$ rpki-client -vvf rpki.apnic.net/member_repository/A91D3ED4/29078A72EF3711EB91768A36C4F9AE02/wsO6iC7D3Pwn8TzociVgfaqheE0.mft File: wsO6iC7D3Pwn8TzociVgfaqheE0.mft (raw, json) Hash identifier: g76FSkD71z6mFHzMfPJ2FgEno778gjOpErKFsTNBVxo= Subject key identifier: DA:41:05:93:8C:55:EE:C8:F1:77:A9:EE:65:4D:B2:52:CE:A9:FF:A8 Authority key identifier: C2:C3:BA:88:2E:C3:DC:FC:27:F1:3C:E8:72:25:60:7D:AA:A1:78:4D Certificate issuer: /CN=A91D3ED4/serialNumber=C2C3BA882EC3DCFC27F13CE87225607DAAA1784D Certificate serial: 0544 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wsO6iC7D3Pwn8TzociVgfaqheE0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D3ED4/29078A72EF3711EB91768A36C4F9AE02/wsO6iC7D3Pwn8TzociVgfaqheE0.mft Manifest number: 053E Signing time: Fri 18 Apr 2025 23:28:22 +0000 Manifest this update: Fri 18 Apr 2025 23:28:21 +0000 Manifest next update: Fri 25 Apr 2025 23:28:21 +0000 Files and hashes: 1: wsO6iC7D3Pwn8TzociVgfaqheE0.crl (hash: JMsNR25RlKXb0stoGP4K1PtZAuYC19FDf96yYgULwNs=) 2: B84B847AEF3911EBACC9E938C4F9AE02.roa (hash: bEuAdA3yRgHUx1B8M9eSaNpdhvP9aDsmMm6seL8p7oY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D3ED4/29078A72EF3711EB91768A36C4F9AE02/wsO6iC7D3Pwn8TzociVgfaqheE0.crl rsync://rpki.apnic.net/member_repository/A91D3ED4/29078A72EF3711EB91768A36C4F9AE02/wsO6iC7D3Pwn8TzociVgfaqheE0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wsO6iC7D3Pwn8TzociVgfaqheE0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Apr 2025 23:28:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1348 (0x544) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D3ED4, serialNumber=C2C3BA882EC3DCFC27F13CE87225607DAAA1784D Validity Not Before: Apr 18 23:28:21 2025 GMT Not After : Apr 25 23:28:21 2025 GMT Subject: CN=6802e015-80e9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:56:15:bc:c0:8b:17:f3:b8:2b:b0:24:bd:4e: 4d:6e:3d:de:02:3a:69:d8:e4:28:4c:2a:39:a7:48: 31:7d:ba:e6:f7:59:01:1c:0a:06:7a:ed:48:8f:40: 99:46:b5:de:ac:cb:57:fb:47:33:db:e6:00:f8:ce: b1:fa:b2:82:ef:d5:26:a1:b0:2d:57:04:47:89:4d: fa:91:5b:a7:8c:04:c0:e3:be:8e:10:7b:0c:3f:42: 96:73:ec:a0:59:99:2f:61:a5:6e:d7:16:60:09:7a: 98:41:77:cb:f5:a1:f4:8a:8a:a1:f0:15:d6:b8:dd: 94:b3:2a:bc:0c:22:36:1e:0f:d4:ca:c4:6b:34:48: 51:01:72:de:ee:af:ec:15:c2:0e:f6:29:3f:6c:5d: 7e:1a:8a:d2:cf:85:e2:3d:61:ae:33:4d:0d:8f:bd: 49:a3:1a:ba:0f:50:5d:ae:7e:a6:6e:12:aa:79:34: 8e:6a:83:76:aa:5d:30:07:de:39:0f:9f:d8:97:51: a4:2b:74:05:82:7f:86:8f:27:cb:7f:20:7b:c1:cf: 1c:c4:3f:06:81:0a:4a:56:04:38:92:41:6f:5e:b5: 17:ee:30:68:cf:43:95:90:db:73:4f:ef:c5:2a:e3: cb:51:bc:33:32:ad:24:c4:01:31:ea:ee:9a:4e:0f: 09:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:41:05:93:8C:55:EE:C8:F1:77:A9:EE:65:4D:B2:52:CE:A9:FF:A8 X509v3 Authority Key Identifier: keyid:C2:C3:BA:88:2E:C3:DC:FC:27:F1:3C:E8:72:25:60:7D:AA:A1:78:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D3ED4/29078A72EF3711EB91768A36C4F9AE02/wsO6iC7D3Pwn8TzociVgfaqheE0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wsO6iC7D3Pwn8TzociVgfaqheE0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D3ED4/29078A72EF3711EB91768A36C4F9AE02/wsO6iC7D3Pwn8TzociVgfaqheE0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption be:7d:47:09:34:a8:e4:be:0e:96:36:67:3b:86:59:ec:b0:3a: d0:68:0c:ed:8e:42:c3:c9:4f:89:f9:bd:32:1a:09:37:c7:a0: 95:12:5f:f8:5b:c8:0a:63:e0:30:8e:00:e0:d6:15:42:80:b4: 89:0a:bc:cd:99:7d:72:1a:2c:b3:26:fc:75:97:51:70:0d:92: 12:b2:40:59:98:47:08:39:c6:65:a8:fb:d9:8b:63:27:bc:58: f6:f4:2f:75:ed:9c:94:97:84:ea:06:6e:75:a6:c8:75:40:a5: 38:18:06:4a:a2:5f:57:70:ee:49:c5:39:f7:6a:df:cd:be:43: af:e5:f6:ca:73:10:fd:eb:6f:ca:98:c4:93:5a:78:b9:08:73: a0:98:ae:60:f3:d9:39:d6:99:b5:da:1b:97:1a:2b:c5:b2:5c: 92:40:2e:fe:95:ea:9d:c7:bd:d9:fd:7f:9e:60:ae:48:55:84: 76:ed:72:13:ad:7b:f3:f6:3e:7d:b5:72:6b:16:b5:ac:99:1e: 74:22:2f:41:1c:17:1b:03:5b:a2:77:d7:4c:bb:a7:9b:f5:94: 75:98:0e:66:4d:80:c7:25:2b:7b:82:1f:1d:fe:03:93:4f:cb: 85:69:06:59:44:c6:78:ee:73:34:82:10:3f:ff:ac:5c:11:89: 8d:4a:09:8f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBUQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDNFRDQxMTAvBgNVBAUTKEMyQzNCQTg4MkVDM0RDRkMyN0YxM0NFODcyMjU2MDdE QUFBMTc4NEQwHhcNMjUwNDE4MjMyODIxWhcNMjUwNDI1MjMyODIxWjAYMRYwFAYD VQQDEw02ODAyZTAxNS04MGU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvlYVvMCLF/O4K7AkvU5Nbj3eAjpp2OQoTCo5p0gxfbrm91kBHAoGeu1Ij0CZ RrXerMtX+0cz2+YA+M6x+rKC79UmobAtVwRHiU36kVunjATA476OEHsMP0KWc+yg WZkvYaVu1xZgCXqYQXfL9aH0ioqh8BXWuN2Usyq8DCI2Hg/UysRrNEhRAXLe7q/s FcIO9ik/bF1+GorSz4XiPWGuM00Nj71Joxq6D1Bdrn6mbhKqeTSOaoN2ql0wB945 D5/Yl1GkK3QFgn+GjyfLfyB7wc8cxD8GgQpKVgQ4kkFvXrUX7jBoz0OVkNtzT+/F KuPLUbwzMq0kxAEx6u6aTg8JfQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNpBBZOM Ve7I8Xep7mVNslLOqf+oMB8GA1UdIwQYMBaAFMLDuoguw9z8J/E86HIlYH2qoXhN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEM0VENC8yOTA3OEE3MkVG MzcxMUVCOTE3NjhBMzZDNEY5QUUwMi93c082aUM3RDNQd244VHpvY2lWZ2ZhcWhl RTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3dzTzZpQzdEM1B3bjhUem9jaVZnZmFxaGVFMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE M0VENC8yOTA3OEE3MkVGMzcxMUVCOTE3NjhBMzZDNEY5QUUwMi93c082aUM3RDNQ d244VHpvY2lWZ2ZhcWhlRTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC+fUcJNKjkvg6WNmc7hlnssDrQaAztjkLDyU+J+b0yGgk3x6CVEl/4 W8gKY+AwjgDg1hVCgLSJCrzNmX1yGiyzJvx1l1FwDZISskBZmEcIOcZlqPvZi2Mn vFj29C917ZyUl4TqBm51psh1QKU4GAZKol9XcO5JxTn3at/NvkOv5fbKcxD962/K mMSTWni5CHOgmK5g89k51pm12huXGivFslySQC7+leqdx73Z/X+eYK5IVYR27XIT rXvz9j59tXJrFrWsmR50Ii9BHBcbA1uid9dMu6eb9ZR1mA5mTYDHJSt7gh8d/gOT T8uFaQZZRMZ47nM0ghA//6xcEYmNSgmP -----END CERTIFICATE-----Generated at Sun Apr 20 22:22:36 2025 by rpki-client