$ rpki-client -vvf rpki.apnic.net/member_repository/A911AAB5/A3BDE7A010F611EA9103B61BC4F9AE02/VTcR8u_pSETEP3dtRRAYwGSXLJo.mft File: VTcR8u_pSETEP3dtRRAYwGSXLJo.mft (raw, json) Hash identifier: mfXSfeJze+F12jN46E9pR23DCDVcSccKAKV9g/N6zxI= Subject key identifier: B7:EF:20:79:F0:B6:F0:28:DF:12:1C:3D:17:22:03:C3:65:C0:62:94 Authority key identifier: 55:37:11:F2:EF:E9:48:44:C4:3F:77:6D:45:10:18:C0:64:97:2C:9A Certificate issuer: /CN=A911AAB5/serialNumber=553711F2EFE94844C43F776D451018C064972C9A Certificate serial: 0C04 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VTcR8u_pSETEP3dtRRAYwGSXLJo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911AAB5/A3BDE7A010F611EA9103B61BC4F9AE02/VTcR8u_pSETEP3dtRRAYwGSXLJo.mft Manifest number: 0BFA Signing time: Thu 24 Apr 2025 18:39:21 +0000 Manifest this update: Thu 24 Apr 2025 18:39:20 +0000 Manifest next update: Thu 01 May 2025 18:39:20 +0000 Files and hashes: 1: VTcR8u_pSETEP3dtRRAYwGSXLJo.crl (hash: I4cfFjL8jRVo/TK8gfJkeDfxIueAmLrSG2+VqSK8Xb4=) 2: 65EE26547A8711ECBA5D244DC4F9AE02.roa (hash: Rf0IxEkwLDNapXsuJXAuul060sZSSoGxkC1k36Bzzhw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911AAB5/A3BDE7A010F611EA9103B61BC4F9AE02/VTcR8u_pSETEP3dtRRAYwGSXLJo.crl rsync://rpki.apnic.net/member_repository/A911AAB5/A3BDE7A010F611EA9103B61BC4F9AE02/VTcR8u_pSETEP3dtRRAYwGSXLJo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VTcR8u_pSETEP3dtRRAYwGSXLJo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 18:39:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3076 (0xc04) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911AAB5, serialNumber=553711F2EFE94844C43F776D451018C064972C9A Validity Not Before: Apr 24 18:39:20 2025 GMT Not After : May 1 18:39:20 2025 GMT Subject: CN=680a8558-4785 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:d3:61:74:2c:ae:6d:74:f7:7a:68:3b:5f:ea: b4:82:86:1e:6d:0d:f6:a9:25:f2:fc:87:ce:33:a7: d9:5c:01:ec:58:b0:48:d5:df:8b:b7:c0:9b:da:eb: 92:4e:42:fd:a3:51:ca:dc:1a:24:30:98:27:d5:77: 62:f0:68:94:fc:61:90:06:a0:f6:27:9b:95:1f:40: 81:df:81:bb:f1:c3:a8:33:30:51:22:a8:1c:80:cb: 1a:b6:b8:a9:85:15:84:6e:58:6d:9b:de:cd:ba:ca: b4:17:46:4f:25:ed:fc:77:4a:84:97:a2:85:ed:c4: ba:6e:9f:1e:91:37:cc:79:74:43:3a:81:b7:41:f5: dd:39:29:19:1a:1c:3b:81:4e:1b:57:55:69:7f:57: a3:71:4b:85:0d:dd:57:e7:df:21:b0:50:28:4b:b3: 22:52:06:61:eb:5d:e8:4f:5a:57:0c:74:d2:7c:bc: e4:97:d9:d0:59:0d:82:9a:97:79:75:a4:c6:08:3d: 3e:45:33:64:17:4d:08:7b:d7:dd:b5:42:2a:db:d5: 5e:fb:cc:70:5f:eb:5f:65:11:84:03:fe:dd:70:e8: 58:d7:4c:13:c3:77:6b:28:e1:e8:e7:2e:da:52:00: df:1a:5f:2c:96:2e:5a:0f:51:b9:be:19:4e:a0:71: 79:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:EF:20:79:F0:B6:F0:28:DF:12:1C:3D:17:22:03:C3:65:C0:62:94 X509v3 Authority Key Identifier: keyid:55:37:11:F2:EF:E9:48:44:C4:3F:77:6D:45:10:18:C0:64:97:2C:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911AAB5/A3BDE7A010F611EA9103B61BC4F9AE02/VTcR8u_pSETEP3dtRRAYwGSXLJo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VTcR8u_pSETEP3dtRRAYwGSXLJo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911AAB5/A3BDE7A010F611EA9103B61BC4F9AE02/VTcR8u_pSETEP3dtRRAYwGSXLJo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bf:76:2d:bc:ea:db:19:5a:74:6a:19:e0:f8:df:21:5a:a2:f1: c3:d9:c1:de:20:6c:f1:70:e8:ce:f6:e9:0d:45:eb:58:bb:a6: 79:6c:fa:4d:e2:c6:b0:f2:69:b4:ce:d7:b6:2e:22:28:36:b4: d1:8e:f3:11:15:7a:1c:8e:aa:4d:b8:94:6a:11:35:59:f0:7f: cd:65:04:58:be:99:a7:60:30:00:b3:43:64:16:71:52:09:67: 52:8e:23:a4:ab:34:15:3b:08:e4:6c:84:85:84:26:9f:18:70: f0:28:38:c6:07:0f:13:4b:66:87:ae:24:21:b7:49:d5:e4:2c: 72:23:4c:98:60:5c:8a:2f:0c:bb:a3:b5:43:4c:9a:d2:de:1a: 40:ab:d2:c7:75:a8:97:da:d8:05:97:bf:c4:f7:89:cb:55:ca: bc:ea:12:8a:5d:dd:13:7d:d9:91:49:de:40:ae:bb:9f:64:3f: 99:85:4e:85:4a:12:18:72:f9:e7:fe:b8:b1:b2:2c:88:4a:06: 11:fb:d0:9e:87:d5:0c:c9:5b:7c:37:eb:52:76:4c:d6:56:d7: 16:5f:fc:21:62:c4:41:4e:38:1c:77:7a:ec:36:86:ff:41:b7: f0:8e:6f:49:6f:f9:4d:dc:e8:23:a7:6e:f2:f1:3e:0f:ba:72: 36:4e:88:ca -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDAQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUFBQjUxMTAvBgNVBAUTKDU1MzcxMUYyRUZFOTQ4NDRDNDNGNzc2RDQ1MTAxOEMw NjQ5NzJDOUEwHhcNMjUwNDI0MTgzOTIwWhcNMjUwNTAxMTgzOTIwWjAYMRYwFAYD VQQDEw02ODBhODU1OC00Nzg1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuNNhdCyubXT3emg7X+q0goYebQ32qSXy/IfOM6fZXAHsWLBI1d+Lt8Cb2uuS TkL9o1HK3BokMJgn1Xdi8GiU/GGQBqD2J5uVH0CB34G78cOoMzBRIqgcgMsatrip hRWEblhtm97Nusq0F0ZPJe38d0qEl6KF7cS6bp8ekTfMeXRDOoG3QfXdOSkZGhw7 gU4bV1Vpf1ejcUuFDd1X598hsFAoS7MiUgZh613oT1pXDHTSfLzkl9nQWQ2Cmpd5 daTGCD0+RTNkF00Ie9fdtUIq29Ve+8xwX+tfZRGEA/7dcOhY10wTw3drKOHo5y7a UgDfGl8sli5aD1G5vhlOoHF5IwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLfvIHnw tvAo3xIcPRciA8NlwGKUMB8GA1UdIwQYMBaAFFU3EfLv6UhExD93bUUQGMBklyya MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQUFCNS9BM0JERTdBMDEw RjYxMUVBOTEwM0I2MUJDNEY5QUUwMi9WVGNSOHVfcFNFVEVQM2R0UlJBWXdHU1hM Sm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZUY1I4dV9wU0VURVAzZHRSUkFZd0dTWExKby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QUFCNS9BM0JERTdBMDEwRjYxMUVBOTEwM0I2MUJDNEY5QUUwMi9WVGNSOHVfcFNF VEVQM2R0UlJBWXdHU1hMSm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC/di286tsZWnRqGeD43yFaovHD2cHeIGzxcOjO9ukNRetYu6Z5bPpN 4saw8mm0zte2LiIoNrTRjvMRFXocjqpNuJRqETVZ8H/NZQRYvpmnYDAAs0NkFnFS CWdSjiOkqzQVOwjkbISFhCafGHDwKDjGBw8TS2aHriQht0nV5CxyI0yYYFyKLwy7 o7VDTJrS3hpAq9LHdaiX2tgFl7/E94nLVcq86hKKXd0TfdmRSd5ArrufZD+ZhU6F ShIYcvnn/rixsiyISgYR+9Ceh9UMyVt8N+tSdkzWVtcWX/whYsRBTjgcd3rsNob/ Qbfwjm9Jb/lN3Ogjp27y8T4PunI2TojK -----END CERTIFICATE-----Generated at Sat Apr 26 13:54:41 2025 by rpki-client