$ rpki-client -vvf rpki.apnic.net/member_repository/A9165556/B145D02E017C11EFB864325AC4F9AE02/VKpPIROg0aG37lUSvq5TcextpCE.mft File: VKpPIROg0aG37lUSvq5TcextpCE.mft (raw, json) Hash identifier: 91ok2ump/m4T+Y4Hpdvi2ncQAt2MDJViAJGx/o+C8us= Subject key identifier: 2A:31:B2:7B:FA:E8:27:79:DB:3E:7A:9B:E2:41:53:CD:85:06:19:4C Authority key identifier: 54:AA:4F:21:13:A0:D1:A1:B7:EE:55:12:BE:AE:53:71:EC:6D:A4:21 Certificate issuer: /CN=A9165556/serialNumber=54AA4F2113A0D1A1B7EE5512BEAE5371EC6DA421 Certificate serial: C4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VKpPIROg0aG37lUSvq5TcextpCE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9165556/B145D02E017C11EFB864325AC4F9AE02/VKpPIROg0aG37lUSvq5TcextpCE.mft Manifest number: C2 Signing time: Fri 25 Apr 2025 04:55:22 +0000 Manifest this update: Fri 25 Apr 2025 04:55:22 +0000 Manifest next update: Fri 02 May 2025 04:55:22 +0000 Files and hashes: 1: VKpPIROg0aG37lUSvq5TcextpCE.crl (hash: DXxCFa2GvqU2QD7K8KEXvUxWeVQoRfu7xAkPQgtfdDE=) 2: E135D94C04A511EF84B5D783C4F9AE02.roa (hash: qeKpax6tWFd6dXRCCgHpRrEIFHUWf08cbXJ0Npcf3Z0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9165556/B145D02E017C11EFB864325AC4F9AE02/VKpPIROg0aG37lUSvq5TcextpCE.crl rsync://rpki.apnic.net/member_repository/A9165556/B145D02E017C11EFB864325AC4F9AE02/VKpPIROg0aG37lUSvq5TcextpCE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VKpPIROg0aG37lUSvq5TcextpCE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 04:55:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 196 (0xc4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9165556, serialNumber=54AA4F2113A0D1A1B7EE5512BEAE5371EC6DA421 Validity Not Before: Apr 25 04:55:22 2025 GMT Not After : May 2 04:55:22 2025 GMT Subject: CN=680b15ba-0d0c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:96:e5:19:f5:ad:c4:f8:4d:98:d9:0f:2e:e6: 3b:ae:cb:a0:02:d1:77:33:cd:8a:88:0e:cb:03:63: 22:d5:81:d8:25:d7:96:15:85:36:3c:92:67:ac:7f: 5e:6f:40:aa:52:09:ed:f7:17:8d:dc:c3:9d:15:05: 47:fa:f6:58:77:b9:c3:90:02:3b:8d:3a:d9:72:ea: f3:03:7d:45:62:47:d2:36:0f:cc:00:36:44:c3:e2: a3:4f:16:5d:12:4a:a6:0b:c4:08:d1:49:fc:d6:23: 7e:6f:c3:d7:6a:e5:71:74:29:62:dd:71:b7:d7:e0: c3:99:76:71:2e:11:25:d1:b4:1b:1f:64:f4:0f:65: 36:b7:bf:96:5c:f2:e8:8c:a2:de:41:f0:32:cc:c2: 79:e9:bf:63:5c:e8:ef:d9:2f:18:b3:6a:bd:41:7b: f5:bd:de:45:5b:43:c1:43:c6:92:ff:dc:d7:6e:24: 3a:e1:a4:11:c8:db:fa:24:54:50:2b:e6:c9:2c:fb: 4f:5a:69:b5:8c:0d:c7:35:6f:74:93:b2:c5:3e:39: d5:d6:1e:06:74:39:7d:f5:20:fb:52:30:87:a8:bd: 90:d0:dc:d4:d3:75:c2:62:a4:aa:a9:eb:7c:79:84: 7a:c0:57:98:cc:1c:c5:d5:90:d5:df:8e:92:13:db: dc:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:31:B2:7B:FA:E8:27:79:DB:3E:7A:9B:E2:41:53:CD:85:06:19:4C X509v3 Authority Key Identifier: keyid:54:AA:4F:21:13:A0:D1:A1:B7:EE:55:12:BE:AE:53:71:EC:6D:A4:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9165556/B145D02E017C11EFB864325AC4F9AE02/VKpPIROg0aG37lUSvq5TcextpCE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VKpPIROg0aG37lUSvq5TcextpCE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9165556/B145D02E017C11EFB864325AC4F9AE02/VKpPIROg0aG37lUSvq5TcextpCE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9b:29:de:d3:b1:06:3d:f3:16:0a:82:9c:5e:6c:62:34:1e:52: 00:43:28:8e:32:eb:d7:d0:9b:ea:28:05:f9:a9:e7:c5:bf:e0: cc:c2:9c:25:43:7d:2c:48:f9:cb:11:79:0e:0f:a2:92:03:d2: 9a:95:e3:83:35:7c:ea:33:13:fc:69:ea:81:50:c9:4d:73:9d: 62:f9:e7:0c:73:a7:4c:42:4e:d5:12:c4:79:a5:b2:cc:c5:22: f7:88:c1:61:67:d1:60:30:48:7d:f4:17:45:05:7f:c8:77:26: bf:8e:cb:95:65:08:f9:28:eb:b4:1f:5b:a5:a2:2d:38:37:3e: ce:9b:bd:44:d8:43:8d:27:84:bb:cf:3a:ff:1b:4d:98:0d:ef: 00:cc:a4:8c:0d:fb:6e:36:d0:b4:12:56:5f:8c:b2:31:a6:42: 9a:4d:46:b9:99:2c:51:89:73:f0:1b:08:a3:85:fe:a2:4d:69: 4a:54:17:96:c5:f9:1b:69:11:5b:81:22:5d:07:2b:d5:39:19: 5e:30:4b:f6:46:03:00:6e:aa:ac:dc:02:50:1b:bc:4b:aa:ea: 15:3e:55:27:d4:8e:10:ac:5e:2f:75:92:50:37:5f:2e:ce:24: aa:7e:e3:70:6f:7a:39:c7:ea:87:86:13:37:f7:97:85:95:1b: 36:d7:40:d6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjU1NTYxMTAvBgNVBAUTKDU0QUE0RjIxMTNBMEQxQTFCN0VFNTUxMkJFQUU1Mzcx RUM2REE0MjEwHhcNMjUwNDI1MDQ1NTIyWhcNMjUwNTAyMDQ1NTIyWjAYMRYwFAYD VQQDEw02ODBiMTViYS0wZDBjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA25blGfWtxPhNmNkPLuY7rsugAtF3M82KiA7LA2Mi1YHYJdeWFYU2PJJnrH9e b0CqUgnt9xeN3MOdFQVH+vZYd7nDkAI7jTrZcurzA31FYkfSNg/MADZEw+KjTxZd EkqmC8QI0Un81iN+b8PXauVxdCli3XG31+DDmXZxLhEl0bQbH2T0D2U2t7+WXPLo jKLeQfAyzMJ56b9jXOjv2S8Ys2q9QXv1vd5FW0PBQ8aS/9zXbiQ64aQRyNv6JFRQ K+bJLPtPWmm1jA3HNW90k7LFPjnV1h4GdDl99SD7UjCHqL2Q0NzU03XCYqSqqet8 eYR6wFeYzBzF1ZDV346SE9vcjQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCoxsnv6 6Cd52z56m+JBU82FBhlMMB8GA1UdIwQYMBaAFFSqTyEToNGht+5VEr6uU3HsbaQh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NTU1Ni9CMTQ1RDAyRTAx N0MxMUVGQjg2NDMyNUFDNEY5QUUwMi9WS3BQSVJPZzBhRzM3bFVTdnE1VGNleHRw Q0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZLcFBJUk9nMGFHMzdsVVN2cTVUY2V4dHBDRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NTU1Ni9CMTQ1RDAyRTAxN0MxMUVGQjg2NDMyNUFDNEY5QUUwMi9WS3BQSVJPZzBh RzM3bFVTdnE1VGNleHRwQ0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCbKd7TsQY98xYKgpxebGI0HlIAQyiOMuvX0JvqKAX5qefFv+DMwpwl Q30sSPnLEXkOD6KSA9KaleODNXzqMxP8aeqBUMlNc51i+ecMc6dMQk7VEsR5pbLM xSL3iMFhZ9FgMEh99BdFBX/Idya/jsuVZQj5KOu0H1uloi04Nz7Om71E2EONJ4S7 zzr/G02YDe8AzKSMDftuNtC0ElZfjLIxpkKaTUa5mSxRiXPwGwijhf6iTWlKVBeW xfkbaRFbgSJdByvVORleMEv2RgMAbqqs3AJQG7xLquoVPlUn1I4QrF4vdZJQN18u ziSqfuNwb3o5x+qHhhM395eFlRs210DW -----END CERTIFICATE-----Generated at Sat Apr 26 16:20:36 2025 by rpki-client