$ rpki-client -vvf rpki.apnic.net/member_repository/A9123D19/40ED8020429F11E486B44D72C4F9AE02/vphUuYSZNmQ-DUAVo7N7XkSErVo.mft File: vphUuYSZNmQ-DUAVo7N7XkSErVo.mft (raw, json) Hash identifier: Zo5MwJk93TKCN/Dzj4LeR8fU1BzQ7SutJpS+uCvoyes= Subject key identifier: E7:0A:47:49:D7:EB:75:DB:B4:84:12:7B:AE:81:22:D5:B5:BD:14:D7 Authority key identifier: BE:98:54:B9:84:99:36:64:3E:0D:40:15:A3:B3:7B:5E:44:84:AD:5A Certificate issuer: /CN=A9123D19/serialNumber=BE9854B9849936643E0D4015A3B37B5E4484AD5A Certificate serial: 29B7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vphUuYSZNmQ-DUAVo7N7XkSErVo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9123D19/40ED8020429F11E486B44D72C4F9AE02/vphUuYSZNmQ-DUAVo7N7XkSErVo.mft Manifest number: 29A3 Signing time: Thu 24 Apr 2025 15:37:41 +0000 Manifest this update: Thu 24 Apr 2025 15:37:41 +0000 Manifest next update: Thu 01 May 2025 15:37:41 +0000 Files and hashes: 1: vphUuYSZNmQ-DUAVo7N7XkSErVo.crl (hash: NTYCJL7a+2cRsk7e6aEEYK6hMpZ1OaauhN5ix4gudt4=) 2: 73E0191A967811EA92E45A27C4F9AE02.roa (hash: ShaJe6Lrds4HI5NQVrTj2+pnsM6ohcQYrpyOOxPkL24=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9123D19/40ED8020429F11E486B44D72C4F9AE02/vphUuYSZNmQ-DUAVo7N7XkSErVo.crl rsync://rpki.apnic.net/member_repository/A9123D19/40ED8020429F11E486B44D72C4F9AE02/vphUuYSZNmQ-DUAVo7N7XkSErVo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vphUuYSZNmQ-DUAVo7N7XkSErVo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 15:37:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10679 (0x29b7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9123D19, serialNumber=BE9854B9849936643E0D4015A3B37B5E4484AD5A Validity Not Before: Apr 24 15:37:41 2025 GMT Not After : May 1 15:37:41 2025 GMT Subject: CN=680a5ac5-7599 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:a9:e6:a0:aa:3c:ae:7f:7a:af:5e:f3:2b:fb: 27:b6:d3:60:9b:c5:f2:f4:4a:d5:01:42:1b:fd:59: 01:2c:35:5d:80:c0:5a:b2:71:bc:54:24:b9:6c:35: f3:f4:ab:ee:f9:29:30:f4:d8:af:30:23:6b:e7:ca: 34:c6:e6:f7:a8:6f:72:9c:29:d0:2c:2e:5f:ae:0b: 0f:94:ce:e0:58:a9:59:6e:7d:a0:00:54:ab:d6:21: 40:94:1a:69:62:6f:57:69:8f:c1:31:5e:b9:84:59: 0d:5f:de:fe:b9:2f:f0:42:ed:82:6d:8e:76:09:f6: ec:fd:7e:36:2c:65:b4:43:ec:0b:5d:05:65:13:49: 57:e6:e2:98:fa:67:75:60:b3:16:7e:50:f5:27:0f: 35:d7:2c:93:fc:fe:c1:ad:a4:dc:11:a7:52:60:08: fa:e2:44:d6:d0:e2:67:28:27:03:52:ce:49:dd:3c: 86:e6:e3:c1:a8:de:19:eb:52:d3:69:68:98:e9:d9: 4b:81:ac:aa:04:75:0f:09:95:15:de:4e:e3:15:dc: d8:16:63:76:0b:81:e3:a4:5d:b4:1a:d0:55:e6:4a: 26:20:8f:70:95:06:70:0f:a5:ab:9c:40:b4:74:0f: 4d:e9:f4:37:ab:fa:30:48:29:1e:83:1f:22:4d:2d: e9:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:0A:47:49:D7:EB:75:DB:B4:84:12:7B:AE:81:22:D5:B5:BD:14:D7 X509v3 Authority Key Identifier: keyid:BE:98:54:B9:84:99:36:64:3E:0D:40:15:A3:B3:7B:5E:44:84:AD:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9123D19/40ED8020429F11E486B44D72C4F9AE02/vphUuYSZNmQ-DUAVo7N7XkSErVo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vphUuYSZNmQ-DUAVo7N7XkSErVo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9123D19/40ED8020429F11E486B44D72C4F9AE02/vphUuYSZNmQ-DUAVo7N7XkSErVo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0b:9e:72:7c:1b:32:21:14:7e:ec:6a:ea:80:64:d3:4e:1b:d8: eb:fb:08:85:5f:e7:5d:3b:f5:6d:c4:a6:92:8a:68:f2:8e:00: f3:31:99:ff:04:11:e0:22:81:b7:98:88:07:d0:86:05:06:bc: 6b:4c:35:ff:ee:97:61:2d:55:d3:84:f4:26:3f:3e:74:59:ee: b7:8e:bc:95:81:2e:f1:56:98:2b:f9:f2:78:81:a3:ba:b0:27: fb:ba:98:5e:2e:31:dc:d7:64:fc:61:22:21:62:d5:29:83:ed: fb:a1:40:6d:18:bc:d7:57:8a:8d:a9:5d:19:64:96:ae:3c:bc: ca:0d:be:e9:b2:3b:f1:f8:ad:4a:0f:94:bf:f1:3b:61:9a:f0: 87:04:db:4d:7b:b3:c8:86:04:26:cf:3d:2c:c7:c3:f7:46:6c: 85:c4:a8:82:6d:0a:b1:4f:ef:42:45:67:fb:d1:bb:97:a5:83: 24:87:c5:1e:3b:54:a9:15:ad:4c:db:a9:59:7f:78:47:57:a1: 92:30:e4:cb:ac:a8:40:96:ea:b9:ac:15:a0:06:69:fc:37:07: db:9a:24:ba:54:59:1a:01:d8:69:94:c5:21:24:34:b6:46:ab: 20:17:a7:59:ca:aa:53:25:5e:b5:20:36:6b:7b:e0:9b:5c:83: ed:8c:d7:d0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICKbcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjNEMTkxMTAvBgNVBAUTKEJFOTg1NEI5ODQ5OTM2NjQzRTBENDAxNUEzQjM3QjVF NDQ4NEFENUEwHhcNMjUwNDI0MTUzNzQxWhcNMjUwNTAxMTUzNzQxWjAYMRYwFAYD VQQDEw02ODBhNWFjNS03NTk5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3anmoKo8rn96r17zK/snttNgm8Xy9ErVAUIb/VkBLDVdgMBasnG8VCS5bDXz 9Kvu+Skw9NivMCNr58o0xub3qG9ynCnQLC5frgsPlM7gWKlZbn2gAFSr1iFAlBpp Ym9XaY/BMV65hFkNX97+uS/wQu2CbY52Cfbs/X42LGW0Q+wLXQVlE0lX5uKY+md1 YLMWflD1Jw811yyT/P7BraTcEadSYAj64kTW0OJnKCcDUs5J3TyG5uPBqN4Z61LT aWiY6dlLgayqBHUPCZUV3k7jFdzYFmN2C4HjpF20GtBV5komII9wlQZwD6WrnEC0 dA9N6fQ3q/owSCkegx8iTS3pywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOcKR0nX 63XbtIQSe66BItW1vRTXMB8GA1UdIwQYMBaAFL6YVLmEmTZkPg1AFaOze15EhK1a MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyM0QxOS80MEVEODAyMDQy OUYxMUU0ODZCNDRENzJDNEY5QUUwMi92cGhVdVlTWk5tUS1EVUFWbzdON1hrU0Vy Vm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZwaFV1WVNaTm1RLURVQVZvN043WGtTRXJWby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy M0QxOS80MEVEODAyMDQyOUYxMUU0ODZCNDRENzJDNEY5QUUwMi92cGhVdVlTWk5t US1EVUFWbzdON1hrU0VyVm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQALnnJ8GzIhFH7sauqAZNNOG9jr+wiFX+ddO/VtxKaSimjyjgDzMZn/ BBHgIoG3mIgH0IYFBrxrTDX/7pdhLVXThPQmPz50We63jryVgS7xVpgr+fJ4gaO6 sCf7upheLjHc12T8YSIhYtUpg+37oUBtGLzXV4qNqV0ZZJauPLzKDb7psjvx+K1K D5S/8TthmvCHBNtNe7PIhgQmzz0sx8P3RmyFxKiCbQqxT+9CRWf70buXpYMkh8Ue O1SpFa1M26lZf3hHV6GSMOTLrKhAluq5rBWgBmn8NwfbmiS6VFkaAdhplMUhJDS2 RqsgF6dZyqpTJV61IDZre+CbXIPtjNfQ -----END CERTIFICATE-----Generated at Sat Apr 26 17:08:26 2025 by rpki-client