$ rpki-client -vvf rpki.apnic.net/member_repository/A91FB5CE/B096C500C81A11EBB125A73EC4F9AE02/WOkI0McaSfSCp8fZVSozVZyuJkM.mft File: WOkI0McaSfSCp8fZVSozVZyuJkM.mft (raw, json) Hash identifier: BKSuywFNVrJXwitMghdhJwNMwpf5A9gbu7ZQwxgD5y0= Subject key identifier: 14:E8:8B:B7:E7:0F:AE:5E:22:E2:BA:A4:E3:70:A4:4E:A5:9F:94:08 Authority key identifier: 58:E9:08:D0:C7:1A:49:F4:82:A7:C7:D9:55:2A:33:55:9C:AE:26:43 Certificate issuer: /CN=A91FB5CE/serialNumber=58E908D0C71A49F482A7C7D9552A33559CAE2643 Certificate serial: 059D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WOkI0McaSfSCp8fZVSozVZyuJkM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FB5CE/B096C500C81A11EBB125A73EC4F9AE02/WOkI0McaSfSCp8fZVSozVZyuJkM.mft Manifest number: 0597 Signing time: Tue 08 Apr 2025 22:56:55 +0000 Manifest this update: Tue 08 Apr 2025 22:56:54 +0000 Manifest next update: Tue 15 Apr 2025 22:56:54 +0000 Files and hashes: 1: WOkI0McaSfSCp8fZVSozVZyuJkM.crl (hash: Q3rMMif3ehzdkQveqXTMYmrX6T+svETI1R2Tv2p/Zqs=) 2: F189CB86C81D11EBA4C0E321C4F9AE02.roa (hash: bmMn0IWRpy37XK6k+WXVEF+nIujAMD8B3cc9TjWsaYg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FB5CE/B096C500C81A11EBB125A73EC4F9AE02/WOkI0McaSfSCp8fZVSozVZyuJkM.crl rsync://rpki.apnic.net/member_repository/A91FB5CE/B096C500C81A11EBB125A73EC4F9AE02/WOkI0McaSfSCp8fZVSozVZyuJkM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WOkI0McaSfSCp8fZVSozVZyuJkM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 15 Apr 2025 22:56:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1437 (0x59d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FB5CE Validity Not Before: Apr 8 22:56:54 2025 GMT Not After : Apr 15 22:56:54 2025 GMT Subject: CN=67f5a9b6-1470 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:dd:f0:7c:08:b3:fd:82:9a:81:98:23:b5:a1: 5f:a4:d2:70:fd:5c:88:a9:b8:07:8e:50:43:68:f0: 42:82:89:8d:8c:87:37:90:be:65:d4:2b:74:1b:57: 51:de:78:5d:59:f9:a3:62:6f:aa:da:97:72:87:44: be:08:cd:f8:9b:a5:bd:6c:14:e1:ed:46:1f:7d:39: db:77:3b:4c:22:aa:26:77:2e:99:f5:10:49:b1:15: 2d:c3:04:35:66:dc:f0:cd:af:5c:23:15:10:f7:50: 4d:f6:93:e3:bc:2f:0c:8b:eb:21:d4:9e:1b:79:6a: 78:13:67:bd:c3:92:df:1d:c7:41:88:6c:28:c7:9f: 86:5f:e8:de:68:c6:ff:73:f9:7a:ca:6d:70:56:6a: 17:9c:28:26:41:c1:d8:84:69:a3:0b:34:82:b4:67: d4:cf:1a:73:5d:d7:bd:75:de:64:9f:3a:2d:ad:2d: 2d:24:97:a5:c0:e3:7a:e2:f8:fe:3b:13:ee:8a:66: 96:6a:2b:d3:31:2a:00:1d:d5:25:3d:51:b4:0d:21: 0a:79:08:df:f0:c4:36:28:86:73:cf:d3:77:96:e5: e6:06:87:0b:66:38:21:af:6d:4a:d1:41:bb:6a:ad: 08:6f:51:57:6d:88:ca:b2:98:e3:8d:cb:d1:c5:72: 8d:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:E8:8B:B7:E7:0F:AE:5E:22:E2:BA:A4:E3:70:A4:4E:A5:9F:94:08 X509v3 Authority Key Identifier: keyid:58:E9:08:D0:C7:1A:49:F4:82:A7:C7:D9:55:2A:33:55:9C:AE:26:43 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FB5CE/B096C500C81A11EBB125A73EC4F9AE02/WOkI0McaSfSCp8fZVSozVZyuJkM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WOkI0McaSfSCp8fZVSozVZyuJkM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FB5CE/B096C500C81A11EBB125A73EC4F9AE02/WOkI0McaSfSCp8fZVSozVZyuJkM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4e:26:63:90:f9:0b:12:8d:23:ee:66:cb:d9:fd:90:60:7e:5f: 60:d4:4f:e4:16:e7:4c:17:0a:56:48:40:4e:11:5e:92:ca:80: b1:15:18:d5:45:29:ab:64:92:0d:86:1f:3a:c9:d8:57:07:9a: c2:3e:ea:69:30:da:55:a0:9a:05:59:94:36:cd:e7:75:96:c5: 88:81:ee:ce:44:c1:50:8d:2b:42:5f:1f:bb:6e:32:ef:88:c3: a7:8d:27:8f:e1:47:91:65:38:5f:4b:a6:a4:65:fd:20:6f:4b: fc:e1:a3:56:7a:90:62:1e:31:93:8b:3c:6c:43:f7:87:38:b3: b9:28:dc:ca:07:3f:45:de:3a:fc:6d:da:56:76:4e:36:0e:4f: 93:bd:83:6f:e2:f5:8d:d2:fe:ae:c9:5e:f0:ba:99:36:0e:af: be:ea:6f:ab:89:e6:42:dc:16:2f:9e:52:12:11:5c:60:8e:27: 53:42:c9:17:30:60:ea:b8:e3:3a:df:22:5d:f8:c9:e4:06:4b: e8:76:ec:33:df:1f:eb:11:35:c8:09:77:fb:b7:f0:7e:58:c3: 9e:93:ae:c3:89:e4:b5:21:24:13:2e:4b:ba:03:97:88:45:ab: e1:27:30:00:bd:3c:f6:50:42:4b:2c:a9:52:a8:f6:81:c3:07: 06:6d:ff:5e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBZ0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkI1Q0UxMTAvBgNVBAUTKDU4RTkwOEQwQzcxQTQ5RjQ4MkE3QzdEOTU1MkEzMzU1 OUNBRTI2NDMwHhcNMjUwNDA4MjI1NjU0WhcNMjUwNDE1MjI1NjU0WjAYMRYwFAYD VQQDEw02N2Y1YTliNi0xNDcwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArN3wfAiz/YKagZgjtaFfpNJw/VyIqbgHjlBDaPBCgomNjIc3kL5l1Ct0G1dR 3nhdWfmjYm+q2pdyh0S+CM34m6W9bBTh7UYffTnbdztMIqomdy6Z9RBJsRUtwwQ1 Ztzwza9cIxUQ91BN9pPjvC8Mi+sh1J4beWp4E2e9w5LfHcdBiGwox5+GX+jeaMb/ c/l6ym1wVmoXnCgmQcHYhGmjCzSCtGfUzxpzXde9dd5knzotrS0tJJelwON64vj+ OxPuimaWaivTMSoAHdUlPVG0DSEKeQjf8MQ2KIZzz9N3luXmBocLZjghr21K0UG7 aq0Ib1FXbYjKspjjjcvRxXKN6QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBToi7fn D65eIuK6pONwpE6ln5QIMB8GA1UdIwQYMBaAFFjpCNDHGkn0gqfH2VUqM1WcriZD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQjVDRS9CMDk2QzUwMEM4 MUExMUVCQjEyNUE3M0VDNEY5QUUwMi9XT2tJME1jYVNmU0NwOGZaVlNvelZaeXVK a00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dPa0kwTWNhU2ZTQ3A4ZlpWU296Vlp5dUprTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QjVDRS9CMDk2QzUwMEM4MUExMUVCQjEyNUE3M0VDNEY5QUUwMi9XT2tJME1jYVNm U0NwOGZaVlNvelZaeXVKa00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBOJmOQ+QsSjSPuZsvZ/ZBgfl9g1E/kFudMFwpWSEBOEV6SyoCxFRjV RSmrZJINhh86ydhXB5rCPuppMNpVoJoFWZQ2zed1lsWIge7ORMFQjStCXx+7bjLv iMOnjSeP4UeRZThfS6akZf0gb0v84aNWepBiHjGTizxsQ/eHOLO5KNzKBz9F3jr8 bdpWdk42Dk+TvYNv4vWN0v6uyV7wupk2Dq++6m+rieZC3BYvnlISEVxgjidTQskX MGDquOM63yJd+MnkBkvoduwz3x/rETXICXf7t/B+WMOek67DieS1ISQTLku6A5eI RavhJzAAvTz2UEJLLKlSqPaBwwcGbf9e -----END CERTIFICATE-----Generated at Fri Apr 11 12:14:38 2025 by rpki-client