$ rpki-client -vvf rpki.apnic.net/member_repository/A91288D9/BA59535E425711EA8F838A43C4F9AE02/VB4KZv5g86rAJQLO8eSOYnpi90E.mft File: VB4KZv5g86rAJQLO8eSOYnpi90E.mft (raw, json) Hash identifier: gPCsADUTNxv0HESIQ//0CxviRCXRUxTYt/KKthaTtFM= Subject key identifier: 04:A4:65:E9:F9:CC:05:59:D8:32:E9:C6:B8:7C:F0:2B:36:E3:73:78 Authority key identifier: 54:1E:0A:66:FE:60:F3:AA:C0:25:02:CE:F1:E4:8E:62:7A:62:F7:41 Certificate issuer: /CN=A91288D9/serialNumber=541E0A66FE60F3AAC02502CEF1E48E627A62F741 Certificate serial: 0AFA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VB4KZv5g86rAJQLO8eSOYnpi90E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91288D9/BA59535E425711EA8F838A43C4F9AE02/VB4KZv5g86rAJQLO8eSOYnpi90E.mft Manifest number: 0AF3 Signing time: Thu 24 Apr 2025 19:13:47 +0000 Manifest this update: Thu 24 Apr 2025 19:13:47 +0000 Manifest next update: Thu 01 May 2025 19:13:47 +0000 Files and hashes: 1: VB4KZv5g86rAJQLO8eSOYnpi90E.crl (hash: FV5vgYO/7jQt5gOZMjUXcuBVtt/qr4nEbujB0VYCMEc=) 2: E0FCE614425811EAADEA3B45C4F9AE02.roa (hash: uo0CqqDq1LW4OE16oHJh3v7l3D+UDenz/raY8uxIHFA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91288D9/BA59535E425711EA8F838A43C4F9AE02/VB4KZv5g86rAJQLO8eSOYnpi90E.crl rsync://rpki.apnic.net/member_repository/A91288D9/BA59535E425711EA8F838A43C4F9AE02/VB4KZv5g86rAJQLO8eSOYnpi90E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VB4KZv5g86rAJQLO8eSOYnpi90E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 19:13:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2810 (0xafa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91288D9, serialNumber=541E0A66FE60F3AAC02502CEF1E48E627A62F741 Validity Not Before: Apr 24 19:13:47 2025 GMT Not After : May 1 19:13:47 2025 GMT Subject: CN=680a8d6b-3f63 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:2c:a7:8a:d9:18:7e:88:83:10:9b:62:66:87: 50:99:a3:d8:76:bb:2e:7d:a4:45:36:9d:ec:e6:a9: d7:3d:85:cd:05:6d:5a:73:b9:c9:72:89:6d:8c:8a: d6:2c:b2:57:a7:27:c9:65:6e:43:6c:7c:c3:fd:bf: b7:49:77:06:d4:11:f7:e5:7c:af:32:9a:29:79:6d: f5:bc:cb:31:2d:3f:e6:75:bd:dd:04:32:f4:42:be: b2:91:1d:b1:0b:4d:cf:f5:d3:b3:81:8a:3d:14:41: a3:86:fb:74:65:e8:89:1e:cc:ef:03:50:ec:9f:0b: 12:cf:be:09:a8:6e:c8:ce:57:f4:03:84:e3:11:5f: e0:e3:c3:dc:bb:c5:7b:6d:f2:4f:5b:fb:5a:5a:07: a2:f3:68:ac:95:56:37:cb:cf:2f:40:04:12:48:26: ac:d5:d8:58:bc:e2:54:f0:96:0b:e0:b4:c1:e0:a4: 11:94:a2:c6:56:e6:27:db:3b:57:02:13:06:21:c9: 34:b6:21:fe:03:98:6a:eb:d7:d6:8c:ef:a5:88:cb: 72:5e:8c:0f:a7:e6:17:bb:a1:5a:50:b4:26:1e:4d: 96:89:db:60:52:81:e6:dd:cb:cc:02:53:94:05:92: 03:3e:19:77:b3:eb:6d:9f:5e:66:62:ce:92:7b:2e: 97:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:A4:65:E9:F9:CC:05:59:D8:32:E9:C6:B8:7C:F0:2B:36:E3:73:78 X509v3 Authority Key Identifier: keyid:54:1E:0A:66:FE:60:F3:AA:C0:25:02:CE:F1:E4:8E:62:7A:62:F7:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91288D9/BA59535E425711EA8F838A43C4F9AE02/VB4KZv5g86rAJQLO8eSOYnpi90E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VB4KZv5g86rAJQLO8eSOYnpi90E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91288D9/BA59535E425711EA8F838A43C4F9AE02/VB4KZv5g86rAJQLO8eSOYnpi90E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 13:c5:0a:e2:f5:db:89:73:77:9f:05:33:32:81:e9:8c:eb:f8: 2f:b6:65:ee:6e:91:4f:6a:ee:98:4e:79:0f:6d:76:a5:1e:f1: b7:46:ef:e0:5c:a5:b3:c5:09:22:4d:bb:10:53:50:0f:4a:ae: 12:4b:ef:8f:54:c0:3d:f1:e6:5c:1f:46:ac:14:28:a0:3a:f3: a2:ea:56:e7:b7:fd:63:8e:4a:3c:28:f0:29:59:a7:f2:ad:2c: c5:d5:97:80:8f:5b:50:88:5c:d4:4f:c9:50:97:8e:ce:82:32: 1c:76:85:9c:bc:f5:dc:ea:26:4d:c3:bb:66:26:5f:65:b9:90: d0:a9:01:4e:00:88:da:30:43:45:2d:15:59:89:51:4f:73:2f: 81:ae:a3:2a:ed:58:8f:fd:13:0c:0f:54:7b:d9:4c:b4:26:6f: 31:80:93:e7:a6:46:be:b5:72:3d:0e:4a:30:7b:0e:6c:61:0f: 5f:56:77:8c:9c:3f:65:bb:af:05:98:91:31:a2:f6:bd:a6:b1: cc:84:ff:99:99:75:7f:ee:13:5d:d9:7d:93:95:f7:34:99:cd: ee:86:fd:7a:6b:29:d7:88:00:c7:f1:46:f1:d1:ce:f7:54:63: 58:d8:46:e5:34:93:7a:ee:50:62:84:da:0a:01:b6:3f:9e:96: 32:21:4c:98 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCvowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjg4RDkxMTAvBgNVBAUTKDU0MUUwQTY2RkU2MEYzQUFDMDI1MDJDRUYxRTQ4RTYy N0E2MkY3NDEwHhcNMjUwNDI0MTkxMzQ3WhcNMjUwNTAxMTkxMzQ3WjAYMRYwFAYD VQQDEw02ODBhOGQ2Yi0zZjYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqiynitkYfoiDEJtiZodQmaPYdrsufaRFNp3s5qnXPYXNBW1ac7nJcoltjIrW LLJXpyfJZW5DbHzD/b+3SXcG1BH35XyvMpopeW31vMsxLT/mdb3dBDL0Qr6ykR2x C03P9dOzgYo9FEGjhvt0ZeiJHszvA1DsnwsSz74JqG7Izlf0A4TjEV/g48Pcu8V7 bfJPW/taWgei82islVY3y88vQAQSSCas1dhYvOJU8JYL4LTB4KQRlKLGVuYn2ztX AhMGIck0tiH+A5hq69fWjO+liMtyXowPp+YXu6FaULQmHk2WidtgUoHm3cvMAlOU BZIDPhl3s+ttn15mYs6Sey6XMQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFASkZen5 zAVZ2DLpxrh88Cs243N4MB8GA1UdIwQYMBaAFFQeCmb+YPOqwCUCzvHkjmJ6YvdB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyODhEOS9CQTU5NTM1RTQy NTcxMUVBOEY4MzhBNDNDNEY5QUUwMi9WQjRLWnY1Zzg2ckFKUUxPOGVTT1lucGk5 MEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZCNEtadjVnODZyQUpRTE84ZVNPWW5waTkwRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy ODhEOS9CQTU5NTM1RTQyNTcxMUVBOEY4MzhBNDNDNEY5QUUwMi9WQjRLWnY1Zzg2 ckFKUUxPOGVTT1lucGk5MEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQATxQri9duJc3efBTMygemM6/gvtmXubpFPau6YTnkPbXalHvG3Ru/g XKWzxQkiTbsQU1APSq4SS++PVMA98eZcH0asFCigOvOi6lbnt/1jjko8KPApWafy rSzF1ZeAj1tQiFzUT8lQl47OgjIcdoWcvPXc6iZNw7tmJl9luZDQqQFOAIjaMENF LRVZiVFPcy+BrqMq7ViP/RMMD1R72Uy0Jm8xgJPnpka+tXI9Dkowew5sYQ9fVneM nD9lu68FmJExova9prHMhP+ZmXV/7hNd2X2Tlfc0mc3uhv16aynXiADH8Ubx0c73 VGNY2EblNJN67lBihNoKAbY/npYyIUyY -----END CERTIFICATE-----Generated at Sat Apr 26 12:30:26 2025 by rpki-client