$ rpki-client -vvf rpki.apnic.net/member_repository/A9189AA3/0A2CB786784B11EEA4D7DB77C4F9AE02/VKXY-_hOPt8x-iTkXGxnKpO2WtA.mft File: VKXY-_hOPt8x-iTkXGxnKpO2WtA.mft (raw, json) Hash identifier: +gd3hospwOUq6a+aLx/JJLaayb6xqI3bitxrtgxIslY= Subject key identifier: 83:40:8A:F8:DE:BC:EA:65:01:F6:9B:59:36:11:38:E5:95:37:BB:D8 Authority key identifier: 54:A5:D8:FB:F8:4E:3E:DF:31:FA:24:E4:5C:6C:67:2A:93:B6:5A:D0 Certificate issuer: /CN=A9189AA3/serialNumber=54A5D8FBF84E3EDF31FA24E45C6C672A93B65AD0 Certificate serial: 011E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VKXY-_hOPt8x-iTkXGxnKpO2WtA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9189AA3/0A2CB786784B11EEA4D7DB77C4F9AE02/VKXY-_hOPt8x-iTkXGxnKpO2WtA.mft Manifest number: 0119 Signing time: Fri 25 Apr 2025 03:55:35 +0000 Manifest this update: Fri 25 Apr 2025 03:55:35 +0000 Manifest next update: Fri 02 May 2025 03:55:34 +0000 Files and hashes: 1: VKXY-_hOPt8x-iTkXGxnKpO2WtA.crl (hash: n9C/F5iiy4QZkzwWmp943WMEP2x35lTzysW1T73U4tE=) 2: 230576C0784C11EE9C354422C4F9AE02.roa (hash: RALcV87N2SziukH0pwzyeMCClLLK8BxrG9ZYFcFQDRA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9189AA3/0A2CB786784B11EEA4D7DB77C4F9AE02/VKXY-_hOPt8x-iTkXGxnKpO2WtA.crl rsync://rpki.apnic.net/member_repository/A9189AA3/0A2CB786784B11EEA4D7DB77C4F9AE02/VKXY-_hOPt8x-iTkXGxnKpO2WtA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VKXY-_hOPt8x-iTkXGxnKpO2WtA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 03:55:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 286 (0x11e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9189AA3, serialNumber=54A5D8FBF84E3EDF31FA24E45C6C672A93B65AD0 Validity Not Before: Apr 25 03:55:35 2025 GMT Not After : May 2 03:55:34 2025 GMT Subject: CN=680b07b7-a4fd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:80:5e:ba:10:55:84:9f:b3:2c:49:f9:40:28: 47:37:f0:45:2d:b4:b9:6d:2f:4c:d5:a2:67:0d:4b: df:a1:8e:bf:b4:0f:0c:38:c1:32:5d:3e:18:87:89: e4:58:ae:67:21:e1:29:bd:b8:9d:12:4f:86:68:9b: 08:1f:e8:b3:0d:3f:ea:f4:da:4e:73:c7:5a:2d:77: 4f:d6:41:d8:6f:c4:1a:7b:3d:23:ed:de:8c:a6:06: 01:ae:ef:df:57:14:1d:33:93:15:46:24:9c:43:2b: a8:59:7b:72:10:f1:67:ef:df:4a:0d:e9:24:71:1d: 1e:00:84:f2:a4:ff:39:e5:ae:12:49:5d:04:23:b9: 43:d3:ac:79:6a:6a:53:95:73:39:2a:88:18:5d:d5: d3:a6:ea:f0:20:cf:b5:18:79:ae:a7:2c:22:bb:4d: 0c:84:02:59:89:b5:10:8f:d0:ac:83:bf:50:5a:3f: ed:7d:7b:e5:a1:ae:56:63:78:2f:e8:a9:f1:fc:72: b6:ea:10:99:0e:b5:fc:85:e5:6c:51:33:15:bb:c4: 06:f2:2c:09:de:b5:4e:fe:3f:4b:a2:36:6b:91:7d: 75:73:e7:d8:1c:f8:44:78:e5:55:30:9f:57:61:71: ce:db:fc:45:4e:8a:ab:08:13:07:84:b1:eb:b2:15: 41:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:40:8A:F8:DE:BC:EA:65:01:F6:9B:59:36:11:38:E5:95:37:BB:D8 X509v3 Authority Key Identifier: keyid:54:A5:D8:FB:F8:4E:3E:DF:31:FA:24:E4:5C:6C:67:2A:93:B6:5A:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9189AA3/0A2CB786784B11EEA4D7DB77C4F9AE02/VKXY-_hOPt8x-iTkXGxnKpO2WtA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VKXY-_hOPt8x-iTkXGxnKpO2WtA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9189AA3/0A2CB786784B11EEA4D7DB77C4F9AE02/VKXY-_hOPt8x-iTkXGxnKpO2WtA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 00:68:87:e0:ad:38:6a:60:40:c5:03:29:f0:f2:af:8b:c0:c4: 32:67:7c:7c:8d:7d:28:e6:b6:7f:25:8c:65:7a:55:9a:64:df: 56:a5:cf:3c:f4:7e:77:89:39:e6:6d:2c:b4:0b:df:36:d9:94: 9d:33:1a:6a:59:b9:32:fe:3e:ae:e2:1f:58:77:d5:e5:ee:9c: 59:b5:29:e9:9c:0a:fd:4f:cb:10:40:1b:be:3a:e8:88:c4:66: d2:af:8b:d0:b9:59:0d:9f:ee:96:cf:d7:48:16:26:8c:8f:f5: 67:60:32:67:f2:80:f2:52:36:20:29:25:52:3d:8a:71:17:93: ac:7d:87:8a:d4:4a:65:99:c6:9d:ee:35:7a:20:f1:a2:aa:ed: 98:56:61:e7:15:b0:25:31:63:0e:b5:d6:a4:45:7a:db:c3:d9: cb:b8:0b:36:a8:aa:c6:1e:03:54:90:27:6a:86:c3:90:38:59: 47:1e:f7:a5:d8:f7:1d:77:33:b2:3c:65:84:7a:36:e2:61:2e: 42:7f:1f:78:fb:88:1e:2c:e5:ca:d6:08:fe:01:87:e0:90:0a: 1e:2f:ef:d9:43:22:c0:54:76:44:71:af:89:af:24:56:48:f7: c0:44:d4:87:ac:17:a4:0b:cd:4c:1d:a3:d5:af:f9:67:43:7d: 5c:99:27:8f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAR4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODlBQTMxMTAvBgNVBAUTKDU0QTVEOEZCRjg0RTNFREYzMUZBMjRFNDVDNkM2NzJB OTNCNjVBRDAwHhcNMjUwNDI1MDM1NTM1WhcNMjUwNTAyMDM1NTM0WjAYMRYwFAYD VQQDEw02ODBiMDdiNy1hNGZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6IBeuhBVhJ+zLEn5QChHN/BFLbS5bS9M1aJnDUvfoY6/tA8MOMEyXT4Yh4nk WK5nIeEpvbidEk+GaJsIH+izDT/q9NpOc8daLXdP1kHYb8Qaez0j7d6MpgYBru/f VxQdM5MVRiScQyuoWXtyEPFn799KDekkcR0eAITypP855a4SSV0EI7lD06x5ampT lXM5KogYXdXTpurwIM+1GHmupywiu00MhAJZibUQj9Csg79QWj/tfXvloa5WY3gv 6Knx/HK26hCZDrX8heVsUTMVu8QG8iwJ3rVO/j9LojZrkX11c+fYHPhEeOVVMJ9X YXHO2/xFToqrCBMHhLHrshVBmQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFINAivje vOplAfabWTYROOWVN7vYMB8GA1UdIwQYMBaAFFSl2Pv4Tj7fMfok5FxsZyqTtlrQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4OUFBMy8wQTJDQjc4Njc4 NEIxMUVFQTREN0RCNzdDNEY5QUUwMi9WS1hZLV9oT1B0OHgtaVRrWEd4bktwTzJX dEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZLWFktX2hPUHQ4eC1pVGtYR3huS3BPMld0QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 OUFBMy8wQTJDQjc4Njc4NEIxMUVFQTREN0RCNzdDNEY5QUUwMi9WS1hZLV9oT1B0 OHgtaVRrWEd4bktwTzJXdEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAAaIfgrThqYEDFAynw8q+LwMQyZ3x8jX0o5rZ/JYxlelWaZN9Wpc88 9H53iTnmbSy0C9822ZSdMxpqWbky/j6u4h9Yd9Xl7pxZtSnpnAr9T8sQQBu+OuiI xGbSr4vQuVkNn+6Wz9dIFiaMj/VnYDJn8oDyUjYgKSVSPYpxF5OsfYeK1Eplmcad 7jV6IPGiqu2YVmHnFbAlMWMOtdakRXrbw9nLuAs2qKrGHgNUkCdqhsOQOFlHHvel 2PcddzOyPGWEejbiYS5Cfx94+4geLOXK1gj+AYfgkAoeL+/ZQyLAVHZEca+JryRW SPfARNSHrBekC81MHaPVr/lnQ31cmSeP -----END CERTIFICATE-----Generated at Sat Apr 26 12:34:57 2025 by rpki-client