$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4C30/0F1F7CE8964111EDBA9DCC4FC4F9AE02/WKDd0CVVyDdIbVVDUYbcxXahKD4.mft File: WKDd0CVVyDdIbVVDUYbcxXahKD4.mft (raw, json) Hash identifier: yK07DeQrCOIj32lQid2fZyA0jYSB/gS8mZXNAh+3VIw= Subject key identifier: D0:9B:64:F4:18:D4:04:35:AE:47:F0:89:09:21:32:5F:12:B5:80:E3 Authority key identifier: 58:A0:DD:D0:25:55:C8:37:48:6D:55:43:51:86:DC:C5:76:A1:28:3E Certificate issuer: /CN=A91E4C30/serialNumber=58A0DDD02555C837486D55435186DCC576A1283E Certificate serial: 01E8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WKDd0CVVyDdIbVVDUYbcxXahKD4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4C30/0F1F7CE8964111EDBA9DCC4FC4F9AE02/WKDd0CVVyDdIbVVDUYbcxXahKD4.mft Manifest number: 01DB Signing time: Sat 19 Jul 2025 03:00:05 +0000 Manifest this update: Sat 19 Jul 2025 03:00:04 +0000 Manifest next update: Sat 26 Jul 2025 03:00:04 +0000 Files and hashes: 1: WKDd0CVVyDdIbVVDUYbcxXahKD4.crl (hash: Re2aMXH2OTtvkfeZf99c8Iod/DIf0FtP2Lmb+u+jQ+c=) 2: 8C48B22C47E711EE91530D28C4F9AE02.roa (hash: wKqJN3HUJdyX5elWCqbGG36RonSJ+MBkLKESMLKx2qQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4C30/0F1F7CE8964111EDBA9DCC4FC4F9AE02/WKDd0CVVyDdIbVVDUYbcxXahKD4.crl rsync://rpki.apnic.net/member_repository/A91E4C30/0F1F7CE8964111EDBA9DCC4FC4F9AE02/WKDd0CVVyDdIbVVDUYbcxXahKD4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WKDd0CVVyDdIbVVDUYbcxXahKD4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 03:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 488 (0x1e8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4C30, serialNumber=58A0DDD02555C837486D55435186DCC576A1283E Validity Not Before: Jul 19 03:00:04 2025 GMT Not After : Jul 26 03:00:04 2025 GMT Subject: CN=687b0a34-90b9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:10:78:9c:60:18:18:4e:8b:c6:20:f8:07:16: 61:26:bc:c4:4a:76:cc:e8:57:83:5a:01:56:0c:c0: af:7d:bf:24:bd:50:49:1a:1e:c0:34:b6:a5:0c:64: 05:59:80:d8:d2:d6:59:0c:b1:00:c1:5e:0c:0e:5a: 05:56:f5:58:d4:b0:30:47:f5:dc:3c:c9:63:a2:48: 90:35:86:31:55:d3:be:91:be:fb:44:63:a5:f8:d1: ac:5d:f3:8e:dd:cc:77:2b:d3:15:5f:51:02:3d:17: 1e:e0:72:9e:1e:da:76:0a:a4:c6:1d:75:41:8a:38: 87:dd:c3:ce:21:2e:3a:40:7c:9f:f0:40:65:18:9b: 2f:bf:54:44:87:75:b2:8f:03:d0:ac:f8:4b:98:2b: c0:c0:ab:c9:00:6c:4a:a7:21:47:f1:4d:3b:fb:3b: a0:bc:70:63:b5:3c:ac:d4:3d:59:e5:cc:47:af:08: a5:6f:8a:3b:bc:60:2a:d3:0a:c9:4c:2b:16:2d:05: 69:8d:0c:77:69:0e:2d:63:a2:c5:c3:5e:13:e5:7a: a0:d3:de:26:4a:1f:82:83:fc:c1:a9:7e:ae:28:0f: f9:f8:aa:02:b1:d7:be:66:30:4e:1f:57:1d:f1:03: fe:51:8f:0a:c7:bc:f6:4a:a5:a1:d7:0d:8d:23:6e: bd:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:9B:64:F4:18:D4:04:35:AE:47:F0:89:09:21:32:5F:12:B5:80:E3 X509v3 Authority Key Identifier: keyid:58:A0:DD:D0:25:55:C8:37:48:6D:55:43:51:86:DC:C5:76:A1:28:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4C30/0F1F7CE8964111EDBA9DCC4FC4F9AE02/WKDd0CVVyDdIbVVDUYbcxXahKD4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WKDd0CVVyDdIbVVDUYbcxXahKD4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4C30/0F1F7CE8964111EDBA9DCC4FC4F9AE02/WKDd0CVVyDdIbVVDUYbcxXahKD4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 27:96:f5:3c:d8:4e:ba:ea:fc:bc:79:9b:6a:41:9b:79:f6:31: 91:40:cf:03:dd:9f:07:8e:8a:26:14:b2:98:64:ce:27:42:a5: 89:8c:86:7c:fe:18:40:01:ca:46:fe:1a:ea:8a:e4:d1:cb:ce: 17:b7:08:4d:83:29:9b:8f:a5:64:f6:c1:f5:0f:75:d6:18:aa: 19:4f:3d:a0:bb:6d:58:c2:32:99:23:4d:33:3c:fb:d4:9e:89: 4a:b6:99:be:e6:0f:02:60:61:2c:e5:90:a5:10:7e:b8:d2:8a: 62:18:c2:8c:85:64:df:7c:9b:4d:ef:65:bf:a6:f0:d1:8f:2f: 71:74:8c:6e:49:54:50:49:26:57:c7:4d:0e:fa:b2:16:56:00: 0c:39:26:59:62:c8:fa:17:06:ec:07:e8:13:2b:15:5a:f9:92: 8a:b1:95:93:ae:25:9c:c4:ec:cb:4e:dd:f3:25:9a:7f:a4:75: 12:34:bf:01:f3:54:29:76:e4:6a:6d:02:a4:55:19:82:2a:f6: b9:64:ee:0e:43:38:33:08:c2:b5:2b:c6:83:45:2d:cc:a4:5f: ae:1b:4e:f7:3c:29:1c:8a:7f:9f:ac:f1:b2:a8:5b:77:2a:e0: f0:4f:d3:46:fe:f4:3f:82:86:84:7a:f3:3c:54:5f:e0:bd:7b: 4a:f7:09:39 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAegwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTRDMzAxMTAvBgNVBAUTKDU4QTBEREQwMjU1NUM4Mzc0ODZENTU0MzUxODZEQ0M1 NzZBMTI4M0UwHhcNMjUwNzE5MDMwMDA0WhcNMjUwNzI2MDMwMDA0WjAYMRYwFAYD VQQDEw02ODdiMGEzNC05MGI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxBB4nGAYGE6LxiD4BxZhJrzESnbM6FeDWgFWDMCvfb8kvVBJGh7ANLalDGQF WYDY0tZZDLEAwV4MDloFVvVY1LAwR/XcPMljokiQNYYxVdO+kb77RGOl+NGsXfOO 3cx3K9MVX1ECPRce4HKeHtp2CqTGHXVBijiH3cPOIS46QHyf8EBlGJsvv1REh3Wy jwPQrPhLmCvAwKvJAGxKpyFH8U07+zugvHBjtTys1D1Z5cxHrwilb4o7vGAq0wrJ TCsWLQVpjQx3aQ4tY6LFw14T5Xqg094mSh+Cg/zBqX6uKA/5+KoCsde+ZjBOH1cd 8QP+UY8Kx7z2SqWh1w2NI2695wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNCbZPQY 1AQ1rkfwiQkhMl8StYDjMB8GA1UdIwQYMBaAFFig3dAlVcg3SG1VQ1GG3MV2oSg+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNEMzMC8wRjFGN0NFODk2 NDExMUVEQkE5RENDNEZDNEY5QUUwMi9XS0RkMENWVnlEZEliVlZEVVliY3hYYWhL RDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dLRGQwQ1ZWeURkSWJWVkRVWWJjeFhhaEtENC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NEMzMC8wRjFGN0NFODk2NDExMUVEQkE5RENDNEZDNEY5QUUwMi9XS0RkMENWVnlE ZEliVlZEVVliY3hYYWhLRDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAnlvU82E666vy8eZtqQZt59jGRQM8D3Z8HjoomFLKYZM4nQqWJjIZ8 /hhAAcpG/hrqiuTRy84XtwhNgymbj6Vk9sH1D3XWGKoZTz2gu21YwjKZI00zPPvU nolKtpm+5g8CYGEs5ZClEH640opiGMKMhWTffJtN72W/pvDRjy9xdIxuSVRQSSZX x00O+rIWVgAMOSZZYsj6FwbsB+gTKxVa+ZKKsZWTriWcxOzLTt3zJZp/pHUSNL8B 81QpduRqbQKkVRmCKva5ZO4OQzgzCMK1K8aDRS3MpF+uG073PCkcin+frPGyqFt3 KuDwT9NG/vQ/goaEevM8VF/gvXtK9wk5 -----END CERTIFICATE-----Generated at Sun Jul 20 16:23:36 2025 by rpki-client