$ rpki-client -vvf rpki.apnic.net/member_repository/A91A995E/2E7AF298FA6211EF95555C0EC4F9AE02/VuOUrxtay4_0gsjGAmn-oOTEJ74.mft File: VuOUrxtay4_0gsjGAmn-oOTEJ74.mft (raw, json) Hash identifier: fsCD3Cm9hnOrZ0shULhycC7Jhzc/MvjgzBihAIN5E9E= Subject key identifier: 12:D1:D2:50:99:AA:05:9D:32:8C:A6:F8:1A:9E:DD:67:33:F5:F0:0B Authority key identifier: 56:E3:94:AF:1B:5A:CB:8F:F4:82:C8:C6:02:69:FE:A0:E4:C4:27:BE Certificate issuer: /CN=A91A995E/serialNumber=56E394AF1B5ACB8FF482C8C60269FEA0E4C427BE Certificate serial: 1F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/VuOUrxtay4_0gsjGAmn-oOTEJ74.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A995E/2E7AF298FA6211EF95555C0EC4F9AE02/VuOUrxtay4_0gsjGAmn-oOTEJ74.mft Manifest number: 1E Signing time: Fri 25 Apr 2025 06:53:36 +0000 Manifest this update: Fri 25 Apr 2025 06:53:36 +0000 Manifest next update: Fri 02 May 2025 06:53:35 +0000 Files and hashes: 1: VuOUrxtay4_0gsjGAmn-oOTEJ74.crl (hash: EeoNhPhyG3Tz8gFlOyZEqHcYdGrwlHH6hJltdKBMOXs=) 2: 3E41E766FA6411EFB8C12C50C4F9AE02.roa (hash: DEF0xkvw3q1tLXUQiXU0nzrLNhOtTutlaMvyugUJMpQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A995E/2E7AF298FA6211EF95555C0EC4F9AE02/VuOUrxtay4_0gsjGAmn-oOTEJ74.crl rsync://rpki.apnic.net/member_repository/A91A995E/2E7AF298FA6211EF95555C0EC4F9AE02/VuOUrxtay4_0gsjGAmn-oOTEJ74.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/VuOUrxtay4_0gsjGAmn-oOTEJ74.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 06:53:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31 (0x1f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A995E, serialNumber=56E394AF1B5ACB8FF482C8C60269FEA0E4C427BE Validity Not Before: Apr 25 06:53:36 2025 GMT Not After : May 2 06:53:35 2025 GMT Subject: CN=680b3170-ac70 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:24:62:45:3b:7e:19:50:95:7a:89:3b:af:ee: 0e:f9:4f:ed:0f:aa:32:59:22:f0:8e:fd:13:51:42: 96:e0:74:38:2a:cf:a2:eb:5a:93:02:b2:67:18:78: 5e:e2:0b:5a:4a:67:c7:4e:9b:c9:d1:d9:3d:8a:e5: 6f:ad:9b:b4:e6:65:cf:c4:ae:a0:1a:a5:af:d8:4f: d8:1b:5f:0c:69:d7:38:06:91:9a:e5:d9:38:51:50: 2d:cb:63:77:5d:a7:4d:63:61:54:12:d0:f1:b9:e6: 0c:a3:71:36:cb:7d:6b:7e:cb:ea:d6:5b:0a:5b:a1: 81:e3:e2:82:37:b8:af:be:4c:cb:38:37:67:c0:e5: 9a:fd:64:eb:06:71:94:36:c0:04:ee:6c:4c:5b:e7: 6e:93:31:30:e1:84:21:15:1f:5a:8a:6f:c0:d0:a5: 74:64:59:1b:dc:ca:4d:c0:dd:2e:f8:19:37:9c:eb: 84:5f:d9:8b:c1:91:70:64:d1:01:d7:a2:b4:46:a6: 35:d8:97:ff:19:76:19:31:64:3d:cc:03:b5:61:d6: 71:7a:51:d9:f6:d0:b4:26:b7:1b:68:a2:15:16:fc: 2b:aa:27:ae:68:a7:59:e9:9f:71:a5:ca:86:88:41: c3:fa:aa:cd:f0:9b:6c:c2:76:f0:63:c0:2a:ab:8c: 25:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:D1:D2:50:99:AA:05:9D:32:8C:A6:F8:1A:9E:DD:67:33:F5:F0:0B X509v3 Authority Key Identifier: keyid:56:E3:94:AF:1B:5A:CB:8F:F4:82:C8:C6:02:69:FE:A0:E4:C4:27:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A995E/2E7AF298FA6211EF95555C0EC4F9AE02/VuOUrxtay4_0gsjGAmn-oOTEJ74.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/VuOUrxtay4_0gsjGAmn-oOTEJ74.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A995E/2E7AF298FA6211EF95555C0EC4F9AE02/VuOUrxtay4_0gsjGAmn-oOTEJ74.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6e:9e:be:a7:d3:c9:f9:0c:ef:9f:cf:16:67:f7:ed:3e:7d:22: fe:a0:39:64:17:0c:83:f4:80:a8:8f:a9:46:ca:67:48:ca:44: 58:a2:b9:ee:cf:97:e3:64:7b:6a:c5:43:cd:4a:e4:05:6f:d3: fc:f7:50:4c:9f:a2:41:55:0a:1d:1d:24:15:d2:66:76:2c:30: 5d:f3:1b:8a:6c:48:21:07:f0:2c:e3:73:52:fe:10:6e:75:31: 5f:2d:71:4f:df:07:97:4a:50:6b:de:01:1f:ba:68:be:47:10: aa:8d:05:8d:18:5f:f6:c3:1a:09:59:ce:0c:9a:2f:9a:04:41: f3:a8:ea:5e:ce:08:ee:a0:f4:45:11:b4:59:b3:0e:f3:73:d8: dd:d8:4d:8b:5e:8b:b4:ea:e1:6b:b6:c6:69:ca:fb:34:60:41: c6:1d:77:53:e0:6b:ac:ea:98:3a:3e:05:1b:14:34:84:94:1e: 3c:a2:9d:d5:17:43:1a:77:13:f1:a5:3d:e1:d2:66:69:45:63: b8:4c:7c:7d:dc:99:80:57:31:ce:5c:fc:65:3c:11:cc:3e:37: c7:85:bc:e8:53:b8:94:86:f1:71:09:dc:56:16:06:d6:c6:00: 9b:18:61:b7:96:b4:f8:c6:49:3f:ee:a9:a5:1c:25:dc:5e:bd: 7b:16:fc:e4 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBHzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB OTk1RTExMC8GA1UEBRMoNTZFMzk0QUYxQjVBQ0I4RkY0ODJDOEM2MDI2OUZFQTBF NEM0MjdCRTAeFw0yNTA0MjUwNjUzMzZaFw0yNTA1MDIwNjUzMzVaMBgxFjAUBgNV BAMTDTY4MGIzMTcwLWFjNzAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC8JGJFO34ZUJV6iTuv7g75T+0PqjJZIvCO/RNRQpbgdDgqz6LrWpMCsmcYeF7i C1pKZ8dOm8nR2T2K5W+tm7TmZc/ErqAapa/YT9gbXwxp1zgGkZrl2ThRUC3LY3dd p01jYVQS0PG55gyjcTbLfWt+y+rWWwpboYHj4oI3uK++TMs4N2fA5Zr9ZOsGcZQ2 wATubExb526TMTDhhCEVH1qKb8DQpXRkWRvcyk3A3S74GTec64Rf2YvBkXBk0QHX orRGpjXYl/8ZdhkxZD3MA7Vh1nF6Udn20LQmtxtoohUW/CuqJ65op1npn3GlyoaI QcP6qs3wm2zCdvBjwCqrjCU7AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUEtHSUJmq BZ0yjKb4Gp7dZzP18AswHwYDVR0jBBgwFoAUVuOUrxtay4/0gsjGAmn+oOTEJ74w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE5OTVFLzJFN0FGMjk4RkE2 MjExRUY5NTU1NUMwRUM0RjlBRTAyL1Z1T1VyeHRheTRfMGdzakdBbW4tb09URUo3 NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvVnVPVXJ4dGF5NF8wZ3NqR0Ftbi1vT1RFSjc0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE5 OTVFLzJFN0FGMjk4RkE2MjExRUY5NTU1NUMwRUM0RjlBRTAyL1Z1T1VyeHRheTRf MGdzakdBbW4tb09URUo3NC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAG6evqfTyfkM75/PFmf37T59Iv6gOWQXDIP0gKiPqUbKZ0jKRFiiue7P l+Nke2rFQ81K5AVv0/z3UEyfokFVCh0dJBXSZnYsMF3zG4psSCEH8Czjc1L+EG51 MV8tcU/fB5dKUGveAR+6aL5HEKqNBY0YX/bDGglZzgyaL5oEQfOo6l7OCO6g9EUR tFmzDvNz2N3YTYtei7Tq4Wu2xmnK+zRgQcYdd1Pga6zqmDo+BRsUNISUHjyindUX Qxp3E/GlPeHSZmlFY7hMfH3cmYBXMc5c/GU8Ecw+N8eFvOhTuJSG8XEJ3FYWBtbG AJsYYbeWtPjGST/uqaUcJdxevXsW/OQ= -----END CERTIFICATE-----Generated at Sat Apr 26 15:19:46 2025 by rpki-client