$ rpki-client -vvf rpki.apnic.net/member_repository/A91C7B15/326EB0B48DEB11ED93FAAD0FC4F9AE02/WA5Ga31PqGSdLgsnN16ihsbFRYQ.mft File: WA5Ga31PqGSdLgsnN16ihsbFRYQ.mft (raw, json) Hash identifier: eHgzauyy0ElOka7P7KqIRhgBvKWMn6Pc7s634BCdyXo= Subject key identifier: A7:39:C7:3B:10:09:45:CF:12:8C:0B:4C:04:CE:F8:AC:D6:19:3D:BC Authority key identifier: 58:0E:46:6B:7D:4F:A8:64:9D:2E:0B:27:37:5E:A2:86:C6:C5:45:84 Certificate issuer: /CN=A91C7B15/serialNumber=580E466B7D4FA8649D2E0B27375EA286C6C54584 Certificate serial: 01AD Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/WA5Ga31PqGSdLgsnN16ihsbFRYQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C7B15/326EB0B48DEB11ED93FAAD0FC4F9AE02/WA5Ga31PqGSdLgsnN16ihsbFRYQ.mft Manifest number: 01AB Signing time: Tue 08 Apr 2025 16:58:14 +0000 Manifest this update: Tue 08 Apr 2025 16:58:14 +0000 Manifest next update: Tue 15 Apr 2025 16:58:14 +0000 Files and hashes: 1: WA5Ga31PqGSdLgsnN16ihsbFRYQ.crl (hash: Fq9zfk2woWwdI0Wt9P6eh7vqczqesns+16Rs3OA4JP4=) 2: 04594232DEA011EE91181415C4F9AE02.roa (hash: vr4MknI81PzosNninlS3D7KYEuSWmLv6vTOsgW/R4Us=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C7B15/326EB0B48DEB11ED93FAAD0FC4F9AE02/WA5Ga31PqGSdLgsnN16ihsbFRYQ.crl rsync://rpki.apnic.net/member_repository/A91C7B15/326EB0B48DEB11ED93FAAD0FC4F9AE02/WA5Ga31PqGSdLgsnN16ihsbFRYQ.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/WA5Ga31PqGSdLgsnN16ihsbFRYQ.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 15 Apr 2025 16:58:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 429 (0x1ad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C7B15 Validity Not Before: Apr 8 16:58:14 2025 GMT Not After : Apr 15 16:58:14 2025 GMT Subject: CN=67f555a6-182d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:0d:9a:96:f3:46:a2:e9:35:b1:9d:5e:62:8c: ab:29:6b:6b:ab:79:3e:9b:3f:73:f8:ba:d9:aa:ee: c4:37:24:8d:e7:1a:44:89:6b:2f:de:89:5a:29:d6: bf:d8:3b:50:b1:96:83:5c:19:79:a3:83:d4:12:c3: 0a:16:06:50:94:8d:df:90:31:96:d0:4c:4d:bf:04: 42:31:b9:b4:3b:56:a5:a3:b0:14:40:de:b9:b8:b6: f0:9e:a8:db:47:3d:7f:db:73:45:98:6e:9a:51:5c: bd:50:79:8f:b0:19:24:44:91:e2:86:da:58:bd:00: ad:b6:2f:73:1d:8a:eb:3b:00:e7:80:f5:a3:b4:b4: 9a:20:00:cb:86:3b:65:61:8e:1f:4b:0e:7c:44:2d: d8:4a:4d:1a:8b:12:5b:b2:70:9c:b8:70:a2:ac:10: 22:d0:24:b6:97:4f:a4:28:72:44:f6:32:be:42:0c: b6:87:7d:b4:7f:83:fe:a6:07:e0:d9:6b:07:05:ca: 90:8f:c6:50:c0:58:03:6c:eb:d1:09:3c:33:d1:a8: 38:01:a9:76:eb:36:ba:2f:59:7f:10:1b:6e:01:53: a9:d7:a4:e3:4e:1d:65:15:65:ce:2f:98:84:59:be: ee:51:85:ed:97:dd:c0:7f:04:cd:24:57:60:fa:60: 85:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:39:C7:3B:10:09:45:CF:12:8C:0B:4C:04:CE:F8:AC:D6:19:3D:BC X509v3 Authority Key Identifier: keyid:58:0E:46:6B:7D:4F:A8:64:9D:2E:0B:27:37:5E:A2:86:C6:C5:45:84 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C7B15/326EB0B48DEB11ED93FAAD0FC4F9AE02/WA5Ga31PqGSdLgsnN16ihsbFRYQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/WA5Ga31PqGSdLgsnN16ihsbFRYQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C7B15/326EB0B48DEB11ED93FAAD0FC4F9AE02/WA5Ga31PqGSdLgsnN16ihsbFRYQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1c:c0:55:36:2d:b5:93:ae:e6:b3:75:85:a5:1c:c8:98:c5:ac: 0f:9e:6f:04:21:09:d5:62:57:65:fa:73:0e:c0:31:bc:29:1e: 6e:70:9e:3e:2b:bf:0d:3d:96:14:17:85:ea:60:da:35:5c:77: 84:31:43:4a:8d:7b:8e:3e:52:d2:2d:dc:bb:97:87:93:7b:d5: d0:7a:62:dd:76:57:b3:52:f0:4e:0e:2a:e4:e4:89:99:c6:dc: a0:35:30:df:36:ca:b2:6d:40:03:e1:be:59:6a:6f:5a:4f:db: c5:7d:ff:1c:02:b6:f9:61:dc:cc:47:48:f3:9e:14:f6:bf:31: eb:e4:0a:36:69:bb:81:c2:11:d1:4f:ad:72:70:5a:50:a4:e7: 6e:18:6a:34:16:78:c9:3a:25:b6:5d:72:9c:03:e1:07:36:b1: 44:d1:f4:5c:3e:47:4e:72:7a:ed:ea:2d:00:81:40:1a:54:28: 4c:79:a2:2c:39:dd:8a:76:cc:d0:f8:67:a1:18:d9:50:f9:d0: c0:ca:72:ed:6b:f2:d7:62:44:1b:5c:ef:97:78:19:72:bf:a9: 34:c7:e4:bc:0c:a0:f4:1c:cd:0c:3c:d1:c8:ae:b0:86:69:ba: a6:3b:9c:04:8a:05:8f:9c:7c:f0:58:81:8a:2e:5d:a6:d4:16: f0:a8:4c:e3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAa0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzdCMTUxMTAvBgNVBAUTKDU4MEU0NjZCN0Q0RkE4NjQ5RDJFMEIyNzM3NUVBMjg2 QzZDNTQ1ODQwHhcNMjUwNDA4MTY1ODE0WhcNMjUwNDE1MTY1ODE0WjAYMRYwFAYD VQQDEw02N2Y1NTVhNi0xODJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzA2alvNGouk1sZ1eYoyrKWtrq3k+mz9z+LrZqu7ENySN5xpEiWsv3olaKda/ 2DtQsZaDXBl5o4PUEsMKFgZQlI3fkDGW0ExNvwRCMbm0O1alo7AUQN65uLbwnqjb Rz1/23NFmG6aUVy9UHmPsBkkRJHihtpYvQCtti9zHYrrOwDngPWjtLSaIADLhjtl YY4fSw58RC3YSk0aixJbsnCcuHCirBAi0CS2l0+kKHJE9jK+Qgy2h320f4P+pgfg 2WsHBcqQj8ZQwFgDbOvRCTwz0ag4Aal26za6L1l/EBtuAVOp16TjTh1lFWXOL5iE Wb7uUYXtl93AfwTNJFdg+mCFCQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKc5xzsQ CUXPEowLTATO+KzWGT28MB8GA1UdIwQYMBaAFFgORmt9T6hknS4LJzdeoobGxUWE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDN0IxNS8zMjZFQjBCNDhE RUIxMUVEOTNGQUFEMEZDNEY5QUUwMi9XQTVHYTMxUHFHU2RMZ3NuTjE2aWhzYkZS WVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL1dBNUdhMzFQcUdTZExnc25OMTZpaHNiRlJZUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD N0IxNS8zMjZFQjBCNDhERUIxMUVEOTNGQUFEMEZDNEY5QUUwMi9XQTVHYTMxUHFH U2RMZ3NuTjE2aWhzYkZSWVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAcwFU2LbWTruazdYWlHMiYxawPnm8EIQnVYldl+nMOwDG8KR5ucJ4+ K78NPZYUF4XqYNo1XHeEMUNKjXuOPlLSLdy7l4eTe9XQemLddlezUvBODirk5ImZ xtygNTDfNsqybUAD4b5Zam9aT9vFff8cArb5YdzMR0jznhT2vzHr5Ao2abuBwhHR T61ycFpQpOduGGo0FnjJOiW2XXKcA+EHNrFE0fRcPkdOcnrt6i0AgUAaVChMeaIs Od2KdszQ+GehGNlQ+dDAynLta/LXYkQbXO+XeBlyv6k0x+S8DKD0HM0MPNHIrrCG abqmO5wEigWPnHzwWIGKLl2m1BbwqEzj -----END CERTIFICATE-----Generated at Wed Apr 9 21:24:08 2025 by rpki-client