$ rpki-client -vvf rpki.apnic.net/member_repository/A91EF73C/ED068BB8A49111EAB257942DC4F9AE02/wKVDSTesKQBoKRal--4VQ84LCKc.mft File: wKVDSTesKQBoKRal--4VQ84LCKc.mft (raw, json) Hash identifier: 9jCGn8+As7E533AiyYU4Xq3bL93/sjcq2uNgACfn4dQ= Subject key identifier: 3C:5C:20:E5:48:AC:09:A9:02:BA:A6:5A:C8:82:E0:DF:81:17:C0:DA Authority key identifier: C0:A5:43:49:37:AC:29:00:68:29:16:A5:FB:EE:15:43:CE:0B:08:A7 Certificate issuer: /CN=A91EF73C/serialNumber=C0A5434937AC2900682916A5FBEE1543CE0B08A7 Certificate serial: 0950 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wKVDSTesKQBoKRal--4VQ84LCKc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EF73C/ED068BB8A49111EAB257942DC4F9AE02/wKVDSTesKQBoKRal--4VQ84LCKc.mft Manifest number: 092C Signing time: Fri 18 Jul 2025 20:28:53 +0000 Manifest this update: Fri 18 Jul 2025 20:28:53 +0000 Manifest next update: Fri 25 Jul 2025 20:28:53 +0000 Files and hashes: 1: wKVDSTesKQBoKRal--4VQ84LCKc.crl (hash: GgaW3Kf0xX+ybl0/RW0HDfKm0SKGblJ4ZtsrcUJcKu0=) 2: 8B3FB092C2AC11EAB23E1C3AC4F9AE02.roa (hash: pXrEj4stDQa7vXKCjosbWVQ6drk8njOMSLWpF1DWD7I=) 3: 87A141747A5511EBA4258A7DC4F9AE02.roa (hash: rt6Bny5AcJrI2S637EuL4TLyFA4SjY1ZgYuhkIe6es0=) 4: 8BD44914C2AC11EAB23E1C3AC4F9AE02.roa (hash: hPsYz+84BMOD09qXWXtUIiGoQs2iz4MgarEp+UA6x9E=) 5: FCA6CE3221DE11EBA27D251CC4F9AE02.roa (hash: jlvb+etwEPHqA46PNwyWWQuRbCH2ZSbsGy74EBHEsOU=) 6: FD55206821DE11EBA27D251CC4F9AE02.roa (hash: IsjUPn+kzqWFAXd7ZKFs/dyXmrJrx2wfZqJliLqmPzA=) 7: 6B641F14232411EB87A6CB0DC4F9AE02.roa (hash: RAy4NEtPtRjjHZ7I4vl5fhJ8895ko/HNAUdCvF3aEZY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EF73C/ED068BB8A49111EAB257942DC4F9AE02/wKVDSTesKQBoKRal--4VQ84LCKc.crl rsync://rpki.apnic.net/member_repository/A91EF73C/ED068BB8A49111EAB257942DC4F9AE02/wKVDSTesKQBoKRal--4VQ84LCKc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wKVDSTesKQBoKRal--4VQ84LCKc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 20:28:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2384 (0x950) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EF73C, serialNumber=C0A5434937AC2900682916A5FBEE1543CE0B08A7 Validity Not Before: Jul 18 20:28:53 2025 GMT Not After : Jul 25 20:28:53 2025 GMT Subject: CN=687aae85-cf97 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:cd:cd:28:f9:82:b9:e1:19:e4:13:0b:c7:f6: 80:fd:9b:78:f0:c0:11:72:c6:4d:f9:9e:a7:a3:2f: 44:e6:57:13:e5:59:f1:61:96:4a:e0:56:c0:c0:d8: f5:0d:30:07:d4:f8:f9:28:2e:ca:7b:8d:dd:6b:20: d9:a4:70:db:fc:3a:10:3c:68:e3:46:28:34:ef:7c: 65:eb:31:a6:e3:77:98:21:2d:f8:4d:4d:3a:1b:99: 3c:82:d8:87:fc:bd:c7:f4:7c:09:8c:be:6d:e3:c0: 31:53:ce:74:94:a6:eb:3b:3d:ab:d9:c1:e2:fc:d2: e9:e5:7b:54:65:36:20:5d:5f:62:14:da:21:28:73: 93:1a:0d:2b:e1:57:0a:53:30:ef:f5:7c:5c:92:84: ed:b3:e2:e5:5e:04:f6:5d:16:11:08:19:35:7b:02: b0:b9:23:8c:4e:68:5b:ff:7c:eb:d6:41:19:7d:f0: 13:cb:2c:60:e8:0c:6d:c3:83:17:a0:d6:2a:67:d1: 1d:b1:c9:e5:16:f1:f0:b2:22:9a:52:a2:46:ff:14: df:ed:c4:1f:96:b6:35:05:86:1e:b7:e7:36:0b:d2: 7e:b6:8d:f2:92:48:2e:a1:1e:b2:36:a3:3d:d0:78: e8:ce:f5:c0:a6:75:72:b6:14:ab:01:f7:4c:e0:90: a1:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:5C:20:E5:48:AC:09:A9:02:BA:A6:5A:C8:82:E0:DF:81:17:C0:DA X509v3 Authority Key Identifier: keyid:C0:A5:43:49:37:AC:29:00:68:29:16:A5:FB:EE:15:43:CE:0B:08:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EF73C/ED068BB8A49111EAB257942DC4F9AE02/wKVDSTesKQBoKRal--4VQ84LCKc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wKVDSTesKQBoKRal--4VQ84LCKc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EF73C/ED068BB8A49111EAB257942DC4F9AE02/wKVDSTesKQBoKRal--4VQ84LCKc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5b:a8:a1:a6:09:59:c1:5e:cf:95:a7:f4:38:8e:1d:24:10:3c: d2:64:5f:8d:c4:7c:03:24:6e:a1:44:78:a7:1b:cd:eb:b9:30: d1:9a:4e:0b:03:40:73:0d:90:60:59:62:26:f8:ff:2d:da:a8: a6:e4:88:66:0b:65:b2:e0:9b:8d:cb:8c:30:86:16:eb:bd:ee: 9d:e3:6c:bd:c1:f1:1b:67:2b:f1:28:67:5e:cb:e1:53:33:05: 6b:e7:2f:30:6d:89:cc:c9:a9:c8:85:d5:90:5a:f1:cf:70:79: 41:d0:b6:e3:43:ed:2c:19:7a:7d:81:f8:78:3d:d4:71:1c:79: ce:2d:9c:25:c5:71:96:ce:2c:da:81:1f:96:5f:8c:c5:a9:b0: 1e:4a:82:05:74:92:5a:38:09:a3:b4:f8:2e:12:6d:2f:be:5a: 6b:cf:51:a7:6a:c9:c4:2b:f2:d4:a6:23:4f:24:aa:65:c6:49: 5d:01:34:16:b9:c7:20:b6:b4:44:5e:ad:c5:d2:b5:88:f5:66: dd:55:98:49:52:31:c3:bb:f1:fe:8c:80:71:68:b8:dc:e5:f1: ca:d9:e2:29:29:f5:0c:53:19:5b:71:a9:05:dc:19:66:c2:d1: ea:e9:ef:97:a8:48:28:88:a2:c1:3f:de:73:04:9a:b4:bd:5a: 92:50:74:f2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCVAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUY3M0MxMTAvBgNVBAUTKEMwQTU0MzQ5MzdBQzI5MDA2ODI5MTZBNUZCRUUxNTQz Q0UwQjA4QTcwHhcNMjUwNzE4MjAyODUzWhcNMjUwNzI1MjAyODUzWjAYMRYwFAYD VQQDEw02ODdhYWU4NS1jZjk3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5M3NKPmCueEZ5BMLx/aA/Zt48MARcsZN+Z6noy9E5lcT5VnxYZZK4FbAwNj1 DTAH1Pj5KC7Ke43dayDZpHDb/DoQPGjjRig073xl6zGm43eYIS34TU06G5k8gtiH /L3H9HwJjL5t48AxU850lKbrOz2r2cHi/NLp5XtUZTYgXV9iFNohKHOTGg0r4VcK UzDv9XxckoTts+LlXgT2XRYRCBk1ewKwuSOMTmhb/3zr1kEZffATyyxg6Axtw4MX oNYqZ9EdscnlFvHwsiKaUqJG/xTf7cQflrY1BYYet+c2C9J+to3ykkguoR6yNqM9 0HjozvXApnVythSrAfdM4JChwwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDxcIOVI rAmpArqmWsiC4N+BF8DaMB8GA1UdIwQYMBaAFMClQ0k3rCkAaCkWpfvuFUPOCwin MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRjczQy9FRDA2OEJCOEE0 OTExMUVBQjI1Nzk0MkRDNEY5QUUwMi93S1ZEU1Rlc0tRQm9LUmFsLS00VlE4NExD S2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3dLVkRTVGVzS1FCb0tSYWwtLTRWUTg0TENLYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RjczQy9FRDA2OEJCOEE0OTExMUVBQjI1Nzk0MkRDNEY5QUUwMi93S1ZEU1Rlc0tR Qm9LUmFsLS00VlE4NExDS2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBbqKGmCVnBXs+Vp/Q4jh0kEDzSZF+NxHwDJG6hRHinG83ruTDRmk4L A0BzDZBgWWIm+P8t2qim5IhmC2Wy4JuNy4wwhhbrve6d42y9wfEbZyvxKGdey+FT MwVr5y8wbYnMyanIhdWQWvHPcHlB0LbjQ+0sGXp9gfh4PdRxHHnOLZwlxXGWziza gR+WX4zFqbAeSoIFdJJaOAmjtPguEm0vvlprz1GnasnEK/LUpiNPJKplxkldATQW uccgtrREXq3F0rWI9WbdVZhJUjHDu/H+jIBxaLjc5fHK2eIpKfUMUxlbcakF3Blm wtHq6e+XqEgoiKLBP95zBJq0vVqSUHTy -----END CERTIFICATE-----Generated at Sun Jul 20 16:28:21 2025 by rpki-client