$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB2EB/430B5A78BF4311EE8FD30758C4F9AE02/VVmDGtzt7KX6kvxOtdLt5i43qM0.mft File: VVmDGtzt7KX6kvxOtdLt5i43qM0.mft (raw, json) Hash identifier: GPyFbxQoQtP8h7FHCP9fWv2dm2eDzGLc5mGtz/tFhUo= Subject key identifier: 45:6F:26:63:CE:94:89:28:43:51:3E:5B:1B:1A:92:AC:1E:2F:3E:C3 Authority key identifier: 55:59:83:1A:DC:ED:EC:A5:FA:92:FC:4E:B5:D2:ED:E6:2E:37:A8:CD Certificate issuer: /CN=A91AB2EB/serialNumber=5559831ADCEDECA5FA92FC4EB5D2EDE62E37A8CD Certificate serial: EE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VVmDGtzt7KX6kvxOtdLt5i43qM0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB2EB/430B5A78BF4311EE8FD30758C4F9AE02/VVmDGtzt7KX6kvxOtdLt5i43qM0.mft Manifest number: EB Signing time: Fri 25 Apr 2025 04:27:30 +0000 Manifest this update: Fri 25 Apr 2025 04:27:29 +0000 Manifest next update: Fri 02 May 2025 04:27:29 +0000 Files and hashes: 1: VVmDGtzt7KX6kvxOtdLt5i43qM0.crl (hash: LmRs63i7kQetGK10nTW4EoEhG7DyAobL1UOq6Jr/4kU=) 2: B96DD308BF4311EE844DDD58C4F9AE02.roa (hash: Qyo+y73YZI83wemHD69A6cWahcYB7AOwFIX0fbO5DQM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB2EB/430B5A78BF4311EE8FD30758C4F9AE02/VVmDGtzt7KX6kvxOtdLt5i43qM0.crl rsync://rpki.apnic.net/member_repository/A91AB2EB/430B5A78BF4311EE8FD30758C4F9AE02/VVmDGtzt7KX6kvxOtdLt5i43qM0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VVmDGtzt7KX6kvxOtdLt5i43qM0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 04:27:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 238 (0xee) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB2EB, serialNumber=5559831ADCEDECA5FA92FC4EB5D2EDE62E37A8CD Validity Not Before: Apr 25 04:27:29 2025 GMT Not After : May 2 04:27:29 2025 GMT Subject: CN=680b0f31-b6c1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:ad:7e:9e:9f:b6:be:31:9c:e1:1a:a9:0d:43: 1f:f9:90:32:03:e8:2b:4f:3d:36:3f:3e:28:38:a8: ad:3a:ef:92:4e:49:dc:cd:df:de:98:5c:af:aa:a6: 46:9a:45:4c:13:55:12:c1:38:48:ea:ef:57:08:22: 1b:6f:9c:04:ec:55:79:45:57:79:bf:18:de:b6:0b: c5:37:b8:81:a3:e4:26:fe:b1:d5:4d:12:14:ae:ee: bf:7e:4c:7c:ef:77:d2:b5:9d:fb:af:0c:29:17:0c: 0c:34:f3:30:67:93:3f:48:b7:4e:27:fd:d8:43:35: fe:ff:d0:50:20:17:68:37:f1:4a:6b:a2:6e:2a:74: e3:86:93:59:56:87:e8:b2:e3:13:07:bd:cd:35:46: a2:29:fd:f4:5a:02:8e:bf:fd:82:4f:b8:02:77:cc: d6:4b:66:96:ff:b7:a2:80:bd:ca:59:98:f3:56:44: b3:82:ba:71:63:e1:ee:f9:fe:67:13:2d:9a:c5:3c: 65:74:9c:c6:48:3b:fc:14:af:5b:51:a1:2a:93:96: fb:f1:1c:28:c6:4b:32:29:2f:eb:41:00:51:7a:d6: 08:d3:fd:1f:d2:80:5f:d6:00:6d:cd:76:97:69:ba: 1f:fe:d5:8b:66:4a:a2:93:1c:97:47:8c:da:6a:53: 93:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:6F:26:63:CE:94:89:28:43:51:3E:5B:1B:1A:92:AC:1E:2F:3E:C3 X509v3 Authority Key Identifier: keyid:55:59:83:1A:DC:ED:EC:A5:FA:92:FC:4E:B5:D2:ED:E6:2E:37:A8:CD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB2EB/430B5A78BF4311EE8FD30758C4F9AE02/VVmDGtzt7KX6kvxOtdLt5i43qM0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VVmDGtzt7KX6kvxOtdLt5i43qM0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB2EB/430B5A78BF4311EE8FD30758C4F9AE02/VVmDGtzt7KX6kvxOtdLt5i43qM0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a1:8a:bf:3c:3b:55:11:ea:63:01:a2:1d:d5:01:fd:f9:41:f3: 78:b5:de:ed:f0:4c:7f:88:61:2c:8f:00:7a:9b:3f:b2:88:3c: 8c:eb:46:a5:4a:61:d3:01:99:f6:fc:83:27:48:a6:6b:51:18: a5:d8:6e:6e:92:ab:4a:f5:7e:43:20:ef:30:6c:fd:5f:e0:db: a5:06:6e:bb:fe:5d:42:4d:64:fc:59:6e:c9:d8:6d:0a:f7:a4: 5e:12:d2:61:bb:27:fc:78:b0:c2:fe:15:a1:58:2a:c9:fa:66: 90:90:ca:34:e6:15:e6:3e:ae:54:41:7c:d2:73:4c:02:1e:fd: ea:48:d8:51:8b:4c:cd:90:78:cb:71:b6:f0:cb:01:fc:ae:3b: 1b:b3:9c:44:54:43:c4:c6:4b:78:61:46:85:03:04:74:27:64: c5:60:90:b8:d5:1d:00:c2:bd:d4:45:6a:02:c8:c1:52:29:b2: b0:a6:e4:af:0a:ae:97:b3:5b:ac:e3:9c:fd:9e:8c:f5:d6:9f: a2:39:ca:3e:84:44:62:8d:3e:b7:57:6a:87:c1:58:b8:15:54: 25:09:1e:64:8b:72:f8:57:1c:d5:aa:ba:9c:a8:27:7d:31:f8: 72:c5:2a:bc:17:8e:20:25:bf:f1:d4:17:c9:23:d7:7f:e0:59: 65:52:53:76 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAO4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUIyRUIxMTAvBgNVBAUTKDU1NTk4MzFBRENFREVDQTVGQTkyRkM0RUI1RDJFREU2 MkUzN0E4Q0QwHhcNMjUwNDI1MDQyNzI5WhcNMjUwNTAyMDQyNzI5WjAYMRYwFAYD VQQDEw02ODBiMGYzMS1iNmMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtq1+np+2vjGc4RqpDUMf+ZAyA+grTz02Pz4oOKitOu+STknczd/emFyvqqZG mkVME1USwThI6u9XCCIbb5wE7FV5RVd5vxjetgvFN7iBo+Qm/rHVTRIUru6/fkx8 73fStZ37rwwpFwwMNPMwZ5M/SLdOJ/3YQzX+/9BQIBdoN/FKa6JuKnTjhpNZVofo suMTB73NNUaiKf30WgKOv/2CT7gCd8zWS2aW/7eigL3KWZjzVkSzgrpxY+Hu+f5n Ey2axTxldJzGSDv8FK9bUaEqk5b78RwoxksyKS/rQQBRetYI0/0f0oBf1gBtzXaX abof/tWLZkqikxyXR4zaalOTGQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEVvJmPO lIkoQ1E+WxsakqweLz7DMB8GA1UdIwQYMBaAFFVZgxrc7eyl+pL8TrXS7eYuN6jN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjJFQi80MzBCNUE3OEJG NDMxMUVFOEZEMzA3NThDNEY5QUUwMi9WVm1ER3R6dDdLWDZrdnhPdGRMdDVpNDNx TTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZWbURHdHp0N0tYNmt2eE90ZEx0NWk0M3FNMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QjJFQi80MzBCNUE3OEJGNDMxMUVFOEZEMzA3NThDNEY5QUUwMi9WVm1ER3R6dDdL WDZrdnhPdGRMdDVpNDNxTTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQChir88O1UR6mMBoh3VAf35QfN4td7t8Ex/iGEsjwB6mz+yiDyM60al SmHTAZn2/IMnSKZrURil2G5ukqtK9X5DIO8wbP1f4NulBm67/l1CTWT8WW7J2G0K 96ReEtJhuyf8eLDC/hWhWCrJ+maQkMo05hXmPq5UQXzSc0wCHv3qSNhRi0zNkHjL cbbwywH8rjsbs5xEVEPExkt4YUaFAwR0J2TFYJC41R0Awr3URWoCyMFSKbKwpuSv Cq6Xs1us45z9noz11p+iOco+hERijT63V2qHwVi4FVQlCR5ki3L4VxzVqrqcqCd9 MfhyxSq8F44gJb/x1BfJI9d/4FllUlN2 -----END CERTIFICATE-----Generated at Sat Apr 26 15:00:27 2025 by rpki-client