$ rpki-client -vvf rpki.apnic.net/member_repository/A914A75A/3FAA7C54F48711EF849A2772C4F9AE02/WO7lLSrgkuxVhuBw5kYsNjUPpuE.mft File: WO7lLSrgkuxVhuBw5kYsNjUPpuE.mft (raw, json) Hash identifier: awo+vV0S1XZE3YUlzqzlMggsbQfyLkhwekh0WFUBw0I= Subject key identifier: 4F:7C:42:6C:CD:BE:21:55:87:D3:97:91:4F:98:00:44:A3:62:5C:5C Authority key identifier: 58:EE:E5:2D:2A:E0:92:EC:55:86:E0:70:E6:46:2C:36:35:0F:A6:E1 Certificate issuer: /CN=A914A75A/serialNumber=58EEE52D2AE092EC5586E070E6462C36350FA6E1 Certificate serial: 31 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WO7lLSrgkuxVhuBw5kYsNjUPpuE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914A75A/3FAA7C54F48711EF849A2772C4F9AE02/WO7lLSrgkuxVhuBw5kYsNjUPpuE.mft Manifest number: 30 Signing time: Sat 31 May 2025 07:13:12 +0000 Manifest this update: Sat 31 May 2025 07:13:12 +0000 Manifest next update: Sat 07 Jun 2025 07:13:12 +0000 Files and hashes: 1: WO7lLSrgkuxVhuBw5kYsNjUPpuE.crl (hash: 9lSPjhT2nvC8Q2/vJmbVPpHChZ/bFBul2Uu7fysh5gQ=) 2: D56D67B0F48711EFBB2D9D73C4F9AE02.roa (hash: IcKmF13UvgbjR5e+pq74azw6DFKPoTGhWhM8VYVh+JY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914A75A/3FAA7C54F48711EF849A2772C4F9AE02/WO7lLSrgkuxVhuBw5kYsNjUPpuE.crl rsync://rpki.apnic.net/member_repository/A914A75A/3FAA7C54F48711EF849A2772C4F9AE02/WO7lLSrgkuxVhuBw5kYsNjUPpuE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WO7lLSrgkuxVhuBw5kYsNjUPpuE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 07:13:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49 (0x31) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914A75A, serialNumber=58EEE52D2AE092EC5586E070E6462C36350FA6E1 Validity Not Before: May 31 07:13:12 2025 GMT Not After : Jun 7 07:13:12 2025 GMT Subject: CN=683aac08-d126 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:bd:ed:7e:59:cf:97:0e:dd:79:9f:45:a5:bb: 31:0c:8f:9f:f3:b9:08:07:b3:8d:db:f9:d8:b6:bc: d1:93:8c:1f:84:72:02:f3:84:82:14:e1:62:79:30: 8d:4b:05:b3:0b:6e:2e:62:55:f4:6e:c1:a7:9f:eb: c6:1e:b7:b1:40:02:72:df:74:f2:49:e4:4f:5d:aa: 61:79:09:a0:fc:14:17:d4:87:21:72:fc:e6:ea:82: 85:50:95:4b:20:85:20:ff:9d:9e:50:a8:54:e7:c6: 67:46:4a:38:34:e0:02:16:5a:7d:72:d4:cd:17:79: 10:1a:8a:1c:fa:82:10:4f:13:c8:86:33:17:e2:74: fb:40:b6:27:bb:19:b0:11:b2:83:c4:65:ff:f0:ac: 0d:bf:1a:a7:03:b3:c5:db:90:87:7e:44:fa:d8:88: 3f:be:bf:04:93:5a:ec:b3:d7:83:4b:d5:77:cd:08: 20:25:65:83:52:3e:55:5b:d1:ab:92:4f:e2:ab:1a: 78:58:d1:d3:dc:d2:e2:39:ac:26:ce:0d:6e:53:e6: 87:c6:17:96:71:15:13:bd:c4:9c:69:fb:fe:f6:b7: 52:63:36:e2:ef:cd:40:10:6f:d6:ab:da:fe:50:86: 8d:e2:8f:84:60:72:1b:89:af:23:8c:2c:09:80:2e: 55:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:7C:42:6C:CD:BE:21:55:87:D3:97:91:4F:98:00:44:A3:62:5C:5C X509v3 Authority Key Identifier: keyid:58:EE:E5:2D:2A:E0:92:EC:55:86:E0:70:E6:46:2C:36:35:0F:A6:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914A75A/3FAA7C54F48711EF849A2772C4F9AE02/WO7lLSrgkuxVhuBw5kYsNjUPpuE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WO7lLSrgkuxVhuBw5kYsNjUPpuE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914A75A/3FAA7C54F48711EF849A2772C4F9AE02/WO7lLSrgkuxVhuBw5kYsNjUPpuE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a5:a8:0a:78:52:1c:47:d5:55:aa:86:f3:ce:eb:ea:df:ef:7c: b2:92:94:3f:ce:4e:23:01:4b:dc:dc:55:3e:db:59:1a:97:05: 62:c3:fb:88:5e:09:61:29:41:1d:b3:74:df:2f:8b:3a:ee:44: 82:09:c4:3e:83:ff:65:8d:f9:9d:00:e1:16:95:e3:f3:a7:ec: c2:14:48:0f:7f:e8:5b:49:25:d9:0b:3e:61:af:ab:ac:cc:99: 50:e3:ce:c9:a8:fb:48:19:13:57:c4:9d:03:88:40:46:72:3e: 3f:f0:be:93:40:04:75:a4:b8:6b:a3:59:0a:1e:be:f0:d8:fc: 71:4d:61:34:7a:bb:39:68:fa:7e:59:4c:fb:b3:77:57:d9:b4: ef:08:fb:3d:31:20:88:ab:b4:64:4c:14:35:57:cb:58:df:e9: f8:5c:d3:f5:5b:0c:24:c6:e3:ac:1b:7b:56:41:eb:10:c9:3a: dd:51:e4:0c:5b:d7:96:7a:0d:dd:d0:c4:76:7d:92:81:11:d7: 25:53:4a:2f:e3:2e:43:b8:d1:80:00:52:86:b4:d6:01:d0:c4: 54:e5:b3:8d:27:a2:d3:12:23:5a:55:78:24:fc:7a:1a:c4:34: 28:3c:8c:e5:91:22:26:53:bf:fb:00:15:51:d9:22:ac:97:61: 60:16:1b:52 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBMTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 QTc1QTExMC8GA1UEBRMoNThFRUU1MkQyQUUwOTJFQzU1ODZFMDcwRTY0NjJDMzYz NTBGQTZFMTAeFw0yNTA1MzEwNzEzMTJaFw0yNTA2MDcwNzEzMTJaMBgxFjAUBgNV BAMTDTY4M2FhYzA4LWQxMjYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC2ve1+Wc+XDt15n0WluzEMj5/zuQgHs43b+di2vNGTjB+EcgLzhIIU4WJ5MI1L BbMLbi5iVfRuwaef68Yet7FAAnLfdPJJ5E9dqmF5CaD8FBfUhyFy/ObqgoVQlUsg hSD/nZ5QqFTnxmdGSjg04AIWWn1y1M0XeRAaihz6ghBPE8iGMxfidPtAtie7GbAR soPEZf/wrA2/GqcDs8XbkId+RPrYiD++vwSTWuyz14NL1XfNCCAlZYNSPlVb0auS T+KrGnhY0dPc0uI5rCbODW5T5ofGF5ZxFRO9xJxp+/72t1JjNuLvzUAQb9ar2v5Q ho3ij4RgchuJryOMLAmALlWpAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUT3xCbM2+ IVWH05eRT5gARKNiXFwwHwYDVR0jBBgwFoAUWO7lLSrgkuxVhuBw5kYsNjUPpuEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTRBNzVBLzNGQUE3QzU0RjQ4 NzExRUY4NDlBMjc3MkM0RjlBRTAyL1dPN2xMU3Jna3V4Vmh1Qnc1a1lzTmpVUHB1 RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvV083bExTcmdrdXhWaHVCdzVrWXNOalVQcHVFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTRB NzVBLzNGQUE3QzU0RjQ4NzExRUY4NDlBMjc3MkM0RjlBRTAyL1dPN2xMU3Jna3V4 Vmh1Qnc1a1lzTmpVUHB1RS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAKWoCnhSHEfVVaqG887r6t/vfLKSlD/OTiMBS9zcVT7bWRqXBWLD+4he CWEpQR2zdN8vizruRIIJxD6D/2WN+Z0A4RaV4/On7MIUSA9/6FtJJdkLPmGvq6zM mVDjzsmo+0gZE1fEnQOIQEZyPj/wvpNABHWkuGujWQoevvDY/HFNYTR6uzlo+n5Z TPuzd1fZtO8I+z0xIIirtGRMFDVXy1jf6fhc0/VbDCTG46wbe1ZB6xDJOt1R5Axb 15Z6Dd3QxHZ9koER1yVTSi/jLkO40YAAUoa01gHQxFTls40notMSI1pVeCT8ehrE NCg8jOWRIiZTv/sAFVHZIqyXYWAWG1I= -----END CERTIFICATE-----Generated at Sat May 31 17:34:26 2025 by rpki-client