$ rpki-client -vvf rpki.apnic.net/member_repository/A91DD1F9/402ED2724ACF11EFB8218E15C4F9AE02/wnrh0WRyn0PZ4PpkvlHQtq4J65k.mft File: wnrh0WRyn0PZ4PpkvlHQtq4J65k.mft (raw, json) Hash identifier: MKNMu3UiBTfl3BFefdH7KbDtELiHYvv9bnFde43enpc= Subject key identifier: 5A:CF:BC:BB:43:D4:09:A5:90:66:95:2F:22:10:4C:4E:08:C8:CA:FB Authority key identifier: C2:7A:E1:D1:64:72:9F:43:D9:E0:FA:64:BE:51:D0:B6:AE:09:EB:99 Certificate issuer: /CN=A91DD1F9/serialNumber=C27AE1D164729F43D9E0FA64BE51D0B6AE09EB99 Certificate serial: A0 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/wnrh0WRyn0PZ4PpkvlHQtq4J65k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DD1F9/402ED2724ACF11EFB8218E15C4F9AE02/wnrh0WRyn0PZ4PpkvlHQtq4J65k.mft Manifest number: 9F Signing time: Sun 01 Jun 2025 05:57:25 +0000 Manifest this update: Sun 01 Jun 2025 05:57:24 +0000 Manifest next update: Sun 08 Jun 2025 05:57:24 +0000 Files and hashes: 1: wnrh0WRyn0PZ4PpkvlHQtq4J65k.crl (hash: LF+daBVirnVJ7z+Kr9XGNrpodOliLZGRCAN8NoyNR9U=) 2: 36CFD1EE4AD011EF9B941D17C4F9AE02.roa (hash: EOPx00rRZjGS/73Br0xTrWoW0kA4+3+SpewBHZe+BK0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DD1F9/402ED2724ACF11EFB8218E15C4F9AE02/wnrh0WRyn0PZ4PpkvlHQtq4J65k.crl rsync://rpki.apnic.net/member_repository/A91DD1F9/402ED2724ACF11EFB8218E15C4F9AE02/wnrh0WRyn0PZ4PpkvlHQtq4J65k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/wnrh0WRyn0PZ4PpkvlHQtq4J65k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 05:57:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 160 (0xa0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DD1F9, serialNumber=C27AE1D164729F43D9E0FA64BE51D0B6AE09EB99 Validity Not Before: Jun 1 05:57:24 2025 GMT Not After : Jun 8 05:57:24 2025 GMT Subject: CN=683bebc5-d4b1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:aa:a8:f7:fa:d7:c1:e0:74:9e:0a:a3:16:13: 16:0a:44:1e:da:be:d7:d1:bb:cc:6e:49:0e:6e:26: c9:3a:7a:60:3d:b2:24:74:27:4a:f5:8b:e8:43:9c: 1e:5f:8a:8c:ea:c1:9a:0a:65:d9:14:06:1a:62:a7: a3:47:41:bd:93:cc:19:5e:60:5a:91:bb:e7:f2:d7: 79:d4:21:e8:4d:85:fc:c5:22:0d:e5:d7:44:34:b7: e3:06:2b:06:44:18:c4:da:a0:8c:e4:0d:0f:d7:59: 62:03:7f:5f:b6:67:aa:1b:63:66:3a:ff:55:5a:3a: 37:f2:f7:9c:19:f5:9d:78:fd:b3:63:66:5e:b8:57: e9:13:0b:23:7c:de:eb:ee:a8:2e:66:2a:ac:94:f2: bf:7e:41:b2:7f:b5:86:f6:a4:19:88:4d:a1:5e:70: 37:9e:34:46:48:59:46:f4:89:c2:2a:cf:29:56:3e: 1d:eb:4d:62:0b:86:e7:7e:52:ad:40:6d:a4:c6:37: be:0b:d6:7a:87:35:73:11:5b:4b:36:b8:5b:32:52: 6c:dc:04:17:94:c0:ae:19:04:6d:32:6a:17:55:8d: ac:68:aa:84:eb:e0:f2:0c:69:c7:72:8a:d6:62:05: 39:41:8d:48:9a:1e:e1:80:9f:6d:98:38:64:94:77: f6:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:CF:BC:BB:43:D4:09:A5:90:66:95:2F:22:10:4C:4E:08:C8:CA:FB X509v3 Authority Key Identifier: keyid:C2:7A:E1:D1:64:72:9F:43:D9:E0:FA:64:BE:51:D0:B6:AE:09:EB:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DD1F9/402ED2724ACF11EFB8218E15C4F9AE02/wnrh0WRyn0PZ4PpkvlHQtq4J65k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/wnrh0WRyn0PZ4PpkvlHQtq4J65k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DD1F9/402ED2724ACF11EFB8218E15C4F9AE02/wnrh0WRyn0PZ4PpkvlHQtq4J65k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 12:02:f9:f5:bd:b5:87:80:7b:a3:dd:d0:da:48:d1:a6:8b:af: 93:08:48:fe:98:90:7e:05:84:e1:7f:35:78:6b:ca:15:0b:be: 2e:eb:f5:16:70:da:eb:87:12:7c:10:40:cb:f4:9a:76:6e:ee: 61:54:b4:02:e7:e2:61:40:f3:7d:48:ab:ff:08:fe:d1:e0:d4: f1:08:fe:46:59:30:69:ab:be:ee:9e:2a:28:0f:ae:6e:25:91: 76:9d:d8:0d:e6:14:e4:75:f6:35:ce:e3:5e:c1:f5:df:cf:74: 13:79:eb:a9:c1:e4:c4:77:28:f4:d0:bc:02:09:3f:d7:de:c5: 93:93:43:14:b5:d5:92:39:6a:b5:32:ff:b3:11:c4:51:8b:91: 31:47:f4:9d:a5:c0:cc:b8:6f:fd:8b:50:02:bd:0a:d1:1b:64: 43:75:97:fb:3b:9e:76:94:14:02:96:04:cf:db:2d:d3:01:bd: b3:78:c7:75:27:2b:08:c3:1f:7e:b7:7f:f2:42:ae:5e:8b:d7: 70:7f:fb:df:c8:f4:d5:c4:0d:06:3f:44:97:dc:c3:45:3f:41: 00:93:6c:58:e7:01:76:7d:e8:a7:e7:4a:0a:4d:50:65:dc:e6: 22:c9:bf:b0:65:e3:ec:16:81:d3:d0:a1:9a:32:bf:8d:9d:0e: 62:ad:93:f4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REQxRjkxMTAvBgNVBAUTKEMyN0FFMUQxNjQ3MjlGNDNEOUUwRkE2NEJFNTFEMEI2 QUUwOUVCOTkwHhcNMjUwNjAxMDU1NzI0WhcNMjUwNjA4MDU1NzI0WjAYMRYwFAYD VQQDEw02ODNiZWJjNS1kNGIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxKqo9/rXweB0ngqjFhMWCkQe2r7X0bvMbkkObibJOnpgPbIkdCdK9YvoQ5we X4qM6sGaCmXZFAYaYqejR0G9k8wZXmBakbvn8td51CHoTYX8xSIN5ddENLfjBisG RBjE2qCM5A0P11liA39ftmeqG2NmOv9VWjo38vecGfWdeP2zY2ZeuFfpEwsjfN7r 7qguZiqslPK/fkGyf7WG9qQZiE2hXnA3njRGSFlG9InCKs8pVj4d601iC4bnflKt QG2kxje+C9Z6hzVzEVtLNrhbMlJs3AQXlMCuGQRtMmoXVY2saKqE6+DyDGnHcorW YgU5QY1Imh7hgJ9tmDhklHf26wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFrPvLtD 1AmlkGaVLyIQTE4IyMr7MB8GA1UdIwQYMBaAFMJ64dFkcp9D2eD6ZL5R0LauCeuZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERDFGOS80MDJFRDI3MjRB Q0YxMUVGQjgyMThFMTVDNEY5QUUwMi93bnJoMFdSeW4wUFo0UHBrdmxIUXRxNEo2 NWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3ducmgwV1J5bjBQWjRQcGt2bEhRdHE0SjY1ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RDFGOS80MDJFRDI3MjRBQ0YxMUVGQjgyMThFMTVDNEY5QUUwMi93bnJoMFdSeW4w UFo0UHBrdmxIUXRxNEo2NWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQASAvn1vbWHgHuj3dDaSNGmi6+TCEj+mJB+BYThfzV4a8oVC74u6/UW cNrrhxJ8EEDL9Jp2bu5hVLQC5+JhQPN9SKv/CP7R4NTxCP5GWTBpq77uniooD65u JZF2ndgN5hTkdfY1zuNewfXfz3QTeeupweTEdyj00LwCCT/X3sWTk0MUtdWSOWq1 Mv+zEcRRi5ExR/SdpcDMuG/9i1ACvQrRG2RDdZf7O552lBQClgTP2y3TAb2zeMd1 JysIwx9+t3/yQq5ei9dwf/vfyPTVxA0GP0SX3MNFP0EAk2xY5wF2fein50oKTVBl 3OYiyb+wZePsFoHT0KGaMr+NnQ5irZP0 -----END CERTIFICATE-----Generated at Mon Jun 2 21:56:50 2025 by rpki-client