$ rpki-client -vvf rpki.apnic.net/member_repository/A9172FC5/E539CDA0AB3F11EFBE02CF14C4F9AE02/rVRdJQT-Hekq4XZt9GV2N9t6fnU.mft File: rVRdJQT-Hekq4XZt9GV2N9t6fnU.mft (raw, json) Hash identifier: eUAJSUk2fDjTYtEdQL7JM3FrvZyVwnGS94xL3aqfgrY= Subject key identifier: 90:16:70:52:54:3F:EA:B1:F7:5C:29:A4:F7:C5:B4:C6:6B:90:1A:11 Authority key identifier: AD:54:5D:25:04:FE:1D:E9:2A:E1:76:6D:F4:65:76:37:DB:7A:7E:75 Certificate issuer: /CN=A9172FC5/serialNumber=AD545D2504FE1DE92AE1766DF4657637DB7A7E75 Certificate serial: 55 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rVRdJQT-Hekq4XZt9GV2N9t6fnU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9172FC5/E539CDA0AB3F11EFBE02CF14C4F9AE02/rVRdJQT-Hekq4XZt9GV2N9t6fnU.mft Manifest number: 52 Signing time: Sun 27 Apr 2025 06:05:52 +0000 Manifest this update: Sun 27 Apr 2025 06:05:52 +0000 Manifest next update: Sun 04 May 2025 06:05:52 +0000 Files and hashes: 1: rVRdJQT-Hekq4XZt9GV2N9t6fnU.crl (hash: Lz2h28FRHkBwt9/U7mKgqbPnq8ZVNTupct4vt24IeP8=) 2: 15B99EFC016111F0B1B6A34EC4F9AE02.roa (hash: fNaQxATAW6BCNgpllm+ul+pMRSXup8I9s/wGqDPcAs4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9172FC5/E539CDA0AB3F11EFBE02CF14C4F9AE02/rVRdJQT-Hekq4XZt9GV2N9t6fnU.crl rsync://rpki.apnic.net/member_repository/A9172FC5/E539CDA0AB3F11EFBE02CF14C4F9AE02/rVRdJQT-Hekq4XZt9GV2N9t6fnU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rVRdJQT-Hekq4XZt9GV2N9t6fnU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 06:05:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 85 (0x55) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9172FC5, serialNumber=AD545D2504FE1DE92AE1766DF4657637DB7A7E75 Validity Not Before: Apr 27 06:05:52 2025 GMT Not After : May 4 06:05:52 2025 GMT Subject: CN=680dc940-a33f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:68:fb:4c:b8:58:06:fb:3f:30:b4:82:7c:21: 34:0f:ce:12:cb:23:86:75:9c:83:0f:5f:b1:8b:e4: 24:ae:25:89:9a:c0:3f:be:c9:83:21:e1:b2:6e:dc: 2b:33:b1:93:ab:dd:f6:ec:40:4f:0b:17:58:a4:24: 6c:10:20:ba:63:af:09:e7:85:53:75:0e:9a:ad:90: 7a:3d:06:6b:d3:6e:47:84:be:56:19:2e:a9:ac:00: 6d:41:9e:72:d9:b8:a3:48:73:87:b3:6e:7b:f4:21: 23:57:8e:96:c6:a7:be:62:f4:0b:4e:0e:1d:34:05: b5:1f:aa:c7:86:be:8e:ee:f5:06:1a:d5:36:fc:c0: 23:2a:4e:cb:6a:24:44:f6:d4:fa:12:55:cf:fa:bc: 9e:d5:c5:95:f2:c6:73:f4:65:8f:e0:d5:fd:60:ec: 88:75:e7:03:89:0c:74:78:1e:e3:3f:d9:7c:db:c7: cb:4c:19:56:6b:28:d9:fc:c5:25:38:d1:9e:a0:cd: 67:3b:27:cc:0f:c7:32:63:ab:ec:90:14:a7:34:ff: 30:22:c7:c2:4e:67:a6:b0:fa:27:ea:1a:bf:e7:ec: 91:f1:1b:59:d1:e9:02:c0:34:73:43:c6:8f:66:c4: c1:91:bc:7c:a5:4e:7e:c1:1a:59:c3:86:af:ff:da: 5c:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:16:70:52:54:3F:EA:B1:F7:5C:29:A4:F7:C5:B4:C6:6B:90:1A:11 X509v3 Authority Key Identifier: keyid:AD:54:5D:25:04:FE:1D:E9:2A:E1:76:6D:F4:65:76:37:DB:7A:7E:75 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9172FC5/E539CDA0AB3F11EFBE02CF14C4F9AE02/rVRdJQT-Hekq4XZt9GV2N9t6fnU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rVRdJQT-Hekq4XZt9GV2N9t6fnU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9172FC5/E539CDA0AB3F11EFBE02CF14C4F9AE02/rVRdJQT-Hekq4XZt9GV2N9t6fnU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 82:23:44:2a:e8:67:d7:97:e6:14:74:c2:20:82:d5:95:97:06: 32:ad:dc:0e:e6:7c:97:ed:52:6b:aa:b9:0b:01:3d:3d:7d:a3: 58:33:cb:c0:52:9c:82:07:4e:c0:df:93:3b:74:78:e1:c1:c2: fb:00:51:01:56:cf:9f:c9:ae:a6:24:82:8a:60:e1:71:b1:87: 9e:12:7e:af:52:2a:90:7e:01:c9:31:94:5b:09:e0:b1:7a:b0: 36:71:20:af:9c:ab:8a:ab:de:a9:cd:1c:8a:e5:09:2c:6e:f8: 20:2f:60:d4:11:ca:0a:76:90:0e:0d:e5:44:00:a8:05:7c:9c: 0f:69:9d:48:51:a2:65:ce:62:65:05:ba:bd:30:78:39:bd:25: 70:57:91:71:7f:0c:ed:89:2c:f5:86:c0:23:d3:6a:13:e1:1f: f4:fb:4f:29:1d:d5:e2:fb:68:e8:a9:c3:7c:33:a6:cc:ee:74: 1c:16:23:f6:7d:b9:2c:79:81:3f:68:80:42:fa:81:f7:cf:42: 40:d7:d7:03:db:19:ae:82:ee:61:d4:5d:df:16:20:04:63:d6: 59:25:6a:2d:75:8a:f9:a1:fd:62:26:b3:4c:80:90:96:de:ef: fa:41:08:f1:85:4e:3a:0e:65:aa:61:99:01:2a:81:d7:f2:6b: a7:4a:5f:be -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBVTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 MkZDNTExMC8GA1UEBRMoQUQ1NDVEMjUwNEZFMURFOTJBRTE3NjZERjQ2NTc2MzdE QjdBN0U3NTAeFw0yNTA0MjcwNjA1NTJaFw0yNTA1MDQwNjA1NTJaMBgxFjAUBgNV BAMTDTY4MGRjOTQwLWEzM2YwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC0aPtMuFgG+z8wtIJ8ITQPzhLLI4Z1nIMPX7GL5CSuJYmawD++yYMh4bJu3Csz sZOr3fbsQE8LF1ikJGwQILpjrwnnhVN1DpqtkHo9BmvTbkeEvlYZLqmsAG1BnnLZ uKNIc4ezbnv0ISNXjpbGp75i9AtODh00BbUfqseGvo7u9QYa1Tb8wCMqTstqJET2 1PoSVc/6vJ7VxZXyxnP0ZY/g1f1g7Ih15wOJDHR4HuM/2Xzbx8tMGVZrKNn8xSU4 0Z6gzWc7J8wPxzJjq+yQFKc0/zAix8JOZ6aw+ifqGr/n7JHxG1nR6QLANHNDxo9m xMGRvHylTn7BGlnDhq//2lwVAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUkBZwUlQ/ 6rH3XCmk98W0xmuQGhEwHwYDVR0jBBgwFoAUrVRdJQT+Hekq4XZt9GV2N9t6fnUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcyRkM1L0U1MzlDREEwQUIz RjExRUZCRTAyQ0YxNEM0RjlBRTAyL3JWUmRKUVQtSGVrcTRYWnQ5R1YyTjl0NmZu VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvclZSZEpRVC1IZWtxNFhadDlHVjJOOXQ2Zm5VLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcy RkM1L0U1MzlDREEwQUIzRjExRUZCRTAyQ0YxNEM0RjlBRTAyL3JWUmRKUVQtSGVr cTRYWnQ5R1YyTjl0NmZuVS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAIIjRCroZ9eX5hR0wiCC1ZWXBjKt3A7mfJftUmuquQsBPT19o1gzy8BS nIIHTsDfkzt0eOHBwvsAUQFWz5/JrqYkgopg4XGxh54Sfq9SKpB+AckxlFsJ4LF6 sDZxIK+cq4qr3qnNHIrlCSxu+CAvYNQRygp2kA4N5UQAqAV8nA9pnUhRomXOYmUF ur0weDm9JXBXkXF/DO2JLPWGwCPTahPhH/T7Tykd1eL7aOipw3wzpszudBwWI/Z9 uSx5gT9ogEL6gffPQkDX1wPbGa6C7mHUXd8WIARj1lklai11ivmh/WIms0yAkJbe 7/pBCPGFTjoOZaphmQEqgdfya6dKX74= -----END CERTIFICATE-----Generated at Tue Apr 29 00:23:18 2025 by rpki-client