$ rpki-client -vvf rpki.apnic.net/member_repository/A91D3ED4/29078A72EF3711EB91768A36C4F9AE02/wsO6iC7D3Pwn8TzociVgfaqheE0.mft File: wsO6iC7D3Pwn8TzociVgfaqheE0.mft (raw, json) Hash identifier: 80ElIfbK8I1czukjFSFJ/NRFpTmoT54jpL5WGwU7mHM= Subject key identifier: AB:AE:25:A4:E1:71:1F:0E:53:4D:63:93:9F:DA:BB:3E:26:26:1B:F8 Authority key identifier: C2:C3:BA:88:2E:C3:DC:FC:27:F1:3C:E8:72:25:60:7D:AA:A1:78:4D Certificate issuer: /CN=A91D3ED4/serialNumber=C2C3BA882EC3DCFC27F13CE87225607DAAA1784D Certificate serial: 0573 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wsO6iC7D3Pwn8TzociVgfaqheE0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D3ED4/29078A72EF3711EB91768A36C4F9AE02/wsO6iC7D3Pwn8TzociVgfaqheE0.mft Manifest number: 056D Signing time: Tue 22 Jul 2025 23:41:59 +0000 Manifest this update: Tue 22 Jul 2025 23:41:59 +0000 Manifest next update: Tue 29 Jul 2025 23:41:58 +0000 Files and hashes: 1: wsO6iC7D3Pwn8TzociVgfaqheE0.crl (hash: nORfJHjksXEXlfqIA+YHdht1XH0wI6GP70aJQPAykSM=) 2: B84B847AEF3911EBACC9E938C4F9AE02.roa (hash: bEuAdA3yRgHUx1B8M9eSaNpdhvP9aDsmMm6seL8p7oY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D3ED4/29078A72EF3711EB91768A36C4F9AE02/wsO6iC7D3Pwn8TzociVgfaqheE0.crl rsync://rpki.apnic.net/member_repository/A91D3ED4/29078A72EF3711EB91768A36C4F9AE02/wsO6iC7D3Pwn8TzociVgfaqheE0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wsO6iC7D3Pwn8TzociVgfaqheE0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 29 Jul 2025 23:41:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1395 (0x573) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D3ED4, serialNumber=C2C3BA882EC3DCFC27F13CE87225607DAAA1784D Validity Not Before: Jul 22 23:41:59 2025 GMT Not After : Jul 29 23:41:58 2025 GMT Subject: CN=688021c7-5ada Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:18:95:9d:4e:be:f4:b2:fc:1a:e6:3d:09:f4: dd:8b:a8:cb:70:af:8f:f0:a5:f6:77:9f:df:fc:1f: 5b:76:db:70:85:4f:07:5d:cb:e0:d0:17:47:4e:04: 34:b3:9f:a6:8f:b0:e9:85:30:d9:29:43:90:99:fc: f9:6a:da:56:72:ee:8d:00:f8:af:19:1d:b3:90:3c: a3:59:76:73:59:0d:39:f0:06:cb:d2:0b:07:b6:5c: 36:a6:35:09:d9:40:a3:0f:c1:77:51:d9:3f:f9:34: c4:6a:9d:dd:e0:ab:0f:a8:8e:de:39:61:4e:11:73: 9d:9c:be:ef:35:9b:15:8c:46:73:e3:cc:25:ac:a9: b3:bd:da:29:6b:fa:db:9b:d6:4d:29:e5:0e:52:78: 5e:2e:57:94:98:36:6b:61:aa:4a:dc:4a:9b:2b:d8: 34:42:14:23:e3:63:d4:1d:45:a7:35:22:fc:97:4c: 24:53:04:ea:1a:a9:ac:94:18:08:1f:83:35:0b:8f: be:8a:cd:35:54:4d:aa:ec:36:b1:15:11:de:7e:a9: 86:cc:f5:82:80:c6:06:6f:c1:ed:3b:11:90:e6:77: 49:4a:3a:ff:4f:db:eb:7f:b9:a6:ef:17:a3:f5:f5: c2:f0:a6:5d:bc:87:9d:c6:8a:2f:c9:b4:e7:60:a1: af:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:AE:25:A4:E1:71:1F:0E:53:4D:63:93:9F:DA:BB:3E:26:26:1B:F8 X509v3 Authority Key Identifier: keyid:C2:C3:BA:88:2E:C3:DC:FC:27:F1:3C:E8:72:25:60:7D:AA:A1:78:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D3ED4/29078A72EF3711EB91768A36C4F9AE02/wsO6iC7D3Pwn8TzociVgfaqheE0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wsO6iC7D3Pwn8TzociVgfaqheE0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D3ED4/29078A72EF3711EB91768A36C4F9AE02/wsO6iC7D3Pwn8TzociVgfaqheE0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 71:0e:3d:c1:aa:a1:5a:03:79:b0:ba:3a:d1:e7:bd:70:f4:22: a1:6b:a4:29:ba:c4:9c:4b:66:20:28:8c:19:c0:88:ad:1c:a2: 68:6c:53:c9:62:04:a1:47:7c:d1:d7:92:21:97:02:da:86:58: c3:56:27:ae:b7:01:c1:18:26:1c:eb:2a:55:cf:9b:9d:bb:01: 9b:da:89:82:c3:fc:af:df:8c:99:a0:51:ee:10:8c:07:ec:83: 1e:e7:5c:30:42:d0:09:61:c9:c2:7e:67:16:06:7e:84:7c:e9: 22:0b:e8:c1:17:d9:43:b3:d4:00:38:0b:3a:ba:62:a2:f1:9f: b3:7d:69:c3:c7:44:03:34:e7:39:e4:37:a9:5f:f1:44:2f:ad: 2f:ea:c8:3e:44:8a:e0:4e:62:0e:bd:18:2d:73:00:80:1e:b4: 7a:fe:e7:81:cf:78:fe:2e:a1:c8:99:ab:b9:28:df:00:4f:ce: 79:54:87:d0:6f:91:22:92:a8:55:ea:d7:54:6f:78:8f:8c:0a: 9e:ab:a7:12:ba:3d:37:a2:af:36:73:e5:21:66:9e:13:97:87: e4:53:ac:08:8c:c4:c1:36:5a:14:0d:50:b2:45:a7:1f:e4:61: dc:ee:87:c2:b1:8b:a3:18:59:ed:8e:ad:92:f0:7f:10:82:5c: e5:c2:00:73 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBXMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDNFRDQxMTAvBgNVBAUTKEMyQzNCQTg4MkVDM0RDRkMyN0YxM0NFODcyMjU2MDdE QUFBMTc4NEQwHhcNMjUwNzIyMjM0MTU5WhcNMjUwNzI5MjM0MTU4WjAYMRYwFAYD VQQDEw02ODgwMjFjNy01YWRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxRiVnU6+9LL8GuY9CfTdi6jLcK+P8KX2d5/f/B9bdttwhU8HXcvg0BdHTgQ0 s5+mj7DphTDZKUOQmfz5atpWcu6NAPivGR2zkDyjWXZzWQ058AbL0gsHtlw2pjUJ 2UCjD8F3Udk/+TTEap3d4KsPqI7eOWFOEXOdnL7vNZsVjEZz48wlrKmzvdopa/rb m9ZNKeUOUnheLleUmDZrYapK3EqbK9g0QhQj42PUHUWnNSL8l0wkUwTqGqmslBgI H4M1C4++is01VE2q7DaxFRHefqmGzPWCgMYGb8HtOxGQ5ndJSjr/T9vrf7mm7xej 9fXC8KZdvIedxoovybTnYKGvpwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKuuJaTh cR8OU01jk5/auz4mJhv4MB8GA1UdIwQYMBaAFMLDuoguw9z8J/E86HIlYH2qoXhN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEM0VENC8yOTA3OEE3MkVG MzcxMUVCOTE3NjhBMzZDNEY5QUUwMi93c082aUM3RDNQd244VHpvY2lWZ2ZhcWhl RTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3dzTzZpQzdEM1B3bjhUem9jaVZnZmFxaGVFMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE M0VENC8yOTA3OEE3MkVGMzcxMUVCOTE3NjhBMzZDNEY5QUUwMi93c082aUM3RDNQ d244VHpvY2lWZ2ZhcWhlRTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBxDj3BqqFaA3mwujrR571w9CKha6QpusScS2YgKIwZwIitHKJobFPJ YgShR3zR15IhlwLahljDVieutwHBGCYc6ypVz5uduwGb2omCw/yv34yZoFHuEIwH 7IMe51wwQtAJYcnCfmcWBn6EfOkiC+jBF9lDs9QAOAs6umKi8Z+zfWnDx0QDNOc5 5DepX/FEL60v6sg+RIrgTmIOvRgtcwCAHrR6/ueBz3j+LqHImau5KN8AT855VIfQ b5EikqhV6tdUb3iPjAqeq6cSuj03oq82c+UhZp4Tl4fkU6wIjMTBNloUDVCyRacf 5GHc7ofCsYujGFntjq2S8H8QglzlwgBz -----END CERTIFICATE-----Generated at Wed Jul 23 23:58:35 2025 by rpki-client