$ rpki-client -vvf rpki.apnic.net/member_repository/A914A514/3FF25AFA1F4911F096F7AE7AC4F9AE02/VU0O_yINZrbppAkPDcy6milc3bU.mft File: VU0O_yINZrbppAkPDcy6milc3bU.mft (raw, json) Hash identifier: /n3HW32tixpVtu3JbBDJmdRtX5ULZ8rIfM2EloTykVU= Subject key identifier: 81:FB:F3:B3:8D:22:55:F0:98:E5:AB:78:10:63:11:1A:41:CB:40:14 Authority key identifier: 55:4D:0E:FF:22:0D:66:B6:E9:A4:09:0F:0D:CC:BA:9A:29:5C:DD:B5 Certificate issuer: /CN=A914A514/serialNumber=554D0EFF220D66B6E9A4090F0DCCBA9A295CDDB5 Certificate serial: 05 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VU0O_yINZrbppAkPDcy6milc3bU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914A514/3FF25AFA1F4911F096F7AE7AC4F9AE02/VU0O_yINZrbppAkPDcy6milc3bU.mft Manifest number: 04 Signing time: Fri 25 Apr 2025 07:12:02 +0000 Manifest this update: Fri 25 Apr 2025 07:12:01 +0000 Manifest next update: Fri 02 May 2025 07:12:01 +0000 Files and hashes: 1: VU0O_yINZrbppAkPDcy6milc3bU.crl (hash: cX6K1dE3XzpCw/GocUh2KBL5l5QlodjSSN17pHjBIwU=) 2: 4499D9921F4A11F0AF06577CC4F9AE02.roa (hash: z4+GScQPXNK7dMow5YJdd1dCjH7Fb4eyJ+GMu8LPShY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914A514/3FF25AFA1F4911F096F7AE7AC4F9AE02/VU0O_yINZrbppAkPDcy6milc3bU.crl rsync://rpki.apnic.net/member_repository/A914A514/3FF25AFA1F4911F096F7AE7AC4F9AE02/VU0O_yINZrbppAkPDcy6milc3bU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VU0O_yINZrbppAkPDcy6milc3bU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 07:12:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5 (0x5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914A514, serialNumber=554D0EFF220D66B6E9A4090F0DCCBA9A295CDDB5 Validity Not Before: Apr 25 07:12:01 2025 GMT Not After : May 2 07:12:01 2025 GMT Subject: CN=680b35c2-4e71 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:26:86:69:f8:69:8b:fa:c1:59:80:18:36:cf: 8e:8b:d5:82:01:01:94:ee:9a:e7:53:a7:5d:c5:c4: 46:51:0e:d4:66:72:9a:b2:fc:e0:c6:bb:b2:f0:6c: 4c:f4:1c:84:69:b3:c9:98:6e:73:5f:bd:d2:ea:9e: ca:6a:e5:e5:43:f1:fd:f3:3e:ce:1d:46:fc:44:35: b0:92:55:16:4f:2b:c7:84:f2:30:93:05:24:fc:bc: 2c:69:dd:9d:5a:55:b2:e3:6b:66:dd:50:b4:1f:7f: 0a:77:4c:cb:35:a1:3f:5f:6f:a3:70:7a:d5:4f:f7: 3b:08:35:93:47:f4:0f:cb:47:df:b1:05:84:90:be: 46:50:10:a3:7b:dd:b0:d2:a0:e9:a3:44:de:11:f7: f2:c7:ae:40:38:cd:7c:58:5d:71:df:16:33:e3:e5: 64:02:e8:58:6f:16:c2:8e:90:81:d6:12:71:7c:cc: dd:ea:6f:93:21:a4:ac:11:37:32:8f:ed:1e:92:90: dc:98:83:56:28:ac:63:4a:22:d2:a1:a0:36:3d:7f: fb:c0:c1:68:de:cf:99:ce:3d:e3:07:cc:57:f1:c2: 16:c0:93:5f:5d:5e:4b:a5:ee:e2:a9:a5:d9:e0:77: 10:93:8d:fa:88:40:3e:fb:ba:51:b4:da:07:96:ef: ae:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:FB:F3:B3:8D:22:55:F0:98:E5:AB:78:10:63:11:1A:41:CB:40:14 X509v3 Authority Key Identifier: keyid:55:4D:0E:FF:22:0D:66:B6:E9:A4:09:0F:0D:CC:BA:9A:29:5C:DD:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914A514/3FF25AFA1F4911F096F7AE7AC4F9AE02/VU0O_yINZrbppAkPDcy6milc3bU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VU0O_yINZrbppAkPDcy6milc3bU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914A514/3FF25AFA1F4911F096F7AE7AC4F9AE02/VU0O_yINZrbppAkPDcy6milc3bU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c2:18:c9:62:bb:5e:11:34:9d:d0:64:97:b6:b0:9f:c1:dc:43: d4:e8:c7:a5:4c:89:18:a7:31:1f:11:c7:be:79:35:e2:3f:b4: 69:2e:50:4c:f7:3c:25:8a:e8:11:d2:d5:fa:79:5d:31:3a:4c: e6:8e:ee:c4:6e:0c:f5:70:53:9f:c6:7c:22:6d:a1:5a:01:55: a5:aa:42:8a:03:d7:37:22:20:21:5e:fd:58:3b:6c:2c:69:6f: 7c:9c:96:d8:f4:30:15:2f:b4:39:33:d1:1d:21:88:1c:af:c1: 5d:0a:82:64:eb:3d:f5:4d:06:cc:f4:3d:b8:22:5c:7b:80:3d: 34:c9:18:bd:a7:7c:2e:f7:27:89:77:18:3a:2d:6f:91:b6:54: 35:39:07:be:71:ed:6a:54:19:23:5a:c7:f9:b7:89:95:ab:36: 4f:4b:5d:d8:55:cc:13:43:75:8a:11:51:86:88:ad:fb:6a:55: e3:7e:61:e7:e5:f7:45:16:15:5d:76:cf:cd:be:44:f1:4d:14: f2:1a:9a:59:40:70:e1:ea:6f:f5:e8:0f:4a:76:fa:0f:81:a2: 36:f7:63:4c:77:d5:e8:73:75:d3:a3:17:26:ed:01:fe:e2:a2: a4:2e:8c:90:f9:a1:93:48:f7:df:75:33:6b:35:37:3a:ee:88: 92:21:a4:3e -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBBTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 QTUxNDExMC8GA1UEBRMoNTU0RDBFRkYyMjBENjZCNkU5QTQwOTBGMERDQ0JBOUEy OTVDRERCNTAeFw0yNTA0MjUwNzEyMDFaFw0yNTA1MDIwNzEyMDFaMBgxFjAUBgNV BAMTDTY4MGIzNWMyLTRlNzEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDpJoZp+GmL+sFZgBg2z46L1YIBAZTumudTp13FxEZRDtRmcpqy/ODGu7LwbEz0 HIRps8mYbnNfvdLqnspq5eVD8f3zPs4dRvxENbCSVRZPK8eE8jCTBST8vCxp3Z1a VbLja2bdULQffwp3TMs1oT9fb6NwetVP9zsINZNH9A/LR9+xBYSQvkZQEKN73bDS oOmjRN4R9/LHrkA4zXxYXXHfFjPj5WQC6FhvFsKOkIHWEnF8zN3qb5MhpKwRNzKP 7R6SkNyYg1YorGNKItKhoDY9f/vAwWjez5nOPeMHzFfxwhbAk19dXkul7uKppdng dxCTjfqIQD77ulG02geW765BAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUgfvzs40i VfCY5at4EGMRGkHLQBQwHwYDVR0jBBgwFoAUVU0O/yINZrbppAkPDcy6milc3bUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTRBNTE0LzNGRjI1QUZBMUY0 OTExRjA5NkY3QUU3QUM0RjlBRTAyL1ZVME9feUlOWnJicHBBa1BEY3k2bWlsYzNi VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvVlUwT195SU5acmJwcEFrUERjeTZtaWxjM2JVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTRB NTE0LzNGRjI1QUZBMUY0OTExRjA5NkY3QUU3QUM0RjlBRTAyL1ZVME9feUlOWnJi cHBBa1BEY3k2bWlsYzNiVS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAMIYyWK7XhE0ndBkl7awn8HcQ9Tox6VMiRinMR8Rx755NeI/tGkuUEz3 PCWK6BHS1fp5XTE6TOaO7sRuDPVwU5/GfCJtoVoBVaWqQooD1zciICFe/Vg7bCxp b3ycltj0MBUvtDkz0R0hiByvwV0KgmTrPfVNBsz0PbgiXHuAPTTJGL2nfC73J4l3 GDotb5G2VDU5B75x7WpUGSNax/m3iZWrNk9LXdhVzBNDdYoRUYaIrftqVeN+Yefl 90UWFV12z82+RPFNFPIamllAcOHqb/XoD0p2+g+Bojb3Y0x31ehzddOjFybtAf7i oqQujJD5oZNI9991M2s1NzruiJIhpD4= -----END CERTIFICATE-----Generated at Sat Apr 26 12:32:44 2025 by rpki-client