$ rpki-client -vvf rpki.apnic.net/member_repository/A91C7B15/326EB0B48DEB11ED93FAAD0FC4F9AE02/WA5Ga31PqGSdLgsnN16ihsbFRYQ.mft File: WA5Ga31PqGSdLgsnN16ihsbFRYQ.mft (raw, json) Hash identifier: PWmk9HTzDhfpwr664snNuK9f5Kh03iBZaswfIaCSph4= Subject key identifier: AA:51:64:73:8B:34:4C:2A:10:D6:1D:CE:1E:EB:2A:23:E7:97:22:C2 Authority key identifier: 58:0E:46:6B:7D:4F:A8:64:9D:2E:0B:27:37:5E:A2:86:C6:C5:45:84 Certificate issuer: /CN=A91C7B15/serialNumber=580E466B7D4FA8649D2E0B27375EA286C6C54584 Certificate serial: 01FD Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/WA5Ga31PqGSdLgsnN16ihsbFRYQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C7B15/326EB0B48DEB11ED93FAAD0FC4F9AE02/WA5Ga31PqGSdLgsnN16ihsbFRYQ.mft Manifest number: 01FA Signing time: Sat 06 Sep 2025 16:59:22 +0000 Manifest this update: Sat 06 Sep 2025 16:59:22 +0000 Manifest next update: Sat 13 Sep 2025 16:59:22 +0000 Files and hashes: 1: WA5Ga31PqGSdLgsnN16ihsbFRYQ.crl (hash: Sx8MKZ19G9fsR9WuCwp5f1mI6nZ2siQEcRr60PG+qd8=) 2: 04594232DEA011EE91181415C4F9AE02.roa (hash: ux/yn18OibC6Db2VOykrM0n0NcvF/7PYrwCoPjjFpC4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C7B15/326EB0B48DEB11ED93FAAD0FC4F9AE02/WA5Ga31PqGSdLgsnN16ihsbFRYQ.crl rsync://rpki.apnic.net/member_repository/A91C7B15/326EB0B48DEB11ED93FAAD0FC4F9AE02/WA5Ga31PqGSdLgsnN16ihsbFRYQ.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/WA5Ga31PqGSdLgsnN16ihsbFRYQ.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Sep 2025 16:59:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 509 (0x1fd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C7B15, serialNumber=580E466B7D4FA8649D2E0B27375EA286C6C54584 Validity Not Before: Sep 6 16:59:22 2025 GMT Not After : Sep 13 16:59:22 2025 GMT Subject: CN=68bc686a-bd4b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:76:f1:c6:3e:d3:14:f2:e4:bd:bd:15:d6:e9: 1b:46:f1:f2:28:6c:9a:74:39:76:a5:42:c3:35:52: d4:7d:e9:60:b6:73:08:52:30:4c:39:9d:d4:a6:73: e9:37:53:59:d7:01:2e:b8:7a:64:b7:3e:09:67:48: a5:50:ea:a4:79:57:58:d5:a1:8e:a0:7b:2e:45:fd: de:7f:cd:68:29:ba:e4:0e:1c:ad:3e:46:13:ce:a7: 93:94:f2:fb:8b:e1:d3:0e:ff:52:ce:3d:d2:fd:e9: 12:3b:ee:fd:d6:13:d1:02:3d:06:9d:88:80:18:35: 58:ce:34:45:fb:de:e6:8c:48:92:2b:fd:71:84:a4: 69:f3:9b:47:19:ad:0d:49:34:71:b1:73:c1:f1:47: 3c:7f:16:4e:5c:70:3e:bc:d7:34:b2:22:08:5f:20: 6f:4f:b1:cf:c9:a2:41:f7:4a:6e:e0:a9:f9:8b:64: 6f:6b:b1:c1:c6:6d:ad:7c:b5:90:5f:0e:e1:be:21: 1d:c0:9b:53:c4:aa:2a:cc:5d:46:cf:fe:b5:16:2f: 02:b1:f0:0f:95:65:85:4d:e1:a7:57:9e:f2:9e:94: 82:b0:44:22:7a:16:32:7b:59:10:61:a4:77:71:72: fd:4b:2d:8c:64:4e:84:42:23:45:6e:92:10:23:7c: b7:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:51:64:73:8B:34:4C:2A:10:D6:1D:CE:1E:EB:2A:23:E7:97:22:C2 X509v3 Authority Key Identifier: keyid:58:0E:46:6B:7D:4F:A8:64:9D:2E:0B:27:37:5E:A2:86:C6:C5:45:84 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C7B15/326EB0B48DEB11ED93FAAD0FC4F9AE02/WA5Ga31PqGSdLgsnN16ihsbFRYQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/WA5Ga31PqGSdLgsnN16ihsbFRYQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C7B15/326EB0B48DEB11ED93FAAD0FC4F9AE02/WA5Ga31PqGSdLgsnN16ihsbFRYQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 51:f3:ee:e8:3d:01:5f:e3:38:44:e3:77:82:68:4e:4c:e1:24: 65:c1:23:5f:c8:9b:3e:ac:24:a5:32:5d:9c:f1:15:c2:4e:bf: 15:70:6c:b7:47:63:8e:2e:28:bd:b2:25:b0:d5:d3:a7:b1:34: b1:8a:e0:7d:f5:4f:c8:21:03:ff:97:33:50:83:7e:e6:ed:81: 32:29:cb:83:5d:4e:92:b3:6c:14:ca:6e:49:b0:fb:12:7b:17: e7:6f:47:58:ce:e3:8a:f7:1d:83:3b:3a:26:30:39:4b:93:45: 1a:fb:43:53:06:15:f0:33:0a:10:d1:d2:30:6e:8d:6c:08:e5: f8:24:9e:23:7c:f3:56:af:89:56:4e:fe:be:fb:a1:84:97:d6: 54:11:fa:04:60:5f:ba:38:25:32:b0:58:07:d9:c6:f5:0d:f1: d1:ce:7a:fc:5c:f3:5d:35:46:c4:d9:64:84:9b:7b:90:30:3e: 25:23:41:39:93:64:24:48:23:40:fe:d6:90:82:10:ed:a0:78: 86:15:3a:96:bc:fc:72:83:8e:a6:2b:09:0b:7d:d0:3c:a7:e9: c7:c8:00:28:e7:b3:02:0a:cc:b5:35:f8:79:d3:04:cf:fd:3d: b2:2f:cb:c5:15:23:6e:d8:78:ed:71:ab:e8:12:54:1e:2c:c3: dc:e2:14:ee -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAf0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzdCMTUxMTAvBgNVBAUTKDU4MEU0NjZCN0Q0RkE4NjQ5RDJFMEIyNzM3NUVBMjg2 QzZDNTQ1ODQwHhcNMjUwOTA2MTY1OTIyWhcNMjUwOTEzMTY1OTIyWjAYMRYwFAYD VQQDEw02OGJjNjg2YS1iZDRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1Hbxxj7TFPLkvb0V1ukbRvHyKGyadDl2pULDNVLUfelgtnMIUjBMOZ3UpnPp N1NZ1wEuuHpktz4JZ0ilUOqkeVdY1aGOoHsuRf3ef81oKbrkDhytPkYTzqeTlPL7 i+HTDv9Szj3S/ekSO+791hPRAj0GnYiAGDVYzjRF+97mjEiSK/1xhKRp85tHGa0N STRxsXPB8Uc8fxZOXHA+vNc0siIIXyBvT7HPyaJB90pu4Kn5i2Rva7HBxm2tfLWQ Xw7hviEdwJtTxKoqzF1Gz/61Fi8CsfAPlWWFTeGnV57ynpSCsEQiehYye1kQYaR3 cXL9Sy2MZE6EQiNFbpIQI3y3fwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKpRZHOL NEwqENYdzh7rKiPnlyLCMB8GA1UdIwQYMBaAFFgORmt9T6hknS4LJzdeoobGxUWE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDN0IxNS8zMjZFQjBCNDhE RUIxMUVEOTNGQUFEMEZDNEY5QUUwMi9XQTVHYTMxUHFHU2RMZ3NuTjE2aWhzYkZS WVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL1dBNUdhMzFQcUdTZExnc25OMTZpaHNiRlJZUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD N0IxNS8zMjZFQjBCNDhERUIxMUVEOTNGQUFEMEZDNEY5QUUwMi9XQTVHYTMxUHFH U2RMZ3NuTjE2aWhzYkZSWVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBR8+7oPQFf4zhE43eCaE5M4SRlwSNfyJs+rCSlMl2c8RXCTr8VcGy3 R2OOLii9siWw1dOnsTSxiuB99U/IIQP/lzNQg37m7YEyKcuDXU6Ss2wUym5JsPsS exfnb0dYzuOK9x2DOzomMDlLk0Ua+0NTBhXwMwoQ0dIwbo1sCOX4JJ4jfPNWr4lW Tv6++6GEl9ZUEfoEYF+6OCUysFgH2cb1DfHRznr8XPNdNUbE2WSEm3uQMD4lI0E5 k2QkSCNA/taQghDtoHiGFTqWvPxyg46mKwkLfdA8p+nHyAAo57MCCsy1Nfh50wTP /T2yL8vFFSNu2HjtcavoElQeLMPc4hTu -----END CERTIFICATE-----Generated at Mon Sep 8 06:58:30 2025 by rpki-client