$ rpki-client -vvf rpki.apnic.net/member_repository/A9160DF1/E379D5A02CD511ECBB6C412BC4F9AE02/WghDEGDly0pzQThDpsLwBL78Mr8.mft File: WghDEGDly0pzQThDpsLwBL78Mr8.mft (raw, json) Hash identifier: 4HveC4F72AAtYN1HGcF6bgvzXGN+EAW0xvnDSpqq0OU= Subject key identifier: 33:53:B7:A8:78:44:4A:DD:16:6B:66:6A:78:1B:D8:44:D4:8E:2B:8D Authority key identifier: 5A:08:43:10:60:E5:CB:4A:73:41:38:43:A6:C2:F0:04:BE:FC:32:BF Certificate issuer: /CN=A9160DF1/serialNumber=5A08431060E5CB4A73413843A6C2F004BEFC32BF Certificate serial: 04F5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WghDEGDly0pzQThDpsLwBL78Mr8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9160DF1/E379D5A02CD511ECBB6C412BC4F9AE02/WghDEGDly0pzQThDpsLwBL78Mr8.mft Manifest number: 04F0 Signing time: Fri 19 Sep 2025 00:03:33 +0000 Manifest this update: Fri 19 Sep 2025 00:03:32 +0000 Manifest next update: Fri 26 Sep 2025 00:03:32 +0000 Files and hashes: 1: WghDEGDly0pzQThDpsLwBL78Mr8.crl (hash: FcyJz7Z4pSJPs4dD30gW8ukG5AkMPFNQS328p4roFlI=) 2: 846935702CD911ECA528B744C4F9AE02.roa (hash: W1EZe814Szf15WwX2ObaPNFong/hjvqkU7/N1EMoShM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9160DF1/E379D5A02CD511ECBB6C412BC4F9AE02/WghDEGDly0pzQThDpsLwBL78Mr8.crl rsync://rpki.apnic.net/member_repository/A9160DF1/E379D5A02CD511ECBB6C412BC4F9AE02/WghDEGDly0pzQThDpsLwBL78Mr8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WghDEGDly0pzQThDpsLwBL78Mr8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Sep 2025 00:03:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1269 (0x4f5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9160DF1, serialNumber=5A08431060E5CB4A73413843A6C2F004BEFC32BF Validity Not Before: Sep 19 00:03:32 2025 GMT Not After : Sep 26 00:03:32 2025 GMT Subject: CN=68cc9dd4-be40 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:0f:dc:5a:e4:f7:c8:c1:8b:e7:67:bc:aa:ea: fd:e8:ae:71:83:27:c3:fc:8e:18:de:36:70:e7:51: 28:64:4b:04:bb:23:fe:b5:be:99:17:9b:95:b3:cf: 97:1e:35:6f:61:ac:3f:7d:97:81:cb:67:b4:0e:b8: da:aa:cd:fb:b4:bd:9b:aa:c8:24:0a:49:11:11:a3: 20:a9:cb:fb:eb:bb:14:ed:c4:56:63:fd:fd:7c:57: cf:3f:8b:46:ca:9d:42:7e:99:72:9a:02:91:f7:98: 50:d1:4e:3c:74:67:34:be:5b:c8:ac:2e:f0:66:82: 0e:32:02:2c:46:7b:c3:7f:25:9b:d2:99:31:01:ab: 88:df:33:22:cf:18:b2:fa:d1:d3:fc:0b:58:e6:a9: 0e:c8:ed:32:52:c7:3c:63:58:79:df:f5:8a:a4:5b: 9e:e5:da:91:87:64:ed:65:56:14:9b:8b:d8:da:8c: f5:5b:75:ab:77:15:0f:eb:be:bf:bf:57:8b:f9:b1: 32:ae:a9:3f:18:ba:4f:74:1c:f3:6f:04:42:1c:b7: 7c:87:a5:7f:11:61:b5:fa:83:05:3b:9f:14:7f:b9: a1:f4:99:57:96:18:3c:c6:a9:65:48:d8:fa:56:68: c4:60:26:96:67:f8:fb:42:59:97:05:be:58:cd:06: f7:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:53:B7:A8:78:44:4A:DD:16:6B:66:6A:78:1B:D8:44:D4:8E:2B:8D X509v3 Authority Key Identifier: keyid:5A:08:43:10:60:E5:CB:4A:73:41:38:43:A6:C2:F0:04:BE:FC:32:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9160DF1/E379D5A02CD511ECBB6C412BC4F9AE02/WghDEGDly0pzQThDpsLwBL78Mr8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WghDEGDly0pzQThDpsLwBL78Mr8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9160DF1/E379D5A02CD511ECBB6C412BC4F9AE02/WghDEGDly0pzQThDpsLwBL78Mr8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9d:ce:de:ae:a2:ff:5c:53:46:f2:2b:04:77:3a:75:20:ac:71: e3:37:d6:47:92:8c:82:e8:2a:88:a3:cc:69:5e:3a:91:f8:2a: eb:ba:bb:ac:fc:3a:75:db:cb:3e:86:0e:03:3a:83:b9:19:ec: 7f:24:e3:ff:a0:3a:b3:c1:a3:23:f4:58:05:c9:b7:74:f7:b0: 22:0b:1d:46:e1:79:ae:d0:62:c5:06:74:8a:3d:1e:53:8e:df: 45:fc:e4:84:05:3b:90:7e:b7:80:e7:2e:44:b0:9a:f2:93:a1: b6:45:de:5a:aa:cf:e4:83:8d:59:76:6d:a6:d9:18:c5:36:4d: 71:23:27:76:c6:bf:e0:54:92:b0:3b:7d:8a:cb:56:79:e8:78: 2a:d6:16:ad:57:d6:f6:24:9c:72:1b:e9:92:00:83:06:1e:0f: dd:5c:c8:fb:79:8f:ce:6f:14:f2:ff:b7:47:fa:85:9f:96:77: 0a:b9:f5:ef:20:88:53:90:3f:9c:32:6c:79:36:12:65:88:20: b4:e9:68:4f:94:6d:5b:df:26:50:57:96:39:1b:22:2e:7a:38: 74:06:ee:fe:b0:40:72:35:5a:26:9e:1b:d0:2c:6b:b3:3c:17: 35:53:f2:64:2c:52:db:fc:ee:d8:d1:cf:5d:1e:fb:7c:fd:a3: 59:f0:d4:9a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBPUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjBERjExMTAvBgNVBAUTKDVBMDg0MzEwNjBFNUNCNEE3MzQxMzg0M0E2QzJGMDA0 QkVGQzMyQkYwHhcNMjUwOTE5MDAwMzMyWhcNMjUwOTI2MDAwMzMyWjAYMRYwFAYD VQQDEw02OGNjOWRkNC1iZTQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtg/cWuT3yMGL52e8qur96K5xgyfD/I4Y3jZw51EoZEsEuyP+tb6ZF5uVs8+X HjVvYaw/fZeBy2e0Drjaqs37tL2bqsgkCkkREaMgqcv767sU7cRWY/39fFfPP4tG yp1CfplymgKR95hQ0U48dGc0vlvIrC7wZoIOMgIsRnvDfyWb0pkxAauI3zMizxiy +tHT/AtY5qkOyO0yUsc8Y1h53/WKpFue5dqRh2TtZVYUm4vY2oz1W3WrdxUP676/ v1eL+bEyrqk/GLpPdBzzbwRCHLd8h6V/EWG1+oMFO58Uf7mh9JlXlhg8xqllSNj6 VmjEYCaWZ/j7QlmXBb5YzQb3pwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDNTt6h4 RErdFmtmangb2ETUjiuNMB8GA1UdIwQYMBaAFFoIQxBg5ctKc0E4Q6bC8AS+/DK/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MERGMS9FMzc5RDVBMDJD RDUxMUVDQkI2QzQxMkJDNEY5QUUwMi9XZ2hERUdEbHkwcHpRVGhEcHNMd0JMNzhN cjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dnaERFR0RseTBwelFUaERwc0x3Qkw3OE1yOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MERGMS9FMzc5RDVBMDJDRDUxMUVDQkI2QzQxMkJDNEY5QUUwMi9XZ2hERUdEbHkw cHpRVGhEcHNMd0JMNzhNcjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCdzt6uov9cU0byKwR3OnUgrHHjN9ZHkoyC6CqIo8xpXjqR+Crrurus /Dp128s+hg4DOoO5Gex/JOP/oDqzwaMj9FgFybd097AiCx1G4Xmu0GLFBnSKPR5T jt9F/OSEBTuQfreA5y5EsJryk6G2Rd5aqs/kg41Zdm2m2RjFNk1xIyd2xr/gVJKw O32Ky1Z56Hgq1hatV9b2JJxyG+mSAIMGHg/dXMj7eY/ObxTy/7dH+oWflncKufXv IIhTkD+cMmx5NhJliCC06WhPlG1b3yZQV5Y5GyIuejh0Bu7+sEByNVomnhvQLGuz PBc1U/JkLFLb/O7Y0c9dHvt8/aNZ8NSa -----END CERTIFICATE-----Generated at Fri Sep 19 08:51:44 2025 by rpki-client