$ rpki-client -vvf rpki.apnic.net/member_repository/A917E5DC/BBE2B502F8EB11EBBEF5AA37C4F9AE02/RS-rvfCd335V_Q-dvd1CePRPuIE.mft File: RS-rvfCd335V_Q-dvd1CePRPuIE.mft (raw, json) Hash identifier: 2bIwW89reduvVn3e2YLptvaYXrp0SgqgMuEM3V3zqaI= Subject key identifier: 3F:17:24:AA:F2:09:D4:7B:5A:73:43:80:F5:57:59:85:C9:4F:4D:F8 Authority key identifier: 45:2F:AB:BD:F0:9D:DF:7E:55:FD:0F:9D:BD:DD:42:78:F4:4F:B8:81 Certificate issuer: /CN=A917E5DC/serialNumber=452FABBDF09DDF7E55FD0F9DBDDD4278F44FB881 Certificate serial: 0558 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RS-rvfCd335V_Q-dvd1CePRPuIE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E5DC/BBE2B502F8EB11EBBEF5AA37C4F9AE02/RS-rvfCd335V_Q-dvd1CePRPuIE.mft Manifest number: 053C Signing time: Thu 24 Apr 2025 23:19:03 +0000 Manifest this update: Thu 24 Apr 2025 23:19:03 +0000 Manifest next update: Thu 01 May 2025 23:19:03 +0000 Files and hashes: 1: RS-rvfCd335V_Q-dvd1CePRPuIE.crl (hash: ZZzxIB6M+uNVxf9zv00lErZuBw9Uta4SUHqKFRF69kA=) 2: C54C42C04D7611EEA69CE262C4F9AE02.roa (hash: 3vGbgZeBX2ux3qD/sA/eOOnJkTBw50rlrCAjdQKlgEE=) 3: C611EE6CBCF711EEA90A1F1DC4F9AE02.roa (hash: i9dMAMF25KUvras5KvDG1QM1xBWeYt+C+ALZFoy+wTs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E5DC/BBE2B502F8EB11EBBEF5AA37C4F9AE02/RS-rvfCd335V_Q-dvd1CePRPuIE.crl rsync://rpki.apnic.net/member_repository/A917E5DC/BBE2B502F8EB11EBBEF5AA37C4F9AE02/RS-rvfCd335V_Q-dvd1CePRPuIE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RS-rvfCd335V_Q-dvd1CePRPuIE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 23:19:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1368 (0x558) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E5DC, serialNumber=452FABBDF09DDF7E55FD0F9DBDDD4278F44FB881 Validity Not Before: Apr 24 23:19:03 2025 GMT Not After : May 1 23:19:03 2025 GMT Subject: CN=680ac6e7-24b5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:ec:1a:0a:ac:7d:4c:8b:99:19:d9:b2:1e:1a: 45:35:d4:6b:d0:13:9a:96:d0:14:f4:47:0f:ba:0d: b6:2b:65:0f:9c:84:6d:5f:65:f0:e8:17:b6:a6:6d: f4:60:e5:24:82:81:f6:e0:30:c0:12:d3:e6:95:34: a2:07:db:cf:74:58:72:77:b2:5c:17:8e:1b:b5:b4: d8:e6:c9:f3:39:be:88:2d:cc:cd:99:cb:71:94:5c: ec:78:b7:61:96:32:f4:16:e5:be:ae:3e:61:d3:e4: c3:fb:d1:92:0b:c5:7e:2f:9b:2e:9d:d6:4f:96:d4: 9e:86:eb:8b:09:67:e6:b8:1f:0e:05:42:30:09:70: f9:5b:e1:a7:84:67:d5:22:b8:61:e6:9b:0e:fc:43: fd:10:6b:76:90:43:b4:0a:68:6b:8d:24:99:73:78: 20:6a:9c:21:0c:1f:9f:94:60:67:72:cf:58:de:33: d7:90:b0:9d:f3:a6:99:8b:d6:77:c3:0f:8e:e4:09: 72:fe:9f:b5:bc:1d:0c:06:f5:b8:66:d3:fc:55:0b: e9:2f:f6:e2:57:36:95:37:22:82:ef:2c:d3:c7:b5: 9b:84:a8:f4:49:ac:11:f2:ee:01:b5:18:cb:8d:ef: 0c:4a:16:2f:a4:2d:60:a1:1e:44:ce:10:3b:08:97: 91:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:17:24:AA:F2:09:D4:7B:5A:73:43:80:F5:57:59:85:C9:4F:4D:F8 X509v3 Authority Key Identifier: keyid:45:2F:AB:BD:F0:9D:DF:7E:55:FD:0F:9D:BD:DD:42:78:F4:4F:B8:81 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E5DC/BBE2B502F8EB11EBBEF5AA37C4F9AE02/RS-rvfCd335V_Q-dvd1CePRPuIE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RS-rvfCd335V_Q-dvd1CePRPuIE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E5DC/BBE2B502F8EB11EBBEF5AA37C4F9AE02/RS-rvfCd335V_Q-dvd1CePRPuIE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 84:1e:ba:3a:4d:d7:63:8c:a9:6a:7c:97:49:56:ef:ca:10:0e: 16:d6:6b:06:85:8f:d2:f4:4f:dd:ba:f5:9a:35:2d:8f:14:f2: 3a:46:fd:4e:80:4f:0c:5f:ae:88:23:ae:6a:df:38:fb:3e:37: 2b:c7:5b:80:5d:85:d7:09:7e:8c:0c:66:95:c9:52:34:7a:98: a4:3a:8c:ea:34:ee:d2:2c:f0:3b:b9:f8:5f:68:65:e5:16:d7: 3a:b2:f0:09:ce:c3:8d:89:a5:ca:3d:bd:c2:22:45:43:94:93: 69:96:ba:f4:21:9a:78:61:13:ab:3c:42:ca:5b:e1:97:f4:7f: 00:99:6b:a1:c1:3e:5c:69:d9:fd:dd:21:fc:ae:36:a0:6d:bd: 95:47:a3:c3:41:8b:d5:25:f4:2d:93:b5:03:a2:07:b2:c3:2f: f1:9e:e5:96:7a:c9:64:87:90:04:86:25:13:b6:ab:3d:65:c2: 2e:2d:4a:e3:74:7e:38:ca:13:05:7c:78:ed:3c:fd:44:5e:84: cb:a6:4c:92:63:9c:59:39:20:20:5d:39:1f:9e:e9:98:a5:d1: 1e:b7:6e:11:c1:53:28:c1:be:a0:f7:ce:19:63:d8:4c:9c:b1: cc:3f:ac:e8:24:f6:1f:2a:d5:89:bb:95:9c:a8:9e:03:94:4d: 83:52:db:98 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBVgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U1REMxMTAvBgNVBAUTKDQ1MkZBQkJERjA5RERGN0U1NUZEMEY5REJEREQ0Mjc4 RjQ0RkI4ODEwHhcNMjUwNDI0MjMxOTAzWhcNMjUwNTAxMjMxOTAzWjAYMRYwFAYD VQQDEw02ODBhYzZlNy0yNGI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwuwaCqx9TIuZGdmyHhpFNdRr0BOaltAU9EcPug22K2UPnIRtX2Xw6Be2pm30 YOUkgoH24DDAEtPmlTSiB9vPdFhyd7JcF44btbTY5snzOb6ILczNmctxlFzseLdh ljL0FuW+rj5h0+TD+9GSC8V+L5sundZPltSehuuLCWfmuB8OBUIwCXD5W+GnhGfV Irhh5psO/EP9EGt2kEO0CmhrjSSZc3ggapwhDB+flGBncs9Y3jPXkLCd86aZi9Z3 ww+O5Aly/p+1vB0MBvW4ZtP8VQvpL/biVzaVNyKC7yzTx7WbhKj0SawR8u4BtRjL je8MShYvpC1goR5EzhA7CJeR6wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD8XJKry CdR7WnNDgPVXWYXJT034MB8GA1UdIwQYMBaAFEUvq73wnd9+Vf0Pnb3dQnj0T7iB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTVEQy9CQkUyQjUwMkY4 RUIxMUVCQkVGNUFBMzdDNEY5QUUwMi9SUy1ydmZDZDMzNVZfUS1kdmQxQ2VQUlB1 SUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1JTLXJ2ZkNkMzM1Vl9RLWR2ZDFDZVBSUHVJRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTVEQy9CQkUyQjUwMkY4RUIxMUVCQkVGNUFBMzdDNEY5QUUwMi9SUy1ydmZDZDMz NVZfUS1kdmQxQ2VQUlB1SUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCEHro6TddjjKlqfJdJVu/KEA4W1msGhY/S9E/duvWaNS2PFPI6Rv1O gE8MX66II65q3zj7Pjcrx1uAXYXXCX6MDGaVyVI0epikOozqNO7SLPA7ufhfaGXl Ftc6svAJzsONiaXKPb3CIkVDlJNplrr0IZp4YROrPELKW+GX9H8AmWuhwT5cadn9 3SH8rjagbb2VR6PDQYvVJfQtk7UDogeywy/xnuWWeslkh5AEhiUTtqs9ZcIuLUrj dH44yhMFfHjtPP1EXoTLpkySY5xZOSAgXTkfnumYpdEet24RwVMowb6g984ZY9hM nLHMP6zoJPYfKtWJu5WcqJ4DlE2DUtuY -----END CERTIFICATE-----Generated at Sat Apr 26 12:24:18 2025 by rpki-client