$ rpki-client -vvf rpki.apnic.net/member_repository/A91DB0C1/802C24328A7A11E799E9F764C4F9AE02/wQgOZhsN-mIOsJqrLerWA0uCjrw.mft File: wQgOZhsN-mIOsJqrLerWA0uCjrw.mft (raw, json) Hash identifier: TTJELqqP/iprHTrOxHWxlRJfG3gkNjpWPMVPXLUTOfc= Subject key identifier: 92:4B:80:23:8F:00:43:78:B0:8E:7F:B1:F0:7C:F3:88:E8:B2:C5:D1 Authority key identifier: C1:08:0E:66:1B:0D:FA:62:0E:B0:9A:AB:2D:EA:D6:03:4B:82:8E:BC Certificate issuer: /CN=A91DB0C1/serialNumber=C1080E661B0DFA620EB09AAB2DEAD6034B828EBC Certificate serial: 18F8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wQgOZhsN-mIOsJqrLerWA0uCjrw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DB0C1/802C24328A7A11E799E9F764C4F9AE02/wQgOZhsN-mIOsJqrLerWA0uCjrw.mft Manifest number: 18F0 Signing time: Mon 30 Jun 2025 16:37:10 +0000 Manifest this update: Mon 30 Jun 2025 16:37:10 +0000 Manifest next update: Mon 07 Jul 2025 16:37:10 +0000 Files and hashes: 1: wQgOZhsN-mIOsJqrLerWA0uCjrw.crl (hash: pwXYMfmHTzDyPAtanCXtB637NQTnfQPBy8yNBbxSO8g=) 2: 35D9F1BE8A7C11E79774186BC4F9AE02.roa (hash: JsSR5Xyiam1gqDW8LZ3p6vMD1Unh1jWG06vXX1Pt4OE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DB0C1/802C24328A7A11E799E9F764C4F9AE02/wQgOZhsN-mIOsJqrLerWA0uCjrw.crl rsync://rpki.apnic.net/member_repository/A91DB0C1/802C24328A7A11E799E9F764C4F9AE02/wQgOZhsN-mIOsJqrLerWA0uCjrw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wQgOZhsN-mIOsJqrLerWA0uCjrw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Jul 2025 16:37:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6392 (0x18f8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DB0C1, serialNumber=C1080E661B0DFA620EB09AAB2DEAD6034B828EBC Validity Not Before: Jun 30 16:37:10 2025 GMT Not After : Jul 7 16:37:10 2025 GMT Subject: CN=6862bd36-07db Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:8a:73:86:4d:0b:72:29:da:31:fa:2f:3d:58: 6c:59:98:99:c9:88:bc:9a:80:6c:c4:b1:94:9e:8f: eb:84:b3:18:c0:cc:95:80:ff:d1:4b:be:ce:7b:eb: 7d:06:2d:c9:7f:cc:05:a3:48:28:3b:02:ce:a1:09: 1e:41:8b:ec:86:91:1c:ed:40:79:d0:d5:15:8e:0e: 94:79:e0:8d:2a:58:c6:a5:59:7b:42:b5:c3:9b:d1: 96:01:ff:81:47:35:22:78:53:57:ac:a6:88:9f:5c: ac:12:c4:3e:77:86:7b:c2:4d:6d:51:46:00:3e:82: e4:fd:8b:02:86:8b:ca:d1:5b:76:87:da:49:a5:7c: 31:63:60:b7:08:56:85:25:b6:b6:82:ff:27:e0:22: 33:e8:b8:ab:7f:7a:f9:12:81:35:39:fa:e4:e0:f2: 18:76:b5:86:b9:dc:2b:1f:4c:0e:5d:94:11:7b:fa: 7b:e3:b3:a9:e5:f0:af:c0:12:c7:36:e3:dd:a8:68: 1f:6e:cb:75:06:6b:66:a6:bf:79:32:0b:3a:9e:94: 00:32:b4:ab:8e:26:b6:98:5a:b0:ea:60:08:bf:a0: a5:ab:b2:4c:99:40:f8:33:43:fe:3f:2e:d7:89:9d: 3f:29:6a:d7:27:48:e5:10:0b:e8:89:5c:87:4b:a9: 74:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:4B:80:23:8F:00:43:78:B0:8E:7F:B1:F0:7C:F3:88:E8:B2:C5:D1 X509v3 Authority Key Identifier: keyid:C1:08:0E:66:1B:0D:FA:62:0E:B0:9A:AB:2D:EA:D6:03:4B:82:8E:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DB0C1/802C24328A7A11E799E9F764C4F9AE02/wQgOZhsN-mIOsJqrLerWA0uCjrw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wQgOZhsN-mIOsJqrLerWA0uCjrw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DB0C1/802C24328A7A11E799E9F764C4F9AE02/wQgOZhsN-mIOsJqrLerWA0uCjrw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 47:6d:84:78:74:8d:d3:07:17:69:4f:6a:bb:cf:5b:f7:32:f6: aa:96:9b:24:8f:27:9f:e7:03:93:e7:48:04:de:f2:28:b8:eb: 09:2d:3c:9d:fb:fc:06:75:a2:63:97:52:4a:53:9d:a2:0a:de: 25:eb:62:41:36:ae:13:85:ba:ca:2a:e1:ce:93:42:90:5b:89: 7b:87:3a:f3:60:2f:63:24:27:78:73:27:38:4d:43:2e:af:ac: 0d:c7:aa:43:29:79:9c:a9:f5:ec:75:b9:98:46:f0:03:43:f5: 8b:d4:02:5e:48:c3:33:f5:1c:fe:6c:7e:15:2a:66:45:38:f2: c3:91:f4:75:30:c3:3b:ec:cc:83:b2:dd:a2:7a:54:ae:f3:c8: 8f:b8:ee:4a:9d:a6:b9:ca:3b:f0:55:2d:a9:c6:13:f2:8a:cf: 07:0c:c2:82:3d:11:b2:0a:e2:30:4f:7f:bd:ba:c3:b4:ef:ba: 9c:96:ba:25:5c:d4:82:71:62:e3:0c:f9:cb:8b:36:49:e5:e1: b4:7f:ff:c9:8b:1e:b9:6c:7f:0a:52:e0:52:3a:ac:75:af:e3: e3:11:13:e7:b2:4f:34:4c:97:cb:6e:84:f1:89:2d:f3:60:cb: 82:0b:25:96:4e:2d:fe:4e:8b:4b:2e:87:66:1e:e0:68:32:8c: e7:b8:9c:b6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGPgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REIwQzExMTAvBgNVBAUTKEMxMDgwRTY2MUIwREZBNjIwRUIwOUFBQjJERUFENjAz NEI4MjhFQkMwHhcNMjUwNjMwMTYzNzEwWhcNMjUwNzA3MTYzNzEwWjAYMRYwFAYD VQQDEw02ODYyYmQzNi0wN2RiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu4pzhk0LcinaMfovPVhsWZiZyYi8moBsxLGUno/rhLMYwMyVgP/RS77Oe+t9 Bi3Jf8wFo0goOwLOoQkeQYvshpEc7UB50NUVjg6UeeCNKljGpVl7QrXDm9GWAf+B RzUieFNXrKaIn1ysEsQ+d4Z7wk1tUUYAPoLk/YsChovK0Vt2h9pJpXwxY2C3CFaF Jba2gv8n4CIz6Lirf3r5EoE1Ofrk4PIYdrWGudwrH0wOXZQRe/p747Op5fCvwBLH NuPdqGgfbst1Bmtmpr95Mgs6npQAMrSrjia2mFqw6mAIv6Clq7JMmUD4M0P+Py7X iZ0/KWrXJ0jlEAvoiVyHS6l0wQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJJLgCOP AEN4sI5/sfB884jossXRMB8GA1UdIwQYMBaAFMEIDmYbDfpiDrCaqy3q1gNLgo68 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQjBDMS84MDJDMjQzMjhB N0ExMUU3OTlFOUY3NjRDNEY5QUUwMi93UWdPWmhzTi1tSU9zSnFyTGVyV0EwdUNq cncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3dRZ09aaHNOLW1JT3NKcXJMZXJXQTB1Q2pydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QjBDMS84MDJDMjQzMjhBN0ExMUU3OTlFOUY3NjRDNEY5QUUwMi93UWdPWmhzTi1t SU9zSnFyTGVyV0EwdUNqcncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBHbYR4dI3TBxdpT2q7z1v3Mvaqlpskjyef5wOT50gE3vIouOsJLTyd +/wGdaJjl1JKU52iCt4l62JBNq4ThbrKKuHOk0KQW4l7hzrzYC9jJCd4cyc4TUMu r6wNx6pDKXmcqfXsdbmYRvADQ/WL1AJeSMMz9Rz+bH4VKmZFOPLDkfR1MMM77MyD st2ielSu88iPuO5Knaa5yjvwVS2pxhPyis8HDMKCPRGyCuIwT3+9usO077qclrol XNSCcWLjDPnLizZJ5eG0f//Jix65bH8KUuBSOqx1r+PjERPnsk80TJfLboTxiS3z YMuCCyWWTi3+TotLLodmHuBoMoznuJy2 -----END CERTIFICATE-----Generated at Wed Jul 2 05:21:35 2025 by rpki-client