$ rpki-client -vvf rpki.apnic.net/member_repository/A913C4FD/A57CABECA55411EF8A975247C4F9AE02/WZD0w7sjQ2yVEAtISNyRhqpJUxk.mft File: WZD0w7sjQ2yVEAtISNyRhqpJUxk.mft (raw, json) Hash identifier: iStTDF0ZWKGl/U3a6FCGKfViK/Y5KlHYxVLDBJdpBYo= Subject key identifier: EC:EC:48:4E:32:F4:D6:7F:C2:1A:E3:56:22:66:1E:4C:1E:85:BE:7B Authority key identifier: 59:90:F4:C3:BB:23:43:6C:95:10:0B:48:48:DC:91:86:AA:49:53:19 Certificate issuer: /CN=A913C4FD/serialNumber=5990F4C3BB23436C95100B4848DC9186AA495319 Certificate serial: 68 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WZD0w7sjQ2yVEAtISNyRhqpJUxk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913C4FD/A57CABECA55411EF8A975247C4F9AE02/WZD0w7sjQ2yVEAtISNyRhqpJUxk.mft Manifest number: 66 Signing time: Sat 31 May 2025 06:35:40 +0000 Manifest this update: Sat 31 May 2025 06:35:39 +0000 Manifest next update: Sat 07 Jun 2025 06:35:39 +0000 Files and hashes: 1: WZD0w7sjQ2yVEAtISNyRhqpJUxk.crl (hash: zG1tMCBfowmNvgzJ9C3iErPXcLO5oS114NUDxNZU6DQ=) 2: 7C321BDEA55711EFB8317F6BC4F9AE02.roa (hash: xTT8Qi7eRLtjGj1MJV5lOZ1nPkMc9OMOKapYnFfPneA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913C4FD/A57CABECA55411EF8A975247C4F9AE02/WZD0w7sjQ2yVEAtISNyRhqpJUxk.crl rsync://rpki.apnic.net/member_repository/A913C4FD/A57CABECA55411EF8A975247C4F9AE02/WZD0w7sjQ2yVEAtISNyRhqpJUxk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WZD0w7sjQ2yVEAtISNyRhqpJUxk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 06:35:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 104 (0x68) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913C4FD, serialNumber=5990F4C3BB23436C95100B4848DC9186AA495319 Validity Not Before: May 31 06:35:39 2025 GMT Not After : Jun 7 06:35:39 2025 GMT Subject: CN=683aa33b-042a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:35:9e:23:a4:17:c0:ac:78:a0:4d:f1:aa:99: 76:36:ff:53:19:4b:e5:a8:fc:23:8a:c8:c2:d3:9b: b0:87:df:e4:c4:47:c7:d5:57:37:e5:20:9e:0d:c6: 68:47:de:51:90:f6:18:1e:1b:35:d4:06:90:88:05: 49:43:8c:78:d1:8e:b7:05:8d:e1:b1:9a:61:0d:93: 0c:a0:7b:39:76:c2:50:d2:fc:c9:ef:58:7e:a4:61: 99:db:c1:23:ad:c8:ae:52:24:f7:85:4c:c0:35:d9: 79:71:29:39:ae:1b:9f:01:47:7a:d8:44:65:0b:ef: 4c:8a:13:cc:25:cc:9f:b8:92:93:a9:d2:82:76:7b: 65:1b:2e:dc:b5:8b:5e:c8:a0:7a:1b:62:04:d1:20: 59:55:93:ae:ee:4d:15:77:76:56:34:69:a3:b0:a1: f2:dc:c7:de:80:35:53:dd:0c:d0:ed:63:d1:69:3d: e1:c9:89:92:10:60:6e:83:24:8e:97:b3:3d:fc:8d: 8d:17:da:be:0f:d6:03:03:28:ac:d8:96:a0:c4:29: a2:e6:38:b9:82:48:4e:cf:17:5e:fc:fd:e2:3b:bd: 14:ba:69:00:3a:2c:1d:65:33:86:17:69:fc:c6:6f: 74:d7:8a:bc:3d:ee:a3:9c:5a:fb:09:64:92:e6:ad: 33:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:EC:48:4E:32:F4:D6:7F:C2:1A:E3:56:22:66:1E:4C:1E:85:BE:7B X509v3 Authority Key Identifier: keyid:59:90:F4:C3:BB:23:43:6C:95:10:0B:48:48:DC:91:86:AA:49:53:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913C4FD/A57CABECA55411EF8A975247C4F9AE02/WZD0w7sjQ2yVEAtISNyRhqpJUxk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WZD0w7sjQ2yVEAtISNyRhqpJUxk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913C4FD/A57CABECA55411EF8A975247C4F9AE02/WZD0w7sjQ2yVEAtISNyRhqpJUxk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 64:2b:d9:dc:f4:64:57:01:56:3d:5c:4b:75:0a:f1:18:70:44: 8d:6b:8c:50:f7:3d:7c:53:04:3f:b9:b5:e6:2e:f0:17:f4:15: 5d:d3:62:fa:08:88:25:72:85:39:87:6d:df:41:ca:ad:5d:43: 91:3a:7f:fb:25:c1:d0:f7:25:57:ca:1e:c0:80:15:8e:31:ec: 48:40:7a:50:5e:dc:ed:86:d4:1d:76:0d:cf:02:7e:74:88:58: e1:c3:4c:e5:5a:94:64:b8:74:f8:a4:b8:24:97:ae:fc:70:f2: 5f:40:1d:73:17:f6:c9:41:39:38:0b:60:bb:17:ba:a2:4c:78: 70:f1:76:99:19:1a:d8:39:5b:97:b6:af:55:4e:c9:4f:ab:d4: 7e:28:3e:2f:1b:89:8d:9a:d3:11:94:04:40:2b:81:82:93:fc: 8b:4e:61:31:7e:ca:b8:c7:08:6c:37:3b:23:4d:b0:cc:23:11: 70:2c:70:55:30:97:67:be:e0:e9:67:cb:22:c4:da:bf:a6:31: bc:28:fd:35:57:ee:50:b5:0f:e4:19:3b:af:ec:cc:c4:46:db: 3d:b1:df:ab:ab:09:48:a9:2e:bc:00:d1:11:18:4c:24:ab:1f: ba:c6:72:87:92:9f:03:cd:33:9d:3f:11:2f:92:49:d8:88:3c: a7:8d:fc:ab -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBaDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz QzRGRDExMC8GA1UEBRMoNTk5MEY0QzNCQjIzNDM2Qzk1MTAwQjQ4NDhEQzkxODZB QTQ5NTMxOTAeFw0yNTA1MzEwNjM1MzlaFw0yNTA2MDcwNjM1MzlaMBgxFjAUBgNV BAMTDTY4M2FhMzNiLTA0MmEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDDNZ4jpBfArHigTfGqmXY2/1MZS+Wo/COKyMLTm7CH3+TER8fVVzflIJ4NxmhH 3lGQ9hgeGzXUBpCIBUlDjHjRjrcFjeGxmmENkwygezl2wlDS/MnvWH6kYZnbwSOt yK5SJPeFTMA12XlxKTmuG58BR3rYRGUL70yKE8wlzJ+4kpOp0oJ2e2UbLty1i17I oHobYgTRIFlVk67uTRV3dlY0aaOwofLcx96ANVPdDNDtY9FpPeHJiZIQYG6DJI6X sz38jY0X2r4P1gMDKKzYlqDEKaLmOLmCSE7PF178/eI7vRS6aQA6LB1lM4YXafzG b3TXirw97qOcWvsJZJLmrTPPAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU7OxITjL0 1n/CGuNWImYeTB6FvnswHwYDVR0jBBgwFoAUWZD0w7sjQ2yVEAtISNyRhqpJUxkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTNDNEZEL0E1N0NBQkVDQTU1 NDExRUY4QTk3NTI0N0M0RjlBRTAyL1daRDB3N3NqUTJ5VkVBdElTTnlSaHFwSlV4 ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvV1pEMHc3c2pRMnlWRUF0SVNOeVJocXBKVXhrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTND NEZEL0E1N0NBQkVDQTU1NDExRUY4QTk3NTI0N0M0RjlBRTAyL1daRDB3N3NqUTJ5 VkVBdElTTnlSaHFwSlV4ay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGQr2dz0ZFcBVj1cS3UK8RhwRI1rjFD3PXxTBD+5teYu8Bf0FV3TYvoI iCVyhTmHbd9Byq1dQ5E6f/slwdD3JVfKHsCAFY4x7EhAelBe3O2G1B12Dc8CfnSI WOHDTOValGS4dPikuCSXrvxw8l9AHXMX9slBOTgLYLsXuqJMeHDxdpkZGtg5W5e2 r1VOyU+r1H4oPi8biY2a0xGUBEArgYKT/ItOYTF+yrjHCGw3OyNNsMwjEXAscFUw l2e+4OlnyyLE2r+mMbwo/TVX7lC1D+QZO6/szMRG2z2x36urCUipLrwA0REYTCSr H7rGcoeSnwPNM50/ES+SSdiIPKeN/Ks= -----END CERTIFICATE-----Generated at Sat May 31 17:22:13 2025 by rpki-client