$ rpki-client -vvf rpki.apnic.net/member_repository/A912871A/05BD0F30524011EC8658060EC4F9AE02/WF3cT9n54xQAXzcZj9HiLmgknes.mft File: WF3cT9n54xQAXzcZj9HiLmgknes.mft (raw, json) Hash identifier: 4ede9giJ7Nc217tyl65l2IQfHQEXHmD1+TEBtWQCQ/c= Subject key identifier: EE:8C:4B:9D:C6:E2:D1:04:C5:C0:4B:3F:1E:B2:91:07:42:7D:30:F4 Authority key identifier: 58:5D:DC:4F:D9:F9:E3:14:00:5F:37:19:8F:D1:E2:2E:68:24:9D:EB Certificate issuer: /CN=A912871A/serialNumber=585DDC4FD9F9E314005F37198FD1E22E68249DEB Certificate serial: 0491 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WF3cT9n54xQAXzcZj9HiLmgknes.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912871A/05BD0F30524011EC8658060EC4F9AE02/WF3cT9n54xQAXzcZj9HiLmgknes.mft Manifest number: 048C Signing time: Thu 11 Sep 2025 00:17:30 +0000 Manifest this update: Thu 11 Sep 2025 00:17:29 +0000 Manifest next update: Thu 18 Sep 2025 00:17:29 +0000 Files and hashes: 1: WF3cT9n54xQAXzcZj9HiLmgknes.crl (hash: RfNgEFqqcBqjFEE1M5NL1cm5Pg4newpk6li3jUMT16E=) 2: 5431D022524211ECA52D990FC4F9AE02.roa (hash: ngVDpB9EeVUj1wtwuXlGNZD63XjFCao61CO9K4ARPTk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912871A/05BD0F30524011EC8658060EC4F9AE02/WF3cT9n54xQAXzcZj9HiLmgknes.crl rsync://rpki.apnic.net/member_repository/A912871A/05BD0F30524011EC8658060EC4F9AE02/WF3cT9n54xQAXzcZj9HiLmgknes.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WF3cT9n54xQAXzcZj9HiLmgknes.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 18 Sep 2025 00:17:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1169 (0x491) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912871A, serialNumber=585DDC4FD9F9E314005F37198FD1E22E68249DEB Validity Not Before: Sep 11 00:17:29 2025 GMT Not After : Sep 18 00:17:29 2025 GMT Subject: CN=68c21519-4fc0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:9c:73:14:e7:01:a7:3f:91:c6:9e:cd:30:44: b6:ce:73:b9:02:24:a0:46:6d:43:09:33:f7:b2:67: 5c:50:29:98:de:c2:04:50:86:35:28:27:67:35:f6: f3:c1:2e:e8:27:ac:3a:58:f2:af:a6:ba:3f:45:c5: 9f:5f:a8:ab:dd:f7:ac:2a:0f:6e:73:98:a4:5d:34: 9a:ed:e1:54:f7:1c:db:8c:ce:21:27:52:c1:da:72: d5:db:52:64:71:ff:cd:49:44:ff:83:04:03:95:0a: af:2b:41:15:f6:ce:84:ca:e7:68:50:f0:d8:e2:0b: 82:61:05:e9:f2:0c:67:a1:a9:98:e3:4b:71:fe:f0: f4:7c:1d:d4:5e:4d:3c:b9:9f:5a:92:b8:ba:56:59: ad:59:8a:2a:f1:9b:73:58:31:1f:48:fd:9a:37:42: 28:5f:92:b4:c4:5c:89:cd:0e:01:ac:2b:2e:86:18: a6:0e:6c:a5:ac:81:b6:85:dc:20:66:b9:4f:cc:25: 49:00:2c:f4:dc:72:fc:8f:ea:1f:de:56:72:15:d4: 15:86:2d:70:14:6b:34:04:4b:f9:80:68:a6:e5:ee: 83:6b:9f:cd:6c:06:25:89:b4:a2:a0:d0:59:03:29: 4c:1d:f5:36:72:15:20:6c:34:49:54:3c:74:40:77: 48:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:8C:4B:9D:C6:E2:D1:04:C5:C0:4B:3F:1E:B2:91:07:42:7D:30:F4 X509v3 Authority Key Identifier: keyid:58:5D:DC:4F:D9:F9:E3:14:00:5F:37:19:8F:D1:E2:2E:68:24:9D:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912871A/05BD0F30524011EC8658060EC4F9AE02/WF3cT9n54xQAXzcZj9HiLmgknes.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WF3cT9n54xQAXzcZj9HiLmgknes.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912871A/05BD0F30524011EC8658060EC4F9AE02/WF3cT9n54xQAXzcZj9HiLmgknes.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d1:e0:c3:42:92:94:d7:a2:cd:dd:14:d9:51:1f:ad:83:bb:92: 7d:c9:d4:e0:67:3f:6f:02:f1:b9:2c:e5:72:ca:98:d8:6f:5c: 27:96:3a:45:51:95:b2:4a:ba:99:68:20:6c:6e:de:6b:be:7f: 87:84:4a:9c:74:57:3d:9a:b1:91:7e:7f:14:14:f8:3a:16:b1: b6:17:94:d9:4e:2e:a0:19:44:92:57:a1:ce:ed:0d:c9:08:10: c9:e5:7c:6a:59:ad:19:9a:0e:48:b4:47:87:fb:cb:3d:cf:22: 3d:e5:f5:03:35:fb:83:c0:36:d1:01:f4:d5:82:ab:3b:c8:7c: 74:8a:3f:38:59:de:95:1d:19:94:be:e4:c6:45:33:d2:f6:1c: 15:d2:89:89:f1:14:49:38:57:66:87:a0:99:74:b6:b7:eb:91: da:c5:be:91:1c:55:01:d4:27:ec:59:0a:34:14:06:7d:f3:a8: 99:fd:53:c0:b1:62:a6:e4:75:22:d7:75:e7:82:e3:31:08:2e: c8:e3:6c:95:f3:de:d4:21:12:24:f6:d3:69:14:70:98:8d:e7: c4:4a:75:8f:0d:cf:22:6f:af:69:89:6a:a6:84:73:6b:a9:c3: 2c:a5:76:e9:9d:81:ea:58:9d:17:9e:a4:9d:f7:d7:5f:d3:bd: 8b:a6:36:ca -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBJEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjg3MUExMTAvBgNVBAUTKDU4NUREQzRGRDlGOUUzMTQwMDVGMzcxOThGRDFFMjJF NjgyNDlERUIwHhcNMjUwOTExMDAxNzI5WhcNMjUwOTE4MDAxNzI5WjAYMRYwFAYD VQQDEw02OGMyMTUxOS00ZmMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlZxzFOcBpz+Rxp7NMES2znO5AiSgRm1DCTP3smdcUCmY3sIEUIY1KCdnNfbz wS7oJ6w6WPKvpro/RcWfX6ir3fesKg9uc5ikXTSa7eFU9xzbjM4hJ1LB2nLV21Jk cf/NSUT/gwQDlQqvK0EV9s6EyudoUPDY4guCYQXp8gxnoamY40tx/vD0fB3UXk08 uZ9akri6VlmtWYoq8ZtzWDEfSP2aN0IoX5K0xFyJzQ4BrCsuhhimDmylrIG2hdwg ZrlPzCVJACz03HL8j+of3lZyFdQVhi1wFGs0BEv5gGim5e6Da5/NbAYlibSioNBZ AylMHfU2chUgbDRJVDx0QHdI9QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO6MS53G 4tEExcBLPx6ykQdCfTD0MB8GA1UdIwQYMBaAFFhd3E/Z+eMUAF83GY/R4i5oJJ3r MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyODcxQS8wNUJEMEYzMDUy NDAxMUVDODY1ODA2MEVDNEY5QUUwMi9XRjNjVDluNTR4UUFYemNaajlIaUxtZ2tu ZXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dGM2NUOW41NHhRQVh6Y1pqOUhpTG1na25lcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy ODcxQS8wNUJEMEYzMDUyNDAxMUVDODY1ODA2MEVDNEY5QUUwMi9XRjNjVDluNTR4 UUFYemNaajlIaUxtZ2tuZXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDR4MNCkpTXos3dFNlRH62Du5J9ydTgZz9vAvG5LOVyypjYb1wnljpF UZWySrqZaCBsbt5rvn+HhEqcdFc9mrGRfn8UFPg6FrG2F5TZTi6gGUSSV6HO7Q3J CBDJ5XxqWa0Zmg5ItEeH+8s9zyI95fUDNfuDwDbRAfTVgqs7yHx0ij84Wd6VHRmU vuTGRTPS9hwV0omJ8RRJOFdmh6CZdLa365Haxb6RHFUB1CfsWQo0FAZ986iZ/VPA sWKm5HUi13XnguMxCC7I42yV897UIRIk9tNpFHCYjefESnWPDc8ib69piWqmhHNr qcMspXbpnYHqWJ0XnqSd99df072LpjbK -----END CERTIFICATE-----Generated at Thu Sep 11 11:29:36 2025 by rpki-client