$ rpki-client -vvf rpki.apnic.net/member_repository/A91C7B15/326EB0B48DEB11ED93FAAD0FC4F9AE02/WA5Ga31PqGSdLgsnN16ihsbFRYQ.mft File: WA5Ga31PqGSdLgsnN16ihsbFRYQ.mft (raw, json) Hash identifier: 46IC5HlXSr3N0dNaoWXOJfiHZEN3oeGqDn62FM6M2mY= Subject key identifier: 2A:D7:4E:8C:52:DE:33:D0:7C:E7:68:BE:76:80:C2:8F:4D:A2:ED:1A Authority key identifier: 58:0E:46:6B:7D:4F:A8:64:9D:2E:0B:27:37:5E:A2:86:C6:C5:45:84 Certificate issuer: /CN=A91C7B15/serialNumber=580E466B7D4FA8649D2E0B27375EA286C6C54584 Certificate serial: 01CD Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/WA5Ga31PqGSdLgsnN16ihsbFRYQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C7B15/326EB0B48DEB11ED93FAAD0FC4F9AE02/WA5Ga31PqGSdLgsnN16ihsbFRYQ.mft Manifest number: 01CA Signing time: Wed 04 Jun 2025 16:56:01 +0000 Manifest this update: Wed 04 Jun 2025 16:56:01 +0000 Manifest next update: Wed 11 Jun 2025 16:56:01 +0000 Files and hashes: 1: WA5Ga31PqGSdLgsnN16ihsbFRYQ.crl (hash: sNcEtpZtjxujMpLW5R3eWWuiu4ctgd9umJZSd6XuKOw=) 2: 04594232DEA011EE91181415C4F9AE02.roa (hash: ux/yn18OibC6Db2VOykrM0n0NcvF/7PYrwCoPjjFpC4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C7B15/326EB0B48DEB11ED93FAAD0FC4F9AE02/WA5Ga31PqGSdLgsnN16ihsbFRYQ.crl rsync://rpki.apnic.net/member_repository/A91C7B15/326EB0B48DEB11ED93FAAD0FC4F9AE02/WA5Ga31PqGSdLgsnN16ihsbFRYQ.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/WA5Ga31PqGSdLgsnN16ihsbFRYQ.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 11 Jun 2025 16:56:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 461 (0x1cd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C7B15, serialNumber=580E466B7D4FA8649D2E0B27375EA286C6C54584 Validity Not Before: Jun 4 16:56:01 2025 GMT Not After : Jun 11 16:56:01 2025 GMT Subject: CN=68407aa1-a878 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:4d:48:b0:66:06:7d:09:a3:3f:6e:e7:d6:da: c1:f0:37:6c:13:c3:f7:fc:54:dd:4e:f4:9b:c9:73: ad:0c:39:b9:2d:37:63:f9:df:78:a3:76:ee:71:cb: b1:a5:6f:73:c6:19:31:f9:38:fc:27:30:4f:05:7c: a8:09:73:3b:b7:d9:6d:3a:21:04:e8:ad:77:9a:40: b1:c1:7d:32:e1:de:48:82:35:a5:0c:c8:a8:7d:c0: dd:66:82:65:1b:5d:33:31:35:76:fd:da:6f:db:fc: 32:2c:9a:77:71:e5:d9:65:5e:c3:16:f9:ca:35:dc: 95:20:77:d9:81:2e:16:30:24:5c:f2:ec:9c:f0:4e: 57:a3:b9:1e:ca:42:26:05:95:06:3d:a6:87:3f:46: fc:8e:b3:84:89:31:bc:23:d3:da:7f:2a:ff:b4:a8: 59:93:fc:32:31:05:ee:27:e2:ae:39:f4:f1:60:67: ae:63:f1:a4:01:45:0f:ac:d7:2f:29:37:8c:ed:eb: 4a:97:6a:4c:ca:40:8f:6b:e8:43:b8:0f:53:5e:7f: 62:2f:22:5e:09:e7:62:8e:39:fd:9c:aa:ad:b9:1d: b2:98:e7:c1:f1:da:88:4f:07:8f:d0:55:d4:48:ec: 89:55:4c:48:a1:7e:12:d7:bd:79:80:72:29:93:f2: ca:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:D7:4E:8C:52:DE:33:D0:7C:E7:68:BE:76:80:C2:8F:4D:A2:ED:1A X509v3 Authority Key Identifier: keyid:58:0E:46:6B:7D:4F:A8:64:9D:2E:0B:27:37:5E:A2:86:C6:C5:45:84 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C7B15/326EB0B48DEB11ED93FAAD0FC4F9AE02/WA5Ga31PqGSdLgsnN16ihsbFRYQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/WA5Ga31PqGSdLgsnN16ihsbFRYQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C7B15/326EB0B48DEB11ED93FAAD0FC4F9AE02/WA5Ga31PqGSdLgsnN16ihsbFRYQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 52:2f:f6:40:ad:66:43:f0:5b:34:36:b6:75:85:5a:0d:76:c0: fe:8a:a2:ca:7b:8b:47:71:70:52:bb:14:28:fc:2f:09:1e:76: 46:06:0b:ee:31:e5:fa:87:93:15:39:51:51:3a:a3:05:8d:fe: 62:ed:ee:29:ea:1d:9f:d8:60:f7:51:8d:95:de:51:a0:98:8f: 51:dc:05:c8:fb:b6:5d:37:37:99:13:2a:b7:50:4d:42:15:4e: de:0b:17:d2:74:5a:5a:c3:01:04:31:57:01:6f:37:da:46:73: 9b:8c:cc:b7:64:ce:b4:2b:dd:47:98:45:6e:48:4c:ba:e1:11: 51:30:d8:98:a0:6d:c7:4d:e5:e6:c7:6e:67:1c:83:31:4f:3a: f3:f5:1d:1d:94:da:31:64:19:9b:5c:5e:be:a9:b7:4d:24:dd: 19:94:89:a6:79:68:a2:bc:d7:19:15:14:92:8d:73:ba:69:4b: 5f:4d:c5:23:29:58:03:91:46:a9:31:d4:e4:4e:61:eb:5d:f3: fc:9d:d0:f5:c8:9b:95:06:9e:ae:87:d1:66:a9:b7:17:c6:63: 2d:88:cf:3c:b6:15:b4:ed:e2:f7:b5:c7:88:f7:e3:b6:6e:cf: 04:08:59:04:d2:ac:d2:93:30:12:4a:a2:36:7b:b8:9c:0f:43: f6:cf:d1:b8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAc0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzdCMTUxMTAvBgNVBAUTKDU4MEU0NjZCN0Q0RkE4NjQ5RDJFMEIyNzM3NUVBMjg2 QzZDNTQ1ODQwHhcNMjUwNjA0MTY1NjAxWhcNMjUwNjExMTY1NjAxWjAYMRYwFAYD VQQDEw02ODQwN2FhMS1hODc4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz01IsGYGfQmjP27n1trB8DdsE8P3/FTdTvSbyXOtDDm5LTdj+d94o3buccux pW9zxhkx+Tj8JzBPBXyoCXM7t9ltOiEE6K13mkCxwX0y4d5IgjWlDMiofcDdZoJl G10zMTV2/dpv2/wyLJp3ceXZZV7DFvnKNdyVIHfZgS4WMCRc8uyc8E5Xo7keykIm BZUGPaaHP0b8jrOEiTG8I9Pafyr/tKhZk/wyMQXuJ+KuOfTxYGeuY/GkAUUPrNcv KTeM7etKl2pMykCPa+hDuA9TXn9iLyJeCedijjn9nKqtuR2ymOfB8dqITweP0FXU SOyJVUxIoX4S1715gHIpk/LKDQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCrXToxS 3jPQfOdovnaAwo9Nou0aMB8GA1UdIwQYMBaAFFgORmt9T6hknS4LJzdeoobGxUWE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDN0IxNS8zMjZFQjBCNDhE RUIxMUVEOTNGQUFEMEZDNEY5QUUwMi9XQTVHYTMxUHFHU2RMZ3NuTjE2aWhzYkZS WVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL1dBNUdhMzFQcUdTZExnc25OMTZpaHNiRlJZUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD N0IxNS8zMjZFQjBCNDhERUIxMUVEOTNGQUFEMEZDNEY5QUUwMi9XQTVHYTMxUHFH U2RMZ3NuTjE2aWhzYkZSWVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBSL/ZArWZD8Fs0NrZ1hVoNdsD+iqLKe4tHcXBSuxQo/C8JHnZGBgvu MeX6h5MVOVFROqMFjf5i7e4p6h2f2GD3UY2V3lGgmI9R3AXI+7ZdNzeZEyq3UE1C FU7eCxfSdFpawwEEMVcBbzfaRnObjMy3ZM60K91HmEVuSEy64RFRMNiYoG3HTeXm x25nHIMxTzrz9R0dlNoxZBmbXF6+qbdNJN0ZlImmeWiivNcZFRSSjXO6aUtfTcUj KVgDkUapMdTkTmHrXfP8ndD1yJuVBp6uh9FmqbcXxmMtiM88thW07eL3tceI9+O2 bs8ECFkE0qzSkzASSqI2e7icD0P2z9G4 -----END CERTIFICATE-----Generated at Thu Jun 5 20:02:32 2025 by rpki-client