$ rpki-client -vvf rpki.apnic.net/member_repository/A9198F53/CD06217640F411EAAE778261C4F9AE02/_wsVRthMDZNVkFtsopPiW0QJSMU.mft File: _wsVRthMDZNVkFtsopPiW0QJSMU.mft (raw, json) Hash identifier: gSC+oNBIZcxRwPy/5rdqLg5YBmZB5xfLeGOMTCeJDgA= Subject key identifier: 0D:8E:D9:BA:23:7A:23:71:C1:F9:8A:D6:1D:74:33:92:DD:44:C8:DE Authority key identifier: FF:0B:15:46:D8:4C:0D:93:55:90:5B:6C:A2:93:E2:5B:44:09:48:C5 Certificate issuer: /CN=A9198F53/serialNumber=FF0B1546D84C0D9355905B6CA293E25B440948C5 Certificate serial: 0B32 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_wsVRthMDZNVkFtsopPiW0QJSMU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9198F53/CD06217640F411EAAE778261C4F9AE02/_wsVRthMDZNVkFtsopPiW0QJSMU.mft Manifest number: 0B2B Signing time: Thu 24 Jul 2025 19:21:13 +0000 Manifest this update: Thu 24 Jul 2025 19:21:13 +0000 Manifest next update: Thu 31 Jul 2025 19:21:13 +0000 Files and hashes: 1: _wsVRthMDZNVkFtsopPiW0QJSMU.crl (hash: +W1QLeAiY5JNnC+sSUaWxs8eS011BhsmwCYV7IuNnBE=) 2: 0B1FBD4A40F611EAACD44866C4F9AE02.roa (hash: O+1TVwNVO9fy4asd+g6mFvUYSSGMZxyCsanhKoUd1UE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9198F53/CD06217640F411EAAE778261C4F9AE02/_wsVRthMDZNVkFtsopPiW0QJSMU.crl rsync://rpki.apnic.net/member_repository/A9198F53/CD06217640F411EAAE778261C4F9AE02/_wsVRthMDZNVkFtsopPiW0QJSMU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_wsVRthMDZNVkFtsopPiW0QJSMU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 31 Jul 2025 19:21:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2866 (0xb32) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9198F53, serialNumber=FF0B1546D84C0D9355905B6CA293E25B440948C5 Validity Not Before: Jul 24 19:21:13 2025 GMT Not After : Jul 31 19:21:13 2025 GMT Subject: CN=688287a9-5828 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:f1:98:dd:50:91:b1:f9:f0:f3:32:9e:a6:97: 61:76:66:64:16:33:2a:2f:43:41:3b:fd:67:fb:6d: 9b:d2:50:f4:f0:4e:d0:00:e5:89:b8:0f:b6:77:e2: 13:b6:a3:4c:1b:f0:3b:52:31:fa:7f:59:56:c4:77: 73:b2:a3:d5:13:e5:51:cb:9e:b4:c8:a3:dd:16:cb: bd:36:46:21:e7:ed:e2:98:88:1f:dd:66:99:98:f3: a2:14:b1:67:81:ee:37:12:d6:8e:5f:a8:56:b1:49: 79:16:c6:c6:30:ed:69:6b:7f:13:9a:fb:b6:ba:6e: c3:50:e3:69:65:1c:96:a8:0d:99:66:1c:05:4b:f8: da:64:67:85:8f:ab:9e:b5:cf:0d:a0:8b:21:c3:31: 62:49:98:33:b8:0f:ae:53:93:4b:c6:af:d6:c8:6d: bb:7b:6d:4f:0a:07:c8:53:0e:ce:40:cb:1b:d4:c1: 8a:bf:e1:f4:01:be:db:3e:e1:1f:a7:6e:d1:17:e7: f3:27:34:c5:9c:4f:af:b8:c9:38:9f:d9:25:29:66: 49:0a:8a:37:24:2e:a4:d4:60:76:da:24:21:31:39: 00:2c:22:e1:77:44:7b:da:ff:7f:05:27:86:00:9d: 27:d1:88:39:c5:36:f1:fd:eb:ba:99:ab:a2:5d:7d: 39:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:8E:D9:BA:23:7A:23:71:C1:F9:8A:D6:1D:74:33:92:DD:44:C8:DE X509v3 Authority Key Identifier: keyid:FF:0B:15:46:D8:4C:0D:93:55:90:5B:6C:A2:93:E2:5B:44:09:48:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9198F53/CD06217640F411EAAE778261C4F9AE02/_wsVRthMDZNVkFtsopPiW0QJSMU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_wsVRthMDZNVkFtsopPiW0QJSMU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9198F53/CD06217640F411EAAE778261C4F9AE02/_wsVRthMDZNVkFtsopPiW0QJSMU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 14:55:05:d8:93:33:e1:90:52:0e:02:bb:46:f4:c9:6f:60:9c: db:27:cc:a0:3f:72:96:2d:06:c7:f9:e8:d5:b7:af:53:59:5d: 6e:23:39:62:57:a2:d7:ff:d6:aa:77:ba:66:fb:71:64:1c:a4: 75:ca:20:e4:66:de:7d:a2:a2:8f:2f:4c:85:48:1b:15:04:7b: 2e:9f:d1:1b:90:75:5b:2d:3c:cf:b0:19:5d:d2:77:b4:b0:e5: 5b:55:15:d7:ce:ae:d1:f1:ef:e6:03:41:73:7c:37:7e:da:0b: b0:f8:fd:41:44:99:64:ae:02:07:24:ec:a2:f0:73:d4:90:a6: d1:29:54:0e:63:c7:ee:d0:e2:88:f2:b1:84:1f:c4:6d:e3:8b: 9e:7f:16:bb:55:cf:b2:93:c0:36:d2:a8:02:42:29:ec:f2:bc: 3c:83:36:14:7a:d9:b6:91:5a:a4:9f:83:f7:c2:2f:86:dd:b1: 6a:f9:61:b0:24:35:f6:2b:40:67:06:0c:b9:c3:ae:1d:01:b6: 11:2a:da:59:eb:96:33:04:a7:2f:3e:18:ca:78:bc:85:7a:7c: df:ed:d8:8b:fb:02:3d:37:8e:7c:e3:b6:d2:a9:2b:12:67:3f: 47:d7:f2:67:43:ef:fc:f4:00:4e:57:34:a6:17:60:77:5c:6b: a1:ba:35:9a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCzIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OThGNTMxMTAvBgNVBAUTKEZGMEIxNTQ2RDg0QzBEOTM1NTkwNUI2Q0EyOTNFMjVC NDQwOTQ4QzUwHhcNMjUwNzI0MTkyMTEzWhcNMjUwNzMxMTkyMTEzWjAYMRYwFAYD VQQDEw02ODgyODdhOS01ODI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9PGY3VCRsfnw8zKeppdhdmZkFjMqL0NBO/1n+22b0lD08E7QAOWJuA+2d+IT tqNMG/A7UjH6f1lWxHdzsqPVE+VRy560yKPdFsu9NkYh5+3imIgf3WaZmPOiFLFn ge43EtaOX6hWsUl5FsbGMO1pa38Tmvu2um7DUONpZRyWqA2ZZhwFS/jaZGeFj6ue tc8NoIshwzFiSZgzuA+uU5NLxq/WyG27e21PCgfIUw7OQMsb1MGKv+H0Ab7bPuEf p27RF+fzJzTFnE+vuMk4n9klKWZJCoo3JC6k1GB22iQhMTkALCLhd0R72v9/BSeG AJ0n0Yg5xTbx/eu6mauiXX05hQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA2O2boj eiNxwfmK1h10M5LdRMjeMB8GA1UdIwQYMBaAFP8LFUbYTA2TVZBbbKKT4ltECUjF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OEY1My9DRDA2MjE3NjQw RjQxMUVBQUU3NzgyNjFDNEY5QUUwMi9fd3NWUnRoTURaTlZrRnRzb3BQaVcwUUpT TVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL193c1ZSdGhNRFpOVmtGdHNvcFBpVzBRSlNNVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OEY1My9DRDA2MjE3NjQwRjQxMUVBQUU3NzgyNjFDNEY5QUUwMi9fd3NWUnRoTURa TlZrRnRzb3BQaVcwUUpTTVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAUVQXYkzPhkFIOArtG9MlvYJzbJ8ygP3KWLQbH+ejVt69TWV1uIzli V6LX/9aqd7pm+3FkHKR1yiDkZt59oqKPL0yFSBsVBHsun9EbkHVbLTzPsBld0ne0 sOVbVRXXzq7R8e/mA0FzfDd+2guw+P1BRJlkrgIHJOyi8HPUkKbRKVQOY8fu0OKI 8rGEH8Rt44uefxa7Vc+yk8A20qgCQins8rw8gzYUetm2kVqkn4P3wi+G3bFq+WGw JDX2K0BnBgy5w64dAbYRKtpZ65YzBKcvPhjKeLyFenzf7diL+wI9N45847bSqSsS Zz9H1/JnQ+/89ABOVzSmF2B3XGuhujWa -----END CERTIFICATE-----Generated at Fri Jul 25 07:09:21 2025 by rpki-client