$ rpki-client -vvf rpki.apnic.net/member_repository/A91AFF15/B4785BE88D4C11EABBDD3A74C4F9AE02/WZp41LvOE9TYE975FnzTV0fqAmA.mft File: WZp41LvOE9TYE975FnzTV0fqAmA.mft (raw, json) Hash identifier: sw4EI1xa6LC2jkbwkPkJDfcwo17eE1X7Lm1RMmvHhVk= Subject key identifier: E5:1E:5A:3D:D6:53:91:E8:B2:09:D1:18:CE:6C:12:4F:DC:40:E5:D2 Authority key identifier: 59:9A:78:D4:BB:CE:13:D4:D8:13:DE:F9:16:7C:D3:57:47:EA:02:60 Certificate issuer: /CN=A91AFF15/serialNumber=599A78D4BBCE13D4D813DEF9167CD35747EA0260 Certificate serial: 099C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WZp41LvOE9TYE975FnzTV0fqAmA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AFF15/B4785BE88D4C11EABBDD3A74C4F9AE02/WZp41LvOE9TYE975FnzTV0fqAmA.mft Manifest number: 0984 Signing time: Sat 12 Apr 2025 19:55:56 +0000 Manifest this update: Sat 12 Apr 2025 19:55:56 +0000 Manifest next update: Sat 19 Apr 2025 19:55:56 +0000 Files and hashes: 1: WZp41LvOE9TYE975FnzTV0fqAmA.crl (hash: WdXnTr2+FrDPXtIVT2VvELBDeqgqcVpQvlxqKlYvOm8=) 2: 4967CEF66AD311EF88752B40C4F9AE02.roa (hash: xmJbA6IxBO4/+GmddqWiUZSxhJO/ZzoQBxBDrxW+61c=) 3: B67BE8ECC13C11EE80101E73C4F9AE02.roa (hash: 1aQRLZv1BGCnnNcNnCRaokdzw4E8uFS548+f2rZZdFk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AFF15/B4785BE88D4C11EABBDD3A74C4F9AE02/WZp41LvOE9TYE975FnzTV0fqAmA.crl rsync://rpki.apnic.net/member_repository/A91AFF15/B4785BE88D4C11EABBDD3A74C4F9AE02/WZp41LvOE9TYE975FnzTV0fqAmA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WZp41LvOE9TYE975FnzTV0fqAmA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 19 Apr 2025 19:55:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2460 (0x99c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AFF15, serialNumber=599A78D4BBCE13D4D813DEF9167CD35747EA0260 Validity Not Before: Apr 12 19:55:56 2025 GMT Not After : Apr 19 19:55:56 2025 GMT Subject: CN=67fac54c-078e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:3c:cb:98:89:04:a2:cd:3c:eb:3b:15:b7:c8: 08:22:43:63:4d:84:c1:62:70:28:df:db:65:3c:34: 19:c1:82:6d:22:60:83:7c:0b:25:a3:93:fd:9a:d9: 7a:89:f4:9f:cd:38:f2:ca:75:0e:2b:99:12:64:40: b7:94:a3:9a:94:2a:05:97:c5:ad:d8:e8:25:de:55: be:00:31:5e:a0:49:b9:ed:40:5c:2a:35:72:16:cc: 4e:46:5a:3b:32:ae:f2:29:79:c4:6c:ae:9c:f9:14: ca:b9:b0:d0:07:3e:d3:7f:14:5d:28:01:71:d1:f1: 69:50:ba:e2:4f:1a:02:8f:9d:7a:18:a2:87:4d:2a: 5e:db:2e:d8:83:ab:6e:8c:67:b4:77:40:12:cc:a0: 60:c0:01:12:0e:95:f2:ea:24:53:f3:01:25:fb:ac: 40:73:8f:c5:c3:74:13:94:a4:c7:86:ec:8a:15:26: 95:e9:8f:b0:2c:9b:1b:76:a9:09:27:0a:ef:32:17: 61:97:16:7f:10:69:90:5e:76:f1:3c:67:78:59:84: 1c:47:2f:16:1e:57:96:9b:42:51:c8:9f:36:3e:82: 94:f7:98:bc:d9:1a:18:33:05:49:ad:e3:da:94:f1: eb:be:d3:e3:01:1b:bd:0b:d6:bb:c4:a5:bc:23:1f: 4d:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:1E:5A:3D:D6:53:91:E8:B2:09:D1:18:CE:6C:12:4F:DC:40:E5:D2 X509v3 Authority Key Identifier: keyid:59:9A:78:D4:BB:CE:13:D4:D8:13:DE:F9:16:7C:D3:57:47:EA:02:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AFF15/B4785BE88D4C11EABBDD3A74C4F9AE02/WZp41LvOE9TYE975FnzTV0fqAmA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WZp41LvOE9TYE975FnzTV0fqAmA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AFF15/B4785BE88D4C11EABBDD3A74C4F9AE02/WZp41LvOE9TYE975FnzTV0fqAmA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 83:c5:a7:12:a3:ef:b5:64:62:98:10:6c:cc:73:d4:91:f2:d0: ef:fc:43:26:b3:bf:a3:3a:19:f7:73:96:a4:20:38:3a:25:7a: 96:84:03:11:0d:5e:cd:c5:01:37:67:b8:0d:74:df:5f:72:27: ea:2a:16:02:5a:6d:31:4a:92:94:66:68:42:61:6f:37:81:0f: 4a:5e:1f:d9:55:ee:5d:d1:23:ad:b7:fb:f6:40:80:4c:2a:84: 47:0a:71:f9:ca:95:8b:a9:af:11:d1:69:29:11:8d:05:a8:f4: d6:70:3e:ff:25:9e:a2:dd:7f:ab:0d:ab:ee:c3:2f:4f:a8:6a: 6e:47:15:dd:c7:c9:66:3f:08:cf:1c:2f:d8:df:f1:22:15:fa: e6:bc:66:1a:be:09:04:90:9f:50:16:fe:22:83:41:df:92:58: f4:91:bd:78:e2:6c:f1:4e:b4:25:ac:90:f1:c5:19:df:82:19: b9:07:9d:f1:64:80:b0:da:b4:66:08:90:ca:c1:93:20:47:49: 46:49:61:c9:41:d7:f5:cc:4d:61:21:2d:1b:b8:34:e0:c6:df: 27:1f:11:15:3d:63:82:1e:76:e5:5c:35:0a:ac:48:74:67:7a: 34:c4:6a:bb:3c:95:c3:6d:94:55:73:93:ab:18:fc:57:7c:96: 35:12:ce:b4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCZwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUZGMTUxMTAvBgNVBAUTKDU5OUE3OEQ0QkJDRTEzRDREODEzREVGOTE2N0NEMzU3 NDdFQTAyNjAwHhcNMjUwNDEyMTk1NTU2WhcNMjUwNDE5MTk1NTU2WjAYMRYwFAYD VQQDEw02N2ZhYzU0Yy0wNzhlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1TzLmIkEos086zsVt8gIIkNjTYTBYnAo39tlPDQZwYJtImCDfAslo5P9mtl6 ifSfzTjyynUOK5kSZEC3lKOalCoFl8Wt2Ogl3lW+ADFeoEm57UBcKjVyFsxORlo7 Mq7yKXnEbK6c+RTKubDQBz7TfxRdKAFx0fFpULriTxoCj516GKKHTSpe2y7Yg6tu jGe0d0ASzKBgwAESDpXy6iRT8wEl+6xAc4/Fw3QTlKTHhuyKFSaV6Y+wLJsbdqkJ JwrvMhdhlxZ/EGmQXnbxPGd4WYQcRy8WHleWm0JRyJ82PoKU95i82RoYMwVJrePa lPHrvtPjARu9C9a7xKW8Ix9N3QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOUeWj3W U5HosgnRGM5sEk/cQOXSMB8GA1UdIwQYMBaAFFmaeNS7zhPU2BPe+RZ801dH6gJg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRkYxNS9CNDc4NUJFODhE NEMxMUVBQkJERDNBNzRDNEY5QUUwMi9XWnA0MUx2T0U5VFlFOTc1Rm56VFYwZnFB bUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dacDQxTHZPRTlUWUU5NzVGbnpUVjBmcUFtQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RkYxNS9CNDc4NUJFODhENEMxMUVBQkJERDNBNzRDNEY5QUUwMi9XWnA0MUx2T0U5 VFlFOTc1Rm56VFYwZnFBbUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCDxacSo++1ZGKYEGzMc9SR8tDv/EMms7+jOhn3c5akIDg6JXqWhAMR DV7NxQE3Z7gNdN9fcifqKhYCWm0xSpKUZmhCYW83gQ9KXh/ZVe5d0SOtt/v2QIBM KoRHCnH5ypWLqa8R0WkpEY0FqPTWcD7/JZ6i3X+rDavuwy9PqGpuRxXdx8lmPwjP HC/Y3/EiFfrmvGYavgkEkJ9QFv4ig0Hfklj0kb144mzxTrQlrJDxxRnfghm5B53x ZICw2rRmCJDKwZMgR0lGSWHJQdf1zE1hIS0buDTgxt8nHxEVPWOCHnblXDUKrEh0 Z3o0xGq7PJXDbZRVc5OrGPxXfJY1Es60 -----END CERTIFICATE-----Generated at Sun Apr 13 02:29:17 2025 by rpki-client