$ rpki-client -vvf rpki.apnic.net/member_repository/A9171882/A8C251EAF0B311EEA4C72F84C4F9AE02/W8SU6J0KQVW1UlNj0SNcXtwP3i8.mft File: W8SU6J0KQVW1UlNj0SNcXtwP3i8.mft (raw, json) Hash identifier: qt+193BxKq5yHz0SmVlhspKhLElOM8G6dnSReqIvTVY= Subject key identifier: 9B:E0:E3:5A:27:C1:95:78:36:C0:F3:35:FA:52:0B:7A:0D:19:BE:07 Authority key identifier: 5B:C4:94:E8:9D:0A:41:55:B5:52:53:63:D1:23:5C:5E:DC:0F:DE:2F Certificate issuer: /CN=A9171882/serialNumber=5BC494E89D0A4155B5525363D1235C5EDC0FDE2F Certificate serial: DC Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/W8SU6J0KQVW1UlNj0SNcXtwP3i8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171882/A8C251EAF0B311EEA4C72F84C4F9AE02/W8SU6J0KQVW1UlNj0SNcXtwP3i8.mft Manifest number: DA Signing time: Tue 03 Jun 2025 05:15:17 +0000 Manifest this update: Tue 03 Jun 2025 05:15:16 +0000 Manifest next update: Tue 10 Jun 2025 05:15:16 +0000 Files and hashes: 1: W8SU6J0KQVW1UlNj0SNcXtwP3i8.crl (hash: ewRQ+pQxzvQH4nDX9HTRqebfNKCLckjXDK8e9XgF4mY=) 2: FD990E7AF0B311EE9923BC84C4F9AE02.roa (hash: XWibtqlVyPdPRt9izLBx3ZYroA9isT1xxkvokh85YPE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171882/A8C251EAF0B311EEA4C72F84C4F9AE02/W8SU6J0KQVW1UlNj0SNcXtwP3i8.crl rsync://rpki.apnic.net/member_repository/A9171882/A8C251EAF0B311EEA4C72F84C4F9AE02/W8SU6J0KQVW1UlNj0SNcXtwP3i8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/W8SU6J0KQVW1UlNj0SNcXtwP3i8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 05:15:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 220 (0xdc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171882, serialNumber=5BC494E89D0A4155B5525363D1235C5EDC0FDE2F Validity Not Before: Jun 3 05:15:16 2025 GMT Not After : Jun 10 05:15:16 2025 GMT Subject: CN=683e84e5-220c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:88:17:5c:a1:05:be:8c:36:a3:3e:61:55:ba: 76:66:d9:2f:8a:60:c5:6e:28:6d:d6:e7:47:bd:69: 8a:b5:8f:96:ea:42:f5:11:1e:b6:10:fe:81:84:19: 46:91:3e:e2:81:0d:62:fc:cc:1f:a0:ed:5c:d1:d5: 1b:a1:3a:57:35:41:83:f5:e2:7b:0a:8d:91:a9:d1: dc:bd:49:6a:f4:69:0a:b1:76:d1:40:8d:12:b3:76: 01:f1:7e:20:92:ec:4f:92:f8:72:5f:fd:e5:5c:2e: 7c:17:b3:cf:7a:91:ab:91:9b:fe:6d:d5:ae:23:fc: dd:68:ea:a5:8d:ac:33:6b:48:84:8d:df:07:e2:9c: 74:04:b0:91:54:40:da:f3:a4:8e:3a:be:fe:27:1f: 12:ec:48:36:49:de:60:f1:c1:13:21:85:59:c2:a3: 9e:88:33:64:bd:97:4c:de:70:f3:d8:a0:1d:11:15: 64:c0:6c:54:a2:56:89:46:be:8f:cc:c6:48:c5:f3: 8f:b3:1d:c0:2d:45:34:dc:e3:ba:e7:a6:c7:82:fb: 9f:6e:ba:82:94:6d:79:90:5d:38:85:18:5b:47:eb: 7a:f4:98:d6:4a:0e:10:81:1b:b9:77:38:b6:82:6a: 51:ab:f8:6f:a0:f1:6b:61:d6:38:03:63:28:c0:e6: 92:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:E0:E3:5A:27:C1:95:78:36:C0:F3:35:FA:52:0B:7A:0D:19:BE:07 X509v3 Authority Key Identifier: keyid:5B:C4:94:E8:9D:0A:41:55:B5:52:53:63:D1:23:5C:5E:DC:0F:DE:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171882/A8C251EAF0B311EEA4C72F84C4F9AE02/W8SU6J0KQVW1UlNj0SNcXtwP3i8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/W8SU6J0KQVW1UlNj0SNcXtwP3i8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171882/A8C251EAF0B311EEA4C72F84C4F9AE02/W8SU6J0KQVW1UlNj0SNcXtwP3i8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 26:82:3c:47:14:d0:8e:d8:ee:32:28:1a:b8:ec:cd:4c:fb:0f: 4e:ca:43:52:cb:ae:e8:09:25:77:a1:09:2c:9c:35:64:8b:80: 0b:59:ac:66:20:a5:fb:80:8d:29:49:b9:80:b6:c9:84:68:e0: 91:4d:95:6e:27:1f:3d:2c:c6:c8:bf:f4:1e:32:07:75:40:46: d2:9a:55:ee:a7:b3:5a:99:ea:c0:ca:47:a6:80:e8:56:be:1a: 8b:3e:bd:09:f8:0e:f7:12:68:13:89:71:46:ca:17:82:57:55: d7:43:d5:07:f7:6e:52:a2:05:b6:d1:26:59:9e:e0:42:cb:92: e3:24:58:bf:cf:87:b8:ef:b2:48:94:a9:32:8e:d8:79:87:5f: f1:ec:92:46:9a:8e:9d:c7:bf:55:de:e1:5c:b0:6f:ff:66:cb: fd:01:77:83:f6:82:b9:66:de:a5:f7:ab:77:48:b0:3c:66:ca: 6c:2a:ad:a5:30:84:7c:f2:ac:db:69:f9:a8:5f:4b:a2:a1:5d: 05:d9:2b:ca:d1:a2:1d:49:8d:71:62:74:f2:56:15:e0:dd:89: 86:db:54:09:ca:1e:48:09:0a:29:d0:e3:43:ec:fc:1e:53:8e: b1:0a:b0:1b:b4:dd:af:87:cf:c7:a3:2a:13:b1:d5:c8:cc:76: 27:52:9c:ad -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzE4ODIxMTAvBgNVBAUTKDVCQzQ5NEU4OUQwQTQxNTVCNTUyNTM2M0QxMjM1QzVF REMwRkRFMkYwHhcNMjUwNjAzMDUxNTE2WhcNMjUwNjEwMDUxNTE2WjAYMRYwFAYD VQQDEw02ODNlODRlNS0yMjBjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2ogXXKEFvow2oz5hVbp2ZtkvimDFbiht1udHvWmKtY+W6kL1ER62EP6BhBlG kT7igQ1i/MwfoO1c0dUboTpXNUGD9eJ7Co2RqdHcvUlq9GkKsXbRQI0Ss3YB8X4g kuxPkvhyX/3lXC58F7PPepGrkZv+bdWuI/zdaOqljawza0iEjd8H4px0BLCRVEDa 86SOOr7+Jx8S7Eg2Sd5g8cETIYVZwqOeiDNkvZdM3nDz2KAdERVkwGxUolaJRr6P zMZIxfOPsx3ALUU03OO656bHgvufbrqClG15kF04hRhbR+t69JjWSg4QgRu5dzi2 gmpRq/hvoPFrYdY4A2MowOaS2wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJvg41on wZV4NsDzNfpSC3oNGb4HMB8GA1UdIwQYMBaAFFvElOidCkFVtVJTY9EjXF7cD94v MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MTg4Mi9BOEMyNTFFQUYw QjMxMUVFQTRDNzJGODRDNEY5QUUwMi9XOFNVNkowS1FWVzFVbE5qMFNOY1h0d1Az aTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1c4U1U2SjBLUVZXMVVsTmowU05jWHR3UDNpOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MTg4Mi9BOEMyNTFFQUYwQjMxMUVFQTRDNzJGODRDNEY5QUUwMi9XOFNVNkowS1FW VzFVbE5qMFNOY1h0d1AzaTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAmgjxHFNCO2O4yKBq47M1M+w9OykNSy67oCSV3oQksnDVki4ALWaxm IKX7gI0pSbmAtsmEaOCRTZVuJx89LMbIv/QeMgd1QEbSmlXup7NamerAykemgOhW vhqLPr0J+A73EmgTiXFGyheCV1XXQ9UH925SogW20SZZnuBCy5LjJFi/z4e477JI lKkyjth5h1/x7JJGmo6dx79V3uFcsG//Zsv9AXeD9oK5Zt6l96t3SLA8ZspsKq2l MIR88qzbafmoX0uioV0F2SvK0aIdSY1xYnTyVhXg3YmG21QJyh5ICQop0OND7Pwe U46xCrAbtN2vh8/HoyoTsdXIzHYnUpyt -----END CERTIFICATE-----Generated at Wed Jun 4 00:06:49 2025 by rpki-client