$ rpki-client -vvf rpki.apnic.net/member_repository/A91B12FB/E0D64514ED1D11ECB5FF2B24C4F9AE02/WRGN11PwUw7cK4w74mO-2wzOvA4.mft File: WRGN11PwUw7cK4w74mO-2wzOvA4.mft (raw, json) Hash identifier: Cfj6H+VetWDGp7a0q+dumvmkMXZvjpebxk+iENwY/vA= Subject key identifier: CA:21:23:1D:35:A0:38:F3:3B:C2:A1:20:AB:1C:A6:63:46:3C:69:B9 Authority key identifier: 59:11:8D:D7:53:F0:53:0E:DC:2B:8C:3B:E2:63:BE:DB:0C:CE:BC:0E Certificate issuer: /CN=A91B12FB/serialNumber=59118DD753F0530EDC2B8C3BE263BEDB0CCEBC0E Certificate serial: 02DE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WRGN11PwUw7cK4w74mO-2wzOvA4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B12FB/E0D64514ED1D11ECB5FF2B24C4F9AE02/WRGN11PwUw7cK4w74mO-2wzOvA4.mft Manifest number: 02D2 Signing time: Sat 31 May 2025 01:34:33 +0000 Manifest this update: Sat 31 May 2025 01:34:32 +0000 Manifest next update: Sat 07 Jun 2025 01:34:32 +0000 Files and hashes: 1: WRGN11PwUw7cK4w74mO-2wzOvA4.crl (hash: ugC7rIczsasdIxUBqpK/3l5L73NwDmXEPKiEvGiUMw8=) 2: 6967C1F494F711EF905E5F13C4F9AE02.roa (hash: SKYjC2+Kll4ZZKRgRzaVrVL/om+GJv0anlAPWT1K3TE=) 3: E15780AA32E111EFB163924BC4F9AE02.roa (hash: +tMP8g15DFcYp7mMqY0WVEOydxXfPdFwqrShsC1V228=) 4: 8409527078B011EE8D737723C4F9AE02.roa (hash: 0ZYVM7VxDyYQJk7ae/RUp5ynDYTJuRZ5sT+0mo9VS4c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B12FB/E0D64514ED1D11ECB5FF2B24C4F9AE02/WRGN11PwUw7cK4w74mO-2wzOvA4.crl rsync://rpki.apnic.net/member_repository/A91B12FB/E0D64514ED1D11ECB5FF2B24C4F9AE02/WRGN11PwUw7cK4w74mO-2wzOvA4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WRGN11PwUw7cK4w74mO-2wzOvA4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 01:34:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 734 (0x2de) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B12FB, serialNumber=59118DD753F0530EDC2B8C3BE263BEDB0CCEBC0E Validity Not Before: May 31 01:34:32 2025 GMT Not After : Jun 7 01:34:32 2025 GMT Subject: CN=683a5ca9-6e07 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:98:56:af:ec:a6:39:88:e0:f3:b8:ce:83:2a: b9:95:69:b5:b0:e4:14:f3:c0:65:26:2f:6c:5a:33: e2:6e:a8:df:cd:c5:5f:81:4d:38:d4:fc:f9:e4:e8: 3e:b0:be:bc:a2:e4:85:6d:76:e8:2a:6b:73:d7:9f: ae:4e:f0:1f:0c:a8:af:ff:67:af:d4:c0:77:af:87: b3:36:90:54:e3:d4:d1:61:74:c0:ba:c8:2f:88:03: 5e:7c:26:ee:4c:49:0d:cb:48:97:5e:01:e4:12:40: c7:b2:01:a7:1e:25:5e:72:35:d1:24:93:7b:a2:3c: fe:e1:79:59:eb:ac:e6:0e:05:15:39:55:14:0b:43: ac:b1:b4:1c:1a:57:89:67:87:47:86:38:d9:6e:13: f4:81:bb:40:b6:3c:27:96:9a:1c:18:87:45:02:b1: d1:b1:e9:6e:02:06:2c:93:a9:dd:dd:9e:19:96:23: f4:83:44:24:a1:84:2d:33:1e:da:b8:b7:c1:27:97: 55:ca:68:6a:30:1c:e6:cd:57:1e:58:38:9b:71:21: 7f:c1:e2:ff:d4:d1:3a:1a:f6:4a:de:ab:34:41:59: f6:06:d0:34:f7:8a:cd:83:a9:4a:5c:47:71:ec:bb: 8c:51:fc:35:56:18:82:ad:33:89:ec:18:0e:03:48: e8:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:21:23:1D:35:A0:38:F3:3B:C2:A1:20:AB:1C:A6:63:46:3C:69:B9 X509v3 Authority Key Identifier: keyid:59:11:8D:D7:53:F0:53:0E:DC:2B:8C:3B:E2:63:BE:DB:0C:CE:BC:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B12FB/E0D64514ED1D11ECB5FF2B24C4F9AE02/WRGN11PwUw7cK4w74mO-2wzOvA4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WRGN11PwUw7cK4w74mO-2wzOvA4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B12FB/E0D64514ED1D11ECB5FF2B24C4F9AE02/WRGN11PwUw7cK4w74mO-2wzOvA4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption df:97:4f:d3:d1:3f:55:21:54:9f:2a:4c:49:0e:52:82:44:01: a1:4c:5c:90:73:1e:ab:81:db:0f:95:1b:d4:b4:18:a1:5a:f8: 6f:f5:59:3c:e5:d4:11:d7:33:40:df:a4:4b:15:32:77:ef:15: 1f:26:b8:0d:08:1c:33:ac:d8:5a:87:a3:14:e9:34:ab:b1:df: 0b:3d:da:fe:2d:28:cb:5c:02:56:9f:e8:2c:89:96:64:f3:1c: f9:69:5c:f9:12:19:3e:90:e0:45:75:6c:33:e7:88:da:dc:5c: 0a:be:a6:3c:9b:e1:fe:fd:5f:f7:29:28:90:d3:6b:96:a7:9f: e0:53:5d:5d:57:37:4d:4c:be:78:56:cb:a3:bb:bf:40:b9:7a: 89:84:a8:e6:da:b2:ed:84:34:13:6e:62:3f:cb:6d:45:3f:34: 14:8f:c1:61:24:2a:9b:60:fd:fb:dd:86:ea:c3:61:dc:e8:75: 55:cf:8c:12:54:5f:45:46:1e:4e:23:74:77:50:e7:fb:7b:f8: 50:35:fc:98:9e:8f:e2:6a:65:bc:b9:9c:86:c5:5b:e9:5c:d5: 50:e7:14:17:ec:f0:17:46:1a:ac:92:87:66:3e:fd:48:73:33: bd:29:8e:bd:e2:ec:b1:94:00:b7:63:73:b0:c8:7d:22:d9:7e: 53:4d:97:c2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAt4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjEyRkIxMTAvBgNVBAUTKDU5MTE4REQ3NTNGMDUzMEVEQzJCOEMzQkUyNjNCRURC MENDRUJDMEUwHhcNMjUwNTMxMDEzNDMyWhcNMjUwNjA3MDEzNDMyWjAYMRYwFAYD VQQDEw02ODNhNWNhOS02ZTA3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA35hWr+ymOYjg87jOgyq5lWm1sOQU88BlJi9sWjPibqjfzcVfgU041Pz55Og+ sL68ouSFbXboKmtz15+uTvAfDKiv/2ev1MB3r4ezNpBU49TRYXTAusgviANefCbu TEkNy0iXXgHkEkDHsgGnHiVecjXRJJN7ojz+4XlZ66zmDgUVOVUUC0OssbQcGleJ Z4dHhjjZbhP0gbtAtjwnlpocGIdFArHRseluAgYsk6nd3Z4ZliP0g0QkoYQtMx7a uLfBJ5dVymhqMBzmzVceWDibcSF/weL/1NE6GvZK3qs0QVn2BtA094rNg6lKXEdx 7LuMUfw1VhiCrTOJ7BgOA0joMQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMohIx01 oDjzO8KhIKscpmNGPGm5MB8GA1UdIwQYMBaAFFkRjddT8FMO3CuMO+JjvtsMzrwO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMTJGQi9FMEQ2NDUxNEVE MUQxMUVDQjVGRjJCMjRDNEY5QUUwMi9XUkdOMTFQd1V3N2NLNHc3NG1PLTJ3ek92 QTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dSR04xMVB3VXc3Y0s0dzc0bU8tMnd6T3ZBNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MTJGQi9FMEQ2NDUxNEVEMUQxMUVDQjVGRjJCMjRDNEY5QUUwMi9XUkdOMTFQd1V3 N2NLNHc3NG1PLTJ3ek92QTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDfl0/T0T9VIVSfKkxJDlKCRAGhTFyQcx6rgdsPlRvUtBihWvhv9Vk8 5dQR1zNA36RLFTJ37xUfJrgNCBwzrNhah6MU6TSrsd8LPdr+LSjLXAJWn+gsiZZk 8xz5aVz5Ehk+kOBFdWwz54ja3FwKvqY8m+H+/V/3KSiQ02uWp5/gU11dVzdNTL54 Vsuju79AuXqJhKjm2rLthDQTbmI/y21FPzQUj8FhJCqbYP373Ybqw2Hc6HVVz4wS VF9FRh5OI3R3UOf7e/hQNfyYno/iamW8uZyGxVvpXNVQ5xQX7PAXRhqskodmPv1I czO9KY694uyxlAC3Y3OwyH0i2X5TTZfC -----END CERTIFICATE-----Generated at Sat May 31 17:24:52 2025 by rpki-client