OkiZ1dGl+IPe1ovJtqVI4umYQNL3P x2WiYj1voxHR8QhdjvtmVVkjU7JxgKYSI/qUg5ouXtF2w7DbvIh2BTMOwV8f+Uny Km164ot7/HQiaAtURrGqCqeQ0WsSDbEWVvXiIaqJN6KPfkymzI6WYOCyRz4QHMAQ v/rCCiwm6AqcUUcP8rIsopWzB2gsp3ltkQ5/37j4Up3gaTalkFY/VplxP2LAUJ+E 8uHLfkphr8cl40BZ4Wd3Zl1iywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAQjIq6S VAo3H0Mxx2nXzw4YScsOMB8GA1UdIwQYMBaAFMDjG19Fz+UrrFztuNzGoaMi9HBd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NkY3Qy84NkY5MTYxQ0ZD NUIxMUVFQTNGRjlENDdDNEY5QUUwMi93T01iWDBYUDVTdXNYTzI0M01haG95TDBj RjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3dPTWJYMFhQNVN1c1hPMjQzTWFob3lMMGNGMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NkY3Qy84NkY5MTYxQ0ZDNUIxMUVFQTNGRjlENDdDNEY5QUUwMi93T01iWDBYUDVT dXNYTzI0M01haG95TDBjRjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBG8Cx60Q8tODZlhJO4nGEuSbBS6LMm0vmNACb6mdzGHHgsZs5mekF4 k6ti+xKCsBnNmNpQcfv1t3UFmw6aSLaNUwrhLeoDMd4eFdDQBJOEz5qbs5j9Rnyc Th9f276bhCR2W2/bnnl+VCmCDUUYoF/klIL+dPjqoER9JWdvm0tL1BDLie8O3eb4 nWtJuxwEKF6ww2+WQ6AeyCGlDUtS+cik16nUZHSLX7Uw9tXl2aVAWgWQBJ1yjw2V sIpzMQrB5BmHGM+QIAvlivcw/5sGvN+JEv3vYj5buyfqX1z6/XDwAjXRNvkEARR5 3FOVpMDquXTL0j0H4oxPXKnbn7IxHaOJ -----END CERTIFICATE-----Generated at Sat Apr 12 19:16:48 2025 by rpki-client