$ rpki-client -vvf rpki.apnic.net/member_repository/A912871A/05BD0F30524011EC8658060EC4F9AE02/WF3cT9n54xQAXzcZj9HiLmgknes.mft File: WF3cT9n54xQAXzcZj9HiLmgknes.mft (raw, json) Hash identifier: DpIlFlEdBvjpOpdLsi7CkHlg92DlMT4DVd+AAY8jLNk= Subject key identifier: 83:D3:21:62:07:9C:89:19:76:6D:07:A2:0B:FD:3C:9E:0A:6C:B6:AE Authority key identifier: 58:5D:DC:4F:D9:F9:E3:14:00:5F:37:19:8F:D1:E2:2E:68:24:9D:EB Certificate issuer: /CN=A912871A/serialNumber=585DDC4FD9F9E314005F37198FD1E22E68249DEB Certificate serial: 045C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WF3cT9n54xQAXzcZj9HiLmgknes.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912871A/05BD0F30524011EC8658060EC4F9AE02/WF3cT9n54xQAXzcZj9HiLmgknes.mft Manifest number: 0457 Signing time: Sat 31 May 2025 00:23:33 +0000 Manifest this update: Sat 31 May 2025 00:23:33 +0000 Manifest next update: Sat 07 Jun 2025 00:23:33 +0000 Files and hashes: 1: WF3cT9n54xQAXzcZj9HiLmgknes.crl (hash: dmc19EV9ooP/eS2bltRQgyVAljuW0ysXgiH9FRomrKQ=) 2: 5431D022524211ECA52D990FC4F9AE02.roa (hash: ngVDpB9EeVUj1wtwuXlGNZD63XjFCao61CO9K4ARPTk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912871A/05BD0F30524011EC8658060EC4F9AE02/WF3cT9n54xQAXzcZj9HiLmgknes.crl rsync://rpki.apnic.net/member_repository/A912871A/05BD0F30524011EC8658060EC4F9AE02/WF3cT9n54xQAXzcZj9HiLmgknes.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WF3cT9n54xQAXzcZj9HiLmgknes.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 00:23:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1116 (0x45c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912871A, serialNumber=585DDC4FD9F9E314005F37198FD1E22E68249DEB Validity Not Before: May 31 00:23:33 2025 GMT Not After : Jun 7 00:23:33 2025 GMT Subject: CN=683a4c05-254e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:d6:4d:f3:71:24:9f:4f:62:7b:aa:a2:fa:22: a4:21:ae:33:d6:95:08:75:11:46:78:c8:62:9b:01: bc:b1:cd:77:f1:44:e3:f1:01:3b:4c:de:39:19:06: 40:25:da:df:4b:c1:64:93:20:bb:10:36:49:7e:58: de:82:f1:ea:6d:cc:42:d0:91:7e:56:34:64:b7:fa: 85:f9:22:b5:16:b4:74:ad:c8:75:4a:00:88:d0:ac: 82:4a:02:f6:c3:3c:c7:25:34:15:b7:00:d2:73:62: 7c:67:ba:c6:cc:0e:2f:7c:b9:5b:64:bf:b2:4c:4a: 1f:01:5b:4f:dd:02:32:93:1b:a9:b8:dc:c2:1f:22: 70:ea:7c:dd:ae:13:4b:95:d0:80:d4:43:e5:5a:70: 06:67:1f:4e:dd:33:ae:9a:80:54:fd:ed:2a:ab:22: c0:cf:9f:1c:e7:2f:32:2b:aa:46:17:38:b8:a5:df: 0d:94:45:1f:4a:bf:19:3f:d6:f2:b3:ec:86:bd:c2: 3a:90:8a:ad:28:6d:fa:27:79:c4:00:bd:7c:79:f1: 7f:bf:63:8f:2f:67:52:37:31:14:a6:0a:dc:29:2e: a0:49:e4:6a:5f:13:9a:b5:5f:f2:8e:17:90:41:0f: cc:cd:fc:99:58:18:0f:31:d6:cc:7a:21:56:c0:d8: 09:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:D3:21:62:07:9C:89:19:76:6D:07:A2:0B:FD:3C:9E:0A:6C:B6:AE X509v3 Authority Key Identifier: keyid:58:5D:DC:4F:D9:F9:E3:14:00:5F:37:19:8F:D1:E2:2E:68:24:9D:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912871A/05BD0F30524011EC8658060EC4F9AE02/WF3cT9n54xQAXzcZj9HiLmgknes.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WF3cT9n54xQAXzcZj9HiLmgknes.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912871A/05BD0F30524011EC8658060EC4F9AE02/WF3cT9n54xQAXzcZj9HiLmgknes.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 10:a8:a7:e6:08:e2:3b:05:65:8a:0c:f4:7a:17:16:8a:31:38: c1:72:40:8a:36:7c:3b:02:8d:f3:7b:35:bb:1b:bd:6b:12:91: 8e:70:16:38:c2:00:94:21:9c:d6:61:a3:a9:27:26:10:c9:bc: 0a:b2:7b:46:97:da:81:a3:22:64:14:71:e2:02:e3:f1:97:fc: f1:5a:ff:af:38:e8:82:bd:9d:07:da:0a:3c:f4:1b:b8:64:11: e6:3c:99:27:fa:8f:0e:c6:9c:58:6e:ba:ff:bc:9e:2d:98:b3: 6c:85:a3:03:9b:dc:3c:37:79:28:71:67:87:77:2c:45:0d:1e: 56:2c:a4:6e:9f:ed:85:53:4c:28:06:1e:68:9e:0c:5b:8a:5a: 72:7a:b4:11:96:55:c9:c5:1d:77:f4:e5:31:23:98:e8:94:ac: 2b:7b:de:59:e4:68:58:c3:ad:0e:f5:4c:cf:34:8a:79:b7:b9: dd:99:0a:40:d5:b0:ea:70:9d:e4:e3:7f:14:ad:d6:76:65:b0: a3:87:57:f3:ec:38:d8:fd:3d:8e:4f:84:1b:44:07:0c:6b:75: 04:98:09:e5:09:e0:16:37:00:60:b4:fa:71:79:18:b4:d6:1d: 86:37:be:67:36:e9:0e:04:7b:9e:12:03:00:c8:67:6b:26:fa: d6:53:be:8f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBFwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjg3MUExMTAvBgNVBAUTKDU4NUREQzRGRDlGOUUzMTQwMDVGMzcxOThGRDFFMjJF NjgyNDlERUIwHhcNMjUwNTMxMDAyMzMzWhcNMjUwNjA3MDAyMzMzWjAYMRYwFAYD VQQDEw02ODNhNGMwNS0yNTRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq9ZN83Ekn09ie6qi+iKkIa4z1pUIdRFGeMhimwG8sc138UTj8QE7TN45GQZA JdrfS8FkkyC7EDZJfljegvHqbcxC0JF+VjRkt/qF+SK1FrR0rch1SgCI0KyCSgL2 wzzHJTQVtwDSc2J8Z7rGzA4vfLlbZL+yTEofAVtP3QIykxupuNzCHyJw6nzdrhNL ldCA1EPlWnAGZx9O3TOumoBU/e0qqyLAz58c5y8yK6pGFzi4pd8NlEUfSr8ZP9by s+yGvcI6kIqtKG36J3nEAL18efF/v2OPL2dSNzEUpgrcKS6gSeRqXxOatV/yjheQ QQ/MzfyZWBgPMdbMeiFWwNgJ1QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIPTIWIH nIkZdm0Hogv9PJ4KbLauMB8GA1UdIwQYMBaAFFhd3E/Z+eMUAF83GY/R4i5oJJ3r MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyODcxQS8wNUJEMEYzMDUy NDAxMUVDODY1ODA2MEVDNEY5QUUwMi9XRjNjVDluNTR4UUFYemNaajlIaUxtZ2tu ZXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dGM2NUOW41NHhRQVh6Y1pqOUhpTG1na25lcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy ODcxQS8wNUJEMEYzMDUyNDAxMUVDODY1ODA2MEVDNEY5QUUwMi9XRjNjVDluNTR4 UUFYemNaajlIaUxtZ2tuZXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAQqKfmCOI7BWWKDPR6FxaKMTjBckCKNnw7Ao3zezW7G71rEpGOcBY4 wgCUIZzWYaOpJyYQybwKsntGl9qBoyJkFHHiAuPxl/zxWv+vOOiCvZ0H2go89Bu4 ZBHmPJkn+o8OxpxYbrr/vJ4tmLNshaMDm9w8N3kocWeHdyxFDR5WLKRun+2FU0wo Bh5ongxbilpyerQRllXJxR139OUxI5jolKwre95Z5GhYw60O9UzPNIp5t7ndmQpA 1bDqcJ3k438UrdZ2ZbCjh1fz7DjY/T2OT4QbRAcMa3UEmAnlCeAWNwBgtPpxeRi0 1h2GN75nNukOBHueEgMAyGdrJvrWU76P -----END CERTIFICATE-----Generated at Sat May 31 17:07:39 2025 by rpki-client