$ rpki-client -vvf rpki.apnic.net/member_repository/A916A5CD/29436FCE687C11ECAA26B959C4F9AE02/vbWSaolrtlGg51QKOYzV7wcUFx8.mft File: vbWSaolrtlGg51QKOYzV7wcUFx8.mft (raw, json) Hash identifier: 90pV1e+QxtyYcGPMh4Xn7GT49I0AIN+iw8wX/YNbWms= Subject key identifier: 94:66:3E:FF:FF:B9:8D:3C:56:2D:63:5C:CA:51:A5:F0:99:74:6F:EC Authority key identifier: BD:B5:92:6A:89:6B:B6:51:A0:E7:54:0A:39:8C:D5:EF:07:14:17:1F Certificate issuer: /CN=A916A5CD/serialNumber=BDB5926A896BB651A0E7540A398CD5EF0714171F Certificate serial: 040F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vbWSaolrtlGg51QKOYzV7wcUFx8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916A5CD/29436FCE687C11ECAA26B959C4F9AE02/vbWSaolrtlGg51QKOYzV7wcUFx8.mft Manifest number: 040B Signing time: Fri 25 Apr 2025 00:13:22 +0000 Manifest this update: Fri 25 Apr 2025 00:13:21 +0000 Manifest next update: Fri 02 May 2025 00:13:21 +0000 Files and hashes: 1: vbWSaolrtlGg51QKOYzV7wcUFx8.crl (hash: awb+vn03vIgtEemvd+brWaE+HV+G9K7NDTBZjHZWKxU=) 2: 66864FCE688011ECAA829E31C4F9AE02.roa (hash: w5bL3BxYC2VJUK/MoXPR18n/PN4tqZHifWiPk20fkzI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916A5CD/29436FCE687C11ECAA26B959C4F9AE02/vbWSaolrtlGg51QKOYzV7wcUFx8.crl rsync://rpki.apnic.net/member_repository/A916A5CD/29436FCE687C11ECAA26B959C4F9AE02/vbWSaolrtlGg51QKOYzV7wcUFx8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vbWSaolrtlGg51QKOYzV7wcUFx8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 00:13:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1039 (0x40f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916A5CD, serialNumber=BDB5926A896BB651A0E7540A398CD5EF0714171F Validity Not Before: Apr 25 00:13:21 2025 GMT Not After : May 2 00:13:21 2025 GMT Subject: CN=680ad3a2-0539 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:fc:47:98:a0:a7:96:67:3f:80:48:c2:3d:2f: 3d:8c:5b:cd:b1:15:b4:a8:9f:48:96:be:19:88:e4: 32:ec:41:a8:7d:61:22:e8:5f:e8:f2:ee:ee:b6:40: 48:01:ad:db:02:91:f4:a5:d2:0f:48:80:8f:bb:43: 47:51:b4:74:cb:ea:49:55:ea:86:75:fa:80:23:0d: a2:79:c2:eb:01:ce:d8:97:cd:21:10:de:aa:f0:77: 4a:5b:3b:8a:ee:e5:ec:c1:1b:e7:2d:5c:e6:53:b5: 32:67:b3:0b:12:3b:7a:40:58:20:db:bd:1f:83:f1: eb:ca:e0:ed:88:ea:0d:5e:da:c8:e6:84:27:6b:8b: 0a:05:ce:eb:9b:21:02:a0:18:ef:23:4c:1f:fa:16: 25:aa:31:d2:d0:19:9c:35:db:52:d7:48:a6:0a:5b: 78:dd:6d:ed:e2:4e:53:2a:b6:e7:2f:8b:2b:6e:be: 7c:88:88:1f:8e:a7:8c:c2:87:36:2c:ab:45:43:20: b2:11:b0:88:5b:8e:28:20:c8:56:f0:75:19:4c:ae: 1b:d7:d6:08:d3:1e:68:c2:35:a5:8b:a5:3b:5e:75: 49:31:f4:7a:5c:a4:ee:d4:f7:6f:69:12:f0:2c:0e: f0:9e:1e:9b:be:3a:7e:8c:0a:cd:ad:ed:7f:c6:33: d9:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:66:3E:FF:FF:B9:8D:3C:56:2D:63:5C:CA:51:A5:F0:99:74:6F:EC X509v3 Authority Key Identifier: keyid:BD:B5:92:6A:89:6B:B6:51:A0:E7:54:0A:39:8C:D5:EF:07:14:17:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916A5CD/29436FCE687C11ECAA26B959C4F9AE02/vbWSaolrtlGg51QKOYzV7wcUFx8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vbWSaolrtlGg51QKOYzV7wcUFx8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916A5CD/29436FCE687C11ECAA26B959C4F9AE02/vbWSaolrtlGg51QKOYzV7wcUFx8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c6:5c:1d:4d:e1:81:4e:e3:cf:c3:7e:0b:45:d4:77:a3:0b:72: 67:3f:8a:29:17:0f:94:9b:35:38:a2:6e:ca:3e:6f:de:51:ef: 12:f1:28:07:9a:41:df:1c:29:40:a5:71:d4:2a:04:3c:ca:6a: 7d:3e:1f:73:ea:f8:ae:9b:66:d0:c3:20:5f:c0:80:fb:39:66: 63:76:65:ea:be:ba:d0:4b:87:06:e5:2a:94:6d:8a:4a:3e:4d: e4:6a:06:cd:43:68:2d:ae:36:89:c5:f3:79:38:89:f4:08:02: 9f:9e:61:0e:ae:20:36:09:df:8d:44:1d:91:2f:80:f8:b2:00: 6e:04:bc:53:1c:d9:c7:eb:bd:52:43:59:04:f5:50:80:23:b8: 5e:20:18:43:55:89:da:54:ad:11:15:49:8d:d8:5e:1b:9b:ba: e9:66:0d:48:d9:f1:ba:16:97:33:5a:38:cc:96:ee:0d:78:a8: 1e:2c:56:91:20:4f:f4:ab:22:5a:af:21:e1:56:89:41:20:e7: 91:97:d5:ed:f0:60:f6:8d:95:c9:d1:0e:f6:5d:c5:b7:f3:51: 68:d5:3f:2d:dc:e1:17:93:4a:7d:1a:fc:4f:03:c9:d6:72:63: 10:e9:a4:54:0e:a4:ea:65:3c:43:51:63:31:31:06:1d:2f:8d: 87:77:83:0a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBA8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkE1Q0QxMTAvBgNVBAUTKEJEQjU5MjZBODk2QkI2NTFBMEU3NTQwQTM5OENENUVG MDcxNDE3MUYwHhcNMjUwNDI1MDAxMzIxWhcNMjUwNTAyMDAxMzIxWjAYMRYwFAYD VQQDEw02ODBhZDNhMi0wNTM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu/xHmKCnlmc/gEjCPS89jFvNsRW0qJ9Ilr4ZiOQy7EGofWEi6F/o8u7utkBI Aa3bApH0pdIPSICPu0NHUbR0y+pJVeqGdfqAIw2iecLrAc7Yl80hEN6q8HdKWzuK 7uXswRvnLVzmU7UyZ7MLEjt6QFgg270fg/HryuDtiOoNXtrI5oQna4sKBc7rmyEC oBjvI0wf+hYlqjHS0BmcNdtS10imClt43W3t4k5TKrbnL4srbr58iIgfjqeMwoc2 LKtFQyCyEbCIW44oIMhW8HUZTK4b19YI0x5owjWli6U7XnVJMfR6XKTu1PdvaRLw LA7wnh6bvjp+jArNre1/xjPZwwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJRmPv// uY08Vi1jXMpRpfCZdG/sMB8GA1UdIwQYMBaAFL21kmqJa7ZRoOdUCjmM1e8HFBcf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QTVDRC8yOTQzNkZDRTY4 N0MxMUVDQUEyNkI5NTlDNEY5QUUwMi92YldTYW9scnRsR2c1MVFLT1l6Vjd3Y1VG eDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZiV1Nhb2xydGxHZzUxUUtPWXpWN3djVUZ4OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QTVDRC8yOTQzNkZDRTY4N0MxMUVDQUEyNkI5NTlDNEY5QUUwMi92YldTYW9scnRs R2c1MVFLT1l6Vjd3Y1VGeDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDGXB1N4YFO48/DfgtF1HejC3JnP4opFw+UmzU4om7KPm/eUe8S8SgH mkHfHClApXHUKgQ8ymp9Ph9z6vium2bQwyBfwID7OWZjdmXqvrrQS4cG5SqUbYpK Pk3kagbNQ2gtrjaJxfN5OIn0CAKfnmEOriA2Cd+NRB2RL4D4sgBuBLxTHNnH671S Q1kE9VCAI7heIBhDVYnaVK0RFUmN2F4bm7rpZg1I2fG6FpczWjjMlu4NeKgeLFaR IE/0qyJaryHhVolBIOeRl9Xt8GD2jZXJ0Q72XcW381Fo1T8t3OEXk0p9GvxPA8nW cmMQ6aRUDqTqZTxDUWMxMQYdL42Hd4MK -----END CERTIFICATE-----Generated at Sat Apr 26 04:21:58 2025 by rpki-client