$ rpki-client -vvf rpki.apnic.net/member_repository/A917E475/DBFB3EB4E41A11E9AD79B811C4F9AE02/_whTCVKXG6BlIktSH1ZWO20hJO0.mft File: _whTCVKXG6BlIktSH1ZWO20hJO0.mft (raw, json) Hash identifier: PGx+S6M4AXw+Es/Dy1uIueNR/kZkI7P3cETDwwtyOnk= Subject key identifier: BC:77:47:D2:0A:83:05:42:BA:47:82:4C:F7:B1:36:9A:0C:24:7A:C3 Authority key identifier: FF:08:53:09:52:97:1B:A0:65:22:4B:52:1F:56:56:3B:6D:21:24:ED Certificate issuer: /CN=A917E475/serialNumber=FF08530952971BA065224B521F56563B6D2124ED Certificate serial: 0CF2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_whTCVKXG6BlIktSH1ZWO20hJO0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E475/DBFB3EB4E41A11E9AD79B811C4F9AE02/_whTCVKXG6BlIktSH1ZWO20hJO0.mft Manifest number: 0CEC Signing time: Fri 06 Jun 2025 18:08:24 +0000 Manifest this update: Fri 06 Jun 2025 18:08:23 +0000 Manifest next update: Fri 13 Jun 2025 18:08:23 +0000 Files and hashes: 1: _whTCVKXG6BlIktSH1ZWO20hJO0.crl (hash: /9nbAPOrbk2F3yxEN6qN8shau4yfPP6/l/7b9H9Lork=) 2: 3A8AC908E41C11E9AD4A8D16C4F9AE02.roa (hash: 7Dst7szyPWooV+5WFj8vI4oANvEvXDCaESLYXfhjMk0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E475/DBFB3EB4E41A11E9AD79B811C4F9AE02/_whTCVKXG6BlIktSH1ZWO20hJO0.crl rsync://rpki.apnic.net/member_repository/A917E475/DBFB3EB4E41A11E9AD79B811C4F9AE02/_whTCVKXG6BlIktSH1ZWO20hJO0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_whTCVKXG6BlIktSH1ZWO20hJO0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 13 Jun 2025 18:08:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3314 (0xcf2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E475, serialNumber=FF08530952971BA065224B521F56563B6D2124ED Validity Not Before: Jun 6 18:08:23 2025 GMT Not After : Jun 13 18:08:23 2025 GMT Subject: CN=68432e97-e56a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:50:87:20:39:5e:b4:7a:10:3f:cc:be:bc:9e: 16:b2:7e:00:6c:76:c1:2d:b9:1e:34:44:4d:cd:35: 59:78:54:59:02:b6:6f:ff:d2:e1:13:97:c1:a3:34: 00:ea:9b:d4:10:6d:ba:52:e1:bc:fa:1d:d2:f2:06: 24:dd:b1:07:d3:c3:8d:72:8b:38:aa:36:a7:fa:27: dd:02:e3:73:52:14:7f:f8:69:f6:f2:4a:e4:48:b7: 27:aa:73:52:e6:34:e1:2d:78:bd:c2:2e:b4:5d:c9: 10:c6:a8:b5:ae:48:08:2d:2a:1d:95:3d:37:90:ca: ef:97:52:7b:13:09:56:b5:ba:e2:9e:12:14:b9:75: 6a:fe:af:4b:17:f7:cc:05:59:5d:7a:b7:1a:82:28: be:14:41:0c:92:b3:b2:63:eb:8b:63:ff:ab:15:2a: fe:01:cc:dd:fb:88:da:8f:70:d0:68:1c:eb:03:be: 05:e2:ce:40:19:9d:5e:d3:4c:7c:04:1f:2e:60:f1: bb:8a:10:b8:f7:9f:2b:27:10:17:f3:d8:fe:36:6c: d3:a2:df:b9:fb:49:d2:67:1d:ff:92:93:dd:89:17: 2c:79:1a:08:3b:1d:16:03:d4:0d:81:53:2e:a4:79: a1:25:54:38:26:50:10:46:3f:bb:e3:82:6e:bb:9d: 95:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:77:47:D2:0A:83:05:42:BA:47:82:4C:F7:B1:36:9A:0C:24:7A:C3 X509v3 Authority Key Identifier: keyid:FF:08:53:09:52:97:1B:A0:65:22:4B:52:1F:56:56:3B:6D:21:24:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E475/DBFB3EB4E41A11E9AD79B811C4F9AE02/_whTCVKXG6BlIktSH1ZWO20hJO0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_whTCVKXG6BlIktSH1ZWO20hJO0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E475/DBFB3EB4E41A11E9AD79B811C4F9AE02/_whTCVKXG6BlIktSH1ZWO20hJO0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 90:bf:1d:76:34:8c:46:41:89:0f:02:2c:f9:89:8a:94:5a:5d: bf:9e:c7:d8:e0:c9:18:c9:40:dc:c8:08:42:f7:45:d3:41:91: 30:55:ff:a7:6d:87:58:b2:e6:3a:00:66:e0:8d:b7:c5:5d:1d: 44:c3:d4:e8:c0:12:dc:53:2a:fc:51:e1:96:fe:93:1d:c8:ab: 78:97:1f:99:ee:aa:a0:30:f9:0b:c8:5c:20:45:d8:8d:30:ae: 55:75:b8:5f:31:d0:09:bb:43:e9:0e:6a:de:db:73:75:94:41: f5:9d:6c:ad:6c:17:f2:d4:a7:9e:d7:37:3c:fa:e9:fc:3b:74: 4f:b0:9b:59:35:96:71:f0:25:2b:08:a2:7e:af:07:09:21:2c: b7:83:2d:1e:2f:ab:6f:62:88:a2:31:f9:49:bb:a2:2d:5e:15: cf:ac:15:01:8e:e0:12:c9:f3:93:63:4e:ee:e9:89:cf:a1:a9: ea:a3:56:74:f4:06:09:25:d7:53:64:4f:c5:9a:62:fa:d3:4c: 88:95:75:1e:cf:df:b2:9b:40:62:14:d2:31:15:c3:85:0a:58: ff:c0:36:10:23:91:bd:8e:ea:a9:c1:c1:5b:bc:2f:fe:8b:0a: 9a:80:c5:ee:b3:cc:2b:ea:3d:aa:87:ae:d7:2e:1f:f4:43:da: 3e:5d:2a:aa -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDPIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U0NzUxMTAvBgNVBAUTKEZGMDg1MzA5NTI5NzFCQTA2NTIyNEI1MjFGNTY1NjNC NkQyMTI0RUQwHhcNMjUwNjA2MTgwODIzWhcNMjUwNjEzMTgwODIzWjAYMRYwFAYD VQQDEw02ODQzMmU5Ny1lNTZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyVCHIDletHoQP8y+vJ4Wsn4AbHbBLbkeNERNzTVZeFRZArZv/9LhE5fBozQA 6pvUEG26UuG8+h3S8gYk3bEH08ONcos4qjan+ifdAuNzUhR/+Gn28krkSLcnqnNS 5jThLXi9wi60XckQxqi1rkgILSodlT03kMrvl1J7EwlWtbrinhIUuXVq/q9LF/fM BVldercagii+FEEMkrOyY+uLY/+rFSr+Aczd+4jaj3DQaBzrA74F4s5AGZ1e00x8 BB8uYPG7ihC4958rJxAX89j+NmzTot+5+0nSZx3/kpPdiRcseRoIOx0WA9QNgVMu pHmhJVQ4JlAQRj+744Juu52VvQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLx3R9IK gwVCukeCTPexNpoMJHrDMB8GA1UdIwQYMBaAFP8IUwlSlxugZSJLUh9WVjttISTt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTQ3NS9EQkZCM0VCNEU0 MUExMUU5QUQ3OUI4MTFDNEY5QUUwMi9fd2hUQ1ZLWEc2QmxJa3RTSDFaV08yMGhK TzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL193aFRDVktYRzZCbElrdFNIMVpXTzIwaEpPMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTQ3NS9EQkZCM0VCNEU0MUExMUU5QUQ3OUI4MTFDNEY5QUUwMi9fd2hUQ1ZLWEc2 QmxJa3RTSDFaV08yMGhKTzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCQvx12NIxGQYkPAiz5iYqUWl2/nsfY4MkYyUDcyAhC90XTQZEwVf+n bYdYsuY6AGbgjbfFXR1Ew9TowBLcUyr8UeGW/pMdyKt4lx+Z7qqgMPkLyFwgRdiN MK5VdbhfMdAJu0PpDmre23N1lEH1nWytbBfy1Kee1zc8+un8O3RPsJtZNZZx8CUr CKJ+rwcJISy3gy0eL6tvYoiiMflJu6ItXhXPrBUBjuASyfOTY07u6YnPoanqo1Z0 9AYJJddTZE/FmmL600yIlXUez9+ym0BiFNIxFcOFClj/wDYQI5G9juqpwcFbvC/+ iwqagMXus8wr6j2qh67XLh/0Q9o+XSqq -----END CERTIFICATE-----Generated at Sat Jun 7 12:34:51 2025 by rpki-client