$ rpki-client -vvf rpki.apnic.net/member_repository/A9160DF1/E379D5A02CD511ECBB6C412BC4F9AE02/WghDEGDly0pzQThDpsLwBL78Mr8.mft File: WghDEGDly0pzQThDpsLwBL78Mr8.mft (raw, json) Hash identifier: pWq75A0//yyX8iesYKfTOejoaXDkBBzjUXcVQyMGYhs= Subject key identifier: EE:6C:43:D1:40:DA:35:6D:02:72:70:E5:9D:20:77:7F:74:46:65:14 Authority key identifier: 5A:08:43:10:60:E5:CB:4A:73:41:38:43:A6:C2:F0:04:BE:FC:32:BF Certificate issuer: /CN=A9160DF1/serialNumber=5A08431060E5CB4A73413843A6C2F004BEFC32BF Certificate serial: 04BC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WghDEGDly0pzQThDpsLwBL78Mr8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9160DF1/E379D5A02CD511ECBB6C412BC4F9AE02/WghDEGDly0pzQThDpsLwBL78Mr8.mft Manifest number: 04B7 Signing time: Sat 31 May 2025 00:05:08 +0000 Manifest this update: Sat 31 May 2025 00:05:08 +0000 Manifest next update: Sat 07 Jun 2025 00:05:08 +0000 Files and hashes: 1: WghDEGDly0pzQThDpsLwBL78Mr8.crl (hash: HMAXIfb6wFxTeT1ga0RLqIHEEL80w1+RkCD4W59UJfI=) 2: 846935702CD911ECA528B744C4F9AE02.roa (hash: W1EZe814Szf15WwX2ObaPNFong/hjvqkU7/N1EMoShM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9160DF1/E379D5A02CD511ECBB6C412BC4F9AE02/WghDEGDly0pzQThDpsLwBL78Mr8.crl rsync://rpki.apnic.net/member_repository/A9160DF1/E379D5A02CD511ECBB6C412BC4F9AE02/WghDEGDly0pzQThDpsLwBL78Mr8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WghDEGDly0pzQThDpsLwBL78Mr8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 00:05:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1212 (0x4bc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9160DF1, serialNumber=5A08431060E5CB4A73413843A6C2F004BEFC32BF Validity Not Before: May 31 00:05:08 2025 GMT Not After : Jun 7 00:05:08 2025 GMT Subject: CN=683a47b4-a11e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:7d:28:97:69:fd:d1:b4:44:91:23:20:b8:61: 4a:28:ae:f1:48:65:60:15:71:36:84:4b:8f:72:ed: 96:13:8a:65:13:d5:4d:51:21:7e:68:47:cc:c0:a3: 6c:a8:b3:dd:ac:36:ae:f7:fb:9a:84:4f:2e:43:bb: 63:4e:fa:11:4d:4e:b1:e4:76:76:15:4e:f4:45:c5: b0:5c:42:d7:25:92:e4:93:be:68:4b:78:09:0c:8e: d2:1c:8c:55:1a:d8:94:08:ba:a4:42:f4:81:df:80: f0:cf:0f:35:fd:ea:9e:4d:92:87:e5:04:93:40:e0: 85:1c:c9:af:46:08:91:04:94:0b:4e:c6:6e:35:f2: 27:ee:30:cc:61:3d:8e:4c:6a:8f:3c:c9:7a:b1:6a: ff:9b:51:7d:43:f4:a3:26:2a:e1:73:18:f7:40:2c: 76:11:81:78:8e:65:7a:78:b3:d4:98:06:48:bc:77: 8b:8f:4d:82:1b:37:81:d4:61:b4:38:e9:e9:c2:e4: f7:32:b4:b0:68:4e:f7:4a:3e:b9:93:6e:7f:df:d1: 55:30:b9:70:33:7f:b6:9d:7a:ea:3c:05:13:a8:11: e4:f0:d0:fa:99:46:3e:e4:35:61:57:c8:d8:0f:87: f8:95:a9:bf:65:ec:1e:c7:c9:d0:9d:70:97:3c:0d: 2f:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:6C:43:D1:40:DA:35:6D:02:72:70:E5:9D:20:77:7F:74:46:65:14 X509v3 Authority Key Identifier: keyid:5A:08:43:10:60:E5:CB:4A:73:41:38:43:A6:C2:F0:04:BE:FC:32:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9160DF1/E379D5A02CD511ECBB6C412BC4F9AE02/WghDEGDly0pzQThDpsLwBL78Mr8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WghDEGDly0pzQThDpsLwBL78Mr8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9160DF1/E379D5A02CD511ECBB6C412BC4F9AE02/WghDEGDly0pzQThDpsLwBL78Mr8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2a:c1:5d:00:7d:1c:af:c2:93:37:ba:31:21:6a:99:64:e8:60: 01:16:eb:13:e8:f7:63:e1:db:60:1e:84:2a:67:f4:53:ac:e8: b1:d0:38:8b:3f:68:39:78:28:27:8d:66:76:e0:d9:22:1b:59: e9:e0:e0:ea:39:b0:3b:dc:c0:67:32:99:09:26:7a:5a:90:f0: 73:2b:c8:21:c9:38:17:96:8f:f1:ca:ae:d3:0e:48:74:6f:f7: dc:89:21:34:64:1b:19:0d:3c:ea:df:88:6f:29:9b:0a:63:b7: 36:73:17:98:17:52:4a:b7:ca:30:f8:06:b4:46:c9:00:bd:b0: 83:28:1a:f7:0b:b2:c0:4f:68:28:0e:25:37:ae:e1:49:5f:fd: fc:3b:f9:66:c2:58:e2:b0:62:d7:54:83:ac:4b:ae:f6:26:4a: 36:36:81:a3:54:92:4b:56:53:ea:17:47:b0:d7:9c:55:08:80: 53:37:5b:29:ae:55:51:57:80:27:2e:c1:4f:14:11:ee:2c:de: 51:82:62:5e:3a:07:00:ae:80:83:11:1e:d6:46:22:a9:9d:24: 4c:b3:10:67:4e:c5:7b:66:a5:01:ec:5b:20:61:b5:aa:a2:6e: 4d:21:d7:ce:4b:83:df:a7:0b:d5:ae:e4:f3:eb:f1:0e:9d:bf: 65:b9:8f:77 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBLwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjBERjExMTAvBgNVBAUTKDVBMDg0MzEwNjBFNUNCNEE3MzQxMzg0M0E2QzJGMDA0 QkVGQzMyQkYwHhcNMjUwNTMxMDAwNTA4WhcNMjUwNjA3MDAwNTA4WjAYMRYwFAYD VQQDEw02ODNhNDdiNC1hMTFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA130ol2n90bREkSMguGFKKK7xSGVgFXE2hEuPcu2WE4plE9VNUSF+aEfMwKNs qLPdrDau9/uahE8uQ7tjTvoRTU6x5HZ2FU70RcWwXELXJZLkk75oS3gJDI7SHIxV GtiUCLqkQvSB34Dwzw81/eqeTZKH5QSTQOCFHMmvRgiRBJQLTsZuNfIn7jDMYT2O TGqPPMl6sWr/m1F9Q/SjJirhcxj3QCx2EYF4jmV6eLPUmAZIvHeLj02CGzeB1GG0 OOnpwuT3MrSwaE73Sj65k25/39FVMLlwM3+2nXrqPAUTqBHk8ND6mUY+5DVhV8jY D4f4lam/Zewex8nQnXCXPA0v6wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO5sQ9FA 2jVtAnJw5Z0gd390RmUUMB8GA1UdIwQYMBaAFFoIQxBg5ctKc0E4Q6bC8AS+/DK/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MERGMS9FMzc5RDVBMDJD RDUxMUVDQkI2QzQxMkJDNEY5QUUwMi9XZ2hERUdEbHkwcHpRVGhEcHNMd0JMNzhN cjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dnaERFR0RseTBwelFUaERwc0x3Qkw3OE1yOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MERGMS9FMzc5RDVBMDJDRDUxMUVDQkI2QzQxMkJDNEY5QUUwMi9XZ2hERUdEbHkw cHpRVGhEcHNMd0JMNzhNcjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAqwV0AfRyvwpM3ujEhaplk6GABFusT6Pdj4dtgHoQqZ/RTrOix0DiL P2g5eCgnjWZ24NkiG1np4ODqObA73MBnMpkJJnpakPBzK8ghyTgXlo/xyq7TDkh0 b/fciSE0ZBsZDTzq34hvKZsKY7c2cxeYF1JKt8ow+Aa0RskAvbCDKBr3C7LAT2go DiU3ruFJX/38O/lmwljisGLXVIOsS672Jko2NoGjVJJLVlPqF0ew15xVCIBTN1sp rlVRV4AnLsFPFBHuLN5RgmJeOgcAroCDER7WRiKpnSRMsxBnTsV7ZqUB7FsgYbWq om5NIdfOS4PfpwvVruTz6/EOnb9luY93 -----END CERTIFICATE-----Generated at Sat May 31 17:39:16 2025 by rpki-client