$ rpki-client -vvf rpki.apnic.net/member_repository/A91AF2CD/4FCBAC00D44C11ED86271582C4F9AE02/WHRSDaeB94Db1xDULIQcE6etF1c.mft File: WHRSDaeB94Db1xDULIQcE6etF1c.mft (raw, json) Hash identifier: FRL+jJCnM7iAuVcGbaadspU0UInlOox/Qnt/IidfQUo= Subject key identifier: 18:39:3B:F4:0A:0E:EB:0C:34:B0:FF:79:3D:C4:F9:37:2B:AB:A5:8F Authority key identifier: 58:74:52:0D:A7:81:F7:80:DB:D7:10:D4:2C:84:1C:13:A7:AD:17:57 Certificate issuer: /CN=A91AF2CD/serialNumber=5874520DA781F780DBD710D42C841C13A7AD1757 Certificate serial: 0199 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WHRSDaeB94Db1xDULIQcE6etF1c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AF2CD/4FCBAC00D44C11ED86271582C4F9AE02/WHRSDaeB94Db1xDULIQcE6etF1c.mft Manifest number: 018D Signing time: Thu 17 Apr 2025 02:41:57 +0000 Manifest this update: Thu 17 Apr 2025 02:41:57 +0000 Manifest next update: Thu 24 Apr 2025 02:41:57 +0000 Files and hashes: 1: WHRSDaeB94Db1xDULIQcE6etF1c.crl (hash: Z2QL+OykZ7pLkp37/IcenoG0OqSxpS1UyZfMkoNbkuI=) 2: B412DC700EC011EE8C18290AC4F9AE02.roa (hash: QaySh+U2ImR7fI4OfAXAG1QKvLn5LnVgI5Wmw5xhFUc=) 3: AD88248C1FBE11EE97342E64C4F9AE02.roa (hash: GPafla64VUamN9CnaYJ2F+XELitJmP/fVhbH40kAovU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AF2CD/4FCBAC00D44C11ED86271582C4F9AE02/WHRSDaeB94Db1xDULIQcE6etF1c.crl rsync://rpki.apnic.net/member_repository/A91AF2CD/4FCBAC00D44C11ED86271582C4F9AE02/WHRSDaeB94Db1xDULIQcE6etF1c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WHRSDaeB94Db1xDULIQcE6etF1c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 24 Apr 2025 02:41:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 409 (0x199) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AF2CD, serialNumber=5874520DA781F780DBD710D42C841C13A7AD1757 Validity Not Before: Apr 17 02:41:57 2025 GMT Not After : Apr 24 02:41:57 2025 GMT Subject: CN=68006a75-b195 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:00:6f:7d:62:77:02:d9:d6:a1:5c:00:63:d6: 4c:ea:de:b5:f7:2b:56:c4:7e:87:f4:7c:46:3a:f4: 9c:6f:b8:2e:64:c6:80:f1:7b:f3:36:9e:7c:8c:cd: 3f:5e:b2:c7:70:4b:21:ba:0a:ba:ca:21:0b:8c:d2: 84:8e:5d:18:f4:15:10:0c:0a:a5:e1:b6:d6:11:5a: f1:95:f9:e7:28:dc:6f:d3:92:76:9e:2b:84:2f:b4: 5e:4b:65:e3:12:01:c9:3b:b3:6c:67:16:e5:13:6d: de:6b:54:50:93:5b:67:92:75:9c:2d:9e:48:62:63: 79:2f:e6:f0:b4:8e:02:2c:eb:bf:33:c8:82:54:c5: 74:59:37:48:6c:a7:7f:74:9e:19:92:5b:3e:fa:be: 7c:11:03:7d:c2:36:a0:8e:83:9a:73:82:2e:29:2a: 3b:44:b1:2b:5f:77:07:16:be:b7:90:2c:af:4f:4f: f3:05:5e:55:ba:57:ec:0a:a3:2f:81:2a:17:be:aa: bf:6c:aa:c2:00:14:1c:dd:d3:ba:7c:84:01:91:19: dd:c6:98:1d:1b:87:66:ea:52:90:65:e9:8e:49:20: 1d:ab:b4:3b:de:1d:cf:38:98:5d:3e:93:bc:ea:ef: b8:85:5a:94:d0:a9:a3:b7:cf:75:28:62:33:9a:84: d9:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:39:3B:F4:0A:0E:EB:0C:34:B0:FF:79:3D:C4:F9:37:2B:AB:A5:8F X509v3 Authority Key Identifier: keyid:58:74:52:0D:A7:81:F7:80:DB:D7:10:D4:2C:84:1C:13:A7:AD:17:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AF2CD/4FCBAC00D44C11ED86271582C4F9AE02/WHRSDaeB94Db1xDULIQcE6etF1c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WHRSDaeB94Db1xDULIQcE6etF1c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AF2CD/4FCBAC00D44C11ED86271582C4F9AE02/WHRSDaeB94Db1xDULIQcE6etF1c.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption aa:7f:75:2e:a8:73:7d:6f:56:b7:13:4c:34:53:b8:07:bd:21: d9:c0:21:42:94:40:53:f7:88:0d:e8:f1:7a:bb:0c:23:60:22: b9:70:62:05:a8:8d:ca:3e:65:6a:a8:c4:b9:7e:be:a8:d4:a0: e4:18:a8:73:ea:c4:33:39:ba:52:af:10:f8:79:f0:2e:b7:1a: 30:31:32:e0:0c:10:58:af:91:a2:ed:90:37:71:cf:b7:82:b5: b9:ac:40:8b:81:aa:68:ff:52:16:70:4f:79:04:9d:ce:28:11: 13:b0:26:98:5a:1e:58:a7:bb:ab:6a:73:4f:92:1e:f0:41:0c: aa:b2:5d:13:6e:a8:9d:ca:22:4a:f6:c6:6a:6a:68:f0:f8:65: 98:1a:b6:ac:72:8f:53:16:b0:97:a8:a8:ef:4a:50:a9:cf:4e: 5c:ef:58:4a:37:a0:da:c4:d3:61:7c:5f:36:3a:03:a8:1b:b2: 9d:eb:f4:a4:54:04:66:7d:1d:a8:6d:9f:ed:a5:ac:8d:10:e2: 9c:01:d4:b3:2c:4e:84:6b:fc:22:1a:57:da:70:49:5d:ab:d0: 0d:eb:91:10:8a:5c:dd:3d:62:88:cd:b6:ea:7b:00:34:7a:e3: c4:12:72:fa:39:25:77:4a:49:38:4c:9c:38:6d:cf:18:98:67: fb:ef:c0:7c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUYyQ0QxMTAvBgNVBAUTKDU4NzQ1MjBEQTc4MUY3ODBEQkQ3MTBENDJDODQxQzEz QTdBRDE3NTcwHhcNMjUwNDE3MDI0MTU3WhcNMjUwNDI0MDI0MTU3WjAYMRYwFAYD VQQDEw02ODAwNmE3NS1iMTk1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8ABvfWJ3AtnWoVwAY9ZM6t619ytWxH6H9HxGOvScb7guZMaA8XvzNp58jM0/ XrLHcEshugq6yiELjNKEjl0Y9BUQDAql4bbWEVrxlfnnKNxv05J2niuEL7ReS2Xj EgHJO7NsZxblE23ea1RQk1tnknWcLZ5IYmN5L+bwtI4CLOu/M8iCVMV0WTdIbKd/ dJ4Zkls++r58EQN9wjagjoOac4IuKSo7RLErX3cHFr63kCyvT0/zBV5VulfsCqMv gSoXvqq/bKrCABQc3dO6fIQBkRndxpgdG4dm6lKQZemOSSAdq7Q73h3POJhdPpO8 6u+4hVqU0Kmjt891KGIzmoTZqwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBg5O/QK DusMNLD/eT3E+Tcrq6WPMB8GA1UdIwQYMBaAFFh0Ug2ngfeA29cQ1CyEHBOnrRdX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRjJDRC80RkNCQUMwMEQ0 NEMxMUVEODYyNzE1ODJDNEY5QUUwMi9XSFJTRGFlQjk0RGIxeERVTElRY0U2ZXRG MWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dIUlNEYWVCOTREYjF4RFVMSVFjRTZldEYxYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RjJDRC80RkNCQUMwMEQ0NEMxMUVEODYyNzE1ODJDNEY5QUUwMi9XSFJTRGFlQjk0 RGIxeERVTElRY0U2ZXRGMWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCqf3UuqHN9b1a3E0w0U7gHvSHZwCFClEBT94gN6PF6uwwjYCK5cGIF qI3KPmVqqMS5fr6o1KDkGKhz6sQzObpSrxD4efAutxowMTLgDBBYr5Gi7ZA3cc+3 grW5rECLgapo/1IWcE95BJ3OKBETsCaYWh5Yp7uranNPkh7wQQyqsl0TbqidyiJK 9sZqamjw+GWYGrasco9TFrCXqKjvSlCpz05c71hKN6DaxNNhfF82OgOoG7Kd6/Sk VARmfR2obZ/tpayNEOKcAdSzLE6Ea/wiGlfacEldq9AN65EQilzdPWKIzbbqewA0 euPEEnL6OSV3Skk4TJw4bc8YmGf778B8 -----END CERTIFICATE-----Generated at Sat Apr 19 03:07:31 2025 by rpki-client