$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE821/811FB590605111E88CD8EC47C4F9AE02/wiLBnr9ShE1LfNoO91Tm0zDEtgk.mft File: wiLBnr9ShE1LfNoO91Tm0zDEtgk.mft (raw, json) Hash identifier: zi4/P3QDXFL77Xsuc0hmL6721/i5jcdRXT9I/o7q32E= Subject key identifier: 26:50:D9:09:E5:80:B4:7F:78:C1:99:E6:B0:0F:82:70:3A:E7:5C:A4 Authority key identifier: C2:22:C1:9E:BF:52:84:4D:4B:7C:DA:0E:F7:54:E6:D3:30:C4:B6:09 Certificate issuer: /CN=A91CE821/serialNumber=C222C19EBF52844D4B7CDA0EF754E6D330C4B609 Certificate serial: 14DB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wiLBnr9ShE1LfNoO91Tm0zDEtgk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE821/811FB590605111E88CD8EC47C4F9AE02/wiLBnr9ShE1LfNoO91Tm0zDEtgk.mft Manifest number: 1944 Signing time: Fri 18 Jul 2025 16:59:12 +0000 Manifest this update: Fri 18 Jul 2025 16:59:12 +0000 Manifest next update: Fri 25 Jul 2025 16:59:12 +0000 Files and hashes: 1: wiLBnr9ShE1LfNoO91Tm0zDEtgk.crl (hash: m/hzd/trbIKrcwVzNTlcdu2TaY/yh93cQzMK0ZETid0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE821/811FB590605111E88CD8EC47C4F9AE02/wiLBnr9ShE1LfNoO91Tm0zDEtgk.crl rsync://rpki.apnic.net/member_repository/A91CE821/811FB590605111E88CD8EC47C4F9AE02/wiLBnr9ShE1LfNoO91Tm0zDEtgk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wiLBnr9ShE1LfNoO91Tm0zDEtgk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 16:59:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5339 (0x14db) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE821, serialNumber=C222C19EBF52844D4B7CDA0EF754E6D330C4B609 Validity Not Before: Jul 18 16:59:12 2025 GMT Not After : Jul 25 16:59:12 2025 GMT Subject: CN=687a7d60-d120 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:c8:eb:8b:14:78:fc:ab:57:81:a2:1a:38:21: c8:8b:6d:49:aa:d4:f1:31:5a:35:52:85:fb:10:5e: 68:e9:a8:59:48:d7:02:3d:9d:f0:e8:0a:45:db:90: de:98:38:63:59:6b:5f:85:5b:69:90:6c:99:6b:2b: 51:d4:60:80:38:50:5d:27:ac:93:13:32:6d:d0:c5: 91:42:26:77:a0:08:ef:ed:8b:24:21:10:f8:2e:95: cb:66:6f:c0:c4:d3:b3:40:62:aa:8f:d2:9b:f7:d7: 44:6f:5c:47:24:91:3d:3d:c5:48:4b:3e:a2:58:a6: 37:2c:36:d8:cd:8d:22:b6:20:4e:44:9f:e2:a7:86: 45:47:ec:a4:85:af:5e:ce:53:d1:25:45:36:d7:ab: 76:26:69:89:08:7d:7a:66:74:44:4a:be:2a:3a:bd: a6:97:6a:a6:b4:53:37:ab:91:c7:1d:aa:7b:96:9c: b3:be:b7:d8:d6:02:4b:fa:0f:71:89:a0:88:41:46: 2e:f5:ff:26:11:6a:9e:d3:f1:b9:c8:6b:05:bd:e5: 4b:b7:f3:76:eb:4a:79:63:79:10:e3:de:6d:e3:76: 5f:b2:1e:e4:10:75:ef:18:a4:94:ba:81:76:3d:a6: ee:f6:80:a9:7b:c0:c6:1a:35:12:0b:28:5d:3c:08: 7e:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:50:D9:09:E5:80:B4:7F:78:C1:99:E6:B0:0F:82:70:3A:E7:5C:A4 X509v3 Authority Key Identifier: keyid:C2:22:C1:9E:BF:52:84:4D:4B:7C:DA:0E:F7:54:E6:D3:30:C4:B6:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE821/811FB590605111E88CD8EC47C4F9AE02/wiLBnr9ShE1LfNoO91Tm0zDEtgk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wiLBnr9ShE1LfNoO91Tm0zDEtgk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE821/811FB590605111E88CD8EC47C4F9AE02/wiLBnr9ShE1LfNoO91Tm0zDEtgk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 26:bb:32:86:7d:ef:43:07:7a:97:7e:b4:f6:19:98:ed:f9:d3: 0b:60:d6:22:82:f8:17:07:3b:c5:c6:7c:8c:b4:af:57:9d:5c: 68:a7:c6:54:3d:51:36:dc:0f:bc:71:65:90:9e:6e:83:a8:4b: d2:ba:81:4e:41:b7:c7:47:bd:d6:5b:ce:70:13:f7:ec:b5:02: 7b:8e:a4:7f:38:de:e8:c5:3a:25:85:66:28:db:f0:3f:0a:66: 18:0e:b1:9c:f2:33:31:ce:e4:44:b6:c8:81:c5:67:4b:3e:eb: bd:8b:e5:00:41:58:dd:74:18:68:b9:81:03:f2:23:2c:d4:f3: d8:30:70:be:a2:a2:cc:64:c4:d4:25:f8:23:3e:5e:80:36:b4: 67:12:ac:46:40:9f:53:ee:45:6e:1f:b2:7e:91:8b:25:21:56: 48:40:0a:f5:9c:89:38:5d:92:27:c4:3f:39:ee:0d:d7:14:b8: 2f:7a:7d:a1:6d:32:61:ea:19:08:bb:22:83:71:c0:64:ce:36: b4:d7:20:20:49:53:45:79:bb:a0:cf:16:1c:08:72:67:b5:98: 8d:25:4d:ba:46:17:b6:20:d8:e8:93:5c:57:b6:1e:1b:15:6d: 03:75:87:7e:14:a8:34:b1:aa:dd:aa:88:20:a0:77:76:f6:3a: ef:07:21:23 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFNswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U4MjExMTAvBgNVBAUTKEMyMjJDMTlFQkY1Mjg0NEQ0QjdDREEwRUY3NTRFNkQz MzBDNEI2MDkwHhcNMjUwNzE4MTY1OTEyWhcNMjUwNzI1MTY1OTEyWjAYMRYwFAYD VQQDEw02ODdhN2Q2MC1kMTIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7MjrixR4/KtXgaIaOCHIi21JqtTxMVo1UoX7EF5o6ahZSNcCPZ3w6ApF25De mDhjWWtfhVtpkGyZaytR1GCAOFBdJ6yTEzJt0MWRQiZ3oAjv7YskIRD4LpXLZm/A xNOzQGKqj9Kb99dEb1xHJJE9PcVISz6iWKY3LDbYzY0itiBORJ/ip4ZFR+ykha9e zlPRJUU216t2JmmJCH16ZnRESr4qOr2ml2qmtFM3q5HHHap7lpyzvrfY1gJL+g9x iaCIQUYu9f8mEWqe0/G5yGsFveVLt/N260p5Y3kQ495t43Zfsh7kEHXvGKSUuoF2 Pabu9oCpe8DGGjUSCyhdPAh+lwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCZQ2Qnl gLR/eMGZ5rAPgnA651ykMB8GA1UdIwQYMBaAFMIiwZ6/UoRNS3zaDvdU5tMwxLYJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTgyMS84MTFGQjU5MDYw NTExMUU4OENEOEVDNDdDNEY5QUUwMi93aUxCbnI5U2hFMUxmTm9POTFUbTB6REV0 Z2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3dpTEJucjlTaEUxTGZOb085MVRtMHpERXRnay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTgyMS84MTFGQjU5MDYwNTExMUU4OENEOEVDNDdDNEY5QUUwMi93aUxCbnI5U2hF MUxmTm9POTFUbTB6REV0Z2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAmuzKGfe9DB3qXfrT2GZjt+dMLYNYigvgXBzvFxnyMtK9XnVxop8ZU PVE23A+8cWWQnm6DqEvSuoFOQbfHR73WW85wE/fstQJ7jqR/ON7oxTolhWYo2/A/ CmYYDrGc8jMxzuREtsiBxWdLPuu9i+UAQVjddBhouYED8iMs1PPYMHC+oqLMZMTU JfgjPl6ANrRnEqxGQJ9T7kVuH7J+kYslIVZIQAr1nIk4XZInxD857g3XFLgven2h bTJh6hkIuyKDccBkzja01yAgSVNFebugzxYcCHJntZiNJU26Rhe2INjok1xXth4b FW0DdYd+FKg0sardqoggoHd29jrvByEj -----END CERTIFICATE-----Generated at Sun Jul 20 03:45:36 2025 by rpki-client