$ rpki-client -vvf rpki.apnic.net/member_repository/A91AF2CD/4FCBAC00D44C11ED86271582C4F9AE02/WHRSDaeB94Db1xDULIQcE6etF1c.mft File: WHRSDaeB94Db1xDULIQcE6etF1c.mft (raw, json) Hash identifier: h8Pz+oQaaaeXE+8l5YkG7K1R94/Us4w1wkxcS9ln1kg= Subject key identifier: 7B:19:5A:07:99:71:B6:CE:01:4F:F3:52:80:2B:D9:85:F3:C3:6B:76 Authority key identifier: 58:74:52:0D:A7:81:F7:80:DB:D7:10:D4:2C:84:1C:13:A7:AD:17:57 Certificate issuer: /CN=A91AF2CD/serialNumber=5874520DA781F780DBD710D42C841C13A7AD1757 Certificate serial: 01C9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WHRSDaeB94Db1xDULIQcE6etF1c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AF2CD/4FCBAC00D44C11ED86271582C4F9AE02/WHRSDaeB94Db1xDULIQcE6etF1c.mft Manifest number: 01BD Signing time: Wed 23 Jul 2025 03:26:12 +0000 Manifest this update: Wed 23 Jul 2025 03:26:11 +0000 Manifest next update: Wed 30 Jul 2025 03:26:11 +0000 Files and hashes: 1: WHRSDaeB94Db1xDULIQcE6etF1c.crl (hash: nQKdSsjrBcDKBNhsfziJ196Hh2EPct6Lb0lS5Mag9YU=) 2: B412DC700EC011EE8C18290AC4F9AE02.roa (hash: QaySh+U2ImR7fI4OfAXAG1QKvLn5LnVgI5Wmw5xhFUc=) 3: AD88248C1FBE11EE97342E64C4F9AE02.roa (hash: GPafla64VUamN9CnaYJ2F+XELitJmP/fVhbH40kAovU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AF2CD/4FCBAC00D44C11ED86271582C4F9AE02/WHRSDaeB94Db1xDULIQcE6etF1c.crl rsync://rpki.apnic.net/member_repository/A91AF2CD/4FCBAC00D44C11ED86271582C4F9AE02/WHRSDaeB94Db1xDULIQcE6etF1c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WHRSDaeB94Db1xDULIQcE6etF1c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 30 Jul 2025 03:26:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 457 (0x1c9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AF2CD, serialNumber=5874520DA781F780DBD710D42C841C13A7AD1757 Validity Not Before: Jul 23 03:26:11 2025 GMT Not After : Jul 30 03:26:11 2025 GMT Subject: CN=68805653-e38c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:5f:60:06:42:a9:df:e5:41:03:dd:8a:33:3d: dd:c7:a8:87:00:ff:46:bb:11:4b:6b:4d:38:14:32: 9e:68:e8:60:a5:89:f8:78:b1:d4:b3:b3:8f:6f:02: e8:f9:33:7c:53:35:a8:99:04:c6:d0:76:c6:72:80: f7:f1:9d:8b:b6:67:df:9f:e2:ce:d8:27:a6:53:af: 15:17:a7:53:e7:a1:54:78:fa:fb:1f:02:d9:37:a4: c4:e7:96:90:75:55:38:f3:6d:97:02:c2:e1:9f:0f: e0:d7:42:28:7f:e3:04:4b:78:70:ee:b3:06:ee:78: 2a:c7:09:90:63:8f:13:13:6a:e7:a2:4e:9e:6b:3b: 60:ea:a8:55:86:a6:b1:7d:6f:43:89:45:eb:a2:98: 44:e1:77:5c:79:98:c0:ae:92:f0:69:3c:41:89:07: ea:8a:84:04:06:23:1b:c8:37:e8:c1:6c:0f:c2:09: c7:65:e9:b7:7f:87:65:5a:ca:a7:67:fb:f2:f7:0e: 6a:01:11:61:25:31:43:5d:3e:63:9c:f5:e8:20:4a: da:14:22:4a:22:33:bd:f4:79:79:58:b7:41:6d:b9: db:29:c2:fe:77:14:86:6c:63:bd:48:17:04:9a:22: f2:da:91:be:d7:b2:77:b5:1e:83:1d:30:89:e0:84: 5e:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:19:5A:07:99:71:B6:CE:01:4F:F3:52:80:2B:D9:85:F3:C3:6B:76 X509v3 Authority Key Identifier: keyid:58:74:52:0D:A7:81:F7:80:DB:D7:10:D4:2C:84:1C:13:A7:AD:17:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AF2CD/4FCBAC00D44C11ED86271582C4F9AE02/WHRSDaeB94Db1xDULIQcE6etF1c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WHRSDaeB94Db1xDULIQcE6etF1c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AF2CD/4FCBAC00D44C11ED86271582C4F9AE02/WHRSDaeB94Db1xDULIQcE6etF1c.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1d:72:12:0d:21:ee:5a:aa:8e:53:61:3e:b0:ca:45:0a:38:2b: 47:8a:19:70:44:a0:88:68:9b:33:4b:92:fe:e3:af:70:79:11: 65:61:a5:b8:1c:90:84:22:ea:02:65:9b:e4:c6:20:77:17:f4: 23:20:7d:ce:3e:10:58:71:bf:e8:7d:70:0d:bf:60:d5:e4:0c: 94:72:98:92:76:1e:be:80:1c:8e:0a:d9:be:b6:90:a8:79:19: 7a:19:84:89:3c:60:a7:f7:12:0e:c4:0c:14:b1:2b:e0:72:d3: fa:38:cb:f8:17:a9:99:ce:e8:5f:65:3c:a5:d9:ef:10:b4:d0: 73:c5:ae:f1:f1:6b:2e:98:eb:2e:e5:d4:cf:49:10:ba:ef:da: 11:36:98:83:5d:23:20:c5:95:0a:d1:49:05:5b:8c:74:8a:40: 5e:c1:a3:d2:cc:df:d8:0d:a6:19:5c:78:0c:15:7d:4d:25:96: 04:66:17:b9:d0:6d:0b:85:59:5e:c0:97:a7:f0:74:0e:2c:23: b7:a1:91:f1:f6:3c:e9:09:c0:32:87:08:00:71:a2:66:43:43: 6f:37:da:81:6e:32:41:1d:de:f8:b1:fa:09:f4:ea:91:6e:27: 1e:7d:17:d3:31:43:bf:5e:af:71:ac:24:e3:83:4c:85:77:ef: e0:bb:04:6e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAckwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUYyQ0QxMTAvBgNVBAUTKDU4NzQ1MjBEQTc4MUY3ODBEQkQ3MTBENDJDODQxQzEz QTdBRDE3NTcwHhcNMjUwNzIzMDMyNjExWhcNMjUwNzMwMDMyNjExWjAYMRYwFAYD VQQDEw02ODgwNTY1My1lMzhjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxF9gBkKp3+VBA92KMz3dx6iHAP9GuxFLa004FDKeaOhgpYn4eLHUs7OPbwLo +TN8UzWomQTG0HbGcoD38Z2Ltmffn+LO2CemU68VF6dT56FUePr7HwLZN6TE55aQ dVU4822XAsLhnw/g10Iof+MES3hw7rMG7ngqxwmQY48TE2rnok6eaztg6qhVhqax fW9DiUXrophE4XdceZjArpLwaTxBiQfqioQEBiMbyDfowWwPwgnHZem3f4dlWsqn Z/vy9w5qARFhJTFDXT5jnPXoIEraFCJKIjO99Hl5WLdBbbnbKcL+dxSGbGO9SBcE miLy2pG+17J3tR6DHTCJ4IRegQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHsZWgeZ cbbOAU/zUoAr2YXzw2t2MB8GA1UdIwQYMBaAFFh0Ug2ngfeA29cQ1CyEHBOnrRdX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRjJDRC80RkNCQUMwMEQ0 NEMxMUVEODYyNzE1ODJDNEY5QUUwMi9XSFJTRGFlQjk0RGIxeERVTElRY0U2ZXRG MWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dIUlNEYWVCOTREYjF4RFVMSVFjRTZldEYxYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RjJDRC80RkNCQUMwMEQ0NEMxMUVEODYyNzE1ODJDNEY5QUUwMi9XSFJTRGFlQjk0 RGIxeERVTElRY0U2ZXRGMWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAdchINIe5aqo5TYT6wykUKOCtHihlwRKCIaJszS5L+469weRFlYaW4 HJCEIuoCZZvkxiB3F/QjIH3OPhBYcb/ofXANv2DV5AyUcpiSdh6+gByOCtm+tpCo eRl6GYSJPGCn9xIOxAwUsSvgctP6OMv4F6mZzuhfZTyl2e8QtNBzxa7x8WsumOsu 5dTPSRC679oRNpiDXSMgxZUK0UkFW4x0ikBewaPSzN/YDaYZXHgMFX1NJZYEZhe5 0G0LhVlewJen8HQOLCO3oZHx9jzpCcAyhwgAcaJmQ0NvN9qBbjJBHd74sfoJ9OqR bicefRfTMUO/Xq9xrCTjg0yFd+/guwRu -----END CERTIFICATE-----Generated at Wed Jul 23 12:15:53 2025 by rpki-client