$ rpki-client -vvf rpki.apnic.net/member_repository/A91AFF15/B4785BE88D4C11EABBDD3A74C4F9AE02/WZp41LvOE9TYE975FnzTV0fqAmA.mft File: WZp41LvOE9TYE975FnzTV0fqAmA.mft (raw, json) Hash identifier: gA53T++/CMxgv0Q9gB75bLGBxmWpE6X3mBdR8p1mTYA= Subject key identifier: AC:19:D0:51:40:55:82:19:9A:D5:04:6F:59:9D:E0:0E:3F:7C:1D:DF Authority key identifier: 59:9A:78:D4:BB:CE:13:D4:D8:13:DE:F9:16:7C:D3:57:47:EA:02:60 Certificate issuer: /CN=A91AFF15/serialNumber=599A78D4BBCE13D4D813DEF9167CD35747EA0260 Certificate serial: 09CD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WZp41LvOE9TYE975FnzTV0fqAmA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AFF15/B4785BE88D4C11EABBDD3A74C4F9AE02/WZp41LvOE9TYE975FnzTV0fqAmA.mft Manifest number: 09B5 Signing time: Fri 18 Jul 2025 20:16:53 +0000 Manifest this update: Fri 18 Jul 2025 20:16:52 +0000 Manifest next update: Fri 25 Jul 2025 20:16:52 +0000 Files and hashes: 1: WZp41LvOE9TYE975FnzTV0fqAmA.crl (hash: QoWpqQ8eqld8CLfJ5RIXJ9V7UpjLtBX8Iuz/74Ku0n0=) 2: 4967CEF66AD311EF88752B40C4F9AE02.roa (hash: xmJbA6IxBO4/+GmddqWiUZSxhJO/ZzoQBxBDrxW+61c=) 3: B67BE8ECC13C11EE80101E73C4F9AE02.roa (hash: 1aQRLZv1BGCnnNcNnCRaokdzw4E8uFS548+f2rZZdFk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AFF15/B4785BE88D4C11EABBDD3A74C4F9AE02/WZp41LvOE9TYE975FnzTV0fqAmA.crl rsync://rpki.apnic.net/member_repository/A91AFF15/B4785BE88D4C11EABBDD3A74C4F9AE02/WZp41LvOE9TYE975FnzTV0fqAmA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WZp41LvOE9TYE975FnzTV0fqAmA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 20:16:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2509 (0x9cd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AFF15, serialNumber=599A78D4BBCE13D4D813DEF9167CD35747EA0260 Validity Not Before: Jul 18 20:16:52 2025 GMT Not After : Jul 25 20:16:52 2025 GMT Subject: CN=687aabb4-18bb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:79:de:13:c4:79:1c:9a:2c:62:9c:cc:09:f7: 86:84:0b:1e:a1:25:1a:49:83:90:4f:81:4f:36:14: 4c:ca:94:7e:a2:c6:0d:3d:30:e4:c3:9e:af:d6:6f: 5b:37:5a:e0:c4:c0:d2:67:e7:44:b5:d3:76:d4:cf: bc:8f:57:6e:00:be:14:7d:ab:53:71:00:90:fd:47: 70:e1:ce:0e:ff:ac:9d:f9:3c:de:c1:7b:5d:7e:07: 28:24:ad:3e:f1:6c:68:72:da:47:ab:fc:27:1c:79: 71:44:86:81:e9:75:4b:cf:8e:20:bd:b4:7e:c7:4a: 0e:41:44:4b:b4:fe:6d:dd:1b:f5:94:2f:ae:8b:94: 90:0f:ea:03:6f:11:fe:3d:7a:ce:e9:39:5a:ff:f2: af:8d:66:45:7b:9f:95:a1:9d:49:51:dd:c0:c9:30: 0e:c0:b2:6b:ba:05:71:58:4b:a8:c2:c9:48:b2:d8: 98:4a:13:ea:ab:e2:10:00:d2:f5:1e:16:0e:c7:f6: c3:41:42:3e:4b:95:5b:0e:d6:b9:72:3a:c2:f9:45: b7:0e:69:e9:67:ec:4f:6f:82:c8:1d:74:2d:8e:a2: 0a:db:35:fa:1b:e6:48:8a:5a:e3:e8:fd:fb:f0:4c: 11:86:b2:39:7f:85:0a:a3:da:fb:01:f6:56:1b:da: 88:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:19:D0:51:40:55:82:19:9A:D5:04:6F:59:9D:E0:0E:3F:7C:1D:DF X509v3 Authority Key Identifier: keyid:59:9A:78:D4:BB:CE:13:D4:D8:13:DE:F9:16:7C:D3:57:47:EA:02:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AFF15/B4785BE88D4C11EABBDD3A74C4F9AE02/WZp41LvOE9TYE975FnzTV0fqAmA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WZp41LvOE9TYE975FnzTV0fqAmA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AFF15/B4785BE88D4C11EABBDD3A74C4F9AE02/WZp41LvOE9TYE975FnzTV0fqAmA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 28:bc:d7:4e:4a:42:4c:2f:59:11:a7:2f:71:54:2a:81:5a:05: 1d:27:f7:55:cb:ce:cb:ca:1b:d1:b9:e7:39:20:40:d5:f6:f9: 08:11:ae:3e:38:e1:44:88:08:05:b4:15:1c:35:ee:9c:aa:c1: 7b:a3:df:10:8c:3d:05:26:ac:2c:08:69:f6:c3:05:e2:28:02: 20:bd:6a:b2:f2:82:9f:82:64:1e:6b:e3:91:71:d0:cd:9c:d9: f2:1c:dd:56:e5:78:ca:4e:9b:0a:3a:a1:28:6b:c4:38:43:82: 0c:ac:77:0a:1a:d5:9a:e1:cd:64:6b:e5:3f:ea:ed:01:b2:75: a4:51:cd:96:04:d6:4b:08:8d:71:93:65:eb:cb:b5:9f:c9:04: 39:a4:d6:22:ab:2c:8e:70:5c:94:5b:94:78:4c:09:4e:00:5e: a4:1c:d4:02:dd:0e:ac:a8:5a:cf:a8:9e:5c:29:7d:31:0b:2e: 03:24:aa:26:79:85:4e:3c:33:99:3b:90:9b:c2:93:9e:d4:4a: f3:33:2c:95:6c:14:41:15:69:70:f6:28:ae:e8:91:dd:a9:7c: d6:87:13:da:1a:bb:60:f2:83:be:0b:8d:8f:f6:a2:92:de:0c: d7:3b:d6:95:f8:f7:14:af:f0:c4:8b:35:9a:6d:00:ac:80:3e: 80:ec:e6:26 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCc0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUZGMTUxMTAvBgNVBAUTKDU5OUE3OEQ0QkJDRTEzRDREODEzREVGOTE2N0NEMzU3 NDdFQTAyNjAwHhcNMjUwNzE4MjAxNjUyWhcNMjUwNzI1MjAxNjUyWjAYMRYwFAYD VQQDEw02ODdhYWJiNC0xOGJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApXneE8R5HJosYpzMCfeGhAseoSUaSYOQT4FPNhRMypR+osYNPTDkw56v1m9b N1rgxMDSZ+dEtdN21M+8j1duAL4UfatTcQCQ/Udw4c4O/6yd+TzewXtdfgcoJK0+ 8WxoctpHq/wnHHlxRIaB6XVLz44gvbR+x0oOQURLtP5t3Rv1lC+ui5SQD+oDbxH+ PXrO6Tla//KvjWZFe5+VoZ1JUd3AyTAOwLJrugVxWEuowslIstiYShPqq+IQANL1 HhYOx/bDQUI+S5VbDta5cjrC+UW3DmnpZ+xPb4LIHXQtjqIK2zX6G+ZIilrj6P37 8EwRhrI5f4UKo9r7AfZWG9qI6QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKwZ0FFA VYIZmtUEb1md4A4/fB3fMB8GA1UdIwQYMBaAFFmaeNS7zhPU2BPe+RZ801dH6gJg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRkYxNS9CNDc4NUJFODhE NEMxMUVBQkJERDNBNzRDNEY5QUUwMi9XWnA0MUx2T0U5VFlFOTc1Rm56VFYwZnFB bUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dacDQxTHZPRTlUWUU5NzVGbnpUVjBmcUFtQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RkYxNS9CNDc4NUJFODhENEMxMUVBQkJERDNBNzRDNEY5QUUwMi9XWnA0MUx2T0U5 VFlFOTc1Rm56VFYwZnFBbUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAovNdOSkJML1kRpy9xVCqBWgUdJ/dVy87LyhvRuec5IEDV9vkIEa4+ OOFEiAgFtBUcNe6cqsF7o98QjD0FJqwsCGn2wwXiKAIgvWqy8oKfgmQea+ORcdDN nNnyHN1W5XjKTpsKOqEoa8Q4Q4IMrHcKGtWa4c1ka+U/6u0BsnWkUc2WBNZLCI1x k2Xry7WfyQQ5pNYiqyyOcFyUW5R4TAlOAF6kHNQC3Q6sqFrPqJ5cKX0xCy4DJKom eYVOPDOZO5CbwpOe1ErzMyyVbBRBFWlw9iiu6JHdqXzWhxPaGrtg8oO+C42P9qKS 3gzXO9aV+PcUr/DEizWabQCsgD6A7OYm -----END CERTIFICATE-----Generated at Sun Jul 20 19:00:02 2025 by rpki-client