$ rpki-client -vvf rpki.apnic.net/member_repository/A91C7AB9/AB5753069B1311EEAAAA3982C4F9AE02/WcoO1rlrcMKbPdjk7FmOoS4NwuY.mft File: WcoO1rlrcMKbPdjk7FmOoS4NwuY.mft (raw, json) Hash identifier: 928/A7zK8+yLcZ5iyVAZAmWmHD9fauRRM2AhnEBBbuY= Subject key identifier: 26:07:52:17:7E:96:6E:E0:10:43:67:9A:BF:E0:1E:0C:35:E8:3A:9B Authority key identifier: 59:CA:0E:D6:B9:6B:70:C2:9B:3D:D8:E4:EC:59:8E:A1:2E:0D:C2:E6 Certificate issuer: /CN=A91C7AB9/serialNumber=59CA0ED6B96B70C29B3DD8E4EC598EA12E0DC2E6 Certificate serial: FB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WcoO1rlrcMKbPdjk7FmOoS4NwuY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C7AB9/AB5753069B1311EEAAAA3982C4F9AE02/WcoO1rlrcMKbPdjk7FmOoS4NwuY.mft Manifest number: F8 Signing time: Sat 29 Mar 2025 04:41:09 +0000 Manifest this update: Sat 29 Mar 2025 04:41:08 +0000 Manifest next update: Sat 05 Apr 2025 04:41:08 +0000 Files and hashes: 1: WcoO1rlrcMKbPdjk7FmOoS4NwuY.crl (hash: S468NSUSchsM3wodw0sL9HZWh03paq3cjl5OUnPTZuM=) 2: 7CF0A45404DF11F0B877A115C4F9AE02.roa (hash: bc2WkbYAbuGAx2Gf2EfnLZLtMVMYcpQMrHnCADXGRJs=) 3: 5CB841E69B1411EEA456FE83C4F9AE02.roa (hash: pLOgKyFyMkYkgWZ7IaxS8IlsIuIv5okTjVaTAgIeoac=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C7AB9/AB5753069B1311EEAAAA3982C4F9AE02/WcoO1rlrcMKbPdjk7FmOoS4NwuY.crl rsync://rpki.apnic.net/member_repository/A91C7AB9/AB5753069B1311EEAAAA3982C4F9AE02/WcoO1rlrcMKbPdjk7FmOoS4NwuY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WcoO1rlrcMKbPdjk7FmOoS4NwuY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 04:41:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 251 (0xfb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C7AB9 Validity Not Before: Mar 29 04:41:08 2025 GMT Not After : Apr 5 04:41:08 2025 GMT Subject: CN=67e779e5-dd67 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:12:a4:d0:56:c1:4b:b0:d6:ed:52:21:b0:6d: 63:df:49:68:69:0a:79:a2:06:ef:c3:78:85:a7:e6: 09:24:a9:94:3c:d9:ee:6c:5f:d6:d7:a5:d9:b5:8a: 3a:8a:98:db:cf:75:d1:6e:d0:ca:e7:46:35:5b:40: d3:0e:47:93:f6:b7:ac:97:01:76:dd:d6:3a:e4:33: 1d:f4:7c:6c:b0:5e:6f:f7:e4:af:e0:f1:0e:54:71: 32:8c:22:93:4b:3b:aa:b7:33:bf:ab:70:23:85:52: 40:30:35:8e:f0:9f:1f:72:aa:46:a8:71:ec:74:02: 13:44:89:c1:99:b5:16:02:22:2e:61:76:7b:1c:5f: 57:fe:99:d3:b6:69:26:ac:55:2e:2b:08:8f:b6:16: fd:0d:5c:23:38:e6:be:cf:b9:64:89:65:5d:fd:b5: 93:2c:2d:d1:1f:41:c4:ef:c7:75:e2:6a:4d:6c:00: c3:ce:ad:97:ac:37:c4:11:40:4f:23:a9:5a:cd:44: f8:38:1b:c0:11:a6:0e:80:26:f2:d2:a6:a8:cc:7e: 23:5a:fc:93:73:ab:9f:3e:54:cd:4c:b6:68:85:97: f4:c7:3e:c1:a1:ea:c6:ef:bc:66:f3:18:62:5e:bd: 84:b6:3c:10:31:dd:d4:06:95:93:7e:08:4c:9e:f5: 2e:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:07:52:17:7E:96:6E:E0:10:43:67:9A:BF:E0:1E:0C:35:E8:3A:9B X509v3 Authority Key Identifier: keyid:59:CA:0E:D6:B9:6B:70:C2:9B:3D:D8:E4:EC:59:8E:A1:2E:0D:C2:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C7AB9/AB5753069B1311EEAAAA3982C4F9AE02/WcoO1rlrcMKbPdjk7FmOoS4NwuY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WcoO1rlrcMKbPdjk7FmOoS4NwuY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C7AB9/AB5753069B1311EEAAAA3982C4F9AE02/WcoO1rlrcMKbPdjk7FmOoS4NwuY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 31:a5:31:fc:14:c1:e8:36:27:b1:ab:08:c7:d6:06:db:4e:2e: 91:c1:61:6f:1d:89:3b:80:82:a5:97:11:71:61:73:6a:9b:c7: 88:b8:f3:ac:b3:d8:5a:ea:44:7c:2c:9e:4c:c9:d4:20:a0:62: 83:44:13:3b:16:e0:6c:94:e4:84:2c:56:db:7f:40:f4:4e:ca: f5:1f:85:08:09:63:36:10:8d:36:bf:6c:ce:85:98:48:e9:6f: 89:79:4e:cb:7d:8c:d0:b0:6b:f2:d6:34:14:ea:2f:92:97:62: ae:94:14:9b:19:8a:c4:7b:dc:2c:ec:39:5a:b5:cb:ec:39:cc: 56:d3:88:c6:9c:81:93:1b:62:79:ab:41:1f:51:3a:0d:d6:a6: c9:85:0e:82:a9:5e:23:eb:d8:fd:c5:97:24:60:09:3d:f4:77: 67:8e:36:7e:93:0c:e1:77:f2:7d:52:d0:97:ab:09:e9:c7:0c: 42:2e:70:ca:2b:75:d2:f2:ce:15:8a:51:24:7f:45:4d:03:2a: 5c:a2:a3:82:cc:df:3a:85:80:a3:74:ad:c9:28:93:8f:43:d7: 10:63:27:5b:8b:3b:2e:64:fa:75:71:b1:9f:c8:f5:ec:15:50: 92:e5:b1:e6:cb:6b:76:a3:88:82:59:2d:1d:0a:b7:33:39:2e: dd:aa:5f:a6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzdBQjkxMTAvBgNVBAUTKDU5Q0EwRUQ2Qjk2QjcwQzI5QjNERDhFNEVDNTk4RUEx MkUwREMyRTYwHhcNMjUwMzI5MDQ0MTA4WhcNMjUwNDA1MDQ0MTA4WjAYMRYwFAYD VQQDEw02N2U3NzllNS1kZDY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1xKk0FbBS7DW7VIhsG1j30loaQp5ogbvw3iFp+YJJKmUPNnubF/W16XZtYo6 ipjbz3XRbtDK50Y1W0DTDkeT9reslwF23dY65DMd9HxssF5v9+Sv4PEOVHEyjCKT SzuqtzO/q3AjhVJAMDWO8J8fcqpGqHHsdAITRInBmbUWAiIuYXZ7HF9X/pnTtmkm rFUuKwiPthb9DVwjOOa+z7lkiWVd/bWTLC3RH0HE78d14mpNbADDzq2XrDfEEUBP I6lazUT4OBvAEaYOgCby0qaozH4jWvyTc6ufPlTNTLZohZf0xz7BoerG77xm8xhi Xr2EtjwQMd3UBpWTfghMnvUu0QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCYHUhd+ lm7gEENnmr/gHgw16DqbMB8GA1UdIwQYMBaAFFnKDta5a3DCmz3Y5OxZjqEuDcLm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDN0FCOS9BQjU3NTMwNjlC MTMxMUVFQUFBQTM5ODJDNEY5QUUwMi9XY29PMXJscmNNS2JQZGprN0ZtT29TNE53 dVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1djb08xcmxyY01LYlBkams3Rm1Pb1M0Tnd1WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD N0FCOS9BQjU3NTMwNjlCMTMxMUVFQUFBQTM5ODJDNEY5QUUwMi9XY29PMXJscmNN S2JQZGprN0ZtT29TNE53dVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAxpTH8FMHoNiexqwjH1gbbTi6RwWFvHYk7gIKllxFxYXNqm8eIuPOs s9ha6kR8LJ5MydQgoGKDRBM7FuBslOSELFbbf0D0Tsr1H4UICWM2EI02v2zOhZhI 6W+JeU7LfYzQsGvy1jQU6i+Sl2KulBSbGYrEe9ws7DlatcvsOcxW04jGnIGTG2J5 q0EfUToN1qbJhQ6CqV4j69j9xZckYAk99HdnjjZ+kwzhd/J9UtCXqwnpxwxCLnDK K3XS8s4VilEkf0VNAypcoqOCzN86hYCjdK3JKJOPQ9cQYydbizsuZPp1cbGfyPXs FVCS5bHmy2t2o4iCWS0dCrczOS7dql+m -----END CERTIFICATE-----Generated at Fri Apr 4 22:00:28 2025 by rpki-client