$ rpki-client -vvf rpki.apnic.net/member_repository/A91DB0C1/802C24328A7A11E799E9F764C4F9AE02/wQgOZhsN-mIOsJqrLerWA0uCjrw.mft File: wQgOZhsN-mIOsJqrLerWA0uCjrw.mft (raw, json) Hash identifier: 9g9Gjc9YzcdomSxKh2kMzAWqNB0TILuYQkA972AnFhc= Subject key identifier: DE:E4:EE:74:76:33:E6:C5:01:28:08:82:FC:6A:15:98:EC:EF:8D:73 Authority key identifier: C1:08:0E:66:1B:0D:FA:62:0E:B0:9A:AB:2D:EA:D6:03:4B:82:8E:BC Certificate issuer: /CN=A91DB0C1/serialNumber=C1080E661B0DFA620EB09AAB2DEAD6034B828EBC Certificate serial: 18D4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wQgOZhsN-mIOsJqrLerWA0uCjrw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DB0C1/802C24328A7A11E799E9F764C4F9AE02/wQgOZhsN-mIOsJqrLerWA0uCjrw.mft Manifest number: 18CC Signing time: Sun 20 Apr 2025 16:24:01 +0000 Manifest this update: Sun 20 Apr 2025 16:24:00 +0000 Manifest next update: Sun 27 Apr 2025 16:24:00 +0000 Files and hashes: 1: wQgOZhsN-mIOsJqrLerWA0uCjrw.crl (hash: WU/KRz+qa5sc4ngu+zmVWUGS+OhZWyptsilC8UEen3E=) 2: 35D9F1BE8A7C11E79774186BC4F9AE02.roa (hash: JsSR5Xyiam1gqDW8LZ3p6vMD1Unh1jWG06vXX1Pt4OE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DB0C1/802C24328A7A11E799E9F764C4F9AE02/wQgOZhsN-mIOsJqrLerWA0uCjrw.crl rsync://rpki.apnic.net/member_repository/A91DB0C1/802C24328A7A11E799E9F764C4F9AE02/wQgOZhsN-mIOsJqrLerWA0uCjrw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wQgOZhsN-mIOsJqrLerWA0uCjrw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 16:24:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6356 (0x18d4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DB0C1, serialNumber=C1080E661B0DFA620EB09AAB2DEAD6034B828EBC Validity Not Before: Apr 20 16:24:00 2025 GMT Not After : Apr 27 16:24:00 2025 GMT Subject: CN=68051fa1-bbf1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:f0:ce:92:a1:21:ea:bb:5f:5f:8f:7b:e7:11: 6c:ec:a5:74:2d:0b:a6:ce:24:95:ec:c2:9a:31:55: 84:19:3d:c5:f4:f6:da:76:66:05:73:00:7e:5f:08: 7e:ba:8c:48:b3:ee:53:58:4b:f6:28:44:5d:fd:11: 07:66:b9:85:94:5b:ea:ed:d5:0a:1f:1f:53:2e:f5: 52:cb:39:51:8a:fd:d3:05:64:c6:7a:e7:42:5b:eb: 7f:a4:6a:fc:f1:24:1e:48:25:66:e9:98:4c:e2:e5: e7:c5:46:92:58:ed:0e:ad:43:58:61:6f:19:11:d7: e6:16:84:99:db:7c:36:97:11:9f:a7:57:ae:fb:91: 9c:53:27:14:c0:db:26:3c:61:89:cd:ec:1c:3e:dd: a7:05:38:c6:68:6f:e7:92:84:1c:77:51:61:97:70: 91:9e:3c:e6:85:44:37:71:df:01:d0:36:cf:e4:ac: b9:8b:25:37:ff:db:b7:8b:30:a1:b7:85:44:b0:71: 81:d4:c2:b2:71:09:b1:ea:19:89:4e:bc:de:f9:21: f3:95:9b:79:8a:1c:fd:06:a4:c2:6a:54:3a:19:20: 74:b2:ba:a5:3d:15:73:c6:89:9b:42:97:9f:eb:df: b2:12:6f:d0:3d:6b:24:87:99:29:04:10:ed:42:45: d3:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:E4:EE:74:76:33:E6:C5:01:28:08:82:FC:6A:15:98:EC:EF:8D:73 X509v3 Authority Key Identifier: keyid:C1:08:0E:66:1B:0D:FA:62:0E:B0:9A:AB:2D:EA:D6:03:4B:82:8E:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DB0C1/802C24328A7A11E799E9F764C4F9AE02/wQgOZhsN-mIOsJqrLerWA0uCjrw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wQgOZhsN-mIOsJqrLerWA0uCjrw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DB0C1/802C24328A7A11E799E9F764C4F9AE02/wQgOZhsN-mIOsJqrLerWA0uCjrw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 59:2c:51:11:7b:96:e7:7d:06:58:50:ab:1d:68:52:39:20:74: 4c:b3:c4:e0:83:fa:77:68:03:4f:8a:9b:79:0a:d2:4b:ec:0e: 4b:72:13:5b:54:e7:f5:f0:07:90:7e:ac:8e:79:71:6f:41:6e: 97:7a:70:be:e0:bd:b1:0a:29:5c:29:d7:20:94:8f:f2:d4:33: 27:b1:95:a7:cf:b1:d7:b3:71:ef:01:44:77:93:b7:be:75:a8: 68:ad:a6:a0:44:e4:ba:44:f3:3d:27:06:a6:b1:da:83:08:f6: 3b:69:b3:cd:cc:67:dd:db:c4:34:e9:67:4f:a6:33:6e:b4:e9: 80:4b:38:4d:fc:24:f4:27:e2:e1:f3:6a:d3:af:55:80:34:61: 3e:fb:bf:a0:7f:80:01:b6:3f:ba:01:83:5a:93:25:3c:ae:f0: 76:91:2a:88:14:bd:cd:3d:d5:df:26:a3:98:a9:0e:ae:8d:5e: 17:de:21:7f:b3:11:4c:61:61:8c:45:ec:ce:a2:89:04:af:81: f0:05:a8:78:ef:ee:e3:34:c8:0b:32:43:c6:8b:1f:57:fd:88: 68:92:89:aa:ab:e7:f8:4d:a2:91:38:f5:0e:01:17:78:27:3f: 60:b1:34:3c:a4:63:e0:b2:d8:8f:40:38:5c:ea:b4:93:35:20: d5:31:bf:d2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGNQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REIwQzExMTAvBgNVBAUTKEMxMDgwRTY2MUIwREZBNjIwRUIwOUFBQjJERUFENjAz NEI4MjhFQkMwHhcNMjUwNDIwMTYyNDAwWhcNMjUwNDI3MTYyNDAwWjAYMRYwFAYD VQQDEw02ODA1MWZhMS1iYmYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArvDOkqEh6rtfX4975xFs7KV0LQumziSV7MKaMVWEGT3F9PbadmYFcwB+Xwh+ uoxIs+5TWEv2KERd/REHZrmFlFvq7dUKHx9TLvVSyzlRiv3TBWTGeudCW+t/pGr8 8SQeSCVm6ZhM4uXnxUaSWO0OrUNYYW8ZEdfmFoSZ23w2lxGfp1eu+5GcUycUwNsm PGGJzewcPt2nBTjGaG/nkoQcd1Fhl3CRnjzmhUQ3cd8B0DbP5Ky5iyU3/9u3izCh t4VEsHGB1MKycQmx6hmJTrze+SHzlZt5ihz9BqTCalQ6GSB0srqlPRVzxombQpef 69+yEm/QPWskh5kpBBDtQkXTmQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN7k7nR2 M+bFASgIgvxqFZjs741zMB8GA1UdIwQYMBaAFMEIDmYbDfpiDrCaqy3q1gNLgo68 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQjBDMS84MDJDMjQzMjhB N0ExMUU3OTlFOUY3NjRDNEY5QUUwMi93UWdPWmhzTi1tSU9zSnFyTGVyV0EwdUNq cncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3dRZ09aaHNOLW1JT3NKcXJMZXJXQTB1Q2pydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QjBDMS84MDJDMjQzMjhBN0ExMUU3OTlFOUY3NjRDNEY5QUUwMi93UWdPWmhzTi1t SU9zSnFyTGVyV0EwdUNqcncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBZLFERe5bnfQZYUKsdaFI5IHRMs8Tgg/p3aANPipt5CtJL7A5LchNb VOf18AeQfqyOeXFvQW6XenC+4L2xCilcKdcglI/y1DMnsZWnz7HXs3HvAUR3k7e+ dahoraagROS6RPM9JwamsdqDCPY7abPNzGfd28Q06WdPpjNutOmASzhN/CT0J+Lh 82rTr1WANGE++7+gf4ABtj+6AYNakyU8rvB2kSqIFL3NPdXfJqOYqQ6ujV4X3iF/ sxFMYWGMRezOookEr4HwBah47+7jNMgLMkPGix9X/Yhokomqq+f4TaKROPUOARd4 Jz9gsTQ8pGPgstiPQDhc6rSTNSDVMb/S -----END CERTIFICATE-----Generated at Tue Apr 22 05:43:03 2025 by rpki-client